| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-09-11 | mention RFC 5656 for ECC stuff | Damien Miller | |
| 2010-09-11 | Ugh. Pass the right type into tty_term_has. Teaches me to make last | Nicholas Marriott | |
| minute changes :-/. | |||
| 2010-09-11 | Use UTF-8 line drawing characters on UTF-8 terminals. Fixes some stupid | Nicholas Marriott | |
| terminals (I'm looking at you, putty) which disable the vt100 ACS mode switching sequences in UTF-8 mode. Also on terminals without ACS at all, use ASCII equivalents where obvious. | |||
| 2010-09-11 | Ignore terminal overrides settings without a value. | Nicholas Marriott | |
| 2010-09-11 | When resizing the copy mode screen, don't allow it to end up with the | Nicholas Marriott | |
| viewable position beyond the size of the history. | |||
| 2010-09-11 | Fixed typo. | Tobias Stoeckmann | |
| ok ray, zinovik | |||
| 2010-09-10 | * mention ECDSA in more places | Christian Weisgerber | |
| * less repetition in FILES section * SSHv1 keys are still encrypted with 3DES help and ok jmc@ | |||
| 2010-09-10 | fix ident | Damien Miller | |
| 2010-09-09 | nessesary -> necessary. | Miod Vallat | |
| 2010-09-09 | ECDH/ECDSA compliance fix: these methods vary the hash function they use | Damien Miller | |
| (SHA256/384/512) depending on the length of the curve in use. The previous code incorrectly used SHA256 in all cases. This fix will cause authentication failure when using 384 or 521-bit curve keys if one peer hasn't been upgraded and the other has. (256-bit curve keys work ok). In particular you may need to specify HostkeyAlgorithms when connecting to a server that has not been upgraded from an upgraded client. ok naddy@ | |||
| 2010-09-08 | aucat: getpwnam: No such file or directory | Theo de Raadt | |
| is not a proper error message. | |||
| 2010-09-08 | Add -n and -p flags to switch-client to move to the next and previous | Nicholas Marriott | |
| session (yes, it doesn't match window/pane, but so what, nor does switch-client). Based on a diff long ago from "edsouza". | |||
| 2010-09-08 | Improve buf.c comments, from zinovik. | Nicholas Marriott | |
| ok stsp | |||
| 2010-09-08 | Do not crash if the screen size is too small for the indicator in copy mode. | Nicholas Marriott | |
| 2010-09-08 | Set rcs_suffixes to default value on initialization. | Tobias Stoeckmann | |
| ok ray zinovik | |||
| 2010-09-08 | Use SIZE_LEFT macro to determine left size instead of calculating with | Tobias Stoeckmann | |
| pointers. ok zinovik | |||
| 2010-09-08 | work around name-space collisions some buggy compilers (looking at you | Theo de Raadt | |
| gcc, at least in earlier versions, but this does not forgive your current transgressions) seen between zlib and openssl ok djm | |||
| 2010-09-08 | typo | Damien Miller | |
| 2010-09-07 | Remove stray spaces. No code change. | Marco Peereboom | |
| 2010-09-06 | add ssh_host_ecdsa_key to /etc; from Mattieu Baptiste <mattieu.b@gmail.com> | Christian Weisgerber | |
| ok deraadt@ | |||
| 2010-09-06 | decl before code for compiler compatibility | Theo de Raadt | |
| 2010-09-06 | fix an off by one found by parfait | Jonathan Gray | |
| ok schwarze@ and kristaps | |||
| 2010-09-04 | two more EXIT STATUS sections; | Jason McIntyre | |
| 2010-09-03 | add EXIT STATUS (these two were hiding...); | Jason McIntyre | |
| 2010-09-03 | add an EXIT STATUS section for /usr/bin; | Jason McIntyre | |
| 2010-09-03 | zap trailing whitespace; | Jason McIntyre | |
| 2010-09-03 | Make 'file' an argument in -f description. | lum | |
| ok jmc@ | |||
| 2010-09-03 | Rename RCSNUM's fd to rf_fd, complies to other variable names and | Tobias Stoeckmann | |
| OpenRCS. ok xsa, zinovik | |||
| 2010-09-03 | Make second parameter of poll() the correct type. Removes compile warning. | lum | |
| advice and ok martynas@ | |||
| 2010-09-02 | Switch ECDSA default key size to 256 bits, which according to RFC5656 | Christian Weisgerber | |
| should still be better than our current RSA-2048 default. ok djm@, markus@ | |||
| 2010-09-02 | unbreak ControlPersist=yes for ControlMaster=yes; ok djm@ | Markus Friedl | |
| 2010-09-02 | permit -b 256, 384 or 521 as key size for ECDSA; ok djm@ | Markus Friedl | |
| 2010-09-02 | remove trailing whitespace. | Igor Sobrado | |
| 2010-09-02 | rcsnum_parse() allocates already an RCSNUM struct, so it's not needed to | Tobias Stoeckmann | |
| copy it into a newly allocated one (which is even a memory leak). ok zinovik | |||
| 2010-09-01 | prefer ECDH in a 256 bit curve field; prompted by naddy@ | Damien Miller | |
| 2010-09-01 | Simplify xterm modifier detection by treating as a bitmask + 1. Spotted | Nicholas Marriott | |
| by and diff from Emanuele Giaquinta. | |||
| 2010-09-01 | Reset running jobs when the status line is enabled or disabled as well, | Nicholas Marriott | |
| some people have it bound to a key. | |||
| 2010-09-01 | pick up ECDSA host key by default; ok djm@ | Christian Weisgerber | |
| 2010-09-01 | Oracle has re-licensed sunrpc under a three-clause BSD license. | Todd C. Miller | |
| Update our sources appropriately. OK deraadt@ jsg@ | |||
| 2010-09-01 | Remove unused variable: linkfail | lum | |
| ok gilles@ | |||
| 2010-08-31 | Add missing prototype. | Nicholas Marriott | |
| 2010-08-31 | small text tweak to accommodate previous; | Jason McIntyre | |
| 2010-08-31 | style | Tobias Stoeckmann | |
| 2010-08-31 | Removed ra_uid, which was supposed to save the uid of a delta's author. | Tobias Stoeckmann | |
| Is not used and not useful. ok xsa, zinovik | |||
| 2010-08-31 | fix some macro abuse; | Jason McIntyre | |
| 2010-08-31 | reintroduce commit from tedu@, which I pulled out for release engineering: | Damien Miller | |
| OpenSSL_add_all_algorithms is the name of the function we have a man page for, so use that. ok djm | |||
| 2010-08-31 | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and | Damien Miller | |
| host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer better performance than plain DH and DSA at the same equivalent symmetric key length, as well as much shorter keys. Only the mandatory sections of RFC5656 are implemented, specifically the three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and ECDSA. Point compression (optional in RFC5656 is NOT implemented). Certificate host and user keys using the new ECDSA key types are supported. Note that this code has not been tested for interoperability and may be subject to change. feedback and ok markus@ | |||
| 2010-08-31 | Add buffer_get_cstring() and related functions that verify that the | Damien Miller | |
| string extracted from the buffer contains no embedded \0 characters* This prevents random (possibly malicious) crap from being appended to strings where it would not be noticed if the string is used with a string(3) function. Use the new API in a few sensitive places. * actually, we allow a single one at the end of the string for now because we don't know how many deployed implementations get this wrong, but don't count on this to remain indefinitely. | |||
| 2010-08-26 | sys/param.h is for kernel interface programs. | Theo de Raadt | |
| sys/types.h is the file you want to include. | |||
| 2010-08-25 | don't free proxyurl and cookie twice in the location code; with halex@ | Martynas Venckus | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |