summaryrefslogtreecommitdiff
path: root/libtomcrypt
Commit message (Collapse)AuthorAgeFilesLines
* Remove blowfishMatt Johnston2020-06-101-3/+0
|
* avoid zero length array in base64_decodeMatt Johnston2020-06-101-3/+9
|
* Merge libtomcrypt v1.18.2Matt Johnston2020-06-1045-138/+388
|
* Fix whitespace changes vs upstream libtomcryptMatt Johnston2020-06-1011-1213/+1213
|
* Update LibTomMath to 1.2.0 (#84)Steffen Jaeckel2020-05-261-27/+36
| | | | | | | | | | | | | | | | | | | | * update C files * update other files * update headers * update makefiles * remove mp_set/get_double() * use ltm 1.2.0 API * update ltm_desc * use bundled tommath if system-tommath is too old * XMALLOC etc. were changed to MP_MALLOC etc.
* CBC mode cleanup (#95)Vladislav Grishenko2020-05-251-1/+1
| | | | | | * Fix CBC mode can't be fully disabled * Fix CBC mode can't be the only mode
* Add Chacha20-Poly1305, AES128-GCM and AES256-GCM support (#93)Vladislav Grishenko2020-05-251-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add Chacha20-Poly1305 authenticated encryption * Add general AEAD approach. * Add chacha20-poly1305@openssh.com algo using LibTomCrypt chacha and poly1305 routines. Chacha20-Poly1305 is generally faster than AES256 on CPU w/o dedicated AES instructions, having the same key size. Compiling in will add ~5,5kB to binary size on x86-64. function old new delta chacha_crypt - 1397 +1397 _poly1305_block - 608 +608 poly1305_done - 595 +595 dropbear_chachapoly_crypt - 457 +457 .rodata 26976 27392 +416 poly1305_process - 290 +290 poly1305_init - 221 +221 chacha_setup - 218 +218 encrypt_packet 1068 1270 +202 dropbear_chachapoly_getlength - 147 +147 decrypt_packet 756 897 +141 chacha_ivctr64 - 137 +137 read_packet 543 637 +94 dropbear_chachapoly_start - 94 +94 read_kex_algos 792 880 +88 chacha_keystream - 69 +69 dropbear_mode_chachapoly - 48 +48 sshciphers 280 320 +40 dropbear_mode_none 24 48 +24 dropbear_mode_ctr 24 48 +24 dropbear_mode_cbc 24 48 +24 dropbear_chachapoly_mac - 24 +24 dropbear_chachapoly - 24 +24 gen_new_keys 848 854 +6 ------------------------------------------------------------------------------ (add/remove: 14/0 grow/shrink: 10/0 up/down: 5388/0) Total: 5388 bytes * Add AES128-GCM and AES256-GCM authenticated encryption * Add general AES-GCM mode. * Add aes128-gcm@openssh.com and aes256-gcm@openssh.com algo using LibTomCrypt gcm routines. AES-GCM is combination of AES CTR mode and GHASH, slower than AES-CTR on CPU w/o dedicated AES/GHASH instructions therefore disabled by default. Compiling in will add ~6kB to binary size on x86-64. function old new delta gcm_process - 1060 +1060 .rodata 26976 27808 +832 gcm_gf_mult - 820 +820 gcm_add_aad - 660 +660 gcm_shift_table - 512 +512 gcm_done - 471 +471 gcm_add_iv - 384 +384 gcm_init - 347 +347 dropbear_gcm_crypt - 309 +309 encrypt_packet 1068 1270 +202 decrypt_packet 756 897 +141 gcm_reset - 118 +118 read_packet 543 637 +94 read_kex_algos 792 880 +88 sshciphers 280 360 +80 gcm_mult_h - 80 +80 dropbear_gcm_start - 62 +62 dropbear_mode_gcm - 48 +48 dropbear_mode_none 24 48 +24 dropbear_mode_ctr 24 48 +24 dropbear_mode_cbc 24 48 +24 dropbear_ghash - 24 +24 dropbear_gcm_getlength - 24 +24 gen_new_keys 848 854 +6 ------------------------------------------------------------------------------ (add/remove: 14/0 grow/shrink: 10/0 up/down: 6434/0) Total: 6434 bytes
* Attempt to fix m_free for libtomcrypt/libtommathMatt Johnston2018-03-021-6/+1
|
* merge from mainMatt Johnston2018-02-171-0/+11
|\
| * merge up to dateMatt Johnston2018-01-231-0/+11
| |\
| | * merge from main (libtommath/libtomcrypt/curve25510-donna updates)Matt Johnston2017-06-241-0/+11
| | |\
| | | * add dbmalloc epoch cleanupMatt Johnston2017-05-211-0/+11
| | | |
* | | | options: Complete the transition to numeric toggles (`#if')Michael Witten2017-07-201-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | For the sake of review, this commit alters only the code; the affiliated comments within the source files also need to be updated, but doing so now would obscure the operational changes that have been made here. * All on/off options have been switched to the numeric `#if' variant; that is the only way to make this `default_options.h.in' thing work in a reasonable manner. * There is now some very minor compile-time checking of the user's choice of options. * NO_FAST_EXPTMOD doesn't seem to be used, so it has been removed. * ENABLE_USER_ALGO_LIST was supposed to be renamed DROPBEAR_USER_ALGO_LIST, and this commit completes that work. * DROPBEAR_FUZZ seems to be a relatively new, as-yet undocumented option, which was added by the following commit: commit 6e0b539e9ca0b5628c6c5a3d118ad6a2e79e8039 Author: Matt Johnston <matt@ucc.asn.au> Date: Tue May 23 22:29:21 2017 +0800 split out checkpubkey_line() separately It has now been added to `sysoptions.h' and defined as `0' by default. * The configuration option `DROPBEAR_PASSWORD_ENV' is no longer listed in `default_options.h.in'; it is no longer meant to be set by the user, and is instead left to be defined in `sysoptions.h' (where it was already being defined) as merely the name of the environment variable in question: DROPBEAR_PASSWORD To enable or disable use of that environment variable, the user must now toggle `DROPBEAR_USE_DROPBEAR_PASSWORD'. * The sFTP support is now toggled by setting `DROPBEAR_SFTPSERVER', and the path of the sFTP server program is set independently through the usual SFTPSERVER_PATH.
* | | | fix unused variable from mergeMatt Johnston2018-02-141-1/+0
| | | |
* | | | use parent $CC etcMatt Johnston2018-02-101-3/+5
| | | |
* | | | pass CFLAGS to LTC_CFLAGSMatt Johnston2018-02-101-1/+1
| | | |
* | | | cast m_burn argument away from volatileMatt Johnston2018-02-101-1/+1
| | | |
* | | | Put Dropbear config in a separate fileMatt Johnston2018-02-094-48/+229
| | | | | | | | | | | | | | | | Patch out MECC DER
* | | | Fix commenting outMatt Johnston2018-02-091-2/+2
| | | |
* | | | add $srcdir as neededMatt Johnston2018-02-091-9/+9
| | | |
* | | | Update Makefile.inMatt Johnston2018-02-091-329/+243
| | | |
* | | | Update to libtomcrypt 1.18.1, merged with Dropbear changesMatt Johnston2018-02-09516-11813/+87054
|/ / /
* | | fix updates to libtomcrypt/libtommath for out of tree buildsMatt Johnston2018-01-231-1/+2
|/ /
* | update to libtomcrypt 1.17 (with Dropbear changes)Matt Johnston2017-06-24353-2649/+4095
|/
* Support out-of-tree builds usign bundled libtomHenrik Nordstr?m2016-05-111-1/+1
| | | | | | When building out-of-tree we need both source and generated folders in include paths to find both distributed and generated headers.
* move m_burn and function attributes to dbhelpersMatt Johnston2016-03-172-6/+3
| | | | use m_burn for libtomcrypt zeromem() too
* Fix unused but set variable warnings [-Werror=unused-but-set-variable]Ga?l PORTAY2015-05-022-4/+9
|
* Fix unused parameters warnings [-Werror=unused-parameter]Ga?l PORTAY2015-05-026-0/+6
|
* Uses abort() instead of raising a SIGABRT signal [-Werror]Ga?l PORTAY2015-05-021-1/+1
| | | | | | | | | | | | error: ?noreturn? function does return [-Werror] abort() is a noreturn function while raise() is not. And because crypt_argchk() is flagged as __attribute__(noreturn), abort() appears to be a better condidate. This compilation warning has probably been introduced by commit 1809f741cba865b03d4db5c4ba8c41364a55d6bc.
* Avoid malloc in hmacMatt Johnston2015-03-012-26/+2
|
* Add more ATTRIB_NORETURN annotations, from Thorsten HorstmannMatt Johnston2015-02-241-1/+9
|
* A bit of work on ecdsa for host/auth keysMatt Johnston2013-04-141-0/+2
|
* ecc kind of works, needs fixing/testingMatt Johnston2013-04-0711-16/+58
|
* More changes for KEX and ECDH. Set up hash descriptors, make ECC code work,Matt Johnston2013-03-291-1/+3
| | | | ses.hash and ses.session_id are now buffers (doesn't compile)
* Set LTC_SOURCE for proper ltm_desc etcMatt Johnston2013-03-291-1/+1
|
* more bits on ecc branchMatt Johnston2013-03-271-1/+7
|
* refactor kexdh code a bit, start working on ecdh etcMatt Johnston2013-03-261-0/+7
|
* - Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to beMatt Johnston2012-05-101-5/+9
| | | | getting keyed incorrectly
* Define LTC_NO_FILE to avoid hmac_file() etcMatt Johnston2011-04-071-1/+1
|
* - Add Counter Mode supportMatt Johnston2008-09-291-4/+8
|
* propagate from branch 'au.asn.ucc.matt.ltc.dropbear' (head ↵Matt Johnston2007-01-111-1/+1
| | | | | | c1db4398d56c56c6d06ae1e20c1e0d04dbb598ed) to branch 'au.asn.ucc.matt.dropbear' (head d26d5eb2837f46b56a33fb0e7573aa0201abd4d5)
* propagate from branch 'au.asn.ucc.matt.ltc.dropbear' (head ↵Matt Johnston2007-01-112-5/+10
| | | | | | ffd1015238ffcc959f6cd95176d96fcd0945a397) to branch 'au.asn.ucc.matt.dropbear' (head 52ccb0ad0587a62bc64aecb939adbb76546aac16)
* propagate from branch 'au.asn.ucc.matt.ltc.dropbear' (head ↵Matt Johnston2007-01-11368-10129/+25555
| | | | | | 2af22fb4e878750b88f80f90d439b316d229796f) to branch 'au.asn.ucc.matt.dropbear' (head 02c413252c90e9de8e03d91e9939dde3029f5c0a)
* Fix up separate-directory building for libtomcryptMatt Johnston2006-10-111-1/+1
| | | | Use $CC rather than $LD for linking
* propagate from branch 'au.asn.ucc.matt.ltc.dropbear' (head ↵Matt Johnston2006-03-08296-0/+61502
20dccfc09627970a312d77fb41dc2970b62689c3) to branch 'au.asn.ucc.matt.dropbear' (head fdf4a7a3b97ae5046139915de7e40399cceb2c01)
View Lorry Controller Status