Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cryptography / 9fa6fb273559d29d471df80942ce066e6e40dfde
commit9fa6fb273559d29d471df80942ce066e6e40dfde[log] [tgz]
authorPaul Kehrer <paul.l.kehrer@gmail.com>Sat Dec 02 00:41:25 2017 +0800
committerAlex Gaynor <alex.gaynor@gmail.com>Fri Dec 01 11:41:25 2017 -0500
tree7108f14bfee1aebafdade8c8282b4f0cee32013d
parent4662d44fd3db5078a1882100653a3dbab3e3c7a1 [diff]
Pass the right length of null bytes when no salt is provided to HKDF (#4036)

This bug looks bad but ends up being benign because HMAC is specified to
pad null bytes if a key is too short. So we passed too few bytes and
then OpenSSL obligingly padded it out to the correct length. However, we
should still do the right thing obviously.
1 file changed
tree: 7108f14bfee1aebafdade8c8282b4f0cee32013d
  1. .github/
  2. .jenkins/
  3. .travis/
  4. docs/
  5. src/
  6. tests/
  7. vectors/
  8. .coveragerc
  9. .gitignore
  10. .mention-bot
  11. .travis.yml
  12. AUTHORS.rst
  13. CHANGELOG.rst
  14. codecov.yml
  15. CONTRIBUTING.rst
  16. dev-requirements.txt
  17. Jenkinsfile
  18. LICENSE
  19. LICENSE.APACHE
  20. LICENSE.BSD
  21. LICENSE.PSF
  22. MANIFEST.in
  23. README.rst
  24. release.py
  25. setup.py
  26. tox.ini