Libgcrypt 1.7.0 released

Libgcrypt is a general purpose cryptographic library based on the code from GnuPG. It provides functions for all cryptographic building blocks: symmetric ciphers, hash algorithms, MACs, public key algorithms, large integer functions, random numbers and a lot of supporting functions.

Version 1.7. has new algorithms and modes listed below:

– SHA3-224, SHA3-256, SHA3-384, SHA3-512, and MD2 hash algorithms.

– SHAKE128 and SHAKE256 extendable-output hash algorithms.

– ChaCha20 stream cipher.

– Poly1305 message authentication algorithm

– ChaCha20-Poly1305 Authenticated Encryption with Associated Data

– OCB mode.

– HMAC-MD2 for use by legacy applications.

* New curves for ECC:

– Curve25519.

– sec256k1.

– GOST R 34.10-2001 and GOST R 34.10-2012.


OpenSSH 6.9 released; chacha20-poly1305 is the default cipher now

New Features

* ssh(1), sshd(8): promote to be the
default cipher

* sshd(8): support admin-specified arguments to AuthorizedKeysCommand;

* sshd(8): add AuthorizedPrincipalsCommand that allows retrieving
authorized principals information from a subprocess rather than
a file.

* ssh(1), ssh-add(1): support PKCS#11 devices with external PIN
entry devices bz#2240

* sshd(8): allow GSSAPI host credential check to be relaxed for
multihomed hosts via GSSAPIStrictAcceptorCheck option; bz#928

* ssh-keygen(1): support “ssh-keygen -lF hostname” to search
known_hosts and print key hashes rather than full keys.

* ssh-agent(1): add -D flag to leave ssh-agent in foreground without
enabling debug mode; bz#2381