sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-09 00:00:53 -04:00
Code Issues Projects Releases Wiki Activity

openssl: Ensure underlying hash algorithm is available during HMAC init

Browse Source 
Without this we only would learn that the algorithm isn't actually
available (e.g. due to FIPS mode) when set_key() is called later, so there
isn't any automatic fallback to other implementations.

Fixes #3284.
This commit is contained in:
Tobias Brunner 2019-12-03 16:11:39 +01:00
parent 96b8fa72b3
commit 6b347d5232
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/libstrongswan/plugins/openssl/openssl_hmac.c
View File

@ -185,6 +185,12 @@ static mac_t *hmac_create(hash_algorithm_t algo)
this->hmac = &this->hmac_ctx; this->hmac = &this->hmac_ctx;
#endif #endif
/* make sure the underlying hash algorithm is supported */
if (!set_key(this, chunk_from_str("")))
{
destroy(this);
return NULL;
}
return &this->public; return &this->public;
} }