| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | give ssh-keygen the ability to dump the contents of a binary key |   djm | 2020-04-03 | 1 | -2/+2 |
| | | | | | revocation list: ssh-keygen -lQf /path bz#3132; ok dtucker | ||||
| * | factor out reading/writing sshbufs to dedicated functions; | djm | 2020-01-25 | 1 | -2/+2 |
| | | | | | feedback and ok markus@ | ||||
| * | use ssh-sk-helper for all security key signing operations | djm | 2019-12-13 | 1 | -5/+3 |
| | | | | | | | | | | This extracts and refactors the client interface for ssh-sk-helper from ssh-agent and generalises it for use by the other programs. This means that most OpenSSH tools no longer need to link against libfido2 or directly interact with /dev/uhid* requested by, feedback and ok markus@ | ||||
| * | directly support U2F/FIDO2 security keys in OpenSSH by linking | djm | 2019-11-14 | 1 | -1/+3 |
| | | | | | | | against the (previously external) USB HID middleware. The dlopen() capability still exists for alternate middlewares, e.g. for Bluetooth, NFC and test/debugging. | ||||
| * | Refactor signing - use sshkey_sign for everything, including the new | djm | 2019-10-31 | 1 | -2/+2 |
| | | | | | | | | | | | | U2F signatures. Don't use sshsk_ecdsa_sign() directly, instead make it reachable via sshkey_sign() like all other signature operations. This means that we need to add a provider argument to sshkey_sign(), so most of this change is mechanically adding that. Suggested by / ok markus@ | ||||
| * | ssh-agent support for U2F/FIDO keys | djm | 2019-10-31 | 1 | -3/+3 |
| | | | | | feedback & ok markus@ | ||||
| * | avoid compiling certain files that deeply depend on libcrypto when | djm | 2019-09-06 | 1 | -2/+3 |
| | | | | | WITH_OPENSSL isn't set | ||||
| * | Don't redefine Makefile choices which come correct from bsd.*.mk |   deraadt | 2018-07-25 | 1 | -3/+2 |
| | | | | | ok markus | ||||
| * | remove legacy key emulation layer; ok djm@ |   markus | 2018-07-11 | 1 | -2/+2 |
| | | |||||
| * | remove legacy buffer API emulation layer; ok djm@ | markus | 2018-07-09 | 1 | -2/+2 |
| | | |||||
| * | group shared source files (e.g. SRCS_KEX) and allow compilation w/o OPENSSL | markus | 2018-01-08 | 1 | -8/+3 |
| | | | | | ok djm@ | ||||
| * | Replace ED25519's private SHA-512 implementation with a call to the |   naddy | 2017-12-14 | 1 | -2/+2 |
| | | | | | | regular digest code. This speeds up compilation considerably. ok markus@ | ||||
| * | ssh/lib hasn't worked towards our code-sharing goals for a quit while, | deraadt | 2017-12-10 | 1 | -5/+12 |
| | | | | | | | | | | perhaps it is too verbose? Change each */Makefile to specifying exactly what sources that program requires, compiling it seperate. Maybe we'll iterate by sorting those into seperatable chunks, splitting up files which contain common code + server/client specific code, or whatnot. But this isn't one step, or we'd have done it a long time ago.. ok dtucker markus djm | ||||
| * | zap redundant Makefile variables. |   espie | 2017-07-10 | 1 | -2/+1 |
| | | | | | okay djm@ | ||||
| * | enable PKCS#11 code; ok djm | markus | 2010-02-09 | 1 | -3/+2 |
| | | |||||
| * | replace our obsolete smartcard code with PKCS#11. | markus | 2010-02-08 | 1 | -1/+2 |
| | | | | | | | | | | ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf ssh(1) and ssh-keygen(1) use dlopen(3) directly to talk to a PKCS#11 provider (shared library) while ssh-agent(1) delegates PKCS#11 to a forked a ssh-pkcs11-helper process. PKCS#11 is currently a compile time option. feedback and ok djm@; inspired by patches from Alon Bar-Lev | ||||
| * | make ssh-agent setgid, disallow ptrace. | markus | 2002-08-12 | 1 | -2/+3 |
| | | |||||
| * | move -lsectok to Makefile.inc for now | markus | 2001-06-27 | 1 | -3/+1 |
| | | |||||
| * | add smartcard support to the makefiles (commented out); | markus | 2001-06-26 | 1 | -1/+3 |
| | | | | | the smartcard support is based on work by itoi@eecs.umich.edu | ||||
| * | unbreak | markus | 2001-06-26 | 1 | -6/+1 |
| | | |||||
| * | more smartcard support. | markus | 2001-06-26 | 1 | -1/+6 |
| | | |||||
| * | don't link unused libs | markus | 2001-03-04 | 1 | -3/+3 |
| | | |||||
| * | log*.c -> log.c | markus | 2001-03-03 | 1 | -2/+2 |
| | | |||||
| * | $OpenBSD$ |   niklas | 2001-01-29 | 1 | -0/+2 |
| | | |||||
| * | no longer needed; good riddance for static archs |   todd | 2000-06-29 | 1 | -5/+0 |
| | | |||||
| * | fix for stupid binutils linker | deraadt | 1999-10-27 | 1 | -2/+3 |
| | | |||||
| * | move common files to ./lib and link libssh.a, tested with and w/o obj | markus | 1999-10-25 | 1 | -13/+1 |
| | | |||||
| * | on static machines, install these as mode 0 | deraadt | 1999-10-07 | 1 | -1/+8 |
| | | |||||
| * | scp should not link against kerberos stuff | deraadt | 1999-10-06 | 1 | -0/+11 |
| | | |||||
| * | more shrinking | deraadt | 1999-10-04 | 1 | -3/+2 |
| | | |||||
| * | nuked minfd. sigh. hope this is the last one. | markus | 1999-10-04 | 1 | -6/+1 |
| | | |||||
| * | Remove kerberos libdes - it's all in libcrypto |   beck | 1999-10-01 | 1 | -1/+1 |
| | | |||||
| * | use libc md5 | deraadt | 1999-09-30 | 1 | -1/+1 |
| | | |||||
| * | update krb4/AFS support to ssh-1.2.27-afs-kerberos-pl1 level, clean up unused variables, update manpages |   dugsong | 1999-09-29 | 1 | -2/+2 |
| | | |||||
| * | DPADD; mickey | deraadt | 1999-09-29 | 1 | -0/+1 |
| | | |||||
| * | convert all uses of gmp to SSL bignum |   provos | 1999-09-28 | 1 | -6/+6 |
| | | | | | | | convert all used of rsa to SSL rsa functions remove all use of randomstate to OpenBSD arc4random() and arc4_stir() all this done at a long long night in Canada. | ||||
| * | proper groups for install | deraadt | 1999-09-26 | 1 | -1/+0 |
| | | |||||
| * | build ssh components using our build model | deraadt | 1999-09-26 | 1 | -0/+20 |
 |
index : wireguard-openbsd | |
| WireGuard implementation for the OpenBSD kernel | Matt Dunwoodie |
| summaryrefslogtreecommitdiffstats |