| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | fixed unlink([uninitialised memory]) reported by Mateusz Kocielski; |   djm | 2015-08-19 | 1 | -2/+3 |
| * | refuse to generate or accept RSA keys smaller than 1024 bits; | djm | 2015-07-03 | 1 | -3/+3 |
| * | delete support for legacy v00 certificates; "sure" markus@ dtucker@ | djm | 2015-07-03 | 1 | -50/+17 |
| * | wrap all moduli-related code in #ifdef WITH_OPENSSL. | djm | 2015-05-28 | 1 | -39/+52 |
| * | make ssh-keygen default to ed25519 keys when compiled without | djm | 2015-05-28 | 1 | -2/+8 |
| * | Support "ssh-keygen -lF hostname" to find search known_hosts and | djm | 2015-05-21 | 1 | -3/+17 |
| * | fix compilation with OPENSSL=no; ok dtucker@ | djm | 2015-04-27 | 1 | -2/+6 |
| * | rename xrealloc() to xreallocarray() since it follows that form. |   deraadt | 2015-04-24 | 1 | -2/+2 |
| * | use error/logit/fatal instead of fprintf(stderr, ...) and exit(0), | djm | 2015-04-17 | 1 | -153/+94 |
| * | Comments are only supported for RSA1 keys. If a user tried to add one and |   tobias | 2015-03-31 | 1 | -1/+2 |
| * | for ssh-keygen -A, don't try (and fail) to generate | djm | 2015-03-23 | 1 | -1/+5 |
| * | don't printf NULL key comments; reported by Tom Christensen | djm | 2015-02-26 | 1 | -2/+3 |
| * | add -v (show ASCII art) to -l's synopsis; ok djm@ |   naddy | 2015-02-24 | 1 | -2/+2 |
| * | further silence spurious error message even when -v is specified | djm | 2015-02-23 | 1 | -2/+2 |
| * | silence a spurious error message when listing fingerprints for | djm | 2015-02-23 | 1 | -2/+2 |
| * | Refactor hostkeys_foreach() and dependent code | djm | 2015-02-16 | 1 | -32/+39 |
| * | permit KRLs that revoke certificates by serial number or key ID | djm | 2015-01-30 | 1 | -11/+15 |
| * | missing parentheses after if in do_convert_from() broke | djm | 2015-01-30 | 1 | -3/+3 |
| * | update to new API (key_fingerprint => sshkey_fingerprint) | djm | 2015-01-28 | 1 | -4/+14 |
| * | djm, your /usr/include tree is old | deraadt | 2015-01-19 | 1 | -2/+2 |
| * | some feedback from markus@: comment hostkeys_foreach() | djm | 2015-01-18 | 1 | -10/+11 |
| * | make ssh-keygen use hostkeys_foreach(). Removes some | djm | 2015-01-18 | 1 | -205/+121 |
| * | infer key length correctly when user specified a fully- | djm | 2015-01-18 | 1 | -7/+12 |
| * | regression: incorrect error message on otherwise-successful | djm | 2015-01-16 | 1 | -3/+3 |
| * | Replace <sys/param.h> with <limits.h> and other less dirty headers where | deraadt | 2015-01-16 | 1 | -6/+6 |
| * | sync ssh-keysign, ssh-keygen and some dependencies to the new | djm | 2015-01-15 | 1 | -353/+420 |
| * | Add FingerprintHash option to control algorithm used for key | djm | 2014-12-21 | 1 | -22/+36 |
| * | Free resources on error in mkstemp and fdopen |   doug | 2014-08-21 | 1 | -1/+3 |
| * | When hashing or removing hosts using ssh-keygen, don't choke on | djm | 2014-07-03 | 1 | -26/+44 |
| * | standardise on NI_MAXHOST for gethostname() string lengths; about | djm | 2014-07-03 | 1 | -2/+3 |
| * | New key API: refactor key-related functions to be more library-like, | djm | 2014-06-24 | 1 | -9/+11 |
| * | make compiling against OpenSSL optional (make OPENSSL=no); |   markus | 2014-04-29 | 1 | -1/+15 |
| * | buffer_get_string_ptr's return should be const to remind | djm | 2014-04-28 | 1 | -6/+6 |
| * | Add support for SSHFP DNS records for ED25519 key types. |   logan | 2014-04-20 | 1 | -2/+3 |
| * | Improve usage() and documentation towards the standard form. In particular, | deraadt | 2014-03-15 | 1 | -49/+28 |
| * | don't count on things that accept arguments by reference to clear | djm | 2014-03-12 | 1 | -2/+2 |
| * | tweak synopsis: calling ssh-keygen without any arguments is fine; ok jmc@ | naddy | 2014-02-05 | 1 | -2/+2 |
| * | convert memset of potentially-private data to explicit_bzero() | djm | 2014-02-02 | 1 | -17/+17 |
| * | replace most bzero with explicit_bzero, except a few that cna be memset |   tedu | 2014-01-31 | 1 | -2/+2 |
| * | support ed25519 keys (hostkeys and user identities) using the public domain | markus | 2013-12-06 | 1 | -3/+8 |
| * | new private key format, bcrypt as KDF by default; details in PROTOCOL.key; | markus | 2013-12-06 | 1 | -13/+38 |
| * | remove duplicated character ('g') in getopt() string; | djm | 2013-12-06 | 1 | -2/+3 |
| * | Make code match documentation: relative-specified certificate expiry time | djm | 2013-10-23 | 1 | -2/+2 |
| * | All the instances of arc4random_stir() are bogus, since arc4random() | deraadt | 2013-09-02 | 1 | -6/+1 |
| * | improve batch processing a bit by making use of the quite flag a bit |   mikeb | 2013-08-28 | 1 | -10/+15 |
| * | another of the same typo | djm | 2013-08-13 | 1 | -2/+2 |
| * | typo in error message; from Stephan Rickauer | djm | 2013-08-13 | 1 | -2/+2 |
| * | More useful error message on missing current user in /etc/passwd | djm | 2013-07-20 | 1 | -2/+2 |
| * | do_print_resource_record() can never be called with a NULL filename, so | djm | 2013-07-12 | 1 | -2/+2 |
| * | fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@ | djm | 2013-07-12 | 1 | -3/+4 |
