summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/packet.c
AgeCommit message (Expand)Author
2017-06-09Add comments referring to the relevant RFC sections for rekeyingDarren Tucker
2017-06-06Fix compression output stats broken in rev 1.201. Patch originally byDarren Tucker
2017-06-01some warnings spotted by clang; ok markus@Damien Miller
2017-05-31These shutdown() SHUT_RDWR are not needed before close()Theo de Raadt
2017-05-31clear session keys from memory; ok djm@Markus Friedl
2017-05-08helps if I commit the correct version of the file. fix missingDamien Miller
2017-05-08I was too aggressive with the scalpel in the last commit;Damien Miller
2017-05-07As promised in last release announcement: remove support forDamien Miller
2017-05-03remove miscellaneous SSH1 leftovers; ok markus@Christian Weisgerber
2017-04-30obliterate ssh1.h and some dead code that used itDamien Miller
2017-04-30remove the (in)famous SSHv1 CRC compensation attack detector.Damien Miller
2017-04-30remove SSHv1 support from packet and buffer APIsDamien Miller
2017-04-30remove compat20/compat13/compat15 variablesDamien Miller
2017-04-30unifdef WITH_SSH1Damien Miller
2017-03-11Don't count the initial block twice when computing how many bytesMarkus Friedl
2017-02-28small memleak: free fd_set on connection timeout (though we are heading toDamien Miller
2017-02-03add ssh_packet_set_log_preamble() to allow inclusion of a preambleDamien Miller
2017-02-03Make ssh_packet_set_rekey_limits take u32 for the number of secondsDarren Tucker
2016-10-11Add a per-packet input hook that is called with the decrypted packetDamien Miller
2016-09-30ssh proxy mux mode (-O proxy; idea from Simon Tatham):Markus Friedl
2016-09-28put back some pre-auth zlib bits that I shouldn't have removed -Damien Miller
2016-09-28restore pre-auth compression support in the client -- the previousDamien Miller
2016-09-28Remove support for pre-authentication compression. Doing compressionDamien Miller
2016-09-19move inbound NEWKEYS handling to kex layer; otherwise early NEWKEYS causesMarkus Friedl
2016-09-12Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitionsTheo de Raadt
2016-09-06ssh_set_newkeys: print correct block counters on rekeying; ok djm@Markus Friedl
2016-08-03small refactor of cipher.c: make ciphercontext opaque to callersDamien Miller
2016-07-18Reduce timing attack against obsolete CBC modes by always computingMarkus Friedl
2016-07-18Add some unsigned overflow checks for extra_pad. None of theseDamien Miller
2016-07-15Reduce the syslog level of some relatively common protocol eventsDarren Tucker
2016-07-08Improve crypto ordering for Encrypt-then-MAC (EtM) mode MAC algorithms.Damien Miller
2016-03-07refactor canohost.c: move functions that cache results closer to theDamien Miller
2016-02-17rekey refactor broke SSH1; spotted by Tom G. ChristensenDamien Miller
2016-02-08refactor activation of rekeyingDamien Miller
2016-02-04printf argument casts to avoid warnings on strict compilersDamien Miller
2016-01-29include packet type of non-data packets in debug3 output;Damien Miller
2016-01-29Revert "account for packets buffered but not yet processed" change as itDarren Tucker
2016-01-29Allow RekeyLimits in excess of 4G up to 2**63 bits (limited by the returnDarren Tucker
2016-01-29Account for packets buffered but not yet processed when computing whether orDarren Tucker
2016-01-14remove roaming support; ok djm@Markus Friedl
2015-12-11Remove NULL-checks before sshbuf_free().mmcc
2015-12-11include remote port number in a few more messages; makes tying logDamien Miller
2015-12-10Remove NULL-checks before free().mmcc
2015-12-04implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)Markus Friedl
2015-11-08fix OOB read in packet code caused by missing return statementDamien Miller
2015-10-21fix memory leak in error pathGleydson Soares
2015-09-21fix possible hang on closed output; bz#2469 reported by Tomas KuthanDamien Miller
2015-08-20Do not cast result of malloc/calloc/realloc* if stdlib.h is in scopeTheo de Raadt
2015-07-29include the peer's offer when logging a failure to negotiate aDamien Miller
2015-05-01refactor ssh_dispatch_run_fatal() to use sshpkt_fatal() to betterDamien Miller