summaryrefslogtreecommitdiff
path: root/usr.bin/signify
AgeCommit message (Expand)Author
2024-03-02examples should show how to check the signature of the next releaseSebastian Benoit
2024-02-17move to 7.5-betaTheo de Raadt
2023-09-18crank to 7.4-betaTheo de Raadt
2023-04-29as noticed by sdk@, a package with an exact numbers of 64K chunks wouldMarc Espie
2022-08-26Move (unused) variables under !VERIFYONLYKlemens Nanni
2022-07-20move to 7.2-beta. this gets done very early, to avoid finding outTheo de Raadt
2022-02-20move to 7.1-betaTheo de Raadt
2022-01-05adjust Xr for fw_update to section 8;Jason McIntyre
2021-09-19bump example versionsSebastian Benoit
2021-08-177.0-betaTheo de Raadt
2020-08-31crank to 6.8-betaTheo de Raadt
2020-04-05crank to 6.7-betaTheo de Raadt
2020-01-21In -C mode, the public key is optional since it can be deduced fromTheo Buehler
2019-12-22have parseb64file be non-destructive, so we can write theMarc Espie
2019-12-09tweak -z mode verification to save the header and actually output it,Marc Espie
2019-09-09use PATH_MAX instead of 1024; ok teduTheo de Raadt
2019-08-10move to 6.6-betaTheo de Raadt
2019-07-03snprintf/vsnprintf return < 0 on error, rather than -1.Theo de Raadt
2019-05-08xr to sysupgradeTed Unangst
2019-03-23allow -n to zero the gzip header timestamp. suggestion from Andre Stoebe.Ted Unangst
2019-02-26crank to 6.5-betaTheo de Raadt
2019-01-17change an error message to be less misleading.Ted Unangst
2019-01-17clean up the user's password even after various errors.Ted Unangst
2018-08-10crank to 6.4-betaTheo de Raadt
2018-02-28move to 6.3-betaTheo de Raadt
2018-01-16g/c unused defines that were only used by nacl's SHA-512 implementationChristian Weisgerber
2017-08-20also crank for 6.2Theo de Raadt
2017-07-11adjust size to be one less than power of 2, so that doubling will neverTed Unangst
2017-07-11fix style compliance, in the keyname compliance function no lessTed Unangst
2017-05-28when copying curvy files from ssh, an extra one snuck in.Ted Unangst
2017-04-18use freezero() instead of explicit_bzero + freeTheo de Raadt
2017-03-09show how to verify the next release after 6.1Sebastian Benoit
2016-10-06- better check for seckeyname/pubkeyname "equality", remove the pathMarc Espie
2016-10-05when generating keys, make sure the names specified adhere to allTed Unangst
2016-10-05more properly check the secret key extension. from espieTed Unangst
2016-10-05document the previously hidden keyname detection. urged by espie.Ted Unangst
2016-10-05combining an assignment and *two* tests in one conditional is a bit much.Ted Unangst
2016-10-04typoMarc Espie
2016-09-27can make function static now that it's living in a separate file.Ted Unangst
2016-09-27the keytype checking is logically part of verify, and it's small, soTed Unangst
2016-09-27no need to copy keypath if we already have oneTed Unangst
2016-09-26have to advance pointer past the / to get basename.Ted Unangst
2016-09-26there's a hidden feature to infer the public key from the signatureTed Unangst
2016-09-19use a shell glob wildcard, that's clearer than an out of scope variableTed Unangst
2016-09-10spaces found during re-readTheo de Raadt
2016-09-08simplify the extra buffer size copyMarc Espie
2016-09-04well, adding the filename doesn't help... mostly used with pipes anyhowMarc Espie
2016-09-03add the keyname to meta-info that passes thruMarc Espie
2016-09-03switch back to SHA512/256 now that we have the official nist flavorTed Unangst
2016-09-03naddy@ pointed out that SHA512/256 is slightly differentMarc Espie