| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | factor out reading/writing sshbufs to dedicated functions; |   djm | 2020-01-25 | 1 | -2/+1 |
| | | | | | feedback and ok markus@ | ||||
| * | add sshkey_save_public(), to save a public key; ok markus@ | djm | 2020-01-02 | 1 | -1/+3 |
| | | |||||
| * | move advance_past_options to authfile.c and make it public; | djm | 2019-09-03 | 1 | -1/+2 |
| | | | | | ok markus@ | ||||
| * | Remove now-redundant perm_ok arg since sshkey_load_private_type will |   dtucker | 2019-08-05 | 1 | -3/+3 |
| | | | | | | now return SSH_ERR_KEY_BAD_PERMISSIONS in that case. Patch from jitendra.sharma at intel.com, ok djm@ | ||||
| * | deprecate key_load_private_pem() and sshkey_load_private_pem() | djm | 2015-01-08 | 1 | -3/+7 |
| | | | | | | | | | | | | | | | | interfaces. Refactor the generic key loading API to not require pathnames to be specified (they weren't really used). Fixes a few other things en passant: Makes ed25519 keys work for hostbased authentication (ssh-keysign previously used the PEM-only routines). Fixes key comment regression bz#2306: key pathnames were being lost as comment fields. ok markus@ | ||||
| * | add RevokedHostKeys option for the client | djm | 2014-12-04 | 1 | -2/+3 |
| | | | | | Allow textfile or KRL-based revocation of hostkeys. | ||||
| * | remove leakmalloc droppings | djm | 2014-07-03 | 1 | -5/+1 |
| | | |||||
| * | New key API: refactor key-related functions to be more library-like, | djm | 2014-06-24 | 1 | -22/+41 |
| | | | | | | | | | | existing API is offered as a set of wrappers. with and ok markus@ Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew Dempsky and Ron Bowes for a detailed review a few months ago. | ||||
| * | new private key format, bcrypt as KDF by default; details in PROTOCOL.key; |   markus | 2013-12-06 | 1 | -2/+3 |
| | | | | | feedback and lots help from djm; ok djm@ | ||||
| * | allow "ssh-add - < key"; feedback and ok markus@ | djm | 2011-05-04 | 1 | -1/+3 |
| | | |||||
| * | enable certificates for hostbased authentication, from Iain Morgan; | djm | 2010-08-04 | 1 | -1/+3 |
| | | | | | "looks ok" markus@ | ||||
| * | Add a TrustedUserCAKeys option to sshd_config to specify CA keys that | djm | 2010-03-04 | 1 | -1/+2 |
| | | | | | | | | | | | | are trusted to authenticate users (in addition than doing it per-user in authorized_keys). Add a RevokedKeys option to sshd_config and a @revoked marker to known_hosts to allow keys to me revoked and banned for user or host authentication. feedback and ok markus@ | ||||
| * | Prevent ssh from trying to open private keys with bad permissions more than | dtucker | 2006-04-25 | 1 | -2/+2 |
| | | | | | | once or prompting for their passphrases (which it subsequently ignores anyway), similar to a previous change in ssh-add. bz #1186, ok djm@ | ||||
| * | standardise spacing in $OpenBSD$ tags; requested by deraadt@ | djm | 2006-03-25 | 1 | -1/+1 |
| | | |||||
| * | Make ssh-add check file permissions before attempting to load private | dtucker | 2006-03-13 | 1 | -1/+2 |
| | | | | | | key files multiple times; it will fail anyway and this prevents confusing multiple prompts and warnings. mindrot #1138, ok djm@ | ||||
| * | add /usr/libexec/ssh-keysign: a setuid helper program for hostbased authentication | markus | 2002-05-23 | 1 | -1/+2 |
| | | | | | in protocol v2 (needs to access the hostkeys). | ||||
| * | $OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add |   stevesk | 2002-03-04 | 1 | -2/+2 |
| | | | | | | missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c files. ok markus@ | ||||
| * | remove comments from .h, since they are cut&paste from the .c files | markus | 2001-06-26 | 1 | -15/+6 |
| | | | | | and out of sync | ||||
| * | prototype pedant. not very creative... |   itojun | 2001-06-26 | 1 | -9/+6 |
| | | | | | | - () -> (void) - no variable names | ||||
| * | simpler key load/save interface, see authfile.h | markus | 2001-03-26 | 1 | -30/+15 |
| | | |||||
| * | Add idents for files which lack them | djm | 2000-10-16 | 1 | -0/+4 |
| | | | | | Fix idents Id -> OpenBSD for the rest | ||||
| * | some more Copyright fixes | markus | 2000-09-07 | 1 | -20/+9 |
| | | |||||
| * | cleanup copyright notices on all files. I have attempted to be accurate with |   deraadt | 2000-09-07 | 1 | -0/+23 |
| | | | | | | | | the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate. | ||||
| * | prototype | markus | 2000-09-06 | 1 | -3/+2 |
| | | |||||
| * | add DSA pubkey auth and other SSH2 fixes. use ssh-keygen -[xX] | markus | 2000-04-26 | 1 | -0/+36 |
| for trading keys with the real and the original SSH, directly from the people who invented the SSH protocol. | |||||
 |
index : wireguard-openbsd | |
| WireGuard implementation for the OpenBSD kernel | Matt Dunwoodie |
| summaryrefslogtreecommitdiffstats |