Project

General

Profile

Bug #8221

2 AES-128-GCM (probably same in AES-256-GCM) bug?

Added by nov matake over 3 years ago. Updated 2 months ago.

Status:
Closed
Priority:
Normal
Assignee:
openssl
[ruby-core:54001]

Description

  1. OpenSSL::Cipher::AES.new(128, :GDM) doesn't work

  2. You can't set iv before key

Sample code here.
https://gist.github.com/nov/5311749

History

#1 Updated by Yui NARUSE over 3 years ago

  • Tracker changed from Backport to Bug
  • Status changed from Open to Assigned
  • Project changed from Backport200 to Ruby trunk
  • Assignee set to Martin Bosslet

#2 [ruby-core:54728] Updated by Nobuyoshi Nakada over 3 years ago

  • ruby -v set to 2.1.0

=begin
Is this related to ((URL:https://s3.amazonaws.com/archive.travis-ci.org/jobs/6783150/log.txt))?

4) Error:
test_aes_gcm_wrong_tag(OpenSSL::TestCipher):
OpenSSL::Cipher::CipherError: unable to set GCM tag
/home/travis/build/ruby/ruby/test/openssl/test_cipher.rb:190:in auth_tag='
/home/travis/build/ruby/ruby/test/openssl/test_cipher.rb:190:in
test_aes_gcm_wrong_tag'
=end

#3 [ruby-core:55175] Updated by Yui NARUSE over 3 years ago

  • Category set to ext/openssl
  • Target version set to 2.1.0

#4 [ruby-core:55176] Updated by Yui NARUSE over 3 years ago

  • Assignee changed from Martin Bosslet to openssl

#6 [ruby-core:60290] Updated by Hiroshi SHIBATA almost 3 years ago

  • Target version changed from 2.1.0 to current: 2.2.0

#7 [ruby-core:77439] Updated by Kazuki Yamaguchi 2 months ago

  • Status changed from Assigned to Closed
  • Backport set to 2.1: UNKNOWN, 2.2: REQUIRED, 2.3: REQUIRED

Fixed by the following commits at ruby/openssl.

  1. AES-GCM ciphers does not have uppercase short name

    https://github.com/ruby/openssl/commit/2ed10db12deb114066443b4a0f1ffd49a8f612b2

  2. The ordering issue of key and IV

    https://github.com/ruby/openssl/commit/8108e0a6db133f3375608303fdd2083eb5115062

Also available in: Atom PDF