Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RheinSec (Network Key Storage) Pentest feedback implementation #18

Open
wants to merge 149 commits into
base: main
Choose a base branch
from
Open

RheinSec (Network Key Storage) Pentest feedback implementation #18

wants to merge 149 commits into from

Conversation

pl-CJump
Copy link
Contributor

All findings from the Pentest were addressed and fixed.

  • deprecated sodiumoxide crate removed
  • added possibility for user to choose if they want to trust self signed certificates

Phillip Schaefer and others added 30 commits May 13, 2024 11:33
Rhein_Sec NKS imported
5e22bc2
testfiles
ed1fd56
changes to mod.rs's
214974f
@halrifai
updated gitignore
a66ce84
added adress pub
2f32b7b
@halrifai
Upadated mod.rs, other changes
ddf05d7
@halrifai
Merge remote-tracking branch 'origin/main'
4bece45
@halrifai
added nks_token
24eec44
nksError fix
c1ac32f
@halrifai
added exiting methods, other changes
ece9cf6
added api and initialize_module
602edd8
provider handle tests auf NksProvider angepasst.
ba974d4
@halrifai
added RSA encryption and signing
6c2aaa4
provider handle test fixes ->
a074215 
cargo.toml
lib.rs
mod.rs
mod.rs
provider_handle_tests.rs
provider handle test debug -> keine fehler mehr
e8e842a 
"99999" muss durch die echten nks_adress und nks_token ersetzt werden.
key handle test debug -> ebenfalls keine fehler mehr
7c379cf 
"99999" muss durch die echten nks_adress und nks_token ersetzt werden.
load_key und create_key in nks hcvault provider implementiert
f146a17
@pl-CJump
add current implementation of sign and verify
61c9b58
@pl-CJump
Merge branch 'main' of https://github.com/halrifai/rust-crypto
1af6768
@halrifai
fixed imports and other errors
d5627b2
@halrifai
added errors, added ecc sodium crypto, deleted api.rs, fixed more log…
56c1970 
…ic errors, added initial impl for nks config
@halrifai
minor changes
9864c01
@halrifai
minor changes 2
56e6f1b
@pl-CJump
cfg in key_handle
3534f2d
@pl-CJump
Merge branch 'main' of https://github.com/halrifai/rust-crypto
76dd3b9
@pl-CJump
cfg in module_provider
ad94b44
@pl-CJump
fix delimiter in nks provider and delete unused modules in hcvault mod
f244c6e
@halrifai
minor changes 3
a9358d1
@pl-CJump
fix some errors
6a3f63b
@pl-CJump
fix url address errors
8522a65 
original error was
error[E0277]: the trait bound &std::option::Option<Url>: IntoUrl is not satisfied --> src/nks/hcvault/key_handle.rs:202:19 | 202 | .post(&self.nks_address) | ---- ^^^^^^^^^^^^^^^^^ the trait IntoUrl is not implemented for &std::option::Option<Url> | | | required by a bound introduced by this call | = help: the following other types implement trait IntoUrl: Url std::string::String &'a str &'a std::string::String
pl-CJump and others added 28 commits June 8, 2024 12:01
@pl-CJump
support for all sizes in aes gcm + tests
5e985ae
@pl-CJump
first try at aes ccm (fails to decrypt) + tests
e18a32e
@pl-CJump
aes ecb implementation + test
266e693
@pl-CJump
aes cbc implementation + test
14bea73
@pl-CJump
aes ctr implementation + test
b57f3cc
@pl-CJump
aes cfb implementation + test
58e1483
@pl-CJump
aes ofb implementation + test
c7c602d
@pl-CJump
change get_config to reduce duplicate code
85c38ca
@pl-CJump
restructure aes key_handle tests to reduce duplicate code
eb6aa5d
@halrifai
removed AES Ccm alg
343c882
@halrifai
removed old code
bdff3c8
@pl-CJump
Merge pull request #3 from cep-sose2024/aes_impl
ad242a6 
Aes impl
@pl-CJump
Merge branch 'main' into main
e171dd5
@pl-CJump
Add downcast from Any to ProviderConfig
a236541
@pl-CJump
remove default feature
cd138ae
@pl-CJump
Add instruction for adding default feature to README
acc30fe
@halrifai
added code and documentation that allows the users to choose to NOT t…
2a5fd8c 
…rust invalid certificates via an environment variable
@halrifai
changed README.md to add Concurrent Operations documentation
a8dcfa1
@halrifai
removed sodiumoxide, replaced it with crypto_box and rand_core, added…
6611515 
… doku and deleted Cargo_old.lock since its unused
@pl-CJump
Removed step to set default feature from README, added it to test com…
4594925 
…mand
@pl-CJump
Merge pull request #4 from cep-sose2024/pentest_feedback
5076de3 
Pentest feedback
@pl-CJump
Merge https://github.com/nmshd/rust-crypto.git into 'nmshd-main"
b198e3b
@pl-CJump
Merge branch 'nmshd-main'
54b94e4
@pl-CJump
Merge remote-tracking branch 'upstream/main' into nmshd-main
7bc83d5
@pl-CJump
delete Cargo_old.lock
35fcc5a
@pl-CJump
remove unnecessary path prefixes to reduce warnings
2eb892d
@pl-CJump
Merge pull request #6 from cep-sose2024/nmshd-main
f50b87e 
sync fork
@halrifai
updated readme to include the RheinSec GUI repo
3804760
@pl-CJump pl-CJump marked this pull request as draft June 17, 2024 11:57
@pl-CJump pl-CJump marked this pull request as ready for review June 17, 2024 11:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@pl-CJump @halrifai @schaefer99 @ngussek