Skip to content
Snippets Groups Projects
Commit 0753a9cd authored by Henrik (Grubba) Grubbström's avatar Henrik (Grubba) Grubbström
Browse files

SSL.session: Support AEAD ciphers without IV. 

Some upcoming AEAD suites use an unsalted nonce/iv. Make sure
not not to fail due to adding zeroes and strings.
parent 3f1bddc5
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
lib/modules/SSL.pmod/session.pike
+ 22
26
View file @ 0753a9cd
...@@ -626,20 +626,18 @@ array(.state) new_server_states(object/*(connection)*/ con, ...@@ -626,20 +626,18 @@ array(.state) new_server_states(object/*(connection)*/ con,
read_state->crypt = Crypto.Buffer(read_state->crypt); read_state->crypt = Crypto.Buffer(read_state->crypt);
write_state->crypt = Crypto.Buffer(write_state->crypt); write_state->crypt = Crypto.Buffer(write_state->crypt);
} }
if (cipher_spec->iv_size) if (cipher_spec->cipher_type == CIPHER_aead) {
{ // AEAD algorithms use other iv methods.
if (cipher_spec->cipher_type != CIPHER_aead) { read_state->tls_iv = write_state->tls_iv = 0;
read_state->salt = keys[4] || "";
write_state->salt = keys[5] || "";
} else if (cipher_spec->iv_size) {
if (version >= PROTOCOL_TLS_1_1) { if (version >= PROTOCOL_TLS_1_1) {
// TLS 1.1 and later have an explicit IV. // TLS 1.1 and later have an explicit IV.
read_state->tls_iv = write_state->tls_iv = cipher_spec->iv_size; read_state->tls_iv = write_state->tls_iv = cipher_spec->iv_size;
} }
read_state->crypt->set_iv(keys[4]); read_state->crypt->set_iv(keys[4]);
write_state->crypt->set_iv(keys[5]); write_state->crypt->set_iv(keys[5]);
} else {
read_state->tls_iv = write_state->tls_iv = 0;
read_state->salt = keys[4];
write_state->salt = keys[5];
}
} }
} }
...@@ -702,20 +700,18 @@ array(.state) new_client_states(object/*(connection)*/ con, ...@@ -702,20 +700,18 @@ array(.state) new_client_states(object/*(connection)*/ con,
read_state->crypt = Crypto.Buffer(read_state->crypt); read_state->crypt = Crypto.Buffer(read_state->crypt);
write_state->crypt = Crypto.Buffer(write_state->crypt); write_state->crypt = Crypto.Buffer(write_state->crypt);
} }
if (cipher_spec->iv_size) if (cipher_spec->cipher_type == CIPHER_aead) {
{ // AEAD algorithms use other iv methods.
if (cipher_spec->cipher_type != CIPHER_aead) { read_state->tls_iv = write_state->tls_iv = 0;
read_state->salt = keys[5] || "";
write_state->salt = keys[4] || "";
} else if (cipher_spec->iv_size) {
if (version >= PROTOCOL_TLS_1_1) { if (version >= PROTOCOL_TLS_1_1) {
// TLS 1.1 and later have an explicit IV. // TLS 1.1 and later have an explicit IV.
read_state->tls_iv = write_state->tls_iv = cipher_spec->iv_size; read_state->tls_iv = write_state->tls_iv = cipher_spec->iv_size;
} }
read_state->crypt->set_iv(keys[5]); read_state->crypt->set_iv(keys[5]);
write_state->crypt->set_iv(keys[4]); write_state->crypt->set_iv(keys[4]);
} else {
read_state->tls_iv = write_state->tls_iv = 0;
read_state->salt = keys[5];
write_state->salt = keys[4];
}
} }
} }
return ({ read_state, write_state }); return ({ read_state, write_state });
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment