summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/auth2.c
AgeCommit message (Expand)Author
2023-08-28limit artificial login delay to a reasonable maximum (5s) and don'tDamien Miller
2023-03-08Delete obsolete /* ARGSUSED */ lint comments.Philip Guenther
2023-03-05Remove unused compat.h includes. We've previously removed a lotDarren Tucker
2022-02-23avoid integer overflow of auth attempts (harmless, caught by monitor)Damien Miller
2021-12-26split method list search functionality from authmethod_lookup() intoDamien Miller
2021-12-19prepare for multiple names for authmethodsDamien Miller
2021-04-03highly polished whitespace, mostly fixing spaces-for-tab and badDamien Miller
2021-01-27make ssh->kex->session_id a sshbuf instead of u_char*/size_t andDamien Miller
2020-10-18use the new variant log macros instead of prepending __func__ andDamien Miller
2020-03-06exit on parse failures in input_service_request; ok djmMarkus Friedl
2019-09-06lots of things were relying on libcrypto headers to transitivelyDamien Miller
2019-06-28asprintf returns -1, not an arbitrary value < 0. Also upon error theTheo de Raadt
2019-03-25Fix authentication failures when "AuthenticationMethods any" in aDamien Miller
2019-01-19convert auth.c to new packet APIDamien Miller
2019-01-19convert auth2.c to new packet APIDamien Miller
2019-01-19begin landing remaining refactoring of packet parsing API, startedDamien Miller
2019-01-17include time.h for time(3)/nanosleep(2); from Ian McKellarDamien Miller
2018-09-13hold our collective noses and use the openssl-1.1.x API in OpenSSH;Damien Miller
2018-07-11remove legacy key emulation layer; ok djm@Markus Friedl
2018-07-09sshd: switch authentication to sshbuf API; ok djm@Markus Friedl
2018-05-11Explicit cast when snprintf'ing an uint64. Prevents warnings on platformsDarren Tucker
2018-04-13Defend against user enumeration timing attacks.Darren Tucker
2018-03-03switch over to the new authorized_keys options API and remove theDamien Miller
2018-01-23Drop compatibility hacks for some ancient SSH implementations, includingDamien Miller
2017-06-24refactor authentication loggingDamien Miller
2017-05-31remove now obsolete ctx from ssh_dispatch_run; ok djm@Markus Friedl
2017-05-31use the ssh_dispatch_run_fatal variantMarkus Friedl
2017-05-30switch auth2 to ssh_dispatch API; ok djm@Markus Friedl
2017-05-30protocol handlers all get struct ssh passed; ok djm@Markus Friedl
2017-05-30sshd: pass struct ssh to auth functions; ok djm@Markus Friedl
2017-02-03use ssh_packet_set_log_preamble() to include connection usernameDamien Miller
2016-05-02fix signed/unsigned errors reported by clang-3.7; addDamien Miller
2015-01-19move dispatch to struct ssh; ok djm@Markus Friedl
2014-12-22make internal handling of filename arguments of "none" more consistentDamien Miller
2014-12-18don't count partial authentication success as a failure againstDamien Miller
2014-07-15Add support for Unix domain socket forwarding. A remote TCP portTodd C. Miller
2014-07-03make the "Too many authentication failures" message include theDamien Miller
2014-01-29remove experimental, never-enabled JPAKE code; ok markus@Damien Miller
2013-05-19Standardise logging of supplemental information during userauth. KeysDamien Miller
2013-05-17bye, bye xfree(); ok markus@Damien Miller
2013-03-07add submethod support to AuthenticationMethods; ok and freedback djm@Markus Friedl
2012-12-02Fixes logging of partial authentication when privsep is enabledDamien Miller
2012-11-04Support multiple required authentication via an AuthenticationMethodsDamien Miller
2011-12-07fix some harmless and/or unreachable int overflows;Damien Miller
2011-03-10allow GSSAPI authentication to detect when a server-side failure causesDamien Miller
2010-08-31Add buffer_get_cstring() and related functions that verify that theDamien Miller
2009-06-22alphabetize includes; reduces diff vs portable and style(9). ok stevesk djmDarren Tucker
2008-11-04Add support for an experimental zero-knowledge password authenticationDamien Miller
2008-07-04Make protocol 1 MaxAuthTries logic match protocol 2's.Damien Miller
2008-07-02really really remove the freebie "none" auth try for protocol 2Damien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-03 11:13:45 +0000