openssh.git -

Age	Commit message (Collapse)	Author
2014-05-15	- markus@cvs.openbsd.org 2014/04/29 18:01:49	Damien Miller
	[auth.c authfd.c authfile.c bufaux.c cipher.c cipher.h hostfile.c] [kex.c key.c mac.c monitor.c monitor_wrap.c myproposal.h packet.c] [roaming_client.c ssh-agent.c ssh-keygen.c ssh-keyscan.c ssh-keysign.c] [ssh-pkcs11.h ssh.c sshconnect.c sshconnect2.c sshd.c] make compiling against OpenSSL optional (make OPENSSL=no); reduces algorithms to curve25519, aes-ctr, chacha, ed25519; allows us to explore further options; with and ok djm
2014-01-10	- djm@cvs.openbsd.org 2014/01/09 23:20:00	Damien Miller
	[digest.c digest.h hostfile.c kex.c kex.h kexc25519.c kexc25519c.c] [kexc25519s.c kexdh.c kexecdh.c kexecdhc.c kexecdhs.c kexgex.c kexgexc.c] [kexgexs.c key.c key.h roaming_client.c roaming_common.c schnorr.c] [schnorr.h ssh-dss.c ssh-ecdsa.c ssh-rsa.c sshconnect2.c] Introduce digest API and use it to perform all hashing operations rather than calling OpenSSL EVP_Digest* directly. Will make it easier to build a reduced-feature OpenSSH without OpenSSL in future; feedback, ok markus@
2013-10-17	- djm@cvs.openbsd.org 2013/10/16 02:31:47	Damien Miller
	[readconf.c readconf.h roaming_client.c ssh.1 ssh.c ssh_config.5] [sshconnect.c sshconnect.h] Implement client-side hostname canonicalisation to allow an explicit search path of domain suffixes to use to convert unqualified host names to fully-qualified ones for host key matching. This is particularly useful for host certificates, which would otherwise need to list unqualified names alongside fully-qualified ones (and this causes a number of problems). "looks fine" markus@
2013-06-02	- djm@cvs.openbsd.org 2013/05/17 00:13:13	Darren Tucker
	[xmalloc.h cipher.c sftp-glob.c ssh-keyscan.c ssh.c sftp-common.c ssh-ecdsa.c auth2-chall.c compat.c readconf.c kexgexs.c monitor.c gss-genr.c cipher-3des1.c kex.c monitor_wrap.c ssh-pkcs11-client.c auth-options.c rsa.c auth2-pubkey.c sftp.c hostfile.c auth2.c servconf.c auth.c authfile.c xmalloc.c uuencode.c sftp-client.c auth2-gss.c sftp-server.c bufaux.c mac.c session.c jpake.c kexgexc.c sshconnect.c auth-chall.c auth2-passwd.c sshconnect1.c buffer.c kexecdhs.c kexdhs.c ssh-rsa.c auth1.c ssh-pkcs11.c auth2-kbdint.c kexdhc.c sshd.c umac.c ssh-dss.c auth2-jpake.c bufbn.c clientloop.c monitor_mm.c scp.c roaming_client.c serverloop.c key.c auth-rsa.c ssh-pkcs11-helper.c ssh-keysign.c ssh-keygen.c match.c channels.c sshconnect2.c addrmatch.c mux.c canohost.c kexecdhc.c schnorr.c ssh-add.c misc.c auth2-hostbased.c ssh-agent.c bufec.c groupaccess.c dns.c packet.c readpass.c authfd.c moduli.c] bye, bye xfree(); ok markus@
2011-12-19	- djm@cvs.openbsd.org 2011/12/07 05:44:38	Damien Miller
	[auth2.c dh.c packet.c roaming.h roaming_client.c roaming_common.c] fix some harmless and/or unreachable int overflows; reported Xi Wang, ok markus@
2010-01-26	- dtucker@cvs.openbsd.org 2010/01/18 01:50:27	Damien Miller
	[roaming_client.c] s/long long unsigned/unsigned long long/, from tim via portable (Id sync only, change already in portable)
2010-01-16	- (tim) [roaming_client.c] Use of <sys/queue.h> is not really portable so	Tim Rice
	we use "openbsd-compat/sys-queue.h"
2010-01-09	- dtucker@cvs.openbsd.org 2010/01/09 05:17:00	Darren Tucker
	[roaming_client.c] Remove a PRIu64 format string that snuck in with roaming. ok djm@
2010-01-09	- (dtucker) [roaming_client.c] Wrap inttypes.h in an ifdef.	Darren Tucker

2010-01-08	- (dtucker] [misc.c] Shrink the area covered by USE_ROUTINGDOMAIN more	Darren Tucker
	to eliminate an unused variable warning.
2010-01-08	- (dtucker) [Makefile.in added roaming_client.c roaming_serv.c] Import new	Darren Tucker
	files for roaming and add to Makefile.