-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SM4 GCM加解密中J0之后的CTR问题 #1629
Comments
ctr是sm4的blocksize大小。sm4是16,如果是其他对称加密就是可能不是16。 |
GCM模式没有相应国密规范,都参考NIST Special Publication 800-38D。本项目实现中CTR/GCM模式共用同一个ctr_inc实现,这是有问题的,特别是当IV/nonce不是12字节(96位)、Seal的Blocks数量多,导致32位数进位的时候。 |
我也觉得,当遇到counter翻转的时候,算出来的结果就不对了。因为正常是只翻转4byte,有12byte值保持不变,而gmssl是翻转16byte。这样计算出来的结果就和openssl对不上。 |
GCM中counter overflow问题在最近的更新中做了修正,还有待进一步测试 |
gmssl源码中SM4 GCM中CTR相当于用的是128bit,是不是应该用32bit的ctr?
The text was updated successfully, but these errors were encountered: