New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLSv1.3: add optional integrity-only ciphers [RFC 9150] #22903
Conversation
Just wondering, was this written from scratch, or is it a copy of someones else's work? |
As mentioned in #18343, Some work was done for openssl 1.1.1. |
No I dont.. Just checking that we didnt need to get permission from another author, if it was derived from somewhere.. |
Need help #22902 |
58e3fff
to
3c87345
Compare
baebdaa
to
aa201ba
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
One bug, a few memory leaks on error, several questions,
and various suggestions for small style, name, and text improvements
@DDvO- Thankyou for the review. I did the required changes. |
Fine. Just a few follow-up points - see above the the comments that I did not mark as resolved. |
A general question, maybe to the OpenSSL team: Do the tests that are referenced here include the test case that a TLS record is rejected in case its integrity gets violated in transit? |
9af3d51
to
7e33e58
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Tests appear incomplete.
b16f2e8
to
6825013
Compare
@DDvO Thankyou for the review and pointing out incomplete test case. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
@mattcaswell could you please re-approve. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why the new empty test/recipes/30-test_evp_data/evpciph_null_hmac.txt
9f020b0
to
a5241b0
Compare
a5241b0
to
efa76a8
Compare
I removed the file. It was leftover from previous implementation. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reconfirmed
This pull request is ready to merge |
Merged to the master branch with slightly reworded commit message. Thank you for your contribution. Good work @rajeev-0! |
Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from #22903)
- add test vectors for tls1_3 integrity-only ciphers - recmethod_local.h: add new member for MAC - tls13_meth.c: add MAC only to tls 1.3 - tls13_enc.c: extend function to add MAC only - ssl_local.h: add ssl_cipher_get_evp_md_mac() - s3_lib.c: add the new ciphers and add #ifndef OPENSSL_NO_INTEGRITY_ONLY_CIPHERS - ssl_ciph.c : add ssl_cipher_get_evp_md_mac() and use it - tls13secretstest.c: add dummy test function - Configure: add integrity-only-ciphers option - document the new ciphers Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from #22903)
This implements the integrity-only ciphers for TLS v1.3 defined in RFC 9150 as requested in #18343.
Tests for the new cipher suites are implicitly added by
evp_libctx_test.c
.Fixes #18343
Checklist