git.openssl.org Git - openssl.git/commit - providers/implementations/include/prov/implementations.h

author	Pauli <pauli@openssl.org>
	Mon, 2 Aug 2021 06:16:35 +0000 (16:16 +1000)
committer	Pauli <pauli@openssl.org>
	Thu, 5 Aug 2021 05:43:59 +0000 (15:43 +1000)
commit	f7d998a206383b6bab3fad32b28e58d3786fe08a
tree	68dc70d58777158e20d6c9549c54e8e461b87773	tree \| snapshot
parent	2cdf7c6a3324f0477d34b2906632e863941d8d6b	commit \| diff

tls/prov: move the TLS 1.3 KDF code to providers

This function needs to be power up tested as part of the FIPS validation and
thus it needs to be inside the provider boundary. This is realised by
introducing a new KDF "TLS13-KDF" which does the required massaging of
parameters but is otherwise functionally equivalent to HKDF.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/16203)

include/openssl/core_names.h		diff \| blob \| history
providers/implementations/include/prov/implementations.h		diff \| blob \| history
providers/implementations/include/prov/names.h		diff \| blob \| history
providers/implementations/kdfs/hkdf.c		diff \| blob \| history
ssl/tls13_enc.c		diff \| blob \| history