This is only intended for use in Unix Pageant; for any application
that's actually trying to get...

I've now centralised into pageant.c all the logic about trying to load
keys of any type, with no...

Now --exec instantly terminates option processing, by treating
everything after it as the comman...

The passphrase parameter should be a const char *.

This is intended to be a useful mode when you want to run an ssh agent
in a terminal session wit...

The source paper, and OpenSSH, agree that the lowest bit index used
from the hash of the private...

When I implemented reading and writing of the new format a couple of
weeks ago, I kept them stri...

This introduces a third system of elliptic curve representation and
arithmetic, namely Edwards f...

This is the kex protocol id "[email protected]", so called
because it's over the prim...

It's a bit silly to have 'puttygen -t ecdsa' immediately crash out
because the default key size ...

I'm finding missing constifications all over the place this week.
Turns out that dmemdump() has ...

The last use of it, to store the contents of the saved session name
edit box, was removed nearly...

The memory dangling off ssd->sesslist should be freed when ssd itself
goes away, and the font se...

The only reason those couldn't be replaced with a call to the
centralised find_pubkey_alg is bec...

I've moved the listening socket setup back to before the lifetime
preparations, so in particular...

This would have caused intermittent use-after-free crashes in Windows
Pageant, but only with key...

The auxiliary values (the two primes and the inverse of one mod the
other) were being read into ...

Now it actually logs all its requests and responses, the fingerprints
of keys mentioned in all m...

LIFE_EXEC is already dealt with, and I forgot to take out the comment
reminding me to do it, ahe...

This is much more like ssh-agent than the Windows version is - it sets
SSH_AUTH_SOCK and SSH_AGE...

I'm going to want to use it for a second purpose in a minute.

The exact nature of the Socket is left up to the front end to decide,
so that we can use a Unix-...

I'm aiming for windows/winpgnt.c to only contain the parts of Windows
Pageant that are actually ...

The 'display' parameter should have been a const char *. No call sites
affected.

Several of the functions in ssh2_signkey, and one or two SSH-1 key
functions too, were still tak...

This is better than listing all the algorithm names in yet another
place that will then need upd...

This was a lot less work than the importer, partly because the bcrypt
primitive is already worki...

I thought it would be a good idea to share the loading code on the
basis that the outer header l...

It's all very well for these two different formats to share a type
code as long as we're only lo...

I'd somehow managed to declare an enum in cmdgen.c with key types
OPENSSH and SSHCOM, and use it...

This is import only, for the moment: I haven't written an exporter
yet. Also, we currently don't...

I'm about to use these in a new piece of code, but they may come in
helpful elsewhere as well. m...

Since I've recently published a program that can easily generate the
required digits of pi, and ...

This isn't the same as the standard bcrypt; it's OpenSSH's
modification that they use for their ...

SSH2_MSG_KEX_DH_GEX_REQUEST_OLD and SSH2_MSG_KEX_DH_GEX_REQUEST were
correctly _defined_ as diff...

Now that we have modes in which the MAC verification happens before
any other crypto operation a...

This causes the initial length field of the SSH-2 binary packet to be
unencrypted (with the knoc...

Patch due to Chris Staite.

It overflowed as a result of the previous commit.

PuTTY now uses the updated version of Diffie-Hellman group exchange,
except for a few old OpenSS...

Add automatic bug detection. (Versions verified by Matt Johnston.)

When a winhandl.c input thread returns EOF to the main thread, the
latter might immediately dele...

I had set up an event object for signalling incoming connections to
the named pipe, and then cal...

A minus sign is illegal at that position in a control sequence, so if
ESC[13t should report some...

This was an old bug, fixed around 0.59, which apparently regressed
when I rewrote the main event...

I managed to build from completely the wrong commit this morning, so
make sure to double-check n...

Mostly I'm rearranging things because of the new workflows that git
makes available - it's now p...

encodelib.py is a Python library which implements some handy SSH-2
encoding primitives; sampleke...

We incremented buf by a few bytes, so we must decrement the
corresponding length by the same amo...

Florent Daigniere of Matta points out that RFC 4253 actually
_requires_ us to refuse to accept o...

The absence of these could have prevented sensitive private key
information from being properly ...

The most recent version of Windows it acknowledged was XP.

Bare string exceptions aren't supported any more.
Patch by Will Aoki, plus a backward compatibil...

To understand the handle leak bug that I fixed in git commit
7549f2da40d3666f2c9527d84d9ed5468e2...

If (say) a read handle returns EOF, and its gotdata function responds
by calling handle_free(), ...

The code for cleaning up handle structures works by the main thread
asking the per-handle subthr...

It would be rare to have a host keypair in .ppk format or on a client
machine to load into PuTTY...

It tries to use the local username as the remote username if it has no
better ideas, but the pre...

We were allocating a new array in which to make up a random number
every time we went round the ...

It's used for sensitive data, so we shouldn't leave it lying around
after free.

We were checking the return value of CreateThread for validity, but
not keeping it to free after...

There was an error-handling path testing the wrong variable; an
inappropriate call to ec_point_f...

If we use getaddrinfo to translate the source IP address into a
sockaddr, then we need to freead...

Instead of abruptly returning from sftp_put_file in that situation, we
now send an FXP_CLOSE ins...

I don't think anyone has ever actually called it that, colloquially
_or_ formally, and if anyone...

This one spotted in the old-fashioned way, by actually attempting a
Plink raw connection and won...

mkfiles.pl was giving a couple of annoying perl warnings, because some
makefile_extra strings we...

I'm not actually sure why we've always had back ends notify ldisc of
changes to echo/edit settin...

If a sharing downstream asks for an auth method we don't understand,
we should send them CHANNEL...

Spotted by valgrind, after I was testing all the Coverity bug fixes :-)

All spotted by Coverity.

If (Msg)WaitForMultipleObjects returns WAIT_TIMEOUT, we expect 'next'
to have been initialised. ...

Namely, any ldisc that you send actual data through should have a
terminal attached, because the...

'p += strcspn' returns p always non-NULL and sometimes pointing at \0,
as opposed to 'p = strchr...

This ought to happen in ssh_do_close alongside the code that shuts
down other local listening th...

Thanks to Corey Stup for pointing it out.

Compression, encryption, and key exchange settings are all meaningless
to reconfigure in connect...

Changing it can't have any useful effect, since we have strictly
enforced that the host key used...