Stowage/go
2
0
Fork 0
mirror of https://github.com/golang/go.git synced 2025-12-08 06:10:04 +00:00
Code Issues Projects Releases Packages Wiki Activity

[dev.boringcrypto] crypto/aes: implement TLS-specific AES-GCM mode from BoringCrypto

Browse source 
Change-Id: I8407310e7d00eafe9208879228dbf4ac3d26a907
Reviewed-on: https://go-review.googlesource.com/55477
Run-TryBot: Russ Cox <rsc@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
Reviewed-by: Adam Langley <agl@golang.org>
This commit is contained in:
Russ Cox 2017-08-03 11:59:56 -04:00
parent 8d05ec9e58
commit 335a0f87bf
1 changed files with 22 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

25
src/crypto/internal/boring/aes.go
View file

@ -36,7 +36,10 @@ type extraModes interface {
NewCBCEncrypter(iv []byte) cipher.BlockMode NewCBCEncrypter(iv []byte) cipher.BlockMode
NewCBCDecrypter(iv []byte) cipher.BlockMode NewCBCDecrypter(iv []byte) cipher.BlockMode
NewCTR(iv []byte) cipher.Stream NewCTR(iv []byte) cipher.Stream
NewGCM(size int) (cipher.AEAD, error) NewGCM(nonceSize int) (cipher.AEAD, error)
// Invented for BoringCrypto.
NewGCMTLS() (cipher.AEAD, error)
} }
var _ extraModes = (*aesCipher)(nil) var _ extraModes = (*aesCipher)(nil)
@ -172,6 +175,14 @@ type noGCM struct {
} }
func (c *aesCipher) NewGCM(nonceSize int) (cipher.AEAD, error) { func (c *aesCipher) NewGCM(nonceSize int) (cipher.AEAD, error) {
return c.newGCM(nonceSize, false)
}
func (c *aesCipher) NewGCMTLS() (cipher.AEAD, error) {
return c.newGCM(gcmStandardNonceSize, true)
}
func (c *aesCipher) newGCM(nonceSize int, tls bool) (cipher.AEAD, error) {
if nonceSize != gcmStandardNonceSize { if nonceSize != gcmStandardNonceSize {
// Fall back to standard library for GCM with non-standard nonce size. // Fall back to standard library for GCM with non-standard nonce size.
return cipher.NewGCMWithNonceSize(&noGCM{c}, nonceSize) return cipher.NewGCMWithNonceSize(&noGCM{c}, nonceSize)
@ -180,9 +191,17 @@ func (c *aesCipher) NewGCM(nonceSize int) (cipher.AEAD, error) {
var aead *C.GO_EVP_AEAD var aead *C.GO_EVP_AEAD
switch len(c.key) * 8 { switch len(c.key) * 8 {
case 128: case 128:
aead = C._goboringcrypto_EVP_aead_aes_128_gcm() if tls {
aead = C._goboringcrypto_EVP_aead_aes_128_gcm_tls12()
} else {
aead = C._goboringcrypto_EVP_aead_aes_128_gcm()
}
case 256: case 256:
aead = C._goboringcrypto_EVP_aead_aes_256_gcm() if tls {
aead = C._goboringcrypto_EVP_aead_aes_256_gcm_tls12()
} else {
aead = C._goboringcrypto_EVP_aead_aes_256_gcm()
}
default: default:
// Fall back to standard library for GCM with non-standard key size. // Fall back to standard library for GCM with non-standard key size.
return cipher.NewGCMWithNonceSize(&noGCM{c}, nonceSize) return cipher.NewGCMWithNonceSize(&noGCM{c}, nonceSize)