| Commit message (Expand) | Author | Age | Files | Lines |
* | highly polished whitespace, mostly fixing spaces-for-tab and bad | djm | 2021-04-03 | 1 | -2/+2 |
* | Add ModuliFile keyword to sshd_config to specify the location of the | dtucker | 2021-03-12 | 1 | -5/+18 |
* | use the new variant log macros instead of prepending __func__ and | djm | 2020-10-18 | 1 | -3/+3 |
* | typo in previous | djm | 2019-09-06 | 1 | -2/+2 |
* | fixes for !WITH_OPENSSL compilation; ok dtucker@ | djm | 2019-09-06 | 1 | -6/+5 |
* | correct local variable name; from yawang AT microsoft.com | djm | 2018-11-09 | 1 | -3/+3 |
* | When choosing a prime from the moduli file, avoid re-using the | millert | 2018-09-17 | 1 | -6/+8 |
* | hold our collective noses and use the openssl-1.1.x API in OpenSSH; | djm | 2018-09-13 | 1 | -24/+38 |
* | invalidate dh->priv_key after freeing it in error path; avoids | djm | 2018-08-04 | 1 | -1/+2 |
* | Fix "WARNING: line 6 disappeared in /etc/moduli, giving up" when | millert | 2018-06-26 | 1 | -2/+1 |
* | switch config file parsing to getline(3) as this avoids static limits | markus | 2018-06-06 | 1 | -6/+12 |
* | Remove all guards for calls to OpenSSL free functions - all of these | jsing | 2018-02-07 | 1 | -5/+3 |
* | Fix text in error message. Patch from zev at bewilderbeest.net. | dtucker | 2016-12-15 | 1 | -2/+2 |
* | Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions | deraadt | 2016-09-12 | 1 | -3/+2 |
* | add support for additional fixed DH groups from | djm | 2016-05-02 | 1 | -11/+72 |
* | Remove fallback from moduli to "primes" file that was deprecated in 2001 | dtucker | 2016-03-31 | 1 | -7/+7 |
* | rearrange DH public value tests to be a little more clear | djm | 2016-02-28 | 1 | -7/+16 |
* | Add a stronger (4k bit) fallback group that sshd can use when the moduli | dtucker | 2015-05-27 | 1 | -4/+43 |
* | relax bits needed check to allow diffie-hellman-group1-sha1 key | djm | 2015-03-26 | 1 | -2/+2 |
* | Reduce use of <sys/param.h> and transition to <limits.h> throughout. | deraadt | 2015-01-20 | 1 | -2/+3 |
* | adapt kex to sshbuf and struct ssh; ok djm@ | markus | 2015-01-19 | 1 | -29/+30 |
* | Add a new protocol 2 transport cipher "chacha20-poly1305@openssh.com" | djm | 2013-11-21 | 1 | -26/+12 |
* | Increase the size of the Diffie-Hellman groups requested for a each symmetric | dtucker | 2013-10-08 | 1 | -7/+10 |
* | remove extra whitespace | markus | 2013-07-02 | 1 | -2/+2 |
* | sprinkle in some error() to explain moduli(5) parse failures | djm | 2013-06-21 | 1 | -27/+47 |
* | fix some harmless and/or unreachable int overflows; | djm | 2011-12-07 | 1 | -1/+3 |
* | fix a cast | grunk | 2009-10-01 | 1 | -2/+2 |
* | when loading moduli from /etc/moduli in sshd(8), check that they | djm | 2008-06-26 | 1 | -1/+14 |
* | Use arc4random_buf() when requesting more than a single word of output | djm | 2008-04-13 | 1 | -2/+2 |
* | Don't return -1 on error in dh_pub_is_valid(), since it evaluates | ray | 2007-09-27 | 1 | -4/+6 |
* | BN_hex2bn returns int; from dtucker@ | markus | 2006-11-07 | 1 | -3/+3 |
* | add missing checks for openssl return codes; with & ok djm@ | markus | 2006-11-06 | 1 | -3/+3 |
* | almost entirely get rid of the culture of ".h files that include .h files" | deraadt | 2006-08-03 | 1 | -3/+1 |
* | move #include <stdio.h> out of includes.h | stevesk | 2006-08-01 | 1 | -1/+2 |
* | move #include <stdlib.h> out of includes.h | stevesk | 2006-07-26 | 1 | -1/+2 |
* | move #include <sys/param.h> out of includes.h | stevesk | 2006-07-26 | 1 | -1/+3 |
* | move #include <string.h> out of includes.h | stevesk | 2006-07-22 | 1 | -1/+3 |
* | remove unneeded includes; ok djm@ | stevesk | 2006-07-18 | 1 | -7/+1 |
* | tighter DH exponent checks here too; feedback and ok markus@ | djm | 2006-05-04 | 1 | -2/+19 |
* | use strtonum() instead of atoi(), limit dhg size to 64k; ok djm | deraadt | 2006-03-27 | 1 | -2/+4 |
* | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | djm | 2006-03-25 | 1 | -0/+1 |
* | RCSID() can die | deraadt | 2006-03-19 | 1 | -1/+0 |
* | potential NULL pointer dereferences detected by Coverity | djm | 2006-03-19 | 1 | -2/+3 |
* | return group14 when no primes found - fixes hang on empty /etc/moduli; | djm | 2004-08-04 | 1 | -2/+2 |
* | implement diffie-hellman-group14-sha1 kex method (trivial extension to | djm | 2004-06-13 | 1 | -4/+24 |
* | Reset bit counter at the right time, fixes debug output in the case where | dtucker | 2004-02-27 | 1 | -3/+3 |
* | Make /etc/moduli line buffer big enough for 8kbit primes, in case anyone | dtucker | 2004-02-27 | 1 | -2/+2 |
* | Prevent sshd from sending DH groups with a primitive generator of zero or | dtucker | 2004-02-27 | 1 | -1/+4 |
* | use <= instead of < in dh_estimate; ok provos/hshoexer; do not return < DH_GRP_MIN | markus | 2003-12-16 | 1 | -5/+3 |
* | A few signedness fixes for harmless situations; markus@ ok | miod | 2003-09-18 | 1 | -2/+2 |