Skip to content

Add DH Group 16 and HMAC-SHA2-512 #767

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
JacobBarthelmeh merged 1 commit into from
Feb 12, 2025
Merged

Add DH Group 16 and HMAC-SHA2-512 #767

JacobBarthelmeh merged 1 commit into from
Feb 12, 2025

Conversation

@LinuxJedi
Copy link
Member

@LinuxJedi LinuxJedi commented Feb 4, 2025
edited
Loading

This adds the diffie-hellman-group16-sha512 key exchange and hmac-sha2-512 mac support.

Echoserver can now take -x for key exchange and -m for mac setting, so that this can be used in the test suite.

New test added for this and it has been tested against OpenSSH.

@LinuxJedi
Copy link
Member Author

LinuxJedi commented Feb 4, 2025

Note, this is expected to conflict with #763 around the test area, I can fix that when it happens.

@LinuxJedi LinuxJedi force-pushed the more-kex branch 5 times, most recently from d7c80da to 3e95486 Compare February 4, 2025 11:04
@LinuxJedi
Copy link
Member Author

LinuxJedi commented Feb 4, 2025

Tweaked the Zephyr packet size as the slightly larger KEX packet blows the tiny default TX buffer.

@dgarske dgarske requested a review from ejohnstown February 4, 2025 17:31
@LinuxJedi LinuxJedi marked this pull request as draft February 6, 2025 17:06
@LinuxJedi
Copy link
Member Author

LinuxJedi commented Feb 6, 2025

Moved to draft, there is a bug in HMAC-SHA2-512 which I am investigating.

@LinuxJedi LinuxJedi marked this pull request as ready for review February 6, 2025 17:18
@LinuxJedi
Copy link
Member Author

LinuxJedi commented Feb 6, 2025

Problem found, should be good now.

@LinuxJedi LinuxJedi mentioned this pull request Feb 7, 2025
Closed
ejohnstown
ejohnstown previously approved these changes Feb 10, 2025
View reviewed changes
@LinuxJedi
Add DH Group 16 and HMAC-SHA2-512
f73a76e 
This adds the `diffie-hellman-group16-sha512` key exchange and
`hmac-sha2-512` mac support.

Echoserver can now take `-x` for key exchange and `-m` for mac setting,
 and `-c` for cipher so that this can be used in the test suite.
@LinuxJedi
Copy link
Member Author

LinuxJedi commented Feb 12, 2025

Rebased to fix merge conflicts.

@JacobBarthelmeh JacobBarthelmeh merged commit 697f54a into wolfSSL:master Feb 12, 2025
75 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

@ejohnstown ejohnstown ejohnstown left review comments

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

For_This_Release

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@LinuxJedi @ejohnstown @JacobBarthelmeh @dgarske @wolfSSL-Bot