This patch/CL allows the user to configure the hash function
used in the s2k key-stretching tran...

Since the decryption was done in place, if an incorrect key was given,
the encrypted data would ...

Previously, if the current line was "empty", resizes wouldn't trigger
repaints. However, the lin...

LGTM=bradfitz
R=agl, bradfitz
CC=golang-codereviews
https://golang.org/cl/157930043

benchmark old ns/op new ns/op delta
BenchmarkPermutationFunction ...

It also still works with Go 1.4.

LGTM=agl
R=agl
CC=golang-codereviews
https://golang.org/cl/154...

Fixes tests when using Go tip. Without this the link steps
fails with errors like:

missing Go ...

LGTM=agl
R=agl, dave, jpsugar
CC=golang-codereviews
https://golang.org/cl/134700043

Test that different extended data streams within a channel are
thread-safe.

benchmark ...

Prior to Go 1.4, crypto didn't have the consts defined for SHA-3.

LGTM=bradfitz
R=bradfitz
CC=g...

1. API:

This exposes a minimal API: the SHA-3 functions implement hash.Hash. The
SHAKE function...

Fixes golang/go#8508.

LGTM=bradfitz
R=bradfitz
CC=golang-codereviews
https://golang.org/cl/1289...

Also stops leaking /tmp/ directories.

Fixes golang/go#8489.

LGTM=dave, minux
R=dave, minux, ag...

In the event that a detached signature fails to verify, the code would
continue trying to find o...

This proposal effectively disables all the ssh/test tests when run with the -short flag supplied...

Supporting larger salts makes it possible to implement bcrypt-pbkdf
(http://www.tedunangst.com/f...

There doesn't appear to be perfect behaviour for line editing
code in the face of terminal resiz...

Currently the ssh/terminal package cannot be compiled under gccgo. Even though gccgo may be runn...

At some point in the distant past, crypto.Hash.New() changed from
returning nil when a hash func...

LGTM=bradfitz
R=bradfitz, marios.nikolaou
CC=golang-codereviews
https://golang.org/cl/92220043

LGTM=agl
R=golang-codereviews, bradfitz, agl
CC=golang-codereviews
https://golang.org/cl/95370044

Validating a public key doesn't return any remaining methods so, if all public keys were rejecte...

Entity.SignIdentity used the wrong signature function and produced invalid
certification signatu...

Fixes golang/go#7913.

LGTM=hanwen
R=hanwen
CC=golang-codereviews
https://golang.org/cl/96220043

LGTM=jpsugar, agl
R=agl, jpsugar
CC=golang-codereviews
https://golang.org/cl/92240045

LGTM=agl
R=golang-codereviews, agl
CC=golang-codereviews
https://golang.org/cl/98840043

LGTM=agl
R=golang-codereviews, agl
CC=golang-codereviews
https://golang.org/cl/97850043

LGTM=robert.hencke
R=golang-codereviews, robert.hencke
CC=golang-codereviews
https://golang.org/...

R=agl
CC=golang-codereviews
https://golang.org/cl/95050043

R=agl
CC=golang-codereviews, hanwen
https://golang.org/cl/95910043

R=agl, dave, jpsugar
CC=golang-codereviews
https://golang.org/cl/88260043

R=agl, dave, jpsugar
CC=golang-codereviews
https://golang.org/cl/87810047

LGTM=dave
R=agl, dave
CC=golang-codereviews
https://golang.org/cl/88060043

LGTM=hanwen
R=agl, hanwen
CC=golang-codereviews
https://golang.org/cl/86600044

set.

Otherwise, the package leaks data about total number of
connections established through its...

LGTM=minux.ma
R=golang-codereviews, minux.ma
CC=golang-codereviews
https://golang.org/cl/86630043

In c0fc595a2cb5, hg didn't notice the files that had been removed from
the working directory. Th...

See https://groups.google.com/d/msg/Golang-nuts/AoVxQ4bB5XQ/i8kpMxdbVlEJ

R=hanwen
CC=golang-cod...

bcrypt didn't allow one, two and three letter passwords which is a
policy decision best left to ...

LGTM=minux.ma
R=golang-codereviews, minux.ma
CC=golang-codereviews
https://golang.org/cl/64390044

Detailed description in RFC 5869.

LGTM=agl
R=agl, minux.ma
CC=golang-codereviews
https://golang...

Breaks FreeBSD build of subrepo for non-tip users.

««« original CL description
go.crypto/ssh/te...

syscall.Termios, which was the only thing breaking the build, is
available in go tip now
(https:...

R=golang-codereviews, rsc
CC=golang-codereviews
https://golang.org/cl/44830043

See this thread for background:
https://groups.google.com/forum/#!topic/golang-dev/xG7vPi21r8g

...

Increase window size for channels (session and tcpip) to 64 *
max packet size (32 KB), which is ...

R=dave
CC=golang-dev
https://golang.org/cl/15930044

transport layer.

R=agl, dave
CC=golang-dev
https://golang.org/cl/15870044

Transport should not be a ReadWriter. It can only write packets, i.e. no partial reads or writes...

R=dave
CC=golang-dev
https://golang.org/cl/15450046

value ^0, which would become negative when expressed as int64.

R=agl, dave, jpsugar, hanwen
CC=g...

R=golang-dev, hanwen
CC=golang-dev
https://golang.org/cl/14767043

R=agl, hanwen, jpsugar, dave
CC=golang-dev
https://golang.org/cl/14540051

R=golang-dev, dave, jpsugar, agl
CC=golang-dev
https://golang.org/cl/14641044

R=golang-dev, dave
CC=golang-dev
https://golang.org/cl/14669046

This helps manipulating data in global and channel request
payloads.

R=agl, dave, jpsugar
CC=go...

R=agl, dave
CC=golang-dev
https://golang.org/cl/14494055

This makes memTransport safe for use with multiple
writers/closers.

R=golang-dev, dave
CC=agl, ...

R=agl, hanwen
CC=dave, golang-dev, jpsugar
https://golang.org/cl/14430055

Although the package doesn't attempt to fully support ancient, version
3 messages, supporting v3...

The change to add the PublicKey interface accidentally caused certificate handling to expect an ...

transport.

Sending the msgNewKeys packet and setting up the key material
now happen under a lock...

R=agl, dave, jpsugar, m4dh4tt3r, agl
CC=golang-dev
https://golang.org/cl/14420045

I understand that ssh/terminal can't implement everybodys
favorite keyboard shortcuts, but I thi...

R=golang-dev, agl
CC=golang-dev
https://golang.org/cl/13966043

Adds readPacket() to conn, and renames conn to packetConn.
Key exchanges operate on packetConn, ...

This shouldn't be necessary according to the OTRv2 spec,
but is expected by at least one other c...

private keys.

R=agl, jpsugar, jonathan.mark.pittman
CC=golang-dev
https://golang.org/cl/13338044

The length of history buffer entries (which are stored as strings) was
being used as the number ...

Previously, terminal only supported ASCII characters. This change
alters some []byte to []rune s...

Public functions affected:
-AgentKey.Key
-AgentClient.SignRequest
-ClientKeyring.Key
-MarshalPub...

R=agl, dave, hanwen
CC=ekg, golang-dev
https://golang.org/cl/13528044

Properly capitalize publicKey throughout.

R=golang-dev
CC=agl, dave, golang-dev, jpsugar
https:...

Necessary to reproduce the same hash for verifying a UserAttribute signature.
Reuse and fix defe...

R=agl, dave, jpsugar
CC=golang-dev
https://golang.org/cl/13438043

My goal here is to allow read-only access to legacy key material without allowing new V3 keys or...

Previously curve25519 contained a constant-time, optimised amd64 implementation and
a generic im...

Only an io.Writer is needed in this case.

Fixes golang/go#6035.

R=golang-dev, bradfitz
CC=gola...

Support ECDSA signature verification.

R=agl
CC=golang-dev
https://golang.org/cl/13141044

R=golang-dev, mikioh.mikioh, remyoudompheng
CC=golang-dev
https://golang.org/cl/13370043

R=agl
CC=golang-dev
https://golang.org/cl/13010047

This obviates custom code to emulate a thread-safe connection.

Use this for testing that listen...

Supports JPEG images as well as free-form arbitrary subpacket data in
user attributes (RFC 4880,...

Implement elliptic-curve Diffie-Hellman, including host key signature
verification.

Moves host ...

R=golang-dev, bradfitz
CC=golang-dev
https://golang.org/cl/13207043

R=agl, golang-dev, dave
CC=golang-dev
https://golang.org/cl/13176044

R=agl, golang-dev
CC=golang-dev
https://golang.org/cl/12983046

This patch implements the facilities needed to compress data before
encryption as allowed (and r...

Previously, if Encrypt decided to use a hash function that wasn't
compiled in then it would pani...

Paul van Brouwershaven pointed out that it would be better to pass in
the issuing certificate an...

R=agl, dave
CC=golang-dev
https://golang.org/cl/12027043

OpenSSH 5.

Tested with OpenSSH_5.9

R=agl, dave
CC=golang-dev
https://golang.org/cl/11921043

When selecting keys for encryption, don't select keys that have
expired.

Fixes golang/go#5808.
...

Close both on closing the listener, and on closing the
connection. Test the former case.

R=dave...

Thanks to Frithjof Schulze for noticing.

R=goland-dev, r
CC=golang-dev
https://golang.org/cl/11...

And according to the gpg implementation: http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git&a=se...

For those still stuck on Go 1.0.

R=golang-dev, rsc
CC=golang-dev
https://golang.org/cl/11297043

Tested using a variety of files encrypted with gpg and the
"--compress-algo BZIP2" gpg option.

...

The history buffer would recall previously entered lines: including passwords. With this change,...

R=bradfitz
CC=golang-dev
https://golang.org/cl/10431044