SNOW-1569290 Use 12 bytes for IV in gcm (#1239)

sfc-gh-pfus · web-flow · commit 4f3ec9c44f00 · 2024-11-06T08:35:21.000+01:00
diff --git a/encrypt_util.go b/encrypt_util.go
@@ -15,6 +15,8 @@ import (
 	"strconv"
 )
 
+const gcmIvLengthInBytes = 12
+
 var (
 	defaultKeyAad  = make([]byte, 0)
 	defaultDataAad = make([]byte, 0)
@@ -305,7 +307,7 @@ func initGcm(encryptionKey []byte) (cipher.AEAD, error) {
 	if err != nil {
 		return nil, err
 	}
-	return cipher.NewGCMWithNonceSize(block, 16)
+	return cipher.NewGCM(block)
 }
 
 func encryptFileGCM(
@@ -334,13 +336,13 @@ func encryptFileGCM(
 	}
 	keySize := len(kek)
 	fileKey := getSecureRandom(keySize)
-	keyIv := getSecureRandom(keySize)
+	keyIv := getSecureRandom(gcmIvLengthInBytes)
 	encryptedFileKey, err := encryptGCM(keyIv, fileKey, kek, defaultKeyAad)
 	if err != nil {
 		return nil, "", err
 	}
 
-	dataIv := getSecureRandom(keySize)
+	dataIv := getSecureRandom(gcmIvLengthInBytes)
 	encryptedData, err := encryptGCM(dataIv, plaintext, fileKey, defaultDataAad)
 	if err != nil {
 		return nil, "", err
diff --git a/encrypt_util_test.go b/encrypt_util_test.go
@@ -240,11 +240,11 @@ func generateKLinesOfNFiles(k int, n int, compress bool, tmpDir string) (string,
 
 func TestEncryptDecryptGCM(t *testing.T) {
 	input := []byte("abc")
-	iv := []byte("abcdef1234567890")  // pragma: allowlist secret
+	iv := []byte("ab1234567890")      // pragma: allowlist secret
 	key := []byte("1234567890abcdef") // pragma: allowlist secret
 	encrypted, err := encryptGCM(iv, input, key, nil)
 	assertNilF(t, err)
-	assertEqualE(t, base64.StdEncoding.EncodeToString(encrypted), "pgs/wjNH2TYekmN7mbhFjeHH0A==")
+	assertEqualE(t, base64.StdEncoding.EncodeToString(encrypted), "iG+lT4o27hkzj3kblYRzQikLVQ==")
 
 	decrypted, err := decryptGCM(iv, encrypted, key, nil)
 	assertNilF(t, err)

Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,8 @@ import (`
`15`	`15`	`"strconv"`
`16`	`16`	`)`
`17`	`17`
	`18`	`+const gcmIvLengthInBytes = 12`
	`19`	`+`
`18`	`20`	`var (`
`19`	`21`	`defaultKeyAad = make([]byte, 0)`
`20`	`22`	`defaultDataAad = make([]byte, 0)`
`@@ -305,7 +307,7 @@ func initGcm(encryptionKey []byte) (cipher.AEAD, error) {`
`305`	`307`	`if err != nil {`
`306`	`308`	`return nil, err`
`307`	`309`	`}`
`308`		`- return cipher.NewGCMWithNonceSize(block, 16)`
	`310`	`+ return cipher.NewGCM(block)`
`309`	`311`	`}`
`310`	`312`
`311`	`313`	`func encryptFileGCM(`
`@@ -334,13 +336,13 @@ func encryptFileGCM(`
`334`	`336`	`}`
`335`	`337`	`keySize := len(kek)`
`336`	`338`	`fileKey := getSecureRandom(keySize)`
`337`		`- keyIv := getSecureRandom(keySize)`
	`339`	`+ keyIv := getSecureRandom(gcmIvLengthInBytes)`
`338`	`340`	`encryptedFileKey, err := encryptGCM(keyIv, fileKey, kek, defaultKeyAad)`
`339`	`341`	`if err != nil {`
`340`	`342`	`return nil, "", err`
`341`	`343`	`}`
`342`	`344`
`343`		`- dataIv := getSecureRandom(keySize)`
	`345`	`+ dataIv := getSecureRandom(gcmIvLengthInBytes)`
`344`	`346`	`encryptedData, err := encryptGCM(dataIv, plaintext, fileKey, defaultDataAad)`
`345`	`347`	`if err != nil {`
`346`	`348`	`return nil, "", err`