encrypt/decrypt not thread safe

encrypt/decrypt not thread safe

[forsyth]

>>Is the source on that CD-ROM identical to the currently  invisible source?

it compiled to the same binary last time i tried.  i used it for a port

encrypt/decrypt not thread safe

[Boyd]

    From: forsyth@plan9.cs.york.ac.uk

    boyd might be able to offer a safe replacement that's not subject
    to pointless controls.

you can certainly take my des from ftp://www.plan9.cs.su.oz.au/~boyd/des.msg
but it's not thread safe.  it assumes it's being called by a single
threaded program.  to fix it you need to have a per thread expanded
key.  all you need to do is to change deskey() to accept a parameter
for where to store the expanded key , rather than storing it in a
global static.  not real hard.

encrypt/decrypt not thread safe

[Christopher.Vance]

forsyth@plan9.cs.york.ac.uk wrote:
|  the version of the routine you've picked (looks like the old unix one,
|  also non-exportable, but people slip up) isn't safe.  i'm fairly sure
|  the binary version shipped as crypt.*.save is fine.  
|  boyd might be able to offer a safe replacement that's not subject to pointless controls.

The previous CD-ROM did include source and I'm sure Beto can get hold 
of it.  Is the source on that CD-ROM identical to the currently 
invisible source?

-- Christopher

encrypt/decrypt not thread safe

[forsyth]

>>i'm fairly sure the binary version shipped as crypt.*.save is fine.

indeed, i'm certain.

encrypt/decrypt not thread safe

[forsyth]

you've supplied your own crypt routine because the real one
isn't included in the distribution for the usual silly reason
(it's illegal in the US to export dangerous cryptographic routines
that anyone in the world can type in from a book they can buy freely).

the version of the routine you've picked (looks like the old unix one,
also non-exportable, but people slip up) isn't safe.  i'm fairly sure
the binary version shipped as crypt.*.save is fine.  
boyd might be able to offer a safe replacement that's not subject to pointless controls.

encrypt/decrypt not thread safe

[beto]

Tracing a kernel bug we found that encrypt/decrypt 
are not multi-thread safe. They save some values
in global memory. This is ok for user programs but
can cause authentication errors inside the kernel.

Those are the static variables used in des_encrypt:

/*
 * The current block, divided into 2 halves.
 */
static	char	L[64], *R = L+32;
static	char	tempL[32];
static	char	f[32];

/*
 * The combination of the key and the input, before selection.
 */
static	char	preS[48];

Could I move those variables inside des_encrypt??? 
I compiles but I'm not sure the code would be correct, some
reference could be set to L, temp, or f?

Any comments would be appreciated.