summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/dh.c
AgeCommit message (Expand)Author
2011-12-07fix some harmless and/or unreachable int overflows;Damien Miller
2009-10-01fix a castAlexander von Gernler
2008-06-26when loading moduli from /etc/moduli in sshd(8), check that theyDamien Miller
2008-04-13Use arc4random_buf() when requesting more than a single word of outputDamien Miller
2007-09-27Don't return -1 on error in dh_pub_is_valid(), since it evaluatesRay Lai
2006-11-07BN_hex2bn returns int; from dtucker@Markus Friedl
2006-11-06add missing checks for openssl return codes; with & ok djm@Markus Friedl
2006-08-03almost entirely get rid of the culture of ".h files that include .h files"Theo de Raadt
2006-08-01move #include <stdio.h> out of includes.hKevin Steves
2006-07-26move #include <stdlib.h> out of includes.hKevin Steves
2006-07-26move #include <sys/param.h> out of includes.hKevin Steves
2006-07-22move #include <string.h> out of includes.hKevin Steves
2006-07-18remove unneeded includes; ok djm@Kevin Steves
2006-05-04tighter DH exponent checks here too; feedback and ok markus@Damien Miller
2006-03-27use strtonum() instead of atoi(), limit dhg size to 64k; ok djmTheo de Raadt
2006-03-25Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatDamien Miller
2006-03-19RCSID() can dieTheo de Raadt
2006-03-19potential NULL pointer dereferences detected by CoverityDamien Miller
2004-08-04return group14 when no primes found - fixes hang on empty /etc/moduli;Damien Miller
2004-06-13implement diffie-hellman-group14-sha1 kex method (trivial extension toDamien Miller
2004-02-27Reset bit counter at the right time, fixes debug output in the case whereDarren Tucker
2004-02-27Make /etc/moduli line buffer big enough for 8kbit primes, in case anyoneDarren Tucker
2004-02-27Prevent sshd from sending DH groups with a primitive generator of zero orDarren Tucker
2003-12-16use <= instead of < in dh_estimate; ok provos/hshoexer; do not return < DH_GR...Markus Friedl
2003-09-18A few signedness fixes for harmless situations; markus@ okMiod Vallat
2003-04-08rename log() into logit() to avoid name conflict. markus ok, from netbsdJun-ichiro itojun Hagino
2002-11-21debug->debug2Markus Friedl
2002-06-27more checks for NULL pointers; from grendel@zeitbombe.org; ok deraadt@Markus Friedl
2002-03-06undoMarkus Friedl
2002-03-06compat.cMarkus Friedl
2001-12-27always use BN_clear_free instead of BN_freeMarkus Friedl
2001-12-27call fatal() for openssl allocation failuresMarkus Friedl
2001-06-23more strict prototypes. raise warning level in Makefile.inc. markus ok'edJun-ichiro itojun Hagino
2001-06-22increase linebuffer to deal with larger moduli; use rewind instead ofNiels Provos
2001-06-22use /etc/moduli instead of /etc/primes, okay markus@Niels Provos
2001-04-15some unused variable and typos; from tomh@po.crl.go.jpMarkus Friedl
2001-04-04clear+free keys,iv for rekeying.Markus Friedl
2001-04-03move kex to kex*.c, used dispatch_set() callbacks for kex. shouldMarkus Friedl
2001-03-29prepare for rekeying: move DH code to dh.cMarkus Friedl
2001-03-28more sanity checking on primes fileNiels Provos
2001-03-27make dh group exchange more flexible, allow min and max group size,Niels Provos
2001-03-05spellingKevin Steves
2001-03-04log functions should not be passed strings that end in newline as theyTodd C. Miller
2001-01-21split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.Markus Friedl
2001-01-19move ssh1 definitions to ssh1.h, pathnames to pathnames.hMarkus Friedl
2001-01-15use error() not stderr!Markus Friedl
2000-11-16do not use perror() in sshd, after the child is forked()Markus Friedl
2000-10-11WallMarkus Friedl
2000-10-11First rough implementation of the diffie-hellman group exchange. TheNiels Provos