-
Leonid Baraz authored
It appears that crypto::EnsureOpenSSLInit needs to be called before any other OpenSSL function is called. This function is thread-safe, and OpenSSL will only ever be initialized once. Multiple sequential calls to EnsureOpenSSLInit are ignored by OpenSSL itself. Also, HKDF expansion added to produce a uniformly random symmetric key instead of using a shared secret directly. Bug: 1121075 Change-Id: I9b9be85f7082b0fc047da901ae54856d25b0bbf1 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2372898Reviewed-by:
Adam Langley <agl@chromium.org> Reviewed-by:
Zach Trudo <zatrudo@google.com> Commit-Queue: Leonid Baraz <lbaraz@chromium.org> Cr-Commit-Position: refs/heads/master@{#801181}
679cfd04
