summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/ssh-agent.c
AgeCommit message (Expand)Author
2016-02-15Add a function to enable security-related malloc_options. With and okDarren Tucker
2015-12-11Add "id" to ssh-agent pledge for subprocess support.Doug Hogan
2015-12-11fflush stdout so that output is seen even when running in debug mode whenDarren Tucker
2015-12-11correct error messages; from Tomas Kuthan bz#2507Damien Miller
2015-12-04implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)Markus Friedl
2015-12-02Add "cpath" to the ssh-agent pledge so the cleanup handler can unlink().Doug Hogan
2015-12-02ssh-agent pledge needs proc for askpass; spotted by todd@Damien Miller
2015-12-01basic pledge() for ssh-agent, more refinement neededDamien Miller
2015-07-08no need to include the old buffer/key APIMarkus Friedl
2015-05-15Use a salted hash of the lock passphrase instead of plain text and doDarren Tucker
2015-04-24combine -Dd onto one line and update usage();Jason McIntyre
2015-04-24add ssh-agent -D to leave ssh-agent in foreground without enablingDamien Miller
2015-04-24rename xrealloc() to xreallocarray() since it follows that form.Theo de Raadt
2015-03-04make ssh-add -D work with !SSH1 agentDamien Miller
2015-03-03add SSH1 Makefile knob to make it easier to build without SSH1 support;Damien Miller
2015-01-28update to new API (key_fingerprint => sshkey_fingerprint)Damien Miller
2015-01-16Replace <sys/param.h> with <limits.h> and other less dirty headers whereTheo de Raadt
2015-01-14fix small regression: ssh-agent would return a success messageDamien Miller
2015-01-14switch to sshbuf/sshkey; with & ok djm@Markus Friedl
2014-12-21tweak previous;Jason McIntyre
2014-12-21Add FingerprintHash option to control algorithm used for keyDamien Miller
2014-11-18Nuke more obvious #include duplications.Kenneth R Westerback
2014-07-25Clear buffer used for handling messages. This prevents keys beingDarren Tucker
2014-07-18restore umask around listener socket creation (dropped in streamlocal patchDamien Miller
2014-07-15Add support for Unix domain socket forwarding. A remote TCP portTodd C. Miller
2014-07-03Only cleanup agent socket in the main agent process and not in anyDamien Miller
2014-06-24New key API: refactor key-related functions to be more library-like,Damien Miller
2014-04-29make compiling against OpenSSL optional (make OPENSSL=no);Markus Friedl
2014-03-15Improve usage() and documentation towards the standard form. In particular,Theo de Raadt
2014-02-02convert memset of potentially-private data to explicit_bzero()Damien Miller
2014-01-27replace openssl MD5 with our ssh_digest_*; ok djm@Markus Friedl
2013-12-19bz#2186: don't crash (NULL deref) when deleting PKCS#11 keys from an agentDamien Miller
2013-12-06support ed25519 keys (hostkeys and user identities) using the public domainMarkus Friedl
2013-12-06new private key format, bcrypt as KDF by default; details in PROTOCOL.key;Markus Friedl
2013-12-06move private key (de)serialization to key.c; ok djmMarkus Friedl
2013-07-20call cleanup_handler on SIGINT when in debug mode to ensure socketsDamien Miller
2013-06-02Make parent_alive_interval time_t to avoid signed/unsigned comparisonDarren Tucker
2013-06-01Use clock_gettime(CLOCK_MONOTONIC ...) for ssh timers so that things likeDarren Tucker
2013-05-31Use time_t where appropriate. ok djmDarren Tucker
2013-05-17bye, bye xfree(); ok markus@Damien Miller
2011-06-03Check current parent process ID against saved one to determine if the parentDarren Tucker
2010-11-21honour $TMPDIR for client xauth and ssh-agent temporary directories;Damien Miller
2010-08-31reintroduce commit from tedu@, which I pulled out for release engineering:Damien Miller
2010-08-31Implement Elliptic Curve Cryptography modes for key exchange (ECDH) andDamien Miller
2010-08-16backout previous temporarily; discussed with deraadt@Damien Miller
2010-08-12OpenSSL_add_all_algorithms is the name of the function we have a man pageTed Unangst
2010-04-16revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with theDamien Miller
2010-02-26Add support for certificate key types for users and hosts.Damien Miller
2010-02-09fallout from PKCS#11: unbreak -DDamien Miller
2010-02-08replace our obsolete smartcard code with PKCS#11.Markus Friedl