| Age | Commit message (Expand) | Author |
|---|
| 2024-04-30 | stricter validation of messaging socket fd number; disallow usage of | Damien Miller |
| 2024-01-11 | ensure key_fd is filled when DSA is disabled; spotted by tb@ | Damien Miller |
| 2024-01-11 | make DSA key support compile-time optional, defaulting to on | Damien Miller |
| 2022-08-01 | avoid double-free in error path introduced in r1.70; | Damien Miller |
| 2022-01-06 | make ssh-keysign use the requested signature algorithm and not the | Damien Miller |
| 2021-11-13 | It really looks like pledge "stdio dns" is possible earlier. | Theo de Raadt |
| 2021-11-10 | fix ssh-keysign for KEX algorithms that use SHA384/512 exchange hashes; | Damien Miller |
| 2021-07-05 | Order includes as per style(9). Portable already has these so this | Darren Tucker |
| 2020-12-17 | prepare readconf.c for fuzzing; remove fatal calls and fix some | Damien Miller |
| 2020-10-18 | use the new variant log macros instead of prepending __func__ and | Damien Miller |
| 2020-08-27 | support for user-verified FIDO keys | Damien Miller |
| 2019-11-18 | additional missing stdarg.h includes when built without WITH_OPENSSL; ok djm@ | Christian Weisgerber |
| 2019-10-31 | Refactor signing - use sshkey_sign for everything, including the new | Damien Miller |
| 2019-10-02 | remove some duplicate #includes | Damien Miller |
| 2019-09-06 | fixes for !WITH_OPENSSL compilation; ok dtucker@ | Damien Miller |
| 2019-09-06 | lots of things were relying on libcrypto headers to transitively | Damien Miller |
| 2019-06-14 | if passed a bad fd, log what it was | Damien Miller |
| 2019-06-06 | Replace calls to ssh_malloc_init() by a static init of malloc_options. | Otto Moerbeek |
| 2018-11-23 | add a ssh_config "Match final" predicate | Damien Miller |
| 2018-07-27 | Now that ssh can't be setuid, remove the original_real_uid and | Darren Tucker |
| 2018-02-23 | Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) | Markus Friedl |
| 2018-02-07 | ssh_free checks for and handles NULL args, remove NULL checks from remaining | Darren Tucker |
| 2016-02-15 | Add a function to enable security-related malloc_options. With and ok | Darren Tucker |
| 2015-12-04 | implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth) | Markus Friedl |
| 2015-11-29 | pledge, better fatal() messages; feedback deraadt@ | Damien Miller |
| 2015-07-03 | add an XXX reminder for getting correct key paths from sshd_config | Damien Miller |
| 2015-03-24 | consistent check for NULL as noted by Nicholas Lemonias; ok djm@ | Markus Friedl |
| 2015-01-28 | update to new API (key_fingerprint => sshkey_fingerprint) | Damien Miller |
| 2015-01-15 | sync ssh-keysign, ssh-keygen and some dependencies to the new | Damien Miller |
| 2015-01-08 | deprecate key_load_private_pem() and sshkey_load_private_pem() | Damien Miller |
| 2014-12-21 | Add FingerprintHash option to control algorithm used for key | Damien Miller |
| 2014-10-08 | Tweak config reparsing with host canonicalisation | Damien Miller |
| 2014-04-29 | make compiling against OpenSSL optional (make OPENSSL=no); | Markus Friedl |
| 2014-04-19 | Delete futile calls to RAND_seed. ok djm | Ted Unangst |
| 2014-04-01 | include fingerprint of key not found | Damien Miller |
| 2013-12-06 | support ed25519 keys (hostkeys and user identities) using the public domain | Markus Friedl |
| 2013-10-14 | add a "Match" keyword to ssh_config that allows matching on hostname, | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2011-02-16 | make hostbased auth with ECDSA keys work correctly. Based on patch | Damien Miller |
| 2010-08-31 | reintroduce commit from tedu@, which I pulled out for release engineering: | Damien Miller |
| 2010-08-16 | backout previous temporarily; discussed with deraadt@ | Damien Miller |
| 2010-08-12 | OpenSSL_add_all_algorithms is the name of the function we have a man page | Ted Unangst |
| 2010-08-04 | clean for -Wuninitialized | Damien Miller |
| 2010-08-04 | enable certificates for hostbased authentication, from Iain Morgan; | Damien Miller |
| 2010-01-13 | Make HostBased authentication work with a ProxyCommand. bz #1569, patch | Darren Tucker |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-07-26 | move #include <stdlib.h> out of includes.h | Kevin Steves |
| 2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves |
| 2006-07-17 | move #include <unistd.h> out of includes.h | Kevin Steves |
| 2006-07-09 | move #include <fcntl.h> out of includes.h | Kevin Steves |
