diff options
author | Mark Purcell <msp@debian.org> | 2013-07-09 15:55:55 +0100 |
---|---|---|
committer | Mark Purcell <msp@debian.org> | 2013-07-09 15:55:55 +0100 |
commit | 669109e369a1be69ff7c4108eb545eff4c5c26d9 (patch) | |
tree | 73c117a2e7dd22a7a6ee315101f6357ab43386ec /src/libzrtpcpp/crypto/TwoCFB.cpp |
libzrtpcpp (2.3.4-1) unstable; urgency=medium
* New upstream release
- Fixes "CVE-2013-2221 CVE-2013-2222 CVE-2013-2223" (Closes: #714650)
# imported from the archive
Diffstat (limited to 'src/libzrtpcpp/crypto/TwoCFB.cpp')
-rwxr-xr-x | src/libzrtpcpp/crypto/TwoCFB.cpp | 79 |
1 files changed, 79 insertions, 0 deletions
diff --git a/src/libzrtpcpp/crypto/TwoCFB.cpp b/src/libzrtpcpp/crypto/TwoCFB.cpp new file mode 100755 index 0000000..be3dda4 --- /dev/null +++ b/src/libzrtpcpp/crypto/TwoCFB.cpp @@ -0,0 +1,79 @@ +/* + Copyright (C) 2011 by Werner Dittmann + + This library is free software; you can redistribute it and/or + modify it under the terms of the GNU Lesser General Public + License as published by the Free Software Foundation; either + version 2.1 of the License, or (at your option) any later version. + + This library is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + Lesser General Public License for more details. + + You should have received a copy of the GNU Lesser General Public + License along with this library; if not, write to the Free Software + Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + + * In addition, as a special exception, the copyright holders give + * permission to link the code of portions of this program with the + * OpenSSL library under certain conditions as described in each + * individual source file, and distribute linked combinations + * including the two. + * You must obey the GNU General Public License in all respects + * for all of the code used other than OpenSSL. If you modify + * file(s) with this exception, you may extend this exception to your + * version of the file(s), but you are not obligated to do so. If you + * do not wish to do so, delete this exception statement from your + * version. If you delete this exception statement from all source + * files in the program, then also delete it here. + */ + +/** Copyright (C) 2011 + * + * @author Werner Dittmann <Werner.Dittmann@t-online.de> + */ + +#include <string.h> + +#include <libzrtpcpp/crypto/twoCFB.h> +#include <libzrtpcpp/crypto/twofish.h> + +static int initialized = 0; + +void twoCfbEncrypt(uint8_t* key, int32_t keyLength, uint8_t* IV, uint8_t *data, + int32_t dataLength) +{ + Twofish_key keyCtx; + int usedBytes = 0; + + if (!initialized) { + Twofish_initialise(); + initialized = 1; + } + + memset(&keyCtx, 0, sizeof(Twofish_key)); + Twofish_prepare_key(key, keyLength, &keyCtx); + + Twofish_cfb128_encrypt(&keyCtx, (Twofish_Byte*)data, (Twofish_Byte*)data, + (size_t)dataLength, (Twofish_Byte*)IV, &usedBytes); +} + + +void twoCfbDecrypt(uint8_t* key, int32_t keyLength, const uint8_t* IV, uint8_t *data, + int32_t dataLength) +{ + Twofish_key keyCtx; + int usedBytes = 0; + + if (!initialized) { + Twofish_initialise(); + initialized = 1; + } + + memset(&keyCtx, 0, sizeof(Twofish_key)); + Twofish_prepare_key(key, keyLength, &keyCtx); + + Twofish_cfb128_decrypt(&keyCtx, (Twofish_Byte*)data, (Twofish_Byte*)data, + (size_t)dataLength, (Twofish_Byte*)IV, &usedBytes); +} |