You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@mina.apache.org by "tomaswolf (via GitHub)" <gi...@apache.org> on 2023/03/31 18:05:25 UTC

[GitHub] [mina-sshd] tomaswolf opened a new pull request, #352: Support reading OpenSSH private keys with AEAD encryption

tomaswolf opened a new pull request, #352:
URL: https://github.com/apache/mina-sshd/pull/352

   OpenSSH supports three AEAD algorithms for encrypting private keys: aes128-gcm, aes256-gcm, and chacha20-poly1305. For these encryptions the file format is a bit special: the MAC is just dumped after the encrypted private key data. OpenSSH uses no AAD for these encryptions, and for chacha20-poly1305, the IV is all zeroes (and not generated by the bcrypt KDF).
   
   See also [1] and [2].
   
   Adapt the code to handle both AES-GCM and ChaCha20-Poly1305, clean up a little, and add tests.
   
   [1] https://bugzilla.mindrot.org/show_bug.cgi?id=2366
   [2] https://bugzilla.mindrot.org/show_bug.cgi?id=3553


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@mina.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@mina.apache.org
For additional commands, e-mail: dev-help@mina.apache.org

[GitHub] [mina-sshd] tomaswolf merged pull request #352: Support reading OpenSSH private keys with AEAD encryption

Posted by "tomaswolf (via GitHub)" <gi...@apache.org>.

tomaswolf merged PR #352:
URL: https://github.com/apache/mina-sshd/pull/352


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@mina.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@mina.apache.org
For additional commands, e-mail: dev-help@mina.apache.org