Hi all, Dropbear now has support for ECC which is significantly faster at setting up connections on slow platforms. Since it's a large patch I'm making a test release first.
I've also added a "-R" mode to automatically generate hostkeys on first connection - this is recommended on embedded platforms which may take a while after boot before a good /dev/urandom seed has been derived. Download from https://matt.ucc.asn.au/dropbear/testing/dropbear-2013.61test.tar.bz2 Cheers, Matt 2013.61test - Thursday 14 November 2013 - ECC (elliptic curve) support. Supports ECDSA hostkeys (requires new keys to be generated) and ECDH for setting up encryption keys (no intervention required). This is significantly faster. - [email protected] support for setting up encryption keys. This is another elliptic curve mode with less potential of NSA interference in algorithm parameters. curve25519-donna code thanks to Adam Langley - -R option to automatically generate hostkeys. This is recommended for embedded platforms since it allows the system random number device /dev/urandom a longer startup time to generate a secure seed before the hostkey is required. - Compile fixes for old vendor compilers like Tru64 from Daniel Richard G.
