| Commit message (Expand) | Author | Age | Files | Lines |
* | pass most arguments to the KEX hash functions as sshbuf rather | djm | 2019-01-23 | 1 | -11/+14 |
* | factor out kex_load_hostkey() - this is duplicated in both the client and | djm | 2019-01-21 | 1 | -13/+3 |
* | factor out kex_dh_compute_key() - it's shared between plain DH KEX and | djm | 2019-01-21 | 1 | -44/+14 |
* | save the derived session id in kex_derive_keys() rather than making each | djm | 2019-01-21 | 1 | -12/+1 |
* | Make sshpkt_get_bignum2() allocate the bignum it is parsing rather | djm | 2019-01-21 | 1 | -6/+2 |
* | remove last references to active_state | djm | 2019-01-19 | 1 | -3/+3 |
* | move client/server SSH-* banners to buffers under ssh->kex and factor | djm | 2018-12-27 | 1 | -3/+3 |
* | explicit_bzero here to be consistent with other kex*.c; | djm | 2018-10-04 | 1 | -1/+2 |
* | hold our collective noses and use the openssl-1.1.x API in OpenSSH; | djm | 2018-09-13 | 1 | -10/+13 |
* | lots of typos in comments/docs. Patch from Karsten Weiss after checking | djm | 2018-04-10 | 1 | -2/+2 |
* | Remove all guards for calls to OpenSSL free functions - all of these | jsing | 2018-02-07 | 1 | -5/+3 |
* | protocol handlers all get struct ssh passed; ok djm@ | markus | 2017-05-30 | 1 | -7/+5 |
* | Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions | deraadt | 2016-09-12 | 1 | -6/+6 |
* | Back out rev 1.28 "Check min and max sizes sent by the client" change. | dtucker | 2016-06-08 | 1 | -9/+9 |
* | Check min and max sizes sent by the client against what we support before | dtucker | 2016-06-01 | 1 | -9/+9 |
* | Ensure that the client's proposed DH-GEX max value is at least as big | dtucker | 2016-05-31 | 1 | -2/+2 |
* | implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth) | markus | 2015-12-04 | 1 | -3/+3 |
* | deprecate ancient, pre-RFC4419 and undocumented | djm | 2015-04-13 | 1 | -36/+13 |
* | correctly match ECDSA subtype (== curve) for offered/recevied | djm | 2015-01-26 | 1 | -3/+5 |
* | Reduce use of <sys/param.h> and transition to <limits.h> throughout. | deraadt | 2015-01-20 | 1 | -2/+2 |
* | fix hostkeys in agent; ok markus@ | djm | 2015-01-20 | 1 | -5/+4 |
* | adapt kex to sshbuf and struct ssh; ok djm@ | markus | 2015-01-19 | 1 | -96/+161 |
* | update packet.c & isolate, introduce struct ssh | markus | 2015-01-19 | 1 | -3/+3 |
* | convert memset of potentially-private data to explicit_bzero() | djm | 2014-02-02 | 1 | -2/+2 |
* | avoid use of OpenSSL BIGNUM type and functions for KEX with | djm | 2014-01-12 | 1 | -2/+2 |
* | Introduce digest API and use it to perform all hashing operations | djm | 2014-01-09 | 1 | -2/+2 |
* | add ssh-agent(1) support to sshd(8); allows encrypted hostkeys, | markus | 2013-07-19 | 1 | -8/+3 |
* | bye, bye xfree(); ok markus@ | djm | 2013-05-17 | 1 | -4/+4 |
* | use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED. | djm | 2010-11-10 | 1 | -1/+3 |
* | Add support for certificate key types for users and hosts. | djm | 2010-02-26 | 1 | -7/+13 |
* | abort if key_sign fails, preventing possible null deref. Based on report | dtucker | 2009-06-21 | 1 | -2/+4 |
* | fix hash calculation for KEXGEX: hash over the original client-supplied | djm | 2009-01-01 | 1 | -12/+15 |
* | add missing checks for openssl return codes; with & ok djm@ | markus | 2006-11-06 | 1 | -2/+3 |
* | check DH_compute_key() for -1 even if it should not happen because of | markus | 2006-10-31 | 1 | -4/+5 |
* | almost entirely get rid of the culture of ".h files that include .h files" | deraadt | 2006-08-03 | 1 | -3/+7 |
* | move #include <stdio.h> out of includes.h | stevesk | 2006-08-01 | 1 | -1/+2 |
* | move #include <sys/param.h> out of includes.h | stevesk | 2006-07-26 | 1 | -1/+3 |
* | move #include <string.h> out of includes.h | stevesk | 2006-07-22 | 1 | -1/+3 |
* | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | djm | 2006-03-25 | 1 | -0/+1 |
* | RCSID() can die | deraadt | 2006-03-19 | 1 | -1/+0 |
* | remove hardcoded hash lengths in key exchange code, allowing | djm | 2005-11-04 | 1 | -10/+10 |
* | split kex into client and server code, no need to link | markus | 2003-02-16 | 1 | -0/+186 |