| Commit message (Expand) | Author | Age | Files | Lines |
* | additional missing stdarg.h includes when built without WITH_OPENSSL; ok djm@ | naddy | 2019-11-18 | 1 | -1/+2 |
* | Refactor signing - use sshkey_sign for everything, including the new | djm | 2019-10-31 | 1 | -3/+3 |
* | remove some duplicate #includes | djm | 2019-10-02 | 1 | -2/+1 |
* | fixes for !WITH_OPENSSL compilation; ok dtucker@ | djm | 2019-09-06 | 1 | -3/+5 |
* | lots of things were relying on libcrypto headers to transitively | djm | 2019-09-06 | 1 | -1/+2 |
* | if passed a bad fd, log what it was | djm | 2019-06-14 | 1 | -2/+2 |
* | Replace calls to ssh_malloc_init() by a static init of malloc_options. | otto | 2019-06-06 | 1 | -2/+1 |
* | add a ssh_config "Match final" predicate | djm | 2018-11-23 | 1 | -2/+3 |
* | Now that ssh can't be setuid, remove the original_real_uid and | dtucker | 2018-07-27 | 1 | -6/+2 |
* | Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) | markus | 2018-02-23 | 1 | -2/+3 |
* | ssh_free checks for and handles NULL args, remove NULL checks from remaining | dtucker | 2018-02-07 | 1 | -2/+2 |
* | Add a function to enable security-related malloc_options. With and ok | dtucker | 2016-02-15 | 1 | -1/+2 |
* | implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth) | markus | 2015-12-04 | 1 | -2/+3 |
* | pledge, better fatal() messages; feedback deraadt@ | djm | 2015-11-29 | 1 | -7/+16 |
* | add an XXX reminder for getting correct key paths from sshd_config | djm | 2015-07-03 | 1 | -1/+2 |
* | consistent check for NULL as noted by Nicholas Lemonias; ok djm@ | markus | 2015-03-24 | 1 | -2/+2 |
* | update to new API (key_fingerprint => sshkey_fingerprint) | djm | 2015-01-28 | 1 | -3/+4 |
* | sync ssh-keysign, ssh-keygen and some dependencies to the new | djm | 2015-01-15 | 1 | -52/+68 |
* | deprecate key_load_private_pem() and sshkey_load_private_pem() | djm | 2015-01-08 | 1 | -8/+13 |
* | Add FingerprintHash option to control algorithm used for key | djm | 2014-12-21 | 1 | -2/+3 |
* | Tweak config reparsing with host canonicalisation | djm | 2014-10-08 | 1 | -2/+2 |
* | make compiling against OpenSSL optional (make OPENSSL=no); | markus | 2014-04-29 | 1 | -1/+4 |
* | Delete futile calls to RAND_seed. ok djm | tedu | 2014-04-19 | 1 | -5/+1 |
* | include fingerprint of key not found | djm | 2014-04-01 | 1 | -6/+8 |
* | support ed25519 keys (hostkeys and user identities) using the public domain | markus | 2013-12-06 | 1 | -2/+3 |
* | add a "Match" keyword to ssh_config that allows matching on hostname, | djm | 2013-10-14 | 1 | -2/+2 |
* | bye, bye xfree(); ok markus@ | djm | 2013-05-17 | 1 | -10/+10 |
* | make hostbased auth with ECDSA keys work correctly. Based on patch | djm | 2011-02-16 | 1 | -8/+15 |
* | reintroduce commit from tedu@, which I pulled out for release engineering: | djm | 2010-08-31 | 1 | -2/+2 |
* | backout previous temporarily; discussed with deraadt@ | djm | 2010-08-16 | 1 | -2/+2 |
* | OpenSSL_add_all_algorithms is the name of the function we have a man page | tedu | 2010-08-12 | 1 | -2/+2 |
* | clean for -Wuninitialized | djm | 2010-08-04 | 1 | -2/+2 |
* | enable certificates for hostbased authentication, from Iain Morgan; | djm | 2010-08-04 | 1 | -2/+2 |
* | Make HostBased authentication work with a ProxyCommand. bz #1569, patch | dtucker | 2010-01-13 | 1 | -2/+2 |
* | almost entirely get rid of the culture of ".h files that include .h files" | deraadt | 2006-08-03 | 1 | -4/+2 |
* | move #include <stdlib.h> out of includes.h | stevesk | 2006-07-26 | 1 | -1/+2 |
* | move #include <string.h> out of includes.h | stevesk | 2006-07-22 | 1 | -1/+2 |
* | move #include <unistd.h> out of includes.h | stevesk | 2006-07-17 | 1 | -1/+2 |
* | move #include <fcntl.h> out of includes.h | stevesk | 2006-07-09 | 1 | -1/+2 |
* | move #include <pwd.h> out of includes.h; ok markus@ | stevesk | 2006-07-06 | 1 | -2/+5 |
* | sessionid can be 32 bytes now too when sha256 kex is used; ok djm@ | dtucker | 2006-04-02 | 1 | -3/+3 |
* | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | djm | 2006-03-25 | 1 | -0/+1 |
* | RCSID() can die | deraadt | 2006-03-19 | 1 | -1/+0 |
* | move #include <paths.h> out of includes.h; ok markus@ | stevesk | 2006-02-08 | 1 | -1/+3 |
* | ensure that stdio fds are attached; ok deraadt@ | djm | 2005-09-13 | 1 | -1/+8 |
* | Remove duplicate getuid(), suggested by & ok markus@ | dtucker | 2004-08-23 | 1 | -3/+3 |
* | Use permanently_set_uid() in ssh and ssh-keysign for consistency, matches | dtucker | 2004-08-23 | 1 | -7/+7 |
* | perform strict ownership and modes checks for ~/.ssh/config files, as these | djm | 2004-04-18 | 1 | -2/+2 |
* | fix mem leaks; some fixes from Pete Flugstad; tested dtucker@ | markus | 2004-01-19 | 1 | -1/+2 |
* | return error on msg send/receive failure (rather than fatal); ok markus@ | djm | 2003-11-17 | 1 | -2/+3 |