aboutsummaryrefslogtreecommitdiff
path: root/src/kex.c
AgeCommit message (Expand)AuthorFilesLines
2020-04-06kex: Add support for diffie-hellman-group14-sha256Anderson Toshiyuki Sasaki1-0/+6
2019-12-23kex: Avoid always-false comparisons as reported by csbuildJakub Jelen1-4/+4
2019-12-09kex: Use SSH_BUFFER_FREE()Andreas Schneider1-3/+3
2019-12-09kex: Use SSH_STRING_FREE()Andreas Schneider1-7/+7
2019-12-09kex: Use a len variable for length checks in ssh_packet_kexinit()Andreas Schneider1-8/+9
2019-11-18Use only one variable denoting the size of methods arraysJakub Jelen1-12/+10
2019-07-30Replace ssh_print_hexa() with ssh_log_hexdump()Anderson Toshiyuki Sasaki1-10/+10
2019-07-04kex: Do not ignore keys in known_hosts filesAnderson Toshiyuki Sasaki1-83/+82
2019-06-13kex: Only advertise allowed signature typesAnderson Toshiyuki Sasaki1-2/+20
2019-06-13kex: Reformat ssh_kex_get_supported_method()Jakub Jelen1-5/+6
2019-06-13kex: List also certificate types in list of allowed public key algorithmsJakub Jelen1-10/+35
2019-06-12kex, pki, server, options: Filter algorithms in FIPS modeAnderson Toshiyuki Sasaki1-2/+80
2019-06-12kex: Remove unused codeAnderson Toshiyuki Sasaki1-17/+0
2019-06-12kex: Make order of preferred signature algorithms consistentAnderson Toshiyuki Sasaki1-3/+3
2019-06-12kex, known_hosts: Use new tokens functionsAnderson Toshiyuki Sasaki1-107/+17
2019-06-12token, kex: Add functions to handle tokens listsAnderson Toshiyuki Sasaki1-111/+1
2019-04-04dh: Confine DH KEX keys handling into fewer functionsSimo Sorce1-6/+35
2019-04-04dh: Rename variables for DH key exchangeSimo Sorce1-8/+8
2019-03-07Use a common KDF functionSimo Sorce1-58/+20
2019-03-07Clean up code that generates session keysSimo Sorce1-147/+110
2019-02-22Add tests and implementation for Encrypt-then-MAC modeDirkjan Bussink1-4/+4
2019-02-07kex: honor client preference for rsa-sha2-{256,512} host key algorithmsJon Simons1-0/+24
2019-02-07Allow building without Group Exchange supportJakub Jelen1-0/+15
2019-02-07kex: Disable diffie-hellman-group-exchange-sha1 by defaultJakub Jelen1-4/+9
2019-01-24dh-gex: Add server implementationAris Adamantiadis1-1/+3
2019-01-24dh-gex: Add client implementationAris Adamantiadis1-1/+27
2019-01-24dh: Do some basic refactoringAris Adamantiadis1-0/+1
2019-01-24dh: move unrelated functions out of dh.cAris Adamantiadis1-0/+490
2019-01-09kex: List also the SHA2 extension when ordering hostkey algorithmsJakub Jelen1-16/+20
2019-01-09server: Correctly handle extensionsJakub Jelen1-4/+20
2019-01-09packet: Implement rekeying based on the recommendation from RFC'sJakub Jelen1-1/+54
2019-01-09kex: Correctly check for the rekey (amends 83f2ac4a)Jakub Jelen1-1/+1
2018-12-19crypto: Disable blowfish support by defaultAndreas Schneider1-10/+11
2018-11-23kex,packet,packet_cb: ReformatJakub Jelen1-4/+5
2018-11-23kex: Do not negotiate extensions during rekeyJakub Jelen1-0/+5
2018-10-19tests: Verify the hostkey ordering for negotiation is correctJakub Jelen1-1/+1
2018-10-19kex: Use all supported hostkey algorithms for negotiationJakub Jelen1-3/+30
2018-10-19kex: Honor more host key algorithms than the first one (ssh-ed25519)Jakub Jelen1-3/+1
2018-10-09libmbedtls: Support OpenSSH-compatible AES-GCM ciphers using mbedTLSJakub Jelen1-1/+7
2018-10-09libgcrypt: Implement OpenSSH-compatible AES-GCM ciphers using libgcryptJakub Jelen1-1/+3
2018-10-09libcrypto: Implement OpenSSH-compatible AES-GCM ciphers using OpenSSLJakub Jelen1-2/+7
2018-09-20dh: Add diffie-hellman-group18-sha512 supportAnderson Toshiyuki Sasaki1-1/+3
2018-09-19dh: Add diffie-hellman-group16-sha512 supportAnderson Toshiyuki Sasaki1-1/+3
2018-09-04kex: Use C99 initializer instead of memsetAndreas Schneider1-2/+1
2018-08-31server: Support for extension negotiationJakub Jelen1-1/+17
2018-08-31pki: Allow filtering accepted public key types based on the configurationJakub Jelen1-0/+9
2018-08-31kex: The public key algorithms are no longer only host keysJakub Jelen1-5/+5
2018-08-31kex: Offer SHA2 extension signature algorithms by defaultJakub Jelen1-3/+3
2018-08-31kex: Signalize support for the extension negotiation in client (RFC 8308)Jakub Jelen1-1/+33
2018-08-22kex: Fix size typesAndreas Schneider1-4/+4