chiark - git - mdw - tripe/commit

author	Mark Wooding <mdw@distorted.org.uk>
	Thu, 26 May 2016 08:26:09 +0000 (09:26 +0100)
committer	Mark Wooding <mdw@distorted.org.uk>
	Sun, 14 May 2017 17:19:08 +0000 (18:19 +0100)
commit	5b9f3d3788bafcba79c893b1afc6a1c77bc77d20
tree	fc7e3c9cef55c46b8956559f9e5fb0c96f259005	tree \| snapshot
parent	c70a7c5cedab62209640b76f03d97c1876e38dc6	commit \| diff

server/: Replace the Diffie--Hellman group abstraction.

Downside: this basically involves duplicating Catacomb's `group'
implementation.

Upside: I've been able to improve a few things.  Most notably, this new
abstraction covers scalars as well as group elements, which extends the
possibilities.  Because the new abstraction takes over responsibility
for tracing and reporting, I've been able to make group-specific
improvements.

More subtly, I've also introduced an additional group-element encoding
format.  Previously, there was the `buffer format' (a sequence of
length-prefixed items) and the `raw format' (a binary blob with a known
length, used in encrypted messages).  But there's an additional source
of length leakage for secret values, which is in hashing: so I've
introduced a new `hash format', which currently works the same as
`buffer' for compatibility's sake, but could later be switched -- say,
by a key attribute -- to work like `raw'.

I've also passed the key file and object through to the DH operations,
so that they can pick up additional attributes from the key.  Nothing
takes advantage of this yet, though.

server/Makefile.am		diff \| blob \| blame \| history
server/admin.c		diff \| blob \| blame \| history
server/dh.c	[new file with mode: 0644]	blob
server/keyexch.c		diff \| blob \| blame \| history
server/keymgmt.c		diff \| blob \| blame \| history
server/servutil.c		diff \| blob \| blame \| history
server/tripe.h		diff \| blob \| blame \| history