chiark - git - ian - secnet.git/commit

site: support multiple transforms

The "transform" key in site's dictionary argument can now be a list,
as well as just a single transform.

We use 16 bits of the capability mechanism to advertise the transforms
we support; the config is supposed to nominate a transform capability
number (from 0 to 15) for each transform closure - although the
default numbers are sufficient if you don't need to do parameter
rollover.

The receiver of MSG2 intersects the two bitmaps and chooses the best
transform, and states its choice in MSG3.

A protocol downgrade attack is prevented by the fact that the
capability bitmaps are advertised in the signed parts of MSG3 and
MSG4. (If the one in MSG4 doesn't match what was in MSG2, the MSG4 is
rejected and presumably the key exchange fails.)

Signed-off-by: Ian Jackson <ijackson@chiark.greenend.org.uk>

author	Ian Jackson <ijackson@chiark.greenend.org.uk>
	Thu, 25 Jul 2013 17:30:53 +0000 (18:30 +0100)
committer	Ian Jackson <ijackson@chiark.greenend.org.uk>
	Thu, 25 Jul 2013 17:30:53 +0000 (18:30 +0100)
commit	5b5f297f9a9d47ee7e9804d5bdaa552f1953c6b6
tree	83f48015a275bd9e7bcb6b9a13cf9cb100eb7d70	tree \| snapshot
parent	1ce2f8bc69bc1bef98b48f450081d96e2c29cc00	commit \| diff

NOTES		diff \| blob \| history
example.conf		diff \| blob \| history
magic.h		diff \| blob \| history
secnet.8		diff \| blob \| history
secnet.h		diff \| blob \| history
site.c		diff \| blob \| history
test-example/common.conf		diff \| blob \| history
transform-cbcmac.c		diff \| blob \| history
transform-common.h		diff \| blob \| history
transform-eax.c		diff \| blob \| history