![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh / ssh-keysign
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.21 / (download) - annotate - [select for diffs], Fri Apr 3 02:26:56 2020 UTC (4 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
OPENBSD_7_4_BASE,
OPENBSD_7_4,
OPENBSD_7_3_BASE,
OPENBSD_7_3,
OPENBSD_7_2_BASE,
OPENBSD_7_2,
OPENBSD_7_1_BASE,
OPENBSD_7_1,
OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9,
OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7,
HEAD
Changes since 1.20: +2 -2 lines
Diff to previous 1.20 (colored)
give ssh-keygen the ability to dump the contents of a binary key revocation list: ssh-keygen -lQf /path bz#3132; ok dtucker
Revision 1.20 / (download) - annotate - [select for diffs], Sat Jan 25 23:02:14 2020 UTC (4 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.19: +2 -2 lines
Diff to previous 1.19 (colored)
factor out reading/writing sshbufs to dedicated functions; feedback and ok markus@
Revision 1.19 / (download) - annotate - [select for diffs], Thu Jan 23 10:24:30 2020 UTC (4 years, 4 months ago) by dtucker
Branch: MAIN
Changes since 1.18: +8 -3 lines
Diff to previous 1.18 (colored)
Make zlib optional. This adds a "ZLIB" build time option that allows building without zlib compression and associated options. With feedback from markus@, ok djm@
Revision 1.18 / (download) - annotate - [select for diffs], Fri Dec 13 19:09:10 2019 UTC (4 years, 5 months ago) by djm
Branch: MAIN
Changes since 1.17: +3 -6 lines
Diff to previous 1.17 (colored)
use ssh-sk-helper for all security key signing operations This extracts and refactors the client interface for ssh-sk-helper from ssh-agent and generalises it for use by the other programs. This means that most OpenSSH tools no longer need to link against libfido2 or directly interact with /dev/uhid* requested by, feedback and ok markus@
Revision 1.17 / (download) - annotate - [select for diffs], Thu Nov 14 21:27:31 2019 UTC (4 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.16: +4 -1 lines
Diff to previous 1.16 (colored)
directly support U2F/FIDO2 security keys in OpenSSH by linking against the (previously external) USB HID middleware. The dlopen() capability still exists for alternate middlewares, e.g. for Bluetooth, NFC and test/debugging.
Revision 1.16 / (download) - annotate - [select for diffs], Thu Dec 27 03:25:24 2018 UTC (5 years, 5 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6,
OPENBSD_6_5_BASE,
OPENBSD_6_5
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored)
move client/server SSH-* banners to buffers under ssh->kex and factor out the banner exchange. This eliminates some common code from the client and server. Also be more strict about handling \r characters - these should only be accepted immediately before \n (pointed out by Jann Horn). Inspired by a patch from Markus Schmidt. (lots of) feedback and ok markus@
Revision 1.15 / (download) - annotate - [select for diffs], Wed Jul 25 17:12:35 2018 UTC (5 years, 10 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.14: +2 -3 lines
Diff to previous 1.14 (colored)
Don't redefine Makefile choices which come correct from bsd.*.mk ok markus
Revision 1.14 / (download) - annotate - [select for diffs], Wed Jul 18 11:34:05 2018 UTC (5 years, 10 months ago) by dtucker
Branch: MAIN
Changes since 1.13: +2 -1 lines
Diff to previous 1.13 (colored)
Remove support for running ssh(1) setuid and fatal if attempted. Do not link uidwap.c into ssh any more. Neuters UsePrivilegedPort, which will be marked as deprecated shortly. ok markus@ djm@
Revision 1.13 / (download) - annotate - [select for diffs], Mon Jan 8 15:37:38 2018 UTC (6 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3
Changes since 1.12: +4 -10 lines
Diff to previous 1.12 (colored)
group shared source files (e.g. SRCS_KEX) and allow compilation w/o OPENSSL ok djm@
Revision 1.12 / (download) - annotate - [select for diffs], Thu Dec 14 21:07:39 2017 UTC (6 years, 5 months ago) by naddy
Branch: MAIN
Changes since 1.11: +2 -2 lines
Diff to previous 1.11 (colored)
Replace ED25519's private SHA-512 implementation with a call to the regular digest code. This speeds up compilation considerably. ok markus@
Revision 1.11 / (download) - annotate - [select for diffs], Tue Dec 12 15:06:12 2017 UTC (6 years, 5 months ago) by naddy
Branch: MAIN
Changes since 1.10: +1 -10 lines
Diff to previous 1.10 (colored)
Create a persistent umac128.c source file: #define the output size and the name of the entry points for UMAC-128 before including umac.c. Idea from FreeBSD. ok dtucker@
Revision 1.10 / (download) - annotate - [select for diffs], Sun Dec 10 19:37:57 2017 UTC (6 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.9: +20 -3 lines
Diff to previous 1.9 (colored)
ssh/lib hasn't worked towards our code-sharing goals for a quit while, perhaps it is too verbose? Change each */Makefile to specifying exactly what sources that program requires, compiling it seperate. Maybe we'll iterate by sorting those into seperatable chunks, splitting up files which contain common code + server/client specific code, or whatnot. But this isn't one step, or we'd have done it a long time ago.. ok dtucker markus djm
Revision 1.9 / (download) - annotate - [select for diffs], Thu Jan 14 16:17:40 2016 UTC (8 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE,
OPENBSD_6_2,
OPENBSD_6_1_BASE,
OPENBSD_6_1,
OPENBSD_6_0_BASE,
OPENBSD_6_0,
OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.8: +2 -2 lines
Diff to previous 1.8 (colored)
remove roaming support; ok djm@
Revision 1.8 / (download) - annotate - [select for diffs], Tue Jul 2 13:32:38 2013 UTC (10 years, 11 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8,
OPENBSD_5_7_BASE,
OPENBSD_5_7,
OPENBSD_5_6_BASE,
OPENBSD_5_6,
OPENBSD_5_5_BASE,
OPENBSD_5_5,
OPENBSD_5_4_BASE,
OPENBSD_5_4
Changes since 1.7: +2 -2 lines
Diff to previous 1.7 (colored)
add missing library dependencies
Revision 1.7 / (download) - annotate - [select for diffs], Thu May 16 09:12:31 2013 UTC (11 years ago) by dtucker
Branch: MAIN
Changes since 1.6: +2 -2 lines
Diff to previous 1.6 (colored)
switch RekeyLimit traffic volume parsing to scan_scaled. ok djm@
Revision 1.6 / (download) - annotate - [select for diffs], Thu May 28 16:50:16 2009 UTC (15 years ago) by andreas
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE,
OPENBSD_5_3,
OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0,
OPENBSD_4_9_BASE,
OPENBSD_4_9,
OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7,
OPENBSD_4_6_BASE,
OPENBSD_4_6
Changes since 1.5: +2 -2 lines
Diff to previous 1.5 (colored)
Keep track of number of bytes read and written. Needed for upcoming changes. Most code from Martin Forssen, maf at appgate dot com. ok markus@
Revision 1.3.2.2 / (download) - annotate - [select for diffs], Fri Oct 11 14:53:11 2002 UTC (21 years, 8 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.3.2.1: +2 -2 lines
Diff to previous 1.3.2.1 (colored) next main 1.4 (colored)
Update to OpenSSH 3.5
Revision 1.3.4.2 / (download) - annotate - [select for diffs], Fri Oct 11 14:51:57 2002 UTC (21 years, 8 months ago) by miod
Branch: OPENBSD_3_1
Changes since 1.3.4.1: +2 -2 lines
Diff to previous 1.3.4.1 (colored) next main 1.4 (colored)
Update to OpenSSH 3.5
Revision 1.5 / (download) - annotate - [select for diffs], Wed Jul 3 14:21:05 2002 UTC (21 years, 11 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_5_BASE,
OPENBSD_4_5,
OPENBSD_4_4_BASE,
OPENBSD_4_4,
OPENBSD_4_3_BASE,
OPENBSD_4_3,
OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1,
OPENBSD_4_0_BASE,
OPENBSD_4_0,
OPENBSD_3_9_BASE,
OPENBSD_3_9,
OPENBSD_3_8_BASE,
OPENBSD_3_8,
OPENBSD_3_7_BASE,
OPENBSD_3_7,
OPENBSD_3_6_BASE,
OPENBSD_3_6,
OPENBSD_3_5_BASE,
OPENBSD_3_5,
OPENBSD_3_4_BASE,
OPENBSD_3_4,
OPENBSD_3_3_BASE,
OPENBSD_3_3,
OPENBSD_3_2_BASE,
OPENBSD_3_2
Changes since 1.4: +3 -3 lines
Diff to previous 1.4 (colored)
re-enable ssh-keysign's sbit, but make ssh-keysign read /etc/ssh/ssh_config and exit if HostbasedAuthentication is disabled globally. based on discussions with deraadt, itojun and sommerfeld; ok itojun@
Revision 1.4 / (download) - annotate - [select for diffs], Mon Jul 1 08:05:48 2002 UTC (21 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.3: +2 -2 lines
Diff to previous 1.3 (colored)
disable ssh-keysign for now (no sbit); netbsd via itojun
Revision 1.3.4.1 / (download) - annotate - [select for diffs], Wed Jun 26 15:30:39 2002 UTC (21 years, 11 months ago) by jason
Branch: OPENBSD_3_1
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)
Pull in OpenSSH-3.4
Revision 1.3.2.1 / (download) - annotate - [select for diffs], Sat Jun 22 07:23:42 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)
New tool from OpenSSH 3.3.
Revision 1.3 / (download) - annotate - [select for diffs], Fri May 31 10:30:33 2002 UTC (22 years ago) by markus
Branch: MAIN
Branch point for: OPENBSD_3_1,
OPENBSD_3_0
Changes since 1.2: +3 -3 lines
Diff to previous 1.2 (colored)
extent ssh-keysign protocol: pass # of socket-fd to ssh-keysign, keysign verfies locally used ip-address using this socket-fd, restricts fake local hostnames to actual local hostnames; ok stevesk@
Revision 1.2 / (download) - annotate - [select for diffs], Sat May 25 08:16:59 2002 UTC (22 years ago) by markus
Branch: MAIN
Changes since 1.1: +2 -2 lines
Diff to previous 1.1 (colored)
first version of ssh-keysign manpage, ok deraadt@
Revision 1.1 / (download) - annotate - [select for diffs], Thu May 23 19:24:31 2002 UTC (22 years ago) by markus
Branch: MAIN
add /usr/libexec/ssh-keysign: a setuid helper program for hostbased authentication in protocol v2 (needs to access the hostkeys).