summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/ssh-agent.c
AgeCommit message (Expand)Author
2020-03-06initialize seconds for debug message; ok djmMarkus Friedl
2020-02-26change explicit_bzero();free() to freezero()Jonathan Gray
2020-02-06Replace "security key" with "authenticator" in program messages.Christian Weisgerber
2020-01-25process security key provider via realpath() in agent, avoidsDamien Miller
2020-01-25expose PKCS#11 key labels/X.509 subjects as commentsDamien Miller
2020-01-23Replace all calls to signal(2) with a wrapper around sigaction(2).Darren Tucker
2019-12-13use ssh-sk-helper for all security key signing operationsDamien Miller
2019-11-19revert previous: naddy pointed out what's meant to happen. rethink needed...Jason McIntyre
2019-11-19-c and -s do not make sense with -k; reshuffle -k into the main synopsis/usage;Jason McIntyre
2019-11-18additional missing stdarg.h includes when built without WITH_OPENSSL; ok djm@Christian Weisgerber
2019-11-16always use ssh-sk-helper, even for the internal USB HID support.Damien Miller
2019-11-15unshield security key privkey before attempting signature inDamien Miller
2019-11-15don't consult dlopen whitelist for internal security key provider;Damien Miller
2019-11-15show the "please touch your security key" notifier when using theDamien Miller
2019-11-14directly support U2F/FIDO2 security keys in OpenSSH by linkingDamien Miller
2019-11-13fix shield/unshield for xmss keys:Markus Friedl
2019-11-12security keys typically need to be tapped/touched in order to performDamien Miller
2019-11-12enable ed25519 support; ok djmMarkus Friedl
2019-10-31Refactor signing - use sshkey_sign for everything, including the newDamien Miller
2019-10-31ssh-agent support for U2F/FIDO keysDamien Miller
2019-06-28When system calls indicate an error they return -1, not some arbitraryTheo de Raadt
2019-06-21Add protection for private keys at rest in RAM against speculationDamien Miller
2019-06-14process agent requests for RSA certificate private keys using correctDamien Miller
2019-06-06Replace calls to ssh_malloc_init() by a static init of malloc_options.Otto Moerbeek
2019-01-22backoff reading messages from active connections when the input bufferDamien Miller
2018-11-09typo in error message; caught by Debian lintian, via Colin WatsonDamien Miller
2018-05-11implement EMFILE mitigation for ssh-agent: remember the fd rlimitDamien Miller
2018-04-10lots of typos in comments/docs. Patch from Karsten Weiss after checkingDamien Miller
2018-04-09don't kill ssh-agent's listening socket entriely if we fail to accept aDamien Miller
2018-02-23Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures)Markus Friedl
2018-01-23Drop compatibility hacks for some ancient SSH implementations, includingDamien Miller
2017-11-15downgrade a couple more request parsing errors from process-fatal toDamien Miller
2017-11-15fix regression in 7.6: failure to parse a signature request messageDamien Miller
2017-07-24g/c unused variable; make a little more portableDamien Miller
2017-07-19switch from select() to poll() for the ssh-agent mainloop; ok markusDamien Miller
2017-07-01remove post-SSHv1 removal dead code from rsa.c and merge theDamien Miller
2017-04-30flense SSHv1 support from ssh-agent, considerably simplifying itDamien Miller
2017-04-30remove KEY_RSA1Damien Miller
2017-04-30unifdef WITH_SSH1Damien Miller
2017-03-15accidents happen to the best of us; ok djmTheo de Raadt
2017-03-15fix regression in 7.4: deletion of PKCS#11-hosted keys would failDamien Miller
2017-01-04relax PKCS#11 whitelist a bit to allow libexec as well as libDamien Miller
2016-11-30add a whitelist of paths from which ssh-agent will load (viaDamien Miller
2016-09-12Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitionsTheo de Raadt
2016-05-02fix signed/unsigned errors reported by clang-3.7; addDamien Miller
2016-02-15Add a function to enable security-related malloc_options. With and okDarren Tucker
2015-12-11Add "id" to ssh-agent pledge for subprocess support.Doug Hogan
2015-12-11fflush stdout so that output is seen even when running in debug mode whenDarren Tucker
2015-12-11correct error messages; from Tomas Kuthan bz#2507Damien Miller
2015-12-04implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)Markus Friedl