Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fully functioning wolfcrypt shim for Wireguard #1

Open
wants to merge 22 commits into
base: master
Choose a base branch
from
Open

fully functioning wolfcrypt shim for Wireguard #1

wants to merge 22 commits into from

Conversation

douzzer
Copy link
Owner

@douzzer douzzer commented Oct 26, 2020

No description provided.

dgarske
dgarske suggested changes Oct 26, 2020
View reviewed changes
Copy link

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Mostly formatting issues otherwise looks good. Please double check the negative poly at 159.

src/wolfcrypto_shim.c
if ((ret = wc_Poly1305_EncodeSizes(&aead->poly, ad_len, src_len)) < 0)
goto out;

if (sl <= -POLY1305_DIGEST_SIZE) {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is the negative on -POLY1305_DIGEST_SIZE intentional? If so can you add comment explaining?

src/wolfcrypto_shim.h Outdated
}

#define curve25519(...) curve25519_wolfshim(__VA_ARGS__)
static inline bool curve25519(uint8_t mypublic[static CURVE25519_KEY_SIZE], const uint8_t secret[static CURVE25519_KEY_SIZE], const uint8_t basepoint[static CURVE25519_KEY_SIZE]) {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Read-ability... 80 chars?

src/wolfcrypto_shim.h Outdated
const u8 *ad, const size_t ad_len,
const u64 nonce,
const u8 key[CHACHA20POLY1305_KEY_SIZE]) {
word64 inIV[2] = { 0, cpu_to_le64(nonce) };
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Indent

douzzer and others added 15 commits November 2, 2020 12:47
@douzzer
Formatting, indentation, clarifying comments.
187e823
@douzzer
Makefile: pass INSTALL_MOD_DIR=wolfssl to Kbuild make ifdef WOLFCRYPT.
ee2d5aa
@douzzer
fix build for kernels 5.11-5.18.
2a6632c
@douzzer
receive.c:update_rx_stats(): for kernel >= 6.0, use abstracted access…
70491d4 
…ors for tstats->rx_packets and ->rx_bytes.
@douzzer
peer.c:wg_peer_create(): for kernel >= 6.1, use netif_napi_add_weight().
bbd6cee
@douzzer
src/timers.c:wg_timers_data_sent() and wg_timers_handshake_initiated(…
9ab54ae 
…): for kernel >= 6.2, use get_random_u32_below() rather than prandom_u32_max().
@douzzer
Kbuild: add compiler intrinsic header path to ccflags.
361d17b
@douzzer
src/compat/Kbuild.include: update crypto_memneq sensing to check incl…
c221f4c 
…ude/crypto/utils.h too.
@douzzer
src/crypto/Kbuild.include: remove .SECONDARY pseudotarget (breaks on …
1578b03 
…kernel 6.4).
@douzzer
src/device.c: #include <net/gso.h> in kernel 6.4.10+, to accommodate …
0c0e5de 
…linux commit d457a0e329.
@douzzer
src/netlink.c: in wg_get_device_start(), use genl_info_dump(), not ge…
1611efb 
…nl_dumpit_info(), when kernel >= 6.6.0.
@douzzer
src/wolfcrypto_shim.h: include linux/slab.h so that wolfcrypt/src/mis…
8c144c6 
…c.c at >=d9f7629296 can be compiled in the wireguard module.
@douzzer
src/main.c and src/wolfcrypto_shim.h: fixes for kernel 6.10.
9688839
@douzzer
src/device.c: fixes for kernel 6.12
dfc7b25
@douzzer
src/timers.c: in pr_debug() calls, cast ulong args to int to avoid -W…
905eb33 
…formats (likely necessitated by gcc-13).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dgarske dgarske dgarske requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@douzzer @dgarske