We recently upgraded openssl 3.1.8 + fips provider (3.1.2) to openssl 3.5.5 + fips 3.1.2
bash[107328]: panic: tls: HKDF-Extract invocation failed unexpectedly: EVP_PKEY_CTX
bash[107328]: openssl error(s):
bash[107328]: error:078C0102:common libcrypto routines::passed a null parameter
bash[107328]: #011crypto/params.c:1355
bash[107328]: goroutine 3912 [running]:
bash[107328]: crypto/tls.(*cipherSuiteTLS13).extract(0x55f0dd89ad60?, {0x0?, 0xc001
bash[107328]: #011crypto/tls/key_schedule.go:95 +0x193
bash[107328]: crypto/tls.(*serverHandshakeStateTLS13).sendServerParameters(0xc0008b
bash[107328]: #011crypto/tls/handshake_server_tls13.go:622 +0x145
bash[107328]: crypto/tls.(*serverHandshakeStateTLS13).handshake(0xc0008b7ab0)
bash[107328]: #011crypto/tls/handshake_server_tls13.go:60 +0x72
bash[107328]: crypto/tls.(*Conn).serverHandshake(0xc000742e08, {0x55f0dc423530, 0xc
bash[107328]: #011crypto/tls/handshake_server.go:53 +0x16a
bash[107328]: crypto/tls.(*Conn).handshakeContext(0xc000742e08, {0x55f0dc423488, 0x
bash[107328]: #011crypto/tls/conn.go:1553 +0x3cb
bash[107328]: crypto/tls.(*Conn).HandshakeContext(...)
bash[107328]: #011crypto/tls/conn.go:1493
bash[107328]: crypto/tls.(*Conn).Handshake(...)
bash[107328]: #011crypto/tls/conn.go:1477
bash[107328]: crypto/tls.(*Conn).Read(0xc000742e08, {0xc00154e000, 0x4000, 0x7f215b
bash[107328]: #011crypto/tls/conn.go:1357 +0x53
We recently upgraded openssl 3.1.8 + fips provider (3.1.2) to openssl 3.5.5 + fips 3.1.2
Getting panic:
I think OpenSSL 3.5.5 does have this comment addressed:
#205 (comment)