search

aws / aws-lc

AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. It іs based on code from the Google BoringSSL project and the OpenSSL project.
Other
258 stars 105 forks source link

(FIPS Backport) Add EVP_md_null and SSL_set_ciphersuites (#1637) #1653

Closed WillChilds-Klein closed 1 week ago

WillChilds-Klein commented 1 week ago

Issues:

Resolves #ISSUE-NUMBER1 Addresses #ISSUE-NUMBER2

Description of changes:

Backport of commit to main.

NOTE: All changes in this commit are outside of the FIPS module boundary and as such do not affect the module hash.

This commit adds two functions used by OpenLDAP 2.5.17+. Both functions are very straightforward.

From OpenSSL's [docs][1] for EVP_md_null:

A "null" message digest that does nothing: i.e. the hash it returns is of zero length.

From OpenSSL's [docs][2] for SSL_set_ciphersuites:

SSL_set_ciphersuites() is the same as SSL_CTX_set_ciphersuites() except it configures the ciphersuites for ssl.

[1]: https://www.openssl.org/docs/man1.1.1/man3/EVP_md_null.html [2]: https://www.openssl.org/docs/man1.1.1/man3/SSL_set_ciphersuites.html

Call-outs:

Testing:

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license and the ISC license.