summaryrefslogtreecommitdiff
path: root/svr-kex.c
Commit message (Collapse)AuthorAgeFilesLines
* Allow user space file locations (rootless support)Begley Brothers Inc2020-07-091-8/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Why: Running dropbear as a user (rootless) is aided if files and programs can be saved/removed without needing sudo. What: Use the same convention as DROPBEAR_DEFAULT_CLI_AUTHKEY; if not starting with '/', then is relative to hedge's /home/hedge: *_PRIV_FILENAME DROPBEAR_PIDFILE SFTPSERVER_PATH default_options.h commentary added. Changes kept to a minimum, so log entry in svr_kex.c#163 is refactored. From: Generated hostkey is <path> ... <finger-print> to: Generated hostkey path is <path> Generated hostkey fingerprint is <fp> Otherwise the unexpanded path was reported. Patch modified by Matt Johnston Signed-off-by: Begley Brothers Inc <begleybrothers@gmail.com>
* send and handle SSH_MSG_EXT_INFO only at the correct pointMatt Johnston2020-05-241-4/+10
| | | | | - other fixes for rsa pubkey auth - only include ext-info handling when rsa pubkey auth is compiled
* Make server send SSH_MSG_EXT_INFOMatt Johnston2020-05-211-0/+21
| | | | Ensure that only valid hostkey algorithms are sent in the first kex guess
* use sigtype where appropriateMatt Johnston2020-04-061-1/+1
|
* Add Ed25519 support (#91)Vladislav Grishenko2020-03-111-1/+7
| | | | | | | | | | | | | | | | * Add support for Ed25519 as a public key type Ed25519 is a elliptic curve signature scheme that offers better security than ECDSA and DSA and good performance. It may be used for both user and host keys. OpenSSH key import and fuzzer are not supported yet. Initially inspired by Peter Szabo. * Add curve25519 and ed25519 fuzzers * Add import and export of Ed25519 keys
* - #if not #ifdef for DROPBEAR_FUZZMatt Johnston2018-02-281-1/+1
| | | | - fix some unused variables
* add fuzzer-preauth_nomathsMatt Johnston2018-01-231-0/+7
|
* merge 2017.75Matt Johnston2017-05-181-45/+2
|\
| * Use atomic key generation in all casesMatt Johnston2016-11-191-45/+2
| |
* | Convert #ifdef to #if, other build changesMatt Johnston2016-05-041-11/+11
| |
* | options for disabling "normal" DHMatt Johnston2016-05-021-5/+13
|/
* assertion for case that shouldn't happenMatt Johnston2016-03-151-1/+1
|
* buf_getstring and buf_putstring now use non-unsigned char*Matt Johnston2015-06-041-1/+1
|
* Open directories O_RDONLY for fsync, add debugging if it failsMatt Johnston2015-01-041-3/+6
|
* Make sure hostkeys are flushed to disk to avoid empty files if the powerMatt Johnston2014-11-081-0/+22
| | | | fails. Based on patch from Peter Korsgaard
* requirenext doesn't need two valuesMatt Johnston2014-01-231-2/+1
|
* Log when generating a hostkeyMatt Johnston2013-12-031-0/+14
|
* rename random.h to dbrandom.h since some OSes have a system random.hMatt Johnston2013-11-141-1/+1
|
* Various cleanups and fixes for warningsMatt Johnston2013-11-121-12/+8
|
* - Make curve25519 work after fixing a typo, interoperates with OpenSSHMatt Johnston2013-11-091-1/+1
| | | | - comment on ecc binary size effects
* MergeMatt Johnston2013-11-081-20/+43
|\
| * curve25519Matt Johnston2013-11-081-21/+44
| |
* | Add '-R' for delayed hostkey optionkeyondemandMatt Johnston2013-11-071-3/+10
| |
* | refactor key generation, make it generate as required.Matt Johnston2013-11-071-0/+80
|/ | | | Needs UI in server command line options
* merge in HEADMatt Johnston2013-05-211-1/+2
|\
| * requirenext fixup for firstkexfollowsMatt Johnston2013-04-141-1/+2
| |
* | - Rename buf_put_ecc_pubkey_string() to buf_put_ecc_raw_pubkey_string()Matt Johnston2013-04-081-1/+1
| | | | | | | | - Reindent ecc.c properly
* | ecc kind of works, needs fixing/testingMatt Johnston2013-04-071-4/+4
| |
* | More changes for KEX and ECDH. Set up hash descriptors, make ECC code work,Matt Johnston2013-03-291-0/+1
| | | | | | | | ses.hash and ses.session_id are now buffers (doesn't compile)
* | refactor kexdh code a bit, start working on ecdh etcMatt Johnston2013-03-261-20/+34
|/
* Refer to RFCs rather than drafts, update some section referencesMatt Johnston2011-02-271-1/+1
|
* Fixes from Erik Hovland:Matt Johnston2006-07-071-1/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | cli-authpubkey.c: fix leak of keybuf cli-kex.c: fix leak of fingerprint fp cli-service.c: remove commented out code dropbearkey.c: don't attepmt to free NULL key on failure common-kex.c: only free key if it is initialised keyimport.c: remove dead encrypted-key code don't leak a FILE* loading OpenSSH keys rsa.c, dss.c: check return values for some libtommath functions svr-kex.c: check return value retrieving DH kex mpint svr-tcpfwd.c: fix null-dereference if remote tcp forward request fails tcp-accept.c: don't incorrectly free the tcpinfo var
* Fixed DEBUG_TRACE macro so that we don't get semicolons left about the placeMatt Johnston2005-01-021-4/+4
|
* default initialisers for mp_intsMatt Johnston2004-08-171-2/+4
|
* License boilerplate etc, add Mihnea as an author to some of the filesMatt Johnston2004-08-141-0/+1
|
* snapshot of stuffMatt Johnston2004-07-261-178/+4
|
* switching to global varsMatt Johnston2004-07-201-3/+4
|
* merge of abac2150ee4f4031a98016241fbd136d24fed127Matt Johnston2004-06-231-1/+1
| | | | and ffa047425729e478a5b49b1ab0f8ec71c08a1421
* Makefile.in contains updated files requiredMatt Johnston2004-06-011-0/+274
View Lorry Controller Status