From e1abc7e78cff88b0fb66952c317cfe602711a81d Mon Sep 17 00:00:00 2001
From: Rajeev Ranjan <ranjan.rajeev@siemens.com>
Date: Wed, 6 Dec 2023 10:54:07 +0100
Subject: [PATCH] fixup! tls13_enc: using SN instead of nid

---
 ssl/tls13_enc.c | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/ssl/tls13_enc.c b/ssl/tls13_enc.c
index b564a570fa5c9..fa88de0584ca0 100644
--- a/ssl/tls13_enc.c
+++ b/ssl/tls13_enc.c
@@ -391,9 +391,17 @@ static int derive_secret_key_and_iv(SSL_CONNECTION *s, const EVP_MD *md,
             *taglen = EVP_GCM_TLS_TAG_LEN;
         } else if (strcmp(EVP_CIPHER_get0_name(ciph), SN_enull_hmac_sha256)
                    == 0) {
+            /*
+             * SN_enull_hmac_sha256 must be consistent
+             * with PROV_NAMES_ENULL_HMAC_SHA256
+             */
             *taglen = EVP_HMACSHA256_TLS_TAG_LEN;
         } else if (strcmp(EVP_CIPHER_get0_name(ciph), SN_enull_hmac_sha384)
                    == 0) {
+            /*
+             * SN_enull_hmac_sha384 must be consistent
+             * with PROV_NAMES_ENULL_HMAC_SHA384
+             */
             *taglen = EVP_HMACSHA384_TLS_TAG_LEN;
         } else {
             /* CHACHA20P-POLY1305 */