virtualsquare
diff --git a/‎configure.ac‎
Lines changed: 6 additions & 6 deletions b/‎configure.ac‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎man/vde_cryptcab.1‎
Lines changed: 3 additions & 3 deletions b/‎man/vde_cryptcab.1‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎src/vde_cryptcab/Makefile.am‎
Lines changed: 2 additions & 2 deletions b/‎src/vde_cryptcab/Makefile.am‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/vde_cryptcab/crc32.c‎
Lines changed: 4 additions & 5 deletions b/‎src/vde_cryptcab/crc32.c‎
Lines changed: 4 additions & 5 deletions
diff --git a/‎src/vde_cryptcab/crc32.h‎
Lines changed: 2 additions & 4 deletions b/‎src/vde_cryptcab/crc32.h‎
Lines changed: 2 additions & 4 deletions
@@ -42,7 +42,7 @@ AC_CHECK_HEADERS([arpa/inet.h fcntl.h netdb.h netinet/in.h stddef.h stdint.h \
 
 AC_CHECK_HEADERS([syslimits.h sys/syslimits.h])
 
-AC_CHECK_HEADERS([openssl/blowfish.h], [],
+AC_CHECK_HEADERS([wolfssl/wolfcrypt/chacha.h], [],
   [add_cryptcab_support=no ; warn_cryptcab=yes])
 
 AC_CHECK_HEADERS([sysexits.h],
@@ -129,10 +129,10 @@ AC_ARG_ENABLE([experimental],
     [Enable experimental features (async notifies, plugin support, packet counter)]),
   [if test $enableval = "yes"; then enable_experimental=yes; fi])
 
-# Disable vde_cryptcab? (depends on ssl, maybe unwanted)
+# Disable vde_cryptcab? (depends on wolfssl, maybe unwanted)
 AC_ARG_ENABLE([cryptcab],
   AS_HELP_STRING([--disable-cryptcab],
-    [Disable libcrypto-dependend vde_cryptcab compilation]),
+    [Disable vde_cryptcab compilation]),
   [if test $enableval = "no" ; then add_cryptcab_support=no ; warn_cryptcab=no ; fi])
 
 # Disable vde_over_ns? (not working on android, maybe unwanted)
@@ -347,9 +347,9 @@ AS_ECHO
 AS_ECHO
 if ! test x$add_cryptcab_support = "xyes" ; then
   if test x$warn_cryptcab = "xyes" ; then
-    AC_MSG_WARN([VDE CryptCab support has been disabled because libcrypto is
-not installed on your system, or because openssl/blowfish.h could not be found.
-Please install them if you want CryptCab to be compiled and installed.])
+    AC_MSG_WARN([VDE CryptCab support has been disabled because wolfSSL is
+not installed on your system, or because wolfssl/wolfcrypt/chacha.h could not be found.
+Please install libwolfssl if you want CryptCab to be compiled and installed.])
     AS_ECHO
   fi
 fi
 
@@ -38,16 +38,16 @@ A
 \fBvde_cryptcab\fP 
 is a distributed cable manager for VDE switches.
 It allows two VDE switches on two machines to communicate
-using a blowfish encrypted channel.
+using a ChaCha encrypted channel.
 
 When used in client mode (i.e., with -c option), it generates a random
-blowfish key, and uses
+ChaCha key, and uses
 .B scp (1)
 to transfer the key to the remote server.
 
 On the client side, the environment variable SCP_EXTRA_OPTIONS may be set in order 
 to append options to the scp command line (this is useful for example when dropbear or
-another non-standard ssh client is used to transfer the blowfish key).
+another non-standard ssh client is used to transfer the ChaCha key).
 
 After a 4-way handshake phase to verify client credentials, server and 
 client will exchange VDE datagrams encapsulating them into cryptograms
 
@@ -3,12 +3,12 @@ bin_PROGRAMS = vde_cryptcab
 
 # Avoid wrong optimizations due to strict aliasing rules when making casts
 # between socket structs.
-AM_CFLAGS = -fno-strict-aliasing
+AM_CFLAGS = -fno-strict-aliasing -DHAVE_CHACHA -DTFM_TIMING_RESISTANT -DNO_ECC -DNO_RSA
 
 if ENABLE_PROFILE
   AM_CFLAGS += -pg --coverage
   AM_LDFLAGS = -pg --coverage
 endif
 
 vde_cryptcab_SOURCES = crc32.c crc32.h cryptcab.h cryptcab.c vde_cryptcab_server.c vde_cryptcab_client.c
-vde_cryptcab_LDADD = $(top_builddir)/src/common/libvdecommon.la -lcrypto $(top_builddir)/src/lib/libvdeplug.la
+vde_cryptcab_LDADD = $(top_builddir)/src/common/libvdecommon.la -lwolfssl $(top_builddir)/src/lib/libvdeplug.la
@@ -5,15 +5,14 @@
  *
  * Released under the terms of GNU GPL v.2
  * (http://www.gnu.org/licenses/old-licenses/gpl-2.0.html)
- * with the additional exemption that
- * compiling, linking, and/or using OpenSSL is allowed.
  *
- * based on implementation by Finn Yannick Jacobs  Krzysztof Dabrowski, ElysiuM deeZine 
+ * based on implementation by Finn Yannick Jacobs Krzysztof Dabrowski, ElysiuM deeZine
  *
  */
 
 #include <stdio.h>
 #include <stdlib.h>
+#include <stdint.h>
 #include <sys/types.h>
 
 #include <config.h>
@@ -24,14 +23,14 @@
  *		so make sure, you call it before using the other
  *		functions!
  */
-u_int32_t crc_tab[256];
+uint32_t crc_tab[256];
 
 /* chksum_crc() -- to a given block, this one calculates the
  *				crc32-checksum until the length is
  *				reached. the crc32-checksum will be
  *				the result.
  */
-u_int32_t chksum_crc32 (unsigned char *block, unsigned int length)
+uint32_t chksum_crc32(unsigned char *block, unsigned int length)
 {
    unsigned long crc;
    unsigned long i;
 
@@ -5,17 +5,15 @@
  *
  * Released under the terms of GNU GPL v.2
  * (http://www.gnu.org/licenses/old-licenses/gpl-2.0.html)
- * with the additional exemption that
- * compiling, linking, and/or using OpenSSL is allowed.
- *
- * based on implementation by Finn Yannick Jacobs  Krzysztof Dabrowski, ElysiuM deeZine 
  *
  */
 
 #ifndef _CRC32_H
 #define _CRC32_H
+#include <stdint.h>
 
 void chksum_crc32gentab();
+uint32_t chksum_crc32(unsigned char *block, unsigned int length);
 unsigned char *crc32(unsigned char *block, unsigned int len);
 
 #endif