sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-04 00:00:14 -04:00
Code Issues Projects Releases Wiki Activity

ml: Remove unused drbg_t instance when building without testable KE

Browse Source
This commit is contained in:
Tobias Brunner 2025-05-23 11:34:18 +02:00
parent 07a9926464
commit e3fa72b81a
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/libstrongswan/plugins/ml/ml_kem.c
View File

@ -89,10 +89,12 @@ struct private_key_exchange_t {
*/ */
hasher_t *H; hasher_t *H;
#ifdef TESTABLE_KE
/** /**
* DRBG used during testing. * DRBG used during testing.
*/ */
drbg_t *drbg; drbg_t *drbg;
#endif
}; };
/** /**
@ -102,10 +104,13 @@ static bool get_random(private_key_exchange_t *this, size_t len, uint8_t *out)
{ {
rng_t *rng; rng_t *rng;
#ifdef TESTABLE_KE
if (this->drbg) if (this->drbg)
{ {
return this->drbg->generate(this->drbg, len, out); return this->drbg->generate(this->drbg, len, out);
} }
#endif
rng = lib->crypto->create_rng(lib->crypto, RNG_STRONG); rng = lib->crypto->create_rng(lib->crypto, RNG_STRONG);
if (!rng || !rng->get_bytes(rng, len, out)) if (!rng || !rng->get_bytes(rng, len, out))
{ {
@ -961,7 +966,9 @@ METHOD(key_exchange_t, destroy, void,
chunk_clear(&this->shared_secret); chunk_clear(&this->shared_secret);
chunk_free(&this->public_key); chunk_free(&this->public_key);
chunk_free(&this->ciphertext); chunk_free(&this->ciphertext);
#ifdef TESTABLE_KE
DESTROY_IF(this->drbg); DESTROY_IF(this->drbg);
#endif
DESTROY_IF(this->shake128); DESTROY_IF(this->shake128);
DESTROY_IF(this->shake256); DESTROY_IF(this->shake256);
DESTROY_IF(this->G); DESTROY_IF(this->G);