| Age | Commit message (Expand) | Author |
|---|
| 2016-09-12 | Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions | Theo de Raadt |
| 2016-06-08 | Back out rev 1.28 "Check min and max sizes sent by the client" change. | Darren Tucker |
| 2016-06-01 | Check min and max sizes sent by the client against what we support before | Darren Tucker |
| 2016-05-31 | Ensure that the client's proposed DH-GEX max value is at least as big | Darren Tucker |
| 2015-12-04 | implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth) | Markus Friedl |
| 2015-04-13 | deprecate ancient, pre-RFC4419 and undocumented | Damien Miller |
| 2015-01-26 | correctly match ECDSA subtype (== curve) for offered/recevied | Damien Miller |
| 2015-01-20 | Reduce use of <sys/param.h> and transition to <limits.h> throughout. | Theo de Raadt |
| 2015-01-20 | fix hostkeys in agent; ok markus@ | Damien Miller |
| 2015-01-19 | adapt kex to sshbuf and struct ssh; ok djm@ | Markus Friedl |
| 2015-01-19 | update packet.c & isolate, introduce struct ssh | Markus Friedl |
| 2014-02-02 | convert memset of potentially-private data to explicit_bzero() | Damien Miller |
| 2014-01-12 | avoid use of OpenSSL BIGNUM type and functions for KEX with | Damien Miller |
| 2014-01-09 | Introduce digest API and use it to perform all hashing operations | Damien Miller |
| 2013-07-19 | add ssh-agent(1) support to sshd(8); allows encrypted hostkeys, | Markus Friedl |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2010-11-10 | use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED. | Damien Miller |
| 2010-02-26 | Add support for certificate key types for users and hosts. | Damien Miller |
| 2009-06-21 | abort if key_sign fails, preventing possible null deref. Based on report | Darren Tucker |
| 2009-01-01 | fix hash calculation for KEXGEX: hash over the original client-supplied | Damien Miller |
| 2006-11-06 | add missing checks for openssl return codes; with & ok djm@ | Markus Friedl |
| 2006-10-31 | check DH_compute_key() for -1 even if it should not happen because of | Markus Friedl |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves |
| 2006-07-26 | move #include <sys/param.h> out of includes.h | Kevin Steves |
| 2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves |
| 2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller |
| 2006-03-19 | RCSID() can die | Theo de Raadt |
| 2005-11-04 | remove hardcoded hash lengths in key exchange code, allowing | Damien Miller |
| 2003-02-16 | split kex into client and server code, no need to link | Markus Friedl |
