Skip to content

Do not set the salt or info if they are NULL for OpenSSL HKDF. #114864

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Apr 21, 2025
Merged

Do not set the salt or info if they are NULL for OpenSSL HKDF. #114864

merged 3 commits into from
Apr 21, 2025

Conversation

vcsjones
Copy link
Member

@vcsjones vcsjones commented Apr 21, 2025
edited
Loading

OpenSSL 3.x has introduced a change that stops allowing HKDF's salt to be set to NULL in openssl/openssl#27305.

This breaks our HKDF implementation which sets a NULL salt and info, depending on the mode.

This broke plenty of existing tests with failures like:

Error Message:
   Interop+Crypto+OpenSslCryptographicException : error:078C0102:common libcrypto routines::passed a null parameter
  Stack Trace:
     at Interop.Crypto.HkdfExpand(SafeEvpKdfHandle kdf, ReadOnlySpan`1 prk, String algorithm, ReadOnlySpan`1 info, Span`1 destination) in /__w/runtime-ci/runtime-ci/runtime/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.EVP.Kdf.cs:line 113
   at System.Security.Cryptography.HKDF.Expand(HashAlgorithmName hashAlgorithmName, Int32 hashLength, ReadOnlySpan`1 prk, Span`1 output, ReadOnlySpan`1 info) in /__w/runtime-ci/runtime-ci/runtime/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HKDF.OpenSsl.cs:line 44

In this case, we no longer set the info or salt if they are NULL, and tests are green again.

This was found in a nightly run against OpenSSL 3.5. https://github.com/vcsjones/runtime-ci/actions/runs/14574054040/job/40876380622

Fixes vcsjones/runtime-ci#5

@Copilot Copilot AI review requested due to automatic review settings April 21, 2025 14:39
@ghost ghost added the area-System.Security label Apr 21, 2025
@vcsjones vcsjones requested a review from bartonjs April 21, 2025 14:40
Copilot
Copilot AI reviewed Apr 21, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR updates the HKDF implementation to no longer set a NULL salt or info parameter in order to comply with OpenSSL 3.x behavior.

  • Conditionally includes the salt and info parameters only when they are non-null and have a non-zero length.
  • Updates the construction of the OSSL_PARAM array accordingly.

@vcsjones vcsjones added this to the 10.0.0 milestone Apr 21, 2025
@dotnet-policy-service Dotnet Policy Service
Copy link
Contributor

Tagging subscribers to this area: @dotnet/area-system-security, @bartonjs, @vcsjones
See info in area-owners.md if you want to be subscribed.

@vcsjones
Copy link
Member Author

Green run from edge CI: https://github.com/vcsjones/runtime-ci/actions/runs/14575724379/job/40881320369

This was referenced Apr 21, 2025
Open
Open
Closed
@vcsjones vcsjones merged commit fd33f03 into dotnet:main Apr 21, 2025
92 of 98 checks passed
@vcsjones vcsjones deleted the hkdf-no-set-null branch April 21, 2025 21:40
@vcsjones
Copy link
Member Author

/backport to release/9.0-staging

@github-actions GitHub Actions
Copy link
Contributor

Started backporting to release/9.0-staging: https://github.com/dotnet/runtime/actions/runs/14581934220

@github-actions github-actions bot mentioned this pull request Apr 21, 2025
Merged
5 tasks
This was referenced Apr 21, 2025
Open
Open
@github-actions github-actions bot locked and limited conversation to collaborators May 22, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

Copilot code review Copilot Copilot left review comments

@bartonjs bartonjs bartonjs approved these changes

Assignees

@vcsjones vcsjones

Labels

area-System.Security

Projects

None yet

Milestone

10.0.0

Development

Successfully merging this pull request may close these issues.

Build Failure for run 14574054040

2 participants

@vcsjones @bartonjs