summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/ssh-keygen.c
AgeCommit message (Expand)Author
2024-09-15include pathname in some of the ssh-keygen passphrase prompts. HelpsDamien Miller
2024-09-04be more strict in parsing key type names. Only allow shortnames (e.gDamien Miller
2024-08-15Convert RSA and ECDSA key to the libcrypto EVP_PKEY API. DSA remainsDamien Miller
2024-01-11make DSA key support compile-time optional, defaulting to onDamien Miller
2023-09-04Generate Ed25519 keys when invoked without argumentsJob Snijders
2023-07-17remove vestigal support for KRL signaturesDamien Miller
2023-07-14add defence-in-depth checks for some unreachable integer overflowsDamien Miller
2023-06-20reset comment=NULL for each key in do_fingerprint(); fixes "no comment"Damien Miller
2023-04-12fix double wordsJonathan Gray
2023-03-08use RSA/SHA256 when testing usability of private key;Damien Miller
2023-03-05Fix mem and FILE leaks in moduli screening.Darren Tucker
2023-03-05Plug mem leak in moduli checkpoint option parsing.Darren Tucker
2023-02-28Explicitly ignore return from fchmod similar to other calls toDarren Tucker
2023-02-10let ssh-keygen and ssh-keyscan accept -Ohashalg=sha1|sha256 whenDamien Miller
2022-12-04userspace: remove vestigial '?' cases from top-level getopt(3) loopsScott Soule Cheloha
2022-11-07fix parsing of hex cert expiry time; was checking whether theDamien Miller
2022-08-11allow certificate validity intervals, sshsig verification times andDamien Miller
2022-08-05don't prompt for FIDO passphrase before attempting to enroll theDamien Miller
2022-07-20ssh-keygen: fix touch prompt, pin retries;Damien Miller
2022-07-20when enrolling a resident key on a security token, check if aDamien Miller
2022-07-20pull passphrase reading and confirmation into a separate functionDamien Miller
2022-06-03ssh-keygen -A: do not generate DSA keys by default. Based on github PR#303Darren Tucker
2022-05-31ssh-keygen: implement "verify-required" certificate optionChristian Weisgerber
2022-05-09Allow existing -U (use agent) flag to work with "-Y sign" operations,Damien Miller
2022-05-08improve error message when 'ssh-keygen -Y sign' is unable to load aDamien Miller
2022-03-18helpful commentDamien Miller
2022-03-18ssh-keygen -Y check-novalidate requires namespace or SEGV will ensue.Damien Miller
2022-02-01mark const string array contents const too, i.e.Damien Miller
2022-01-05add a comment so I don't make this mistake againDamien Miller
2022-01-05fix cut-and-pasto in error messageDamien Miller
2022-01-05allow selection of hash at sshsig signing time; code already supportedDamien Miller
2022-01-05add missing -O option to usage() for ssh-keygen -Y sign;Damien Miller
2022-01-05move sig_process_opts() to before sig_sign(); no functional code changeDamien Miller
2021-11-28fix indenting in last commitDamien Miller
2021-11-27Add ssh-keygen -Y match-principals operation to perform matching ofDamien Miller
2021-10-29ssh-keygen: make verify-time argument parsing optionalDamien Miller
2021-10-28When downloading resident keys from a FIDO token, pass back theDamien Miller
2021-10-02Dynamically allocate encoded HashKnownHosts and free as appropriate.Darren Tucker
2021-09-08correct my mistake in previous fix; spotted by halexDamien Miller
2021-09-07avoid NULL deref in -Y find-principals. Report and fix fromDamien Miller
2021-08-11when verifying sshsig signatures, support an option (-Oprint-pubkey)Damien Miller
2021-07-24Don't omit ssh-keygen -y from usage when built without OpenSSL. It isDarren Tucker
2021-07-24Exclude key conversion options from usage when built without OpenSSLDarren Tucker
2021-07-23Let allowed signers files used by ssh-keygen(1) signatures support keyDamien Miller
2021-07-09silence redundant error message; reported by Fabian StelzerDamien Miller
2021-07-05Order includes as per style(9). Portable already has these so thisDarren Tucker
2021-04-03highly polished whitespace, mostly fixing spaces-for-tab and badDamien Miller
2021-03-12pwcopy() struct passwd that we're going to reuse across a bunch ofDamien Miller
2020-12-20load_hostkeys()/hostkeys_foreach() variants for FILE*Damien Miller
2020-11-28Include cipher.h for declaration of cipher_by_name.Darren Tucker