Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/crypto/ssh: Support chacha20-poly1305@openssh.com authenticated encryption cipher #9489

Closed
chrisnykru opened this issue Jan 2, 2015 · 9 comments
Milestone

Comments

@chrisnykru
Copy link

@chrisnykru chrisnykru commented Jan 2, 2015

@minux minux added the repo-crypto label Jan 2, 2015
@titanous
Copy link
Member

@titanous titanous commented Jan 2, 2015

Here's an initial mailing list thread about this: https://groups.google.com/forum/#!topic/golang-dev/4ucY4qLCy2I

@codahale has a ChaCha20 implementation that we might be able to upstream, I'm not sure what the status of the CL is: https://go-review.googlesource.com/#/c/1363/

@minux
Copy link
Member

@minux minux commented Jan 2, 2015

CL 1363 is abandoned.
I will send a CL to add chacha20 package with minimal API suitable
for both TLS and OpenSSH to x/crypto.

@mikioh mikioh changed the title x/crypto/ssh: Support chacha20-poly1305@openssh.com authenticated encryption cipher ssh: Support chacha20-poly1305@openssh.com authenticated encryption cipher Jan 4, 2015
@rsc rsc added this to the Unplanned milestone Apr 10, 2015
@rsc rsc changed the title ssh: Support chacha20-poly1305@openssh.com authenticated encryption cipher x/crypto/ssh: Support chacha20-poly1305@openssh.com authenticated encryption cipher Apr 14, 2015
@rsc rsc modified the milestones: Unreleased, Unplanned Apr 14, 2015
@rsc rsc removed the repo-crypto label Apr 14, 2015
@hanwen
Copy link
Contributor

@hanwen hanwen commented Aug 12, 2015

@minux - any update on chacha20 ?

@funny-falcon
Copy link
Contributor

@funny-falcon funny-falcon commented May 11, 2016

chacha20-poly1305 will be useful for https too, cause Android mobile browsers prefers this cipher.

@funny-falcon
Copy link
Contributor

@funny-falcon funny-falcon commented May 11, 2016

also, it is faster on processors without aes support.
For example, even on servers with Xeon which supports aes-enc, it could be disabled by mother board manufacturer.

@hanwen
Copy link
Contributor

@hanwen hanwen commented Jan 9, 2017

as of

commit 594708b
Author: Adam Langley agl@golang.org
Date: Mon Oct 10 14:34:47 2016 -0700

chacha20 / poly1305 is in x/crypto, so this could be considered.

@mark-adams
Copy link
Contributor

@mark-adams mark-adams commented Aug 14, 2017

I almost have a working implementation of this and should have a change submitted soon.

@gopherbot
Copy link

@gopherbot gopherbot commented Jan 10, 2018

Change https://golang.org/cl/87077 mentions this issue: ssh: support chacha20-poly1305 cipher.

@golang golang locked and limited conversation to collaborators Jan 19, 2019
bored-engineer pushed a commit to bored-engineer/ssh that referenced this issue Oct 13, 2019
chacha20-poly1305 is an AEAD which performs well without hardware
support. It is recommended as a replacement for the aging arcfour128
and arcfour256 ciphers.

Fixes golang/go#9489

Change-Id: I5d5a4620a435e65997f0ba7e683a34c29d9a396b
Reviewed-on: https://go-review.googlesource.com/87077
Run-TryBot: Han-Wen Nienhuys <hanwen@google.com>
TryBot-Result: Gobot Gobot <gobot@golang.org>
Reviewed-by: Adam Langley <agl@golang.org>
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
bored-engineer pushed a commit to bored-engineer/ssh that referenced this issue Oct 13, 2019
chacha20-poly1305 is an AEAD which performs well without hardware
support. It is recommended as a replacement for the aging arcfour128
and arcfour256 ciphers.

Fixes golang/go#9489

Change-Id: I5d5a4620a435e65997f0ba7e683a34c29d9a396b
Reviewed-on: https://go-review.googlesource.com/87077
Run-TryBot: Han-Wen Nienhuys <hanwen@google.com>
TryBot-Result: Gobot Gobot <gobot@golang.org>
Reviewed-by: Adam Langley <agl@golang.org>
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
bored-engineer pushed a commit to bored-engineer/ssh that referenced this issue Oct 13, 2019
chacha20-poly1305 is an AEAD which performs well without hardware
support. It is recommended as a replacement for the aging arcfour128
and arcfour256 ciphers.

Fixes golang/go#9489

Change-Id: I5d5a4620a435e65997f0ba7e683a34c29d9a396b
Reviewed-on: https://go-review.googlesource.com/87077
Run-TryBot: Han-Wen Nienhuys <hanwen@google.com>
TryBot-Result: Gobot Gobot <gobot@golang.org>
Reviewed-by: Adam Langley <agl@golang.org>
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
8 participants
You can’t perform that action at this time.