[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH 11/18] crypto: rename des-rfb cipher to just des
From: |
Eric Blake |
Subject: |
Re: [PATCH 11/18] crypto: rename des-rfb cipher to just des |
Date: |
Thu, 8 Jul 2021 14:50:44 -0500 |
User-agent: |
NeoMutt/20210205-556-f84451-dirty |
On Tue, Jul 06, 2021 at 10:59:17AM +0100, Daniel P. Berrangé wrote:
> Currently the crypto layer exposes support for a 'des-rfb'
> algorithm which is just normal single-DES, with the bits
> in each key byte reversed. This special key munging is
> required by the RFB protocol password authentication
> mechanism.
>
> Since the crypto layer is generic shared code, it makes
> more sense to do the key byte munging in the VNC server
> code, and expose normal single-DES support.
>
> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
I agree with Markus' suggestion to enhance the commit message.
> +++ b/tests/unit/test-crypto-cipher.c
> @@ -155,28 +155,28 @@ static QCryptoCipherTestData test_data[] = {
> * in single AES block, and gives identical
> * ciphertext in ECB and CBC modes
> */
> - .path = "/crypto/cipher/des-rfb-ecb-56-one-block",
> - .alg = QCRYPTO_CIPHER_ALG_DES_RFB,
> + .path = "/crypto/cipher/des-ecb-56-one-block",
> + .alg = QCRYPTO_CIPHER_ALG_DES,
> .mode = QCRYPTO_CIPHER_MODE_ECB,
> - .key = "0123456789abcdef",
> + .key = "80c4a2e691d5b3f7",
> .plaintext = "70617373776f7264",
> .ciphertext = "73fa80b66134e403",
> },
This is a rather cute way to avoid recomputing the canonical
.ciphertext due to the change in bit ordering.
Reviewed-by: Eric Blake <eblake@redhat.com>
--
Eric Blake, Principal Software Engineer
Red Hat, Inc. +1-919-301-3266
Virtualization: qemu.org | libvirt.org
- Re: [PATCH 10/18] crypto: delete built-in XTS cipher mode support, (continued)
- Re: [PATCH 11/18] crypto: rename des-rfb cipher to just des,
Eric Blake <=
[PATCH 14/18] crypto: add gnutls cipher provider, Daniel P . Berrangé, 2021/07/06
[PATCH 15/18] crypto: add gnutls hash provider, Daniel P . Berrangé, 2021/07/06
[PATCH 16/18] crypto: add gnutls hmac provider, Daniel P . Berrangé, 2021/07/06
[PATCH 18/18] crypto: prefer gnutls as the crypto backend if new enough, Daniel P . Berrangé, 2021/07/06
[PATCH 17/18] crypto: add gnutls pbkdf provider, Daniel P . Berrangé, 2021/07/06