From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1IS8Se-0005je-7G for mharc-grub-devel@gnu.org; Mon, 03 Sep 2007 05:43:12 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1IS8Sb-0005gZ-Sl for grub-devel@gnu.org; Mon, 03 Sep 2007 05:43:09 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1IS8SW-0005ZQ-0v for grub-devel@gnu.org; Mon, 03 Sep 2007 05:43:08 -0400 Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1IS8SV-0005Z7-QC for grub-devel@gnu.org; Mon, 03 Sep 2007 05:43:03 -0400 Received: from main.gmane.org ([80.91.229.2] helo=ciao.gmane.org) by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.60) (envelope-from ) id 1IS8SV-0005A4-CJ for grub-devel@gnu.org; Mon, 03 Sep 2007 05:43:03 -0400 Received: from list by ciao.gmane.org with local (Exim 4.43) id 1IS8SS-0002I0-FV for grub-devel@gnu.org; Mon, 03 Sep 2007 11:43:00 +0200 Received: from cable-81-173-167-60.netcologne.de ([81.173.167.60]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Mon, 03 Sep 2007 11:43:00 +0200 Received: from patrick by cable-81-173-167-60.netcologne.de with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Mon, 03 Sep 2007 11:43:00 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: grub-devel@gnu.org From: Patrick Georgi Date: Mon, 03 Sep 2007 11:42:53 +0200 Message-ID: References: <20070902141736.af8d1d50.dn.tlp@gmx.net> <20070902160538.GA21432@thorin> <20070902192526.2ba6a17d.dn.tlp@gmx.net> <20070902194110.GA8231@thorin> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: cable-81-173-167-60.netcologne.de User-Agent: Thunderbird 2.0b2 (X11/20070411) In-Reply-To: <20070902194110.GA8231@thorin> Sender: news X-Detected-Kernel: Linux 2.6, seldom 2.4 (older, 4) Subject: Re: Strong Crypto Support for GRUB2 X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Sep 2007 09:43:10 -0000 Robert Millan schrieb: >> +/* >> + * Forward S-box >> + */ >> +static const uint8 FSb[256] = >> +{ >> + 0x63, 0x7C, 0x77, 0x7B, 0xF2, 0x6B, 0x6F, 0xC5, >> + 0x30, 0x01, 0x67, 0x2B, 0xFE, 0xD7, 0xAB, 0x76, >> + 0xCA, 0x82, 0xC9, 0x7D, 0xFA, 0x59, 0x47, 0xF0, ... >> + 0x9B, 0x1E, 0x87, 0xE9, 0xCE, 0x55, 0x28, 0xDF, >> + 0x8C, 0xA1, 0x89, 0x0D, 0xBF, 0xE6, 0x42, 0x68, >> + 0x41, 0x99, 0x2D, 0x0F, 0xB0, 0x54, 0xBB, 0x16 >> +}; > > This (and similar binary blobs) seems like a problem. What do these numbers > mean? If the spec defines a simple algorithm to generate them, a comment > with its implementation would be nice to have (e.g. like in md5sum.c from > coreutils). It's the common distribution form, and not supposed to be edited, as the algorithm relies on that particular table layout. from the header of that file: >> + * FIPS-197 compliant AES implementation reasonably states where to get it from - maybe extend it with http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf as an actual pointer, and that table with "taken from page 16 of the spec" The original AES paper defined some criteria on s-box design and a bunch of equations on how they do it - but that's not enough information to create _this_ particular (ie. the standard's) table. Regards, Patrick Georgi