AuroraMiddleware/libtomcrypt
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge pull request #129 from libtom/fix/gcm_counter_reuse

Browse Source 
GCM counter incrementation isn't stopped at 2^32 blocks, which breaks GCM
This commit is contained in:
Steffen Jaeckel 2016-10-02 20:51:01 +02:00 committed by GitHub
commit f784793891
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/encauth/gcm/gcm_process.c
View File

@ -49,6 +49,11 @@ int gcm_process(gcm_state *gcm,
return err;
}
/* 0xFFFFFFFE0 = ((2^39)-256)/8 */
if (gcm->pttotlen / 8 + (ulong64)gcm->buflen + (ulong64)ptlen >= CONST64(0xFFFFFFFE0)) {
return CRYPT_INVALID_ARG;
}
/* in AAD mode? */
if (gcm->mode == LTC_GCM_MODE_AAD) {
/* let's process the AAD */