diff options
| author | Richard Levitte <levitte@openssl.org> | 2020-05-22 15:41:28 +0200 |
|---|---|---|
| committer | Richard Levitte <levitte@openssl.org> | 2020-05-23 21:11:09 +0200 |
| commit | 5e5bc836fbc5b1c0af428864f5286bbb225f7baf (patch) | |
| tree | bf2f4a96ca1332192cd3ca32d41d31ad4a5b99e1 /crypto/rand/drbg_hash.c | |
| parent | aa2cb51da03bc8fc40d785042b35fe0c253846bf (diff) | |
| download | openssl-5e5bc836fbc5b1c0af428864f5286bbb225f7baf.zip openssl-5e5bc836fbc5b1c0af428864f5286bbb225f7baf.tar.gz openssl-5e5bc836fbc5b1c0af428864f5286bbb225f7baf.tar.bz2 | |
Re-introduce legacy EVP_PKEY types for provided keys
EVP_PKEYs with provider side internal keys got the key type
EVP_PKEY_NONE. This turned out to be too disruptive, so we try
instead to find a matching EVP_PKEY_ASN1_METHOD and use whatever
EVP_PKEY type it uses.
To make internal coding easier, we introduce a few internal macros to
distinguish what can be expected from a EVP_PKEY:
- evp_pkey_is_blank(), to detect an unassigned EVP_PKEY.
- evp_pkey_is_typed(), to detect that an EVP_PKEY has been assigned a
type, which may be an old style type number or a EVP_KEYMGMT method.
- evp_pkey_is_assigned(), to detect that an EVP_PKEY has been assigned
an key value.
- evp_pkey_is_legacy(), to detect that the internal EVP_PKEY key is a
legacy one, i.e. will be handled via an EVP_PKEY_ASN1_METHOD and an
EVP_PKEY_METHOD.
- evp_pkey_is_provided(), to detect that the internal EVP_PKEY key is
a provider side one, i.e. will be handdled via an EVP_KEYMGMT and
other provider methods.
This also introduces EVP_PKEY_KEYMGMT, to indicate that this EVP_PKEY
contains a provider side key for which there are no known
EVP_PKEY_ASN1_METHODs or EVP_PKEY_METHODs, i.e. these can only be
handled via EVP_KEYMGMT and other provider methods.
Fixes #11823
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/11913)
Diffstat (limited to 'crypto/rand/drbg_hash.c')
0 files changed, 0 insertions, 0 deletions