From f384a1c272b99a637558d3c04687d4a2abe62932 Mon Sep 17 00:00:00 2001 From: rpmbuild Date: Mon, 24 Feb 2020 00:14:08 +0100 Subject: [PATCH 01/24] initial load of the aeskeyfind package --- aeskeyfind-10_add-GCC-hardening.patch | 20 ++++ aeskeyfind-20_sbox-size.patch | 17 +++ aeskeyfind.1 | 36 +++++++ aeskeyfind.spec | 99 ++++++++++++++++++ ...E404FFD3C931F934052D06B8841A919D0FACE4.gpg | Bin 0 -> 564 bytes 5 files changed, 172 insertions(+) create mode 100644 aeskeyfind-10_add-GCC-hardening.patch create mode 100644 aeskeyfind-20_sbox-size.patch create mode 100644 aeskeyfind.1 create mode 100644 aeskeyfind.spec create mode 100644 gpgkey-12E404FFD3C931F934052D06B8841A919D0FACE4.gpg diff --git a/aeskeyfind-10_add-GCC-hardening.patch b/aeskeyfind-10_add-GCC-hardening.patch new file mode 100644 index 0000000..5446af4 --- /dev/null +++ b/aeskeyfind-10_add-GCC-hardening.patch @@ -0,0 +1,20 @@ +Description: add GCC hardening. +Author: Joao Eriberto Mota Filho +Last-Update: 2015-02-26 +Index: aeskeyfind-1.0/Makefile +=================================================================== +--- aeskeyfind-1.0.orig/Makefile ++++ aeskeyfind-1.0/Makefile +@@ -1,10 +1,10 @@ +-CFLAGS= -Wall -O4 -std=c99 ++CFLAGS += -Wall -O4 -std=c99 + OBJS= aeskeyfind.o aes.o util.o + + all: aeskeyfind + + aeskeyfind: $(OBJS) +- $(CC) -o aeskeyfind $(OBJS) ++ $(CC) $(LDFLAGS) -o aeskeyfind $(OBJS) + + clean: + @rm -f aeskeyfind *~ \#* $(OBJS) diff --git a/aeskeyfind-20_sbox-size.patch b/aeskeyfind-20_sbox-size.patch new file mode 100644 index 0000000..533580e --- /dev/null +++ b/aeskeyfind-20_sbox-size.patch @@ -0,0 +1,17 @@ +Description: Fix sbox array size + See #692293 for details. +Author: Samuel Henrique +Last-Update: 2017-01-01 +Index: aeskeyfind/aes.h +=================================================================== +--- aeskeyfind.orig/aes.h ++++ aeskeyfind/aes.h +@@ -4,7 +4,7 @@ + typedef uint32_t aeskey_t[4]; + typedef uint32_t keyexp_t[44]; + +-extern uint8_t sbox[255]; ++extern uint8_t sbox[256]; + extern uint8_t rcon[255]; + + // Perform the AES key core operation on a word. diff --git a/aeskeyfind.1 b/aeskeyfind.1 new file mode 100644 index 0000000..f07aed9 --- /dev/null +++ b/aeskeyfind.1 @@ -0,0 +1,36 @@ +.TH "aeskeyfind" "1" "07-23-2011" "User Commands" "User Commands" +.SH "NAME" +aeskeyfind \- Locates 128-bit and 256-bit AES keys in a captured memory image. +.SH SYNOPSIS +.B aeskeyfind +[OPTION] MEMORY-IMAGE +.SH DESCRIPTION +aeskeyfind is a tool that illustrates automatic techniques for locating 128-bit and 256-bit AES keys in a captured memory image. +.SH OPTIONS +.LP +.ne 3 +.TP +.BI -v\c +verbose output -- prints the extended keys and the constraints on the rows of the key schedule +.ne 3 +.TP +.BI -q\c +don't display a progress bar +.ne 3 +.TP +.BI -t\ THRESHOLD\c +sets the maximum number of bit errors allowed in a candidate key schedule +.ne 3 +.TP +.BI -h\c +displays usage help +.SH BUGS +Likely. +.SH "SEE ALSO" +\fBbiosmemimage\fR(1), +\fBrsakeyfind\fR(1) +.SH AUTHOR +.TP +aeskeyfind was written by Nadia Heninger and Ariel Feldman. +.TP +This manual page was adapted by Julien Valroff from rsakeyfind.1, originally written by Jacob Appelbaum for the \fBDebian\fP system (but may be used by others). Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 or any later version published by the Free Software Foundation. diff --git a/aeskeyfind.spec b/aeskeyfind.spec new file mode 100644 index 0000000..616cde5 --- /dev/null +++ b/aeskeyfind.spec @@ -0,0 +1,99 @@ +Name: aeskeyfind +Version: 1.0 +Release: 7%{?dist} +# 3-clause BSD license +License: BSD +Summary: Locate 128-bit and 256-bit AES keys in a captured memory image + + +# Original URL: https://citp.princeton.edu/research/memory/ +# https://citp.princeton.edu/our-work/memory/ +# https://citp.princeton.edu/our-work/memory/code +URL: https://citp.princeton.edu/our-work/memory/ +# New mirror on github +# Mirror https://github.com/DonnchaC/coldboot-attacks +# Fork https://github.com/makomk/aeskeyfind + +# https://citp.princeton.edu/memory-content/src/aeskeyfind-1.0.tar.gz +# https://web.archive.org/web/20160501132651/https://citp.princeton.edu/memory-content/src/aeskeyfind-1.0.tar.gz +# http://citpsite.s3-website-us-east-1.amazonaws.com/oldsite-htdocs/memory-content/src/%%{name}-%%{version}.tar.gz +Source0: http://citpsite.s3-website-us-east-1.amazonaws.com/memory-content/src/%{name}-%{version}.tar.gz + +# https://web.archive.org/web/20160501132651/https://citp.princeton.edu/memory-content/src/aeskeyfind-1.0.tar.gz.asc +# http://citpsite.s3-website-us-east-1.amazonaws.com/oldsite-htdocs/memory-content/src/%%{name}-%%{version}.tar.gz.asc +Source1: http://citpsite.s3-website-us-east-1.amazonaws.com/oldsite-htdocs/memory-content/src/%{name}-%{version}.tar.gz.asc + +# The authenticator public key obtained from release 1.0 +# gpg2 -vv aeskeyfind-1.0.tar.gz.asc +# Signed by Jacob Appelbaum +# gpg2 --search-key B8841A919D0FACE4 +# gpg2 --search-key 12E404FFD3C931F934052D06B8841A919D0FACE4 +# gpg2 --list-public-keys 12E404FFD3C931F934052D06B8841A919D0FACE4 +# gpg2 --export --export-options export-minimal 12E404FFD3C931F934052D06B8841A919D0FACE4 > gpgkey-12E404FFD3C931F934052D06B8841A919D0FACE4.gpg +Source2: gpgkey-12E404FFD3C931F934052D06B8841A919D0FACE4.gpg + +# Manual page from Debian +Source3: aeskeyfind.1 + +# Original Debian patch to allow build hardening by usage of CFLAGS and LDFLAGS +# Author: Joao Eriberto Mota Filho +Patch1: aeskeyfind-10_add-GCC-hardening.patch + +# Original Debian patch to fix the size of the sbox +# Author: Samuel Henrique +Patch2: aeskeyfind-20_sbox-size.patch + +Buildrequires: gcc +Buildrequires: make +BuildRequires: gnupg2 + + + +%description +This program illustrates automatic techniques for locating 128-bit and +256-bit AES keys in a captured memory image. + +The program uses various algorithms and also performs a simple entropy +test to filter out blocks that are not keys. It counts the number of +repeated bytes and skips blocks that have too many repeats. + +This method works even if several bits of the key schedule have been +corrupted due to memory decay. + +This package is useful to several activities, as forensics investigations. + + +%prep +#check signature +%{gpgverify} --keyring='%{SOURCE2}' --signature='%{SOURCE1}' --data='%{SOURCE0}' +%autosetup -n %{name} + + +%build +%set_build_flags +%make_build %{?_smp_mflags} + + +%install +install -Dp -m755 %{name} %{buildroot}%{_bindir}/%{name} +install -d %{buildroot}%{_mandir}/man1 +install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 + + +%files +%license LICENSE +%doc README +%{_bindir}/%{name} +%{_mandir}/man1/%{name}.1* + + +%changelog +* Mon Feb 10 2020 Michal Ambroz - 1.0-7 +- cosmetic changes in the signature verification + +* Sun Oct 20 2019 Michal Ambroz - 1.0-6 +- check the signatures, fix man permission, comment patch + +* Mon Apr 01 2019 Michal Ambroz - 1.0-5 +- package based on the cert.ord package by Lawrence R. Rogers (lrr@cert.org) + diff --git a/gpgkey-12E404FFD3C931F934052D06B8841A919D0FACE4.gpg b/gpgkey-12E404FFD3C931F934052D06B8841A919D0FACE4.gpg new file mode 100644 index 0000000000000000000000000000000000000000..d161def0378102ce3744c52b44751eb31e7bb910 GIT binary patch literal 564 zcmV-40?YlG0ipy)))eRw1OT)u)~QwTw^jN0u4ZTUK~_U^Aq*HCjpB^C;(l@DJ?~y! z^$QMqY>A$GCf;MEg&BOI_vH{ayS2-wOde)>sUe9dY-x26_e#G6a(MOXc=zPfv)(r( zZdtc5QbEDg&=&Q%5%x0|#=aG{BGVG1OSj8D0lAY1^#EN?GdUV_Z3Na#`x`-&|JQ1%30s15cr()b|+2| zN^hNE;ovNTrB4Ajeat;hu2`p|*s%`*1U1{Lg-KH#U8l^uT{B^ET^+WQe2);MzZ{{{ z$#aOYo5pY!Wf1kOjc+vG*B_Ed7B7hBP5S1ZdU~Odv@{z3{QCp{eW{+5CF8z1+t`uk z5(h_!GH>c`t*9I>BS8J;by3;JM6_NRm7M#7Z!e&>*q`nuJy)eX$f?$@sAE~d0vsot zQ+fEJ$Vl#vw0o3h#aCQMJ=o;dUFGqlT77zdPm?X%HrHnYaSy4f8&b74y3d>6t8UGI zV%}yu-05<&)0i*tv?WSmV{c+0L2z(oY+_+`Z6G{qVPkJ%Kw)rjWo%+$b!{$gWpqA> zW&{%v0stlg8v_Ol2?z%R0t6KT2m=Hb0s{d89svRufCU0en5riQ2?W=0H~5V(XI zk)02$|sk C{sM>q literal 0 HcmV?d00001 From 069c652eaacdd3efe1ab70d6dc3510cc6b10c093 Mon Sep 17 00:00:00 2001 From: rpmbuild Date: Mon, 24 Feb 2020 00:19:35 +0100 Subject: [PATCH 02/24] upload sources --- .gitignore | 2 ++ sources | 2 ++ 2 files changed, 4 insertions(+) create mode 100644 .gitignore create mode 100644 sources diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..ea069ec --- /dev/null +++ b/.gitignore @@ -0,0 +1,2 @@ +/aeskeyfind-1.0.tar.gz +/aeskeyfind-1.0.tar.gz.asc diff --git a/sources b/sources new file mode 100644 index 0000000..dccac5e --- /dev/null +++ b/sources @@ -0,0 +1,2 @@ +SHA512 (aeskeyfind-1.0.tar.gz) = a523e0edb47c4f0386fc692c5ba7a858e6bf79e870980c7e7338f41fbdd29ecd9855269801c8581047a039d014d242652632676650c3b859c2d23f47bc231713 +SHA512 (aeskeyfind-1.0.tar.gz.asc) = 9623a8fda5545108ca93c0f4b291b9760a2a5a75380585862f47d3c00096f9b2e43c68e14450e8a4c001a2a10db65a626e6eaae7d77f8305113862f2dff4315f From 8f2b7a5554e49257746256941f0c19b229383e8d Mon Sep 17 00:00:00 2001 From: rpmbuild Date: Sat, 30 May 2020 10:07:21 +0000 Subject: [PATCH 03/24] update the package description in README.md --- README.md | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index e7150ae..44d922d 100644 --- a/README.md +++ b/README.md @@ -1,3 +1,14 @@ # aeskeyfind +The aeskeyfind rpm package. +This program illustrates automatic techniques for locating 128-bit and +256-bit AES keys in a captured memory image. + +The program uses various algorithms and also performs a simple entropy +test to filter out blocks that are not keys. It counts the number of +repeated bytes and skips blocks that have too many repeats. + +This method works even if several bits of the key schedule have been +corrupted due to memory decay. + +This package is useful to several activities, as forensics investigations. -The aeskeyfind package \ No newline at end of file From d40c25664ea35016e46e06e5e921c817b3700cf1 Mon Sep 17 00:00:00 2001 From: Michal Ambroz Date: Sat, 30 May 2020 10:35:21 +0000 Subject: [PATCH 04/24] README.md cosmetics --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 44d922d..19c7e5a 100644 --- a/README.md +++ b/README.md @@ -1,5 +1,7 @@ # aeskeyfind + The aeskeyfind rpm package. + This program illustrates automatic techniques for locating 128-bit and 256-bit AES keys in a captured memory image. From aa45010583ff4f702358daa563fc69914cfd9299 Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Mon, 27 Jul 2020 11:48:34 +0000 Subject: [PATCH 05/24] - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 616cde5..3077c70 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 7%{?dist} +Release: 8%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Mon Jul 27 2020 Fedora Release Engineering - 1.0-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild + * Mon Feb 10 2020 Michal Ambroz - 1.0-7 - cosmetic changes in the signature verification From 93be29dd518dd654d32dde3a96d597d93e834a1b Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Fri, 31 Jul 2020 23:50:04 +0000 Subject: [PATCH 06/24] - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 3077c70..a9a76db 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 8%{?dist} +Release: 9%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,10 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Fri Jul 31 2020 Fedora Release Engineering - 1.0-9 +- Second attempt - Rebuilt for + https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild + * Mon Jul 27 2020 Fedora Release Engineering - 1.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild From 897b3049d99838a1a0a4c91e618284afbd2f4a41 Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Mon, 25 Jan 2021 23:52:12 +0000 Subject: [PATCH 07/24] - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index a9a76db..093b3ab 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 9%{?dist} +Release: 10%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Mon Jan 25 2021 Fedora Release Engineering - 1.0-10 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild + * Fri Jul 31 2020 Fedora Release Engineering - 1.0-9 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild From 08ad49b8c05e96c8eb81a34ceafee31aabb4bee7 Mon Sep 17 00:00:00 2001 From: Michal Ambroz Date: Thu, 22 Apr 2021 09:04:06 +0200 Subject: [PATCH 08/24] readme cosmetics --- README.md | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/README.md b/README.md index 19c7e5a..3761b5b 100644 --- a/README.md +++ b/README.md @@ -2,15 +2,15 @@ The aeskeyfind rpm package. -This program illustrates automatic techniques for locating 128-bit and -256-bit AES keys in a captured memory image. - -The program uses various algorithms and also performs a simple entropy -test to filter out blocks that are not keys. It counts the number of -repeated bytes and skips blocks that have too many repeats. - -This method works even if several bits of the key schedule have been -corrupted due to memory decay. - -This package is useful to several activities, as forensics investigations. +This program illustrates automatic techniques for locating 128-bit and +256-bit AES keys in a captured memory image. + +The program uses various algorithms and also performs a simple entropy +test to filter out blocks that are not keys. It counts the number of +repeated bytes and skips blocks that have too many repeats. + +This method works even if several bits of the key schedule have been +corrupted due to memory decay. + +This package is useful to several activities, as forensics investigations. From 06820fe272f43086e8c1049b494ef75cc1f2b76c Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 21 Jul 2021 12:24:27 +0000 Subject: [PATCH 09/24] - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild Signed-off-by: Fedora Release Engineering From d00fc314034db1def45c0e6252efba5a92c910e3 Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 21 Jul 2021 17:19:46 +0000 Subject: [PATCH 10/24] - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 093b3ab..0663507 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 10%{?dist} +Release: 11%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jul 21 2021 Fedora Release Engineering - 1.0-11 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild + * Mon Jan 25 2021 Fedora Release Engineering - 1.0-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild From 27baab10432f200496c369c84db8bd659f5ca70f Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 19 Jan 2022 21:00:00 +0000 Subject: [PATCH 11/24] - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 0663507..70307ee 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 11%{?dist} +Release: 12%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jan 19 2022 Fedora Release Engineering - 1.0-12 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild + * Wed Jul 21 2021 Fedora Release Engineering - 1.0-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild From 1d46e79409ded9484f2d97bf3ca9eaa20e97a7ae Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 20 Jul 2022 20:31:01 +0000 Subject: [PATCH 12/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 70307ee..a83c5ec 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 12%{?dist} +Release: 13%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jul 20 2022 Fedora Release Engineering - 1.0-13 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild + * Wed Jan 19 2022 Fedora Release Engineering - 1.0-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild From fa36058761ae83ce65d7460052ae4b6ed31bb686 Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 18 Jan 2023 21:28:17 +0000 Subject: [PATCH 13/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index a83c5ec..fb44792 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 13%{?dist} +Release: 14%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jan 18 2023 Fedora Release Engineering - 1.0-14 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild + * Wed Jul 20 2022 Fedora Release Engineering - 1.0-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild From 7bb79064e70c26a1ca4f5b3a0632309e817fa190 Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 19 Jul 2023 12:59:17 +0000 Subject: [PATCH 14/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild Signed-off-by: Fedora Release Engineering --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index fb44792..1e01485 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 14%{?dist} +Release: 15%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -88,6 +88,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jul 19 2023 Fedora Release Engineering - 1.0-15 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild + * Wed Jan 18 2023 Fedora Release Engineering - 1.0-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild From e134bf629d01f157cea844af46e29359b6fcd898 Mon Sep 17 00:00:00 2001 From: "Samuel Henrique (samueloph)" Date: Wed, 6 Sep 2023 15:53:24 +0000 Subject: [PATCH 15/24] Import 2 Debian patches for large file support and fix silent regression Check patches' description for details. --- 30_big-files-support.patch | 55 +++++++++++++++++++++++++++++++ 40_fix-undefined-left-shift.patch | 17 ++++++++++ aeskeyfind.spec | 10 +++++- 3 files changed, 81 insertions(+), 1 deletion(-) create mode 100644 30_big-files-support.patch create mode 100644 40_fix-undefined-left-shift.patch diff --git a/30_big-files-support.patch b/30_big-files-support.patch new file mode 100644 index 0000000..4e477a7 --- /dev/null +++ b/30_big-files-support.patch @@ -0,0 +1,55 @@ +Description: Support for files bigger than 4GB + aeskeyfind has a bug where it fails to process a file larger than 4GB properly. + Instead it will process only filesize & 0xffffffff. Sign confusion in entropy + function can also lead to a crash when processing a large file. Finally, on + 32-bit systems size parameter to mmap would get quietly truncated. + + PS. Due to the design limitations the application cannot scan very large files + on 32-bit systems. This patch doesn't address that limitation, it however makes + the application fail gracefully if the situation is met. + + https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926786 +Author: Harry Sintonen +Index: aeskeyfind/aeskeyfind.c +=================================================================== +--- aeskeyfind.orig/aeskeyfind.c ++++ aeskeyfind/aeskeyfind.c +@@ -90,7 +90,7 @@ static void print_key(uint32_t* map, int + // more than 8 repeats of any byte. This is a primitive measure of + // entropy, but it works well enough. The function keeps track of a + // sliding window of byte counts. +-static int entropy(const uint8_t* bmap, int i) ++static int entropy(const uint8_t* bmap, size_t i) + { + static int new_call = 1; + static int byte_freq[256] = {0}; +@@ -208,7 +208,7 @@ static void find_keys(const uint8_t* bma + + // Memory maps filename and return a pointer on success, setting len + // to the length of the file (does not return on error) +-unsigned char *map_file(char *filename, unsigned int *len) { ++unsigned char *map_file(char *filename, size_t *len) { + int fd = open(filename, O_RDONLY); + if (fd < 0) + err(1, "image open failed"); +@@ -217,6 +217,11 @@ unsigned char *map_file(char *filename, + if (fstat(fd, &st) != 0) + err(1, "image fstat failed"); + ++ if (st.st_size > SIZE_MAX) { ++ errno = EINVAL; ++ err(1, "image too large to mmap"); ++ } ++ + unsigned char *map; + map = (unsigned char*)mmap(0, st.st_size, PROT_READ, MAP_SHARED, fd, 0); + if (map == MAP_FAILED) +@@ -265,7 +270,7 @@ int main(int argc, char * argv[]) + exit(1); + } + +- unsigned int len; ++ size_t len; + unsigned char *image = map_file(argv[0], &len); + if (len < 240) { + fprintf(stderr, "memory image too small\n"); diff --git a/40_fix-undefined-left-shift.patch b/40_fix-undefined-left-shift.patch new file mode 100644 index 0000000..69f0600 --- /dev/null +++ b/40_fix-undefined-left-shift.patch @@ -0,0 +1,17 @@ +Description: Fix bug caused by code with undefined behavior (left shift with negative exponent) +Bug-Debian: https://bugs.debian.org/989179 +Bug-Ubuntu: https://bugs.launchpad.net/debian/+source/aeskeyfind/+bug/1838334 +Author: Adrian Bunk +Index: aeskeyfind/aes.h +=================================================================== +--- aeskeyfind.orig/aes.h ++++ aeskeyfind/aes.h +@@ -12,7 +12,7 @@ extern uint8_t rcon[255]; + static inline uint32_t key_core(uint32_t k, int i) { + uint32_t t = 0; + for (int j=0; j<4; j++) +- t = set_byte(t, (j-1)%4, sbox[get_byte(k,j)]); ++ t = set_byte(t, (j-1+4)%4, sbox[get_byte(k,j)]); + return set_byte(t, 0, get_byte(t,0) ^ rcon[i]); + } + diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 1e01485..b27d7cf 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -40,9 +40,17 @@ Source3: aeskeyfind.1 Patch1: aeskeyfind-10_add-GCC-hardening.patch # Original Debian patch to fix the size of the sbox -# Author: Samuel Henrique +# Author: Samuel Henrique Patch2: aeskeyfind-20_sbox-size.patch +# Original Debian patch to support for files bigger than 4GB +# Author: Harry Sintonen +Patch3: 30_big-files-support.patch + +# Original Debian patch to fix silent regression caused by UC +# Author: Adrian Bunk +Patch4: 40_fix-undefined-left-shift.patch + Buildrequires: gcc Buildrequires: make BuildRequires: gnupg2 From bf59f845e56f8a6e75664b082dc725091c6c57df Mon Sep 17 00:00:00 2001 From: Michal Ambroz Date: Thu, 7 Sep 2023 01:42:38 +0200 Subject: [PATCH 16/24] rename the patches --- ...les-support.patch => aeskeyfind-30_big-files-support.patch | 0 ...hift.patch => aeskeyfind-40_fix-undefined-left-shift.patch | 0 aeskeyfind.spec | 4 ++-- 3 files changed, 2 insertions(+), 2 deletions(-) rename 30_big-files-support.patch => aeskeyfind-30_big-files-support.patch (100%) rename 40_fix-undefined-left-shift.patch => aeskeyfind-40_fix-undefined-left-shift.patch (100%) diff --git a/30_big-files-support.patch b/aeskeyfind-30_big-files-support.patch similarity index 100% rename from 30_big-files-support.patch rename to aeskeyfind-30_big-files-support.patch diff --git a/40_fix-undefined-left-shift.patch b/aeskeyfind-40_fix-undefined-left-shift.patch similarity index 100% rename from 40_fix-undefined-left-shift.patch rename to aeskeyfind-40_fix-undefined-left-shift.patch diff --git a/aeskeyfind.spec b/aeskeyfind.spec index b27d7cf..f08d454 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -45,11 +45,11 @@ Patch2: aeskeyfind-20_sbox-size.patch # Original Debian patch to support for files bigger than 4GB # Author: Harry Sintonen -Patch3: 30_big-files-support.patch +Patch3: aeskeyfind-30_big-files-support.patch # Original Debian patch to fix silent regression caused by UC # Author: Adrian Bunk -Patch4: 40_fix-undefined-left-shift.patch +Patch4: aeskeyfind-40_fix-undefined-left-shift.patch Buildrequires: gcc Buildrequires: make From 98b02b7e2a160a0d17c0570e2a92eb063a90d6bd Mon Sep 17 00:00:00 2001 From: Michal Ambroz Date: Thu, 7 Sep 2023 02:11:54 +0200 Subject: [PATCH 17/24] update the changelog --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index f08d454..bc3320d 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 15%{?dist} +Release: 16%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -96,6 +96,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Thu Sep 07 2023 Samuel Henrique - 1.0-16 +- sync with the bugfix patches with Debian + * Wed Jul 19 2023 Fedora Release Engineering - 1.0-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild From 3d73710018b595ed1ee36178f6b85c8676ffb65f Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Fri, 19 Jan 2024 12:21:36 +0000 Subject: [PATCH 18/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index bc3320d..f55965a 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 16%{?dist} +Release: 17%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -96,6 +96,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Fri Jan 19 2024 Fedora Release Engineering - 1.0-17 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild + * Thu Sep 07 2023 Samuel Henrique - 1.0-16 - sync with the bugfix patches with Debian From 89c4d0bb75f270e3aa011900884d41c65631ffb8 Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Mon, 22 Jan 2024 22:45:04 +0000 Subject: [PATCH 19/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index f55965a..ecea194 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 17%{?dist} +Release: 18%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -96,6 +96,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Mon Jan 22 2024 Fedora Release Engineering - 1.0-18 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild + * Fri Jan 19 2024 Fedora Release Engineering - 1.0-17 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild From 5bbef7607249e0c9742a15b1767efeb90dae9c3e Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 17 Jul 2024 16:41:26 +0000 Subject: [PATCH 20/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index ecea194..1337248 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 18%{?dist} +Release: 19%{?dist} # 3-clause BSD license License: BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -96,6 +96,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jul 17 2024 Fedora Release Engineering - 1.0-19 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild + * Mon Jan 22 2024 Fedora Release Engineering - 1.0-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild From 05e732cce1f4be9561d91bc4330bba7b5ba0fbf1 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Miroslav=20Such=C3=BD?= Date: Wed, 28 Aug 2024 07:47:27 +0200 Subject: [PATCH 21/24] convert license to SPDX This is part of https://fedoraproject.org/wiki/Changes/SPDX_Licenses_Phase_4 --- aeskeyfind.spec | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 1337248..0d8807c 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,8 +1,9 @@ Name: aeskeyfind Version: 1.0 -Release: 19%{?dist} +Release: 20%{?dist} # 3-clause BSD license -License: BSD +# Automatically converted from old format: BSD - review is highly recommended. +License: LicenseRef-Callaway-BSD Summary: Locate 128-bit and 256-bit AES keys in a captured memory image @@ -96,6 +97,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Aug 28 2024 Miroslav Suchý - 1.0-20 +- convert license to SPDX + * Wed Jul 17 2024 Fedora Release Engineering - 1.0-19 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild From f02c3f946b51f5638cd05a94dcbce275dcad8d5e Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Thu, 16 Jan 2025 10:40:57 +0000 Subject: [PATCH 22/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 0d8807c..97620c0 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 20%{?dist} +Release: 21%{?dist} # 3-clause BSD license # Automatically converted from old format: BSD - review is highly recommended. License: LicenseRef-Callaway-BSD @@ -97,6 +97,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Thu Jan 16 2025 Fedora Release Engineering - 1.0-21 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild + * Wed Aug 28 2024 Miroslav Suchý - 1.0-20 - convert license to SPDX From dbc3dbd3490db4372851182e0b4e0db4a1971a9f Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Wed, 23 Jul 2025 16:48:42 +0000 Subject: [PATCH 23/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index 97620c0..ae5cec9 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 21%{?dist} +Release: 22%{?dist} # 3-clause BSD license # Automatically converted from old format: BSD - review is highly recommended. License: LicenseRef-Callaway-BSD @@ -97,6 +97,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Wed Jul 23 2025 Fedora Release Engineering - 1.0-22 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild + * Thu Jan 16 2025 Fedora Release Engineering - 1.0-21 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild From 94fe64394ab5dde7c778e87363d1a36ed4e17efe Mon Sep 17 00:00:00 2001 From: Fedora Release Engineering Date: Fri, 16 Jan 2026 03:29:59 +0000 Subject: [PATCH 24/24] Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild --- aeskeyfind.spec | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/aeskeyfind.spec b/aeskeyfind.spec index ae5cec9..9406b80 100644 --- a/aeskeyfind.spec +++ b/aeskeyfind.spec @@ -1,6 +1,6 @@ Name: aeskeyfind Version: 1.0 -Release: 22%{?dist} +Release: 23%{?dist} # 3-clause BSD license # Automatically converted from old format: BSD - review is highly recommended. License: LicenseRef-Callaway-BSD @@ -97,6 +97,9 @@ install -p -m644 %{SOURCE3} %{buildroot}%{_mandir}/man1 %changelog +* Fri Jan 16 2026 Fedora Release Engineering - 1.0-23 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild + * Wed Jul 23 2025 Fedora Release Engineering - 1.0-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild