Page MenuHomeFreeBSD
Differential D33315

GMAC: Reset initial hash value and counter in AES_GMAC_Reinit().
ClosedPublic
Actions

Authored by jhb on Dec 7 2021, 12:35 AM.
Tags
None
Referenced Files
F108504061: D33315.diff
Sat, Jan 25, 5:03 PM
Unknown Object (File)
Sun, Jan 12, 1:27 PM
Unknown Object (File)
Sun, Jan 5, 11:40 PM
Unknown Object (File)
Mon, Dec 30, 10:07 AM
Unknown Object (File)
Dec 14 2024, 11:03 AM
Unknown Object (File)
Dec 14 2024, 7:47 AM
Unknown Object (File)
Dec 10 2024, 9:36 AM
Unknown Object (File)
Dec 2 2024, 7:11 AM
View All 66 Files
Subscribers
imp
jmg

Details

Reviewers
markj
Commits
rGe718aa62a3eb: GMAC: Reset initial hash value and counter in AES_GMAC_Reinit().
rG356c922f74bf: GMAC: Reset initial hash value and counter in AES_GMAC_Reinit().
Summary

Previously, these values were only cleared in AES_GMAC_Init(), so a
second set of operations could reuse the final hash as the initial
hash. Currently this bug does not trigger in cryptosoft as existing
GMAC and GCM operations always use an on-stack auth context
initialized from a template context.

Sponsored by: The FreeBSD Foundation

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
No Lint Coverage
Unit
No Test Coverage
Build Status
Buildable 43206
Build 40094: arc lint + arc unit

Revision Contents
Changeset List

PathSize
sys/
opencrypto/
6 lines

Diff 99629

View Options

sys/opencrypto/gmac.c

Loading...