summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/sshd.c
AgeCommit message (Expand)Author
2019-06-21Add protection for private keys at rest in RAM against speculationDamien Miller
2019-06-06Replace calls to ssh_malloc_init() by a static init of malloc_options.Otto Moerbeek
2019-04-18When running sshd -T, assume any attibute not provided by -C does not match,Darren Tucker
2019-03-01Fix two race conditions in sshd relating to SIGHUP:Damien Miller
2019-01-21merge kexkem[cs] into kexgenDamien Miller
2019-01-21use KEM API for vanilla ECDHDamien Miller
2019-01-21use KEM API for vanilla DH KEXDamien Miller
2019-01-21use KEM API for vanilla c25519 KEXDamien Miller
2019-01-21Add support for a PQC KEX/KEM: sntrup4591761x25519-sha512@tinyssh.orgDamien Miller
2019-01-19remove last references to active_stateDamien Miller
2019-01-19convert monitor.c to new packet APIDamien Miller
2019-01-19convert sshd.c to new packet APIDamien Miller
2019-01-19convert auth2.c to new packet APIDamien Miller
2019-01-19convert servconf.c to new packet APIDamien Miller
2019-01-19begin landing remaining refactoring of packet parsing API, startedDamien Miller
2019-01-17many of the global variables in this file can be made static;Damien Miller
2018-12-27move client/server SSH-* banners to buffers under ssh->kex and factorDamien Miller
2018-11-19silence (to log level debug2) failure messages when loading the defaultDamien Miller
2018-11-16use path_absolute() for pathname checks; from Manoj AmpalamDamien Miller
2018-10-23refer to OpenSSL not SSLeay;Damien Miller
2018-09-21when compiled with GSSAPI support, cache supported method OIDs byDamien Miller
2018-09-13hold our collective noses and use the openssl-1.1.x API in OpenSSH;Damien Miller
2018-08-13revert compat.[ch] section of the following change. It causesDamien Miller
2018-07-31fix some memory leaks spotted by Coverity via Jakub Jelen in bz#2366Damien Miller
2018-07-11remove legacy key emulation layer; ok djm@Markus Friedl
2018-07-09sshd: switch config to sshbuf API; ok djm@Markus Friedl
2018-07-09sshd: switch loginmsg to sshbuf API; ok djm@Markus Friedl
2018-07-03Improve strictness and control over RSA-SHA2 signature types:Damien Miller
2018-04-13Defend against user enumeration timing attacks.Darren Tucker
2018-04-10lots of typos in comments/docs. Patch from Karsten Weiss after checkingDamien Miller
2018-03-03switch over to the new authorized_keys options API and remove theDamien Miller
2018-02-23Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures)Markus Friedl
2018-02-11Don't reset signal handlers inside handlers.Darren Tucker
2018-01-23Fix a logic bug in sshd_exchange_identification which prevented clientsStefan Sperling
2018-01-23Drop compatibility hacks for some ancient SSH implementations, includingDamien Miller
2018-01-23unbreak support for clients that advertise a protocol versionDamien Miller
2018-01-23avoid modifying pw->pw_passwd; let endpwent() clean up for us, butDamien Miller
2017-11-14fix problem in configuration parsing when in config dump mode (sshd -T)Damien Miller
2017-11-03When doing a config test with sshd -T, only require the attributesDarren Tucker
2017-10-27improve printing of rdomain on accept() a littleDamien Miller
2017-10-25add a "rdomain" criteria for the sshd_config Match keyword to allowDamien Miller
2017-10-25add sshd_config RDomain keyword to place sshd and the subsequentDamien Miller
2017-10-25Add optional rdomain qualifier to sshd_config's ListenAddress optionDamien Miller
2017-10-05replace statically-sized arrays in ServerOptions with dynamic onesDamien Miller
2017-09-12refactor channels.cDamien Miller
2017-07-01remove post-SSHv1 removal dead code from rsa.c and merge theDamien Miller
2017-05-31clear session keys from memory; ok djm@Markus Friedl
2017-05-31remove now obsolete ctx from ssh_dispatch_run; ok djm@Markus Friedl
2017-05-30switch from Key typedef with struct sshkey; ok djm@Markus Friedl
2017-04-30remove KEY_RSA1Damien Miller