| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Add a ssh_config HostbasedKeyType option to control which |   djm | 2015-01-30 | 1 | -108/+198 |
| * | update to new API (key_fingerprint => sshkey_fingerprint) | djm | 2015-01-28 | 1 | -3/+7 |
| * | kex_setup errors are fatal() |   markus | 2015-01-20 | 1 | -2/+4 |
| * | make this compile with KERBEROS5 enabled | djm | 2015-01-20 | 1 | -8/+12 |
| * | adapt kex to sshbuf and struct ssh; ok djm@ | markus | 2015-01-19 | 1 | -6/+6 |
| * | move dispatch to struct ssh; ok djm@ | markus | 2015-01-19 | 1 | -23/+31 |
| * | update packet.c & isolate, introduce struct ssh | markus | 2015-01-19 | 1 | -5/+2 |
| * | avoid trailing ',' in host key algorithms | djm | 2015-01-18 | 1 | -2/+3 |
| * | fix regression reported by brad@ for passworded keys without | djm | 2015-01-15 | 1 | -3/+5 |
| * | move authfd.c and its tentacles to the new buffer/key API; | djm | 2015-01-14 | 1 | -69/+102 |
| * | deprecate key_load_private_pem() and sshkey_load_private_pem() | djm | 2015-01-08 | 1 | -1/+3 |
| * | Add FingerprintHash option to control algorithm used for key | djm | 2014-12-21 | 1 | -3/+3 |
| * | show in debug output which hostkeys are being tried when attempting | djm | 2014-12-11 | 1 | -1/+5 |
| * | Add support for Unix domain socket forwarding. A remote TCP port |   millert | 2014-07-15 | 1 | -2/+2 |
| * | New key API: refactor key-related functions to be more library-like, | djm | 2014-06-24 | 1 | -4/+4 |
| * | fix inverted test that caused PKCS#11 keys that were explicitly listed | djm | 2014-06-05 | 1 | -2/+2 |
| * | make compiling against OpenSSL optional (make OPENSSL=no); | markus | 2014-04-29 | 1 | -1/+3 |
| * | OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections | djm | 2014-04-18 | 1 | -1/+3 |
| * | disable weak proposals in sshd, but keep them in ssh; ok djm@ | markus | 2014-03-27 | 1 | -1/+2 |
| * | convert memset of potentially-private data to explicit_bzero() | djm | 2014-02-02 | 1 | -9/+9 |
| * | replace most bzero with explicit_bzero, except a few that cna be memset |   tedu | 2014-01-31 | 1 | -2/+2 |
| * | remove experimental, never-enabled JPAKE code; ok markus@ | djm | 2014-01-29 | 1 | -292/+1 |
| * | Introduce digest API and use it to perform all hashing operations | djm | 2014-01-09 | 1 | -2/+2 |
| * | refuse RSA keys from old proprietary clients/servers that use the | djm | 2013-12-30 | 1 | -9/+24 |
| * | use curve25519 for default key exchange (curve25519-sha256@libssh.org); | markus | 2013-11-02 | 1 | -1/+2 |
| * | Fix memory leaks found by Zhenbo Xu and the Melton tool. bz#1967, ok djm |   dtucker | 2013-06-05 | 1 | -2/+6 |
| * | bye, bye xfree(); ok markus@ | djm | 2013-05-17 | 1 | -77/+68 |
| * | Add an optional second argument to RekeyLimit in the client to allow | dtucker | 2013-05-16 | 1 | -3/+4 |
| * | fix bzero(ptr_to_struct, sizeof(ptr_to_struct)); bz#2100 from | djm | 2013-05-10 | 1 | -2/+2 |
| * | hush some {unused, printf type} warnings | djm | 2013-04-05 | 1 | -6/+5 |
| * | reset pubkey order on partial success; ok djm@ | markus | 2013-03-05 | 1 | -2/+6 |
| * | Keep track of which IndentityFile options were manually supplied and which | dtucker | 2013-02-17 | 1 | -2/+2 |
| * | Warn more loudly if an IdentityFile provided by the user cannot be read. | dtucker | 2013-02-15 | 1 | -7/+12 |
| * | Make IdentitiesOnly apply to keys obtained from a PKCS11Provider. | djm | 2012-12-02 | 1 | -3/+26 |
| * | remove dead code following 'for (;;)' loops. | dtucker | 2012-06-22 | 1 | -3/+1 |
| * | Remove undocumented legacy options UserKnownHostsFile2 and | djm | 2011-05-24 | 1 | -5/+6 |
| * | fix memory leak; bz#1849 ok dtucker@ | djm | 2011-05-06 | 1 | -1/+4 |
| * | automatically order the hostkeys requested by the client based on | djm | 2010-11-29 | 1 | -2/+60 |
| * | add a KexAlgorithms knob to the client and server configuration to allow | djm | 2010-09-22 | 1 | -1/+3 |
| * | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and | djm | 2010-08-31 | 1 | -1/+2 |
| * | bz#1502: authctxt.success is declared as an int, but passed by | djm | 2010-04-26 | 1 | -2/+2 |
| * | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | djm | 2010-04-16 | 1 | -2/+5 |
| * | show the key type that we are offering in debug(), helps distinguish | djm | 2010-04-10 | 1 | -2/+3 |
| * | Add support for certificate key types for users and hosts. | djm | 2010-02-26 | 1 | -1/+3 |
| * | Make HostBased authentication work with a ProxyCommand. bz #1569, patch | dtucker | 2010-01-13 | 1 | -13/+4 |
| * | Do not prompt for a passphrase if we fail to open a keyfile, and log the | dtucker | 2010-01-11 | 1 | -2/+2 |
| * | Don't escape backslashes in the SSH2 banner. bz#1533, patch from | dtucker | 2010-01-04 | 1 | -2/+2 |
| * | zap unused variable and strlen; from Steve McClellan, ok djm | dtucker | 2009-12-06 | 1 | -3/+2 |
| * | Use the HostKeyAlias when prompting for passwords. bz#1039, ok djm@ | dtucker | 2009-11-20 | 1 | -5/+9 |
| * | Set close-on-exec on various descriptors so they don't get leaked to | dtucker | 2009-11-10 | 1 | -1/+4 |
