kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add |EVP_rc2_cbc| and implement |EVP_CTRL_SET_RC2_KEY_BITS|.

Browse Source 
Add it to |EVP_get_cipherbynid|, along with |EVP_rc2_40_cbc| and
|EVP_aes_192_cbc|.

Change-Id: Iee7621a91262359d1650684652995884a6cef37a
Reviewed-on: https://boringssl-review.googlesource.com/5590
Reviewed-by: Adam Langley <agl@google.com>
This commit is contained in:
Matt Braithwaite 2015-08-04 14:44:53 -07:00 committed by Adam Langley
parent 7446a3b77f
commit f92930e30a
3 changed files with 34 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
crypto/cipher/cipher.c
View File

@ -68,12 +68,18 @@
const EVP_CIPHER *EVP_get_cipherbynid(int nid) { const EVP_CIPHER *EVP_get_cipherbynid(int nid) {
switch (nid) { switch (nid) {
case NID_rc2_cbc:
return EVP_rc2_cbc();
case NID_rc2_40_cbc:
return EVP_rc2_40_cbc();
case NID_des_ede3_cbc: case NID_des_ede3_cbc:
return EVP_des_ede3_cbc(); return EVP_des_ede3_cbc();
case NID_des_ede_cbc: case NID_des_ede_cbc:
return EVP_des_cbc(); return EVP_des_cbc();
case NID_aes_128_cbc: case NID_aes_128_cbc:
return EVP_aes_128_cbc(); return EVP_aes_128_cbc();
case NID_aes_192_cbc:
return EVP_aes_192_cbc();
case NID_aes_256_cbc: case NID_aes_256_cbc:
return EVP_aes_256_cbc(); return EVP_aes_256_cbc();
default: default:

27
crypto/cipher/e_rc2.c
View File

@ -395,13 +395,18 @@ static int rc2_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void *ptr) {
case EVP_CTRL_INIT: case EVP_CTRL_INIT:
key->key_bits = EVP_CIPHER_CTX_key_length(ctx) * 8; key->key_bits = EVP_CIPHER_CTX_key_length(ctx) * 8;
return 1; return 1;
case EVP_CTRL_SET_RC2_KEY_BITS:
/* Should be overridden by later call to |EVP_CTRL_INIT|, but
* people call it, so it may as well work. */
key->key_bits = arg;
return 1;
default: default:
return -1; return -1;
} }
} }
static const EVP_CIPHER rc2_40_cbc_cipher = { static const EVP_CIPHER rc2_40_cbc = {
NID_rc2_40_cbc, NID_rc2_40_cbc,
8 /* block size */, 8 /* block size */,
5 /* 40 bit */, 5 /* 40 bit */,
@ -416,5 +421,23 @@ static const EVP_CIPHER rc2_40_cbc_cipher = {
}; };
const EVP_CIPHER *EVP_rc2_40_cbc(void) { const EVP_CIPHER *EVP_rc2_40_cbc(void) {
return &rc2_40_cbc_cipher; return &rc2_40_cbc;
}
static const EVP_CIPHER rc2_cbc = {
NID_rc2_cbc,
8 /* block size */,
16 /* 128 bit */,
8 /* iv len */,
sizeof(EVP_RC2_KEY),
EVP_CIPH_CBC_MODE | EVP_CIPH_VARIABLE_LENGTH | EVP_CIPH_CTRL_INIT,
NULL /* app_data */,
rc2_init_key,
rc2_cbc_cipher,
NULL,
rc2_ctrl,
};
const EVP_CIPHER *EVP_rc2_cbc(void) {
return &rc2_cbc;
} }

3
include/openssl/cipher.h
View File

@ -102,6 +102,9 @@ OPENSSL_EXPORT const EVP_CIPHER *EVP_aes_192_gcm(void);
* ciphertext. */ * ciphertext. */
OPENSSL_EXPORT const EVP_CIPHER *EVP_enc_null(void); OPENSSL_EXPORT const EVP_CIPHER *EVP_enc_null(void);
/* EVP_rc2_cbc returns a cipher that implements 128-bit RC2 in CBC mode. */
OPENSSL_EXPORT const EVP_CIPHER *EVP_rc2_cbc(void);
/* EVP_rc2_40_cbc returns a cipher that implements 40-bit RC2 in CBC mode. This /* EVP_rc2_40_cbc returns a cipher that implements 40-bit RC2 in CBC mode. This
* is obviously very, very weak and is included only in order to read PKCS#12 * is obviously very, very weak and is included only in order to read PKCS#12
* files, which often encrypt the certificate chain using this cipher. It is * files, which often encrypt the certificate chain using this cipher. It is