contrib
openssl-devel is obsoleted by libssl-devel
2019-06-05 15:04:57 +10:00
openbsd-compat
fixed test in OSX closefrom() replacement
2019-09-02 10:28:42 +10:00
regress
make unittests pass for no-openssl case
2019-09-08 10:37:17 +10:00
.depend
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
.gitignore
Add tags to .gitignore
2019-02-22 15:02:31 +11:00
.skipped-commit-ids
upstream: avoid compiling certain files that deeply depend on
2019-09-06 17:54:21 +10:00
aclocal.m4
Better detection of unsupported compiler options.
2018-06-08 13:55:59 +10:00
addrmatch.c
upstream: fix some memory leaks spotted by Coverity via Jakub Jelen
2018-07-31 13:13:26 +10:00
atomicio.c
upstream: Check for both EAGAIN and EWOULDBLOCK. This is a no-op
2019-01-24 14:40:03 +11:00
atomicio.h
upstream: move client/server SSH-* banners to buffers under
2018-12-27 14:38:22 +11:00
audit-bsm.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit-linux.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit.c
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
audit.h
last bits of old packet API / active_state global
2019-01-20 14:55:27 +11:00
auth2-chall.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth2-gss.c
upstream: delay bailout for invalid authentic
2018-07-31 13:13:26 +10:00
auth2-hostbased.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth2-kbdint.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth2-none.c
upstream: sshd: switch authentication to sshbuf API; ok djm@
2018-07-10 15:27:43 +10:00
auth2-passwd.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth2-pubkey.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth2.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth-bsdauth.c
upstream: sshd: switch authentication to sshbuf API; ok djm@
2018-07-10 15:27:43 +10:00
auth-krb5.c
upstream: sshd: switch authentication to sshbuf API; ok djm@
2018-07-10 15:27:43 +10:00
auth-options.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth-options.h
upstream: cap the number of permiopen/permitlisten directives we're
2019-07-09 14:20:15 +10:00
auth-pam.c
Typo fixes in error messages.
2019-06-08 00:51:18 +10:00
auth-pam.h
remove PAM dependencies on old packet API
2019-01-20 10:22:18 +11:00
auth-passwd.c
check pw_passwd != NULL here too
2018-10-11 11:29:35 +11:00
auth-rhosts.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
auth-shadow.c
Remove key.h from portable files too.
2018-07-12 14:57:46 +10:00
auth-sia.c
Remove key.h from portable files too.
2018-07-12 14:57:46 +10:00
auth-sia.h
auth-skey.c
Remove key.h from portable files too.
2018-07-12 14:57:46 +10:00
auth.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
auth.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
authfd.c
upstream: authfd: add function to check if key is in agent
2019-09-03 18:39:31 +10:00
authfd.h
upstream: authfd: add function to check if key is in agent
2019-09-03 18:39:31 +10:00
authfile.c
upstream: move advance_past_options to authfile.c and make it
2019-09-03 18:39:31 +10:00
authfile.h
upstream: move advance_past_options to authfile.c and make it
2019-09-03 18:39:31 +10:00
bitmap.c
bitmap.h
buildpkg.sh.in
canohost.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
canohost.h
chacha.c
chacha.h
channels.c
upstream: Remove some set but never used variables. ok daraadt@
2019-07-08 11:45:51 +10:00
channels.h
upstream: include a little more information about the status and
2018-10-04 10:44:49 +10:00
cipher-aes.c
cipher-aesctr.c
cipher-aesctr.h
cipher-chachapoly.c
cipher-chachapoly.h
cipher-ctr.c
cipher.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
cipher.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
cleanup.c
clientloop.c
upstream: When using a combination of a Yubikey+GnuPG+remote
2019-07-30 15:06:27 +10:00
clientloop.h
upstream: client: switch to sshbuf API; ok djm@
2018-07-10 15:14:26 +10:00
compat.c
upstream: revert compat.[ch] section of the following change. It
2018-08-13 12:42:13 +10:00
compat.h
upstream: revert compat.[ch] section of the following change. It
2018-08-13 12:42:13 +10:00
config.guess
config.sub
configure.ac
tweak warning flags
2019-08-30 14:26:19 +10:00
CREDITS
convert to UTF-8; from Mike Frysinger
2019-07-29 09:49:23 +10:00
crypto_api.h
upstream: Add support for a PQC KEX/KEM:
2019-01-21 22:07:02 +11:00
defines.h
remove realpath() compat replacement
2019-07-08 13:38:39 +10:00
dh.c
upstream: typo in previous
2019-09-08 14:49:04 +10:00
dh.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
digest-libc.c
Re-apply portability changes to current sha2.{c,h}.
2019-07-23 22:06:24 +10:00
digest-openssl.c
Re-apply portability changes to current sha2.{c,h}.
2019-07-23 22:06:24 +10:00
digest.h
dispatch.c
upstream: allow sshpkt_fatal() to take a varargs format; we'll
2019-01-20 09:02:20 +11:00
dispatch.h
upstream: remove last traces of old packet API!
2019-01-20 09:45:18 +11:00
dns.c
dns.h
ed25519.c
entropy.c
Add headers to prevent warnings w/out OpenSSL.
2019-07-23 22:26:20 +10:00
entropy.h
Adapt portable to legacy buffer API removal
2018-07-10 19:39:52 +10:00
fatal.c
fe25519.c
fe25519.h
fixalgorithms
fixpaths
ge25519_base.data
ge25519.c
ge25519.h
groupaccess.c
upstream: Move checks for lists of users or groups into their own
2019-03-08 15:10:07 +11:00
groupaccess.h
gss-genr.c
upstream: kerberos/gssapi fixes for buffer removal
2018-07-10 19:15:35 +10:00
gss-serv-krb5.c
upstream: sshd: switch GSSAPI to sshbuf API; ok djm@
2018-07-10 15:28:30 +10:00
gss-serv.c
upstream: sshd: switch GSSAPI to sshbuf API; ok djm@
2018-07-10 15:28:30 +10:00
hash.c
hmac.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
hmac.h
hostfile.c
upstream: Remove some set but never used variables. ok daraadt@
2019-07-08 11:45:51 +10:00
hostfile.h
includes.h
INSTALL
Add OpenSSL 1.1.1 to the supported list.
2019-05-16 07:53:20 +10:00
install-sh
kex.c
upstream: Allow prepending a list of algorithms to the default set
2019-09-08 14:49:04 +10:00
kex.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
kexc25519.c
upstream: rename kex->kem_client_pub -> kex->client_pub now that
2019-01-21 23:13:03 +11:00
kexdh.c
typo
2019-01-22 10:50:40 +11:00
kexecdh.c
Add headers to prevent warnings w/out OpenSSL.
2019-07-23 22:26:20 +10:00
kexgen.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
kexgex.c
upstream: pass most arguments to the KEX hash functions as sshbuf
2019-01-23 13:02:02 +11:00
kexgexc.c
upstream: pass most arguments to the KEX hash functions as sshbuf
2019-01-23 13:02:02 +11:00
kexgexs.c
upstream: pass most arguments to the KEX hash functions as sshbuf
2019-01-23 13:02:02 +11:00
kexsntrup4591761x25519.c
new files need includes.h
2019-01-22 00:02:23 +11:00
krl.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
krl.h
upstream: Add protection for private keys at rest in RAM against
2019-06-21 14:24:35 +10:00
LICENCE
convert to UTF-8; from Mike Frysinger
2019-07-29 09:49:23 +10:00
log.c
upstream: avoid expensive channel_open_message() calls; ok djm@
2018-07-31 12:20:13 +10:00
log.h
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
loginrec.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
loginrec.h
remove vestiges of old packet API from loginrec.c
2019-01-20 09:58:45 +11:00
logintest.c
mac.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
mac.h
Makefile.in
Provide explicit path to configure-check.
2019-09-06 14:09:41 +10:00
match.c
Use Cygwin-specific matching only for users+groups.
2019-03-12 09:19:19 +11:00
match.h
upstream: Move checks for lists of users or groups into their own
2019-03-08 15:10:07 +11:00
md5crypt.c
md5crypt.h
mdoc2man.awk
misc.c
upstream: move authorized_keys option parsing helpsers to misc.c
2019-09-03 18:39:31 +10:00
misc.h
upstream: move authorized_keys option parsing helpsers to misc.c
2019-09-03 18:39:31 +10:00
mkinstalldirs
moduli
Import regenerated moduli.
2019-04-26 18:38:27 +10:00
moduli.5
moduli.c
upstream: snprintf/vsnprintf return < 0 on error, rather than -1.
2019-07-05 11:15:30 +10:00
monitor_fdpass.c
monitor_fdpass.h
monitor_wrap.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
monitor_wrap.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
monitor.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
monitor.h
upstream: remove last references to active_state
2019-01-20 09:45:18 +11:00
msg.c
upstream: replace cast with call to sshbuf_mutable_ptr(); ok djm@
2018-07-10 16:44:17 +10:00
msg.h
mux.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
myproposal.h
Use the correct macro for SSH_ALLOWED_CA_SIGALGS.
2019-05-17 12:42:17 +10:00
nchan2.ms
nchan.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
nchan.ms
openssh.xml.in
opensshd.init.in
OVERVIEW
upstream: refer to OpenSSL not SSLeay;
2018-10-23 16:57:54 +11:00
packet.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
packet.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
pathnames.h
pkcs11.h
platform-misc.c
platform-pledge.c
platform-tracing.c
platform.c
Add headers to prevent warnings w/out OpenSSL.
2019-07-23 22:26:20 +10:00
platform.h
poly1305.c
poly1305.h
progressmeter.c
upstream: Use the correct (according to POSIX) format for
2019-05-08 18:42:43 +10:00
progressmeter.h
upstream: Have progressmeter force an update at the beginning and
2019-01-25 06:32:14 +11:00
PROTOCOL
upstream: mention INFO@openssh.com for sending SIGINFO
2018-10-02 22:53:48 +10:00
PROTOCOL.agent
PROTOCOL.certkeys
upstream: mention ssh-ed25519-cert-v01@openssh.com in list of cert
2018-11-16 13:50:32 +11:00
PROTOCOL.chacha20poly1305
upstream: lots of typos in comments/docs. Patch from Karsten Weiss
2018-04-10 10:17:15 +10:00
PROTOCOL.key
PROTOCOL.krl
upstream: allow key revocation by SHA256 hash and allow ssh-keygen
2018-09-12 16:49:21 +10:00
PROTOCOL.mux
upstream: Document mux proxy mode; added by Markus in openssh-7.4
2018-09-26 17:35:22 +10:00
PROTOCOL.sshsig
upstream: sshsig tweaks and improvements from and suggested by
2019-09-03 18:40:24 +10:00
readconf.c
upstream: Allow prepending a list of algorithms to the default set
2019-09-08 14:49:04 +10:00
readconf.h
upstream: add a ssh_config "Match final" predicate
2018-11-23 16:09:12 +11:00
README
Revert "rewrite README"
2019-04-05 11:29:31 -07:00
README.dns
README.md
second thoughts: leave README in place
2019-04-05 11:29:51 -07:00
README.platform
Many typo fixes from Karsten Weiss
2018-04-10 10:19:02 +10:00
README.privsep
README.tun
readpass.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
rijndael.c
rijndael.h
sandbox-capsicum.c
sandbox-darwin.c
sandbox-null.c
sandbox-pledge.c
sandbox-rlimit.c
sandbox-seccomp-filter.c
use SC_ALLOW_ARG_MASK to limit mmap protections
2019-08-23 10:19:30 +10:00
sandbox-solaris.c
sandbox-systrace.c
Allow nanosleep in preauth privsep child.
2018-04-13 16:23:57 +10:00
sc25519.c
sc25519.h
scp.1
upstream: Hostname->HostName cleanup; from lauri tirkkonen ok
2019-06-14 13:01:28 +10:00
scp.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
servconf.c
upstream: Allow prepending a list of algorithms to the default set
2019-09-08 14:49:04 +10:00
servconf.h
upstream: When running sshd -T, assume any attibute not provided by
2019-05-08 18:42:03 +10:00
serverloop.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
serverloop.h
session.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
session.h
upstream: Add server support for signalling sessions via the SSH
2018-10-02 22:41:01 +10:00
sftp-client.c
upstream: print explicit "not modified" message if a file was
2019-07-12 14:07:31 +10:00
sftp-client.h
upstream: Add "-h" flag to sftp chown/chgrp/chmod commands to
2019-01-17 11:08:13 +11:00
sftp-common.c
Include unistd.h for strmode().
2019-01-24 10:07:03 +11:00
sftp-common.h
sftp-glob.c
sftp-realpath.c
sftp-realpath.c needs includes.h
2019-07-08 13:44:32 +10:00
sftp-server-main.c
upstream: Replace calls to ssh_malloc_init() by a static init of
2019-06-08 00:25:42 +10:00
sftp-server.8
sftp-server.c
upstream: add a local implementation of BSD realpath() for
2019-07-08 11:44:49 +10:00
sftp.1
upstream: from tim: - for reput, it is remote-path which is
2019-06-21 13:21:13 +10:00
sftp.c
upstream: Fix a typo and make <esc><right> move right to the
2019-07-12 14:07:31 +10:00
sftp.h
smult_curve25519_ref.c
sntrup4591761.c
Add includes.h for compat layer.
2019-04-01 20:07:23 +11:00
sntrup4591761.sh
upstream: Add authors for public domain sntrup4591761 code;
2019-02-01 18:55:11 +11:00
ssh2.h
ssh_api.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
ssh_api.h
upstream: lots of typos in comments/docs. Patch from Karsten Weiss
2018-04-10 10:17:15 +10:00
ssh_config
upstream: Remove obsolete "Protocol" from commented out examples. Patch
2019-02-04 15:01:38 +11:00
ssh_config.5
upstream: Allow prepending a list of algorithms to the default set
2019-09-08 14:49:04 +10:00
ssh-add.1
upstream: add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up
2019-01-21 23:56:52 +11:00
ssh-add.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
ssh-agent.1
ssh-agent.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
ssh-dss.c
adapt -portable to OpenSSL 1.1x API
2018-09-13 12:13:50 +10:00
ssh-ecdsa.c
upstream: Make sshpkt_get_bignum2() allocate the bignum it is
2019-01-21 21:47:28 +11:00
ssh-ed25519.c
ssh-gss.h
upstream: kerberos/gssapi fixes for buffer removal
2018-07-10 19:15:35 +10:00
ssh-keygen.1
upstream: macro fix; ok djm
2019-09-05 20:07:12 +10:00
ssh-keygen.c
upstream: key conversion should fail for !openssl builds, not fall
2019-09-08 14:49:04 +10:00
ssh-keyscan.1
ssh-keyscan.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
ssh-keysign.8
ssh-keysign.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
ssh-pkcs11-client.c
upstream: add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up
2019-01-21 23:56:52 +11:00
ssh-pkcs11-helper.8
upstream: add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up
2019-01-21 23:56:52 +11:00
ssh-pkcs11-helper.c
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
ssh-pkcs11.c
upstream: if a PKCS#11 token returns no keys then try to login and
2019-09-05 20:07:12 +10:00
ssh-pkcs11.h
upstream: add support for ECDSA keys in PKCS#11 tokens
2019-01-21 10:54:37 +11:00
ssh-rsa.c
adapt -portable to OpenSSL 1.1x API
2018-09-13 12:13:50 +10:00
ssh-sandbox.h
ssh-xmss.c
ssh.1
upstream: Hostname->HostName cleanup; from lauri tirkkonen ok
2019-06-14 13:01:28 +10:00
ssh.c
upstream: Allow prepending a list of algorithms to the default set
2019-09-08 14:49:04 +10:00
ssh.h
upstream: move client/server SSH-* banners to buffers under
2018-12-27 14:38:22 +11:00
sshbuf-getput-basic.c
upstream: lots of things were relying on libcrypto headers to
2019-09-06 17:54:21 +10:00
sshbuf-getput-crypto.c
upstream: Make sshpkt_get_bignum2() allocate the bignum it is
2019-01-21 21:47:28 +11:00
sshbuf-misc.c
upstream: let sshbuf_find/cmp take a void* for the
2019-07-30 15:06:27 +10:00
sshbuf.c
upstream: make grandparent-parent-child sshbuf chains robust to
2018-11-16 17:18:29 +11:00
sshbuf.h
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
2019-09-06 17:54:21 +10:00
sshconnect2.c
upstream: Remove now-redundant perm_ok arg since
2019-08-08 16:40:09 +10:00
sshconnect.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
sshconnect.h
upstream: Add protection for private keys at rest in RAM against
2019-06-21 14:24:35 +10:00
sshd_config
upstream: the UseLogin option was removed, so remove it here too.
2018-04-10 10:16:36 +10:00
sshd_config.5
upstream: Allow prepending a list of algorithms to the default set
2019-09-08 14:49:04 +10:00
sshd.8
upstream: Switch authorized_keys example from ssh-dss to ssh-rsa
2018-07-26 13:54:30 +10:00
sshd.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
ssherr.c
upstream: Improve strictness and control over RSA-SHA2 signature
2018-07-03 23:26:36 +10:00
ssherr.h
upstream: Improve strictness and control over RSA-SHA2 signature
2018-07-03 23:26:36 +10:00
sshkey-xmss.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
sshkey-xmss.h
sshkey.c
needs time.h for --without-openssl
2019-09-08 14:48:11 +10:00
sshkey.h
upstream: make get_sigtype public as sshkey_get_sigtype(); ok
2019-09-03 18:39:31 +10:00
sshlogin.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
sshlogin.h
sshpty.c
Do not fatal on failed lookup of group "tty".
2019-07-05 13:23:46 +10:00
sshpty.h
sshsig.c
upstream: memleak on error path; found by libfuzzer
2019-09-05 15:44:19 +10:00
sshsig.h
upstream: expose allowed_signers options parsing code in header for
2019-09-05 14:56:51 +10:00
sshtty.c
survey.sh.in
TODO
Remove support for S/Key
2018-07-31 12:59:30 +10:00
ttymodes.c
upstream: ttymodes: switch to sshbuf API; ok djm@
2018-07-10 15:19:12 +10:00
ttymodes.h
uidswap.c
upstream: When system calls indicate an error they return -1, not
2019-07-05 11:10:39 +10:00
uidswap.h
upstream: Remove support for running ssh(1) setuid and fatal if
2018-07-19 21:41:42 +10:00
umac128.c
umac.c
upstream: lots of typos in comments/docs. Patch from Karsten Weiss
2018-04-10 10:17:15 +10:00
umac.h
upstream: Typo and spelling fixes in comments and error messages.
2019-06-08 00:49:26 +10:00
utf8.c
upstream: AIX reports the CODESET as "ISO8859-1" in the POSIX locale.
2018-08-22 07:52:26 +10:00
utf8.h
verify.c
version.h
upstream: openssh-8.0
2019-04-05 03:39:46 +11:00
xmalloc.c
Include missed bits from previous sync.
2019-06-08 00:47:07 +10:00
xmalloc.h
Include missed bits from previous sync.
2019-06-08 00:47:07 +10:00
xmss_commons.c
xmss_commons.h
xmss_fast.c
xmss_fast.h
xmss_hash_address.c
xmss_hash_address.h
xmss_hash.c
xmss_hash.h
xmss_wots.c
upstream: lots of typos in comments/docs. Patch from Karsten Weiss
2018-04-10 10:17:15 +10:00
xmss_wots.h