summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2023-07-23man page typos; ok jmc@Christian Weisgerber
2023-07-20tweak the allow-remote-pkcs11 text;Jason McIntyre
2023-07-19Separate ssh-pkcs11-helpers for each p11 moduleDamien Miller
2023-07-19Ensure FIDO/PKCS11 libraries contain expected symbolsDamien Miller
2023-07-19Disallow remote addition of FIDO/PKCS11 provider libraries toDamien Miller
2023-07-19terminate process if requested to load a PKCS#11 provider thatDamien Miller
2023-07-17missing match localnetwork negation checkDamien Miller
2023-07-17- add -P to usage()Jason McIntyre
2023-07-17-P before -p in SYNOPSIS;Jason McIntyre
2023-07-17configuation -> configurationJonathan Gray
2023-07-17move other RCSIDs to before their respective license blocks tooDamien Miller
2023-07-17Move RCSID to before license block and away from #includes, whereDamien Miller
2023-07-17return SSH_ERR_KRL_BAD_MAGIC when a KRL doesn't contain a validDamien Miller
2023-07-17Add support for configuration tags to ssh(1).Damien Miller
2023-07-17add a "match localnetwork" predicate.Damien Miller
2023-07-17remove vestigal support for KRL signaturesDamien Miller
2023-07-17Support for KRL extensions.Damien Miller
2023-07-14Include stdint.h for SIZE_MAX. Fixes OPENSSL=no build.Darren Tucker
2023-07-14add defence-in-depth checks for some unreachable integer overflowsDamien Miller
2023-07-10misplaced debug messageDamien Miller
2023-07-06minleft and maxsign are u_int so cast appropriately. Prompted byDarren Tucker
2023-07-04add support for unix domain sockets to ssh -WDavid Gwynne
2023-06-21better validate CASignatureAlgorithms in ssh_config and sshd_config.Damien Miller
2023-06-21make `ssh -Q CASignatureAlgorithms` only list signature algorithms thatDamien Miller
2023-06-21handle rlimits > INT_MAX (rlim_t is u64); ok dtuckerDamien Miller
2023-06-20prepare for support for connecting to unix domain sockets using ssh -WDamien Miller
2023-06-20reset comment=NULL for each key in do_fingerprint(); fixes "no comment"Damien Miller
2023-06-05Store timeouts as int, not u_int as they are limited to INT_MAX.Todd C. Miller
2023-05-24fix AuthorizedPrincipalsCommand when AuthorizedKeysCommand appearsDamien Miller
2023-05-10Remove now-unused prototypes for ssh1 RSA functions. From lengyijun viaDarren Tucker
2023-05-01Import regenerated moduli.Darren Tucker
2023-04-30adjust ftruncate() logic to handle servers that reorder requests.Damien Miller
2023-04-26Check for ProxyJump=none in CanonicalizeHostname logic.Damien Miller
2023-04-12remove duplicate signal.h includeJonathan Gray
2023-04-12fix double wordsJonathan Gray
2023-04-06simplify sshsig_find_principals() similar to what happened toDamien Miller
2023-04-06remove redundant ssh!=NULL check; we'd already dereferenced itDamien Miller
2023-04-06match_user() shouldn't be called with user==NULL unlessDamien Miller
2023-04-06don't care about glob() return value here.Damien Miller
2023-04-03Move null check up and simplify process_escapes. Based on Coverity CIDDarren Tucker
2023-03-31Explicitly ignore return from waitpid here too.Darren Tucker
2023-03-31Explictly ignore return codes where we don't check them. From DmitryDarren Tucker
2023-03-31Return immediately from get_sock_port if sock <0 so we don't callDarren Tucker
2023-03-31don't leak arg2 on parse_pubkey_algos error path; ok dtucker@Damien Miller
2023-03-31clamp max number of GSSAPI mechanisms to 2048; ok dtuckerDamien Miller
2023-03-31don't print key if printing hostname failed; with/ok dtucker@Damien Miller
2023-03-31remove redundant testDamien Miller
2023-03-31don't attempt to decode a ridiculous number of attributes;Damien Miller
2023-03-31remove unused variable; prompted by Coverity CID 291879Damien Miller
2023-03-31Check fd against >=0 instead of >0 in error path. The dup couldDarren Tucker