[openssh-commits] [openssh] branch master updated (8461a5b3 -> 2b13d393)
git+noreply at mindrot.org
git+noreply at mindrot.org
Wed Apr 8 10:14:26 AEST 2020
This is an automated email from the git hooks/post-receive script.
djm pushed a change to branch master
in repository openssh.
from 8461a5b3 Include openssl-compat.h before checking ifdefs.
new c0f5b229 upstream: refactor private key parsing a little
new 6aabfb6d upstream: check that pubkey in private key envelope matches actual
new 421169d0 upstream: check private key type against requested key type in
new 8d514eea upstream: simplify sshkey_parse_private_fileblob_type()
new f290ab08 upstream: add sshkey_parse_pubkey_from_private_fileblob_type()
new d01f3930 upstream: simplify sshkey_try_load_public()
new 2b13d393 upstream: let sshkey_try_load_public() load public keys from the
The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Detailed log of new commits:
commit 2b13d3934d5803703c04803ca3a93078ecb5b715
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:10:37 2020 +0000
upstream: let sshkey_try_load_public() load public keys from the
unencrypted envelope of private key files if not sidecar public key file is
present.
ok markus@
OpenBSD-Commit-ID: 252a0a580e10b9a6311632530d63b5ac76592040
commit d01f39304eaab0352793b490a25e1ab5f59a5366
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:09:24 2020 +0000
upstream: simplify sshkey_try_load_public()
ok markus@
OpenBSD-Commit-ID: 05a5d46562aafcd70736c792208b1856064f40ad
commit f290ab0833e44355fc006e4e67b92446c14673ef
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:08:46 2020 +0000
upstream: add sshkey_parse_pubkey_from_private_fileblob_type()
Extracts a public key from the unencrypted envelope of a new-style
OpenSSH private key.
ok markus@
OpenBSD-Commit-ID: 44d7ab446e5e8c686aee96d5897b26b3939939aa
commit 8d514eea4ae089626a55e11c7bc1745c8d9683e4
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:07:19 2020 +0000
upstream: simplify sshkey_parse_private_fileblob_type()
Try new format parser for all key types first, fall back to PEM
parser only for invalid format errors.
ok markus@
OpenBSD-Commit-ID: 0173bbb3a5cface77b0679d4dca0e15eb5600b77
commit 421169d0e758351b105eabfcebf42378ebf17217
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:05:59 2020 +0000
upstream: check private key type against requested key type in
new-style private decoding; ok markus@
OpenBSD-Commit-ID: 04d44b3a34ce12ce5187fb6f6e441a88c8c51662
commit 6aabfb6d22b36d07f584cba97f4cdc4363a829da
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:04:32 2020 +0000
upstream: check that pubkey in private key envelope matches actual
private key
(this public key is currently unusued)
ok markus@
OpenBSD-Commit-ID: 634a60b5e135d75f48249ccdf042f3555112049c
commit c0f5b2294796451001fd328c44f0d00f1114eddf
Author: djm at openbsd.org <djm at openbsd.org>
Date: Wed Apr 8 00:01:52 2020 +0000
upstream: refactor private key parsing a little
Split out the base64 decoding and private section decryption steps in
to separate functions. This will make the decryption step easier to fuzz
as well as making it easier to write a "load public key from new-format
private key" function.
ok markus@
OpenBSD-Commit-ID: 7de31d80fb9062aa01901ddf040c286b64ff904e
Summary of changes:
authfile.c | 94 +++++++++++++----------
sshkey.c | 254 ++++++++++++++++++++++++++++++++++++++++++++++++-------------
sshkey.h | 4 +-
3 files changed, 257 insertions(+), 95 deletions(-)
--
To stop receiving notification emails like this one, please contact
djm at mindrot.org.
More information about the openssh-commits
mailing list