search for: sshbuf_put_stringb

In sshconnect.c there are two global variables for server_version_string client_version_string. These are used just in a few functions and can easily be passed as parameters. Also, there is a strange construct, where their memory is allocated to the global pointers, then copies of these pointers are assigned to the kex structure. The kex_free finally frees them via cleanup of the kex

Hi, I have a question regarding the binary format of the certificates generated with ssh-keygen, in particular when the critical options of source-address or force-command are present and the correspondence to the certificate format specifications such as http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/PROTOCOL.certkeys?rev=HEAD . It appears that the string values of the source-address

...n order to keep overhead as low as possible . Or even better both values could be transmitted in a single "nsec-times" key/value pair to keep overhead really to a minimum and just add both u32 variables to a separate sshbuf temporary variable and write that sshbuf as the value string with sshbuf_put_stringb(). I think subsecond time support could be implemented in all file attribs related protocol functions with the main changes involving the stat_to_attrib(), attrib_to_stat(), decode_attrib(), encode_attrib(), attrib_to_tv() and attrib_to_ts() functions mainly. This way, sftp servers/clients that d...

Hello. I am trying to play through the following test scenario about certificate revocation on Ubuntu 18.04, which has OpenSSH of this version: OpenSSH_7.6p1 Ubuntu-4, OpenSSL 1.0.2n? 7 Dec 2017 1. A CA key is created ssh-keygen -t ed25519 -f ca 2. The CA public key is added to ~/.ssh/authorized_keys on some server: cert-authority ssh-ed25519 AAAA...e ca at yoga 3. A user key is created on a