summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Andrey Rys [Fri, 22 Mar 2019 09:44:19 +0000 (16:44 +0700)]
-c zero: assume zero counter value.
Andrey Rys [Fri, 22 Mar 2019 09:30:17 +0000 (16:30 +0700)]
fix -C stream -c rand regression.
Because "STREAM" mode has separate init function and separate encryption function,
I had a mistake to put it into a wrong place at the first time I'd ported code to
tfcipher codebase. If you did encryptions with -C stream -c rand options applied in
the past, then, to decrypt such streams you must use zero counter value together with
omitting first counter bytes from stream.
This is especially disasterous if multiple encryptions were performed with same key
since STREAM here is effectively an OFB mode of operation.
Given that this mode encourages such usage patterns, I feel sorry for such a mistake.
Still, CTR mode is better than STREAM mode because it is seekable.
From CTR, STREAM differs only in being a nonseekable mode of operation, nothing more.
Andrey Rys [Thu, 21 Mar 2019 09:27:16 +0000 (16:27 +0700)]
fix mhexdump machine detection.
Andrey Rys [Wed, 20 Mar 2019 11:51:54 +0000 (18:51 +0700)]
Amend previous commit.
Andrey Rys [Sat, 16 Mar 2019 10:02:42 +0000 (17:02 +0700)]
Support loading tfcrypt_defs.h variables from file.
Andrey Rys [Fri, 15 Mar 2019 10:27:56 +0000 (17:27 +0700)]
tfprng: use tf_prng_datasize even if no one uses it.
Andrey Rys [Fri, 15 Mar 2019 10:15:50 +0000 (17:15 +0700)]
Fix endianness issues.
tfctrapi: do not post convert, do preconversion of both arguments instead, then add.
tfe: remove endianness converters, caller must do conversion.
Andrey Rys [Wed, 27 Feb 2019 08:54:12 +0000 (15:54 +0700)]
ctr_add: replace dead with working code.
ctr_add came directly from 2012, and it was always broken.
The original purpose is to add two very large integers.
Still, there is no much to worry about: Threefish 64 bit integers
make it very hard to trigger the old buggy code, and it was only
used to rewind the counter. But it is time to finally fix it.
Andrey Rys [Mon, 18 Feb 2019 07:24:14 +0000 (14:24 +0700)]
tfprng: remove legacy functions.
Andrey Rys [Sat, 9 Feb 2019 07:15:16 +0000 (14:15 +0700)]
Change default seek behavior: error out, allow to ignore errors with -E xseek.
Andrey Rys [Mon, 4 Feb 2019 15:18:00 +0000 (22:18 +0700)]
-O okey=val: offset into key (useful for block device keys, such as USB sticks).
sksum: now honors -O iseek= too to seek into source.
Andrey Rys [Sat, 2 Feb 2019 12:51:44 +0000 (19:51 +0700)]
Define _DEFAULT_SOURCE.
Andrey Rys [Sat, 26 Jan 2019 12:32:41 +0000 (19:32 +0700)]
tfc_io: xread and xwrite, which transparently handle EINTR case.
Andrey Rys [Sat, 26 Jan 2019 10:15:54 +0000 (17:15 +0700)]
tfc_random: proper write error handling plus handling -E option.
Andrey Rys [Fri, 25 Jan 2019 09:57:44 +0000 (16:57 +0700)]
Define _FILE_OFFSET_BITS=64
Andrey Rys [Fri, 25 Jan 2019 08:45:51 +0000 (15:45 +0700)]
-E sync: reform logic. Prequery file position, jump over error hole.
Add -E lsync to turn on older version.
tfc_fdsize: properly return NOFSIZE on errors.
Andrey Rys [Thu, 29 Nov 2018 07:46:28 +0000 (14:46 +0700)]
Salt user keys or passwords.
Secretizing turns value was not enough, so it was decided
to add salt value which maybe hardcoded or loaded before key generation.
Andrey Rys [Sun, 25 Nov 2018 07:43:02 +0000 (14:43 +0700)]
tfcrypt: fixing hash output stream.
Andrey Rys [Mon, 12 Nov 2018 05:58:34 +0000 (12:58 +0700)]
tfcrypt 1.
projects / tfcrypt.git / log