| Age | Commit message (Expand) | Author |
|---|
| 2016-04-09 | make private key loading functions consistently handle NULL | Damien Miller |
| 2015-12-11 | Remove NULL-checks before sshbuf_free(). | mmcc |
| 2015-12-11 | Remove NULL-checks before sshkey_free(). | mmcc |
| 2015-12-10 | Remove NULL-checks before free(). | mmcc |
| 2015-09-13 | - Fix error message: passphrase needs to be at least 5 characters, not 4. | tim |
| 2015-07-09 | re-enable ed25519-certs if compiled w/o openssl; ok djm | Markus Friedl |
| 2015-07-03 | delete support for legacy v00 certificates; "sure" markus@ dtucker@ | Damien Miller |
| 2015-04-17 | s/recommended/required/ that private keys be og-r | Damien Miller |
| 2015-03-31 | fd leak for !ssh1 case; found by unittests; ok markus@ | Damien Miller |
| 2015-03-18 | KRL support doesn't need OpenSSL anymore, remove #ifdefs | Damien Miller |
| 2015-02-23 | add an XXX to remind me to improve sshkey_load_public | Damien Miller |
| 2015-01-20 | Reduce use of <sys/param.h> and transition to <limits.h> throughout. | Theo de Raadt |
| 2015-01-08 | deprecate key_load_private_pem() and sshkey_load_private_pem() | Damien Miller |
| 2014-12-04 | add RevokedHostKeys option for the client | Damien Miller |
| 2014-06-24 | New key API: refactor key-related functions to be more library-like, | Damien Miller |
| 2014-04-29 | make compiling against OpenSSL optional (make OPENSSL=no); | Markus Friedl |
| 2014-04-28 | buffer_get_string_ptr's return should be const to remind | Damien Miller |
| 2014-03-12 | correct test that kdf name is not "none" or "bcrypt" | Damien Miller |
| 2014-02-02 | convert memset of potentially-private data to explicit_bzero() | Damien Miller |
| 2014-01-31 | replace most bzero with explicit_bzero, except a few that cna be memset | Ted Unangst |
| 2013-12-29 | don't refuse to load Ed25519 certificates | Damien Miller |
| 2013-12-06 | support ed25519 keys (hostkeys and user identities) using the public domain | Markus Friedl |
| 2013-12-06 | new private key format, bcrypt as KDF by default; details in PROTOCOL.key; | Markus Friedl |
| 2013-11-21 | Add a new protocol 2 transport cipher "chacha20-poly1305@openssh.com" | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2013-04-19 | add the ability to query supported ciphers, MACs, key type and KEX | Damien Miller |
| 2013-01-08 | support AES-GCM as defined in RFC 5647 (but with simpler KEX handling) | Markus Friedl |
| 2012-12-11 | add encrypt-then-mac (EtM) modes to openssh by defining new mac algorithms | Markus Friedl |
| 2012-01-25 | memleak in key_load_file(); from Jan Klemkow | Markus Friedl |
| 2011-06-14 | make sure key_parse_public/private_rsa1() no longer consumes its input buffer. | Markus Friedl |
| 2011-05-23 | read in key comments for v.2 keys (though note that these are not | Damien Miller |
| 2011-05-13 | warn on unexpected key type in key_parse_private_type() | Damien Miller |
| 2011-05-10 | despam debug() logs by detecting that we are trying to load a private key | Damien Miller |
| 2011-05-04 | allow "ssh-add - < key"; feedback and ok markus@ | Damien Miller |
| 2010-11-29 | correctly load comment for encrypted rsa1 keys; | Markus Friedl |
| 2010-11-21 | Refactor internals of private key loading and saving to work on memory | Damien Miller |
| 2010-10-28 | fix a possible NULL deref on loading a corrupt ECDH key | Damien Miller |
| 2010-09-08 | typo | Damien Miller |
| 2010-08-31 | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and | Damien Miller |
| 2010-08-04 | commited the wrong version of the hostbased certificate diff; this | Damien Miller |
| 2010-08-04 | enable certificates for hostbased authentication, from Iain Morgan; | Damien Miller |
| 2010-03-04 | Add a TrustedUserCAKeys option to sshd_config to specify CA keys that | Damien Miller |
| 2010-01-12 | Fix bug introduced in r1.78 (incorrect brace location) that broke key auth. | Darren Tucker |
| 2010-01-11 | Do not prompt for a passphrase if we fail to open a keyfile, and log the | Darren Tucker |
| 2009-10-22 | switch from 3DES to AES-128 for encryption of passphrase-protected | Damien Miller |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-08-01 | clean extra spaces | Kevin Steves |
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves |
| 2006-07-26 | move #include <stdlib.h> out of includes.h | Kevin Steves |
| 2006-07-26 | move #include <sys/param.h> out of includes.h | Kevin Steves |
