summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/sshkey.c
AgeCommit message (Expand)Author
2019-01-21Make sshpkt_get_bignum2() allocate the bignum it is parsing ratherDamien Miller
2018-10-11typo in plain RSA algorithm counterpart names for certificates;Damien Miller
2018-10-09Treat all PEM_read_bio_PrivateKey() errors when a passphrase is specifiedDamien Miller
2018-09-14garbage-collect moribund ssh_new_private() API.Damien Miller
2018-09-13hold our collective noses and use the openssl-1.1.x API in OpenSSH;Damien Miller
2018-09-12add sshkey_check_cert_sigtype() that checks a cert->signature_typeDamien Miller
2018-09-12add cert->signature_type field and keep it in sync with certificateDamien Miller
2018-07-03some finesse to fix RSA-SHA2 certificate authentication for certsDamien Miller
2018-07-03Improve strictness and control over RSA-SHA2 signature types:Damien Miller
2018-03-22ssh/xmss: fix deserialize for certs; ok djm@Markus Friedl
2018-03-02refactor sshkey_read() to make it a little more, err, readable.Damien Miller
2018-02-23Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures)Markus Friedl
2018-02-14Some obvious freezero() conversions.Joel Sing
2018-02-07Remove all guards for calls to OpenSSL free functions - all of theseJoel Sing
2017-12-18pass negotiated signing algorithm though to sshkey_verify() andDamien Miller
2017-12-18sshkey_sigtype() function to return the type of a signature;Damien Miller
2017-10-13BIO_get_mem_data() is supposed to take a char* as pointer argument,Damien Miller
2017-08-12Switch from aes256-cbc to aes256-ctr for encrypting new-styleDamien Miller
2017-07-19fix support for unknown key types; ok djm@Markus Friedl
2017-07-01remove post-SSHv1 removal dead code from rsa.c and merge theDamien Miller
2017-06-28Allow ssh-keygen to use a key held in ssh-agent as a CA when signingDamien Miller
2017-06-09better translate libcrypto errors by looking deeper in the accursedDamien Miller
2017-05-31Switch to recallocarray() for a few operations. Both growth and shrinkageTheo de Raadt
2017-05-08make requesting bad ECDSA bits yield the same error (SSH_ERR_KEY_LENGTH)Damien Miller
2017-05-07Refuse RSA keys <1024 bits in length. Improve reporting for keys thatDamien Miller
2017-04-30remove KEY_RSA1Damien Miller
2017-04-30remove SSHv1 ciphers; ok markus@Damien Miller
2017-04-30unifdef WITH_SSH1Damien Miller
2017-03-10fix regression in 7.4 server-sig-algs, where we were accidentallyDamien Miller
2017-03-10Check for NULL argument to sshkey_read. Patch from jjelen at redhat.comDarren Tucker
2017-02-17ifdef out "rsa1" from the list of supported keytypes when compiled withoutDarren Tucker
2017-02-10bring back r1.34 that was backed out for problems loading public keys:Damien Miller
2016-10-24Remove dead breaks, found via opencoverage.net. ok deraadt@Darren Tucker
2016-10-04add a comment about implicitly-expected checks toDamien Miller
2016-09-26Avoid a theoretical signed integer overflow should BN_num_bytes()Damien Miller
2016-09-12list all supported signature algorithms in the server-sig-algsDamien Miller
2016-09-12Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitionsTheo de Raadt
2016-08-03small refactor of cipher.c: make ciphercontext opaque to callersDamien Miller
2016-06-19revert 1.34; causes problems loading public keysDamien Miller
2016-06-17translate OpenSSL error codes to something more meaninful;Damien Miller
2016-05-02support SHA256 and SHA512 RSA signatures in certificates;Damien Miller
2016-04-09make private key loading functions consistently handle NULLDamien Miller
2015-12-11Remove NULL-checks before sshbuf_free().mmcc
2015-12-11Remove NULL-checks before sshkey_free().mmcc
2015-12-10Remove NULL-checks before free().mmcc
2015-12-04implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)Markus Friedl
2015-11-19move the certificate validity formatting code to sshkey.[ch]Damien Miller
2015-11-16Replace remaining calls to index(3) with strchr(3). OK jca@ krw@Todd C. Miller
2015-11-16improve sshkey_read() semantics; only update *cpp when a keyDamien Miller
2015-10-15argument to sshkey_from_private() and sshkey_demote() can't be NULLDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-04 17:26:06 +0000