clean up AES code to use a structure instead of a key array
(_krb5_AES_string_to_default_iterator): set to 4096 as described in aes draft -04 (derive_key): always remove the key->schedule since its will contain the wrong (parent key) info git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12382 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
@@ -619,7 +619,7 @@ _krb5_PKCS5_PBKDF2(krb5_context context, krb5_cksumtype cktype,
|
|||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
int _krb5_AES_string_to_default_iterator = 45056;
|
int _krb5_AES_string_to_default_iterator = 4096;
|
||||||
|
|
||||||
static krb5_error_code
|
static krb5_error_code
|
||||||
AES_string_to_key(krb5_context context,
|
AES_string_to_key(krb5_context context,
|
||||||
@@ -668,14 +668,20 @@ AES_string_to_key(krb5_context context,
|
|||||||
return ret;
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
struct krb5_aes_schedule {
|
||||||
|
AES_KEY ekey;
|
||||||
|
AES_KEY dkey;
|
||||||
|
};
|
||||||
|
|
||||||
static void
|
static void
|
||||||
AES_schedule(krb5_context context, struct key_data *kd)
|
AES_schedule(krb5_context context, struct key_data *kd)
|
||||||
{
|
{
|
||||||
AES_KEY *key = kd->schedule->data;
|
struct krb5_aes_schedule *key = kd->schedule->data;
|
||||||
int bits = kd->key->keyvalue.length * 8;
|
int bits = kd->key->keyvalue.length * 8;
|
||||||
|
|
||||||
AES_set_encrypt_key(kd->key->keyvalue.data, bits, &key[0]);
|
memset(key, 0, sizeof(*key));
|
||||||
AES_set_decrypt_key(kd->key->keyvalue.data, bits, &key[1]);
|
AES_set_encrypt_key(kd->key->keyvalue.data, bits, &key->ekey);
|
||||||
|
AES_set_decrypt_key(kd->key->keyvalue.data, bits, &key->dkey);
|
||||||
}
|
}
|
||||||
|
|
||||||
/*
|
/*
|
||||||
@@ -739,7 +745,7 @@ struct key_type keytype_aes128 = {
|
|||||||
"aes-128",
|
"aes-128",
|
||||||
128,
|
128,
|
||||||
16,
|
16,
|
||||||
sizeof(AES_KEY) * 2,
|
sizeof(struct krb5_aes_schedule),
|
||||||
NULL,
|
NULL,
|
||||||
AES_schedule,
|
AES_schedule,
|
||||||
AES_salt
|
AES_salt
|
||||||
@@ -750,7 +756,7 @@ struct key_type keytype_aes256 = {
|
|||||||
"aes-256",
|
"aes-256",
|
||||||
256,
|
256,
|
||||||
32,
|
32,
|
||||||
sizeof(AES_KEY) * 2,
|
sizeof(struct krb5_aes_schedule),
|
||||||
NULL,
|
NULL,
|
||||||
AES_schedule,
|
AES_schedule,
|
||||||
AES_salt
|
AES_salt
|
||||||
@@ -2047,7 +2053,7 @@ DES_PCBC_encrypt_key_ivec(krb5_context context,
|
|||||||
void
|
void
|
||||||
_krb5_aes_cts_encrypt(const unsigned char *in, unsigned char *out,
|
_krb5_aes_cts_encrypt(const unsigned char *in, unsigned char *out,
|
||||||
size_t len, const void *aes_key,
|
size_t len, const void *aes_key,
|
||||||
unsigned char *ivec, const int enc)
|
unsigned char *ivec, const int encrypt)
|
||||||
{
|
{
|
||||||
unsigned char tmp[AES_BLOCK_SIZE];
|
unsigned char tmp[AES_BLOCK_SIZE];
|
||||||
const AES_KEY *key = aes_key; /* XXX remove this when we always have AES */
|
const AES_KEY *key = aes_key; /* XXX remove this when we always have AES */
|
||||||
@@ -2058,7 +2064,7 @@ _krb5_aes_cts_encrypt(const unsigned char *in, unsigned char *out,
|
|||||||
* then at least one blocksize.
|
* then at least one blocksize.
|
||||||
*/
|
*/
|
||||||
|
|
||||||
if (enc == AES_ENCRYPT) {
|
if (encrypt) {
|
||||||
|
|
||||||
while(len > AES_BLOCK_SIZE) {
|
while(len > AES_BLOCK_SIZE) {
|
||||||
for (i = 0; i < AES_BLOCK_SIZE; i++)
|
for (i = 0; i < AES_BLOCK_SIZE; i++)
|
||||||
@@ -2119,13 +2125,14 @@ AES_CTS_encrypt(krb5_context context,
|
|||||||
int usage,
|
int usage,
|
||||||
void *ivec)
|
void *ivec)
|
||||||
{
|
{
|
||||||
AES_KEY *k = key->schedule->data;
|
struct krb5_aes_schedule *aeskey = key->schedule->data;
|
||||||
char local_ivec[AES_BLOCK_SIZE];
|
char local_ivec[AES_BLOCK_SIZE];
|
||||||
|
AES_KEY *k;
|
||||||
|
|
||||||
if (encrypt)
|
if (encrypt)
|
||||||
k = &k[0];
|
k = &aeskey->ekey;
|
||||||
else
|
else
|
||||||
k = &k[1];
|
k = &aeskey->dkey;
|
||||||
|
|
||||||
if (len < AES_BLOCK_SIZE)
|
if (len < AES_BLOCK_SIZE)
|
||||||
abort();
|
abort();
|
||||||
@@ -2456,7 +2463,7 @@ static struct encryption_type enctype_aes128_cts_hmac_sha1 = {
|
|||||||
&keytype_aes128,
|
&keytype_aes128,
|
||||||
&checksum_sha1,
|
&checksum_sha1,
|
||||||
&checksum_hmac_sha1_aes128,
|
&checksum_hmac_sha1_aes128,
|
||||||
0,
|
F_DERIVED,
|
||||||
AES_CTS_encrypt,
|
AES_CTS_encrypt,
|
||||||
};
|
};
|
||||||
static struct encryption_type enctype_aes256_cts_hmac_sha1 = {
|
static struct encryption_type enctype_aes256_cts_hmac_sha1 = {
|
||||||
@@ -2468,7 +2475,7 @@ static struct encryption_type enctype_aes256_cts_hmac_sha1 = {
|
|||||||
&keytype_aes256,
|
&keytype_aes256,
|
||||||
&checksum_sha1,
|
&checksum_sha1,
|
||||||
&checksum_hmac_sha1_aes256,
|
&checksum_hmac_sha1_aes256,
|
||||||
0,
|
F_DERIVED,
|
||||||
AES_CTS_encrypt,
|
AES_CTS_encrypt,
|
||||||
};
|
};
|
||||||
#endif /* ENABLE_AES */
|
#endif /* ENABLE_AES */
|
||||||
@@ -3363,6 +3370,10 @@ derive_key(krb5_context context,
|
|||||||
ret = KRB5_CRYPTO_INTERNAL;
|
ret = KRB5_CRYPTO_INTERNAL;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
if (key->schedule) {
|
||||||
|
krb5_free_data(context, key->schedule);
|
||||||
|
key->schedule = NULL;
|
||||||
|
}
|
||||||
memset(k, 0, nblocks * et->blocksize);
|
memset(k, 0, nblocks * et->blocksize);
|
||||||
free(k);
|
free(k);
|
||||||
return ret;
|
return ret;
|
||||||
|
|||||||
Reference in New Issue
Block a user