| Age | Commit message (Expand) | Author |
|---|
| 2013-07-12 | fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@ | Damien Miller |
| 2013-06-01 | Use clock_gettime(CLOCK_MONOTONIC ...) for ssh timers so that things like | Darren Tucker |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2013-05-16 | Add RekeyLimit to sshd with the same syntax as the client allowing rekeying | Darren Tucker |
| 2013-05-16 | Add an optional second argument to RekeyLimit in the client to allow | Darren Tucker |
| 2013-04-19 | add the ability to query supported ciphers, MACs, key type and KEX | Damien Miller |
| 2013-04-11 | quiet disconnect notifications on the server from error() back to logit() | Damien Miller |
| 2013-02-10 | record "Received disconnect" messages at ERROR rather than INFO priority, | Damien Miller |
| 2013-01-08 | support AES-GCM as defined in RFC 5647 (but with simpler KEX handling) | Markus Friedl |
| 2012-12-12 | reset incoming_packet buffer for each new packet in EtM-case, too; | Markus Friedl |
| 2012-12-11 | add encrypt-then-mac (EtM) modes to openssh by defining new mac algorithms | Markus Friedl |
| 2012-09-17 | clear old keys on rekeing; ok djm | Markus Friedl |
| 2012-01-25 | packet_read_poll() is not used anymore. | Markus Friedl |
| 2012-01-25 | do not permit SSH2_MSG_SERVICE_REQUEST/ACCEPT during rekeying; | Markus Friedl |
| 2011-12-07 | fix some harmless and/or unreachable int overflows; | Damien Miller |
| 2011-05-06 | set traffic class for IPv6 traffic as we do for IPv4 TOS; | Damien Miller |
| 2010-11-13 | allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead of | Damien Miller |
| 2010-11-05 | whitespace KNF | Damien Miller |
| 2010-08-31 | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and | Damien Miller |
| 2010-08-31 | Add buffer_get_cstring() and related functions that verify that the | Damien Miller |
| 2010-07-13 | s/timing_safe_cmp/timingsafe_bcmp/g | Damien Miller |
| 2010-07-13 | implement a timing_safe_cmp() function to compare memory without leaking | Damien Miller |
| 2009-06-27 | packet_bacup_state() and packet_restore_state() will be used to | Andreas Gunnarsson |
| 2009-06-12 | Move some more statics into session_state | Andreas Gunnarsson |
| 2009-06-12 | Fix warnings found by chl@ and djm@ and change roaming_atomicio's | Andreas Gunnarsson |
| 2009-05-28 | Keep track of number of bytes read and written. Needed for upcoming | Andreas Gunnarsson |
| 2009-05-27 | Add packet_put_int64() and packet_get_int64(), part of a larger change | Andreas Gunnarsson |
| 2009-05-25 | Put the globals in packet.c into a struct and don't access it directly | Andreas Gunnarsson |
| 2009-02-13 | check for enc !=NULL in packet_start_discard | Markus Friedl |
| 2009-01-26 | Work around the CPNI-957037 Plaintext Recovery Attack by always | Markus Friedl |
| 2008-11-21 | packet_disconnect() on padding error, too. should reduce the success | Markus Friedl |
| 2008-07-10 | sync v1 and v2 traffic accounting; add it to sshd, too; ok djm@, dtucker@ | Markus Friedl |
| 2008-07-04 | handle EINTR in packet_write_poll()l ok dtucker@ | Damien Miller |
| 2008-06-13 | compile on older gcc; no decl after code | Theo de Raadt |
| 2008-06-12 | Make keepalive timeouts apply while waiting for a packet, particularly during | Darren Tucker |
| 2008-05-19 | unbreak protocol keepalive timeouts bz#1465; ok dtucker@ | Damien Miller |
| 2008-05-08 | avoid extra malloc/copy/free when receiving data over the net; | Markus Friedl |
| 2008-02-22 | Allow all SSH2 packet types, including UNIMPLEMENTED to reset the | Darren Tucker |
| 2008-01-23 | Revert the change for bz #1307 as it causes connection aborts if an IGNORE | Darren Tucker |
| 2007-12-28 | Make SSH2_MSG_UNIMPLEMENTED and SSH2_MSG_IGNORE messages reset the | Darren Tucker |
| 2007-06-07 | Add a new MAC algorithm for data integrity, UMAC-64 (not default yet, must | Peter Valchev |
| 2007-06-05 | Preserve MAC ctx between packets, saving 2xhash calls per-packet. | Damien Miller |
| 2007-05-31 | gc unreachable code; spotted by Tavis Ormandy | Damien Miller |
| 2006-09-19 | client NULL deref on protocol error; Tavis Ormandy, Google Security Team | Markus Friedl |
| 2006-09-16 | limit maximum work performed by the CRC compensation attack detector, | Damien Miller |
| 2006-08-05 | Typo in comment | Darren Tucker |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves |
| 2006-07-26 | move #include <stdlib.h> out of includes.h | Kevin Steves |
| 2006-07-26 | move #include <sys/param.h> out of includes.h | Kevin Steves |
