summaryrefslogtreecommitdiff
path: root/ssh-keygen.c
AgeCommit message (Expand)Author
5 daysupstream: ensure that certificate extensions are lexically sorted.djm@openbsd.org
2020-07-17upstream: - Add [-a rounds] in ssh-keygen man page and usage() -solene@openbsd.org
2020-06-26upstream: Defer creation of ~/.ssh by ssh(1) until we attempt todtucker@openbsd.org
2020-05-29upstream: fix exit status for downloading of FIDO resident keys;djm@openbsd.org
2020-05-27upstream: avoid possible NULL deref; from Pedro Martellettodjm@openbsd.org
2020-05-27upstream: preserve group/world read permission on known_hostsdjm@openbsd.org
2020-05-02upstream: we have a sshkey_save_public() function to save public keys;djm@openbsd.org
2020-05-01upstream: avoid NULL dereference when attempting to convert invaliddjm@openbsd.org
2020-04-20upstream: fix a bug I introduced in r1.406: when printing private keydjm@openbsd.org
2020-04-17upstream: repair private key fingerprint printing to also printdjm@openbsd.org
2020-04-03upstream: give ssh-keygen the ability to dump the contents of adjm@openbsd.org
2020-03-14upstream: spelling errors in comments; no code change fromdjm@openbsd.org
2020-03-14upstream: when downloading FIDO2 resident keys from a token, don'tdjm@openbsd.org
2020-03-13upstream: fix use-after-free in do_download_sk; ok djmmarkus@openbsd.org
2020-03-13upstream: exit if ssh_krl_revoke_key_sha256 fails; ok djmmarkus@openbsd.org
2020-02-28upstream: no-touch-required certificate option should be andjm@openbsd.org
2020-02-28upstream: change explicit_bzero();free() to freezero()jsg@openbsd.org
2020-02-07upstream: fix two PIN entry bugs on FIDO keygen: 1) it would allow moredjm@openbsd.org
2020-02-07upstream: Replace "security key" with "authenticator" in programnaddy@openbsd.org
2020-02-04upstream: require FIDO application strings to start with "ssh:"; okdjm@openbsd.org
2020-01-29upstream: changes to support FIDO attestationdjm@openbsd.org
2020-01-26upstream: improve the error message for u2f enrollment errors bydjm@openbsd.org
2020-01-26upstream: factor out reading/writing sshbufs to dedicateddjm@openbsd.org
2020-01-25Put EC key export inside OPENSSL_HAS_ECC.Darren Tucker
2020-01-25upstream: expose PKCS#11 key labels/X.509 subjects as commentsdjm@openbsd.org
2020-01-25upstream: minor tweaks to ssh-keygen -Y find-principals:djm@openbsd.org
2020-01-25upstream: when signing a certificate with an RSA key, default todjm@openbsd.org
2020-01-25upstream: allow PEM export of DSA and ECDSA keys; bz3091, patchdjm@openbsd.org
2020-01-25upstream: ssh-keygen -Y find-principals fixes based on feedbackdjm@openbsd.org
2020-01-23upstream: remove trailing period characters from pub/priv keydjm@openbsd.org
2020-01-23upstream: add a new signature operations "find-principal" to lookdjm@openbsd.org
2020-01-22upstream: For ssh-keygen -lF only add a space after key fingerprintclaudio@openbsd.org
2020-01-21upstream: don't #ifdef out the KRL code when compiling withoutdjm@openbsd.org
2020-01-21upstream: sync ssh-keygen.1 and ssh-keygen's usage() with eachnaddy@openbsd.org
2020-01-06upstream: Extends the SK API to accept a set of key/value optionsdjm@openbsd.org
2020-01-03upstream: ability to download FIDO2 resident keys from a token viadjm@openbsd.org
2019-12-30upstream: Remove the -x option currently used fordjm@openbsd.org
2019-12-30upstream: translate and return error codes; retry on bad PINdjm@openbsd.org
2019-12-30upstream: SK API and sk-helper error/PIN passingdjm@openbsd.org
2019-12-30upstream: basic support for generating FIDO2 resident keysdjm@openbsd.org
2019-12-30upstream: remove single-letter flags for moduli optionsdjm@openbsd.org
2019-12-30upstream: prepare for use of ssh-keygen -O flag beyond certsdjm@openbsd.org
2019-12-14remove a bunch of ENABLE_SK #ifdefsDamien Miller
2019-12-11upstream: when acting as a CA and using a security key as the CAdjm@openbsd.org
2019-11-25upstream: Print a key touch reminder when generating a securitydjm@openbsd.org
2019-11-25upstream: allow "ssh-keygen -x no-touch-required" when generating adjm@openbsd.org
2019-11-25upstream: add a "no-touch-required" option for authorized_keys anddjm@openbsd.org
2019-11-25upstream: Add new structure for signature optionsdjm@openbsd.org
2019-11-20upstream: more missing mentions of ed25519-sk; ok djm@naddy@openbsd.org
2019-11-20upstream: additional missing stdarg.h includes when built withoutnaddy@openbsd.org