Remove NULL-checks before sshbuf_free().

ok djm@

Remove NULL-checks before sshkey_free().

ok djm@

Remove NULL-checks before free().

ok dtucker@

- Fix error message: passphrase needs to be at least 5 characters, not 4.
- Remove unused function argument.
- Remove two unnecessary variables.

OK djm@

re-enable ed25519-certs if compiled w/o openssl; ok djm

delete support for legacy v00 certificates; "sure" markus@ dtucker@

s/recommended/required/ that private keys be og-r
this wording change was made a while ago but got accidentally reverted

fd leak for !ssh1 case; found by unittests; ok markus@

KRL support doesn't need OpenSSL anymore, remove #ifdefs
from around call

add an XXX to remind me to improve sshkey_load_public

Reduce use of <sys/param.h> and transition to <limits.h> throughout.
ok djm markus

deprecate key_load_private_pem() and sshkey_load_private_pem()
interfaces. Refactor the generic key loading API to not require
pathnames to be specified (they weren't really used).

Fixes a few other

deprecate key_load_private_pem() and sshkey_load_private_pem()
interfaces. Refactor the generic key loading API to not require
pathnames to be specified (they weren't really used).

Fixes a few other things en passant:

Makes ed25519 keys work for hostbased authentication (ssh-keysign
previously used the PEM-only routines).

Fixes key comment regression bz#2306: key pathnames were being lost as
comment fields.

ok markus@

show more ...

add RevokedHostKeys option for the client

Allow textfile or KRL-based revocation of hostkeys.

New key API: refactor key-related functions to be more library-like,
existing API is offered as a set of wrappers.

with and ok markus@

Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matt

New key API: refactor key-related functions to be more library-like,
existing API is offered as a set of wrappers.

with and ok markus@

Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew
Dempsky and Ron Bowes for a detailed review a few months ago.

show more ...

make compiling against OpenSSL optional (make OPENSSL=no);
reduces algorithms to curve25519, aes-ctr, chacha, ed25519;
allows us to explore further options; with and ok djm

buffer_get_string_ptr's return should be const to remind
callers that futzing with it will futz with the actual buffer
contents

correct test that kdf name is not "none" or "bcrypt"

convert memset of potentially-private data to explicit_bzero()

replace most bzero with explicit_bzero, except a few that cna be memset
ok djm dtucker

don't refuse to load Ed25519 certificates

support ed25519 keys (hostkeys and user identities) using the public domain
ed25519 reference code from SUPERCOP, see http://ed25519.cr.yp.to/software.html
feedback, help & ok djm@

new private key format, bcrypt as KDF by default; details in PROTOCOL.key;
feedback and lots help from djm; ok djm@

Add a new protocol 2 transport cipher "chacha20-poly1305@openssh.com"
that combines Daniel Bernstein's ChaCha20 stream cipher and Poly1305 MAC
to build an authenticated encryption mode.

Inspired by

Add a new protocol 2 transport cipher "chacha20-poly1305@openssh.com"
that combines Daniel Bernstein's ChaCha20 stream cipher and Poly1305 MAC
to build an authenticated encryption mode.

Inspired by and similar to Adam Langley's proposal for TLS:
http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-03
but differs in layout used for the MAC calculation and the use of a
second ChaCha20 instance to separately encrypt packet lengths.
Details are in the PROTOCOL.chacha20poly1305 file.

Feedback markus@, naddy@; manpage bits Loganden Velvindron @ AfriNIC
ok markus@ naddy@

show more ...

bye, bye xfree(); ok markus@

add the ability to query supported ciphers, MACs, key type and KEX
algorithms to ssh. Includes some refactoring of KEX and key type handling
to be table-driven; ok markus@