index
:
src
cvs/HEAD
kms/intel
kms/radeon
master
OpenBSD base system
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
usr.bin
/
ssh
/
ssh-keygen.c
Age
Commit message (
Expand
)
Author
2019-06-21
Add protection for private keys at rest in RAM against speculation
Damien Miller
2019-06-06
Replace calls to ssh_malloc_init() by a static init of malloc_options.
Otto Moerbeek
2019-05-29
Make the standard output messages of both methods of changing a key
Mark Lumsden
2019-03-25
Expand comment to document rationale for default key sizes.
Darren Tucker
2019-03-25
Increase the default RSA key size to 3072 bits. Based on the estimates
Darren Tucker
2019-02-10
ssh-keygen -D pkcs11.so needs to initialize pkcs11 interactive,
Sebastian Benoit
2019-01-23
allow auto-incrementing certificate serial number for certs signed
Damien Miller
2019-01-23
move a bunch of global flag variables to main(); make the rest static
Damien Miller
2019-01-22
add -m to usage(); reminded by jmc@
Damien Miller
2018-10-19
when printing certificate contents "ssh-keygen -Lf /path/certificate",
Damien Miller
2018-09-14
garbage-collect moribund ssh_new_private() API.
Damien Miller
2018-09-13
hold our collective noses and use the openssl-1.1.x API in OpenSSH;
Damien Miller
2018-09-12
allow key revocation by SHA256 hash and allow ssh-keygen to create KRLs
Damien Miller
2018-08-08
Use new private key format by default. This format is suported by
Damien Miller
2018-07-09
replace cast with call to sshbuf_mutable_ptr(); ok djm@
Markus Friedl
2018-06-06
switch config file parsing to getline(3) as this avoids static limits
Markus Friedl
2018-06-01
whitespace
Damien Miller
2018-06-01
return correct exit code when searching for and hashing known_hosts
Damien Miller
2018-03-12
add valid-before="[time]" authorized_keys option. A simple way of
Damien Miller
2018-02-23
Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures)
Markus Friedl
2018-02-10
Refuse to create a certificate with an unusable number of principals;
Damien Miller
2018-02-10
fatal if we're unable to write all the public key; previously we
Damien Miller
2018-02-07
Remove some #ifdef notyet code from OpenSSL 0.9.8 days.
Joel Sing
2017-12-18
pass negotiated signing algorithm though to sshkey_verify() and
Damien Miller
2017-11-03
allow certificate validity intervals that specify only a start or
Damien Miller
2017-07-07
When generating all hostkeys (ssh-keygen -A), clobber existing keys
Damien Miller
2017-07-01
remove post-SSHv1 removal dead code from rsa.c and merge the
Damien Miller
2017-06-28
Allow ssh-keygen to use a key held in ssh-agent as a CA when signing
Damien Miller
2017-05-30
remove unused wrapper functions from key.[ch]; ok djm@
Markus Friedl
2017-05-07
Refuse RSA keys <1024 bits in length. Improve reporting for keys that
Damien Miller
2017-04-30
remove KEY_RSA1
Damien Miller
2017-04-30
unifdef WITH_SSH1
Damien Miller
2017-04-29
allow ssh-keygen to include arbitrary string or flag certificate
Damien Miller
2017-03-10
ensure hostname is lower-case before hashing it; bz#2591 reported by
Damien Miller
2017-03-06
Check l->hosts before dereferencing; fixes potential null pointer deref.
Darren Tucker
2017-03-06
linenum is unsigned long so use %lu in log formats. ok deraadt@
Darren Tucker
2017-03-03
fix ssh-keygen -H accidentally corrupting known_hosts that contained
Damien Miller
2017-02-17
Do not show rsa1 key type in usage when compiled without SSH1 support.
Darren Tucker
2017-02-10
Sanitise escape sequences in key comments sent to printf but preserve
Damien Miller
2017-02-08
Avoid printf %s NULL. From semarie@, OK djm@
Todd C. Miller
2016-09-12
Spaces->tabs.
Darren Tucker
2016-09-12
Style whitespace fix. Also happens to remove a no-op diff with portable.
Darren Tucker
2016-05-02
support SHA256 and SHA512 RSA signatures in certificates;
Damien Miller
2016-05-02
fix signed/unsigned errors reported by clang-3.7; add
Damien Miller
2016-02-15
Add a function to enable security-related malloc_options. With and ok
Darren Tucker
2015-12-11
use SSH_MAX_PUBKEY_BYTES consistently as buffer size when reading key
Damien Miller
2015-12-11
Remove NULL-checks before sshkey_free().
mmcc
2015-12-04
implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)
Markus Friedl
2015-11-28
do not leak temp file if there is no known_hosts file
Theo de Raadt
2015-11-20
allow comment change for all supported formats
Alexander Hall
[next]