SKALE-3039

cf20898e · kladko · e442d9ae · cf20898e · cf20898e · cf20898e
Unverified Commit cf20898e authored Sep 10, 2020 by kladko
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 7 deletions

AESUtils.c secure_enclave/AESUtils.c +3 -3

AESUtils.h secure_enclave/AESUtils.h +1 -1

secure_enclave.c secure_enclave/secure_enclave.c +3 -3

No files found.
--- a/secure_enclave/AESUtils.c
+++ b/secure_enclave/AESUtils.c
@@ -30,7 +30,7 @@

 #include "AESUtils.h"

-sgx_aes_gcm_128bit_key_t AES_key[32];
+sgx_aes_gcm_128bit_key_t AES_key[1024];


 #define SAFE_CHAR_BUF(__X__, __Y__)  ;char __X__ [ __Y__ ]; memset(__X__, 0, __Y__);
@@ -74,7 +74,7 @@ int AES_encrypt(char *message, uint8_t *encr_message, uint64_t encrBufLen, unsig

    sgx_read_rand(encr_message + SGX_AESGCM_MAC_SIZE, SGX_AESGCM_IV_SIZE);

-    sgx_status_t status = sgx_rijndael128GCM_encrypt(&(AES_key[16]), (uint8_t*)message, len,
+    sgx_status_t status = sgx_rijndael128GCM_encrypt(&(AES_key[512]), (uint8_t*)message, len,
                                                     encr_message + SGX_AESGCM_MAC_SIZE + SGX_AESGCM_IV_SIZE,
                                                     encr_message + SGX_AESGCM_MAC_SIZE, SGX_AESGCM_IV_SIZE,
                                                     NULL, 0,
@@ -123,7 +123,7 @@ int AES_decrypt(uint8_t *encr_message, uint64_t length, char *message, uint64_t
        return -2;
  }

-  sgx_status_t status = sgx_rijndael128GCM_decrypt(&(AES_key[16]),
+  sgx_status_t status = sgx_rijndael128GCM_decrypt(&(AES_key[512]),
                                                   encr_message + SGX_AESGCM_MAC_SIZE + SGX_AESGCM_IV_SIZE, len,
                                                   (unsigned char*) message,
                                                   encr_message + SGX_AESGCM_MAC_SIZE, SGX_AESGCM_IV_SIZE,

--- a/secure_enclave/AESUtils.h
+++ b/secure_enclave/AESUtils.h
@@ -24,7 +24,7 @@
 #ifndef SGXD_AESUTILS_H
 #define SGXD_AESUTILS_H

-extern sgx_aes_gcm_128bit_key_t AES_key[32];
+extern sgx_aes_gcm_128bit_key_t AES_key[1024];

 int AES_encrypt(char *message, uint8_t *encr_message, uint64_t encrLen,
                unsigned char type, unsigned char exportable, uint64_t* resultLen);

--- a/secure_enclave/secure_enclave.c
+++ b/secure_enclave/secure_enclave.c
@@ -291,7 +291,7 @@ void trustedGenerateSEK(int *errStatus, char *errString,
    RANDOM_CHAR_BUF(SEK_raw, SGX_AESGCM_KEY_SIZE);

    carray2Hex((uint8_t*) SEK_raw, SGX_AESGCM_KEY_SIZE, sek_hex);
-    memcpy(AES_key[16], SEK_raw, SGX_AESGCM_KEY_SIZE);
+    memcpy(AES_key[512], SEK_raw, SGX_AESGCM_KEY_SIZE);


    sealHexSEK(errStatus, errString, encrypted_sek, enc_len, sek_hex);
@@ -331,7 +331,7 @@ void trustedSetSEK(int *errStatus, char *errString, uint8_t *encrypted_sek) {
    uint64_t len;


-    hex2carray(aes_key_hex, &len, (uint8_t *) (AES_key[16]));
+    hex2carray(aes_key_hex, &len, (uint8_t *) (AES_key[512]));

    SET_SUCCESS
    clean:
@@ -349,7 +349,7 @@ void trustedSetSEK_backup(int *errStatus, char *errString,
    CHECK_STATE(sek_hex);

    uint64_t len;
-    hex2carray(sek_hex, &len, (uint8_t *) (AES_key[16]));
+    hex2carray(sek_hex, &len, (uint8_t *) (AES_key[512]));


    sealHexSEK(errStatus, errString, encrypted_sek, enc_len, (char *)sek_hex);