Move KDFs to the provider.

Reviewed-by: Richard Levitte <[email protected]> (Merged from openssl#9662)
sevan · Sep 6, 2019 · 5eb43d3 · 5eb43d3
1 parent dc5bcb8
commit 5eb43d3
Show file tree

Hide file tree

Showing 8 changed files with 15 additions and 0 deletions.
diff --git a/providers/common/kdfs/build.info b/providers/common/kdfs/build.info
@@ -0,0 +1,13 @@
+$COMMON=tls1_prf.c hkdf.c scrypt.c pbkdf2.c sskdf.c
+
+LIBS=../../../libcrypto
+SOURCE[../../../libcrypto]=$COMMON sshkdf.c x942kdf.c
+INCLUDE[../../../libcrypto]=. ../../../crypto
+
+IF[{- !$disabled{fips} -}]
+  MODULES=../../fips
+  SOURCE[../../fips]=$COMMON
+  INCLUDE[../../fips]=. ../../../crypto
+ENDIF
+
+
diff --git a/crypto/kdf/hkdf.c → providers/common/kdfs/hkdf.c b/crypto/kdf/hkdf.c → providers/common/kdfs/hkdf.c
diff --git a/crypto/kdf/pbkdf2.c → providers/common/kdfs/pbkdf2.c b/crypto/kdf/pbkdf2.c → providers/common/kdfs/pbkdf2.c
diff --git a/crypto/kdf/scrypt.c → providers/common/kdfs/scrypt.c b/crypto/kdf/scrypt.c → providers/common/kdfs/scrypt.c
diff --git a/crypto/kdf/sshkdf.c → providers/common/kdfs/sshkdf.c b/crypto/kdf/sshkdf.c → providers/common/kdfs/sshkdf.c
diff --git a/crypto/kdf/sskdf.c → providers/common/kdfs/sskdf.c b/crypto/kdf/sskdf.c → providers/common/kdfs/sskdf.c
diff --git a/crypto/kdf/tls1_prf.c → providers/common/kdfs/tls1_prf.c b/crypto/kdf/tls1_prf.c → providers/common/kdfs/tls1_prf.c
@@ -125,6 +125,8 @@ static int kdf_tls1_prf_ctrl(EVP_KDF_IMPL *impl, int cmd, va_list args)
         impl->seclen = len;
         return 1;
 
+    /* TODO: This is only ever called from pkey_kdf and only as part of setting the TLS secret
+    consider merging the twe two?? */
     case EVP_KDF_CTRL_RESET_TLS_SEED:
         OPENSSL_cleanse(impl->seed, impl->seedlen);
         impl->seedlen = 0;

diff --git a/crypto/kdf/x942kdf.c → providers/common/kdfs/x942kdf.c b/crypto/kdf/x942kdf.c → providers/common/kdfs/x942kdf.c