CVS commit: src/sys/dev

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src/sys/dev
From: Daniel Carosone <dan%netbsd.org@localhost>
Date: Thu, 18 Mar 2004 10:42:08 +0000 (UTC)

Module Name:    src
Committed By:   dan
Date:           Thu Mar 18 10:42:08 UTC 2004

Modified Files:
        src/sys/dev: cgd.c cgd_crypto.c

Log Message:
Fix a longstanding bug in key-handling for the blowfish cipher.

This is an incompatible change, and will break all existing cgd images
encrypted with blowfish. Users will need to dump their data before
booting a kernel with this change, and recreate cgd's and restore data
afterwards.

I believe this affects a very small number of users other than myself;
indeed after several alert mails in an attempt to find them, only 2
such users have come forward. They have both agreed the requirement
for backwards compatibility does not warrant the effort nor the mess
in the code.  This code does exist, if it should later prove to be
needed, but will not be in the tree.

Further, by the nature of the issue, I have strong reasons to believe
that, even if they missed these mails, there would be few other users
of blowfish who update their systems with any regularity; any such
users would have tripped over the problem in the same way I did when
it was first found over a year ago.

The problem stems from two issues with the underlying blowfish
encryption routines used by cgd:
 - they take key length arguments counted in bytes, rather than bits
   like all the opther ciphers.
 - they silently truncate any keys longer than an internal limit,
   rather than returning an error (which would have exposed the
   previous discrepancy immediately).

As a result, the kernel reads too much data as the key from cgdconfig,
and then truncates most of it. This can easily be demonstrated/tested.
Currently, Blowfish users will find that if they mis-enter the cgd
passphrase on the first attempt, when validation fails and cgdconfig
prompts for the passphrase again, the cgd will not correctly configure
even when given a correct passphrase.


To generate a diff of this commit:
cvs rdiff -r1.14 -r1.15 src/sys/dev/cgd.c
cvs rdiff -r1.2 -r1.3 src/sys/dev/cgd_crypto.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src/sys/arch/sgimips/gio
Next by Date: CVS commit: src
Previous by Thread: CVS commit: src/sys/arch/sgimips/gio
Next by Thread: CVS commit: src
Indexes:

Home | Main Index | Thread Index | Old Index