[SPARK-43286] Update CBC mode in aes_encrypt()/aes_decrypt() to not use KDF - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 3.5.0
Fix Version/s: 3.5.0
Component/s: SQL
Labels:
None

Description

The current implementation of AES-CBC mode called via `aes_encrypt` and `aes_decrypt` uses a key derivation function (KDF) based on OpenSSL's EVP_BytesToKey. This is intended for generating keys based on passwords and OpenSSL's documents discourage its use: "Newer applications should use a more modern algorithm".

`aes_encrypt` and `aes_decrypt` should use the key directly in CBC mode, as it does for both GCM and ECB mode. The output should then be the initialization vector (IV) prepended to the ciphertext – as is done with GCM mode:
(16-byte randomly generated IV | AES-CBC encrypted ciphertext)

Attachments

Issue Links

links to

[Github] Pull Request #40969 (sweisdb)

Activity

People

Assignee:: Steve Weis

Reporter:: Steve Weis

Shepherd:: mgekk

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 25/Apr/23 18:55

Updated:: 09/May/23 09:07

Resolved:: 09/May/23 08:56

Time Tracking

Estimated:

168h

Remaining:

168h

Logged:

Not Specified