.github
Test bigendian interop.
2024-11-08 16:27:05 +11:00
contrib
update version numbers
2024-09-20 08:20:13 +10:00
m4
Improve detection of -fzero-call-used-regs=used.
2024-03-25 10:12:58 +11:00
openbsd-compat
Simplify pselect shim and remove side effects.
2024-10-25 19:01:02 +11:00
regress
upstream: test SIGUSR1 dropping all keys from ssh-agent
2024-10-24 14:29:59 +11:00
.depend
depend
2024-10-14 14:49:20 +11:00
.git_allowed_signers
Add git signing key for Tim Rice
2024-11-04 14:39:27 +11:00
.git_allowed_signers.asc
add new token-based signing key for dtucker@
2024-03-30 16:05:59 +11:00
.gitignore
Updated gitignore to ignore sshd-session and sshd-auth targets
2024-10-25 19:03:42 +11:00
.skipped-commit-ids
upstream: Ignore extra groups that don't fit in the buffer passed
2024-11-07 10:01:05 +11:00
addr.c
upstream: remove addr.[ch] functions that are unused and
2024-10-18 15:30:36 +11:00
addr.h
upstream: remove addr.[ch] functions that are unused and
2024-10-18 15:30:36 +11:00
addrmatch.c
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
atomicio.c
remove sys/param.h in -portable, after upstream
2021-12-22 09:02:50 +11:00
atomicio.h
upstream: move client/server SSH-* banners to buffers under
2018-12-27 14:38:22 +11:00
audit-bsm.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
audit-linux.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit.h
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
auth2-chall.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
auth2-gss.c
upstream: g/c unused variable
2024-05-17 14:42:49 +10:00
auth2-hostbased.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth2-kbdint.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth2-methods.c
upstream: typos
2024-05-31 19:04:11 +10:00
auth2-none.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth2-passwd.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth2-pubkey.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth2-pubkeyfile.c
upstream: Remove unused compat.h includes.
2023-03-05 19:27:31 +11:00
auth2.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth-bsdauth.c
remove duplicate #includes
2019-10-02 10:54:28 +10:00
auth-krb5.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
auth-options.c
conditionalise stdint.h inclusion on HAVE_STDINT_H
2023-07-18 15:41:12 +10:00
auth-options.h
upstream: make authorized_keys environment="..." directives
2021-07-23 14:07:19 +10:00
auth-pam.c
propagate PAM crashes to PerSourcePenalties
2024-06-17 17:02:18 +10:00
auth-pam.h
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth-passwd.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
auth-rhosts.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
auth-shadow.c
Cast time_t's in debug output to long long.
2023-02-27 21:04:22 +11:00
auth-sia.c
Remove key.h from portable files too.
2018-07-12 14:57:46 +10:00
auth-sia.h
- (dtucker) [auth-passwd.c auth-sia.h] Remove duplicate definitions of
2005-04-05 21:00:47 +10:00
auth.c
upstream: add a "Match invalid-user" predicate to sshd_config Match
2024-09-15 11:23:11 +10:00
auth.h
upstream: remove prototypes with no matching function; ok djm@
2024-05-22 14:21:13 +10:00
authfd.c
upstream: Make it possible to load certs from PKCS#11 tokens
2023-12-19 01:52:55 +11:00
authfd.h
upstream: Make it possible to load certs from PKCS#11 tokens
2023-12-19 01:52:55 +11:00
authfile.c
upstream: remove some unused defines; ok djm@
2024-09-24 12:09:35 +10:00
authfile.h
upstream: factor out reading/writing sshbufs to dedicated
2020-01-26 10:18:42 +11:00
bitmap.c
upstream commit
2017-10-20 12:58:35 +11:00
bitmap.h
upstream commit
2017-10-20 12:58:35 +11:00
buildpkg.sh.in
whitespace at EOL
2020-12-22 19:43:55 +11:00
canohost.c
upstream: Return immediately from get_sock_port
2023-03-31 16:17:22 +11:00
canohost.h
upstream commit
2016-03-08 06:20:35 +11:00
chacha.c
upstream: move other RCSIDs to before their respective license blocks
2023-07-17 15:33:51 +10:00
chacha.h
upstream: whitespace (tab after space)
2021-04-03 17:20:00 +11:00
channels.c
upstream: don't start the ObscureKeystrokeTiming mitigations if
2024-10-14 09:21:08 +11:00
channels.h
upstream: don't start the ObscureKeystrokeTiming mitigations if
2024-10-14 09:21:08 +11:00
cipher-aes.c
remove support for old libcrypto
2023-03-24 13:56:25 +11:00
cipher-aesctr.c
Add includes.h for compatibility stuff.
2015-02-25 13:17:40 +11:00
cipher-aesctr.h
- markus@cvs.openbsd.org 2014/04/29 18:01:49
2014-05-15 14:24:09 +10:00
cipher-chachapoly-libcrypto.c
upstream: move other RCSIDs to before their respective license blocks
2023-07-17 15:33:51 +10:00
cipher-chachapoly.c
upstream: move other RCSIDs to before their respective license blocks
2023-07-17 15:33:51 +10:00
cipher-chachapoly.h
upstream: make Chacha20-POLY1305 context struct opaque; ok tb@ as
2020-04-03 15:36:57 +11:00
cipher.c
upstream: As defined in the RFC, the SSH protocol has negotiable
2024-08-27 09:05:43 +10:00
cipher.h
upstream: Garbage collect cipher_get_keyiv_len()
2023-10-11 15:57:08 +11:00
cleanup.c
- (djm) [auth-pam.c auth-shadow.c auth2-none.c cleanup.c sshd.c]
2006-08-05 14:07:20 +10:00
clientloop.c
upstream: don't start the ObscureKeystrokeTiming mitigations if
2024-10-14 09:21:08 +11:00
clientloop.h
upstream: remove prototypes with no matching function; ok djm@
2024-05-22 14:21:13 +10:00
compat.c
upstream: Refactor creation of KEX proposal.
2023-03-06 23:31:52 +11:00
compat.h
upstream: Refactor creation of KEX proposal.
2023-03-06 23:31:52 +11:00
config.guess
Update autotools
2022-12-06 12:23:08 +11:00
config.sub
Update autotools
2022-12-06 12:23:08 +11:00
configure.ac
htole64() etc for systems without endian.h
2024-10-27 13:28:11 +11:00
CREDITS
convert to UTF-8; from Mike Frysinger
2019-07-29 09:49:23 +10:00
crypto_api.h
upstream: Add experimental support for hybrid post-quantum key exchange
2024-09-02 22:32:44 +10:00
defines.h
fix uint64_t types; reported by Tom G. Christensen
2024-10-30 14:25:14 +11:00
dh.c
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
dh.h
upstream: Add ModuliFile keyword to sshd_config to specify the
2021-03-13 13:14:13 +11:00
digest-libc.c
Use SHA.*_HMAC_BLOCK_SIZE if needed.
2021-12-23 11:36:08 +11:00
digest-openssl.c
upstream: whitespace; no code change
2020-10-29 13:54:13 +11:00
digest.h
upstream commit
2017-05-10 11:41:21 +10:00
dispatch.c
upstream: Remove unused compat.h includes.
2023-03-05 19:27:31 +11:00
dispatch.h
upstream: remove last traces of old packet API!
2019-01-20 09:45:18 +11:00
dns.c
upstream: Plug mem leak on error path. Coverity CID 405026, ok djm@.
2023-03-10 15:42:37 +11:00
dns.h
upstream: let ssh-keygen and ssh-keyscan accept
2023-02-10 16:12:42 +11:00
ed25519.c
upstream: update OpenSSH's Ed25519 code to the last version of SUPERCOP
2023-01-16 10:57:41 +11:00
ed25519.sh
upstream: spelling; ok djm@
2024-05-17 14:42:49 +10:00
entropy.c
Remove seed passing over reexec.
2022-11-10 12:44:51 +11:00
entropy.h
Adapt portable to legacy buffer API removal
2018-07-10 19:39:52 +10:00
fatal.c
upstream: fix SEGV on fatal() errors spotted by dtucker@
2020-10-19 19:09:08 +11:00
fixalgorithms
- (dtucker) [Makefile.in configure.ac fixalgorithms] Remove unsupported
2013-06-11 11:26:10 +10:00
fixpaths
groupaccess.c
upstream: Ignore extra groups that don't fit in the buffer passed
2024-11-07 10:01:05 +11:00
groupaccess.h
- djm@cvs.openbsd.org 2008/07/04 03:44:59
2008-07-04 13:51:12 +10:00
gss-genr.c
upstream: whitespace
2024-02-01 13:42:45 +11:00
gss-serv-krb5.c
upstream: sshd: switch GSSAPI to sshbuf API; ok djm@
2018-07-10 15:28:30 +10:00
gss-serv.c
gss-serv.c needs sys/param.h
2024-09-25 11:15:45 +10:00
hash.c
Remove old OpenBSD version marker.
2021-07-03 20:36:06 +10:00
hmac.c
upstream: change explicit_bzero();free() to freezero()
2020-02-28 12:26:28 +11:00
hmac.h
- djm@cvs.openbsd.org 2014/06/24 01:13:21
2014-07-02 15:28:02 +10:00
hostfile.c
upstream: fseek to end of known_hosts before writing to it.
2023-02-21 18:28:26 +11:00
hostfile.h
upstream: make struct hostkeys public; I have no idea why I made it
2021-01-26 12:21:48 +11:00
includes.h
remove sys/param.h in -portable, after upstream
2021-12-22 09:02:50 +11:00
INSTALL
remove support for old libcrypto
2023-03-24 13:56:25 +11:00
install-sh
Update autotools
2022-12-06 12:23:08 +11:00
kex-names.c
test for compiler feature needed for ML-KEM
2024-09-09 16:06:21 +10:00
kex.c
upstream: As defined in the RFC, the SSH protocol has negotiable
2024-08-27 09:05:43 +10:00
kex.h
upstream: Add experimental support for hybrid post-quantum key exchange
2024-09-02 22:32:44 +10:00
kexc25519.c
upstream: Add experimental support for hybrid post-quantum key exchange
2024-09-02 22:32:44 +10:00
kexdh.c
Move signal.h up include order to match upstream.
2021-07-03 20:38:09 +10:00
kexecdh.c
Put ssherr.h back as it's actually needed.
2019-10-02 14:30:55 +10:00
kexgen.c
upstream: pull post-quantum ML-KEM/x25519 key exchange out from
2024-09-09 12:45:53 +10:00
kexgex.c
upstream: pass most arguments to the KEX hash functions as sshbuf
2019-01-23 13:02:02 +11:00
kexgexc.c
upstream: Record session ID, host key and sig at intital KEX
2021-12-20 09:24:42 +11:00
kexgexs.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
kexmlkem768x25519.c
upstream: explicitly include endian.h
2024-10-27 13:09:58 +11:00
kexsntrup761x25519.c
upstream: update the Streamlined NTRU Prime code from the "ref"
2024-09-15 12:24:48 +10:00
krl.c
upstream: Move RCSID to before license block and away from #includes,
2023-07-17 15:24:14 +10:00
krl.h
upstream: remove vestigal support for KRL signatures
2023-07-17 14:52:35 +10:00
libcrux_mlkem768_sha3.h
upstream: fix ML-KEM768x25519 KEX on big-endian systems; spotted by
2024-10-27 13:09:32 +11:00
LICENCE
include openbsd-compat/base64.c license in LICENSE
2024-09-18 16:03:23 +10:00
log.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
log.h
upstream: retire unused API
2024-06-28 08:37:11 +10:00
loginrec.c
Fix "undeclared 'ut'" error by replacing it with 'utx'
2024-10-18 13:18:43 +11:00
loginrec.h
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
logintest.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
mac.c
remove duplicate #includes
2019-10-02 10:54:28 +10:00
mac.h
upstream commit
2016-07-08 13:50:03 +10:00
Makefile.in
Allow overridding TEST_SSH_SSHD.
2024-11-08 16:25:47 +11:00
match.c
upstream: make parsing user@host consistently look for the last '@' in
2024-09-06 12:31:19 +10:00
match.h
upstream: some language improvements; ok markus
2020-07-15 15:07:42 +10:00
mdoc2man.awk
Remove remaining now-obsolete cvs $Ids.
2018-02-15 20:06:19 +11:00
misc.c
upstream: relax valid_domain() checks to allow an underscore as the
2024-10-24 14:28:40 +11:00
misc.h
upstream: fix regression introduced when I switched the "Match"
2024-09-25 11:27:24 +10:00
mkinstalldirs
Remove remaining now-obsolete cvs $Ids.
2018-02-15 20:06:19 +11:00
mlkem768.sh
upstream: fix ML-KEM768x25519 KEX on big-endian systems; spotted by
2024-10-27 13:09:32 +11:00
moduli
upstream: Import regenerated moduli.
2024-08-21 20:24:24 +10:00
moduli.5
Resync moduli.5 with upstream.
2022-04-16 14:33:20 +10:00
moduli.c
upstream: Always call fclose on checkpoints.
2023-03-02 18:24:51 +11:00
monitor_fdpass.c
upstream: use the new variant log macros instead of prepending
2020-10-18 23:46:29 +11:00
monitor_fdpass.h
- djm@cvs.openbsd.org 2007/09/04 03:21:03
2007-09-17 12:04:08 +10:00
monitor_wrap.c
upstream: Make debug call printf("%s", NULL) safe.
2024-10-22 17:50:23 +11:00
monitor_wrap.h
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
monitor.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
monitor.h
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
msg.c
upstream: Start the process of splitting sshd into separate
2024-05-17 14:41:35 +10:00
msg.h
upstream commit
2015-01-15 21:39:14 +11:00
mux.c
upstream: remove duplicate misc.h include ok dtucker@
2024-10-14 09:21:07 +11:00
myproposal.h
upstream: promote mlkem768x25519-sha256 to be the default key exchange;
2024-10-25 12:36:24 +11:00
nchan2.ms
- djm@cvs.openbsd.org 2008/05/15 23:52:24
2008-05-19 16:08:20 +10:00
nchan.c
upstream: Fix proxy multiplexing (-O proxy) bug
2024-07-26 08:51:40 +10:00
nchan.ms
openssh.xml.in
- (tim) [buildpkg.sh.in openssh.xml.in] Allow more flexibility where smf(5)
2007-07-24 21:16:07 -07:00
opensshd.init.in
Replace shell function with ssh-keygen -A.
2021-08-20 18:14:13 +10:00
OVERVIEW
upstream: refer to OpenSSL not SSLeay;
2018-10-23 16:57:54 +11:00
packet.c
upstream: As defined in the RFC, the SSH protocol has negotiable
2024-08-27 09:05:43 +10:00
packet.h
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
pathnames.h
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
pkcs11.h
- deraadt@cvs.openbsd.org 2013/11/26 19:15:09
2013-12-05 10:22:03 +11:00
platform-listen.c
Makefile support for sshd-session
2024-05-17 14:41:37 +10:00
platform-misc.c
Split platform_sys_dir_uid into its own file
2017-08-25 13:25:01 +10:00
platform-pledge.c
Support Illumos/Solaris fine-grained privileges
2016-01-08 14:29:12 +11:00
platform-tracing.c
Fix comment text. From emaste at freebsd.org.
2022-11-09 08:27:47 +11:00
platform.c
Makefile support for sshd-session
2024-05-17 14:41:37 +10:00
platform.h
notify systemd on listen and reload
2024-04-03 14:40:32 +11:00
poly1305.c
upstream: move other RCSIDs to before their respective license blocks
2023-07-17 15:33:51 +10:00
poly1305.h
- djm@cvs.openbsd.org 2014/05/02 03:27:54
2014-05-15 14:37:03 +10:00
progressmeter.c
upstream: remove some unused defines; ok djm@
2024-09-24 12:09:35 +10:00
progressmeter.h
upstream: Have progressmeter force an update at the beginning and
2019-01-25 06:32:14 +11:00
PROTOCOL
upstream: fix missing field in users-groups-by-id@openssh.com reply
2024-01-08 16:06:29 +11:00
PROTOCOL.agent
upstream: add missing reserved fields to key constraint protocol
2024-04-30 15:46:39 +10:00
PROTOCOL.certkeys
upstream: PROTOCOL.certkeys: update reference from IETF draft to
2021-06-06 13:24:37 +10:00
PROTOCOL.chacha20poly1305
upstream: Fix some typos and an incorrect word in docs. Patch from
2020-02-21 12:27:23 +11:00
PROTOCOL.key
upstream: in OpenSSH private key format, correct type for subsequent
2024-03-30 16:57:32 +11:00
PROTOCOL.krl
upstream: remove vestigal support for KRL signatures
2023-07-17 14:52:35 +10:00
PROTOCOL.mux
upstream: Remove outdated note from PROTOCOL.mux
2024-01-08 16:12:17 +11:00
PROTOCOL.sshsig
upstream: Add RCS IDs to the few files that are missing them; from
2020-08-31 14:34:41 +10:00
PROTOCOL.u2f
upstream: when writing an attestation blob for a FIDO key, record all
2020-09-09 13:11:34 +10:00
readconf.c
upstream: fix previous change to ssh_config Match, which broken on
2024-09-27 10:01:11 +10:00
readconf.h
upstream: remove some unused defines; ok djm@
2024-09-27 10:01:11 +10:00
README
update version numbers
2024-09-20 08:20:13 +10:00
README.dns
Minor documentation update:
2020-02-11 12:51:24 +11:00
README.md
Add Coverity badges.
2023-03-03 14:50:03 +11:00
README.platform
nite that recent OSX tun/tap is unsupported
2024-01-08 16:26:37 +11:00
README.privsep
Privsep is now required.
2019-09-19 15:41:23 +10:00
README.tun
- deraadt@cvs.openbsd.org 2006/03/28 00:12:31
2006-03-31 23:10:51 +11:00
readpass.c
upstream: allow WAYLAND_DISPLAY to enable SSH_ASKPASS
2024-03-30 15:35:03 +11:00
rijndael.c
upstream commit
2015-03-23 17:08:12 +11:00
rijndael.h
upstream: Make prototype for rijndaelEncrypt match function
2021-09-29 11:09:27 +10:00
sandbox-capsicum.c
fix capsicum sandbox
2024-10-14 17:17:50 +11:00
sandbox-darwin.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
sandbox-null.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
sandbox-rlimit.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
sandbox-seccomp-filter.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
sandbox-solaris.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
scp.1
upstream: Mention that scp uses the SFTP protocol and remove
2023-01-03 17:53:05 +11:00
scp.c
upstream: save_errno wrappers inside two small signal handlers that
2024-06-28 08:34:49 +10:00
SECURITY.md
basic SECURITY.md (refers people to the website)
2021-11-03 12:08:21 +11:00
servconf.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
servconf.h
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
serverloop.c
upstream: promote connection-closed messages from verbose to info
2024-06-17 18:31:39 +10:00
serverloop.h
upstream commit
2017-09-12 17:37:02 +10:00
session.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
session.h
upstream: Add channel_force_close()
2023-01-06 16:21:39 +11:00
sftp-client.c
upstream: spelling; ok djm@
2024-05-17 14:42:49 +10:00
sftp-client.h
upstream: the sftp code was one of my first contributions to
2023-09-08 15:59:08 +10:00
sftp-common.c
upstream: don't attempt to decode a ridiculous number of
2023-03-31 15:06:20 +11:00
sftp-common.h
upstream: extend sftp-common.c:extend ls_file() to support supplied
2022-09-19 20:49:13 +10:00
sftp-glob.c
upstream: rename remote_glob() -> sftp_glob() to match other API
2023-09-11 09:14:02 +10:00
sftp-realpath.c
upstream: sys/param.h is not needed for any visible reason
2021-09-03 14:20:22 +10:00
sftp-server-main.c
Remove seed_rng calls from scp, sftp, sftp-server.
2022-07-27 16:22:30 +10:00
sftp-server.8
upstream: standardise the grammar in the options list; issue
2021-08-03 09:39:57 +10:00
sftp-server.c
upstream: fix home-directory extension implementation, it always
2024-04-30 16:24:22 +10:00
sftp-usergroup.c
upstream: the sftp code was one of my first contributions to
2023-09-08 15:59:08 +10:00
sftp-usergroup.h
upstream: use users-groups-by-id@openssh.com sftp-server extension
2022-09-19 20:51:14 +10:00
sftp.1
upstream: add a -X option to both scp(1) and sftp(1) to allow
2023-01-03 17:53:05 +11:00
sftp.c
upstream: save_errno wrappers inside two small signal handlers that
2024-06-28 08:34:49 +10:00
sftp.h
- dtucker@cvs.openbsd.org 2008/06/13 00:12:02
2008-06-13 10:22:54 +10:00
sk-api.h
upstream: when enrolling a resident key on a security token, check
2022-07-20 13:38:47 +10:00
sk-usbhid.c
conditionalise stdint.h inclusion on HAVE_STDINT_H
2023-07-18 15:41:12 +10:00
smult_curve25519_ref.c
- markus@cvs.openbsd.org 2013/11/02 21:59:15
2013-11-04 08:26:52 +11:00
sntrup761.c
upstream: use 64 bit math to avoid signed underflow. upstream code
2024-09-16 15:37:51 +10:00
sntrup761.sh
upstream: use 64 bit math to avoid signed underflow. upstream code
2024-09-16 15:37:51 +10:00
srclimit.c
upstream: Add a "refuseconnection" penalty class to sshd_config
2024-09-15 11:23:10 +10:00
srclimit.h
upstream: Add a "refuseconnection" penalty class to sshd_config
2024-09-15 11:23:10 +10:00
ssh2.h
upstream: Reserve a range of "local extension" message numbers that
2023-10-10 14:58:55 +11:00
ssh_api.c
upstream: in _ssh_order_hostkeyalgs() consider ECDSA curve type when
2024-10-18 16:16:13 +11:00
ssh_api.h
upstream: lots of typos in comments/docs. Patch from Karsten Weiss
2018-04-10 10:17:15 +10:00
ssh_config
upstream: CheckHostIP has defaulted to 'no' for a while; make the
2023-08-03 09:09:02 +10:00
ssh_config.5
upstream: mlkem768x25519-sha256 has been promoted to default key
2024-10-27 13:09:32 +11:00
ssh-add.1
upstream: disable the DSA signature algorithm by default; ok
2024-06-17 18:48:29 +10:00
ssh-add.c
upstream: make parsing user@host consistently look for the last '@' in
2024-09-06 12:31:19 +10:00
ssh-agent.1
upstream: ssh-agent implemented an all-or-nothing allow-list of
2024-11-07 10:49:13 +11:00
ssh-agent.c
upstream: ssh-agent implemented an all-or-nothing allow-list of
2024-11-07 10:49:13 +11:00
ssh-dss.c
upstream: make DSA key support compile-time optional, defaulting to
2024-01-11 15:46:22 +11:00
ssh-ecdsa-sk.c
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
ssh-ecdsa.c
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
ssh-ed25519-sk.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-ed25519.c
upstream: refactor sshkey_private_deserialize
2022-10-28 12:47:01 +11:00
ssh-gss.h
upstream: remove prototypes with no matching function; ok djm@
2024-05-22 14:21:13 +10:00
ssh-keygen.1
upstream: mention that ed25519 is the default key type generated and
2024-08-17 18:35:31 +10:00
ssh-keygen.c
upstream: allow "-" as output file for moduli screening
2024-10-18 16:37:53 +11:00
ssh-keyscan.1
upstream: disable the DSA signature algorithm by default; ok
2024-06-17 18:48:29 +10:00
ssh-keyscan.c
upstream: ssh-keyscan doesn't need it's own sshfatal() definition, it
2024-10-18 16:33:29 +11:00
ssh-keysign.8
upstream: disable the DSA signature algorithm by default; ok
2024-06-17 18:48:29 +10:00
ssh-keysign.c
upstream: stricter validation of messaging socket fd number; disallow
2024-04-30 15:53:26 +10:00
ssh-pkcs11-client.c
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
ssh-pkcs11-helper.8
upstream: mention that the helpers are used by ssh(1), ssh-agent(1)
2022-04-29 13:26:24 +10:00
ssh-pkcs11-helper.c
more OPENSSL_HAS_ECC
2024-08-16 08:30:20 +10:00
ssh-pkcs11.c
upstream: remove unneeded semicolons; checked by millert@
2024-09-24 12:09:35 +10:00
ssh-pkcs11.h
upstream: Make it possible to load certs from PKCS#11 tokens
2023-12-19 01:52:55 +11:00
ssh-rsa.c
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
ssh-sandbox.h
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
ssh-sk-client.c
upstream: sshsk_load_resident: don't preallocate resp
2022-01-14 14:40:40 +11:00
ssh-sk-helper.8
upstream: mention that the helpers are used by ssh(1), ssh-agent(1)
2022-04-29 13:26:24 +10:00
ssh-sk-helper.c
upstream: Remove duplicate includes.
2022-12-04 22:40:04 +11:00
ssh-sk.c
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
ssh-sk.h
upstream: When downloading resident keys from a FIDO token, pass
2021-10-28 13:56:59 +11:00
ssh-xmss.c
conditionalise stdint.h inclusion on HAVE_STDINT_H
2023-07-18 15:41:12 +10:00
ssh.1
upstream: mention mux proxy mode
2024-07-26 08:51:19 +10:00
ssh.c
upstream: require control-escape character sequences passed via the '-e
2024-10-18 16:04:16 +11:00
ssh.h
upstream: remove some unused defines; ok djm@
2024-09-27 10:01:11 +10:00
sshbuf-getput-basic.c
upstream: revert previous; it was broken (spotted by Theo)
2022-05-25 16:06:03 +10:00
sshbuf-getput-crypto.c
fix merge botch that broke !OPENSSL_HAS_ECC
2024-08-15 23:35:54 +10:00
sshbuf-io.c
upstream: tidy headers; some junk snuck into sshbuf-misc.c and
2020-01-26 10:34:50 +11:00
sshbuf-misc.c
upstream: Add a sshbuf_read() that attempts to read(2) directly in
2022-01-25 10:45:47 +11:00
sshbuf.c
upstream: Reorder calloc arguments
2024-08-15 11:01:50 +10:00
sshbuf.h
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
2024-08-15 12:07:59 +10:00
sshconnect2.c
upstream: remove duplicate check; GHPR392 from Pedro Martelletto
2024-10-18 16:46:09 +11:00
sshconnect.c
upstream: add explict check for server hostkey type against
2024-04-30 12:22:35 +10:00
sshconnect.h
upstream: add explict check for server hostkey type against
2024-04-30 12:22:35 +10:00
sshd_config
Use "prohibit-password" in -portable comments.
2022-11-07 10:54:29 +11:00
sshd_config.5
upstream: mlkem768x25519-sha256 has been promoted to default key
2024-10-27 13:09:32 +11:00
sshd-auth.c
Seed RNG when starting up sshd-auth.
2024-10-17 20:50:29 +11:00
sshd-debug.sh
upstream: Add a sshd debug wrapper
2024-10-22 17:50:38 +11:00
sshd-session.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
sshd.8
upstream: document Match invalid-user
2024-09-15 11:23:11 +10:00
sshd.c
upstream: Split per-connection sshd-session binary
2024-10-14 14:01:37 +11:00
ssherr.c
upstream: improve the error message for u2f enrollment errors by
2020-01-26 10:18:42 +11:00
ssherr.h
upstream: improve the error message for u2f enrollment errors by
2020-01-26 10:18:42 +11:00
sshkey-xmss.c
upstream: factor out key generation
2022-10-28 12:46:58 +11:00
sshkey-xmss.h
upstream: factor out key generation
2022-10-28 12:46:58 +11:00
sshkey.c
upstream: remove some unused defines; ok djm@
2024-09-24 12:09:35 +10:00
sshkey.h
upstream: be more strict in parsing key type names. Only allow
2024-09-04 15:38:50 +10:00
sshlogin.c
Include stdlib.h for free() prototype.
2022-04-23 21:14:01 +10:00
sshlogin.h
- (djm) [sshlogin.h] Fix prototype merge botch from 2006; bz#2134
2013-08-01 14:34:16 +10:00
sshpty.c
Include stdio.h for FILE in misc.h.
2020-12-22 18:56:54 +11:00
sshpty.h
upstream commit
2016-11-29 16:51:27 +11:00
sshsig.c
upstream: skip more whitespace, fixes find-principals on
2024-03-09 09:17:22 +11:00
sshsig.h
upstream: Add ssh-keygen -Y match-principals operation to perform
2021-11-27 18:22:41 +11:00
sshtty.c
- djm@cvs.openbsd.org 2010/01/09 05:04:24
2010-01-09 22:26:23 +11:00
survey.sh.in
- (dtucker) [config.sh.in] Collect oslevel -r too.
2005-02-15 21:26:32 +11:00
TODO
Remove support for S/Key
2018-07-31 12:59:30 +10:00
ttymodes.c
upstream: remove global variable used to stash compat flags and use the
2021-01-27 20:28:25 +11:00
ttymodes.h
upstream commit
2017-05-01 10:05:04 +10:00
uidswap.c
polish whitespace for portable files
2021-04-03 17:47:37 +11:00
uidswap.h
upstream: Remove support for running ssh(1) setuid and fatal if
2018-07-19 21:41:42 +10:00
umac128.c
upstream commit
2018-02-09 20:00:18 +11:00
umac.c
upstream: correct size for array argument when changing
2023-03-07 16:38:39 +11:00
umac.h
upstream: spelling ok dtucker@
2022-01-01 15:19:48 +11:00
utf8.c
upstream: expose vasnmprintf(); ok (as part of other commit) markus
2020-05-01 16:40:11 +10:00
utf8.h
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
version.h
upstream: openssh-9.9
2024-09-20 08:18:23 +10:00
xmalloc.c
upstream: ssh: xstrdup(): use memcpy(3)
2022-03-18 13:33:36 +11:00
xmalloc.h
upstream: highly polished whitespace, mostly fixing spaces-for-tab
2021-04-03 17:23:02 +11:00
xmss_commons.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_commons.h
Remove extra XMSS #endif
2018-03-05 10:22:32 +11:00
xmss_fast.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_fast.h
upstream: Add $OpenBSD$ markers to xmss files to help keep synced
2018-03-02 14:29:25 +11:00
xmss_hash_address.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_hash_address.h
upstream: Add $OpenBSD$ markers to xmss files to help keep synced
2018-03-02 14:29:25 +11:00
xmss_hash.c
upstream: spelling; ok markus@
2024-01-08 13:25:21 +11:00
xmss_hash.h
upstream: Add $OpenBSD$ markers to xmss files to help keep synced
2018-03-02 14:29:25 +11:00
xmss_wots.c
wrap stdint.h include in HAVE_STDINT_H
2019-10-09 09:06:35 +11:00
xmss_wots.h
upstream: Remove unneeded (local) include. ok markus@
2018-03-02 14:30:02 +11:00
9e528e65a0
