~peter-pearse/ubuntu/natty/libgcrypt11/prop001

Viewing changes to debian/patches/20_HMAC-SHA-384.diff

Committer: Bazaar Package Importer
Author(s): Scott James Remnant
Date: 2008-11-11 16:33:22 UTC
Revision ID: james.westby@ubuntu.com-20081111163322-g8brj9yjqrj6gkob

Tags: 1.4.1-2ubuntu1

* Merge from debian unstable, remaining changes:
  - Add libgcrypt11-udeb for use by cryptsetup-udeb.
  - Add clean-la.mk, and add a symlink for the .la
  - Install to /lib.  LP: #139635

files added:
debian/patches/20_HMAC-SHA-384.diff

files modified:
debian/changelog

debian/control

Show diffs side-by-side

added added

removed removed

debian/patches/20_HMAC-SHA-384.diff

From pkg-gnutls-maint-bounces+ametzler=debian.org@lists.alioth.debian.org Wed Nov 5 20:40:25 2008

From: Werner Koch <wk@gnupg.org>

To: pkg-gnutls-maint@lists.alioth.debian.org

Date: Wed, 05 Nov 2008 20:38:27 +0100

Message-ID: <87tzamq7yk.fsf@wheatstone.g10code.de>

MIME-Version: 1.0

Content-Type: multipart/mixed;

boundary="=lynch-SHA-espionage-Comirex-asset-world-domination-tempest-M-14=Sund"

Subject: [Werner Koch] Important fix for HMAC-SHA-384/512

Status: RO

Content-Length: 2660

Lines: 89

--=lynch-SHA-espionage-Comirex-asset-world-domination-tempest-M-14=Sund

Content-Type: message/rfc822

Content-Disposition: inline

From: Werner Koch <wk@gnupg.org>

To: gcrypt-devel@gnupg.org

Subject: Important fix for HMAC-SHA-384/512

Organisation: g10 Code GmbH

OpenPGP: id=5B0358A2; url=finger:wk@g10code.com

Mail-Followup-To: gcrypt-devel@gnupg.org

Date: Wed, 05 Nov 2008 19:47:21 +0100

Gnus-Warning: This is a duplicate of message <87iqr2row6.fsf@wheatstone.g10code.de>

Message-ID: <87iqr2row6.fsf@wheatstone.g10code.de>

User-Agent: Gnus/5.110007 (No Gnus v0.7)

X-BeenThere: gcrypt-devel@gnupg.org

X-Sender-Host: lists.gnupg.org

Hi!

a bug has in found in the HMAC computation when using a key size of 64

to 128 bytes with SHA-384 or SHA-512. The result is a wrong HMAC value.

Given that such key seizes are not very common, it should not give any

real world problems but it needs to be fixed anyway.

The fix below is for libgcrypt 1.4.3 but it should apply to all 1.4

versions.

Salam-Shalom,

Werner

* Fixed HMAC for SHA-384 and SHA-512 with keys longer than 64 bytes.

--- libgcrypt-1.4.1/cipher/md.c.orig 2007-08-13 18:46:51.000000000 +0200

+++ libgcrypt-1.4.1/cipher/md.c 2008-11-08 10:14:27.000000000 +0100

@@ -791,7 +791,7 @@

if ( !algo )

return GPG_ERR_DIGEST_ALGO; /* i.e. no algo enabled */

- if ( keylen > 64 )

+ if ( keylen > hd->ctx->macpads_Bsize )

{

helpkey = gcry_malloc_secure ( md_digest_length( algo ) );

if ( !helpkey )

@@ -799,7 +799,7 @@

gcry_md_hash_buffer ( algo, helpkey, key, keylen );

key = helpkey;

keylen = md_digest_length( algo );

- assert ( keylen <= 64 );

+ assert ( keylen <= hd->ctx->macpads_Bsize );

}

memset ( hd->ctx->macpads, 0, 2*(hd->ctx->macpads_Bsize) );

Die Gedanken sind frei. Auschnahme regelt ein Bundeschgesetz.

_______________________________________________

Gcrypt-devel mailing list

Gcrypt-devel@gnupg.org

http://lists.gnupg.org/mailman/listinfo/gcrypt-devel

--=lynch-SHA-espionage-Comirex-asset-world-domination-tempest-M-14=Sund

Die Gedanken sind frei. Auschnahme regelt ein Bundeschgesetz.

--=lynch-SHA-espionage-Comirex-asset-world-domination-tempest-M-14=Sund

Content-Type: text/plain; charset="us-ascii"

MIME-Version: 1.0

Content-Transfer-Encoding: 7bit

Content-Disposition: inline

Pkg-gnutls-maint mailing list

Pkg-gnutls-maint@lists.alioth.debian.org

http://lists.alioth.debian.org/mailman/listinfo/pkg-gnutls-maint

100

--=lynch-SHA-espionage-Comirex-asset-world-domination-tempest-M-14=Sund--

101

102

103

Older »