.github
Add "libvirt" label to dfly30.
2022-11-27 11:45:43 +11:00
contrib
crank versions in RPM spec files
2022-10-04 01:45:41 +11:00
m4
Improve detection of -fzero-call-used-regs=all support
2022-02-25 11:24:04 +11:00
openbsd-compat
Add fallback for old platforms w/out MAP_ANON.
2022-11-23 13:24:53 +11:00
regress
upstream: Use variable for diff options
2022-11-01 11:10:48 +11:00
.depend
update .depend
2022-10-04 01:51:42 +11:00
.git_allowed_signers
additional keys
2022-08-29 13:27:45 +10:00
.git_allowed_signers.asc
additional keys
2022-08-29 13:27:45 +10:00
.gitignore
Add aclocal.m4 and config.h.in~ to .gitignore.
2020-09-11 13:18:42 +10:00
.skipped-commit-ids
upstream: Import regenerated moduli
2022-04-20 15:08:54 +10:00
CREDITS
convert to UTF-8; from Mike Frysinger
2019-07-29 09:49:23 +10:00
INSTALL
Fix broken zlib link.
2022-11-05 07:33:11 +11:00
LICENCE
Add a timegm implementation from Heimdal via Samba.
2022-08-11 22:51:10 +10:00
Makefile.in
upstream: use users-groups-by-id@openssh.com sftp-server extension
2022-09-19 20:51:14 +10:00
OVERVIEW
upstream: refer to OpenSSL not SSLeay;
2018-10-23 16:57:54 +11:00
PROTOCOL
upstream: Fix typo. From pablomh via -portable github PR#344.
2022-11-07 14:00:23 +11:00
PROTOCOL.agent
upstream: Fix typo. From AlexanderStohr via github PR#343.
2022-09-27 08:16:44 +10:00
PROTOCOL.certkeys
upstream: PROTOCOL.certkeys: update reference from IETF draft to
2021-06-06 13:24:37 +10:00
PROTOCOL.chacha20poly1305
upstream: Fix some typos and an incorrect word in docs. Patch from
2020-02-21 12:27:23 +11:00
PROTOCOL.key
upstream: use consistent field names (s/char/byte)
2022-07-01 16:00:01 +10:00
PROTOCOL.krl
upstream: allow key revocation by SHA256 hash and allow ssh-keygen
2018-09-12 16:49:21 +10:00
PROTOCOL.mux
upstream: spelling ok dtucker@
2022-01-01 15:19:48 +11:00
PROTOCOL.sshsig
upstream: Add RCS IDs to the few files that are missing them; from
2020-08-31 14:34:41 +10:00
PROTOCOL.u2f
upstream: when writing an attestation blob for a FIDO key, record all
2020-09-09 13:11:34 +10:00
README
update release notes URL
2022-10-04 01:45:52 +11:00
README.dns
Minor documentation update:
2020-02-11 12:51:24 +11:00
README.md
mention libfido2 autodetection
2022-10-05 03:40:01 +11:00
README.platform
Improve AIX text.
2020-12-22 19:21:26 +11:00
README.privsep
Privsep is now required.
2019-09-19 15:41:23 +10:00
README.tun
…
SECURITY.md
basic SECURITY.md (refers people to the website)
2021-11-03 12:08:21 +11:00
TODO
Remove support for S/Key
2018-07-31 12:59:30 +10:00
addr.c
upstream: allow ssh-keyscan(1) to accept CIDR address ranges, e.g.
2022-10-28 13:39:35 +11:00
addr.h
upstream: allow ssh-keyscan(1) to accept CIDR address ranges, e.g.
2022-10-28 13:39:35 +11:00
addrmatch.c
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
atomicio.c
remove sys/param.h in -portable, after upstream
2021-12-22 09:02:50 +11:00
atomicio.h
upstream: move client/server SSH-* banners to buffers under
2018-12-27 14:38:22 +11:00
audit-bsm.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
audit-linux.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit.h
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
auth-bsdauth.c
remove duplicate #includes
2019-10-02 10:54:28 +10:00
auth-krb5.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
auth-options.c
upstream: Switch hpdelim interface to accept only ":" as delimiter.
2022-02-10 15:14:17 +11:00
auth-options.h
upstream: make authorized_keys environment="..." directives
2021-07-23 14:07:19 +10:00
auth-pam.c
Fix memory leak in error path.
2021-09-03 13:42:08 +10:00
auth-pam.h
remove PAM dependencies on old packet API
2019-01-20 10:22:18 +11:00
auth-passwd.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
auth-rhosts.c
upstream: free(3) wants stdlib.h
2022-02-24 08:24:17 +11:00
auth-shadow.c
Remove key.h from portable files too.
2018-07-12 14:57:46 +10:00
auth-sia.c
Remove key.h from portable files too.
2018-07-12 14:57:46 +10:00
auth-sia.h
…
auth.c
upstream: move auth_openprincipals() and auth_openkeyfile() over to
2022-06-03 14:49:18 +10:00
auth.h
upstream: make sure that UseDNS hostname lookup happens in the monitor
2022-06-16 02:12:11 +10:00
auth2-chall.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
auth2-gss.c
upstream: prepare for multiple names for authmethods
2021-12-20 09:28:07 +11:00
auth2-hostbased.c
upstream: Add RequiredRSASize for sshd(8); RSA keys that fall
2022-09-17 20:39:02 +10:00
auth2-kbdint.c
upstream: prepare for multiple names for authmethods
2021-12-20 09:28:07 +11:00
auth2-none.c
upstream: prepare for multiple names for authmethods
2021-12-20 09:28:07 +11:00
auth2-passwd.c
upstream: f sshpkt functions fail, then password is not cleared
2022-05-27 14:59:17 +10:00
auth2-pubkey.c
upstream: Add RequiredRSASize for sshd(8); RSA keys that fall
2022-09-17 20:39:02 +10:00
auth2-pubkeyfile.c
upstream: bump up loglevel from debug to info when unable to open
2022-07-01 13:54:53 +10:00
auth2.c
upstream: avoid integer overflow of auth attempts (harmless, caught
2022-02-23 22:22:20 +11:00
authfd.c
upstream: Add authfd path to debug output. ok markus@
2022-04-27 21:33:11 +10:00
authfd.h
upstream: ssh-add side of destination constraints
2021-12-20 09:25:17 +11:00
authfile.c
upstream: Make sure not to fclose() the same fd twice in case of an
2022-06-24 14:28:29 +10:00
authfile.h
upstream: factor out reading/writing sshbufs to dedicated
2020-01-26 10:18:42 +11:00
bitmap.c
upstream commit
2017-10-20 12:58:35 +11:00
bitmap.h
upstream commit
2017-10-20 12:58:35 +11:00
buildpkg.sh.in
whitespace at EOL
2020-12-22 19:43:55 +11:00
canohost.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
canohost.h
upstream commit
2016-03-08 06:20:35 +11:00
chacha.c
…
chacha.h
upstream: whitespace (tab after space)
2021-04-03 17:20:00 +11:00
channels.c
avoid Wuninitialized false positive in gcc-12ish
2022-09-19 20:59:04 +10:00
channels.h
upstream: channel_new no longer frees remote_name. So update the
2022-05-05 11:34:52 +10:00
cipher-aes.c
…
cipher-aesctr.c
Add includes.h for compatibility stuff.
2015-02-25 13:17:40 +11:00
cipher-aesctr.h
…
cipher-chachapoly-libcrypto.c
Fix conditional for openssl-based chacha20.
2020-05-01 09:21:52 +10:00
cipher-chachapoly.c
Include openssl-compat.h before checking ifdefs.
2020-04-06 20:54:34 +10:00
cipher-chachapoly.h
upstream: make Chacha20-POLY1305 context struct opaque; ok tb@ as
2020-04-03 15:36:57 +11:00
cipher.c
Remove workarounds for OpenSSL missing AES-CTR.
2022-07-25 21:49:04 +10:00
cipher.h
upstream: Make zlib optional. This adds a "ZLIB" build time option
2020-01-23 21:53:54 +11:00
cleanup.c
…
clientloop.c
upstream: Handle dynamic remote port forwarding in escape commandline's
2022-11-11 11:24:46 +11:00
clientloop.h
upstream: make failures when establishing "Tunnel" forwarding terminate
2020-04-03 13:42:33 +11:00
compat.c
upstream: Always return allocated strings from the kex filtering so
2022-07-01 13:41:16 +10:00
compat.h
upstream: Client-side workaround for a bug in OpenSSH 7.4: this release
2021-06-06 13:41:36 +10:00
config.guess
Revert "update build-aux files to match autoconf-2.71"
2022-04-11 16:07:09 +10:00
config.sub
Revert "update build-aux files to match autoconf-2.71"
2022-04-11 16:07:09 +10:00
configure.ac
If we haven't found it yet, recheck for sys/stat.h.
2022-11-23 13:24:50 +11:00
crypto_api.h
upstream: Update the sntrup761 creation script and generated code:
2021-01-08 13:49:49 +11:00
defines.h
Correct value for IPTOS_DSCP_LE.
2021-12-15 10:50:33 +11:00
dh.c
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
dh.h
upstream: Add ModuliFile keyword to sshd_config to specify the
2021-03-13 13:14:13 +11:00
digest-libc.c
Use SHA.*_HMAC_BLOCK_SIZE if needed.
2021-12-23 11:36:08 +11:00
digest-openssl.c
upstream: whitespace; no code change
2020-10-29 13:54:13 +11:00
digest.h
upstream commit
2017-05-10 11:41:21 +10:00
dispatch.c
upstream: allow sshpkt_fatal() to take a varargs format; we'll
2019-01-20 09:02:20 +11:00
dispatch.h
upstream: remove last traces of old packet API!
2019-01-20 09:45:18 +11:00
dns.c
upstream: mark const string array contents const too, i.e. static
2022-02-02 10:38:59 +11:00
dns.h
upstream: Ensure that all returned SSHFP records for the specified host
2021-07-19 13:46:13 +10:00
ed25519.c
…
entropy.c
Remove seed passing over reexec.
2022-11-10 12:44:51 +11:00
entropy.h
Adapt portable to legacy buffer API removal
2018-07-10 19:39:52 +10:00
fatal.c
upstream: fix SEGV on fatal() errors spotted by dtucker@
2020-10-19 19:09:08 +11:00
fe25519.c
…
fe25519.h
…
fixalgorithms
…
fixpaths
…
ge25519.c
…
ge25519.h
upstream commit
2015-02-17 09:32:31 +11:00
ge25519_base.data
…
groupaccess.c
upstream: Move checks for lists of users or groups into their own
2019-03-08 15:10:07 +11:00
groupaccess.h
…
gss-genr.c
need stdlib.h for free(3)
2021-10-01 16:36:24 +10:00
gss-serv-krb5.c
upstream: sshd: switch GSSAPI to sshbuf API; ok djm@
2018-07-10 15:28:30 +10:00
gss-serv.c
upstream: spelling errors in comments; no code change from
2020-03-14 19:39:09 +11:00
hash.c
Remove old OpenBSD version marker.
2021-07-03 20:36:06 +10:00
hmac.c
upstream: change explicit_bzero();free() to freezero()
2020-02-28 12:26:28 +11:00
hmac.h
- djm@cvs.openbsd.org 2014/06/24 01:13:21
2014-07-02 15:28:02 +10:00
hostfile.c
upstream: piece of UpdateHostkeys client strictification: when
2022-01-07 09:21:38 +11:00
hostfile.h
upstream: make struct hostkeys public; I have no idea why I made it
2021-01-26 12:21:48 +11:00
includes.h
remove sys/param.h in -portable, after upstream
2021-12-22 09:02:50 +11:00
install-sh
Revert "update build-aux files to match autoconf-2.71"
2022-04-11 16:07:09 +10:00
kex.c
upstream: Remove some set but otherwise unused variables, spotted
2022-11-07 22:22:15 +11:00
kex.h
upstream: Fix signature algorithm selection logic for
2022-01-07 09:21:38 +11:00
kexc25519.c
upstream: rename kex->kem_client_pub -> kex->client_pub now that
2019-01-21 23:13:03 +11:00
kexdh.c
Move signal.h up include order to match upstream.
2021-07-03 20:38:09 +10:00
kexecdh.c
Put ssherr.h back as it's actually needed.
2019-10-02 14:30:55 +10:00
kexgen.c
upstream: Record session ID, host key and sig at intital KEX
2021-12-20 09:24:42 +11:00
kexgex.c
upstream: pass most arguments to the KEX hash functions as sshbuf
2019-01-23 13:02:02 +11:00
kexgexc.c
upstream: Record session ID, host key and sig at intital KEX
2021-12-20 09:24:42 +11:00
kexgexs.c
upstream: Record session ID, host key and sig at intital KEX
2021-12-20 09:24:42 +11:00
kexsntrup761x25519.c
upstream: fix unintended sizeof pointer in debug path ok markus@
2021-12-07 12:30:50 +11:00
krl.c
upstream: avoid printing hash algorithm twice; from lucas AT sexy.is
2022-04-28 13:55:12 +10:00
krl.h
upstream: give ssh-keygen the ability to dump the contents of a
2020-04-03 13:33:25 +11:00
log.c
upstream: allow log_stderr==2 to prefix log messages with argv[0]
2021-09-19 17:21:59 +10:00
log.h
upstream: do not pass file/func to monitor; noted by Ilja van Sprundel;
2021-04-16 13:24:33 +10:00
loginrec.c
remove sys/param.h in -portable, after upstream
2021-12-22 09:02:50 +11:00
loginrec.h
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
logintest.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
mac.c
remove duplicate #includes
2019-10-02 10:54:28 +10:00
mac.h
upstream commit
2016-07-08 13:50:03 +10:00
match.c
upstream: fold consecutive '*' wildcards to mitigate combinatorial
2020-11-04 10:09:25 +11:00
match.h
upstream: some language improvements; ok markus
2020-07-15 15:07:42 +10:00
mdoc2man.awk
Remove remaining now-obsolete cvs $Ids.
2018-02-15 20:06:19 +11:00
misc.c
upstream: Remove errant colon and simplify format
2022-11-09 20:43:35 +11:00
misc.h
upstream: Make SetEnv directives first-match-wins in both
2022-06-03 14:33:18 +10:00
mkinstalldirs
Remove remaining now-obsolete cvs $Ids.
2018-02-15 20:06:19 +11:00
moduli
upstream: Import regenerated moduli.
2022-11-07 14:00:57 +11:00
moduli.5
Resync moduli.5 with upstream.
2022-04-16 14:33:20 +10:00
moduli.c
upstream: fix some integer overflows in sieve_large() that show up when
2022-05-02 09:22:44 +10:00
monitor.c
upstream: make sure that UseDNS hostname lookup happens in the monitor
2022-06-16 02:12:11 +10:00
monitor.h
upstream: remove last references to active_state
2019-01-20 09:45:18 +11:00
monitor_fdpass.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
monitor_fdpass.h
…
monitor_wrap.c
upstream: make sure that UseDNS hostname lookup happens in the monitor
2022-06-16 02:12:11 +10:00
monitor_wrap.h
upstream: make sure that UseDNS hostname lookup happens in the monitor
2022-06-16 02:12:11 +10:00
msg.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
msg.h
upstream commit
2015-01-15 21:39:14 +11:00
mux.c
upstream: Make SetEnv directives first-match-wins in both
2022-06-03 14:33:18 +10:00
myproposal.h
upstream: select post-quantum KEX
2022-03-31 08:16:38 +11:00
nchan.c
upstream: mark const string array contents const too, i.e. static
2022-02-02 10:38:59 +11:00
nchan.ms
…
nchan2.ms
…
openssh.xml.in
…
opensshd.init.in
Replace shell function with ssh-keygen -A.
2021-08-20 18:14:13 +10:00
packet.c
upstream: whitespace
2022-08-31 12:57:42 +10:00
packet.h
upstream: add a ssh_packet_process_read() function that reads from
2022-01-25 12:18:35 +11:00
pathnames.h
upstream: enable ed25519 support; ok djm
2019-11-13 08:54:09 +11:00
pkcs11.h
…
platform-misc.c
Split platform_sys_dir_uid into its own file
2017-08-25 13:25:01 +10:00
platform-pledge.c
Support Illumos/Solaris fine-grained privileges
2016-01-08 14:29:12 +11:00
platform-tracing.c
Fix comment text. From emaste at freebsd.org.
2022-11-09 08:27:47 +11:00
platform.c
Factor out platform-specific locked account check.
2022-03-26 12:49:50 +11:00
platform.h
Missing semicolon.
2022-03-26 13:15:44 +11:00
poly1305.c
…
poly1305.h
- djm@cvs.openbsd.org 2014/05/02 03:27:54
2014-05-15 14:37:03 +10:00
progressmeter.c
upstream: Replace all calls to signal(2) with a wrapper around
2020-01-23 18:51:25 +11:00
progressmeter.h
upstream: Have progressmeter force an update at the beginning and
2019-01-25 06:32:14 +11:00
readconf.c
upstream: add a RequiredRSASize for checking RSA key length in
2022-09-17 20:39:02 +10:00
readconf.h
upstream: add a RequiredRSASize for checking RSA key length in
2022-09-17 20:39:02 +10:00
readpass.c
upstream: Avoid kill with -1 argument. The out_ctx label can be
2022-05-27 14:59:17 +10:00
rijndael.c
upstream commit
2015-03-23 17:08:12 +11:00
rijndael.h
upstream: Make prototype for rijndaelEncrypt match function
2021-09-29 11:09:27 +10:00
sandbox-capsicum.c
Cache timezone data in capsicum sandbox.
2022-04-23 21:14:01 +10:00
sandbox-darwin.c
sandbox-darwin.c: fix missing prototypes.
2020-01-21 10:37:25 +11:00
sandbox-null.c
…
sandbox-pledge.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
sandbox-rlimit.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
sandbox-seccomp-filter.c
fix SANDBOX_SECCOMP_FILTER_DEBUG
2022-08-11 08:58:28 +10:00
sandbox-solaris.c
drop two more privileges in the Solaris sandbox
2017-06-09 14:44:43 +10:00
sandbox-systrace.c
upstream: Replace all calls to signal(2) with a wrapper around
2020-01-23 18:51:25 +11:00
sc25519.c
…
sc25519.h
…
scp.1
upstream: add RequiredRSASize to the list of keywords accepted by
2022-09-27 08:16:44 +10:00
scp.c
upstream: when scp(1) is using the SFTP protocol for transport (the
2022-10-25 08:55:11 +11:00
servconf.c
upstream: Remove some set but otherwise unused variables, spotted
2022-11-07 22:22:15 +11:00
servconf.h
upstream: Add RequiredRSASize for sshd(8); RSA keys that fall
2022-09-17 20:39:02 +10:00
serverloop.c
upstream: Try to continue running local I/O for channels in state
2022-04-20 15:08:54 +10:00
serverloop.h
upstream commit
2017-09-12 17:37:02 +10:00
session.c
upstream: Switch hpdelim interface to accept only ":" as delimiter.
2022-02-10 15:14:17 +11:00
session.h
upstream: Add server support for signalling sessions via the SSH
2018-10-02 22:41:01 +10:00
sftp-client.c
upstream: sftp client library support for
2022-09-19 20:49:14 +10:00
sftp-client.h
upstream: sftp client library support for
2022-09-19 20:49:14 +10:00
sftp-common.c
upstream: extend sftp-common.c:extend ls_file() to support supplied
2022-09-19 20:49:13 +10:00
sftp-common.h
upstream: extend sftp-common.c:extend ls_file() to support supplied
2022-09-19 20:49:13 +10:00
sftp-glob.c
upstream: when scp(1) is using the SFTP protocol for transport (the
2022-10-25 08:55:11 +11:00
sftp-realpath.c
upstream: sys/param.h is not needed for any visible reason
2021-09-03 14:20:22 +10:00
sftp-server-main.c
Remove seed_rng calls from scp, sftp, sftp-server.
2022-07-27 16:22:30 +10:00
sftp-server.8
upstream: standardise the grammar in the options list; issue
2021-08-03 09:39:57 +10:00
sftp-server.c
upstream: Fix typo in fatal error message.
2022-11-09 20:43:58 +11:00
sftp-usergroup.c
no need for glob.h here
2022-09-19 20:59:34 +10:00
sftp-usergroup.h
upstream: use users-groups-by-id@openssh.com sftp-server extension
2022-09-19 20:51:14 +10:00
sftp.1
upstream: add RequiredRSASize to the list of keywords accepted by
2022-09-27 08:16:44 +10:00
sftp.c
upstream: use users-groups-by-id@openssh.com sftp-server extension
2022-09-19 20:51:14 +10:00
sftp.h
…
sk-api.h
upstream: when enrolling a resident key on a security token, check
2022-07-20 13:38:47 +10:00
sk-usbhid.c
upstream: sk_enroll: never drop SSH_SK_USER_VERIFICATION_REQD flag
2022-09-14 10:16:06 +10:00
smult_curve25519_ref.c
…
sntrup761.c
Disable sntrup761 if compiler doesn't support VLAs.
2021-01-26 14:48:07 +11:00
sntrup761.sh
upstream: Update the sntrup761 creation script and generated code:
2021-01-08 13:49:49 +11:00
srclimit.c
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
srclimit.h
upstream: Add PerSourceMaxStartups and PerSourceNetBlockSize
2021-01-11 15:04:12 +11:00
ssh-add.1
upstream: Since they are deprecated, move DSA to the end of the
2022-02-07 12:27:48 +11:00
ssh-add.c
upstream: Don't attempt to fprintf a null identity comment. From
2022-06-24 14:28:29 +10:00
ssh-agent.1
upstream: ssh-agent.1: - use Nm not Xr for self-ref - while here,
2022-10-25 08:55:10 +11:00
ssh-agent.c
upstream: ssh-agent.1: - use Nm not Xr for self-ref - while here,
2022-10-25 08:55:10 +11:00
ssh-dss.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-ecdsa-sk.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-ecdsa.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-ed25519-sk.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-ed25519.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-gss.h
upstream: make ssh->kex->session_id a sshbuf instead of u_char*/size_t
2021-01-27 21:10:57 +11:00
ssh-keygen.1
upstream: fix repeated words ok miod@ jmc@
2022-09-14 10:16:04 +10:00
ssh-keygen.c
upstream: fix parsing of hex cert expiry time; was checking whether the
2022-11-07 15:43:13 +11:00
ssh-keyscan.1
upstream: allow ssh-keyscan(1) to accept CIDR address ranges, e.g.
2022-10-28 13:39:35 +11:00
ssh-keyscan.c
upstream: allow ssh-keyscan(1) to accept CIDR address ranges, e.g.
2022-10-28 13:39:35 +11:00
ssh-keysign.8
upstream: man pages: add missing commas between subordinate and
2022-04-06 09:16:05 +10:00
ssh-keysign.c
upstream: avoid double-free in error path introduced in r1.70; report
2022-08-01 21:11:33 +10:00
ssh-pkcs11-client.c
make OPENSSL_HAS_ECC checks more thorough
2021-10-01 16:36:24 +10:00
ssh-pkcs11-helper.8
upstream: mention that the helpers are used by ssh(1), ssh-agent(1)
2022-04-29 13:26:24 +10:00
ssh-pkcs11-helper.c
upstream: check for POLLHUP wherever we check for POLLIN
2021-11-18 14:32:54 +11:00
ssh-pkcs11.c
upstream: avoid xmalloc(0) for PKCS#11 keyid for ECDSA keys (we
2021-11-19 08:12:57 +11:00
ssh-pkcs11.h
upstream: expose PKCS#11 key labels/X.509 subjects as comments
2020-01-25 11:35:55 +11:00
ssh-rsa.c
upstream: put sshkey_check_rsa_length() back in sshkey.c to unbreak
2022-10-28 13:49:01 +11:00
ssh-sandbox.h
…
ssh-sk-client.c
upstream: sshsk_load_resident: don't preallocate resp
2022-01-14 14:40:40 +11:00
ssh-sk-helper.8
upstream: mention that the helpers are used by ssh(1), ssh-agent(1)
2022-04-29 13:26:24 +10:00
ssh-sk-helper.c
upstream: Don't leak SK device. Patch from Pedro Martelletto via
2022-04-29 13:26:24 +10:00
ssh-sk.c
upstream: when enrolling a resident key on a security token, check
2022-07-20 13:38:47 +10:00
ssh-sk.h
upstream: When downloading resident keys from a FIDO token, pass
2021-10-28 13:56:59 +11:00
ssh-xmss.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh.1
upstream: add a RequiredRSASize for checking RSA key length in
2022-09-17 20:39:02 +10:00
ssh.c
upstream: typo in comment
2022-11-09 20:41:32 +11:00
ssh.h
upstream: allow some additional control over the use of ssh-askpass
2020-07-15 15:08:10 +10:00
ssh2.h
upstream: draft-ietf-secsh-architecture is now RFC4251.
2020-11-20 13:34:46 +11:00
ssh_api.c
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
ssh_api.h
upstream: lots of typos in comments/docs. Patch from Karsten Weiss
2018-04-10 10:17:15 +10:00
ssh_config
upstream: Add a '%k' TOKEN that expands to the effective HostKey of
2020-07-17 13:52:46 +10:00
ssh_config.5
upstream: The IdentityFile option in ssh_config can also be used to
2022-11-07 22:22:18 +11:00
sshbuf-getput-basic.c
upstream: revert previous; it was broken (spotted by Theo)
2022-05-25 16:06:03 +10:00
sshbuf-getput-crypto.c
upstream: revert previous; it was broken (spotted by Theo)
2022-05-25 16:06:03 +10:00
sshbuf-io.c
upstream: tidy headers; some junk snuck into sshbuf-misc.c and
2020-01-26 10:34:50 +11:00
sshbuf-misc.c
upstream: Add a sshbuf_read() that attempts to read(2) directly in
2022-01-25 10:45:47 +11:00
sshbuf.c
upstream: revert previous; it was broken (spotted by Theo)
2022-05-25 16:06:03 +10:00
sshbuf.h
upstream: revert previous; it was broken (spotted by Theo)
2022-05-25 16:06:03 +10:00
sshconnect.c
upstream: replace recently-added valid_domain() check for hostnames
2022-11-04 09:01:17 +11:00
sshconnect.h
upstream: add a ssh_config KnownHostsCommand that allows the client
2020-12-22 15:43:59 +11:00
sshconnect2.c
upstream: add a RequiredRSASize for checking RSA key length in
2022-09-17 20:39:02 +10:00
sshd.8
upstream: .Li -> .Vt where appropriate; from josiah frentsos,
2022-09-14 10:16:04 +10:00
sshd.c
Remove seed passing over reexec.
2022-11-10 12:44:51 +11:00
sshd_config
Use "prohibit-password" in -portable comments.
2022-11-07 10:54:29 +11:00
sshd_config.5
upstream: Add RequiredRSASize for sshd(8); RSA keys that fall
2022-09-17 20:39:02 +10:00
ssherr.c
upstream: improve the error message for u2f enrollment errors by
2020-01-26 10:18:42 +11:00
ssherr.h
upstream: improve the error message for u2f enrollment errors by
2020-01-26 10:18:42 +11:00
sshkey-xmss.c
upstream: factor out key generation
2022-10-28 12:46:58 +11:00
sshkey-xmss.h
upstream: factor out key generation
2022-10-28 12:46:58 +11:00
sshkey.c
upstream: put sshkey_check_rsa_length() back in sshkey.c to unbreak
2022-10-28 13:49:01 +11:00
sshkey.h
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
sshlogin.c
Include stdlib.h for free() prototype.
2022-04-23 21:14:01 +10:00
sshlogin.h
…
sshpty.c
Include stdio.h for FILE in misc.h.
2020-12-22 18:56:54 +11:00
sshpty.h
upstream commit
2016-11-29 16:51:27 +11:00
sshsig.c
upstream: double free() in error path; from Eusgor via GHPR333
2022-08-19 13:13:53 +10:00
sshsig.h
upstream: Add ssh-keygen -Y match-principals operation to perform
2021-11-27 18:22:41 +11:00
sshtty.c
…
survey.sh.in
…
ttymodes.c
upstream: remove global variable used to stash compat flags and use the
2021-01-27 20:28:25 +11:00
ttymodes.h
upstream commit
2017-05-01 10:05:04 +10:00
uidswap.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
uidswap.h
upstream: Remove support for running ssh(1) setuid and fatal if
2018-07-19 21:41:42 +10:00
umac.c
upstream: spelling
2022-01-04 18:22:46 +11:00
umac.h
upstream: spelling ok dtucker@
2022-01-01 15:19:48 +11:00
umac128.c
upstream commit
2018-02-09 20:00:18 +11:00
utf8.c
upstream: expose vasnmprintf(); ok (as part of other commit) markus
2020-05-01 16:40:11 +10:00
utf8.h
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
verify.c
…
version.h
upstream: openssh-9.1
2022-09-27 19:37:13 +10:00
xmalloc.c
upstream: ssh: xstrdup(): use memcpy(3)
2022-03-18 13:33:36 +11:00
xmalloc.h
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
xmss_commons.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_commons.h
Remove extra XMSS #endif
2018-03-05 10:22:32 +11:00
xmss_fast.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_fast.h
upstream: Add $OpenBSD$ markers to xmss files to help keep synced
2018-03-02 14:29:25 +11:00
xmss_hash.c
upstream: Remove unnecessary includes: openssl/hmac.h and
2022-04-27 21:30:01 +10:00
xmss_hash.h
upstream: Add $OpenBSD$ markers to xmss files to help keep synced
2018-03-02 14:29:25 +11:00
xmss_hash_address.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_hash_address.h
upstream: Add $OpenBSD$ markers to xmss files to help keep synced
2018-03-02 14:29:25 +11:00
xmss_wots.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_wots.h
upstream: Remove unneeded (local) include. ok markus@
2018-03-02 14:30:02 +11:00