mischief/openbsd-src
1
0
Fork 0
mirror of https://github.com/openbsd/src.git synced 2025-01-10 06:47:55 -08:00
Code
38c9d6a44f
openbsd-src/usr.bin/ssh
History
jmc ce0bce58c0 benno helped me clean up the tcp forwarding section;
2019-03-16 19:14:21 +00:00
..
moduli-gen Import new moduli. 2018-10-31 11:20:04 +00:00
scp Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
sftp Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
sftp-server Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
ssh Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
ssh-add Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
ssh-agent Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
ssh-keygen Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
ssh-keyscan Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
ssh-keysign move client/server SSH-* banners to buffers under ssh->kex and factor 2018-12-27 03:25:24 +00:00
ssh-pkcs11-helper Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
sshd Don't redefine Makefile choices which come correct from bsd.*.mk 2018-07-25 17:12:35 +00:00
addrmatch.c fix some memory leaks spotted by Coverity via Jakub Jelen in bz#2366 2018-07-31 03:07:24 +00:00
atomicio.c Check for both EAGAIN and EWOULDBLOCK. This is a no-op in OpenBSD 2019-01-24 02:42:23 +00:00
atomicio.h move client/server SSH-* banners to buffers under ssh->kex and factor 2018-12-27 03:25:24 +00:00
auth2-chall.c treat ssh_packet_write_wait() errors as fatal; ok djm@ 2018-07-11 18:55:11 +00:00
auth2-gss.c delay bailout for invalid authenticating user until after the packet 2018-07-31 03:10:27 +00:00
auth2-hostbased.c remove last references to active_state 2019-01-19 21:43:56 +00:00
auth2-kbdint.c sshd: switch authentication to sshbuf API; ok djm@ 2018-07-09 21:35:50 +00:00
auth2-none.c sshd: switch authentication to sshbuf API; ok djm@ 2018-07-09 21:35:50 +00:00
auth2-passwd.c sshd: switch authentication to sshbuf API; ok djm@ 2018-07-09 21:35:50 +00:00
auth2-pubkey.c print the full pubkey being attempted at loglevel >= debug2; bz2939 2019-01-22 11:26:16 +00:00
auth2.c convert auth.c to new packet API 2019-01-19 21:41:18 +00:00
auth-bsdauth.c sshd: switch authentication to sshbuf API; ok djm@ 2018-07-09 21:35:50 +00:00
auth-krb5.c sshd: switch authentication to sshbuf API; ok djm@ 2018-07-09 21:35:50 +00:00
auth-options.c Allow ssh_config IdentityAgent directive to accept environment variable 2018-10-03 06:38:35 +00:00
auth-options.h permitlisten option for authorized_keys; ok markus@ 2018-06-06 18:23:32 +00:00
auth-passwd.c sshd: switch loginmsg to sshbuf API; ok djm@ 2018-07-09 21:26:02 +00:00
auth-rhosts.c sshd: switch authentication to sshbuf API; ok djm@ 2018-07-09 21:35:50 +00:00
auth.c convert auth.c to new packet API 2019-01-19 21:41:18 +00:00
auth.h remove last references to active_state 2019-01-19 21:43:56 +00:00
authfd.c Request RSA-SHA2 signatures for rsa-sha2-{256|512}-cert-v01@openssh.com 2018-12-27 23:02:11 +00:00
authfd.h remove prototype to long-gone function 2018-07-12 04:35:25 +00:00
authfile.c In sshkey_in_file(), ignore keys that are considered for being too 2018-09-21 12:20:12 +00:00
authfile.h
bitmap.c add RCSIDs to these; they make syncing portable a bit easier 2017-10-20 01:56:39 +00:00
bitmap.h add RCSIDs to these; they make syncing portable a bit easier 2017-10-20 01:56:39 +00:00
canohost.c
canohost.h
chacha.c
chacha.h
channels.c convert channels.c to new packet API 2019-01-19 21:37:13 +00:00
channels.h include a little more information about the status and disposition of 2018-10-04 00:10:11 +00:00
cipher-aesctr.c
cipher-aesctr.h
cipher-chachapoly.c
cipher-chachapoly.h
cipher.c hold our collective noses and use the openssl-1.1.x API in OpenSSH; 2018-09-13 02:08:33 +00:00
cipher.h hold our collective noses and use the openssl-1.1.x API in OpenSSH; 2018-09-13 02:08:33 +00:00
cleanup.c
clientloop.c convert the remainder of clientloop.c to new packet API 2019-01-19 21:39:12 +00:00
clientloop.h client: switch to sshbuf API; ok djm@ 2018-07-09 21:03:30 +00:00
compat.c revert compat.[ch] section of the following change. It causes 2018-08-13 02:41:05 +00:00
compat.h revert compat.[ch] section of the following change. It causes 2018-08-13 02:41:05 +00:00
crc32.c
crc32.h
crypto_api.h Add support for a PQC KEX/KEM: sntrup4591761x25519-sha512@tinyssh.org 2019-01-21 10:20:12 +00:00
dh.c correct local variable name; from yawang AT microsoft.com 2018-11-09 02:56:22 +00:00
dh.h DH-GEX min value is now specified in RFC8270. ok djm@ 2019-01-20 01:12:40 +00:00
digest-libc.c remove hmac-ripemd160; ok dtucker 2017-05-08 22:57:38 +00:00
digest-openssl.c hold our collective noses and use the openssl-1.1.x API in OpenSSH; 2018-09-13 02:08:33 +00:00
digest.h remove hmac-ripemd160; ok dtucker 2017-05-08 22:57:38 +00:00
dispatch.c allow sshpkt_fatal() to take a varargs format; we'll use this to give 2019-01-19 21:33:13 +00:00
dispatch.h remove last traces of old packet API! 2019-01-19 21:45:31 +00:00
dns.c Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) 2018-02-23 15:58:37 +00:00
dns.h Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) 2018-02-23 15:58:37 +00:00
ed25519.c
fatal.c
fe25519.c
fe25519.h
ge25519_base.data
ge25519.c
ge25519.h
groupaccess.c Move checks for lists of users or groups into their own function. 2019-03-06 22:14:23 +00:00
groupaccess.h
gss-genr.c kerberos/gssapi fixes for buffer removal 2018-07-10 09:13:30 +00:00
gss-serv-krb5.c sshd: switch GSSAPI to sshbuf API; ok djm@ 2018-07-09 21:37:55 +00:00
gss-serv.c sshd: switch GSSAPI to sshbuf API; ok djm@ 2018-07-09 21:37:55 +00:00
hash.c clarify authorship; prodded by and ok markus@ 2018-01-13 00:24:09 +00:00
hmac.c
hmac.h
hostfile.c memleaks; found by valgrind 2018-07-16 03:09:13 +00:00
hostfile.h
kex.c fix reversed arguments to kex_load_hostkey(); manifested as errors in 2019-01-21 12:08:13 +00:00
kex.h pass most arguments to the KEX hash functions as sshbuf rather 2019-01-23 00:30:41 +00:00
kexc25519.c rename kex->kem_client_pub -> kex->client_pub now that KEM has been renamed 2019-01-21 10:40:11 +00:00
kexdh.c rename kex->kem_client_pub -> kex->client_pub now that KEM has been renamed 2019-01-21 10:40:11 +00:00
kexecdh.c rename kex->kem_client_pub -> kex->client_pub now that KEM has been renamed 2019-01-21 10:40:11 +00:00
kexgen.c pass most arguments to the KEX hash functions as sshbuf rather 2019-01-23 00:30:41 +00:00
kexgex.c pass most arguments to the KEX hash functions as sshbuf rather 2019-01-23 00:30:41 +00:00
kexgexc.c pass most arguments to the KEX hash functions as sshbuf rather 2019-01-23 00:30:41 +00:00
kexgexs.c pass most arguments to the KEX hash functions as sshbuf rather 2019-01-23 00:30:41 +00:00
kexsntrup4591761x25519.c rename kex->kem_client_pub -> kex->client_pub now that KEM has been renamed 2019-01-21 10:40:11 +00:00
krl.c allow key revocation by SHA256 hash and allow ssh-keygen to create KRLs 2018-09-12 01:21:34 +00:00
krl.h allow key revocation by SHA256 hash and allow ssh-keygen to create KRLs 2018-09-12 01:21:34 +00:00
LICENCE remove the (in)famous SSHv1 CRC compensation attack detector. 2017-04-30 23:26:16 +00:00
log.c avoid expensive channel_open_message() calls; ok djm@ 2018-07-27 12:03:17 +00:00
log.h avoid expensive channel_open_message() calls; ok djm@ 2018-07-27 12:03:17 +00:00
mac.c remove hmac-ripemd160; ok dtucker 2017-05-08 22:57:38 +00:00
mac.h
Makefile ssh/lib hasn't worked towards our code-sharing goals for a quit while, 2017-12-10 19:37:57 +00:00
Makefile.inc merge kexkem[cs] into kexgen 2019-01-21 10:38:54 +00:00
match.c Move checks for lists of users or groups into their own function. 2019-03-06 22:14:23 +00:00
match.h Move checks for lists of users or groups into their own function. 2019-03-06 22:14:23 +00:00
misc.c Remove support for obsolete host/port syntax. 2019-01-23 21:50:56 +00:00
misc.h Remove support for obsolete host/port syntax. 2019-01-23 21:50:56 +00:00
moduli.c Remove 3 as a guess for possible generator during moduli generation. 2019-01-23 09:49:00 +00:00
monitor_fdpass.c
monitor_fdpass.h
monitor_wrap.c Make sshpkt_get_bignum2() allocate the bignum it is parsing rather 2019-01-21 09:54:11 +00:00
monitor_wrap.h remove last references to active_state 2019-01-19 21:43:56 +00:00
monitor.c merge kexkem[cs] into kexgen 2019-01-21 10:38:54 +00:00
monitor.h remove last references to active_state 2019-01-19 21:43:56 +00:00
msg.c replace cast with call to sshbuf_mutable_ptr(); ok djm@ 2018-07-09 21:59:10 +00:00
msg.h
mux.c convert mux.c to new packet API 2019-01-19 21:35:25 +00:00
myproposal.h openssh-7.9 accidentally reused the server's algorithm lists in the 2019-02-23 08:20:43 +00:00
nchan2.ms
nchan.c when the peer sends a channel-close message, make sure we close the 2018-10-04 07:47:35 +00:00
nchan.ms
OVERVIEW refer to OpenSSL not SSLeay; 2018-10-23 05:56:35 +00:00
packet.c in ssh_set_newkeys(), mention the direction that we're keying in debug 2019-03-01 03:29:32 +00:00
packet.h pass values used in KEX hash computation as sshbuf rather than 2019-01-21 10:35:09 +00:00
pathnames.h Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) 2018-02-23 15:58:37 +00:00
pkcs11.h
poly1305.c
poly1305.h
progressmeter.c Have progressmeter force an update at the beginning and end of each 2019-01-24 16:52:17 +00:00
progressmeter.h Have progressmeter force an update at the beginning and end of each 2019-01-24 16:52:17 +00:00
PROTOCOL mention INFO@openssh.com for sending SIGINFO 2018-10-02 12:51:58 +00:00
PROTOCOL.agent Now that we no longer support SSHv1, replace the contents of this file 2017-05-19 21:07:17 +00:00
PROTOCOL.certkeys mention ssh-ed25519-cert-v01@openssh.com in list of cert key type 2018-10-26 01:23:03 +00:00
PROTOCOL.chacha20poly1305 lots of typos in comments/docs. Patch from Karsten Weiss after checking 2018-04-10 00:10:49 +00:00
PROTOCOL.key
PROTOCOL.krl allow key revocation by SHA256 hash and allow ssh-keygen to create KRLs 2018-09-12 01:21:34 +00:00
PROTOCOL.mux Document mux proxy mode; added by Markus in openssh-7.4 2018-09-26 07:30:05 +00:00
readconf.c let PKCS11Provider=none do what users expect 2019-03-01 02:08:50 +00:00
readconf.h add a ssh_config "Match final" predicate 2018-11-23 05:08:07 +00:00
README
readpass.c Print an \r in front of the password prompt so parts of a password 2019-01-19 04:15:56 +00:00
rijndael.c
rijndael.h
sandbox-pledge.c
sandbox-rlimit.c
sc25519.c
sc25519.h
scp.1 check in scp client that filenames sent during remote->local directory 2019-01-26 22:41:28 +00:00
scp.c when checking that filenames sent by the server side match what the 2019-02-10 11:15:52 +00:00
servconf.c Move checks for lists of users or groups into their own function. 2019-03-06 22:14:23 +00:00
servconf.h convert servconf.c to new packet API 2019-01-19 21:37:48 +00:00
serverloop.c Reset last-seen time when sending a keepalive. Prevents sending two 2019-03-06 21:06:59 +00:00
serverloop.h refactor channels.c 2017-09-12 06:32:07 +00:00
session.c perform removal of agent-forwarding directory in forward setup error 2019-02-22 03:37:11 +00:00
session.h Add server support for signalling sessions via the SSH channel/ 2018-10-02 12:40:07 +00:00
sftp-client.c Have progressmeter force an update at the beginning and end of each 2019-01-24 16:52:17 +00:00
sftp-client.h Add "-h" flag to sftp chown/chgrp/chmod commands to request they do 2019-01-16 23:23:45 +00:00
sftp-common.c Fix warnings caused by user_from_uid() and group_from_gid() now 2018-09-13 15:23:32 +00:00
sftp-common.h
sftp-glob.c
sftp-server-main.c
sftp-server.8
sftp-server.c add support for a "lsetstat@openssh.com" extension. This replicates the 2019-01-16 23:22:10 +00:00
sftp.1 tweak previous; 2019-01-22 06:58:31 +00:00
sftp.c Add a -J option as a shortcut for -o Proxyjump= to scp(1) and sftp(1) 2019-01-21 22:50:42 +00:00
sftp.h
smult_curve25519_ref.c
sntrup4591761.c Add authors for public domain sntrup4591761 code; 2019-01-30 19:51:15 +00:00
sntrup4591761.sh Add authors for public domain sntrup4591761 code; 2019-01-30 19:51:15 +00:00
ssh2.h
ssh_api.c merge kexkem[cs] into kexgen 2019-01-21 10:38:54 +00:00
ssh_api.h lots of typos in comments/docs. Patch from Karsten Weiss after checking 2018-04-10 00:10:49 +00:00
ssh_config Remove obsolete "Protocol" from commented out examples. 2019-02-04 02:39:42 +00:00
ssh_config.5 mention PKCS11Provide=none, reword a little and remove mention of 2019-03-01 02:16:47 +00:00
ssh-add.1 add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up debug 2019-01-21 12:53:35 +00:00
ssh-add.c add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up debug 2019-01-21 12:53:35 +00:00
ssh-agent.1 tweak previous; 2016-11-30 06:54:26 +00:00
ssh-agent.c backoff reading messages from active connections when the input buffer 2019-01-22 22:58:50 +00:00
ssh-dss.c hold our collective noses and use the openssl-1.1.x API in OpenSSH; 2018-09-13 02:08:33 +00:00
ssh-ecdsa.c Make sshpkt_get_bignum2() allocate the bignum it is parsing rather 2019-01-21 09:54:11 +00:00
ssh-ed25519.c
ssh-gss.h kerberos/gssapi fixes for buffer removal 2018-07-10 09:13:30 +00:00
ssh-keygen.1 PKCS#11 support is no longer limited to RSA; ok benno@ kn@ 2019-03-05 16:17:12 +00:00
ssh-keygen.c ssh-keygen -D pkcs11.so needs to initialize pkcs11 interactive, 2019-02-10 16:35:41 +00:00
ssh-keyscan.1 move the input format details to -f; 2018-03-05 07:03:18 +00:00
ssh-keyscan.c make ssh-keyscan return a non-zero exit status if it finds no keys. 2019-01-26 22:35:01 +00:00
ssh-keysign.8
ssh-keysign.c add a ssh_config "Match final" predicate 2018-11-23 05:08:07 +00:00
ssh-pkcs11-client.c add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up debug 2019-01-21 12:53:35 +00:00
ssh-pkcs11-helper.8 add "-v" flags to ssh-add and ssh-pkcs11-helper to turn up debug 2019-01-21 12:53:35 +00:00
ssh-pkcs11-helper.c switch mainloop from select(2) to poll(2); ok deraadt@ 2019-01-23 02:01:10 +00:00
ssh-pkcs11.c fix use-after-free in ssh-pkcs11; found by hshoexer w/AFL 2019-03-08 17:24:43 +00:00
ssh-pkcs11.h add support for ECDSA keys in PKCS#11 tokens 2019-01-20 22:51:37 +00:00
ssh-rsa.c hold our collective noses and use the openssl-1.1.x API in OpenSSH; 2018-09-13 02:08:33 +00:00
ssh-sandbox.h
ssh-xmss.c Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) 2018-02-23 15:58:37 +00:00
ssh.1 benno helped me clean up the tcp forwarding section; 2019-03-16 19:14:21 +00:00
ssh.c remove last references to active_state 2019-01-19 21:43:56 +00:00
ssh.h move client/server SSH-* banners to buffers under ssh->kex and factor 2018-12-27 03:25:24 +00:00
sshbuf-getput-basic.c fix casts re constness 2017-06-01 04:51:58 +00:00
sshbuf-getput-crypto.c Make sshpkt_get_bignum2() allocate the bignum it is parsing rather 2019-01-21 09:54:11 +00:00
sshbuf-misc.c
sshbuf.c make grandparent-parent-child sshbuf chains robust to use-after-free 2018-11-16 06:10:29 +00:00
sshbuf.h Make sshpkt_get_bignum2() allocate the bignum it is parsing rather 2019-01-21 09:54:11 +00:00
sshconnect2.c fix regression in r1.302 reported by naddy@ - only the first public 2019-02-12 23:53:10 +00:00
sshconnect.c dup stdout/in for proxycommand=-, otherwise stdout might be 2019-02-27 19:37:01 +00:00
sshconnect.h convert sshconnect.c to new packet API 2019-01-19 21:36:38 +00:00
sshd_config the UseLogin option was removed, so remove it here too. 2018-04-09 20:41:22 +00:00
sshd_config.5 Remove duplicate word. bz#2958, patch from jjelen at redhat.com 2019-01-23 20:48:52 +00:00
sshd.8 Switch authorized_keys example from ssh-dss to ssh-rsa since the former 2018-07-22 12:16:59 +00:00
sshd.c Fix two race conditions in sshd relating to SIGHUP: 2019-03-01 02:32:39 +00:00
ssherr.c Improve strictness and control over RSA-SHA2 signature types: 2018-07-03 11:39:54 +00:00
ssherr.h Improve strictness and control over RSA-SHA2 signature types: 2018-07-03 11:39:54 +00:00
sshkey-xmss.c replace cast with call to sshbuf_mutable_ptr(); ok djm@ 2018-07-09 21:59:10 +00:00
sshkey-xmss.h Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures) 2018-02-23 15:58:37 +00:00
sshkey.c Make sshpkt_get_bignum2() allocate the bignum it is parsing rather 2019-01-21 09:54:11 +00:00
sshkey.h add support for ECDSA keys in PKCS#11 tokens 2019-01-20 22:51:37 +00:00
sshlogin.c sshd: switch loginmsg to sshbuf API; ok djm@ 2018-07-09 21:26:02 +00:00
sshlogin.h
sshpty.c Factor out code to disconnect from controlling terminal into its own 2016-11-29 03:54:50 +00:00
sshpty.h Factor out code to disconnect from controlling terminal into its own 2016-11-29 03:54:50 +00:00
sshtty.c
ttymodes.c ttymodes: switch to sshbuf API; ok djm@ 2018-07-09 21:20:26 +00:00
ttymodes.h purge the last traces of SSHv1 from the TTY modes handling code 2017-04-30 23:26:54 +00:00
uidswap.c Remove support for running ssh(1) setuid and fatal if attempted. 2018-07-18 11:34:04 +00:00
uidswap.h Remove support for running ssh(1) setuid and fatal if attempted. 2018-07-18 11:34:04 +00:00
umac128.c Rename struct umac_ctx to umac128_ctx too. In portable some linkers 2018-02-08 04:12:32 +00:00
umac.c lots of typos in comments/docs. Patch from Karsten Weiss after checking 2018-04-10 00:10:49 +00:00
umac.h
utf8.c AIX reports the CODESET as "ISO8859-1" in the POSIX locale. 2018-08-21 13:56:27 +00:00
utf8.h
uuencode.c
uuencode.h
verify.c
version.h introducing openssh 7.9 2018-10-10 16:43:49 +00:00
xmalloc.c Switch to recallocarray() for a few operations. Both growth and shrinkage 2017-05-31 09:15:42 +00:00
xmalloc.h Switch to recallocarray() for a few operations. Both growth and shrinkage 2017-05-31 09:15:42 +00:00
xmss_commons.c Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_commons.h Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_fast.c ssh/xmss: fix build; ok djm@ 2018-03-22 07:06:11 +00:00
xmss_fast.h Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_hash_address.c Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_hash_address.h Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_hash.c Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_hash.h Add $OpenBSD$ markers to xmss files to help keep synced with portable. 2018-02-26 03:56:44 +00:00
xmss_wots.c lots of typos in comments/docs. Patch from Karsten Weiss after checking 2018-04-10 00:10:49 +00:00
xmss_wots.h Remove unneeded (local) include. ok markus@ 2018-02-26 12:14:53 +00:00

README 

This release of OpenSSH is for OpenBSD systems only.

Please read
	http://www.openssh.com/portable.html
if you want to install OpenSSH on other operating systems.

To extract and install this release on your OpenBSD system use:

      # cd /usr/src/usr.bin
      # tar xvfz .../openssh-x.y.tgz
      # cd ssh
      # make obj
      # make cleandir
      # make depend
      # make
      # make install
      # cp ssh_config sshd_config /etc/ssh

OpenSSH is a derivative of the original and free ssh 1.2.12 release
by Tatu Ylonen.  Aaron Campbell, Bob Beck, Markus Friedl, Niels
Provos, Theo de Raadt and Dug Song removed many bugs, re-added newer
features and created OpenSSH.  Markus Friedl contributed the support
for SSH protocol versions 1.5 and 2.0.

See http://www.openssh.com/ for more information.

$OpenBSD: README,v 1.7 2006/04/01 05:37:46 djm Exp $