harbr 0.2.10 → 2.8.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.DS_Store +0 -0
- data/exe/harbr +225 -150
- data/lib/examples/container.toml +13 -0
- data/lib/harbr/container.rb +14 -10
- data/lib/harbr/host.rb +21 -0
- data/lib/harbr/version.rb +1 -1
- data/lib/harbr.rb +21 -6
- data/vendor/bundle/ruby/3.2.0/cache/dddr-1.0.8.gem +0 -0
- data/vendor/bundle/ruby/3.2.0/cache/dddr-1.1.0.gem +0 -0
- data/vendor/bundle/ruby/3.2.0/cache/dddr-1.1.1.gem +0 -0
- data/vendor/bundle/ruby/3.2.0/cache/net-ssh-7.2.1.gem +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/.DS_Store +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/.rspec +3 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/.standard.yml +3 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/CHANGELOG.md +5 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/CODE_OF_CONDUCT.md +84 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/LICENSE.txt +21 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/README.md +96 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/Rakefile +10 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/hero.png +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/lib/dddr/version.rb +5 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/lib/dddr.rb +205 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.0.8/sig/dddr.rbs +4 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/.DS_Store +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/.rspec +3 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/.standard.yml +3 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/CHANGELOG.md +5 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/CODE_OF_CONDUCT.md +84 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/LICENSE.txt +21 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/README.md +96 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/Rakefile +10 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/hero.png +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/lib/dddr/version.rb +5 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/lib/dddr.rb +182 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.0/sig/dddr.rbs +4 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/.DS_Store +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/.rspec +3 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/.standard.yml +3 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/CHANGELOG.md +5 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/CODE_OF_CONDUCT.md +84 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/LICENSE.txt +21 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/README.md +96 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/Rakefile +10 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/hero.png +0 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/lib/dddr/version.rb +5 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/lib/dddr.rb +184 -0
- data/vendor/bundle/ruby/3.2.0/gems/dddr-1.1.1/sig/dddr.rbs +4 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.dockerignore +6 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.github/FUNDING.yml +1 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.github/config/rubocop_linter_action.yml +4 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.github/workflows/ci-with-docker.yml +44 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.github/workflows/ci.yml +94 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.github/workflows/rubocop.yml +16 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.gitignore +15 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.rubocop.yml +22 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/.rubocop_todo.yml +1081 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/CHANGES.txt +738 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/DEVELOPMENT.md +23 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Dockerfile +29 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Dockerfile.openssl3 +17 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Gemfile +13 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Gemfile.noed25519 +12 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Gemfile.norbnacl +12 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/ISSUE_TEMPLATE.md +30 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/LICENSE.txt +19 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Manifest +132 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/README.md +298 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/Rakefile +192 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/SECURITY.md +4 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/THANKS.txt +110 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/appveyor.yml +58 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/docker-compose.yml +25 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/agent.rb +284 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/certificate.rb +183 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/constants.rb +20 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/ed25519.rb +186 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/ed25519_loader.rb +31 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/key_manager.rb +327 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/methods/abstract.rb +79 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/methods/hostbased.rb +72 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/methods/keyboard_interactive.rb +77 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/methods/none.rb +34 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/methods/password.rb +80 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/methods/publickey.rb +137 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/pageant.rb +497 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/pub_key_fingerprint.rb +43 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/authentication/session.rb +172 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/buffer.rb +449 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/buffered_io.rb +202 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/config.rb +406 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/connection/channel.rb +694 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/connection/constants.rb +33 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/connection/event_loop.rb +123 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/connection/keepalive.rb +59 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/connection/session.rb +712 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/connection/term.rb +180 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/errors.rb +106 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/key_factory.rb +218 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/known_hosts.rb +265 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/loggable.rb +62 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/packet.rb +106 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/prompt.rb +62 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/command.rb +123 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/errors.rb +16 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/http.rb +98 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/https.rb +50 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/jump.rb +54 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/socks4.rb +67 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/proxy/socks5.rb +140 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/service/forward.rb +426 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/channel.rb +147 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/extensions.rb +173 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/kex.rb +46 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/local_packet.rb +53 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/packet.rb +101 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/remote_packet.rb +40 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/script.rb +180 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test/socket.rb +65 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/test.rb +94 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/algorithms.rb +524 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/chacha20_poly1305_cipher.rb +117 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/chacha20_poly1305_cipher_loader.rb +17 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/cipher_factory.rb +128 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/constants.rb +40 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/ctr.rb +115 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/abstract.rb +97 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/md5.rb +10 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/md5_96.rb +9 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/none.rb +13 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/ripemd160.rb +11 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha1.rb +11 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha1_96.rb +9 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha2_256.rb +11 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha2_256_96.rb +9 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha2_256_etm.rb +12 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha2_512.rb +11 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha2_512_96.rb +9 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac/sha2_512_etm.rb +12 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/hmac.rb +47 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/identity_cipher.rb +65 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/abstract.rb +130 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/abstract5656.rb +72 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/curve25519_sha256.rb +39 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/curve25519_sha256_loader.rb +30 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/diffie_hellman_group14_sha1.rb +37 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/diffie_hellman_group14_sha256.rb +11 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/diffie_hellman_group1_sha1.rb +122 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/diffie_hellman_group_exchange_sha1.rb +72 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/diffie_hellman_group_exchange_sha256.rb +11 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/ecdh_sha2_nistp256.rb +39 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/ecdh_sha2_nistp384.rb +21 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex/ecdh_sha2_nistp521.rb +21 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/kex.rb +31 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/key_expander.rb +30 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/openssl.rb +274 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/openssl_cipher_extensions.rb +8 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/packet_stream.rb +301 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/server_version.rb +77 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/session.rb +354 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/state.rb +208 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/verifiers/accept_new.rb +33 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/verifiers/accept_new_or_local_tunnel.rb +33 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/verifiers/always.rb +58 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/verifiers/never.rb +19 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/version.rb +68 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh.rb +338 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/net-ssh-public_cert.pem +20 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/net-ssh.gemspec +46 -0
- data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/support/ssh_tunnel_bug.rb +65 -0
- data/vendor/bundle/ruby/3.2.0/specifications/dddr-1.0.8.gemspec +27 -0
- data/vendor/bundle/ruby/3.2.0/specifications/dddr-1.1.0.gemspec +27 -0
- data/vendor/bundle/ruby/3.2.0/specifications/dddr-1.1.1.gemspec +27 -0
- data/vendor/bundle/ruby/3.2.0/specifications/net-ssh-7.2.1.gemspec +38 -0
- metadata +174 -9
- data/config/manifest.yml +0 -5
- data/lib/harbr/job.rb +0 -252
- data/lib/harbr/lxd/job.rb +0 -119
- data/lib/harbr/lxd/setup.rb +0 -45
data/vendor/bundle/ruby/3.2.0/gems/net-ssh-7.2.1/lib/net/ssh/transport/chacha20_poly1305_cipher.rb
ADDED
|
@@ -0,0 +1,117 @@
|
|
|
1
|
+
require 'rbnacl'
|
|
2
|
+
require 'net/ssh/loggable'
|
|
3
|
+
|
|
4
|
+
module Net
|
|
5
|
+
module SSH
|
|
6
|
+
module Transport
|
|
7
|
+
## Implements the chacha20-poly1305@openssh cipher
|
|
8
|
+
class ChaCha20Poly1305Cipher
|
|
9
|
+
include Net::SSH::Loggable
|
|
10
|
+
|
|
11
|
+
# Implicit HMAC, no need to do anything
|
|
12
|
+
class ImplicitHMac
|
|
13
|
+
def etm
|
|
14
|
+
# TODO: ideally this shouln't be called
|
|
15
|
+
true
|
|
16
|
+
end
|
|
17
|
+
|
|
18
|
+
def key_length
|
|
19
|
+
64
|
|
20
|
+
end
|
|
21
|
+
end
|
|
22
|
+
|
|
23
|
+
def initialize(encrypt:, key:)
|
|
24
|
+
@chacha_hdr = OpenSSL::Cipher.new("chacha20")
|
|
25
|
+
key_len = @chacha_hdr.key_len
|
|
26
|
+
@chacha_main = OpenSSL::Cipher.new("chacha20")
|
|
27
|
+
@poly = RbNaCl::OneTimeAuths::Poly1305
|
|
28
|
+
if key.size < key_len * 2
|
|
29
|
+
error { "chacha20_poly1305: keylength doesn't match" }
|
|
30
|
+
raise "chacha20_poly1305: keylength doesn't match"
|
|
31
|
+
end
|
|
32
|
+
if encrypt
|
|
33
|
+
@chacha_hdr.encrypt
|
|
34
|
+
@chacha_main.encrypt
|
|
35
|
+
else
|
|
36
|
+
@chacha_hdr.decrypt
|
|
37
|
+
@chacha_main.decrypt
|
|
38
|
+
end
|
|
39
|
+
main_key = key[0...key_len]
|
|
40
|
+
@chacha_main.key = main_key
|
|
41
|
+
hdr_key = key[key_len...(2 * key_len)]
|
|
42
|
+
@chacha_hdr.key = hdr_key
|
|
43
|
+
end
|
|
44
|
+
|
|
45
|
+
def update_cipher_mac(payload, sequence_number)
|
|
46
|
+
iv_data = [0, 0, 0, sequence_number].pack("NNNN")
|
|
47
|
+
@chacha_main.iv = iv_data
|
|
48
|
+
poly_key = @chacha_main.update(([0] * 32).pack('C32'))
|
|
49
|
+
|
|
50
|
+
packet_length = payload.size
|
|
51
|
+
length_data = [packet_length].pack("N")
|
|
52
|
+
@chacha_hdr.iv = iv_data
|
|
53
|
+
packet = @chacha_hdr.update(length_data)
|
|
54
|
+
|
|
55
|
+
iv_data[0] = 1.chr
|
|
56
|
+
@chacha_main.iv = iv_data
|
|
57
|
+
unencrypted_data = payload
|
|
58
|
+
packet += @chacha_main.update(unencrypted_data)
|
|
59
|
+
|
|
60
|
+
packet += @poly.auth(poly_key, packet)
|
|
61
|
+
return packet
|
|
62
|
+
end
|
|
63
|
+
|
|
64
|
+
def read_length(data, sequence_number)
|
|
65
|
+
iv_data = [0, 0, 0, sequence_number].pack("NNNN")
|
|
66
|
+
@chacha_hdr.iv = iv_data
|
|
67
|
+
@chacha_hdr.update(data).unpack1("N")
|
|
68
|
+
end
|
|
69
|
+
|
|
70
|
+
def read_and_mac(data, mac, sequence_number)
|
|
71
|
+
iv_data = [0, 0, 0, sequence_number].pack("NNNN")
|
|
72
|
+
@chacha_main.iv = iv_data
|
|
73
|
+
poly_key = @chacha_main.update(([0] * 32).pack('C32'))
|
|
74
|
+
|
|
75
|
+
iv_data[0] = 1.chr
|
|
76
|
+
@chacha_main.iv = iv_data
|
|
77
|
+
unencrypted_data = @chacha_main.update(data[4..])
|
|
78
|
+
begin
|
|
79
|
+
ok = @poly.verify(poly_key, mac, data[0..])
|
|
80
|
+
raise Net::SSH::Exception, "corrupted hmac detected #{name}" unless ok
|
|
81
|
+
rescue RbNaCl::BadAuthenticatorError
|
|
82
|
+
raise Net::SSH::Exception, "corrupted hmac detected #{name}"
|
|
83
|
+
end
|
|
84
|
+
return unencrypted_data
|
|
85
|
+
end
|
|
86
|
+
|
|
87
|
+
def mac_length
|
|
88
|
+
16
|
|
89
|
+
end
|
|
90
|
+
|
|
91
|
+
def block_size
|
|
92
|
+
8
|
|
93
|
+
end
|
|
94
|
+
|
|
95
|
+
def name
|
|
96
|
+
"chacha20-poly1305@openssh.com"
|
|
97
|
+
end
|
|
98
|
+
|
|
99
|
+
def implicit_mac?
|
|
100
|
+
true
|
|
101
|
+
end
|
|
102
|
+
|
|
103
|
+
def implicit_mac
|
|
104
|
+
return ImplicitHMac.new
|
|
105
|
+
end
|
|
106
|
+
|
|
107
|
+
def self.block_size
|
|
108
|
+
8
|
|
109
|
+
end
|
|
110
|
+
|
|
111
|
+
def self.key_length
|
|
112
|
+
64
|
|
113
|
+
end
|
|
114
|
+
end
|
|
115
|
+
end
|
|
116
|
+
end
|
|
117
|
+
end
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
module Net
|
|
2
|
+
module SSH
|
|
3
|
+
module Transport
|
|
4
|
+
# Loads chacha20 poly1305 support which requires optinal dependency rbnacl
|
|
5
|
+
module ChaCha20Poly1305CipherLoader
|
|
6
|
+
begin
|
|
7
|
+
require 'net/ssh/transport/chacha20_poly1305_cipher'
|
|
8
|
+
LOADED = true
|
|
9
|
+
ERROR = nil
|
|
10
|
+
rescue LoadError => e
|
|
11
|
+
ERROR = e
|
|
12
|
+
LOADED = false
|
|
13
|
+
end
|
|
14
|
+
end
|
|
15
|
+
end
|
|
16
|
+
end
|
|
17
|
+
end
|
|
@@ -0,0 +1,128 @@
|
|
|
1
|
+
require 'openssl'
|
|
2
|
+
require 'net/ssh/transport/ctr.rb'
|
|
3
|
+
require 'net/ssh/transport/key_expander'
|
|
4
|
+
require 'net/ssh/transport/identity_cipher'
|
|
5
|
+
require 'net/ssh/transport/chacha20_poly1305_cipher_loader'
|
|
6
|
+
require 'net/ssh/transport/openssl_cipher_extensions'
|
|
7
|
+
|
|
8
|
+
module Net
|
|
9
|
+
module SSH
|
|
10
|
+
module Transport
|
|
11
|
+
# Implements a factory of OpenSSL cipher algorithms.
|
|
12
|
+
class CipherFactory
|
|
13
|
+
# Maps the SSH name of a cipher to it's corresponding OpenSSL name
|
|
14
|
+
SSH_TO_OSSL = {
|
|
15
|
+
"3des-cbc" => "des-ede3-cbc",
|
|
16
|
+
"blowfish-cbc" => "bf-cbc",
|
|
17
|
+
"aes256-cbc" => "aes-256-cbc",
|
|
18
|
+
"aes192-cbc" => "aes-192-cbc",
|
|
19
|
+
"aes128-cbc" => "aes-128-cbc",
|
|
20
|
+
"idea-cbc" => "idea-cbc",
|
|
21
|
+
"cast128-cbc" => "cast-cbc",
|
|
22
|
+
"rijndael-cbc@lysator.liu.se" => "aes-256-cbc",
|
|
23
|
+
"3des-ctr" => "des-ede3",
|
|
24
|
+
"blowfish-ctr" => "bf-ecb",
|
|
25
|
+
|
|
26
|
+
"aes256-ctr" => ::OpenSSL::Cipher.ciphers.include?("aes-256-ctr") ? "aes-256-ctr" : "aes-256-ecb",
|
|
27
|
+
"aes192-ctr" => ::OpenSSL::Cipher.ciphers.include?("aes-192-ctr") ? "aes-192-ctr" : "aes-192-ecb",
|
|
28
|
+
"aes128-ctr" => ::OpenSSL::Cipher.ciphers.include?("aes-128-ctr") ? "aes-128-ctr" : "aes-128-ecb",
|
|
29
|
+
'cast128-ctr' => 'cast5-ecb',
|
|
30
|
+
|
|
31
|
+
'none' => 'none'
|
|
32
|
+
}
|
|
33
|
+
|
|
34
|
+
SSH_TO_CLASS =
|
|
35
|
+
if Net::SSH::Transport::ChaCha20Poly1305CipherLoader::LOADED
|
|
36
|
+
{
|
|
37
|
+
'chacha20-poly1305@openssh.com' => Net::SSH::Transport::ChaCha20Poly1305Cipher
|
|
38
|
+
}
|
|
39
|
+
else
|
|
40
|
+
{
|
|
41
|
+
}
|
|
42
|
+
end
|
|
43
|
+
|
|
44
|
+
# Returns true if the underlying OpenSSL library supports the given cipher,
|
|
45
|
+
# and false otherwise.
|
|
46
|
+
def self.supported?(name)
|
|
47
|
+
return true if SSH_TO_CLASS.key?(name)
|
|
48
|
+
|
|
49
|
+
ossl_name = SSH_TO_OSSL[name] or raise NotImplementedError, "unimplemented cipher `#{name}'"
|
|
50
|
+
return true if ossl_name == "none"
|
|
51
|
+
|
|
52
|
+
return SSH_TO_CLASS.key?(name) || OpenSSL::Cipher.ciphers.include?(ossl_name)
|
|
53
|
+
end
|
|
54
|
+
|
|
55
|
+
# Retrieves a new instance of the named algorithm. The new instance
|
|
56
|
+
# will be initialized using an iv and key generated from the given
|
|
57
|
+
# iv, key, shared, hash and digester values. Additionally, the
|
|
58
|
+
# cipher will be put into encryption or decryption mode, based on the
|
|
59
|
+
# value of the +encrypt+ parameter.
|
|
60
|
+
def self.get(name, options = {})
|
|
61
|
+
klass = SSH_TO_CLASS[name]
|
|
62
|
+
unless klass.nil?
|
|
63
|
+
key_len = klass.key_length
|
|
64
|
+
key = Net::SSH::Transport::KeyExpander.expand_key(key_len, options[:key], options)
|
|
65
|
+
return klass.new(encrypt: options[:encrypt], key: key)
|
|
66
|
+
end
|
|
67
|
+
|
|
68
|
+
ossl_name = SSH_TO_OSSL[name] or raise NotImplementedError, "unimplemented cipher `#{name}'"
|
|
69
|
+
return IdentityCipher if ossl_name == "none"
|
|
70
|
+
|
|
71
|
+
cipher = OpenSSL::Cipher.new(ossl_name)
|
|
72
|
+
|
|
73
|
+
cipher.send(options[:encrypt] ? :encrypt : :decrypt)
|
|
74
|
+
|
|
75
|
+
cipher.padding = 0
|
|
76
|
+
|
|
77
|
+
cipher.extend(Net::SSH::Transport::OpenSSLCipherExtensions)
|
|
78
|
+
if name =~ /-ctr(@openssh.org)?$/
|
|
79
|
+
if ossl_name !~ /-ctr/
|
|
80
|
+
cipher.extend(Net::SSH::Transport::CTR)
|
|
81
|
+
else
|
|
82
|
+
cipher = Net::SSH::Transport::OpenSSLAESCTR.new(cipher)
|
|
83
|
+
end
|
|
84
|
+
end
|
|
85
|
+
cipher.iv = Net::SSH::Transport::KeyExpander.expand_key(cipher.iv_len, options[:iv], options)
|
|
86
|
+
|
|
87
|
+
key_len = cipher.key_len
|
|
88
|
+
cipher.key_len = key_len
|
|
89
|
+
cipher.key = Net::SSH::Transport::KeyExpander.expand_key(key_len, options[:key], options)
|
|
90
|
+
|
|
91
|
+
return cipher
|
|
92
|
+
end
|
|
93
|
+
|
|
94
|
+
# Returns a two-element array containing the [ key-length,
|
|
95
|
+
# block-size ] for the named cipher algorithm. If the cipher
|
|
96
|
+
# algorithm is unknown, or is "none", 0 is returned for both elements
|
|
97
|
+
# of the tuple.
|
|
98
|
+
# if :iv_len option is supplied the third return value will be ivlen
|
|
99
|
+
def self.get_lengths(name, options = {})
|
|
100
|
+
klass = SSH_TO_CLASS[name]
|
|
101
|
+
return [klass.key_length, klass.block_size] unless klass.nil?
|
|
102
|
+
|
|
103
|
+
ossl_name = SSH_TO_OSSL[name]
|
|
104
|
+
if ossl_name.nil? || ossl_name == "none"
|
|
105
|
+
result = [0, 0]
|
|
106
|
+
result << 0 if options[:iv_len]
|
|
107
|
+
else
|
|
108
|
+
cipher = OpenSSL::Cipher.new(ossl_name)
|
|
109
|
+
key_len = cipher.key_len
|
|
110
|
+
cipher.key_len = key_len
|
|
111
|
+
|
|
112
|
+
block_size =
|
|
113
|
+
case ossl_name
|
|
114
|
+
when /\-ctr/
|
|
115
|
+
Net::SSH::Transport::OpenSSLAESCTR.block_size
|
|
116
|
+
else
|
|
117
|
+
cipher.block_size
|
|
118
|
+
end
|
|
119
|
+
|
|
120
|
+
result = [key_len, block_size]
|
|
121
|
+
result << cipher.iv_len if options[:iv_len]
|
|
122
|
+
end
|
|
123
|
+
result
|
|
124
|
+
end
|
|
125
|
+
end
|
|
126
|
+
end
|
|
127
|
+
end
|
|
128
|
+
end
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
module Net
|
|
2
|
+
module SSH
|
|
3
|
+
module Transport
|
|
4
|
+
module Constants
|
|
5
|
+
#--
|
|
6
|
+
# Transport layer generic messages
|
|
7
|
+
#++
|
|
8
|
+
|
|
9
|
+
DISCONNECT = 1
|
|
10
|
+
IGNORE = 2
|
|
11
|
+
UNIMPLEMENTED = 3
|
|
12
|
+
DEBUG = 4
|
|
13
|
+
SERVICE_REQUEST = 5
|
|
14
|
+
SERVICE_ACCEPT = 6
|
|
15
|
+
|
|
16
|
+
#--
|
|
17
|
+
# Algorithm negotiation messages
|
|
18
|
+
#++
|
|
19
|
+
|
|
20
|
+
KEXINIT = 20
|
|
21
|
+
NEWKEYS = 21
|
|
22
|
+
|
|
23
|
+
#--
|
|
24
|
+
# Key exchange method specific messages
|
|
25
|
+
#++
|
|
26
|
+
|
|
27
|
+
KEXDH_INIT = 30
|
|
28
|
+
KEXDH_REPLY = 31
|
|
29
|
+
|
|
30
|
+
KEXECDH_INIT = 30
|
|
31
|
+
KEXECDH_REPLY = 31
|
|
32
|
+
|
|
33
|
+
KEXDH_GEX_GROUP = 31
|
|
34
|
+
KEXDH_GEX_INIT = 32
|
|
35
|
+
KEXDH_GEX_REPLY = 33
|
|
36
|
+
KEXDH_GEX_REQUEST = 34
|
|
37
|
+
end
|
|
38
|
+
end
|
|
39
|
+
end
|
|
40
|
+
end
|
|
@@ -0,0 +1,115 @@
|
|
|
1
|
+
require 'openssl'
|
|
2
|
+
require 'delegate'
|
|
3
|
+
|
|
4
|
+
module Net::SSH::Transport
|
|
5
|
+
# :nodoc:
|
|
6
|
+
class OpenSSLAESCTR < SimpleDelegator
|
|
7
|
+
def initialize(original)
|
|
8
|
+
super
|
|
9
|
+
@was_reset = false
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def block_size
|
|
13
|
+
16
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def self.block_size
|
|
17
|
+
16
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def reset
|
|
21
|
+
@was_reset = true
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def iv=(iv_s)
|
|
25
|
+
super unless @was_reset
|
|
26
|
+
end
|
|
27
|
+
end
|
|
28
|
+
|
|
29
|
+
# :nodoc:
|
|
30
|
+
# Pure-Ruby implementation of Stateful Decryption Counter(SDCTR) Mode
|
|
31
|
+
# for Block Ciphers. See RFC4344 for detail.
|
|
32
|
+
module CTR
|
|
33
|
+
def self.extended(orig)
|
|
34
|
+
orig.instance_eval {
|
|
35
|
+
@remaining = String.new
|
|
36
|
+
@counter = nil
|
|
37
|
+
@counter_len = orig.block_size
|
|
38
|
+
orig.encrypt
|
|
39
|
+
orig.padding = 0
|
|
40
|
+
|
|
41
|
+
singleton_class.send(:alias_method, :_update, :update)
|
|
42
|
+
singleton_class.send(:private, :_update)
|
|
43
|
+
singleton_class.send(:undef_method, :update)
|
|
44
|
+
|
|
45
|
+
def iv
|
|
46
|
+
@counter
|
|
47
|
+
end
|
|
48
|
+
|
|
49
|
+
def iv_len
|
|
50
|
+
block_size
|
|
51
|
+
end
|
|
52
|
+
|
|
53
|
+
def iv=(iv_s)
|
|
54
|
+
@counter = iv_s if @counter.nil?
|
|
55
|
+
end
|
|
56
|
+
|
|
57
|
+
def encrypt
|
|
58
|
+
# DO NOTHING (always set to "encrypt")
|
|
59
|
+
end
|
|
60
|
+
|
|
61
|
+
def decrypt
|
|
62
|
+
# DO NOTHING (always set to "encrypt")
|
|
63
|
+
end
|
|
64
|
+
|
|
65
|
+
def padding=(pad)
|
|
66
|
+
# DO NOTHING (always 0)
|
|
67
|
+
end
|
|
68
|
+
|
|
69
|
+
def reset
|
|
70
|
+
@remaining = String.new
|
|
71
|
+
end
|
|
72
|
+
|
|
73
|
+
def update(data)
|
|
74
|
+
@remaining += data
|
|
75
|
+
|
|
76
|
+
encrypted = String.new
|
|
77
|
+
|
|
78
|
+
offset = 0
|
|
79
|
+
while (@remaining.bytesize - offset) >= block_size
|
|
80
|
+
encrypted += xor!(@remaining.slice(offset, block_size),
|
|
81
|
+
_update(@counter))
|
|
82
|
+
increment_counter!
|
|
83
|
+
offset += block_size
|
|
84
|
+
end
|
|
85
|
+
@remaining = @remaining.slice(offset..-1)
|
|
86
|
+
|
|
87
|
+
encrypted
|
|
88
|
+
end
|
|
89
|
+
|
|
90
|
+
def final
|
|
91
|
+
s = @remaining.empty? ? '' : xor!(@remaining, _update(@counter))
|
|
92
|
+
@remaining = String.new
|
|
93
|
+
s
|
|
94
|
+
end
|
|
95
|
+
|
|
96
|
+
def xor!(s1, s2)
|
|
97
|
+
s = []
|
|
98
|
+
s1.unpack('Q*').zip(s2.unpack('Q*')) {|a, b| s.push(a ^ b) }
|
|
99
|
+
s.pack('Q*')
|
|
100
|
+
end
|
|
101
|
+
singleton_class.send(:private, :xor!)
|
|
102
|
+
|
|
103
|
+
def increment_counter!
|
|
104
|
+
c = @counter_len
|
|
105
|
+
while ((c -= 1) > 0)
|
|
106
|
+
if @counter.setbyte(c, (@counter.getbyte(c) + 1) & 0xff) != 0
|
|
107
|
+
break
|
|
108
|
+
end
|
|
109
|
+
end
|
|
110
|
+
end
|
|
111
|
+
singleton_class.send(:private, :increment_counter!)
|
|
112
|
+
}
|
|
113
|
+
end
|
|
114
|
+
end
|
|
115
|
+
end
|
|
@@ -0,0 +1,97 @@
|
|
|
1
|
+
require 'openssl'
|
|
2
|
+
require 'openssl/digest'
|
|
3
|
+
|
|
4
|
+
module Net
|
|
5
|
+
module SSH
|
|
6
|
+
module Transport
|
|
7
|
+
module HMAC
|
|
8
|
+
# The base class of all OpenSSL-based HMAC algorithm wrappers.
|
|
9
|
+
class Abstract
|
|
10
|
+
class << self
|
|
11
|
+
def etm(*v)
|
|
12
|
+
@etm = false if !defined?(@etm)
|
|
13
|
+
if v.empty?
|
|
14
|
+
@etm = superclass.etm if @etm.nil? && superclass.respond_to?(:etm)
|
|
15
|
+
return @etm
|
|
16
|
+
elsif v.length == 1
|
|
17
|
+
@etm = v.first
|
|
18
|
+
else
|
|
19
|
+
raise ArgumentError, "wrong number of arguments (#{v.length} for 1)"
|
|
20
|
+
end
|
|
21
|
+
end
|
|
22
|
+
|
|
23
|
+
def key_length(*v)
|
|
24
|
+
@key_length = nil if !defined?(@key_length)
|
|
25
|
+
if v.empty?
|
|
26
|
+
@key_length = superclass.key_length if @key_length.nil? && superclass.respond_to?(:key_length)
|
|
27
|
+
return @key_length
|
|
28
|
+
elsif v.length == 1
|
|
29
|
+
@key_length = v.first
|
|
30
|
+
else
|
|
31
|
+
raise ArgumentError, "wrong number of arguments (#{v.length} for 1)"
|
|
32
|
+
end
|
|
33
|
+
end
|
|
34
|
+
|
|
35
|
+
def mac_length(*v)
|
|
36
|
+
@mac_length = nil if !defined?(@mac_length)
|
|
37
|
+
if v.empty?
|
|
38
|
+
@mac_length = superclass.mac_length if @mac_length.nil? && superclass.respond_to?(:mac_length)
|
|
39
|
+
return @mac_length
|
|
40
|
+
elsif v.length == 1
|
|
41
|
+
@mac_length = v.first
|
|
42
|
+
else
|
|
43
|
+
raise ArgumentError, "wrong number of arguments (#{v.length} for 1)"
|
|
44
|
+
end
|
|
45
|
+
end
|
|
46
|
+
|
|
47
|
+
def digest_class(*v)
|
|
48
|
+
@digest_class = nil if !defined?(@digest_class)
|
|
49
|
+
if v.empty?
|
|
50
|
+
@digest_class = superclass.digest_class if @digest_class.nil? && superclass.respond_to?(:digest_class)
|
|
51
|
+
return @digest_class
|
|
52
|
+
elsif v.length == 1
|
|
53
|
+
@digest_class = v.first
|
|
54
|
+
else
|
|
55
|
+
raise ArgumentError, "wrong number of arguments (#{v.length} for 1)"
|
|
56
|
+
end
|
|
57
|
+
end
|
|
58
|
+
end
|
|
59
|
+
|
|
60
|
+
def etm
|
|
61
|
+
self.class.etm
|
|
62
|
+
end
|
|
63
|
+
|
|
64
|
+
def key_length
|
|
65
|
+
self.class.key_length
|
|
66
|
+
end
|
|
67
|
+
|
|
68
|
+
def mac_length
|
|
69
|
+
self.class.mac_length
|
|
70
|
+
end
|
|
71
|
+
|
|
72
|
+
def digest_class
|
|
73
|
+
self.class.digest_class
|
|
74
|
+
end
|
|
75
|
+
|
|
76
|
+
# The key in use for this instance.
|
|
77
|
+
attr_reader :key
|
|
78
|
+
|
|
79
|
+
def initialize(key = nil)
|
|
80
|
+
self.key = key
|
|
81
|
+
end
|
|
82
|
+
|
|
83
|
+
# Sets the key to the given value, truncating it so that it is the correct
|
|
84
|
+
# length.
|
|
85
|
+
def key=(value)
|
|
86
|
+
@key = value ? value.to_s[0, key_length] : nil
|
|
87
|
+
end
|
|
88
|
+
|
|
89
|
+
# Compute the HMAC digest for the given data string.
|
|
90
|
+
def digest(data)
|
|
91
|
+
OpenSSL::HMAC.digest(digest_class.new, key, data)[0, mac_length]
|
|
92
|
+
end
|
|
93
|
+
end
|
|
94
|
+
end
|
|
95
|
+
end
|
|
96
|
+
end
|
|
97
|
+
end
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
require 'net/ssh/transport/hmac/abstract'
|
|
2
|
+
|
|
3
|
+
module Net::SSH::Transport::HMAC
|
|
4
|
+
# The RIPEMD-160 HMAC algorithm. This has a mac and key length of 20, and
|
|
5
|
+
# uses the RIPEMD-160 digest algorithm.
|
|
6
|
+
class RIPEMD160 < Abstract
|
|
7
|
+
mac_length 20
|
|
8
|
+
key_length 20
|
|
9
|
+
digest_class OpenSSL::Digest::RIPEMD160
|
|
10
|
+
end
|
|
11
|
+
end
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
require 'net/ssh/transport/hmac/abstract'
|
|
2
|
+
|
|
3
|
+
module Net::SSH::Transport::HMAC
|
|
4
|
+
# The SHA1 HMAC algorithm. This has a mac and key length of 20, and
|
|
5
|
+
# uses the SHA1 digest algorithm.
|
|
6
|
+
class SHA1 < Abstract
|
|
7
|
+
mac_length 20
|
|
8
|
+
key_length 20
|
|
9
|
+
digest_class OpenSSL::Digest::SHA1
|
|
10
|
+
end
|
|
11
|
+
end
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
require 'net/ssh/transport/hmac/abstract'
|
|
2
|
+
|
|
3
|
+
module Net::SSH::Transport::HMAC
|
|
4
|
+
# The SHA-256 HMAC algorithm. This has a mac and key length of 32, and
|
|
5
|
+
# uses the SHA-256 digest algorithm.
|
|
6
|
+
class SHA2_256 < Abstract
|
|
7
|
+
mac_length 32
|
|
8
|
+
key_length 32
|
|
9
|
+
digest_class OpenSSL::Digest::SHA256
|
|
10
|
+
end
|
|
11
|
+
end
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
require 'net/ssh/transport/hmac/abstract'
|
|
2
|
+
|
|
3
|
+
module Net::SSH::Transport::HMAC
|
|
4
|
+
# The SHA-256 Encrypt-Then-Mac HMAC algorithm. This has a mac and
|
|
5
|
+
# key length of 32, and uses the SHA-256 digest algorithm.
|
|
6
|
+
class SHA2_256_Etm < Abstract
|
|
7
|
+
etm true
|
|
8
|
+
mac_length 32
|
|
9
|
+
key_length 32
|
|
10
|
+
digest_class OpenSSL::Digest::SHA256
|
|
11
|
+
end
|
|
12
|
+
end
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
require 'net/ssh/transport/hmac/abstract'
|
|
2
|
+
|
|
3
|
+
module Net::SSH::Transport::HMAC
|
|
4
|
+
# The SHA-512 HMAC algorithm. This has a mac and key length of 64, and
|
|
5
|
+
# uses the SHA-512 digest algorithm.
|
|
6
|
+
class SHA2_512 < Abstract
|
|
7
|
+
mac_length 64
|
|
8
|
+
key_length 64
|
|
9
|
+
digest_class OpenSSL::Digest::SHA512
|
|
10
|
+
end
|
|
11
|
+
end
|
|
@@ -0,0 +1,12 @@
|
|
|
1
|
+
require 'net/ssh/transport/hmac/abstract'
|
|
2
|
+
|
|
3
|
+
module Net::SSH::Transport::HMAC
|
|
4
|
+
# The SHA-512 Encrypt-Then-Mac HMAC algorithm. This has a mac and
|
|
5
|
+
# key length of 64, and uses the SHA-512 digest algorithm.
|
|
6
|
+
class SHA2_512_Etm < Abstract
|
|
7
|
+
etm true
|
|
8
|
+
mac_length 64
|
|
9
|
+
key_length 64
|
|
10
|
+
digest_class OpenSSL::Digest::SHA512
|
|
11
|
+
end
|
|
12
|
+
end
|