ClearML/dropbear
1
0
Fork 0
mirror of https://github.com/clearml/dropbear synced 2025-02-07 13:21:15 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

- Make curve25519 work after fixing a typo, interoperates with OpenSSH

Browse Source 
- comment on ecc binary size effects

--HG--
branch : ecc
This commit is contained in:
Matt Johnston 2013-11-09 00:02:26 +08:00
parent 29b1455f36
commit 1e00d0b926
4 changed files with 17 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
cli-kex.c
View File

@ -79,7 +79,7 @@ void send_msg_kexdh_init() {
} }
cli_ses.curve25519_param = gen_kexcurve25519_param(); cli_ses.curve25519_param = gen_kexcurve25519_param();
} }
buf_putstring(ses.writepayload, cli_ses.curve25519_param->priv, CURVE25519_LEN); buf_putstring(ses.writepayload, cli_ses.curve25519_param->pub, CURVE25519_LEN);
#endif #endif
break; break;
} }

16
options.h
View File

@ -138,22 +138,24 @@ much traffic. */
* SSH2 RFC Draft requires dss, recommends rsa */ * SSH2 RFC Draft requires dss, recommends rsa */
#define DROPBEAR_RSA #define DROPBEAR_RSA
#define DROPBEAR_DSS #define DROPBEAR_DSS
/* ECDSA is significantly faster than RSA or DSS. Compiling in ECC
* code (either ECDSA or ECDH) increases binary size - around 30kB
* on x86-64 */
#define DROPBEAR_ECDSA #define DROPBEAR_ECDSA
/* Generate hostkeys as-needed when the first connection using that key type occurs. /* Generate hostkeys as-needed when the first connection using that key type occurs.
This avoids the need to otherwise run "dropbearkey" and avoids some problems This avoids the need to otherwise run "dropbearkey" and avoids some problems
with badly seeded random devices when systems first boot. with badly seeded /dev/urandom when systems first boot.
This also requires a runtime flag "-R". */ This also requires a runtime flag "-R". */
#define DROPBEAR_DELAY_HOSTKEY #define DROPBEAR_DELAY_HOSTKEY
/* Enable Curve25519 for key exchange. This is another elliptic
* curve method with good security properties. Increases binary size
* by ~10kB on x86-64 */
#define DROPBEAR_CURVE25519 #define DROPBEAR_CURVE25519
/* RSA can be vulnerable to timing attacks which use the time required for /* Enable elliptic curve Diffie Hellman key exchange, see note about
* signing to guess the private key. Blinding avoids this attack, though makes * ECDSA above */
* signing operations slightly slower. */
#define RSA_BLINDING
/* Enable elliptic curve Diffie Hellman key exchange */
#define DROPBEAR_ECDH #define DROPBEAR_ECDH
/* Control the memory/performance/compression tradeoff for zlib. /* Control the memory/performance/compression tradeoff for zlib.

2
svr-kex.c
View File

@ -213,7 +213,7 @@ static void send_msg_kexdh_reply(mp_int *dh_e, buffer *ecdh_qs) {
{ {
struct kex_curve25519_param *param = gen_kexcurve25519_param(); struct kex_curve25519_param *param = gen_kexcurve25519_param();
kexcurve25519_comb_key(param, ecdh_qs, svr_opts.hostkey); kexcurve25519_comb_key(param, ecdh_qs, svr_opts.hostkey);
buf_putstring(ses.writepayload, param->priv, CURVE25519_LEN); buf_putstring(ses.writepayload, param->pub, CURVE25519_LEN);
free_kexcurve25519_param(param); free_kexcurve25519_param(param);
} }
#endif #endif

7
sysoptions.h
View File

@ -104,8 +104,13 @@
#define DROPBEAR_LTC_PRNG #define DROPBEAR_LTC_PRNG
#endif #endif
/* RSA can be vulnerable to timing attacks which use the time required for
* signing to guess the private key. Blinding avoids this attack, though makes
* signing operations slightly slower. */
#define RSA_BLINDING
/* hashes which will be linked and registered */ /* hashes which will be linked and registered */
#if defined(DROPBEAR_SHA2_256_HMAC) || defined(DROPBEAR_ECC_256) #if defined(DROPBEAR_SHA2_256_HMAC) || defined(DROPBEAR_ECC_256) || defined(DROPBEAR_CURVE25519)
#define DROPBEAR_SHA256 #define DROPBEAR_SHA256
#endif #endif
#if defined(DROPBEAR_ECC_384) #if defined(DROPBEAR_ECC_384)