Home Explore Help
Sign In
c
/
libtom.libtomcrypt
mirror of https://github.com/libtom/libtomcrypt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge pull request #546 from libtom/fix-dsa-sha-dependency

fix DSA dependency to SHA2
Steffen Jaeckel 4 years ago
parent
077f4d6367 9a07c425bd
commit
165c795b65
3 changed files with 17 additions and 13 deletions
Unified View Show Diff Stats
  1. 7 4
      src/headers/tomcrypt_pk.h
  2. 1 0
      src/misc/crypt/crypt_constants.c
  3. 9 9
      src/pk/dsa/dsa_generate_pqg.c

+ 7 - 4
src/headers/tomcrypt_pk.h
View File 

@@ -384,11 +384,14 @@ int x25519_shared_secret(const curve25519_key *private_key,
 
 
 
 #ifdef LTC_MDSA
 
 #ifdef LTC_MDSA
 
 
 
-/* Max diff between group and modulus size in bytes */
 
-#define LTC_MDSA_DELTA     512
 
+/* Max diff between group and modulus size in bytes (max case: L=8192bits, N=256bits) */
 
+#define LTC_MDSA_DELTA 992
 
 
 
-/* Max DSA group size in bytes (default allows 4k-bit groups) */
 
-#define LTC_MDSA_MAX_GROUP 512
 
+/* Max DSA group size in bytes */
 
+#define LTC_MDSA_MAX_GROUP 64
 
+
 
+/* Max DSA modulus size in bytes (the actual DSA size, max 8192 bits) */
 
+#define LTC_MDSA_MAX_MODULUS 1024
 
 
 
 /** DSA key structure */
 
 /** DSA key structure */
 
 typedef struct {
 
 typedef struct {

+ 1 - 0
src/misc/crypt/crypt_constants.c
View File 

@@ -102,6 +102,7 @@ static const crypt_constant s_crypt_constants[] = {
 
     {"LTC_MDSA", 1},
 
     {"LTC_MDSA", 1},
 
     C_STRINGIFY(LTC_MDSA_DELTA),
 
     C_STRINGIFY(LTC_MDSA_DELTA),
 
     C_STRINGIFY(LTC_MDSA_MAX_GROUP),
 
     C_STRINGIFY(LTC_MDSA_MAX_GROUP),
 
+    C_STRINGIFY(LTC_MDSA_MAX_MODULUS),
 
 #else
 
 #else
 
     {"LTC_MDSA", 0},
 
     {"LTC_MDSA", 0},
 
 #endif
 
 #endif

+ 9 - 9
src/pk/dsa/dsa_generate_pqg.c
View File 

@@ -26,9 +26,10 @@ static int s_dsa_make_params(prng_state *prng, int wprng, int group_size, int mo
 
   int err, res, mr_tests_q, mr_tests_p, found_p, found_q, hash;
 
   int err, res, mr_tests_q, mr_tests_p, found_p, found_q, hash;
 
   unsigned char *wbuf, *sbuf, digest[MAXBLOCKSIZE];
 
   unsigned char *wbuf, *sbuf, digest[MAXBLOCKSIZE];
 
   void *t2L1, *t2N1, *t2q, *t2seedlen, *U, *W, *X, *c, *h, *e, *seedinc;
 
   void *t2L1, *t2N1, *t2q, *t2seedlen, *U, *W, *X, *c, *h, *e, *seedinc;
 
+  const char *accepted_hashes[] = { "sha3-512", "sha512", "sha3-384", "sha384", "sha3-256", "sha256" };
 
 
 
   /* check size */
 
   /* check size */
 
-  if (group_size >= LTC_MDSA_MAX_GROUP || group_size < 1 || group_size >= modulus_size) {
 
+  if (group_size > LTC_MDSA_MAX_GROUP || group_size < 1 || group_size >= modulus_size || modulus_size > LTC_MDSA_MAX_MODULUS) {
 
     return CRYPT_INVALID_ARG;
 
     return CRYPT_INVALID_ARG;
 
   }
 
   }
 
 
 
@@ -87,16 +88,15 @@ static int s_dsa_make_params(prng_state *prng, int wprng, int group_size, int mo
 
   else                { mr_tests_q = 64; }
 
   else                { mr_tests_q = 64; }
 
 #endif
 
 #endif
 
 
 
-  if (N <= 256) {
 
-    hash = register_hash(&sha256_desc);
 
+  hash = -1;
 
+  for (i = 0; i < sizeof(accepted_hashes)/sizeof(accepted_hashes[0]); ++i) {
 
+    hash = find_hash(accepted_hashes[i]);
 
+    if (hash != -1) break;
 
   }
 
   }
 
-  else if (N <= 384) {
 
-    hash = register_hash(&sha384_desc);
 
+  if (hash == -1) {
 
+    return CRYPT_INVALID_ARG; /* no appropriate hash function found */
 
   }
 
   }
 
-  else if (N <= 512) {
 
-    hash = register_hash(&sha512_desc);
 
-  }
 
-  else {
 
+  if (N > hash_descriptor[hash].hashsize * 8) {
 
     return CRYPT_INVALID_ARG; /* group_size too big */
 
     return CRYPT_INVALID_ARG; /* group_size too big */
 
   }
 
   }