libmcrypt [PSARC/2008/203 FastTrack timeout 03/25/2008]

Garrett D'Amore gdamore at opensolaris.org
Tue Mar 18 09:25:32 PDT 2008 

An interesting project, especially if the security folks have an intern 
they can throw at it, might be to try to adapt libmcrypt so it can use 
the encryption framework, or to write a thin-layer libmcrypt API shim on 
top of the encryption framework.

That is assuming that our encryption is better (faster, and not buggier) 
than what libmcrypt provides -- an assertion which I am not certain 
holds true on x86 (but probably does on SPARC).

It looks like this is only offering symmetric key encryption.

-- Garrett

Darren J Moffat wrote:
> Template Version: @(#)sac_nextcase 1.64 07/13/07 SMI
> This information is Copyright 2008 Sun Microsystems
> 1. Introduction
>     1.1. Project/Component Working Name:
> 	 libmcrypt
>     1.2. Name of Document Author/Supplier:
> 	 Author:  Darren Moffat
>     1.3  Date of This Document:
> 	18 March, 2008
> 4. Technical Description
>
> This case introduces the libmcrypt cryptographic library.  The current
> version library is 2.5.8.  This case seeks approval to provide this and
> any 100% compatible future version.  If the list of algorithms or modes
> changes or any incompatiblity is found in a future version a case will
> be submitted to cover those issues.
>
> It provides support for the following cryptographic algorithms:
>
> Enabled in the Solaris delivery:
>
> 	DES, 3DES, AES, Blowfish, ArcFour, Enigma
>
> Provided by libmcrypt but disabled for legal reasons for Solaris delivery:
> 	
> 	CAST-128, CAST-256, GOST, PANAMA, RC2, SAFER, SAFERPLUS
> 	SERPENT, THREEWAY, TWOFISH, WAKE, XTEA
>
> Dynamic module loading is also disabled in libmcrypt.
>
> Algorithm Modes: 
>
> 	CBC, CFB, CTR, ECB, nCFB, nOFB, OFB, Stream
>
> The library is licensed under the LGPLv2.1 but most of the algorithm
> implementations are public domain.
>
>
> 	Exported Interfaces
> +---------------------------------------------------------------------------+
> | /usr/lib/libmcrypt.so.4  | Uncommitted     |                              |
> | /usr/lib/libmcrypt.so    | Committed       |                              |
> | SONAME libmcrypt.so.4    | Uncommitted     |                              |
> |                          |                 |                              |
> | <mcrypt.h>               | Uncommitted     | API and header location      |
> | <mutils/mcrypt.h>        | Project Private |                              |
> |                          |                 |                              |
> | libmcrypt.m4             | Volatile        | Autoconf aclocal             | 
> |                          |                 |                              |
> | mcrypt(3)                |                 | Man Page Documentation       |
> |                          |                 |                              |
> | SUNWmcrypt               | Uncommitted     | Package                      |
> +---------------------------------------------------------------------------+
>
> libmcrypt does not use or provide any algorithms to/from the 
> Cryptographic Framework (libpkcs11 / kcf) and does not use or provide any
> cryptographic functionality from any hardware platform.
>
> 6. Resources and Schedule
>     6.4. Steering Committee requested information
>    	6.4.1. Consolidation C-team Name:
> 		SFW
>     6.5. ARC review type: FastTrack
>     6.6. ARC Exposure: open
>
> _______________________________________________
> crypto-discuss mailing list
> crypto-discuss at opensolaris.org
> http://mail.opensolaris.org/mailman/listinfo/crypto-discuss
>

More information about the crypto-discuss mailing list