Home Esplora Aiuto
Registrati Accedi
XCAppCollection
/
CryptoSwift
2
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Sfoglia il codice sorgente

Fixes incremental updates with AES-CTR. Backport 057ec9a. Fixes #287.

Marcin Krzyżanowski 9 anni fa
parent
2a31fbb2cf
commit
b4f932cf79
3 ha cambiato i file con 30 aggiunte e 12 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 25 0
      CryptoSwiftTests/AESTests.swift
  2. 4 5
      Sources/CryptoSwift/AES.swift
  3. 1 7
      Sources/CryptoSwift/BlockMode/CTR.swift

+ 25 - 0
CryptoSwiftTests/AESTests.swift
Vedi File 

@@ -268,6 +268,31 @@ final class AESTests: XCTestCase {
 
             self.stopMeasuring()
 
         })
 
     }
 
+    
+    // https://github.com/krzyzanowskim/CryptoSwift/pull/289
 
+    func testAES_encrypt_ctr_irregular_length_incremental_update() {
 
+        let key:Array<UInt8> = [0x2b,0x7e,0x15,0x16,0x28,0xae,0xd2,0xa6,0xab,0xf7,0x15,0x88,0x09,0xcf,0x4f,0x3c];
 
+        let iv:Array<UInt8> = [0xf0,0xf1,0xf2,0xf3,0xf4,0xf5,0xf6,0xf7,0xf8,0xf9,0xfa,0xfb,0xfc,0xfd,0xfe,0xff]
 
+        let plaintext:Array<UInt8> = [0x6b,0xc1,0xbe,0xe2,0x2e,0x40,0x9f,0x96,0xe9,0x3d,0x7e,0x11,0x73,0x93,0x17,0x2a,0x01,0x6b,0xc1,0xbe,0xe2,0x2e,0x40,0x9f,0x96,0xe9,0x3d,0x7e,0x11,0x73,0x93,0x17,0x2a,0x01]
 
+        let expected:Array<UInt8> = [0x87,0x4d,0x61,0x91,0xb6,0x20,0xe3,0x26,0x1b,0xef,0x68,0x64,0x99,0xd,0xb6,0xce,0x37,0x40,0xbd,0x82,0x85,0x5d,0x11,0xfc,0x8e,0x49,0x4a,0xa9,0xed,0x23,0xe0,0xb9,0x40,0x2d]
 
+
 
+        let aes = try! AES(key: key, iv:iv, blockMode: .CTR, padding: NoPadding())
 
+        var encryptor = aes.makeEncryptor()
 
+        var encrypted = Array<UInt8>()
 
+        encrypted += try! encryptor.update(withBytes: Array(plaintext[0..<5]))
 
+        encrypted += try! encryptor.update(withBytes: Array(plaintext[5..<15]))
 
+        encrypted += try! encryptor.update(withBytes: Array(plaintext[15..<plaintext.count]))
 
+        encrypted += try! encryptor.finish()
 
+        XCTAssertEqual(encrypted, expected, "encryption failed")
 
+        
+        var decryptor = aes.makeDecryptor()
 
+        var decrypted = Array<UInt8>()
 
+        decrypted += try! decryptor.update(withBytes: Array(expected[0..<5]))
 
+        decrypted += try! decryptor.update(withBytes: Array(expected[5..<15]))
 
+        decrypted += try! decryptor.update(withBytes: Array(expected[15..<plaintext.count]))
 
+        decrypted += try! decryptor.finish()
 
+        XCTAssertEqual(decrypted, plaintext, "decryption failed")
 
+    }
 
 
     func testAESWithWrongKey() {
 
         let key:Array<UInt8> = [0x2b,0x7e,0x15,0x16,0x28,0xae,0xd2,0xa6,0xab,0xf7,0x15,0x88,0x09,0xcf,0x4f,0x3c];

+ 4 - 5
Sources/CryptoSwift/AES.swift
Vedi File 

@@ -406,15 +406,14 @@ extension AES {
 
         mutating public func update(withBytes bytes:Array<UInt8>, isLast: Bool = false) throws -> Array<UInt8> {
 
             self.accumulated += bytes
 
 
-            if (isLast) {
 
+            if isLast {
 
                 self.accumulated = padding.add(self.accumulated, blockSize: AES.blockSize)
 
             }
 
 
-            //CTR does not require full block therefore work with anything
 
             var encrypted = Array<UInt8>()
 
             encrypted.reserveCapacity(self.accumulated.count)
 
             for chunk in self.accumulated.chunks(AES.blockSize) {
 
-                if (!self.paddingRequired || self.accumulated.count >= AES.blockSize) {
 
+                if (isLast || self.accumulated.count >= AES.blockSize) {
 
                     encrypted += worker.encrypt(chunk)
 
                     self.accumulated.removeFirst(chunk.count)
 
                 }
 
@@ -452,13 +451,13 @@ extension AES {
 
             var plaintext = Array<UInt8>()
 
             plaintext.reserveCapacity(self.accumulated.count)
 
             for chunk in self.accumulated.chunks(AES.blockSize) {
 
-                if (!self.paddingRequired || self.accumulated.count >= AES.blockSize) {
 
+                if (isLast || self.accumulated.count >= AES.blockSize) {
 
                     plaintext += worker.decrypt(chunk)
 
                     self.accumulated.removeFirst(chunk.count)
 
                 }
 
             }
 
 
-            if (isLast) {
 
+            if isLast {
 
                 plaintext = padding.remove(plaintext, blockSize: AES.blockSize)
 
             }

+ 1 - 7
Sources/CryptoSwift/BlockMode/CTR.swift
Vedi File 

@@ -32,13 +32,7 @@ struct CTRModeWorker: BlockModeWorker {
 
     }
 
 
     mutating func decrypt(ciphertext: Array<UInt8>) -> Array<UInt8> {
 
-        let nonce = buildNonce(iv, counter: UInt64(counter))
 
-        counter = counter + 1
 
-
 
-        guard let plaintext = cipherOperation(block: nonce) else {
 
-            return ciphertext
 
-        }
 
-        return xor(plaintext, ciphertext)
 
+        return encrypt(ciphertext)
 
     }
 
 }