DeforaNetworks/fwknop
3
0
Fork 0
Code Releases Activity
Files
7dec26852a9cf63ef686332df9aede7e12695f09
fwknop/lib
History
Michael Rash 54872acfc3 Convert strncmp() calls to constant_runtime_cmp() at various places 
This commit is a follow up to Ryman's report (#85) of a potential timing attack
that could be leveraged against fwknop when strncmp() is used to compare HMAC
digests.  All strncmp() calls that do similar things have been replaced with a
new constant_runtime_cmp() function that mitigates this problem.
2013-06-01 21:55:45 -04:00
..
base64.c
First round if refactoring to clean up header dependencies.
2013-03-02 17:03:20 -05:00
base64.h
First round if refactoring to clean up header dependencies.
2013-03-02 17:03:20 -05:00
cipher_funcs.c
Convert strncmp() calls to constant_runtime_cmp() at various places
2013-06-01 21:55:45 -04:00
cipher_funcs.h
Added HMAC support to GPG encryption modes, closes #58
2013-04-22 20:45:59 -04:00
digest.c
Fixed gcc warnings on openbsd. - mrash/fwknop#60
2013-05-14 22:08:44 +02:00
digest.h
Fixed gcc warnings on openbsd. - mrash/fwknop#60
2013-05-14 22:08:44 +02:00
fko_client_timeout.c
[libfko] bug fix to apply ctx initialization check before attempting to use ctx->message_type in fko_set_spa_client_timeout()
2013-05-12 15:02:31 -04:00
fko_common.h
Rewrite enc_mode_inttostr() and enc_mode_strtoint().
2013-05-12 16:52:52 +02:00
fko_context.h
[libfko] changed 'state' context element to 'int' type to fix a 'extra high-order bits' bug found by Coverity
2013-05-09 22:43:05 -04:00
fko_decode.c
Convert strncmp() calls to constant_runtime_cmp() at various places
2013-06-01 21:55:45 -04:00
fko_digest.c
fko_encode.c
Fixed gcc warnings on openbsd. - mrash/fwknop#60
2013-05-14 22:08:44 +02:00
fko_encryption.c
[libfko] added context initialized check to fko_decrypt_spa_data()
2013-05-12 20:49:00 -04:00
fko_error.c
Enforce Rijndael and HMAC key length maximum sizes
2013-03-24 21:04:18 -04:00
fko_funcs.c
[client] --key-gen bug fix to print keys to stdout
2013-05-17 21:03:16 -04:00
fko_hmac.c
Convert strncmp() calls to constant_runtime_cmp() at various places
2013-06-01 21:55:45 -04:00
fko_limits.h
fko_message.c
fko_message.h
fko_nat_access.c
fko_rand_value.c
Fixed gcc warnings on openbsd. - mrash/fwknop#60
2013-05-14 22:08:44 +02:00
fko_server_auth.c
fko_state.h
fko_timestamp.c
fko_user.c
fixed several resource leak conditions found by Coverity
2013-05-09 17:15:58 -04:00
fko_user.h
fko_util.c
Convert strncmp() calls to constant_runtime_cmp() at various places
2013-06-01 21:55:45 -04:00
fko_util.h
Convert strncmp() calls to constant_runtime_cmp() at various places
2013-06-01 21:55:45 -04:00
fko.h
HMAC function rename for consistency
2013-03-29 20:42:44 -04:00
gpgme_funcs.c
Fixed gcc warnings on openbsd. - mrash/fwknop#60
2013-05-14 22:08:44 +02:00
gpgme_funcs.h
First round if refactoring to clean up header dependencies.
2013-03-02 17:03:20 -05:00
hmac.c
Use {0} initializer for all stack allocated char arrays
2013-05-21 22:00:15 -04:00
hmac.h
[libfko] bug fix to maintain OpenSSL compatibility for HMAC keys longer than associated block size
2013-03-12 22:17:41 -04:00
Makefile.am
md5.c
various sizeof() usage and type bug fixes found by Coverity
2013-05-09 21:17:27 -04:00
md5.h
HMAC MD5 bug fix to ensure to set the MD5 block length to 64
2013-03-10 21:59:39 -04:00
rijndael.c
First round if refactoring to clean up header dependencies.
2013-03-02 17:03:20 -05:00
rijndael.h
First round if refactoring to clean up header dependencies.
2013-03-02 17:03:20 -05:00
sha1.c
Fix byte order warning
2013-03-03 14:29:08 -05:00
sha1.h
add HMAC-SHA1 support
2013-03-10 14:56:39 -04:00
sha2.c
[libfko] fixed remaining sizeof() usage bug in SHA256 code found by Coverity
2013-05-09 22:14:06 -04:00
sha2.h
interim commit for supporting multiple HMAC digest types (# 45)
2013-03-07 23:14:48 -05:00
strlcat.c
strlcpy.c