summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/kex.c
AgeCommit message (Expand)Author
2015-11-13send SSH2_MSG_UNIMPLEMENTED replies to unexpected messages duringDamien Miller
2015-10-13free the correct IV length, don't assume it's always the cipherDamien Miller
2015-08-21Improve printing of KEX offers and decisionsDamien Miller
2015-07-30Allow ssh_config and sshd_config kex parameters options be prefixedDamien Miller
2015-07-29fix bug in previous; was printing incorrect string for failedDamien Miller
2015-07-29include the peer's offer when logging a failure to negotiate aDamien Miller
2015-04-17don't try to cleanup NULL KEX proposals in kex_prop_free();Damien Miller
2015-01-30fix ssh protocol 1, spotted by miod@Damien Miller
2015-01-26correctly match ECDSA subtype (== curve) for offered/receviedDamien Miller
2015-01-20Reduce use of <sys/param.h> and transition to <limits.h> throughout.Theo de Raadt
2015-01-19adapt kex to sshbuf and struct ssh; ok djm@Markus Friedl
2015-01-19move dispatch to struct ssh; ok djm@Markus Friedl
2015-01-19update packet.c & isolate, introduce struct sshMarkus Friedl
2014-04-29make compiling against OpenSSL optional (make OPENSSL=no);Markus Friedl
2014-02-02convert memset of potentially-private data to explicit_bzero()Damien Miller
2014-01-25dh_need needs to be set to max(seclen, blocksize, ivlen, mac_len)Markus Friedl
2014-01-25Add a special case for the DH group size for 3des-cbc, which has anDarren Tucker
2014-01-12avoid use of OpenSSL BIGNUM type and functions for KEX withDamien Miller
2014-01-09Introduce digest API and use it to perform all hashing operationsDamien Miller
2013-11-07Output the effective values of Ciphers, MACs and KexAlgorithms whenDarren Tucker
2013-11-02use curve25519 for default key exchange (curve25519-sha256@libssh.org);Markus Friedl
2013-05-17bye, bye xfree(); ok markus@Damien Miller
2013-04-19remove duplicated list entry pointed out by naddy@Damien Miller
2013-04-19add the ability to query supported ciphers, MACs, key type and KEXDamien Miller
2013-01-08support AES-GCM as defined in RFC 5647 (but with simpler KEX handling)Markus Friedl
2012-08-17add some comments about better handling first-KEX-follows notificationsDamien Miller
2010-09-22add a KexAlgorithms knob to the client and server configuration to allowDamien Miller
2010-09-09ECDH/ECDSA compliance fix: these methods vary the hash function they useDamien Miller
2010-08-31Implement Elliptic Curve Cryptography modes for key exchange (ECDH) andDamien Miller
2010-08-31Add buffer_get_cstring() and related functions that verify that theDamien Miller
2009-10-24Let the client detect if the server supports roaming by lookingAndreas Gunnarsson
2009-05-27Move the KEX_COOKIE_LEN define to kex.hAndreas Gunnarsson
2008-09-06OpenSSL 0.9.8h supplies a real EVP_sha256 so we do not need ourDamien Miller
2007-06-05Preserve MAC ctx between packets, saving 2xhash calls per-packet.Damien Miller
2007-05-30tidy: KNF, ARGSUSED and u_intDamien Miller
2007-01-21spacesKevin Steves
2006-08-03almost entirely get rid of the culture of ".h files that include .h files"Theo de Raadt
2006-08-01move #include <stdio.h> out of includes.hKevin Steves
2006-07-26move #include <stdlib.h> out of includes.hKevin Steves
2006-07-26move #include <sys/param.h> out of includes.hKevin Steves
2006-07-22move #include <string.h> out of includes.hKevin Steves
2006-03-25Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatDamien Miller
2006-03-25introduce xcalloc() and xasprintf() failure-checked allocations functionsDamien Miller
2006-03-20spacingTheo de Raadt
2006-03-19spacingTheo de Raadt
2006-03-19RCSID() can dieTheo de Raadt
2006-03-07Implement the diffie-hellman-group-exchange-sha256 key exchange methodDamien Miller
2005-11-04remove hardcoded hash lengths in key exchange code, allowingDamien Miller
2005-07-25add a new compression method that delays compression until the userMarkus Friedl
2005-07-17knf says that a 2nd level indent is four (not three or five) spacesDamien Miller