It has been an amazing summer again, thanks to the Google Summer of Code program!
This year, we got a record amount of project proposals. 33 students submitted their project proposals in Spring. Out of these, we selected the best proposal, discussed the topic in detail before and during the GSoC development period and for the first time we were able to merge the code and (we hope to) release the same year! So let’s dive into what we worked on this year!
Support for FIDO/U2F keys on the client side
This project intends to bring support for new authentication algorithms based on physical security keys asdefined and implemented by OpenSSH. By segregating the key material from the host system to separate…
It has been an amazing summer again, thanks to the Google Summer of Code program!
This year, we got a record amount of project proposals. 33 students submitted their project proposals in Spring. Out of these, we selected the best proposal, discussed the topic in detail before and during the GSoC development period and for the first time we were able to merge the code and (we hope to) release the same year! So let’s dive into what we worked on this year!
Support for FIDO/U2F keys on the client side
This project intends to bring support for new authentication algorithms based on physical security keys asdefined and implemented by OpenSSH. By segregating the key material from the host system to separate cryptographic hardware and requiring presence verification, it basically eliminates risk of stealing private keys or misuse of them on unattended machines.
This is the same project we accepted in the first year of our GSoC, but unfortunately the previous student was unable to complete the work. After the first year we had some doubts if it was too large or too complicated, but this year was a success!
We selected Praneeth Sarode for this project. Praneeth was in contact with us since January and by the time he submitted a project proposal, he had an amazing 8 non-trivial merge requests, touching very different code parts from sftp, crypto, callbacks and documentation!
We had some expectations about the design of the whole project, but over the first weeks, we came up with some improvements resulting in a more streamlined API and usage.
If you want to learn more about the project, please read Praneeth’sblog. You can also read through the new chapter in our libssh tutorial describing the new API and whole functionality.
The mainMerge Request !617 is now merged and code is available for testing in the master branch. We also hope to make a new release with all the things we worked on over the last couple of years.
Thank you all who allowed this to happen! First of all, Praneeth for all the work, Eshan, Jakub and Sahana for mentoring this year and Google for organizing this program!
Your favourite SSH library will be represented by Andreas and myself at Fosdem, and we will even have a few words in […]
The server at https://red.libssh.org/ that hosts the redmine bug tracker and the downloads is currently down. We are aware of the issue […]
The KDE project uses libssh for their kio_sftp implementation now. The new kio slave based on libssh will be released with KDE […]
The libssh team is happy to announce another bugfix release of libssh as version 0.9.5. It offers bug fixes for several issues […]