![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.22 / (download) - annotate - [select for diffs], Tue Oct 10 03:57:45 2023 UTC (7 months, 1 week ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
HEAD
Changes since 1.21: +2 -1 lines
Diff to previous 1.21 (colored)
Reserve a range of "local extension" message numbers that OpenSSH promises not to use (comment change only)
Revision 1.21 / (download) - annotate - [select for diffs], Mon Aug 28 03:28:43 2023 UTC (8 months, 2 weeks ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.20: +5 -1 lines
Diff to previous 1.20 (colored)
Introduce a transport-level ping facility This adds a pair of SSH transport protocol messages SSH2_MSG_PING/PONG to implement a ping capability. These messages use numbers in the "local extensions" number space and are advertised using a "ping@openssh.com" ext-info message with a string version number of "0". ok markus@
Revision 1.20 / (download) - annotate - [select for diffs], Mon Aug 14 03:37:00 2023 UTC (9 months ago) by djm
Branch: MAIN
Changes since 1.19: +2 -1 lines
Diff to previous 1.19 (colored)
add message number of SSH2_MSG_NEWCOMPRESS defined in RFC8308
Revision 1.19 / (download) - annotate - [select for diffs], Thu Nov 19 23:05:05 2020 UTC (3 years, 5 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3,
OPENBSD_7_2_BASE,
OPENBSD_7_2,
OPENBSD_7_1_BASE,
OPENBSD_7_1,
OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.18: +2 -2 lines
Diff to previous 1.18 (colored)
draft-ietf-secsh-architecture is now RFC4251.
Revision 1.18 / (download) - annotate - [select for diffs], Wed May 4 14:22:33 2016 UTC (8 years ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7,
OPENBSD_6_6_BASE,
OPENBSD_6_6,
OPENBSD_6_5_BASE,
OPENBSD_6_5,
OPENBSD_6_4_BASE,
OPENBSD_6_4,
OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2,
OPENBSD_6_1_BASE,
OPENBSD_6_1,
OPENBSD_6_0_BASE,
OPENBSD_6_0
Changes since 1.17: +5 -1 lines
Diff to previous 1.17 (colored)
move SSH_MSG_NONE, so we don't have to include ssh1.h; ok deraadt@
Revision 1.17 / (download) - annotate - [select for diffs], Thu Jan 14 16:17:40 2016 UTC (8 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.16: +1 -8 lines
Diff to previous 1.16 (colored)
remove roaming support; ok djm@
Revision 1.16 / (download) - annotate - [select for diffs], Fri Dec 4 16:41:28 2015 UTC (8 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.15: +2 -1 lines
Diff to previous 1.15 (colored)
implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)
based on draft-rsa-dsa-sha2-256-03.txt and draft-ssh-ext-info-04.txt;
with & ok djm@
Revision 1.15 / (download) - annotate - [select for diffs], Wed Jan 29 06:18:35 2014 UTC (10 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8,
OPENBSD_5_7_BASE,
OPENBSD_5_7,
OPENBSD_5_6_BASE,
OPENBSD_5_6,
OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.14: +1 -7 lines
Diff to previous 1.14 (colored)
remove experimental, never-enabled JPAKE code; ok markus@
Revision 1.14 / (download) - annotate - [select for diffs], Tue Aug 31 11:54:45 2010 UTC (13 years, 8 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4,
OPENBSD_5_3_BASE,
OPENBSD_5_3,
OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0,
OPENBSD_4_9_BASE,
OPENBSD_4_9
Changes since 1.13: +5 -1 lines
Diff to previous 1.13 (colored)
Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer better performance than plain DH and DSA at the same equivalent symmetric key length, as well as much shorter keys. Only the mandatory sections of RFC5656 are implemented, specifically the three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and ECDSA. Point compression (optional in RFC5656 is NOT implemented). Certificate host and user keys using the new ECDSA key types are supported. Note that this code has not been tested for interoperability and may be subject to change. feedback and ok markus@
Revision 1.13 / (download) - annotate - [select for diffs], Fri Feb 26 20:29:54 2010 UTC (14 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7
Changes since 1.12: +4 -1 lines
Diff to previous 1.12 (colored)
Add support for certificate key types for users and hosts. OpenSSH certificate key types are not X.509 certificates, but a much simpler format that encodes a public key, identity information and some validity constraints and signs it with a CA key. CA keys are regular SSH keys. This certificate style avoids the attack surface of X.509 certificates and is very easy to deploy. Certified host keys allow automatic acceptance of new host keys when a CA certificate is marked as trusted in ~/.ssh/known_hosts. see VERIFYING HOST KEYS in ssh(1) for details. Certified user keys allow authentication of users when the signing CA key is marked as trusted in authorized_keys. See "AUTHORIZED_KEYS FILE FORMAT" in sshd(8) for details. Certificates are minted using ssh-keygen(1), documentation is in the "CERTIFICATES" section of that manpage. Documentation on the format of certificates is in the file PROTOCOL.certkeys feedback and ok markus@
Revision 1.12 / (download) - annotate - [select for diffs], Sat Oct 24 11:19:17 2009 UTC (14 years, 6 months ago) by andreas
Branch: MAIN
Changes since 1.11: +8 -1 lines
Diff to previous 1.11 (colored)
Define the KEX messages used when resuming a suspended connection. ok markus@
Revision 1.11 / (download) - annotate - [select for diffs], Tue Nov 4 08:22:13 2008 UTC (15 years, 6 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_6_BASE,
OPENBSD_4_6,
OPENBSD_4_5_BASE,
OPENBSD_4_5
Changes since 1.10: +8 -1 lines
Diff to previous 1.10 (colored)
Add support for an experimental zero-knowledge password authentication method using the J-PAKE protocol described in F. Hao, P. Ryan, "Password Authenticated Key Exchange by Juggling", 16th Workshop on Security Protocols, Cambridge, April 2008. This method allows password-based authentication without exposing the password to the server. Instead, the client and server exchange cryptographic proofs to demonstrate of knowledge of the password while revealing nothing useful to an attacker or compromised endpoint. This is experimental, work-in-progress code and is presently compiled-time disabled (turn on -DJPAKE in Makefile.inc). "just commit it. It isn't too intrusive." deraadt@
Revision 1.9.10.1 / (download) - annotate - [select for diffs], Fri Oct 6 03:19:33 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.9: +1 -1 lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
upgrade to OpenSSH 4.4
Revision 1.9.12.1 / (download) - annotate - [select for diffs], Sat Sep 30 04:06:51 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_9
Changes since 1.9: +1 -1 lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
upgrade to OpenSSH 4.4
Revision 1.10 / (download) - annotate - [select for diffs], Sat Mar 25 22:22:43 2006 UTC (18 years, 1 month ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_4_BASE,
OPENBSD_4_4,
OPENBSD_4_3_BASE,
OPENBSD_4_3,
OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1,
OPENBSD_4_0_BASE,
OPENBSD_4_0
Changes since 1.9: +1 -1 lines
Diff to previous 1.9 (colored)
standardise spacing in $OpenBSD$ tags; requested by deraadt@
Revision 1.8.6.2 / (download) - annotate - [select for diffs], Thu Mar 4 18:18:16 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.8.6.1: +0 -0 lines
Diff to previous 1.8.6.1 (colored) to branchpoint 1.8 (colored) next main 1.9 (colored)
upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8
Revision 1.8.4.1 / (download) - annotate - [select for diffs], Tue Sep 16 21:20:28 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_2
Changes since 1.8: +3 -1 lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
upgrade to OpenSSH 3.7
Revision 1.8.6.1 / (download) - annotate - [select for diffs], Tue Sep 16 20:50:44 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.8: +3 -1 lines
Diff to previous 1.8 (colored)
upgrade to OpenSSH 3.7
Revision 1.9 / (download) - annotate - [select for diffs], Wed May 14 00:52:59 2003 UTC (21 years ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE,
OPENBSD_3_8_BASE,
OPENBSD_3_7_BASE,
OPENBSD_3_7,
OPENBSD_3_6_BASE,
OPENBSD_3_6,
OPENBSD_3_5_BASE,
OPENBSD_3_5,
OPENBSD_3_4_BASE,
OPENBSD_3_4
Branch point for: OPENBSD_3_9,
OPENBSD_3_8
Changes since 1.8: +3 -1 lines
Diff to previous 1.8 (colored)
ranges for per auth method messages
Revision 1.6.2.1 / (download) - annotate - [select for diffs], Sat Mar 9 00:20:45 2002 UTC (22 years, 2 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.6: +17 -1 lines
Diff to previous 1.6 (colored) next main 1.7 (colored)
Merge OpenSSH 3.1, keeping /etc as configuration files directory. (i.e. OpenSSH 3.1 + openbsd29_3.1.patch)
Revision 1.5.2.3 / (download) - annotate - [select for diffs], Fri Mar 8 17:04:43 2002 UTC (22 years, 2 months ago) by brad
Branch: OPENBSD_2_8
Changes since 1.5.2.2: +17 -1 lines
Diff to previous 1.5.2.2 (colored) to branchpoint 1.5 (colored) next main 1.6 (colored)
Merge OpenSSH 3.1.
Revision 1.6.4.1 / (download) - annotate - [select for diffs], Thu Mar 7 17:37:47 2002 UTC (22 years, 2 months ago) by jason
Branch: OPENBSD_3_0
Changes since 1.6: +17 -1 lines
Diff to previous 1.6 (colored) next main 1.7 (colored)
Update to OpenSSH-3.1 on 3.0-stable branch
Revision 1.8 / (download) - annotate - [select for diffs], Mon Mar 4 17:27:39 2002 UTC (22 years, 2 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_3_BASE,
OPENBSD_3_2_BASE,
OPENBSD_3_1_BASE,
OPENBSD_3_1
Branch point for: OPENBSD_3_3,
OPENBSD_3_2
Changes since 1.7: +2 -1 lines
Diff to previous 1.7 (colored)
$OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c files. ok markus@
Revision 1.7 / (download) - annotate - [select for diffs], Fri Jan 11 13:36:43 2002 UTC (22 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.6: +16 -1 lines
Diff to previous 1.6 (colored)
add defines for msg type ranges
Revision 1.5.2.2 / (download) - annotate - [select for diffs], Thu Sep 27 00:15:43 2001 UTC (22 years, 7 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.5.2.1: +0 -0 lines
Diff to previous 1.5.2.1 (colored) to branchpoint 1.5 (colored)
Pull in OpenSSH 2.9.9 to the 2.8 branch.
Revision 1.5.2.1 / (download) - annotate - [select for diffs], Mon May 7 21:09:37 2001 UTC (23 years ago) by jason
Branch: OPENBSD_2_8
Changes since 1.5: +3 -2 lines
Diff to previous 1.5 (colored)
Pull in OpenSSH-2.9 to 2.8 branch.
Revision 1.6 / (download) - annotate - [select for diffs], Tue Mar 27 17:46:49 2001 UTC (23 years, 1 month ago) by provos
Branch: MAIN
CVS Tags: OPENBSD_3_0_BASE,
OPENBSD_2_9_BASE
Branch point for: OPENBSD_3_0,
OPENBSD_2_9
Changes since 1.5: +3 -2 lines
Diff to previous 1.5 (colored)
make dh group exchange more flexible, allow min and max group size, okay markus@, deraadt@
Revision 1.2.2.5 / (download) - annotate - [select for diffs], Wed Mar 21 18:53:14 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.2.2.4: +0 -0 lines
Diff to previous 1.2.2.4 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)
Pull in OpenSSH-2.5.2 for 2.7 branch.
Revision 1.2.2.4 / (download) - annotate - [select for diffs], Mon Mar 12 15:44:17 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.2.2.3: +0 -0 lines
Diff to previous 1.2.2.3 (colored) to branchpoint 1.2 (colored)
OpenSSH-2.5.1 for 2.7 patch branch
Revision 1.2.2.3 / (download) - annotate - [select for diffs], Wed Nov 8 21:31:27 2000 UTC (23 years, 6 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.2.2.2: +31 -1 lines
Diff to previous 1.2.2.2 (colored) to branchpoint 1.2 (colored)
openssh-2.3.0 (again) for 2.7 branch
Revision 1.5 / (download) - annotate - [select for diffs], Wed Oct 11 04:02:17 2000 UTC (23 years, 7 months ago) by provos
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE
Branch point for: OPENBSD_2_8
Changes since 1.4: +7 -1 lines
Diff to previous 1.4 (colored)
First rough implementation of the diffie-hellman group exchange. The client can ask the server for bigger groups to perform the diffie-hellman in, thus increasing the attack complexity when using ciphers with longer keys. University of Windsor provided network, T the company.
Revision 1.4 / (download) - annotate - [select for diffs], Thu Sep 7 20:27:54 2000 UTC (23 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.3: +25 -1 lines
Diff to previous 1.3 (colored)
cleanup copyright notices on all files. I have attempted to be accurate with the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate.
Revision 1.2.2.2 / (download) - annotate - [select for diffs], Fri Sep 1 18:23:24 2000 UTC (23 years, 8 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.2.2.1: +0 -0 lines
Diff to previous 1.2.2.1 (colored) to branchpoint 1.2 (colored)
Pull in the rest of openssh-2.2.0 to 2.7 branch (luvin' cvs...)
Revision 1.2.2.1 / (download) - annotate - [select for diffs], Mon Jun 12 02:37:37 2000 UTC (23 years, 11 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.2: +7 -1 lines
Diff to previous 1.2 (colored)
lovin' CVS... update patch branch to OpenSSH-2.1.1
Revision 1.3 / (download) - annotate - [select for diffs], Mon May 15 07:03:12 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.2: +7 -1 lines
Diff to previous 1.2 (colored)
draft-ietf-secsh-architecture-05.txt
Revision 1.2 / (download) - annotate - [select for diffs], Fri Apr 14 10:30:33 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE
Branch point for: OPENBSD_2_7
Changes since 1.1: +10 -10 lines
Diff to previous 1.1 (colored)
whitespace cleanup
Revision 1.1 / (download) - annotate - [select for diffs], Mon Mar 27 15:44:04 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
ssh2 message type codes