summaryrefslogtreecommitdiff
path: root/packet.c
Commit message (Collapse)AuthorAgeFilesLines
* Make -K keepalive behave like OpenSSH's ServerAliveIntervalMatt Johnston2014-07-091-11/+14
|
* Be more careful in case a platform doesn't define UIO_MAXIOV nor IOV_MAXMatt Johnston2014-05-201-4/+5
|
* Limit size of the iovect passed to writev in packet.cRonny Meeus2014-05-201-2/+13
|
* Print errno information in write_packetRonny Meeus2014-05-201-2/+2
|
* Add new monotonic_now() wrapper so that timeouts are unaffected byMatt Johnston2014-03-131-1/+1
| | | | system clock changes
* Use AUTH_TIMEOUT only before authdone != 1.Yousong Zhou2014-03-131-2/+2
| | | | While at it, fix a few indentations and typo.
* A few fixes for cases where compression increases payload sizes, andMatt Johnston2014-02-221-11/+10
| | | | be more precise about maximum channel sizes
* rename random.h to dbrandom.h since some OSes have a system random.hMatt Johnston2013-11-141-1/+1
| | | | | | --HG-- rename : random.c => dbrandom.c rename : random.h => dbrandom.h
* use oldstyle commentsMatt Johnston2013-11-141-1/+1
|
* Constant time memcmp for the hmac and password cryptMatt Johnston2013-10-031-1/+1
|
* Limit decompressed sizeMatt Johnston2013-05-081-2/+7
|
* Take transmit and receive keys into use separatelyMatt Johnston2013-04-041-2/+0
|
* Fix MAC bug which would prevent asymmetric hashesMatt Johnston2013-04-031-9/+6
|
* Move the more verbose TRACE() statements into TRACE2()Matt Johnston2013-04-011-21/+19
|
* Try using writev() for writing packets out to tcpMatt Johnston2013-03-311-7/+59
|
* Fix "-m none" case where an entire packet fits in a block and can beMatt Johnston2013-03-201-12/+19
| | | | read by read_packet_init()
* Fix case where "-K 1" would cause a SSH_MSG_IGNORE packet to be sentMatt Johnston2011-06-071-1/+7
| | | | | | | | with the wrong encryption key ("bad packet length" symptom) while key exchange was happening. --HG-- extra : convert_revision : f7d27ec094c4aba2a4289c523c722fcb3c3f58ca
* - Don't allow setting memLevel since that doesn't work properlyMatt Johnston2011-02-281-6/+14
| | | | | | | | | - Better handling of the case where compressing makes the data larger (possibly only happens when memLevel is adjusted, but better to be safe) --HG-- extra : convert_revision : b31879a384d3bf8cbcbe2ed731d7d79d49799b1d
* Improve capitalisation for all logged stringsMatt Johnston2011-02-231-8/+8
| | | | | --HG-- extra : convert_revision : 997e53cec7a9efb7413ac6e17b6be60a5597bd2e
* Don't reset last_packet_time when we're transmitting SSH_MSG_IGNORE packetsMatt Johnston2011-02-231-14/+32
| | | | | | | (from keepalives) --HG-- extra : convert_revision : a46ca9204de0df58d8701df0d79b6b8ec601b9ce
* Rearrange getaddrstring() etcMatt Johnston2009-09-011-8/+9
| | | | | --HG-- extra : convert_revision : 8a18c4a60aeaec085923d13d98fa0f93c506ceba
* - Payload length doesn't include macsize.Matt Johnston2009-07-261-1/+1
| | | | | --HG-- extra : convert_revision : 98ac17a573ab350cbd6e358b3943237d2ad5c9cf
* Remove extraneous debuggingMatt Johnston2009-03-031-2/+0
| | | | | --HG-- extra : convert_revision : 58d53a027555e98d6d274b4659d38211eea7ad11
* - Get rid of decryptreadbuf, just decrypt in-place with readbufMatt Johnston2009-03-011-114/+84
| | | | | | | | - Share make_mac function for both packet creation and validation - Split recv/trans parts of key_context into their own structures --HG-- extra : convert_revision : 043bc598c76ed43625987e6937e32238f7ed6240
* Encrypt in-place, avoid an extra mallocMatt Johnston2009-03-011-51/+42
| | | | | --HG-- extra : convert_revision : 981e3e4b44e6fdc8537775518e898a33e76a38db
* merge of 'e1c100e6366c5d607af08f4abdbb0f4281df4fa9'Matt Johnston2009-02-261-25/+23
|\ | | | | | | | | | | | | and 'fe8161b0698c9816b98f79e3cab2b9d59f2be71b' --HG-- extra : convert_revision : 23e1a99e40fc3baad5216b2a7e7318f8243f86a3
| * merge of 'a101cbd046507cf723e6362a49196dbd4b924042'Matt Johnston2009-02-261-25/+23
| |\ | | | | | | | | | | | | | | | | | | and 'c8e1b84cfe874887ad7df0dd95a00de46dbc0136' --HG-- extra : convert_revision : fe8161b0698c9816b98f79e3cab2b9d59f2be71b
| | * - Don't be dumb and encrypt/decrypt in a while() loop - why did I do this??Matt Johnston2009-02-251-25/+23
| | | | | | | | | | | | | | | --HG-- extra : convert_revision : c8e1b84cfe874887ad7df0dd95a00de46dbc0136
* | | disapproval of revision 'a101cbd046507cf723e6362a49196dbd4b924042'Matt Johnston2009-02-261-12/+3
|/ / | | | | | | | | --HG-- extra : convert_revision : e1c100e6366c5d607af08f4abdbb0f4281df4fa9
* | - Try to write out as much as we canMatt Johnston2009-02-261-3/+12
|/ | | | | --HG-- extra : convert_revision : a101cbd046507cf723e6362a49196dbd4b924042
* Idle timeout patch from Farrell Aultman. Needs testing, unsure if serverMatt Johnston2008-11-071-0/+1
| | | | | | | code works --HG-- extra : convert_revision : ff66e05ae040561110af70114bf83f11ed528f05
* - Add Counter Mode supportMatt Johnston2008-09-291-47/+25
| | | | | --HG-- extra : convert_revision : 5225162bdf32d70b58b6d3ae375a290326c59f3a
* Add support for zlib@openssh.com delayed compression.Matt Johnston2008-09-291-6/+7
| | | | | | | | Are still advertising 'zlib' for the server, need to allow delayed-only as an option --HG-- extra : convert_revision : 319df675cc3c9b35a10b7d8357c94f33fdab1a46
* - Split main socket var into ses.sock_in/ses.sock_out in preparationMatt Johnston2008-09-151-3/+3
| | | | | | | for -J proxy_cmd option (and some prelim options for that) --HG-- extra : convert_revision : 47cdea9a7d66c553c6f5eec43b899821939d4e4c
* Fix delayed packet queue handlingMatt Johnston2007-08-081-1/+1
| | | | | --HG-- extra : convert_revision : 53b349938dfae2256e23799fae66edd5fc3e97ee
* - Add -K keepalive flag for dropbear and dbclientMatt Johnston2007-08-081-0/+2
| | | | | | | | - Try to reduce the frequency of select() timeouts - Add a max receive window size of 1MB --HG-- extra : convert_revision : 9aa22036cb511cddb35fbc0e09ad05acb39b64d1
* Prevent invalid packets being sent during key-exchange, instead queueMatt Johnston2007-07-271-1/+65
| | | | | | | | | them until afterwards. This could sometimes terminate connections after 8 hours if (for example) a new TCP forwarded connection was sent at the KEX timeout. --HG-- extra : convert_revision : 48426bd66b8f5ba50045f7ba190d1672745132e2
* Rearrange the channel buffer sizes into three neat use-editable values inMatt Johnston2007-07-241-2/+2
| | | | | | | | | | options.h. Increasing RECV_MAX_WINDOW gives big network performance increases - even with the present buffers (which haven't changed) it performs a lot better. Next step is to make the window size a cmdline option. --HG-- extra : convert_revision : 24c7cb47fb56cf5b82e3bc0859b45ea83038eab0
* Don't erase every buffer, it's too time consuming.Matt Johnston2007-02-121-4/+0
| | | | | | | On systems where it matters encrypted swap should be enabled anyway. --HG-- extra : convert_revision : 6cb7793493d92968e09b5dea21d71ded5811d21f
* * use own assertions which should get logged properlyMatt Johnston2005-09-051-5/+5
| | | | | --HG-- extra : convert_revision : 3dc365619f0840ab5781660b1257a9f22c05d3fe
* trans, not recv for macsizeMatt Johnston2005-08-301-1/+1
| | | | | --HG-- extra : convert_revision : 39c4f7320b3a10ef7ef5a41406fe014cc9040ee9
* - Fixed twofish algorithm naming so it actually works.Matt Johnston2005-08-301-14/+13
| | | | | | | | - Added support for aes256, twofish256 and sha1-96 - Fixed some debugging statements --HG-- extra : convert_revision : 598835dadaddb1e95d4ac99f8a1be4ba51639000
* Switching to libtomcrypt 1.02Matt Johnston2005-05-091-0/+3
| | | | | | | (still has problems) --HG-- extra : convert_revision : 4dfd70544ed9a766876ddda9f6ac3f26054eb3db
* Fixed DEBUG_TRACE macro so that we don't get semicolons left about the placeMatt Johnston2005-01-021-17/+17
| | | | | --HG-- extra : convert_revision : d928bc851e32be7bd429bf7504b148c0e4bf7e2f
* Merging in the changes from 0.41-0.43 main Dropbear treeMatt Johnston2004-08-121-1/+3
| | | | | --HG-- extra : convert_revision : 4c3428781bc8faf0fd7cadd7099fbd7f4ea386e7
* Progressing client supportMatt Johnston2004-07-271-3/+3
| | | | | --HG-- extra : convert_revision : 48946be1cef774d1c33b0f78689962b18720c627
* - Rename common-packet.c to packet.cMatt Johnston2004-07-271-0/+609
- buf_burn the unencrypted read/write payload buffers after use to avoid sensitive contents sitting in memory for too long --HG-- extra : convert_revision : 19227d63bda554e819ae7df919bfd18911d5b4a0
View Lorry Controller Status