index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
usr.bin
/
ssh
/
krl.c
Age
Commit message (
Expand
)
Author
2020-04-03
avoid another compiler warning spotted in -portable
Damien Miller
2020-04-03
fix format string (use %llu for uint64, not %lld). spotted by Darren and
Damien Miller
2020-04-03
give ssh-keygen the ability to dump the contents of a binary key
Damien Miller
2020-01-25
factor out reading/writing sshbufs to dedicated functions;
Damien Miller
2019-11-25
Add new structure for signature options
Damien Miller
2019-10-31
Refactor signing - use sshkey_sign for everything, including the new
Damien Miller
2019-09-06
lots of things were relying on libcrypto headers to transitively
Damien Miller
2019-06-21
Add protection for private keys at rest in RAM against speculation
Damien Miller
2018-09-12
allow key revocation by SHA256 hash and allow ssh-keygen to create KRLs
Damien Miller
2017-12-18
pass negotiated signing algorithm though to sshkey_verify() and
Damien Miller
2017-05-31
Switch to recallocarray() for a few operations. Both growth and shrinkage
Theo de Raadt
2017-03-10
krl.c
Darren Tucker
2016-09-12
Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions
Theo de Raadt
2015-12-31
fix three bugs in KRL code related to (unused) signature support:
Damien Miller
2015-12-11
Remove NULL-checks before sshbuf_free().
mmcc
2015-12-04
implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)
Markus Friedl
2015-09-02
Fix occurrences of "r = func() != 0" which result in the wrong error
Jonathan Gray
2015-07-03
delete support for legacy v00 certificates; "sure" markus@ dtucker@
Damien Miller
2015-06-24
correct test to sshkey_sign(); spotted by Albert S.
Damien Miller
2015-01-30
permit KRLs that revoke certificates by serial number or key ID
Damien Miller
2015-01-26
small refactor and add some convenience functions;
Damien Miller
2015-01-20
Reduce use of <sys/param.h> and transition to <limits.h> throughout.
Theo de Raadt
2015-01-19
fix format strings in (disabled) debugging
Damien Miller
2015-01-18
string truncation due to sizeof(size)
Theo de Raadt
2015-01-14
avoid BIGNUM in KRL code by using a simple bitmap;
Damien Miller
2015-01-13
sync changes from libopenssh; prepared by markus@
Damien Miller
2015-01-12
missing error assigment on sshbuf_put_string()
Markus Friedl
2015-01-12
free->sshkey_free; ok djm@
Markus Friedl
2015-01-08
deprecate key_load_private_pem() and sshkey_load_private_pem()
Damien Miller
2014-12-21
Add FingerprintHash option to control algorithm used for key
Damien Miller
2014-12-04
convert KRL code to new buffer API
Damien Miller
2014-11-21
fix NULL pointer dereference crash on invalid timestamp
Damien Miller
2014-11-17
fix KRL generation when multiple CAs are in use
Damien Miller
2014-06-24
New key API: refactor key-related functions to be more library-like,
Damien Miller
2014-06-24
fix bug in KRL generation: multiple consecutive revoked certificate
Damien Miller
2014-04-28
buffer_get_string_ptr's return should be const to remind
Damien Miller
2014-01-31
replace most bzero with explicit_bzero, except a few that cna be memset
Ted Unangst
2013-07-20
fix verification error in (as-yet usused) KRL signature checking path
Damien Miller
2013-06-20
don't leak the rdata blob on errors; ok djm@
Markus Friedl
2013-04-05
hush some {unused, printf type} warnings
Damien Miller
2013-02-19
Remove bogus include. ok djm
Darren Tucker
2013-01-27
actually use the xrealloc() return value; spotted by xi.wang AT gmail.com
Damien Miller
2013-01-25
redo last commit without the vi-vomit that snuck in:
Damien Miller
2013-01-25
Revert last. Breaks due to likely typo. Let djm@ fix later.
Kenneth R Westerback
2013-01-24
skip serial lookup when cert's serial number is zero
Damien Miller
2013-01-24
fix handling of (unused) KRL signatures; skip string in correct buffer
Damien Miller
2013-01-19
RB_INSERT does not remove existing elments; ok djm@
Markus Friedl
2013-01-18
fix KRL generation bug for list sections
Damien Miller
2013-01-18
RCD IDs help us keep portable in synch
Damien Miller
2013-01-17
add support for Key Revocation Lists (KRLs). These are a compact way to
Damien Miller