diff options
| author | djm <djm> | 2007-06-11 04:01:42 +0000 |
|---|---|---|
| committer | djm <djm> | 2007-06-11 04:01:42 +0000 |
| commit | f4c2ce899feb8dd33fb179ceae1d36b2c04ae789 (patch) | |
| tree | 47c10b43540fecda9a871bc84b8c4f286cc1ebce /kex.h | |
| parent | ecf14bbf8e874b7e22f59597ee8471e69261ea1d (diff) | |
| download | openssh-f4c2ce899feb8dd33fb179ceae1d36b2c04ae789.tar.gz | |
- pvalchev@cvs.openbsd.org 2007/06/07 19:37:34
[kex.h mac.c mac.h monitor_wrap.c myproposal.h packet.c ssh.1]
[ssh_config.5 sshd.8 sshd_config.5]
Add a new MAC algorithm for data integrity, UMAC-64 (not default yet,
must specify umac-64@openssh.com). Provides about 20% end-to-end speedup
compared to hmac-md5. Represents a different approach to message
authentication to that of HMAC that may be beneficial if HMAC based on
one of its underlying hash algorithms is found to be vulnerable to a
new attack. http://www.ietf.org/rfc/rfc4418.txt
in conjunction with and OK djm@
Diffstat (limited to 'kex.h')
| -rw-r--r-- | kex.h | 8 |
1 files changed, 5 insertions, 3 deletions
@@ -1,4 +1,4 @@ -/* $OpenBSD: kex.h,v 1.45 2007/06/05 06:52:37 djm Exp $ */ +/* $OpenBSD: kex.h,v 1.46 2007/06/07 19:37:34 pvalchev Exp $ */ /* * Copyright (c) 2000, 2001 Markus Friedl. All rights reserved. @@ -87,11 +87,13 @@ struct Enc { struct Mac { char *name; int enabled; - const EVP_MD *md; u_int mac_len; u_char *key; u_int key_len; - HMAC_CTX ctx; + int type; + const EVP_MD *evp_md; + HMAC_CTX evp_ctx; + struct umac_ctx *umac_ctx; }; struct Comp { int type; |