Commit Graph

Select branches

Hide Pull Requests

coverity

maemo

main

master

matt-sk

DROPBEAR_0.44

DROPBEAR_0.44test1

DROPBEAR_0.44test2

DROPBEAR_0.44test3

DROPBEAR_0.44test4

DROPBEAR_0.45

DROPBEAR_0.46

DROPBEAR_0.47

DROPBEAR_0.48

DROPBEAR_0.48.1

DROPBEAR_0.49

DROPBEAR_0.50

DROPBEAR_0.51

DROPBEAR_0.52

DROPBEAR_0.53

DROPBEAR_0.53.1

DROPBEAR_2011.54

DROPBEAR_2012.55

DROPBEAR_2013.56

DROPBEAR_2013.57

DROPBEAR_2013.58

DROPBEAR_2013.59

DROPBEAR_2013.60

DROPBEAR_2013.61test

DROPBEAR_2013.62

DROPBEAR_2014.63

DROPBEAR_2014.64

DROPBEAR_2014.65

DROPBEAR_2014.66

DROPBEAR_2015.67

DROPBEAR_2015.68

DROPBEAR_2015.69

DROPBEAR_2015.70

DROPBEAR_2015.71

DROPBEAR_2016.72

DROPBEAR_2016.73

DROPBEAR_2016.74

DROPBEAR_2017.75

DROPBEAR_2018.76

DROPBEAR_2019.77

DROPBEAR_2019.78

DROPBEAR_2020.79

DROPBEAR_2020.80

DROPBEAR_2020.81

DROPBEAR_2022.82

DROPBEAR_2022.83

DROPBEAR_CLEARML_2023.02

DROPBEAR_CLEARML_2024.86

LTC_1.05

LTC_DB_0.44

LTC_DB_0.46

LTC_DB_0.47

LTM_0.35

LTM_DB_0.44

LTM_DB_0.46

LTM_DB_0.47

libtomcrypt-1.05

libtomcrypt-1.16

libtommath-0.35

libtommath-0.40

ltm-0.30-orig

maemo-0.52-2

sync_DROPBEAR_2024.86

Mono Color

• e55e468754 Fix segfault when /dev/urandom isn't writable Matt Johnston 2013-04-02 18:53:18 +08:00
• ff2aa20565 Be a bit more careful about when we want to use CLI_AUTH_IMMEDIATE Matt Johnston 2013-04-02 00:11:53 +08:00
• 90b5691183 Run the cleanup handler also when we close due to TCP connection being closed Matt Johnston 2013-04-01 22:26:55 +08:00
• 5af0d33164 Try password before interactive - bit of a hack Matt Johnston 2013-04-01 22:26:24 +08:00
• e5072c6b12 merge from head roundtrip changes Matt Johnston 2013-04-01 00:13:41 +08:00
• 90cf7f012c Move the more verbose TRACE() statements into TRACE2() Matt Johnston 2013-04-01 00:07:26 +08:00
• 484516da51 Send an auth packet straight away, save another roundtrip Matt Johnston 2013-03-31 23:48:25 +08:00
• 5abe22d1a5 Fix incorrect logic for USE_VFORK and calling arg_setup() Matt Johnston 2013-03-31 23:29:03 +08:00
• f6b304250b Try using writev() for writing packets out to tcp Matt Johnston 2013-03-31 23:15:35 +08:00
• 36526700a9 Don't bother waiting for a ssh-connection service reply - the server will disconnect if it wasn't accepted Matt Johnston 2013-03-31 21:38:17 +08:00
• 32294978a3 merge Matt Johnston 2013-03-31 00:41:15 +08:00
• a0e931005b send out our kexinit packet before blocking to read the SSH version string Matt Johnston 2013-03-31 00:40:00 +08:00
• 9c7485331a Get rid of client/server specific buf_match_algo, use single function with a couple of if statements instead Matt Johnston 2013-03-30 23:55:05 +08:00
• 99d9cf500b Add kexguess2 behaviour Matt Johnston 2013-03-29 23:29:48 +08:00
• 4f62da0f0d first_kex_packet_follows working, needs tidying Matt Johnston 2013-03-29 20:44:13 +08:00
• b4bcc60657 More changes for KEX and ECDH. Set up hash descriptors, make ECC code work, ses.hash and ses.session_id are now buffers (doesn't compile) Matt Johnston 2013-03-29 00:28:09 +08:00
• 5139bd42f6 Set LTC_SOURCE for proper ltm_desc etc Matt Johnston 2013-03-29 00:26:46 +08:00
• cf7a271f90 ecc key import function Matt Johnston 2013-03-27 23:50:52 +08:00
• 74cad1612f more bits on ecc branch Matt Johnston 2013-03-27 00:38:03 +08:00
• 73e22c115c refactor kexdh code a bit, start working on ecdh etc Matt Johnston 2013-03-26 01:35:22 +08:00
• 9be0d6b53d Define _GNU_SOURCE for vasprintf Matt Johnston 2013-03-24 00:02:20 +08:00
• bbf6d5f2f5 rename configure.in -> configure.ac Mike Frysinger 2013-03-24 00:00:39 +08:00
• c4861340e9 Fix a few compile warnings Matt Johnston 2013-03-23 23:17:01 +08:00
• 5996c3824c Add ~. and ~^Z handling to exit/suspend dbclient Matt Johnston 2013-03-23 23:16:06 +08:00
• c172fb3b32 Added signature for changeset 9b80981212fe Matt Johnston 2013-03-21 23:35:07 +08:00
• 03a0d11c4d Added tag DROPBEAR_2013.56 for changeset 1b8b2b9d6e94 Matt Johnston 2013-03-21 23:33:12 +08:00
• 156e0187bf Forgot date in CHANGES DROPBEAR_2013.56 Matt Johnston 2013-03-21 23:29:04 +08:00
• fcaaa7b4c2 2013.56 changelog Matt Johnston 2013-03-21 23:19:06 +08:00
• 2f098325f8 update text about authorized_keys options Matt Johnston 2013-03-21 23:11:16 +08:00
• 9dc30fbd2a Add URL to usage text Matt Johnston 2013-03-21 23:10:47 +08:00
• 024d268d8c Make hmac-sha2-256 and hmac-sha2-512 work Matt Johnston 2013-03-21 22:55:12 +08:00
• eaa737fecd Make sure "struct timeval" is initialised on OS X to avoid valgrind warnings Matt Johnston 2013-03-21 21:23:34 +08:00
• 845ad0be39 Fix "-c none" so that it allows aes during authentication Default for options.h shouldn't allow "none" Matt Johnston 2013-03-20 23:52:49 +08:00
• 2259ce4cdf Fix "-m none" case and ugly typo Matt Johnston 2013-03-20 23:13:45 +08:00
• 34f9b2a8f7 Fix "-m none" case where an entire packet fits in a block and can be read by read_packet_init() Matt Johnston 2013-03-20 23:13:19 +08:00
• d37dcc636f Merge "none" cipher/MAC branch. Also adds sha256 and sha512 Matt Johnston 2013-03-20 22:41:07 +08:00
• 804a1e69f2 use an empty writebuf rather than a NULL one Matt Johnston 2013-03-20 22:31:07 +08:00
• f7b1222073 document a few more changes Matt Johnston 2013-03-20 00:05:19 +08:00
• 4fd4fbc255 Fix memory leak when direct TCP connections time out on connection. Long-standing bug probably stemming from the awkwardly named delete_channel() versus remove_channel() Matt Johnston 2013-03-19 23:54:32 +08:00
• 8393c5f016 Allow specifying server "-p" options with ipv6 bracket notation, patch from Ben Jencks Matt Johnston 2013-03-19 20:55:11 +08:00
• 5ff341206e Android returns NULL for pw_crypt, set it to something else Matt Johnston 2013-03-19 20:15:44 +08:00
• da59afe798 ignore I_PUSH if it isn't defined, for Android from Reimar Döffinger Matt Johnston 2013-03-19 20:12:19 +08:00
• 6270ed2f8a Fix compat basename() to handle paths with no slashes. Thanks to Frank Teo Matt Johnston 2013-03-19 20:04:55 +08:00
• 80e77b5e6d Include /proc/vmstat as another random source Matt Johnston 2013-03-19 19:47:29 +08:00
• 58c7d4474c link to Dropbear webpage Matt Johnston 2013-03-19 19:43:47 +08:00
• 3af964304f Removed tag t:ltc-0.95-db-merge1 Matt Johnston 2013-03-19 19:26:54 +08:00
• 4289324c4b Removed tag t:ltc-0.95-orig Matt Johnston 2013-03-19 19:26:46 +08:00
• 9f3c817491 fix signedness error in prototype Matt Johnston 2013-03-11 23:07:45 +08:00
• a9cf0ca25f improve subsystem/sftp documentation, and multi-hop manual formatting Matt Johnston 2013-03-03 11:47:41 +08:00
• 72a5612a29 fix typo Matt Johnston 2013-02-24 00:16:02 +08:00
• d7f2153631 DSS_PROTOK is not necessary now that private keys are included in the random generation input Matt Johnston 2013-02-23 17:55:46 +08:00
• 26b07ccafc add loadavg and entropy_avail as sources Matt Johnston 2013-02-23 10:27:49 +08:00
• 1205fa68df Allow configuring "allow blank password option" at runtime Paul Eggleton 2013-02-12 15:52:57 +00:00
• f5be0fb218 Some changes since 2012.55 Matt Johnston 2013-02-22 23:54:47 +08:00
• 88fc38c8f0 Document "-m" and "-c" Update URLs with https Matt Johnston 2013-02-22 23:53:49 +08:00
• 545de7a3a1 /dev/random blocks on busy servers too. Matt Johnston 2012-07-19 21:34:27 +08:00
• 6ba2b2b384 Add a few more files in /proc for Linux Matt Johnston 2012-06-30 22:12:28 +08:00
• d5ccc32b4d Improve RNG seeding. Matt Johnston 2012-06-29 23:19:43 +08:00
• e719a9ef6f - Only request "none" cipher after auth has succeeded Matt Johnston 2012-05-17 20:52:57 +08:00
• a02d38072a Add ALLOW_NONE_PASSWORD_AUTH option Matt Johnston 2012-05-17 08:33:11 +08:00
• f2cd610750 Merge in "-m"/"-c" code Matt Johnston 2012-05-17 08:09:19 +08:00
• db34044c7f ENABLE_USER_ALGO_LIST should work for the client Matt Johnston 2012-05-17 00:26:12 +08:00
• 036edd6206 Add rough support for choosing ciphers/hashes with "-c" or "-m" Matt Johnston 2012-05-17 00:12:42 +08:00
• f40ed8bad7 Update insecure-nocrypto to current head Matt Johnston 2012-05-16 22:54:51 +08:00
• 41f50057f1 Disable SHA256 and SHA512 by default in options.h Matt Johnston 2012-05-16 21:56:50 +08:00
• c62e53807f - Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to be getting keyed incorrectly Matt Johnston 2012-05-10 08:38:37 +08:00
• 10d7a35841 Don't TRACE() the pw_passwd Matt Johnston 2012-05-09 22:52:58 +08:00
• 6b4105ffe6 Fix empty password immediate login Matt Johnston 2012-05-09 22:51:59 +08:00
• 2713445e91 Return immediate success for blank passwords if allowed Matt Johnston 2012-05-09 22:37:04 +08:00
• 1984aabc95 Server shouldn't return "localhost" in response to -R forward connections if that wasn't what the client requested. Matt Johnston 2012-05-09 21:09:34 +08:00
• f4c4ca64a8 Initialise agent_fd to -1 so we don't end up closing stdin (fd 0) if public key authentication is disabled Matt Johnston 2012-05-09 20:34:55 +08:00
• 2a02c4084a - Don't sent SSH_MSG_UNIMPLEMENTED if we don't have ENABLE_SVR_REMOTETCPFWD - Fix build if ENABLE_SVR_REMOTETCPFWD is disabled but ENABLE_SVR_LOCALTCPFWD is enabled Matt Johnston 2012-05-09 20:33:16 +08:00
• e242b2820c Ignore -q if SCP_PROGRESS isn't set Matt Johnston 2012-04-24 22:05:55 +08:00
• 6467b8d903 Split listening port argument at the rightmost colon, allows binding to specific IPv6 addresses. Matt Johnston 2012-04-12 22:04:16 +08:00
• 3e2b6a1821 Improve comment about sha1-96 Matt Johnston 2012-04-12 21:57:30 +08:00
• 4d009daaa0 Slight formatting change for ENABLE_CLI_AGENTFWD if statement Matt Johnston 2012-04-09 21:29:41 +08:00
• d4a14fcb3d Fixed compilation with unset ENABLE_{SVR,CLI}_AGENTFWD. Got rid of ENABLE_AGENTFWD macro. Andrey Mazo 2012-03-26 16:17:16 +04:00
• 49b79fa02d Rename HAVE_FORK to USE_VFORK Matt Johnston 2012-04-09 20:35:13 +08:00
• c957edbe75 check for fork() and not __uClinux__ Mike Frysinger 2012-04-08 01:50:52 -04:00
• 33ae2be52e fix out-of-tree cleaning Mike Frysinger 2012-04-08 02:06:54 -04:00
• 496c1db974 Added signature for changeset 85f835f2fe0a Matt Johnston 2012-02-23 21:46:02 +08:00
• f381274278 Added tag DROPBEAR_2012.55 for changeset d354464b2aa6 Matt Johnston 2012-02-23 21:45:42 +08:00
• 398339218e - Improve CHANGES description DROPBEAR_2012.55 Matt Johnston 2012-02-23 21:45:36 +08:00
• 4dda424f74 2012.55 Matt Johnston 2012-02-22 22:12:15 +08:00
• f403c1f18b - Fix minor leak Matt Johnston 2012-02-22 22:05:24 +08:00
• ff5d94a7a4 Fix accidentally committed change Matt Johnston 2012-02-22 19:33:07 +08:00
• a15fc009da - Initialise sa_mask properly Matt Johnston 2011-12-04 05:41:46 +08:00
• 6c4390c848 - Merge Matt Johnston 2012-02-21 23:00:30 +08:00
• a3188b44f0 - Make sure sa_mask is set Matt Johnston 2012-02-21 22:57:19 +08:00
• aaa72ddbfc - Burn buffers to 0x00 instead Matt Johnston 2012-02-21 22:56:45 +08:00
• aec23e5f79 - Fix use-after-free if multiple command requests were sent. Move the original_command into chansess struct since that makes more sense Matt Johnston 2011-12-04 05:31:25 +08:00
• 52a466b8af - Remove unused variable/code Matt Johnston 2011-12-04 05:27:57 +08:00
• baa32218b0 - Make sure we don't use channel-specific data after it has been freed with a ChanType->closehandler() Matt Johnston 2011-12-04 05:27:29 +08:00
• fd0b05943d - Fix some format strings in TRACE()s Matt Johnston 2011-12-04 05:24:50 +08:00
• 2e0145fb95 - We don't need to test for NULL before free() Matt Johnston 2011-12-04 05:23:43 +08:00
• bcf3a3ab93 Merge Matt Johnston 2012-02-10 19:09:52 +08:00
• 5feebd300e Clear a few buffers when possible Matt Johnston 2012-02-10 18:32:18 +08:00
• c894ea4ea2 Put better #if guards around IPv6 socket options for IPV6_TCLASS and IPV6_V6ONLY. From Gustavo Zacarias. Matt Johnston 2011-11-10 18:17:00 +08:00
• 88278dee74 Added signature for changeset 3f12086c2ef2 Matt Johnston 2011-11-08 21:06:29 +08:00
• d0fadd992f Added tag DROPBEAR_2011.54 for changeset 3f12086c2ef2 Matt Johnston 2011-11-08 21:06:01 +08:00