index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
usr.bin
/
ssh
/
kex.c
Age
Commit message (
Expand
)
Author
2022-02-01
mark const string array contents const too, i.e.
Damien Miller
2022-01-06
Fix signature algorithm selection logic for UpdateHostkeys on the
Damien Miller
2021-12-19
EXT_INFO negotiation of hostbound pubkey auth
Damien Miller
2021-12-19
Record session ID, host key and sig at intital KEX
Damien Miller
2021-04-03
highly polished whitespace, mostly fixing spaces-for-tab and bad
Damien Miller
2021-01-31
more strictly enforce KEX state-machine by banning packet types
Damien Miller
2021-01-27
fix leak: was double allocating kex->session_id buffer
Damien Miller
2021-01-27
make ssh->kex->session_id a sshbuf instead of u_char*/size_t and
Damien Miller
2021-01-27
remove global variable used to stash compat flags and use the
Damien Miller
2020-12-29
Update/replace the experimental post-quantim hybrid key exchange
Damien Miller
2020-12-04
fix minor memleak of kex->hostkey_alg on rekex
Damien Miller
2020-12-04
typos: s/hex/kex/ in error messages
Damien Miller
2020-10-18
use the new variant log macros instead of prepending __func__ and
Damien Miller
2020-07-05
some language improvements; ok markus
Damien Miller
2020-03-13
use sshpkt_fatal() for kex_exchange_identification() errors.
Damien Miller
2020-02-26
change explicit_bzero();free() to freezero()
Jonathan Gray
2020-01-23
Make zlib optional. This adds a "ZLIB" build time option that allows
Darren Tucker
2019-10-08
Correct type for end-of-list sentinel; fixes initializer warnings on
Darren Tucker
2019-09-06
Allow prepending a list of algorithms to the default set by starting
Christian Weisgerber
2019-09-06
better error code for bad arguments; inspired by
Damien Miller
2019-09-05
sprinkle in some explicit errors here, otherwise the percolate all
Damien Miller
2019-09-05
only send ext_info for KEX_INITIAL; bz#2929 ok dtucker
Damien Miller
2019-01-21
fix reversed arguments to kex_load_hostkey(); manifested as errors in
Damien Miller
2019-01-21
rename kex->kem_client_pub -> kex->client_pub now that KEM has been renamed
Damien Miller
2019-01-21
remove kex_derive_keys_bn wrapper; no unused since the DH-like KEX
Damien Miller
2019-01-21
Add support for a PQC KEX/KEM: sntrup4591761x25519-sha512@tinyssh.org
Damien Miller
2019-01-21
factor out kex_verify_hostkey() - again, duplicated almost exactly
Damien Miller
2019-01-21
factor out kex_load_hostkey() - this is duplicated in both the client and
Damien Miller
2019-01-21
save the derived session id in kex_derive_keys() rather than making each
Damien Miller
2018-12-27
move client/server SSH-* banners to buffers under ssh->kex and factor
Damien Miller
2018-12-07
only consider the ext-info-c extension during the initial KEX. It shouldn't
Damien Miller
2018-07-09
Revert previous two commits
Stefan Fritsch
2018-07-06
Rename COMP_DELAYED to COMP_ZLIB
Stefan Fritsch
2018-07-06
Remove leftovers from pre-authentication compression
Stefan Fritsch
2018-07-04
repair PubkeyAcceptedKeyTypes (and friends) after RSA signature work -
Damien Miller
2018-07-03
Improve strictness and control over RSA-SHA2 signature types:
Damien Miller
2018-02-07
Remove all guards for calls to OpenSSL free functions - all of these
Joel Sing
2018-01-23
Drop compatibility hacks for some ancient SSH implementations, including
Damien Miller
2017-06-13
Do not require that unknown EXT_INFO extension values not contain
Damien Miller
2017-05-30
protocol handlers all get struct ssh passed; ok djm@
Markus Friedl
2017-04-30
unifdef WITH_SSH1
Damien Miller
2017-03-15
disallow KEXINIT before NEWKEYS; ok djm; report by vegard.nossum at oracle.com
Markus Friedl
2017-03-10
fix regression in 7.4 server-sig-algs, where we were accidentally
Damien Miller
2017-03-10
Plug some mem leaks mostly on error paths. From jjelen at redhat.com
Darren Tucker
2017-02-03
support =- for removing methods from algorithms lists, e.g.
Damien Miller
2016-10-10
Unregister the KEXINIT handler after message has been received.
Markus Friedl
2016-09-28
put back some pre-auth zlib bits that I shouldn't have removed -
Damien Miller
2016-09-28
restore pre-auth compression support in the client -- the previous
Damien Miller
2016-09-22
support plain curve25519-sha256 KEX algorithm now that it is
Damien Miller
2016-09-21
correctly return errors from kex_send_ext_info(). Fix from Sami Farin
Damien Miller
[next]