otp.git/lib/crypto/src, branch OTP_R14B03 Mirror of Erlang/OTP repository. Add true streaming AES (CTR) encryption and streaming HMAC operations 2011-05-18T13:44:47+00:00 Travis Jensen Travis.Jensen@gmail.com 2011-05-06T18:36:38+00:00 b74ff4f6df28405222752fb2b1089f11e96e5406 The current crypto module implementations require all of the data being encrypted or authenticated to be in memory at one time. When trying to encrypt or authenticate a large file (on order of GBs), this is problematic. The implementation of AES CTR uses the same underlying implementation as aes_ctr_[en|de]crypt, but hands the state back to the client after every operation. The HMAC implementation differs from the previous implementations of sha_mac and md5_mac. The old implementations did not utilize the OpenSSL HMAC implementation. In order to ensure that I didn't implement something incorrectly, I chose to use the OpenSSL HMAC implementation directly, since it handles streaming as well. This has the added side benefit of allowing other hash functions to be used as desired (for instances, I added support for ripemd160 hashing). While I haven't done this, it seems like the existing md5_mac and sha_mac functions could either be depricated or redefined in terms of the new hmac_ functions. Update AES CTR and HMAC streaming with code review input Ensure that memcpy operations in hmac operations are being size checked properly. Rename aes_ctr_XXX_with_state to aes_ctr_stream_XXX. Remove redundant hmac_init_[sha|md5|ripemd160] functions. Fix documentation for hmac_final_n. Fix possible error using negative value as a marker on an unsigned int Now, use a separate marker and add a unit test to test specifically for a case where HashLen is larger than the underlying resultant hash. Revert "Fix possible error using negative value as a marker on an unsigned int" This reverts commit 59cb177aa96444c0fd3ace6d01f7b8a70dd69cc9. Resolve buffer overflow posibility on an unsigned int. Change handling the marker for HashLen to use the fact that a second parameter that has to be the the HashLen was passed. Also, ensure that HashLen parameter is positive. 
The current crypto module implementations require all of the data
being encrypted or authenticated to be in memory at one time. When
trying to encrypt or authenticate a large file (on order of GBs),
this is problematic.

The implementation of AES CTR uses the same underlying implementation
as aes_ctr_[en|de]crypt, but hands the state back to the client
after every operation.

The HMAC implementation differs from the previous implementations of
sha_mac and md5_mac. The old implementations did not utilize the
OpenSSL HMAC implementation. In order to ensure that I didn't
implement something incorrectly, I chose to use the OpenSSL HMAC
implementation directly, since it handles streaming as well. This
has the added side benefit of allowing other hash functions to be
used as desired (for instances, I added support for ripemd160
hashing).

While I haven't done this, it seems like the existing md5_mac and
sha_mac functions could either be depricated or redefined in terms
of the new hmac_ functions.

Update AES CTR and HMAC streaming with code review input

Ensure that memcpy operations in hmac operations are being size
checked properly. Rename aes_ctr_XXX_with_state to
aes_ctr_stream_XXX. Remove redundant hmac_init_[sha|md5|ripemd160]
functions. Fix documentation for hmac_final_n.

Fix possible error using negative value as a marker on an unsigned int

Now, use a separate marker and add a unit test to test specifically for
a case where HashLen is larger than the underlying resultant hash.

Revert "Fix possible error using negative value as a marker on an unsigned int"

This reverts commit 59cb177aa96444c0fd3ace6d01f7b8a70dd69cc9.

Resolve buffer overflow posibility on an unsigned int.

Change handling the marker for HashLen to use the fact that a second
parameter that has to be the the HashLen was passed. Also, ensure
that HashLen parameter is positive.
Renamed the function strong_rand_uniform to strong_rand_mpint. 2011-04-19T11:35:29+00:00 Niclas Eklund nick@erlang.org 2011-04-19T11:35:29+00:00 afe36b58bb77012f94b19213ed9602c2eb9fd420 Added some checks in crypto.erl and crypto.c. Changed ssh_bits to use strong_rand_mpint. 
Added some checks in crypto.erl and crypto.c.
Changed ssh_bits to use strong_rand_mpint.
Fixed SSH appup, copyright headers SSH vsn and SSH release note. 2011-04-18T12:58:18+00:00 Niclas Eklund nick@erlang.org 2011-04-18T12:58:18+00:00 c31065c750e37d5368398e9e2a741a1d4ec0588c 






Adds NIFs for cryptographically strong random number generation.
2011-04-15T13:49:42+00:00

Niclas Eklund
nick@erlang.org

2011-04-15T13:49:42+00:00

f505644be64cd4844742b361a8ff411d70f4aa88

Also adds documentation and unit tests.

Thanks to Geoff Cant.





Also adds documentation and unit tests.

Thanks to Geoff Cant.







crypto CTR support
2010-11-17T15:12:46+00:00

Sverker Eriksson
sverker@erlang.org

2010-09-23T14:39:30+00:00

19762575090d0f3c83c610de2a65cccf0c135516












Build opt, debug and valgrind libraries as separate libraries
2010-09-02T20:30:54+00:00

Rickard Green
rickard@erlang.org

2010-08-11T21:57:43+00:00

ab64b20d32d9f496607d7a2d545194ad8d308956

The NIF library for crypto can now be built for valgrind
and/or debug as separate NIF libraries that will be
automatically loaded if the runtime system has been built
with a matching build type.





The NIF library for crypto can now be built for valgrind
and/or debug as separate NIF libraries that will be
automatically loaded if the runtime system has been built
with a matching build type.







Fix type spec error in crypto
2010-07-08T12:30:38+00:00

Sverker Eriksson
sverker@erlang.org

2010-06-17T15:56:16+00:00

8b6f2052d0a83da44462cd2642a52341d4ee193b

Changed return types from "binary" to "binary()"
for md5_mac, md5_mac_96, sha_mac and sha_mac_96.





Changed return types from "binary" to "binary()"
for md5_mac, md5_mac_96, sha_mac and sha_mac_96.







OTP-8700 crypto:dss_sign and dss_verify with pre-hashed digest.
2010-06-09T12:19:56+00:00

Sverker Eriksson
sverker@erlang.org

2010-06-09T12:01:01+00:00

8e7719b8a5ae1d9e2e464d6d1a7abe502e0f9cd3

New variants of crypto:dss_sign and crypto:dss_verify with an extra
argument to control how the digest is calculated.





New variants of crypto:dss_sign and crypto:dss_verify with an extra
argument to control how the digest is calculated.







crypto: Add type specs for all documented functions
2010-05-31T13:00:42+00:00

Björn Gustavsson
bjorn@erlang.org

2010-05-24T10:27:19+00:00

4b928be53fa903f091230f19b1fd7374eb096edf












crypto: Use erlang:nif_error/1 to squelch false Dialyzer warnings
2010-05-31T13:00:42+00:00

Björn Gustavsson
bjorn@erlang.org

2010-05-21T14:15:53+00:00

c28c4aa4b8d6d00540d36b860e1dd128cd9447e4