Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix incorrect default keysize for CAST ofb and cfb modes. #11707

Closed
wants to merge 1 commit into from
Closed

Fix incorrect default keysize for CAST ofb and cfb modes. #11707

wants to merge 1 commit into from

Conversation

slontis
Copy link
Member

@slontis slontis commented May 2, 2020

Fixes #11459

It was incorrectly using 8 bytes instead of 16 as the default.
This was verified by expanding the macros used in e_cast.c.
The issue occurs if EVP_CIPHER_CTX_set_key_length() is not called.
evp_test.c hides this issue as it always calls EVP_CIPHER_CTX_set_key_length() before
using EVP_CipherInit_ex(...., key, ..).

Checklist
  • documentation is added or updated
  • tests are added or updated

@slontis
Fix incorrect default keysize for CAST ofb and cfb modes.
2a39204 
Fixes openssl#11459

It was incorrectly using 8 bytes instead of 16 as the default.
This was verified by expanding the macros used in e_cast.c.
The issue occurs if EVP_CIPHER_CTX_set_key_length() is not called.
evp_test.c hides this issue as it always calls EVP_CIPHER_CTX_set_key_length() before
using EVP_CipherInit_ex(...., key, ..).
@slontis slontis added approval: review pending This pull request needs review by a committer branch: master Merge to master branch labels May 2, 2020
@levitte levitte added approval: done This pull request has the required number of approvals and removed approval: review pending This pull request needs review by a committer labels May 2, 2020
@openssl-machine
Copy link
Collaborator

24 hours has passed since 'approval: done' was set, but this PR has failing CI tests. Once the tests pass it will get moved to 'approval: ready to merge' automatically, alternatively please review and set the label manually.

@mattcaswell
Copy link
Member

Travis failure is not relevant.

@mattcaswell mattcaswell added approval: ready to merge The 24 hour grace period has passed, ready to merge and removed approval: done This pull request has the required number of approvals labels May 4, 2020
openssl-machine pushed a commit that referenced this pull request May 4, 2020
@slontis
Fix incorrect default keysize for CAST ofb and cfb modes.
95cf644 
Fixes #11459

It was incorrectly using 8 bytes instead of 16 as the default.
This was verified by expanding the macros used in e_cast.c.
The issue occurs if EVP_CIPHER_CTX_set_key_length() is not called.
evp_test.c hides this issue as it always calls EVP_CIPHER_CTX_set_key_length() before
using EVP_CipherInit_ex(...., key, ..).

Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from #11707)
@slontis
Copy link
Member Author

slontis commented May 4, 2020

Thanks. Merged to master.

@slontis slontis closed this May 4, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@levitte levitte levitte approved these changes

Assignees
No one assigned
Labels
approval: ready to merge The 24 hour grace period has passed, ready to merge branch: master Merge to master branch
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

EVP_cast5_cfb master/1.1.1.f encryption output discrepancy
4 participants
@slontis @openssl-machine @mattcaswell @levitte