| Age | Commit message (Expand) | Author |
|---|
| 2021-12-19 | Record session ID, host key and sig at intital KEX | Damien Miller |
| 2021-01-31 | more strictly enforce KEX state-machine by banning packet types | Damien Miller |
| 2021-01-27 | remove global variable used to stash compat flags and use the | Damien Miller |
| 2019-11-25 | Add new structure for signature options | Damien Miller |
| 2019-01-23 | pass most arguments to the KEX hash functions as sshbuf rather | Damien Miller |
| 2019-01-21 | factor out kex_verify_hostkey() - again, duplicated almost exactly | Damien Miller |
| 2019-01-21 | factor out kex_dh_compute_key() - it's shared between plain DH KEX and | Damien Miller |
| 2019-01-21 | save the derived session id in kex_derive_keys() rather than making each | Damien Miller |
| 2019-01-21 | Make sshpkt_get_bignum2() allocate the bignum it is parsing rather | Damien Miller |
| 2018-12-27 | move client/server SSH-* banners to buffers under ssh->kex and factor | Damien Miller |
| 2018-09-13 | hold our collective noses and use the openssl-1.1.x API in OpenSSH; | Damien Miller |
| 2018-02-07 | Remove all guards for calls to OpenSSL free functions - all of these | Joel Sing |
| 2017-12-18 | pass negotiated signing algorithm though to sshkey_verify() and | Damien Miller |
| 2017-05-30 | protocol handlers all get struct ssh passed; ok djm@ | Markus Friedl |
| 2017-05-16 | remove duplicate check; spotted by Jakub Jelen | Damien Miller |
| 2016-09-12 | Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions | Theo de Raadt |
| 2015-05-26 | Cap DH-GEX group size at 4kbits for Cisco implementations. Some of them | Darren Tucker |
| 2015-04-13 | deprecate ancient, pre-RFC4419 and undocumented | Damien Miller |
| 2015-01-26 | correctly match ECDSA subtype (== curve) for offered/recevied | Damien Miller |
| 2015-01-19 | adapt kex to sshbuf and struct ssh; ok djm@ | Markus Friedl |
| 2015-01-19 | update packet.c & isolate, introduce struct ssh | Markus Friedl |
| 2014-02-02 | convert memset of potentially-private data to explicit_bzero() | Damien Miller |
| 2014-01-25 | Add a special case for the DH group size for 3des-cbc, which has an | Darren Tucker |
| 2014-01-12 | avoid use of OpenSSL BIGNUM type and functions for KEX with | Damien Miller |
| 2014-01-09 | Introduce digest API and use it to perform all hashing operations | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2010-11-10 | use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED. | Damien Miller |
| 2006-11-06 | add missing checks for openssl return codes; with & ok djm@ | Markus Friedl |
| 2006-10-31 | check DH_compute_key() for -1 even if it should not happen because of | Markus Friedl |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves |
| 2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves |
| 2006-05-18 | paramter -> parameter | Miod Vallat |
| 2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller |
| 2006-03-19 | RCSID() can die | Theo de Raadt |
| 2005-11-04 | remove hardcoded hash lengths in key exchange code, allowing | Damien Miller |
| 2003-12-08 | print requested group size in debug; ok djm | Markus Friedl |
| 2003-02-16 | split kex into client and server code, no need to link | Markus Friedl |
