Skip to content

Fix AES 192 kdf #765

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 2, 2025
Merged

Fix AES 192 kdf #765

merged 2 commits into from
Oct 2, 2025

Conversation

@pabuhler
Copy link
Member

@pabuhler pabuhler commented Aug 26, 2025

The kdf for AES 192 is currently broken, it mistakenly uses the kdf in AES 256 mode as described in #763.

First will commit a failing test and then the fix.

@pabuhler
add failing AES 192 validation test
9035389 
The test vectors are generated based on RFC 6188
section 7.4 . It demonstrates that the kdf for
AES 192 is currently broken. It mistakenly uses the
kdf in AES 256 mode as described in cisco#763.
@pabuhler
set kdf_key_len to correct value
6ad7749 
Set the kdf key length to be the determined input key length.
This will set it correctly for AES ICM 128/192/256.
In the case of AES GCM 128 & 256 it needs to be increased
by 2 to match the corresponding AES ICM cipher.

fixes cisco#763
This was referenced Aug 28, 2025
Open
Closed
jeannotlapin
jeannotlapin reviewed Aug 28, 2025
View reviewed changes
test/srtp_driver.c

srtp_err_status_t srtp_validate_aes_256(void);

#ifdef GCM
Copy link

@jeannotlapin jeannotlapin Aug 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think this ifdef is needed here, you may want to run this test even when GCM is not enabled

Copy link
Member Author

@pabuhler pabuhler Aug 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The GCM is miss used in this context, it indicates that the crypto engine is external as there is no internal implementation of AES 192 :( ... this should also be changed at some point.

Copy link

@jeannotlapin jeannotlapin Aug 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sorry I missed that trick.

paulej
paulej approved these changes Aug 28, 2025
View reviewed changes
Copy link
Contributor

@paulej paulej left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@pabuhler pabuhler merged commit 8016607 into cisco:main Oct 2, 2025
39 checks passed
pabuhler added a commit to pabuhler/libsrtp that referenced this pull request Oct 2, 2025
@pabuhler
Fix AES 192 kdf
df5b38a 
Back ported cisco#765 from main.
fixes cisco#763
@pabuhler pabuhler mentioned this pull request Oct 2, 2025
Merged
seyednasermoravej pushed a commit to seyednasermoravej/libsrtp that referenced this pull request Nov 9, 2025
@pabuhler
Merge pull request cisco#765 from pabuhler/fix-aes-192-kdf
5fa334f 
Fix AES 192 kdf
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@jeannotlapin jeannotlapin jeannotlapin left review comments

@paulej paulej paulej approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@pabuhler @paulej @jeannotlapin