projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c47a56d) | patch
DRBG: weaken the restriction on allowed digests.
authorPauli <paul.dale@oracle.com>
Fri, 1 Nov 2019 02:47:06 +0000 (12:47 +1000)
committerPauli <paul.dale@oracle.com>
Sat, 2 Nov 2019 05:10:54 +0000 (15:10 +1000)
commit9fff0a4b0d6f3b7499f85cbd30e599db7f1b723b
tree593dba21a4cb06a27a50ac15948e406474d24c45tree | snapshot
parentc47a56d615a7baf974de85e7f609cacbf5297dd5commit | diff
DRBG: weaken the restriction on allowed digests.

The artificial restriction of digests for the HMAC and HASH DRBGs is lifted.
Any fetchable digest is acceptable except XOF ones (such as SHAKE).

In FIPS mode, the fetch remains internal to the provider so only a FIPS
validated digest will be located.

Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>
(Merged from https://github.com/openssl/openssl/pull/10321)
crypto/rand/drbg_hash.c diff | blob | history
crypto/rand/drbg_hmac.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.