cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-09-14 09:36:39 -04:00
Code Issues Packages Projects Releases Wiki Activity

Move working variables to ccm context structure

Browse Source 
Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
This commit is contained in:
Mateusz Starzyk 2021-06-22 16:24:28 +02:00
parent 78f6f05778
commit 89d469cdb4
2 changed files with 58 additions and 50 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
include/mbedtls/ccm.h
View File

@ -77,6 +77,16 @@ extern "C" {
typedef struct mbedtls_ccm_context typedef struct mbedtls_ccm_context
{ {
mbedtls_cipher_context_t MBEDTLS_PRIVATE(cipher_ctx); /*!< The cipher context used. */ mbedtls_cipher_context_t MBEDTLS_PRIVATE(cipher_ctx); /*!< The cipher context used. */
unsigned char MBEDTLS_PRIVATE(b)[16]; /*!< The B working buffer */
unsigned char MBEDTLS_PRIVATE(y)[16]; /*!< The Y working buffer */
unsigned char MBEDTLS_PRIVATE(ctr)[16]; /*!< The counter buffer */
unsigned char MBEDTLS_PRIVATE(q); /*!< The Q working value */
size_t MBEDTLS_PRIVATE(plaintext_len); /*!< The counter buffer */
int MBEDTLS_PRIVATE(mode); /*!< The operation to perform:
#MBEDTLS_CCM_ENCRYPT or
#MBEDTLS_CCM_DECRYPT or
#MBEDTLS_CCM_STAR_ENCRYPT or
#MBEDTLS_CCM_STAR_DECRYPT. */
} }
mbedtls_ccm_context; mbedtls_ccm_context;

78
library/ccm.c
View File

@ -119,9 +119,9 @@ void mbedtls_ccm_free( mbedtls_ccm_context *ctx )
*/ */
#define UPDATE_CBC_MAC \ #define UPDATE_CBC_MAC \
for( i = 0; i < 16; i++ ) \ for( i = 0; i < 16; i++ ) \
y[i] ^= b[i]; \ ctx->y[i] ^= ctx->b[i]; \
\ \
if( ( ret = mbedtls_cipher_update( &ctx->cipher_ctx, y, 16, y, &olen ) ) != 0 ) \ if( ( ret = mbedtls_cipher_update( &ctx->cipher_ctx, ctx->y, 16, ctx->y, &olen ) ) != 0 ) \
return( ret ); return( ret );
/* /*
@ -132,14 +132,14 @@ void mbedtls_ccm_free( mbedtls_ccm_context *ctx )
#define CTR_CRYPT( dst, src, len ) \ #define CTR_CRYPT( dst, src, len ) \
do \ do \
{ \ { \
if( ( ret = mbedtls_cipher_update( &ctx->cipher_ctx, ctr, \ if( ( ret = mbedtls_cipher_update( &ctx->cipher_ctx, ctx->ctr, \
16, b, &olen ) ) != 0 ) \ 16, ctx->b, &olen ) ) != 0 ) \
{ \ { \
return( ret ); \ return( ret ); \
} \ } \
\ \
for( i = 0; i < (len); i++ ) \ for( i = 0; i < (len); i++ ) \
(dst)[i] = (src)[i] ^ b[i]; \ (dst)[i] = (src)[i] ^ ctx->b[i]; \
} while( 0 ) } while( 0 )
/* /*
@ -153,14 +153,12 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
{ {
int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED; int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
unsigned char i; unsigned char i;
unsigned char q;
size_t len_left, olen; size_t len_left, olen;
unsigned char b[16];
unsigned char y[16];
unsigned char ctr[16];
const unsigned char *src; const unsigned char *src;
unsigned char *dst; unsigned char *dst;
ctx->mode = mode;
/* /*
* Check length requirements: SP800-38C A.1 * Check length requirements: SP800-38C A.1
* Additional requirement: a < 2^16 - 2^8 to simplify the code. * Additional requirement: a < 2^16 - 2^8 to simplify the code.
@ -178,7 +176,7 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
if( add_len >= 0xFF00 ) if( add_len >= 0xFF00 )
return( MBEDTLS_ERR_CCM_BAD_INPUT ); return( MBEDTLS_ERR_CCM_BAD_INPUT );
q = 16 - 1 - (unsigned char) iv_len; ctx->q = 16 - 1 - (unsigned char) iv_len;
/* /*
* First block B_0: * First block B_0:
@ -192,22 +190,22 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
* 5 .. 3 (t - 2) / 2 * 5 .. 3 (t - 2) / 2
* 2 .. 0 q - 1 * 2 .. 0 q - 1
*/ */
b[0] = 0; ctx->b[0] = 0;
b[0] |= ( add_len > 0 ) << 6; ctx->b[0] |= ( add_len > 0 ) << 6;
b[0] |= ( ( tag_len - 2 ) / 2 ) << 3; ctx->b[0] |= ( ( tag_len - 2 ) / 2 ) << 3;
b[0] |= q - 1; ctx->b[0] |= ctx->q - 1;
memcpy( b + 1, iv, iv_len ); memcpy( ctx->b + 1, iv, iv_len );
for( i = 0, len_left = length; i < q; i++, len_left >>= 8 ) for( i = 0, len_left = length; i < ctx->q; i++, len_left >>= 8 )
b[15-i] = (unsigned char)( len_left & 0xFF ); ctx->b[15-i] = (unsigned char)( len_left & 0xFF );
if( len_left > 0 ) if( len_left > 0 )
return( MBEDTLS_ERR_CCM_BAD_INPUT ); return( MBEDTLS_ERR_CCM_BAD_INPUT );
/* Start CBC-MAC with first block */ /* Start CBC-MAC with first block */
memset( y, 0, 16 ); memset( ctx->y, 0, 16 );
UPDATE_CBC_MAC; UPDATE_CBC_MAC;
/* /*
@ -220,12 +218,12 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
len_left = add_len; len_left = add_len;
src = add; src = add;
memset( b, 0, 16 ); memset( ctx->b, 0, 16 );
b[0] = (unsigned char)( ( add_len >> 8 ) & 0xFF ); ctx->b[0] = (unsigned char)( ( add_len >> 8 ) & 0xFF );
b[1] = (unsigned char)( ( add_len ) & 0xFF ); ctx->b[1] = (unsigned char)( ( add_len ) & 0xFF );
use_len = len_left < 16 - 2 ? len_left : 16 - 2; use_len = len_left < 16 - 2 ? len_left : 16 - 2;
memcpy( b + 2, src, use_len ); memcpy( ctx->b + 2, src, use_len );
len_left -= use_len; len_left -= use_len;
src += use_len; src += use_len;
@ -235,8 +233,8 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
{ {
use_len = len_left > 16 ? 16 : len_left; use_len = len_left > 16 ? 16 : len_left;
memset( b, 0, 16 ); memset( ctx->b, 0, 16 );
memcpy( b, src, use_len ); memcpy( ctx->b, src, use_len );
UPDATE_CBC_MAC; UPDATE_CBC_MAC;
len_left -= use_len; len_left -= use_len;
@ -254,10 +252,10 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
* 7 .. 3 0 * 7 .. 3 0
* 2 .. 0 q - 1 * 2 .. 0 q - 1
*/ */
ctr[0] = q - 1; ctx->ctr[0] = ctx->q - 1;
memcpy( ctr + 1, iv, iv_len ); memcpy( ctx->ctr + 1, iv, iv_len );
memset( ctr + 1 + iv_len, 0, q ); memset( ctx->ctr + 1 + iv_len, 0, ctx->q );
ctr[15] = 1; ctx->ctr[15] = 1;
/* /*
* Authenticate and {en,de}crypt the message. * Authenticate and {en,de}crypt the message.
@ -273,19 +271,19 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
{ {
size_t use_len = len_left > 16 ? 16 : len_left; size_t use_len = len_left > 16 ? 16 : len_left;
if( mode == CCM_ENCRYPT ) if( ctx->mode == CCM_ENCRYPT )
{ {
memset( b, 0, 16 ); memset( ctx->b, 0, 16 );
memcpy( b, src, use_len ); memcpy( ctx->b, src, use_len );
UPDATE_CBC_MAC; UPDATE_CBC_MAC;
} }
CTR_CRYPT( dst, src, use_len ); CTR_CRYPT( dst, src, use_len );
if( mode == CCM_DECRYPT ) if( ctx->mode == CCM_DECRYPT )
{ {
memset( b, 0, 16 ); memset( ctx->b, 0, 16 );
memcpy( b, dst, use_len ); memcpy( ctx->b, dst, use_len );
UPDATE_CBC_MAC; UPDATE_CBC_MAC;
} }
@ -297,19 +295,19 @@ static int ccm_auth_crypt( mbedtls_ccm_context *ctx, int mode, size_t length,
* Increment counter. * Increment counter.
* No need to check for overflow thanks to the length check above. * No need to check for overflow thanks to the length check above.
*/ */
for( i = 0; i < q; i++ ) for( i = 0; i < ctx->q; i++ )
if( ++ctr[15-i] != 0 ) if( ++(ctx->ctr)[15-i] != 0 )
break; break;
} }
/* /*
* Authentication: reset counter and crypt/mask internal tag * Authentication: reset counter and crypt/mask internal tag
*/ */
for( i = 0; i < q; i++ ) for( i = 0; i < ctx->q; i++ )
ctr[15-i] = 0; ctx->ctr[15-i] = 0;
CTR_CRYPT( y, y, 16 ); CTR_CRYPT( ctx->y, ctx->y, 16 );
memcpy( tag, y, tag_len ); memcpy( tag, ctx->y, tag_len );
return( 0 ); return( 0 );
} }