commit 1ab9afd0f081a384843aad7602a26bb2d22a3a9e
author Paul Kehrer <paul.l.kehrer@gmail.com> Sat Jul 08 08:07:28 2017 -0500
committer Alex Gaynor <alex.gaynor@gmail.com> Sat Jul 08 09:07:28 2017 -0400
tree b9d0cb89a25c4d0ac32380622c0f7a6b1ba51b65
parent c033c901fe9ca31c2f4cb3e12ddd72ca9eca5bf2

make the aead work a bit more generic (#3761)

src/cryptography/hazmat/backends/openssl/aead.py

diff --git a/src/cryptography/hazmat/backends/openssl/chacha20poly1305.py b/src/cryptography/hazmat/backends/openssl/aead.py
similarity index 73%
rename from src/cryptography/hazmat/backends/openssl/chacha20poly1305.py
rename to src/cryptography/hazmat/backends/openssl/aead.py
index 0834f19..5eb2e99 100644
--- a/src/cryptography/hazmat/backends/openssl/chacha20poly1305.py
+++ b/src/cryptography/hazmat/backends/openssl/aead.py
@@ -11,8 +11,9 @@
 _DECRYPT = 0
 
 
-def _chacha20poly1305_setup(backend, key, nonce, tag, operation):
-    evp_cipher = backend._lib.EVP_get_cipherbyname(b"chacha20-poly1305")
+def _aead_setup(backend, cipher_name, key, nonce, tag, tag_len, operation):
+    evp_cipher = backend._lib.EVP_get_cipherbyname(cipher_name)
+    backend.openssl_assert(evp_cipher != backend._ffi.NULL)
     ctx = backend._lib.EVP_CIPHER_CTX_new()
     ctx = backend._ffi.gc(ctx, backend._lib.EVP_CIPHER_CTX_free)
     res = backend._lib.EVP_CipherInit_ex(
@@ -35,6 +36,10 @@
             ctx, backend._lib.EVP_CTRL_AEAD_SET_TAG, len(tag), tag
         )
         backend.openssl_assert(res != 0)
+    else:
+        res = backend._lib.EVP_CIPHER_CTX_ctrl(
+            ctx, backend._lib.EVP_CTRL_AEAD_SET_TAG, tag_len, backend._ffi.NULL
+        )
 
     res = backend._lib.EVP_CipherInit_ex(
         ctx,
@@ -64,8 +69,11 @@
     return backend._ffi.buffer(buf, outlen[0])[:]
 
 
-def encrypt(backend, key, nonce, data, associated_data):
-    ctx = _chacha20poly1305_setup(backend, key, nonce, None, _ENCRYPT)
+def _encrypt(backend, cipher_name, key, nonce, data, associated_data,
+             tag_length):
+    ctx = _aead_setup(
+        backend, cipher_name, key, nonce, None, tag_length, _ENCRYPT
+    )
 
     _process_aad(backend, ctx, associated_data)
     processed_data = _process_data(backend, ctx, data)
@@ -73,10 +81,9 @@
     res = backend._lib.EVP_CipherFinal_ex(ctx, backend._ffi.NULL, outlen)
     backend.openssl_assert(res != 0)
     backend.openssl_assert(outlen[0] == 0)
-    # get the tag
-    tag_buf = backend._ffi.new("unsigned char[]", 16)
+    tag_buf = backend._ffi.new("unsigned char[]", tag_length)
     res = backend._lib.EVP_CIPHER_CTX_ctrl(
-        ctx, backend._lib.EVP_CTRL_AEAD_GET_TAG, 16, tag_buf
+        ctx, backend._lib.EVP_CTRL_AEAD_GET_TAG, tag_length, tag_buf
     )
     backend.openssl_assert(res != 0)
     tag = backend._ffi.buffer(tag_buf)[:]
@@ -84,12 +91,15 @@
     return processed_data + tag
 
 
-def decrypt(backend, key, nonce, data, associated_data):
-    if len(data) < 16:
+def _decrypt(backend, cipher_name, key, nonce, data, associated_data,
+             tag_length):
+    if len(data) < tag_length:
         raise InvalidTag
-    tag = data[-16:]
-    data = data[:-16]
-    ctx = _chacha20poly1305_setup(backend, key, nonce, tag, _DECRYPT)
+    tag = data[-tag_length:]
+    data = data[:-tag_length]
+    ctx = _aead_setup(
+        backend, cipher_name, key, nonce, tag, tag_length, _DECRYPT
+    )
     _process_aad(backend, ctx, associated_data)
     processed_data = _process_data(backend, ctx, data)
     outlen = backend._ffi.new("int *")

src/cryptography/hazmat/backends/openssl/backend.py

diff --git a/src/cryptography/hazmat/backends/openssl/backend.py b/src/cryptography/hazmat/backends/openssl/backend.py
index cf0300e..c63ea32 100644
--- a/src/cryptography/hazmat/backends/openssl/backend.py
+++ b/src/cryptography/hazmat/backends/openssl/backend.py
@@ -20,7 +20,7 @@
     EllipticCurveBackend, HMACBackend, HashBackend, PBKDF2HMACBackend,
     PEMSerializationBackend, RSABackend, ScryptBackend, X509Backend
 )
-from cryptography.hazmat.backends.openssl import chacha20poly1305
+from cryptography.hazmat.backends.openssl import aead
 from cryptography.hazmat.backends.openssl.ciphers import _CipherContext
 from cryptography.hazmat.backends.openssl.cmac import _CMACContext
 from cryptography.hazmat.backends.openssl.dh import (
@@ -1925,13 +1925,13 @@
         return self._ffi.buffer(buf)[:]
 
     def chacha20poly1305_encrypt(self, key, nonce, data, associated_data):
-        return chacha20poly1305.encrypt(
-            self, key, nonce, data, associated_data
+        return aead._encrypt(
+            self, b"chacha20-poly1305", key, nonce, data, associated_data, 16
         )
 
     def chacha20poly1305_decrypt(self, key, nonce, data, associated_data):
-        return chacha20poly1305.decrypt(
-            self, key, nonce, data, associated_data
+        return aead._decrypt(
+            self, b"chacha20-poly1305", key, nonce, data, associated_data, 16
         )
 
     def chacha20poly1305_supported(self):