summaryrefslogtreecommitdiffstats
path: root/src/lib/crypto
Commit message (Collapse)AuthorAgeFilesLines
...
* ignore some more generated filesKen Raeburn2004-02-241-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16119 dc483132-0cff-0310-8789-dd5450dbe970
* ignore some files generated during testingKen Raeburn2004-02-192-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16103 dc483132-0cff-0310-8789-dd5450dbe970
* protoizeKen Raeburn2004-02-1955-412/+249
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16102 dc483132-0cff-0310-8789-dd5450dbe970
* ignore aes-gen programKen Raeburn2004-02-191-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16101 dc483132-0cff-0310-8789-dd5450dbe970
* * f_tables.h (DES_DO_ENCRYPT, DES_DO_DECRYPT): Allocate temporary variableKen Raeburn2004-02-175-24/+30
| | | | | | | | | | | locally instead of taking the extra argument. * d3_cbc.c (krb5int_des3_cbc_encrypt): Don't pass the extra argument, and delete the automatic variable. (krb5int_des3_cbc_decrypt): Likewise. * f_cbc.c (krb5int_des_cbc_encrypt, krb5int_des_cbc_decrypt): Likewise. * f_cksum.c (mit_des_cbc_cksum): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16095 dc483132-0cff-0310-8789-dd5450dbe970
* * afsstring2key.c (krb5_afs_encrypt): Drop EDFLAG as an argument, make it localKen Raeburn2004-02-172-4/+23
| | | | | | | | instead, since we always pass 0. (afs_crypt): Call changed. (krb5_afs_crypt_setkey, krb5_afs_encrypt): Use memcpy. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16094 dc483132-0cff-0310-8789-dd5450dbe970
* * t_encrypt.c (compare_results): New function.Ken Raeburn2004-02-133-8/+57
| | | | | | | | | | | | (main): Use it to check decryption results against the original plaintext. When testing with cipher state, encrypt and then decrypt (and verify) two messages. * Makefile.in (t_encrypt$(EXEEXT)): Depend on CRYPTO_DEPLIB. ticket: 2229 status: resolved tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16079 dc483132-0cff-0310-8789-dd5450dbe970
* * dk_decrypt.c (krb5_dk_decrypt_maybe_trunc_hmac): New argument IVEC_MODE. IfKen Raeburn2004-02-133-11/+48
| | | | | | | | | | | | clear, same old behavior. If set, copy out next to last block for CTS. (krb5_dk_decrypt, krb5int_aes_dk_decrypt): Pass extra argument. * dk_encrypt.c (krb5int_aes_dk_encrypt): For IV, copy out next to last block for CTS. ticket: 2229 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16077 dc483132-0cff-0310-8789-dd5450dbe970
* * t_cts.c (test_cts): Process encryption and decryption IVs separately, makeKen Raeburn2004-02-092-3/+33
| | | | | | | | | sure they match, and display the value. ticket: 2223 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16039 dc483132-0cff-0310-8789-dd5450dbe970
* * aes.c (krb5int_aes_encrypt, krb5int_aes_decrypt): Copy out value for new IVKen Raeburn2004-02-092-0/+10
| | | | | | | ticket: 2223 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16038 dc483132-0cff-0310-8789-dd5450dbe970
* * arcfour.c (l40): Now constKen Raeburn2003-12-202-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15947 dc483132-0cff-0310-8789-dd5450dbe970
* * arcfour.c (arcfour_weakkey1, arcfour_weakkey2, arcfour_weakkeys): Now constKen Raeburn2003-12-202-7/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15946 dc483132-0cff-0310-8789-dd5450dbe970
* Replace the array of 8 mit_des_cblock object 'mit_des_zeroblock' definedKen Raeburn2003-12-2010-10/+23
| | | | | | | locally in multiple files with one defined in f_cbc.c; make it a single element rather than an array. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15945 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2003-12-1515-272/+316
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15928 dc483132-0cff-0310-8789-dd5450dbe970
* Add platform-dependent 64-bit and inline-function support via new headerKen Raeburn2003-12-134-21/+77
| | | | | | | | | | | | | | | k5-platform.h. Add 64-bit serializer support. [Not needed for ticket 1471, but needed for 2040 and annoying to check in separately.] Add to (internal for now) crypto API a function to get the mandatory checksum type associated with an enctype. New support for server-generated subkey, selected via an auth_context flag. ticket: 1471 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15908 dc483132-0cff-0310-8789-dd5450dbe970
* Change crypto "provider" structures to hold numeric values instead of functionKen Raeburn2003-07-2241-228/+190
| | | | | | | pointers for key sizes, block sizes, etc., when the values are always constant for each encryption or hash mechanism. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15714 dc483132-0cff-0310-8789-dd5450dbe970
* Don't combine encrypt and decrypt code paths.Ken Raeburn2003-07-222-19/+45
| | | | | | | | | | | | | Zap key schedule when done. * des3.c (validate_and_schedule): Split out from old k5_des3_docrypt. (k5_des3_encrypt, k5_des3_decrypt): Call it, and krb5int_des3_cbc_encrypt or _decrypt, instead of k5_des3_docrypt. Zap key schedules before returning. ticket: 1404 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15710 dc483132-0cff-0310-8789-dd5450dbe970
* crypto library has bogus dependence on com_errKen Raeburn2003-07-222-2/+4
| | | | | | | | | | | | Forgotten debugging code that was never removed... * pbkdf2.c (foo): Never call com_err. ticket: new target_version: 1.3.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15707 dc483132-0cff-0310-8789-dd5450dbe970
* * f_cbc.c (krb5int_des_cbc_decrypt): Move declarations that were afterKen Raeburn2003-07-223-4/+10
| | | | | | | statements after flattening blocks is previous change. * d3_cbc.c (krb5int_des3_cbc_decrypt): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15706 dc483132-0cff-0310-8789-dd5450dbe970
* Separate the DES encrypt and decrypt operations into separate functions,Ken Raeburn2003-07-174-254/+361
| | | | | | | | | | | | | | | | since they have almost no code in common. * f_cbc.c (krb5int_des_cbc_encrypt, krb5int_des_cbc_decrypt): New functions broken out from mit_des_cbc_encrypt. (mit_des_cbc_encrypt): Call them. * d3_cbc.c (krb5int_des3_cbc_encrypt, krb5int_des3_cbc_decrypt): New functions broken out from mit_des3_cbc_encrypt. (mit_des3_cbc_encrypt): Call them. * des_int.h (krb5int_des_cbc_encrypt, krb5int_des_cbc_decrypt, krb5int_des3_cbc_encrypt, krb5int_des3_cbc_decrypt): Declare. (mit_des_cbc_encrypt, mit_des3_cbc_encrypt): New macros. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15692 dc483132-0cff-0310-8789-dd5450dbe970
* delete ##WIN16## lines from makefilesKen Raeburn2003-07-1728-14/+56
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15691 dc483132-0cff-0310-8789-dd5450dbe970
* With this patch, things seem to work with a Heimdal client and MIT KDCKen Raeburn2003-06-262-0/+6
| | | | | | | | | * checksum_length.c (krb5_c_checksum_length): Handle trunc_size. ticket: 1621 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15652 dc483132-0cff-0310-8789-dd5450dbe970
* * cksumtypes.c (krb5_cksumtypes_list): Add aes128/256 hmacs, with newKen Raeburn2003-06-243-0/+24
| | | | | | | | | | | | trunc_size field. * make_checksum.c (krb5_c_make_checksum): If trunc_size is specified, shrink the computed checksum down to the indicated size. ticket: 1621 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15650 dc483132-0cff-0310-8789-dd5450dbe970
* If krb5_c_string_to_key isSam Hartman2003-06-052-0/+19
| | | | | | | | | | | called with an afs3 salt length for a non-DES enctype, return KRB5_CRYPTO_INTERNAL. Ticket: 1521 Status: open Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15576 dc483132-0cff-0310-8789-dd5450dbe970
* make-depend updatesKen Raeburn2003-05-2415-221/+221
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15490 dc483132-0cff-0310-8789-dd5450dbe970
* When generating etype_info2 for DES style keys, use s2kparams toSam Hartman2003-05-242-2/+21
| | | | | | | | | | | | communicate the type if the key has afs3 salt. If such s2kparams are received by the client, use the afs string2key function to process the key. Ticket: 1512 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15489 dc483132-0cff-0310-8789-dd5450dbe970
* Only allow combine_keys to work on des and 3des enctypes. It is notSam Hartman2003-05-152-0/+26
| | | | | | | | | supported for rc4 or AES until we implement the crypto framework PRF. Ticket: 1248 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15448 dc483132-0cff-0310-8789-dd5450dbe970
* provide shorthand aliases for AES enctypesKen Raeburn2003-05-132-0/+15
| | | | | | | | | | | * etypes.c (krb5_enctypes_list): Add names aes128-cts and aes256-cts as aliases. ticket: new target_version: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15433 dc483132-0cff-0310-8789-dd5450dbe970
* reduce AES string-to-key iteration count to 4096Ken Raeburn2003-05-132-3/+39
| | | | | | | | | | | | | | * aes_s2k.c (DEFAULT_ITERATION_COUNT): New macro; define to 4096. (MAX_ITERATION_COUNT): New macro. (krb5int_aes_string_to_key): Use them. Also added a proper copyright notice. ticket: new tags: pullup target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15427 dc483132-0cff-0310-8789-dd5450dbe970
* Add AES enctypes to t_encryptSam Hartman2003-05-132-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15424 dc483132-0cff-0310-8789-dd5450dbe970
* * IMplement etype_info in KDC. If the request contains any newSam Hartman2003-05-122-1/+4
| | | | | | | | | | | | | | | | | | | | enctypes (currently AES but anything not explicitly listed as old) then only etype_info2 is sent back in response. Send back etype_info2 all the time. Also send back etype_info2 to provide salt and s2kparams with AS reply not just for preauth errors. * Expose interface for getting string2key with parameters (previously implemented but not exported) * IN the client (at least for get_init_creds interface) prfer etype_info2 to etype_info and pw_salt. Pass s2kparams and use string2key_with_params. Ticket: 1454 Status: open Target_Version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15412 dc483132-0cff-0310-8789-dd5450dbe970
* AES code shouldn't define uint32_t etc if the system provides themKen Raeburn2003-04-292-1/+5
| | | | | | | | | | Use inttypes.h if available. ticket: new status: open target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15383 dc483132-0cff-0310-8789-dd5450dbe970
* * dk_encrypt.c (krb5int_aes_dk_encrypt): Set output length properlyKen Raeburn2003-04-182-0/+7
| | | | | | | ticket: 1418 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15357 dc483132-0cff-0310-8789-dd5450dbe970
* Finish implementation of CBC+CTS decryption and truncated HMAC for AES.Ken Raeburn2003-04-139-36/+348
| | | | | | | | | Fix memory management bugs. ticket: 1418 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15351 dc483132-0cff-0310-8789-dd5450dbe970
* Avoid really, really huge cpu time usage caused by iteration count inKen Raeburn2003-04-132-0/+11
| | | | | | | | | | | | | spoofed preauth data. (Merely huge cpu time usage is probably still possible.) * aes_s2k.c (krb5int_aes_string_to_key): Return an error if the supplied iteration count is really, really large. ticket: 1418 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15349 dc483132-0cff-0310-8789-dd5450dbe970
* * prng.c: use Unix randomness sources on Mac OS XAlexandra Ellwood2003-03-062-4/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15249 dc483132-0cff-0310-8789-dd5450dbe970
* * des_int.h: Added prototype for mit_afs_crypt which is used by the ↵Alexandra Ellwood2003-03-062-0/+7
| | | | | | deprecated KfM des_crypt function git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15248 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (OBJFILELIST, OBJFILEDEP) [##DOS]: Add aes.lst.Ken Raeburn2003-03-052-2/+17
| | | | | | (all-windows, clean-windows, check-windows): Process aes directory. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15233 dc483132-0cff-0310-8789-dd5450dbe970
* string_to_key.c (krb5_c_string_to_key_with_params): Declare before useKen Raeburn2003-03-052-1/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15231 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up PBKDF2 interface. Add s2k-params to string-to-key interface, exceptKen Raeburn2003-03-0516-76/+114
| | | | | | | no new decl in krb5.h yet; rename changed s2k functions to use krb5int_ prefix. Add AES to etype table. Delete some unused declarations. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15229 dc483132-0cff-0310-8789-dd5450dbe970
* * aes.c (krb5int_aes_init_state): Implement.Ken Raeburn2003-03-053-3/+14
| | | | | | * enc_provider.h (krb5int_enc_aes128, krb5int_enc_aes256): Declare. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15228 dc483132-0cff-0310-8789-dd5450dbe970
* Add AES string-to-key functionKen Raeburn2003-03-054-9/+84
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15226 dc483132-0cff-0310-8789-dd5450dbe970
* Delete some unused declarations from old-crypto APIKen Raeburn2003-03-058-21/+22
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15225 dc483132-0cff-0310-8789-dd5450dbe970
* * pbkdf2.c (F): Now takes krb5_data for password and salt.Ken Raeburn2003-03-033-42/+53
| | | | | | | | | (krb5int_pbkdf2, krb5int_pbkdf2_hmac_sha1, krb5int_pbkdf2_hmac_sha1_128, krb5int_pbkdf2_hmac_sha1_256): Likewise, and for output also. * vectors.c (test_pbkdf2): Calls updated. (main): Run pbkdf2 tests. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15216 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (clean): Cleanup testing objects and outputsEzra Peisach2003-02-282-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15208 dc483132-0cff-0310-8789-dd5450dbe970
* remove wrong commentKen Raeburn2003-02-261-1/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15206 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (run-aes-test): Add $(RUN_SETUP) so that ifEzra Peisach2003-02-052-2/+7
| | | | | | compiling only shared libraries, LD_LIBRARY_PATH is set for test. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15155 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2003-02-032-8/+17
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15147 dc483132-0cff-0310-8789-dd5450dbe970
* *** empty log message ***Ken Raeburn2003-02-031-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15146 dc483132-0cff-0310-8789-dd5450dbe970
* Remove placeholder file that shouldn't have been checked inKen Raeburn2003-02-032-9/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15145 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-09-27 02:42:31 +0000