index
:
wireguard-openbsd
jd/histogram
jd/queueboosts
jd/simplify-queueing
master
WireGuard implementation for the OpenBSD kernel
Matt Dunwoodie
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
usr.bin
/
ssh
/
ssh-pkcs11.c
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
*
fix compilation on !HAVE_DLOPEN platforms; stub function was not
djm
2020-05-29
1
-2
/
+3
*
improve error messages for some common PKCS#11 C_Login failure cases;
djm
2020-03-13
1
-4
/
+19
*
pkcs11_register_provider: return < 0 on error; ok djm
markus
2020-03-06
1
-1
/
+3
*
expose PKCS#11 key labels/X.509 subjects as comments
djm
2020-01-25
1
-53
/
+89
*
revert unconditional forced login implemented in r1.41 of ssh-pkcs11.c;
djm
2019-10-01
1
-26
/
+5
*
if a PKCS#11 token returns no keys then try to login and refetch
djm
2019-09-05
1
-11
/
+33
*
downgrade PKCS#11 "provider returned no slots" warning from log level
djm
2019-09-02
1
-2
/
+2
*
fix use-after-free in ssh-pkcs11; found by hshoexer w/AFL
markus
2019-03-08
1
-1
/
+3
*
fix NULL-deref crash in PKCS#11 code when attempting login to a token
djm
2019-02-04
1
-2
/
+17
*
Correct some bugs in PKCS#11 token PIN handling at initial login,
djm
2019-01-22
1
-12
/
+22
*
Support keys that set the CKA_ALWAYS_AUTHENTICATE by requring a
djm
2019-01-22
1
-26
/
+95
*
always print the caller's error message in ossl_error(), even when there
djm
2019-01-21
1
-2
/
+3
*
get the ex_data (pkcs11_key object) back from the keys at the
djm
2019-01-21
1
-9
/
+8
*
use ECDSA_SIG_set0() instead of poking signature values into
djm
2019-01-21
1
-3
/
+14
*
we use singleton pkcs#11 RSA_METHOD and EC_KEY_METHOD now, so there
djm
2019-01-20
1
-7
/
+3
*
KNF previous; from markus@
djm
2019-01-20
1
-6
/
+6
*
use OpenSSL's RSA reference counting hooks to implicitly clean up
djm
2019-01-20
1
-35
/
+21
*
make the PKCS#11 RSA code more like the new PKCS#11 ECDSA code:
djm
2019-01-20
1
-16
/
+29
*
fix leak of ECDSA pkcs11_key objects
djm
2019-01-20
1
-2
/
+21
*
use EVP_PKEY_get0_EC_KEY() instead of direct access of EC_KEY internals
djm
2019-01-20
1
-4
/
+3
*
cleanup PKCS#11 ECDSA pubkey loading: the returned object should never
djm
2019-01-20
1
-10
/
+14
*
cleanup unnecessary code in ECDSA pkcs#11 signature support: the
djm
2019-01-20
1
-25
/
+16
*
add support for ECDSA keys in PKCS#11 tokens
djm
2019-01-20
1
-204
/
+1149
*
hold our collective noses and use the openssl-1.1.x API in OpenSSH;
djm
2018-09-13
1
-16
/
+41
*
Remove all guards for calls to OpenSSL free functions - all of these
jsing
2018-02-07
1
-3
/
+2
*
Switch to recallocarray() for a few operations. Both growth and shrinkage
deraadt
2017-05-31
1
-3
/
+3
*
sshkey_new() might return NULL (pkcs#11 code only); ok djm@
markus
2017-05-30
1
-2
/
+3
*
Improve pkcs11_add_provider() logging: demote some excessively
djm
2016-10-28
1
-15
/
+26
*
avoid fatal() for PKCS11 tokens that present empty key IDs
djm
2016-02-12
1
-3
/
+5
*
don't ignore PKCS#11 hosted keys that return empty CKA_ID;
djm
2015-07-18
1
-6
/
+14
*
skip uninitialised PKCS#11 slots; patch from Jakub Jelen in bz#2427
djm
2015-07-18
1
-1
/
+6
*
support PKCS#11 devices with external PIN entry devices
djm
2015-05-27
1
-12
/
+20
*
rename xrealloc() to xreallocarray() since it follows that form.
deraadt
2015-04-24
1
-2
/
+2
*
missing ;
deraadt
2015-02-03
1
-2
/
+2
*
handle PKCS#11 C_Login returning CKR_USER_ALREADY_LOGGED_IN;
djm
2015-02-02
1
-5
/
+7
*
sync ssh-keysign, ssh-keygen and some dependencies to the new
djm
2015-01-15
1
-13
/
+13
*
New key API: refactor key-related functions to be more library-like,
djm
2014-06-24
1
-2
/
+2
*
revert __bounded change; it causes way more problems for portable than
djm
2014-05-02
1
-2
/
+2
*
use __bounded(...) attribute recently added to sys/cdefs.h instead of
djm
2014-03-26
1
-2
/
+2
*
add missing braces found by pedro
markus
2013-11-13
1
-2
/
+2
*
from portable: s/true/true_val/ to avoid name collisions on dump platforms
djm
2013-11-06
1
-3
/
+3
*
support pkcs#11 tokes that only provide x509 zerts instead of raw pubkeys;
markus
2013-11-02
1
-28
/
+98
*
fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
djm
2013-07-12
1
-6
/
+6
*
bye, bye xfree(); ok markus@
djm
2013-05-17
1
-15
/
+12
*
check length of value returned C_GetAttributValue for != 0
markus
2010-06-08
1
-2
/
+8
*
retry lookup for private key if there's no matching key with CKA_SIGN
markus
2010-04-15
1
-11
/
+34
*
Add $OpenBSD$ tags in comments, our portable-syncing scripts use these
djm
2010-02-24
1
-0
/
+1
*
dlclose() call should also be #ifdef HAVE_DLOPEN
deraadt
2010-02-21
1
-0
/
+2
*
unbreak build for NOPIC systems; noticed, help and ok deraadt@
markus
2010-02-20
1
-0
/
+9
*
replace our obsolete smartcard code with PKCS#11.
markus
2010-02-08
1
-0
/
+544