Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support non-standard extra algorithms #8

Closed
zonyitoo opened this issue Apr 16, 2021 · 4 comments · Fixed by #9
Closed

Support non-standard extra algorithms #8

zonyitoo opened this issue Apr 16, 2021 · 4 comments · Fixed by #9
Labels
enhancement New feature or request

Comments

@zonyitoo
Copy link
Collaborator

zonyitoo commented Apr 16, 2021
edited
Loading

Background

Algorithms that are already supported by crypto2:

  • aes-128-ccm, aes-256-ccm
  • aes-128-gcm-siv, aes-256-gcm-siv
  • aes-128-ocb-taglen128, aes-192-ocb-taglen128, aes-256-ocb-taglen128
  • aes-siv-cmac-256, aes-siv-cmac-384, aes-siv-cmac-512

Algorithms that are the most wanted in other implementations:

Some algorithms that are not implemented yet:

  • sm4-gcm
  • sm4-ccm

These algorithms are not standardized by shadowsocks' community, but it is still possible to enable these by optional features.

Proposal

Add an optional feature v1-aead-extra to enable all the extra algorithms described above.

Notice: xchacha20-ietf-poly1305 doesn't have a standardized specification about its technical detail, so we have to use its original and the only implementation in libsodium. This may significantly increase the output binary size.
@zonyitoo zonyitoo added the enhancement New feature or request label Apr 16, 2021
@DuckSoft
Copy link

for xchacha20-ietf-poly1305 maybe we can file a feature request to crypto2.
embedding the whole libsodium is way too dirty.

@database64128
Copy link

Instead of adding rarely-used algorithms without changing the protocol, maybe we should turn our focus to implementing one of our proposed draft protocols.

@DuckSoft
Copy link

Instead of adding rarely-used algorithms without changing the protocol, maybe we should turn our focus to implementing one of our proposed draft protocols.

Agreed but that's offtopic here. Open another issue to track it.

@zonyitoo
Copy link
Collaborator Author

zonyitoo commented Apr 16, 2021
edited
Loading

I don't think so. xchacha20-ietf-poly1305 has 2 different definitions, the only implementation in libsodium has a 64-bit counter but the RFC doesn't define it clearly. But according to this thread, RFC seems to imply it has a 32-bit counter.

So it the safest way is to use the libsodium's implementation.

zonyitoo added a commit that referenced this issue Apr 16, 2021
@zonyitoo
Support non-standard AEAD ciphers with feature v1-aead-extra
6454af4 
- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8
@zonyitoo zonyitoo mentioned this issue Apr 16, 2021
Merged
zonyitoo added a commit that referenced this issue Apr 16, 2021
@zonyitoo
Support non-standard AEAD ciphers with feature v1-aead-extra
c4e355a 
- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8
zonyitoo added a commit that referenced this issue Apr 16, 2021
@zonyitoo
Support non-standard AEAD ciphers with feature v1-aead-extra
0965907 
- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8
zonyitoo added a commit that referenced this issue Apr 16, 2021
@zonyitoo
Support non-standard AEAD ciphers with feature v1-aead-extra
388292d 
- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8
zonyitoo added a commit that referenced this issue Apr 16, 2021
@zonyitoo
Support non-standard AEAD ciphers with feature v1-aead-extra
9bc9b9d 
- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8
zonyitoo added a commit that referenced this issue Apr 17, 2021
@zonyitoo
Support non-standard AEAD ciphers with feature v1-aead-extra
414b0f1 
- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8
zonyitoo added a commit that referenced this issue Apr 17, 2021
@zonyitoo @LuoZijun
Support non-standard AEAD ciphers with feature v1-aead-extra (#9)
fd36610 
* Support non-standard AEAD ciphers with feature v1-aead-extra

- Enable new ciphers with v1-aead-extra
- Support xchacha20-ietf-poly1305 with libsodium

fixes #8

* crypto2 has removed Zeroize

- release version 0.2.1

* switched to self implemented xchacha20-ietf-poly1305

Co-authored-by: luozijun <[email protected]>
zonyitoo added a commit to shadowsocks/shadowsocks-rust that referenced this issue Apr 17, 2021
@zonyitoo
update shadowsocks-crypto to v0.2.1
9d0c7cd 
- updated crypto2 to 0.1.2
- support AEAD extra ciphers with aead-cipher-extra
- fixes shadowsocks/shadowsocks-android#2663
- ref shadowsocks/shadowsocks-crypto#8
zonyitoo added a commit to shadowsocks/shadowsocks-rust that referenced this issue Apr 17, 2021
@zonyitoo
update shadowsocks-crypto to v0.2.1
04f420f 
- updated crypto2 to 0.1.2
- support AEAD extra ciphers with aead-cipher-extra
- fixes shadowsocks/shadowsocks-android#2663
- ref shadowsocks/shadowsocks-crypto#8
zonyitoo added a commit to shadowsocks/shadowsocks-rust that referenced this issue Apr 17, 2021
@zonyitoo
update shadowsocks-crypto to v0.2.1
40764b7 
- updated crypto2 to 0.1.2
- support AEAD extra ciphers with aead-cipher-extra
- fixes shadowsocks/shadowsocks-android#2663
- ref shadowsocks/shadowsocks-crypto#8
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Support non-standard AEAD ciphers with feature v1-aead-extra shadowsocks/shadowsocks-crypto
3 participants
@zonyitoo @DuckSoft @database64128