summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2014-03-15Improve usage() and documentation towards the standard form. In particular,Theo de Raadt
2014-03-12scan for Ed25519 keys by default tooChristian Weisgerber
2014-03-12correct test that kdf name is not "none" or "bcrypt"Damien Miller
2014-03-12don't count on things that accept arguments by reference to clearDamien Miller
2014-03-12scan for Ed25519 keys by default tooDamien Miller
2014-03-03ignore enviornment variables with embedded '=' or '\0' characters;Damien Miller
2014-02-28Absolutely do not override base system build features in this file!!Theo de Raadt
2014-02-27openssh-6.6Damien Miller
2014-02-27bz#2184 clarify behaviour of a keyword that appears in multipleDamien Miller
2014-02-27off by one in range checkDamien Miller
2014-02-27fix unsigned overflow that could lead to reading a short ssh protocolDamien Miller
2014-02-26ssh_gssapi_prepare_supported_oids needs GSSAPIMarkus Friedl
2014-02-26don't assume that the socks4 username is \0 terminated;Damien Miller
2014-02-26bz#2107 - cache OIDs of supported GSSAPI mechanisms before privsepDamien Miller
2014-02-26bz#2205: avoid early hostname lookups unless canonicalisation is enabled;Damien Miller
2014-02-23reparse ssh_config and ~/.ssh/config if hostname canonicalisation changesDamien Miller
2014-02-23check for unsigned overflow; not reachable in OpenSSH but others mightDamien Miller
2014-02-22when processing Match blocks, skip 'exec' clauses if previous predicatesDamien Miller
2014-02-15avoid spurious "getsockname failed: Bad file descriptor" errors in ssh -W;Damien Miller
2014-02-07-Wold-style-declaration is not supported by gcc 3.Miod Vallat
2014-02-07remove some logging that makes ssh debugging output very verbose;Damien Miller
2014-02-06in ssh_create_socket(), only do the getaddrinfo for BindAddress whenDamien Miller
2014-02-05tweak synopsis: calling ssh-keygen without any arguments is fine; ok jmc@Christian Weisgerber
2014-02-04delay lowercasing of hostname until right before hostnameDamien Miller
2014-02-03fix memory leak; ECDSA_SIG_new() allocates 'r' and 's' for us, unlikeDamien Miller
2014-02-02convert memset of potentially-private data to explicit_bzero()Damien Miller
2014-01-31replace most bzero with explicit_bzero, except a few that cna be memsetTed Unangst
2014-01-30allow shutdown(2) syscall in sandbox - it may be called by packet_close()Damien Miller
2014-01-29document kbdinteractiveauthentication;Jason McIntyre
2014-01-29remove experimental, never-enabled JPAKE code; ok markus@Damien Miller
2014-01-29In the experimental, never-enabled JPAKE code: clear returned digest andDamien Miller
2014-01-29use kill(0, ...) instead of killpg(0, ...); on most operating systemsDamien Miller
2014-01-28rename digest.c to digest-openssl.c and add libc variant; ok djm@Markus Friedl
2014-01-28kill some bad Pa;Jason McIntyre
2014-01-27replace openssl MD5 with our ssh_digest_*; ok djm@Markus Friedl
2014-01-27replace openssl HMAC with an implementation based on our ssh_digest_*Markus Friedl
2014-01-25dh_need needs to be set to max(seclen, blocksize, ivlen, mac_len)Markus Friedl
2014-01-25Add a special case for the DH group size for 3des-cbc, which has anDarren Tucker
2014-01-20memleak; found by Loganaden Velvindron @ AfriNIC; ok markus@Damien Miller
2014-01-19Cast the sizeof to socklen_t so it'll work even if the supplied len isDarren Tucker
2014-01-19fix inverted meaning of 'no' and 'yes' for CanonicalizeFallbackLocalDamien Miller
2014-01-19Cast socklen_t when comparing to size_t and use socklen_t to iterate overDarren Tucker
2014-01-18explicitly define USE_PIPES to 1 to prevent redefinition warnings in portableDarren Tucker
2014-01-18Remove -Wbounded: it is now the compiler default.Martynas Venckus
2014-01-17fix log message statvfs. ok djmDarren Tucker
2014-01-17remove unused includes. ok djm@Darren Tucker
2014-01-17signed/unsigned comparison warning fix; from portableDamien Miller
2014-01-16openssh-6.5Damien Miller
2014-01-16needless and incorrect cast to size_t can break resumption ofDamien Miller
2014-01-12avoid use of OpenSSL BIGNUM type and functions for KEX withDamien Miller