git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Viktor Dukhovni <openssl-users@dukhovni.org>
	Tue, 18 Feb 2025 07:42:41 +0000 (18:42 +1100)
committer	Viktor Dukhovni <openssl-users@dukhovni.org>
	Wed, 19 Feb 2025 22:59:22 +0000 (09:59 +1100)
commit	a4465bf694ea4505c544a96f2cfb329d86e8b711
tree	db21a476faf6c80b9aed3dc73a11d0f2a25303a5	tree
parent	ff20db213d5acb0961d5c05011d877073088133f	commit \| diff

More consistent ML-KEM key checks

- Cross-check seed `z` value on import as well as load.
- In import/load When re-generating from a seed, check hash of any
explicit private key when both provided.
- Avoid leak of expanded key encoding when load fails.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/26812)

crypto/encode_decode/decoder_pkey.c		diff \| blob \| blame \| history
providers/implementations/keymgmt/ml_kem_kmgmt.c		diff \| blob \| blame \| history
test/recipes/15-test_ml_kem_codecs.t		diff \| blob \| blame \| history

Mirror of https://github.com/openssl/openssl.git

RSS Atom