aboutsummaryrefslogtreecommitdiffstats
path: root/lib/ssh/src/ssh_transport.erl
AgeCommit message (Collapse)Author
2017-12-14ssh: Special treatment of OpenSSH clients >= 7.2 rsa-sha2-* public keysHans Nilsson
Thoose clients signs with sha instead of sha2-*. Try first to verify with the correct one, and if that fails, retry with sha1.
2017-11-16Merge branch 'maint-18' into maintHans Nilsson
* maint-18: Updated OTP version Prepare release ssh: Unicode encoding fix ssh: testcases for space trailing Hello msg Remove unused test include file from test suites eldap: Repair Makefile ssh: Don't remove trailing WS in Hello msg Conflicts: OTP_VERSION erts/doc/src/notes.xml erts/vsn.mk lib/compiler/doc/src/notes.xml lib/compiler/vsn.mk lib/crypto/test/blowfish_SUITE.erl lib/eldap/doc/src/notes.xml lib/eldap/vsn.mk lib/inets/test/httpd_load.erl lib/inets/test/httpd_mod.erl lib/inets/test/old_httpd_SUITE.erl lib/ssh/doc/src/notes.xml lib/ssh/vsn.mk lib/stdlib/test/zip_SUITE.erl otp_versions.table
2017-11-10ssh: Update SSH for engine-stored host keysHans Nilsson
2017-11-09ssh: Don't remove trailing WS in Hello msgHans Nilsson
2017-10-30ssh: Server checks host key files at start and at acceptHans Nilsson
2017-10-30ssh: Sharpen the PubKey validity checkHans Nilsson
2017-10-12ssh: Adapt to simplified public_key and simplify sshHans Nilsson
2017-10-03ssh: Make host key checking more debug friendlyHans Nilsson
2017-09-28ssh: exclude aes_gcm if peer is OpenSSH 6.2 (known bug)Hans Nilsson
2017-09-11ssh: Added option 'modify_algorithms' with prepend, append and rmHans Nilsson
If a user wants to enable one non-default algorithm or remove a default one, the option preferred_algorithms is too complicated since it replaces the whole set of algorithms.
2017-05-22ssh: fix the rsa-sha2-* hostkey verify errorHans Nilsson
2017-05-17Merge branch 'hans/ssh/ext-info_bug_fixes'Hans Nilsson
2017-05-17ssh: select server-sig-algs from configured algos (preferred_algorithms)Hans Nilsson
2017-05-17ssh: Enable rsa-sha2-*Hans Nilsson
Conflicts: lib/ssh/src/ssh_transport.erl
2017-05-12ssh: Tests for ext-info extension (ext-info-c)Hans Nilsson
2017-05-04Update copyright yearRaimo Niskanen
2017-04-27ssh: Don't expose new rsa-sha2-* as defaultHans Nilsson
2017-04-26ssh: Codenomicon/Defensics fixesHans Nilsson
2017-04-26ssh: Implement signature algorithms rsa-sha2-*. draft-ietf-curdle-rsa-sha2Hans Nilsson
2017-04-26ssh: server-sig-algs, server sideHans Nilsson
2017-04-26ssh: Implement ext-info extension. draft-ietf-curdle-ssh-ext-infoHans Nilsson
This is only a draft extension, but it is quite stable and already supported by some implementations. OpenSSH has had it for some year now.
2017-04-12ssh: replace deprecated crypto:rand_uniformHans Nilsson
2017-04-07ssh: option 'silently_accept_hosts' reworkedHans Nilsson
New (yet) undocumented option value {false,Alg} where Alg :: md5 | sha | sha224 | sha256 | sha384 | sha512 This option includes the fingerprint value in the accept question to the user. The fingerprint is calculated with the Alg provided
2017-04-07ssh: Bug fix when calling ssh_io:yes_noHans Nilsson
This was introduced by the new option handling in commit 89a829f32d855610b0bc0c3ea53e7c05454b7a24
2017-03-02ssh: Initial commit of option handling changesHans Nilsson
2017-02-14Fixed typos in lib/sshAndrew Dryga
2017-02-06Revert "ssh: removed 'ssh-dss' from default list"Hans Nilsson
This reverts commit 6847d9223420fb86cdf72f0e608a5f41a2673053. The removal of ssh-dss seems to give a too high risk of failing customer systems. Needs to be properly deprecated.
2017-02-01ssh: minor code unfoldingHans Nilsson
2017-02-01ssh: clearer hash calculationHans Nilsson
2017-01-31ssh: optimize kex dh_gex using new crypto functionalityHans Nilsson
Conflicts: lib/ssh/src/ssh_connection_handler.erl lib/ssh/src/ssh_transport.erl
2017-01-31ssh: better error msg at kex failureHans Nilsson
2017-01-31ssh: removed 'ssh-dss' from default listHans Nilsson
Reason: insecure
2017-01-31ssh: removed 'diffie-hellman-group1-sha1' from default listHans Nilsson
Reason: very insecure
2017-01-31ssh: added stronger diffie-hellman groupsHans Nilsson
diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256
2017-01-31ssh: reordered default algorithms listHans Nilsson
2017-01-31Merge branch 'maint'Hans Nilsson
Conflicts: lib/crypto/c_src/crypto.c lib/crypto/src/crypto.erl
2017-01-30ssh: optimize kex dh_gex using new crypto functionalityHans Nilsson
2017-01-26Merge branch 'maint'Hans Nilsson
2017-01-25ssh: correct host key signature calculationHans Nilsson
2016-12-16ssh: Optimize handling of #ssh.shared_secretHans Nilsson
It is not necessary to mpint-encode it every time it is used (in MAC:s), it sufficies to do it once after key exchange
2016-11-18ssh: Add fun and fingerprint to option 'silently_accept_host'Hans Nilsson
2016-09-02ssh: make ecdsa sha dependent on curveHans Nilsson
Bug fix.
2016-04-27ssh: Partly refactor and polish ssh_connection_handlerHans Nilsson
2016-04-27ssh: Gen_statem rewrite of ssh_connection_handlerHans Nilsson
Including misc fixes in surronding code as well as in test cases.
2016-03-15update copyright-yearHenrik Nord
2016-01-18ssh: Optimization - inline encoding in ssh_message:encode/1, now 8 times faster.Hans Nilsson
Also fixes minor error in ssh_protocol_SUITE that the new encoder found.
2015-12-07ssh: fix error for bad packet lengths found by DefensicsHans Nilsson
2015-11-27Merge branch 'maint-18' into maintHans Nilsson
* maint-18: Updated OTP version Update release notes ssh: vsn.mk updated ssh: New test cases for SSH_MSG_KEX_DH_GEX_REQUEST_OLD ssh: update existing testcases ssh: Improve group selection ssh: implemented server side SSH_MSG_KEX_DH_GEX_REQUEST_OLD for putty client Conflicts: lib/ssh/src/ssh_transport.erl lib/ssh/test/ssh_protocol_SUITE.erl lib/ssh/vsn.mk
2015-11-26ssh: Improve group selectionHans Nilsson
Now it chooses the first found if no exact match.
2015-11-26ssh: implemented server side SSH_MSG_KEX_DH_GEX_REQUEST_OLD for putty clientHans Nilsson
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-16 14:12:05 +0000