Age | Commit message (Expand) | Author |
2020-03-06 | initialize seconds for debug message; ok djm | Markus Friedl |
2020-02-26 | change explicit_bzero();free() to freezero() | Jonathan Gray |
2020-02-06 | Replace "security key" with "authenticator" in program messages. | Christian Weisgerber |
2020-01-25 | process security key provider via realpath() in agent, avoids | Damien Miller |
2020-01-25 | expose PKCS#11 key labels/X.509 subjects as comments | Damien Miller |
2020-01-23 | Replace all calls to signal(2) with a wrapper around sigaction(2). | Darren Tucker |
2019-12-13 | use ssh-sk-helper for all security key signing operations | Damien Miller |
2019-11-19 | revert previous: naddy pointed out what's meant to happen. rethink needed... | Jason McIntyre |
2019-11-19 | -c and -s do not make sense with -k; reshuffle -k into the main synopsis/usage; | Jason McIntyre |
2019-11-18 | additional missing stdarg.h includes when built without WITH_OPENSSL; ok djm@ | Christian Weisgerber |
2019-11-16 | always use ssh-sk-helper, even for the internal USB HID support. | Damien Miller |
2019-11-15 | unshield security key privkey before attempting signature in | Damien Miller |
2019-11-15 | don't consult dlopen whitelist for internal security key provider; | Damien Miller |
2019-11-15 | show the "please touch your security key" notifier when using the | Damien Miller |
2019-11-14 | directly support U2F/FIDO2 security keys in OpenSSH by linking | Damien Miller |
2019-11-13 | fix shield/unshield for xmss keys: | Markus Friedl |
2019-11-12 | security keys typically need to be tapped/touched in order to perform | Damien Miller |
2019-11-12 | enable ed25519 support; ok djm | Markus Friedl |
2019-10-31 | Refactor signing - use sshkey_sign for everything, including the new | Damien Miller |
2019-10-31 | ssh-agent support for U2F/FIDO keys | Damien Miller |
2019-06-28 | When system calls indicate an error they return -1, not some arbitrary | Theo de Raadt |
2019-06-21 | Add protection for private keys at rest in RAM against speculation | Damien Miller |
2019-06-14 | process agent requests for RSA certificate private keys using correct | Damien Miller |
2019-06-06 | Replace calls to ssh_malloc_init() by a static init of malloc_options. | Otto Moerbeek |
2019-01-22 | backoff reading messages from active connections when the input buffer | Damien Miller |
2018-11-09 | typo in error message; caught by Debian lintian, via Colin Watson | Damien Miller |
2018-05-11 | implement EMFILE mitigation for ssh-agent: remember the fd rlimit | Damien Miller |
2018-04-10 | lots of typos in comments/docs. Patch from Karsten Weiss after checking | Damien Miller |
2018-04-09 | don't kill ssh-agent's listening socket entriely if we fail to accept a | Damien Miller |
2018-02-23 | Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) | Markus Friedl |
2018-01-23 | Drop compatibility hacks for some ancient SSH implementations, including | Damien Miller |
2017-11-15 | downgrade a couple more request parsing errors from process-fatal to | Damien Miller |
2017-11-15 | fix regression in 7.6: failure to parse a signature request message | Damien Miller |
2017-07-24 | g/c unused variable; make a little more portable | Damien Miller |
2017-07-19 | switch from select() to poll() for the ssh-agent mainloop; ok markus | Damien Miller |
2017-07-01 | remove post-SSHv1 removal dead code from rsa.c and merge the | Damien Miller |
2017-04-30 | flense SSHv1 support from ssh-agent, considerably simplifying it | Damien Miller |
2017-04-30 | remove KEY_RSA1 | Damien Miller |
2017-04-30 | unifdef WITH_SSH1 | Damien Miller |
2017-03-15 | accidents happen to the best of us; ok djm | Theo de Raadt |
2017-03-15 | fix regression in 7.4: deletion of PKCS#11-hosted keys would fail | Damien Miller |
2017-01-04 | relax PKCS#11 whitelist a bit to allow libexec as well as lib | Damien Miller |
2016-11-30 | add a whitelist of paths from which ssh-agent will load (via | Damien Miller |
2016-09-12 | Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions | Theo de Raadt |
2016-05-02 | fix signed/unsigned errors reported by clang-3.7; add | Damien Miller |
2016-02-15 | Add a function to enable security-related malloc_options. With and ok | Darren Tucker |
2015-12-11 | Add "id" to ssh-agent pledge for subprocess support. | Doug Hogan |
2015-12-11 | fflush stdout so that output is seen even when running in debug mode when | Darren Tucker |
2015-12-11 | correct error messages; from Tomas Kuthan bz#2507 | Damien Miller |
2015-12-04 | implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth) | Markus Friedl |