| Age | Commit message (Expand) | Author |
|---|
| 2014-12-21 | Add FingerprintHash option to control algorithm used for key | Damien Miller |
| 2014-08-21 | Free resources on error in mkstemp and fdopen | doug |
| 2014-07-03 | When hashing or removing hosts using ssh-keygen, don't choke on | Damien Miller |
| 2014-07-03 | standardise on NI_MAXHOST for gethostname() string lengths; about | Damien Miller |
| 2014-06-24 | New key API: refactor key-related functions to be more library-like, | Damien Miller |
| 2014-04-29 | make compiling against OpenSSL optional (make OPENSSL=no); | Markus Friedl |
| 2014-04-28 | buffer_get_string_ptr's return should be const to remind | Damien Miller |
| 2014-04-20 | Add support for SSHFP DNS records for ED25519 key types. | logan |
| 2014-03-15 | Improve usage() and documentation towards the standard form. In particular, | Theo de Raadt |
| 2014-03-12 | don't count on things that accept arguments by reference to clear | Damien Miller |
| 2014-02-05 | tweak synopsis: calling ssh-keygen without any arguments is fine; ok jmc@ | Christian Weisgerber |
| 2014-02-02 | convert memset of potentially-private data to explicit_bzero() | Damien Miller |
| 2014-01-31 | replace most bzero with explicit_bzero, except a few that cna be memset | Ted Unangst |
| 2013-12-06 | support ed25519 keys (hostkeys and user identities) using the public domain | Markus Friedl |
| 2013-12-06 | new private key format, bcrypt as KDF by default; details in PROTOCOL.key; | Markus Friedl |
| 2013-12-06 | remove duplicated character ('g') in getopt() string; | Damien Miller |
| 2013-10-23 | Make code match documentation: relative-specified certificate expiry time | Damien Miller |
| 2013-09-02 | All the instances of arc4random_stir() are bogus, since arc4random() | Theo de Raadt |
| 2013-08-28 | improve batch processing a bit by making use of the quite flag a bit | Mike Belopuhov |
| 2013-08-13 | another of the same typo | Damien Miller |
| 2013-08-13 | typo in error message; from Stephan Rickauer | Damien Miller |
| 2013-07-20 | More useful error message on missing current user in /etc/passwd | Damien Miller |
| 2013-07-12 | do_print_resource_record() can never be called with a NULL filename, so | Damien Miller |
| 2013-07-12 | fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@ | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2013-04-19 | fix some memory leaks; bz#2088 ok dtucker@ | Damien Miller |
| 2013-02-10 | append to moduli file when screening candidates rather than overwriting. | Damien Miller |
| 2013-01-18 | -u before -V in usage(); | Jason McIntyre |
| 2013-01-17 | add support for Key Revocation Lists (KRLs). These are a compact way to | Damien Miller |
| 2013-01-09 | correctly initialise fingerprint type for fingerprinting PKCS#11 keys | Damien Miller |
| 2013-01-03 | allow fingerprinting of keys hosted in PKCS#11 tokens: ssh-keygen -lD ... | Damien Miller |
| 2012-12-03 | Fix compilation with -Wall -Werror (trivial type fixes) | Damien Miller |
| 2012-11-14 | allow the full range of unsigned serial numbers; 'fine' deraadt@ | Damien Miller |
| 2012-10-02 | fix -z option, broken in revision 1.215 | Damien Miller |
| 2012-08-17 | print details of which host lines were deleted when using | Damien Miller |
| 2012-07-06 | missing full stop in usage(); | Jason McIntyre |
| 2012-07-06 | Add options to specify starting line number and number of lines to process | Darren Tucker |
| 2012-05-23 | add support for RFC6594 SSHFP DNS records for ECDSA key types. | Damien Miller |
| 2012-02-29 | allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@ | Damien Miller |
| 2011-10-16 | put -K in the right place (usage()); | Jason McIntyre |
| 2011-10-16 | Add optional checkpoints for moduli screening. feedback & ok deraadt | Darren Tucker |
| 2011-04-18 | certificate options are supposed to be packed in lexical order of option | Damien Miller |
| 2011-04-12 | fix -Wshadow | Damien Miller |
| 2011-03-24 | use strcasecmp() for "clear" cert permission option also; ok djm | Kevin Steves |
| 2011-03-23 | remove -d, documentation removed >10 years ago; ok markus | Kevin Steves |
| 2011-03-23 | Add -A option. For each of the key types (rsa1, rsa, dsa and ecdsa) | Kevin Steves |
| 2011-01-11 | some unsigned long long casts that make things a bit easier for | Damien Miller |
| 2010-10-28 | fix a possible NULL deref on loading a corrupt ECDH key | Damien Miller |
| 2010-09-02 | Switch ECDSA default key size to 256 bits, which according to RFC5656 | Christian Weisgerber |
| 2010-09-02 | permit -b 256, 384 or 521 as key size for ECDSA; ok djm@ | Markus Friedl |
