diff options
| author | Janne Peltonen <janne.peltonen@nokia.com> | 2021-12-10 11:27:17 +0200 |
|---|---|---|
| committer | Petri Savolainen <petri.savolainen@nokia.com> | 2021-12-22 09:25:13 +0200 |
| commit | 23b4dec2aff82050dad0a278ab3b6904b8981e3c (patch) | |
| tree | 14da905416d3ac1cc6a05a4efbab812825339ac4 /example/ipsec_crypto | |
| parent | bfa5d8ac20a54a572f410410935f34d152a729e0 (diff) | |
example: ipsec_crypto: fix outbound ESP processing to not reuse IVs
Reusing the same ESP IV within the same SA should not be done.
Fix the code to not reuse pre-generated IVs but generate a new
random IV for every outbound ESP packet.
Signed-off-by: Janne Peltonen <janne.peltonen@nokia.com>
Reviewed-by: Tuomas Taipale <tuomas.taipale@nokia.com>
Diffstat (limited to 'example/ipsec_crypto')
| -rw-r--r-- | example/ipsec_crypto/odp_ipsec.c | 19 | ||||
| -rw-r--r-- | example/ipsec_crypto/odp_ipsec_cache.c | 12 | ||||
| -rw-r--r-- | example/ipsec_crypto/odp_ipsec_cache.h | 1 | ||||
| -rw-r--r-- | example/ipsec_crypto/odp_ipsec_misc.h | 1 |
4 files changed, 20 insertions, 13 deletions
diff --git a/example/ipsec_crypto/odp_ipsec.c b/example/ipsec_crypto/odp_ipsec.c index 9fec94620..647755755 100644 --- a/example/ipsec_crypto/odp_ipsec.c +++ b/example/ipsec_crypto/odp_ipsec.c @@ -1,4 +1,5 @@ /* Copyright (c) 2013-2018, Linaro Limited + * Copyright (c) 2021, Nokia * All rights reserved. * * SPDX-License-Identifier: BSD-3-Clause @@ -772,6 +773,20 @@ pkt_disposition_e do_ipsec_in_finish(odp_packet_t pkt, return PKT_CONTINUE; } +static int generate_iv(uint8_t *buf, uint32_t size) +{ + uint32_t n = 0; + int32_t ret; + + while (n < size) { + ret = odp_random_data(buf + n, size - n, ODP_RANDOM_CRYPTO); + if (ret < 0) + return 1; + n += ret; + } + return 0; +} + /** * Packet Processing - Output IPsec packet classification * @@ -859,7 +874,9 @@ pkt_disposition_e do_ipsec_out_classify(odp_packet_t pkt, trl_len = encrypt_len - ip_data_len; esp->spi = odp_cpu_to_be_32(entry->esp.spi); - memcpy(esp + 1, entry->state.iv, entry->esp.iv_len); + if (generate_iv(esp->iv, entry->esp.iv_len)) + return PKT_DROP; + params.cipher_iv_ptr = esp->iv; esp_t = (odph_esptrl_t *)(ip_data + encrypt_len) - 1; esp_t->pad_len = trl_len - sizeof(*esp_t); diff --git a/example/ipsec_crypto/odp_ipsec_cache.c b/example/ipsec_crypto/odp_ipsec_cache.c index 044538c59..ca488bb64 100644 --- a/example/ipsec_crypto/odp_ipsec_cache.c +++ b/example/ipsec_crypto/odp_ipsec_cache.c @@ -56,6 +56,7 @@ int create_ipsec_cache_entry(sa_db_entry_t *cipher_sa, odp_crypto_ses_create_err_t ses_create_rc; odp_crypto_session_t session; sa_mode_t mode = IPSEC_SA_MODE_TRANSPORT; + uint8_t unused_iv[cipher_sa ? cipher_sa->iv_len : 1]; /* Verify we have a good entry */ entry = &ipsec_cache->array[ipsec_cache->index]; @@ -95,7 +96,7 @@ int create_ipsec_cache_entry(sa_db_entry_t *cipher_sa, params.cipher_alg = cipher_sa->alg.u.cipher; params.cipher_key.data = cipher_sa->key.data; params.cipher_key.length = cipher_sa->key.length; - params.cipher_iv.data = entry->state.iv; + params.cipher_iv.data = unused_iv; params.cipher_iv.length = cipher_sa->iv_len; mode = cipher_sa->mode; } else { @@ -115,15 +116,6 @@ int create_ipsec_cache_entry(sa_db_entry_t *cipher_sa, params.auth_alg = ODP_AUTH_ALG_NULL; } - /* Generate an IV */ - if (params.cipher_iv.length) { - int32_t size = params.cipher_iv.length; - - int32_t ret = odp_random_data(params.cipher_iv.data, size, 1); - if (ret != size) - return -1; - } - /* Synchronous session create for now */ if (odp_crypto_session_create(¶ms, &session, &ses_create_rc)) return -1; diff --git a/example/ipsec_crypto/odp_ipsec_cache.h b/example/ipsec_crypto/odp_ipsec_cache.h index 1523778ff..be31ca72c 100644 --- a/example/ipsec_crypto/odp_ipsec_cache.h +++ b/example/ipsec_crypto/odp_ipsec_cache.h @@ -57,7 +57,6 @@ typedef struct ipsec_cache_entry_s { odp_crypto_session_t session; /**< Crypto session handle */ uint32_t esp_seq; /**< ESP TX sequence number */ uint32_t ah_seq; /**< AH TX sequence number */ - uint8_t iv[MAX_IV_LEN]; /**< ESP IV storage */ odp_u16be_t tun_hdr_id; /**< Tunnel header IP ID */ } state; } ipsec_cache_entry_t; diff --git a/example/ipsec_crypto/odp_ipsec_misc.h b/example/ipsec_crypto/odp_ipsec_misc.h index 4f50f27ec..6186a2369 100644 --- a/example/ipsec_crypto/odp_ipsec_misc.h +++ b/example/ipsec_crypto/odp_ipsec_misc.h @@ -24,7 +24,6 @@ extern "C" { #define MAX_DB 32 /**< maximum number of data base entries */ #define MAX_LOOPBACK 10 /**< maximum number of loop back interfaces */ #define MAX_STRING 32 /**< maximum string length */ -#define MAX_IV_LEN 32 /**< Maximum IV length in bytes */ #define KEY_BITS_3DES 192 /**< 3DES cipher key length in bits */ #define KEY_BITS_MD5_96 128 /**< MD5_96 auth key length in bits */ |