Thanks to visit codestin.com
Credit goes to github.com

Skip to content

client: support for password authentication fixes #31 #51

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
hannesm merged 5 commits into from
Mar 22, 2023
Merged

client: support for password authentication fixes #31 #51

hannesm merged 5 commits into from
Mar 22, 2023

Conversation

@hannesm
Copy link
Member

@hannesm hannesm commented Feb 21, 2023

This changes the API of Client.make (now receives a variant Password of string | Pubkey of key), and Awa_mirage.Make().client_of_flow as well.

This does not support the keyboard-interactive authentication mechanism (RFC 4256) that is commonly used (with e.g. PAM), but only the password authentication. May be useful for feature parity between server and client, and for some network devices.

@hannesm hannesm mentioned this pull request Feb 21, 2023
Closed
hannesm added 5 commits March 20, 2023 13:31
@hannesm
client: support for password authentication fixes mirage#31
318c04d 
This changes the API of Client.make (now receives a variant
`Password of string | `Pubkey of key), and Awa_mirage.Make().client_of_flow as
well.

This does not support the keyboard-interactive authentication mechanism
(RFC 4256) that is commonly used (with e.g. PAM), but only the password
authentication. May be useful for feature parity between server and client, and
for some network devices.
@hannesm
client: support ECDH NIST curves kex with SHA2
2a9708b
@hannesm
support for userauth_banner message
98ddb89
@hannesm
remove hostbased authentication support (partially implemented, not u…
2dcf7d5 
…sed)
@hannesm
keyboard-interactive password authentication for the client
f148000
@hannesm hannesm force-pushed the client-password-auth branch from c7bb2d6 to f148000 Compare March 21, 2023 17:08
@hannesm
Copy link
Member Author

hannesm commented Mar 21, 2023

this has been revised and is ready for review.

What it does:

  • add password authentication to the ssh client
  • add keyboard-interactive authentication to the ssh client
  • remove hostbased authentication mechanism (this doesn't remove any functionality since it was only partially implemented)
  • add ECDH with NIST curves (p256, p384, p521)

@hannesm hannesm merged commit b782fd2 into mirage:main Mar 22, 2023
@hannesm hannesm deleted the client-password-auth branch March 22, 2023 13:37
@hannesm hannesm mentioned this pull request Mar 22, 2023
Merged
hannesm added a commit to hannesm/opam-repository that referenced this pull request Mar 22, 2023
@hannesm
[new release] awa, awa-mirage and awa-lwt (0.2.0)
cfcfcde 
CHANGES:

* server: be able to stop using a Lwt_switch.t (mirage/awa-ssh#52 @dinosaure)
* server: add Pty/Set_env/Start_shell events (mirage/awa-ssh#53 @dinosaure)
* client: support password authentication and keyboard-interactive (mirage/awa-ssh#51
  @hannesm, reported by @dgjustice mirage/awa-ssh#31)
* client: add NIST EC curves (mirage/awa-ssh#31 @hannesm)
* client: try public key authenticaion only once (mirage/awa-ssh#50 @reynir @hannesm)
* remove (partially implemented) hostbased authentication (mirage/awa-ssh#31 @hannesm)
* replace deprecated Cstruct.copy by Cstruct.to_string (mirage/awa-ssh#53 @dinosaure)
* remove ppx_cstruct and sexplib dependencies (mirage/awa-ssh#54 @hannesm)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dinosaure dinosaure dinosaure approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hannesm @dinosaure