dropbear

mirror of https://github.com/clearml/dropbear synced 2025-02-02 03:43:53 +00:00

Author	SHA1	Message	Date
Matt Johnston	9aeda4c5bd	piggyback data on acks when making connections on linux	2015-02-13 22:49:15 +08:00
Matt Johnston	8eb30c353a	debug should be off by default	2015-02-13 21:45:15 +08:00
Matt Johnston	c44a78a2e6	Tighten validation of DH values. Odds of x==0 being generated are improbable, roughly 2**-1023 Regression in 0.49	2015-02-10 21:46:19 +08:00
Matt Johnston	b6685bf806	twofish ctr modes	2015-02-04 22:12:06 +08:00
Matt Johnston	269d690e71	Added signature for changeset 1d2d81b1b7c1	2015-01-29 21:42:01 +08:00
Matt Johnston	4df268f10e	sha256	2015-01-28 22:58:52 +08:00
Matt Johnston	19b3f01477	bump version	2015-01-28 22:57:33 +08:00
Matt Johnston	86811f4765	Added tag DROPBEAR_2015.67 for changeset cbd674d63cd4	2015-01-28 22:55:27 +08:00
Matt Johnston	dd0352d93b	changelog for 2015.67	2015-01-28 22:54:23 +08:00
Matt Johnston	30ec18d938	merge	2015-01-28 22:49:40 +08:00
Matt Johnston	9d495ab2b5	changes for 2015.67	2015-01-28 22:49:28 +08:00
Matt Johnston	9174de47a9	Fix bad multi-statement define for m_free(), detected by Coverity	2015-01-28 22:43:01 +08:00
Christian Engelmayer	d857faf18e	When clearing the memory of 'key' in function openssh_read(), only the size of the pointer to the data instead of the whole size of struct openssh_key is cleared. Correct the size calculation as detected by Coverity CID 1191543.	2015-01-28 22:42:29 +08:00
Matt Johnston	d5c8ba1690	Initialise sa_mask	2015-01-28 22:33:34 +08:00
Matt Johnston	9bb9b4829d	Fix memory leak of ecdsa structure, found by Coverity	2015-01-28 22:29:18 +08:00
Matt Johnston	e25c297c3c	Document ~/.ssh/id_dropbear	2015-01-28 22:22:32 +08:00
Matt Johnston	4de876f259	Keep sha1 default	2015-01-28 22:14:07 +08:00
Elan Ruusamäe	b9073961f7	Allow configure with libtomcrypt/libtommath directories missing if using bundled libraries	2015-01-28 22:05:24 +08:00
Matt Johnston	a7a79d569a	Disable non-delayed zlib for server	2015-01-28 21:38:27 +08:00
Matt Johnston	6165f53fcd	Default client key path ~/.ssh/id_dropbear	2015-01-24 00:05:26 +08:00
Fedor Brunner	4122cac66b	Prefer stronger algorithms in algorithm negotiation. Prefer diffie-hellman-group14-sha1 (2048 bit) over diffie-hellman-group1-sha1 (1024 bit). Due to meet-in-the-middle attacks the effective key length of three key 3DES is 112 bits. AES is stronger and faster then 3DES. Prefer to delay the start of compression until after authentication has completed. This avoids exposing compression code to attacks from unauthenticated users. (github pull request #9)	2015-01-23 23:00:25 +08:00
Like Ma	a1dcebe4f4	Fix installing dropbear.8 error when building in a separate directory. (fix pull request #6)	2015-01-23 22:59:30 +08:00
Matt Johnston	6cbb23a819	Add config option to disable cbc. Disable twofish by default	2015-01-23 22:37:14 +08:00
Like Ma	5c57a31184	Fix variables may be uninitialized. (fixup of pull request #7)	2015-01-23 22:23:23 +08:00
Fedor Brunner	7b2c42aa75	Integrity error (bad packet size %u) negative length When corrupted packet is received negative length of packet is displayed. (re-apply of pull request #8)	2015-01-23 22:21:06 +08:00
Matt Johnston	1ed8d3938e	Enable sha2 HMACs by default, they're required for ecdsa already	2015-01-13 20:55:04 +08:00
Matt Johnston	b24984deb3	clear hash state memory after use	2015-01-04 23:10:59 +08:00
Matt Johnston	eabd9f5e60	clarify bad/unknown	2015-01-04 22:32:38 +08:00
Catalin Patulea	d4609682af	Handle invalid agent keys by skipping rather than exiting. My agent exposes both conventional keys and certs (ecdsa-sha2-nistp256-cert-v01@openssh.com) and I want dropbear to be able to use the former.	2015-01-01 17:47:46 -05:00
Matt Johnston	634415f79e	Open directories O_RDONLY for fsync, add debugging if it fails	2015-01-04 22:22:43 +08:00
Matt Johnston	4ba830fc31	Make sure hostkeys are flushed to disk to avoid empty files if the power fails. Based on patch from Peter Korsgaard	2014-11-08 22:15:16 +08:00
Matt Johnston	3022a46039	Added signature for changeset 2d421bc0545d	2014-10-23 22:09:46 +08:00
Matt Johnston	d9a868ff60	Added tag DROPBEAR_2014.66 for changeset 735511a4c761	2014-10-23 22:09:22 +08:00
Matt Johnston	c890a0c133	changelog, version number bump	2014-10-23 21:43:00 +08:00
Matt Johnston	9ec934a94a	Remove -o from scp help	2014-10-23 20:52:10 +08:00
Matt Johnston	5e606a964b	increae MAX_STRING_LEN for sun ssh	2014-10-23 20:50:06 +08:00
Steven Honeyman	d88034434c	Don't print "Failed loading hostkey" when -R delayed hostkey option is enabled	2014-10-22 07:12:52 +08:00
Matt Johnston	776d908703	Combine code for SSH_CONNECTION and SSH_CLIENT	2014-10-21 22:33:49 +08:00
Matt Johnston	444b15889f	Merge pull request #5 from rcleere/ssh_client Add SSH_CLIENT environment variable	2014-10-21 21:43:20 +08:00
Ryan Cleere	957450582f	Add SSH_CLIENT environment variable	2014-10-20 12:59:47 -05:00
Matt Johnston	6d2d3669f3	Make keepalive handling more robust, this should now match what OpenSSH does	2014-08-19 23:08:56 +08:00
Whoopie	1387654cc8	Fix wtmp, testing for wtmp.h and wtmpx.h doesn't make sense	2014-08-13 22:07:43 +08:00
Matt Johnston	10eb218fb0	Don't send SSH_MSG_UNIMPLEMENTED for keepalive responses	2014-08-13 21:48:47 +08:00
Matt Johnston	bfb2b30de6	Added signature for changeset caac692b366c	2014-08-08 21:53:47 +08:00
Matt Johnston	426d4d72c6	Added tag DROPBEAR_2014.65 for changeset e9579816f20e	2014-08-08 21:53:42 +08:00
Matt Johnston	cce29ba38c	2014.64	2014-08-08 21:40:42 +08:00
Mike Frysinger	ed2e276b3a	use xauth in /usr/bin Since the x.org rework, X has been installed into standard paths and not its own random prefixes. I think it's time we update the default paths accordingly.	2014-08-01 06:14:19 -04:00
Matt Johnston	12a020aa62	Don't warn about ENOTSOCK when setting priority	2014-08-06 22:16:38 +08:00
Matt Johnston	b969101b33	Be a bit safer in case pw_name doesn't exist	2014-08-06 22:10:57 +08:00
Matt Johnston	86a742f635	merge	2014-08-06 22:08:16 +08:00

... 4 5 6 7 8 ...

1150 Commits