summaryrefslogtreecommitdiffhomepage
path: root/common-algo.c
AgeCommit message (Collapse)Author
2015-06-04buf_getstring and buf_putstring now use non-unsigned char*Matt Johnston
2015-06-04Merge pull request #13 from gazoo74/fix-warningsMatt Johnston
Fix warnings
2015-06-03Disable twofish-ctr by default, add config optionMatt Johnston
2015-05-05Turn Algo_Type's name attribute into const char *Gaël PORTAY
2015-05-05Fix pointer differ in signess warnings [-Werror=pointer-sign]Gaël PORTAY
2015-02-24Fix for old compilers, variable declarations at beginning of functionsThorsten Horstmann
and /**/ comments
2015-02-13mergeMatt Johnston
2015-02-04twofish ctr modesMatt Johnston
2015-01-28Keep sha1 defaultMatt Johnston
2015-01-28Disable non-delayed zlib for serverMatt Johnston
2015-01-23Prefer stronger algorithms in algorithm negotiation.Fedor Brunner
Prefer diffie-hellman-group14-sha1 (2048 bit) over diffie-hellman-group1-sha1 (1024 bit). Due to meet-in-the-middle attacks the effective key length of three key 3DES is 112 bits. AES is stronger and faster then 3DES. Prefer to delay the start of compression until after authentication has completed. This avoids exposing compression code to attacks from unauthenticated users. (github pull request #9)
2015-01-23Add config option to disable cbc. Disable twofish by defaultMatt Johnston
2013-11-14use oldstyle commentsMatt Johnston
2013-11-12Various cleanups and fixes for warningsMatt Johnston
--HG-- branch : ecc
2013-11-08curve25519Matt Johnston
--HG-- branch : ecc
2013-10-31Default to some larger key sizesMatt Johnston
--HG-- branch : ecc
2013-05-21merge in HEADMatt Johnston
--HG-- branch : ecc
2013-05-03ecdsa is workingMatt Johnston
--HG-- branch : ecc
2013-04-09start on ecdsa keysMatt Johnston
--HG-- branch : ecc
2013-04-08- Fix various hardcoded uses of SHA1Matt Johnston
- rename curves to nistp256 etc - fix svr-auth.c TRACE problem --HG-- branch : ecc
2013-04-07ecc kind of works, needs fixing/testingMatt Johnston
--HG-- branch : ecc
2013-04-03merge kexguess branchMatt Johnston
2013-04-03Put some #ifdef options around first-follows options in case theyMatt Johnston
need to be disabled --HG-- branch : kexguess
2013-04-03Don't usually need to recalculate dh_e for the repeated kexdh_init packetMatt Johnston
--HG-- branch : kexguess
2013-03-30Get rid of client/server specific buf_match_algo, use singleMatt Johnston
function with a couple of if statements instead --HG-- branch : kexguess
2013-03-29Add kexguess2 behaviourMatt Johnston
--HG-- branch : kexguess
2013-03-29More changes for KEX and ECDH. Set up hash descriptors, make ECC code work,Matt Johnston
ses.hash and ses.session_id are now buffers (doesn't compile) --HG-- branch : ecc
2013-03-27more bits on ecc branchMatt Johnston
--HG-- branch : ecc
2013-03-26refactor kexdh code a bit, start working on ecdh etcMatt Johnston
--HG-- branch : ecc
2013-03-21Make hmac-sha2-256 and hmac-sha2-512 workMatt Johnston
2012-05-17- Only request "none" cipher after auth has succeededMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-17Merge in "-m"/"-c" codeMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-17ENABLE_USER_ALGO_LIST should work for the clientMatt Johnston
2012-05-17Add rough support for choosing ciphers/hashes with "-c" or "-m"Matt Johnston
2012-05-16Update insecure-nocrypto to current headMatt Johnston
--HG-- branch : insecure-nocrypto
2012-05-10- Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to beMatt Johnston
getting keyed incorrectly --HG-- branch : sha2
2011-02-24Add diffie-hellman-group14-sha1 KEX methodMatt Johnston
--HG-- extra : convert_revision : 5b9c394ad43745e48c42d671cefac7a5c346082f
2011-02-23Improve capitalisation for all logged stringsMatt Johnston
--HG-- extra : convert_revision : 997e53cec7a9efb7413ac6e17b6be60a5597bd2e
2009-09-11- Disable compression for non-final multihopsMatt Johnston
--HG-- extra : convert_revision : c507a2aacb9e0db4c0266891b8915c614e32857e
2009-06-09- Don't memcpy() in place with void_encryptMatt Johnston
--HG-- extra : convert_revision : d123343d78df1b5998d8dd2674fd83fd682ce0c0
2008-11-06Update nocrypto branch to current headMatt Johnston
--HG-- branch : insecure-nocrypto extra : convert_revision : 9e5e6e33be005d27cd5b3270c574edc45b5c2893
2008-11-06propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵Matt Johnston
cdcc3c729e29544e8b98a408e2dc60e4483dfd2a) to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 0ca38a1cf349f7426ac9de34ebe4c3e3735effab) --HG-- branch : insecure-nocrypto extra : convert_revision : dbb093e087a68abf2e54ab0b711af70771ddb29d
2008-09-29- Get rid of blowfish and twofish CTR since they weren't likelyMatt Johnston
to be that useful --HG-- extra : convert_revision : e16bd265bb6e8093b3488993dffc86662a2a7a62
2008-09-29- Add Counter Mode supportMatt Johnston
--HG-- extra : convert_revision : 5225162bdf32d70b58b6d3ae375a290326c59f3a
2008-09-29Add support for zlib@openssh.com delayed compression.Matt Johnston
Are still advertising 'zlib' for the server, need to allow delayed-only as an option --HG-- extra : convert_revision : 319df675cc3c9b35a10b7d8357c94f33fdab1a46
2007-02-04Add comments about requiring keysize <= 2*SHA1_HASH_SIZEMatt Johnston
--HG-- extra : convert_revision : bcb33fce2fad01a7626598209d43af3571bd86f0
2006-03-10propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵Matt Johnston
7ad1775ed65e75dbece27fe6b65bf1a234db386a) to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a) --HG-- branch : insecure-nocrypto extra : convert_revision : 2b954d406290e6a2be8eb4a262d3675ac95ac544
2005-11-08* common-algo.c: use zlib for dbclientMatt Johnston
--HG-- extra : convert_revision : 71c8d2ac84129e8aa204e7e35a44066fd1bea584
2005-09-23- a hack for grahame to run dropbear with "none" cipher.Matt Johnston
DO NOT USE IF YOU DON'T KNOW THE CONSEQUENCES Here is your noose. Use it wisely. --HG-- branch : insecure-nocrypto extra : convert_revision : 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a
2005-09-02use a buffer rather than raw char array for creatingMatt Johnston
the comma-seperated algorithm lists --HG-- extra : convert_revision : bd00bc1e914dc1a816e9a2cca38c7bd3b6865dd0