diff options
author | Damien Miller <djm@mindrot.org> | 2007-06-11 14:01:42 +1000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2007-06-11 14:01:42 +1000 |
commit | e45796f7b425c04b6ba2d1f72e22c0cb6b3322ef (patch) | |
tree | 4882ccdb6184b1cf259ff916c2f716f3d1238f93 /kex.h | |
parent | 835284b74c984600aa50ebac527c37238027b4da (diff) |
- pvalchev@cvs.openbsd.org 2007/06/07 19:37:34
[kex.h mac.c mac.h monitor_wrap.c myproposal.h packet.c ssh.1]
[ssh_config.5 sshd.8 sshd_config.5]
Add a new MAC algorithm for data integrity, UMAC-64 (not default yet,
must specify umac-64@openssh.com). Provides about 20% end-to-end speedup
compared to hmac-md5. Represents a different approach to message
authentication to that of HMAC that may be beneficial if HMAC based on
one of its underlying hash algorithms is found to be vulnerable to a
new attack. http://www.ietf.org/rfc/rfc4418.txt
in conjunction with and OK djm@
Diffstat (limited to 'kex.h')
-rw-r--r-- | kex.h | 8 |
1 files changed, 5 insertions, 3 deletions
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: kex.h,v 1.45 2007/06/05 06:52:37 djm Exp $ */ | 1 | /* $OpenBSD: kex.h,v 1.46 2007/06/07 19:37:34 pvalchev Exp $ */ |
2 | 2 | ||
3 | /* | 3 | /* |
4 | * Copyright (c) 2000, 2001 Markus Friedl. All rights reserved. | 4 | * Copyright (c) 2000, 2001 Markus Friedl. All rights reserved. |
@@ -87,11 +87,13 @@ struct Enc { | |||
87 | struct Mac { | 87 | struct Mac { |
88 | char *name; | 88 | char *name; |
89 | int enabled; | 89 | int enabled; |
90 | const EVP_MD *md; | ||
91 | u_int mac_len; | 90 | u_int mac_len; |
92 | u_char *key; | 91 | u_char *key; |
93 | u_int key_len; | 92 | u_int key_len; |
94 | HMAC_CTX ctx; | 93 | int type; |
94 | const EVP_MD *evp_md; | ||
95 | HMAC_CTX evp_ctx; | ||
96 | struct umac_ctx *umac_ctx; | ||
95 | }; | 97 | }; |
96 | struct Comp { | 98 | struct Comp { |
97 | int type; | 99 | int type; |