CVSROOT: /cvs Module name: src Changes by: t...@cvs.openbsd.org 2020/04/27 13:31:02
Modified files:
lib/libcrypto/evp: e_aes.c evp.h evp_err.c
Log message:
Disallow the use of zero length IVs in AES-GCM via
EVP_AEAD_CTX_{open,seal}, as this leaks the authentication key.
Issue reported and fix tested by Guido Vranken.
ok beck, jsing
This commit adds a constant to a public header despite library lock,
as discussed with deraadt and sthen.
