Always set IV length for AES CCM ciphers

lwestlund · lwestlund · commit 542b783a5cf1 · 2024-06-07T09:47:14.000+02:00
This fixes an issue where the IV length would not be set if the length was equal to the recommended length. The issue shows up at least when an IV of length 12 (which is returned by `t.iv_len()`) is used with the AES256 CCM cipher, as OpenSSL defaults the IV length to 7 bytes [^1] and it would not be correctly set to 12. [^1]: https://wiki.openssl.org/index.php/EVP_Authenticated_Encryption_and_Decryption Closes sfackler#2244.
diff --git a/openssl/src/symm.rs b/openssl/src/symm.rs
@@ -627,7 +627,12 @@ impl Crypter {
         ctx.set_key_length(key.len())?;
 
         if let (Some(iv), Some(iv_len)) = (iv, t.iv_len()) {
-            if iv.len() != iv_len {
+            if iv.len() != iv_len
+                || matches!(
+                    t.nid(),
+                    Nid::AES_128_CCM | Nid::AES_192_CCM | Nid::AES_256_CCM
+                )
+            {
                 ctx.set_iv_length(iv.len())?;
             }
         }

Original file line number	Diff line number	Diff line change
`@@ -627,7 +627,12 @@ impl Crypter {`
`627`	`627`	`ctx.set_key_length(key.len())?;`
`628`	`628`
`629`	`629`	`if let (Some(iv), Some(iv_len)) = (iv, t.iv_len()) {`
`630`		`- if iv.len() != iv_len {`
	`630`	`+ if iv.len() != iv_len`
	`631`	`+ \|\| matches!(`
	`632`	`+ t.nid(),`
	`633`	`+ Nid::AES_128_CCM \| Nid::AES_192_CCM \| Nid::AES_256_CCM`
	`634`	`+ )`
	`635`	`+ {`
`631`	`636`	`ctx.set_iv_length(iv.len())?;`
`632`	`637`	`}`
`633`	`638`	`}`