35 files changed, 639 insertions, 648 deletions
diff --git a/debian/.git-dpm b/debian/.git-dpm
index e15bf4ebd..c10ac230e 100644
--- a/debian/.git-dpm
+++ b/debian/.git-dpm
@@ -1,7 +1,7 @@
 # see git-dpm(1) from git-dpm package
-02883061577ec43ff8d0e8f0cf486bc5131db507
+762c062828f5a8f6ed189ed6e44ad38fd92f8b36
-02883061577ec43ff8d0e8f0cf486bc5131db507
+762c062828f5a8f6ed189ed6e44ad38fd92f8b36
-796ba4fd011b5d0d9d78d592ba2f30fc9d5ed2e7
+487bdb3a5ef6075887b830ccb8a0b14f6da78e93
 487bdb3a5ef6075887b830ccb8a0b14f6da78e93
 openssh_6.7p1.orig.tar.gz
 14e5fbed710ade334d65925e080d1aaeb9c85bf6
diff --git a/debian/changelog b/debian/changelog
index 0cf20dc14..e89bee3b7 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,5 +1,46 @@
-openssh (1:6.6p1-9) UNRELEASED; urgency=medium
+openssh (1:6.7p1-1) UNRELEASED; urgency=medium
+  * New upstream release (http://www.openssh.com/txt/release-6.7):
+    - sshd(8): The default set of ciphers and MACs has been altered to
+      remove unsafe algorithms.  In particular, CBC ciphers and arcfour* are
+      disabled by default.  The full set of algorithms remains available if
+      configured explicitly via the Ciphers and MACs sshd_config options.
+    - ssh(1), sshd(8): Add support for Unix domain socket forwarding.  A
+      remote TCP port may be forwarded to a local Unix domain socket and
+      vice versa or both ends may be a Unix domain socket (closes: #236718).
+    - ssh(1), ssh-keygen(1): Add support for SSHFP DNS records for ED25519
+      key types.
+    - sftp(1): Allow resumption of interrupted uploads.
+    - ssh(1): When rekeying, skip file/DNS lookups of the hostkey if it is
+      the same as the one sent during initial key exchange.
+    - sshd(8): Allow explicit ::1 and 127.0.0.1 forwarding bind addresses
+      when GatewayPorts=no; allows client to choose address family.
+    - sshd(8): Add a sshd_config PermitUserRC option to control whether
+      ~/.ssh/rc is executed, mirroring the no-user-rc authorized_keys
+      option.
+    - ssh(1): Add a %C escape sequence for LocalCommand and ControlPath that
+      expands to a unique identifer based on a hash of the tuple of (local
+      host, remote user, hostname, port).  Helps avoid exceeding miserly
+      pathname limits for Unix domain sockets in multiplexing control paths.
+    - sshd(8): Make the "Too many authentication failures" message include
+      the user, source address, port and protocol in a format similar to the
+      authentication success / failure messages.
+    - Use CLOCK_BOOTTIME in preference to CLOCK_MONOTONIC when it is
+      available. It considers time spent suspended, thereby ensuring
+      timeouts (e.g. for expiring agent keys) fire correctly (closes:
+      #734553).
+    - Use prctl() to prevent sftp-server from accessing
+      /proc/self/{mem,maps}.
+  * Restore TCP wrappers support, removed upstream in 6.7.  It is true that
+    dropping this reduces preauth attack surface in sshd.  On the other
+    hand, this support seems to be quite widely used, and abruptly dropping
+    it (from the perspective of users who don't read openssh-unix-dev) could
+    easily cause more serious problems in practice.  It's not entirely clear
+    what the right long-term answer for Debian is, but it at least probably
+    doesn't involve dropping this feature shortly before a freeze.
+  * Replace patch to disable OpenSSL version check with an updated version
+    of Kurt Roeckx's patch from #732940 to just avoid checking the status
+    field.
  * Build-depend on a new enough dpkg-dev for dpkg-buildflags, rather than
    simply a new enough dpkg.
  * Simplify debian/rules using /usr/share/dpkg/buildflags.mk.
diff --git a/debian/patches/auth-log-verbosity.patch b/debian/patches/auth-log-verbosity.patch
index 8d26d7b6f..84a14cfb8 100644
--- a/debian/patches/auth-log-verbosity.patch
+++ b/debian/patches/auth-log-verbosity.patch
@@ -1,4 +1,4 @@
-From 283322f493ee7dc75511f6cf9e9b88e536de0874 Mon Sep 17 00:00:00 2001
+From 1ecd5db58295874d8b9a7ce98fe1880ab08fbcaf Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:02 +0000
 Subject: Quieten logs when multiple from= restrictions are used
@@ -16,7 +16,7 @@ Patch-Name: auth-log-verbosity.patch
 4 files changed, 32 insertions(+), 9 deletions(-)
 diff --git a/auth-options.c b/auth-options.c
-index fa209ea..df61330 100644
+index f3d9c9d..d4d22d7 100644
 --- a/auth-options.c
 +++ b/auth-options.c
 @@ -54,9 +54,20 @@ int forced_tun_device = -1;
@@ -58,7 +58,7 @@ index fa209ea..df61330 100644
                                auth_debug_add("Your host '%.200s' is not "
                                    "permitted to use this key for login.",
                                    remote_host);
-@@ -510,11 +524,14 @@ parse_option_list(u_char *optblob, size_t optblob_len, struct passwd *pw,
+@@ -511,11 +525,14 @@ parse_option_list(u_char *optblob, size_t optblob_len, struct passwd *pw,
                                        break;
                                case 0:
                                        /* no match */
@@ -91,10 +91,10 @@ index 7455c94..a3f0a02 100644
 void   auth_clear_options(void);
 int    auth_cert_options(Key *, struct passwd *);
 diff --git a/auth-rsa.c b/auth-rsa.c
-index 5dad6c3..260ce2f 100644
+index e9f4ede..5d7bdcb 100644
 --- a/auth-rsa.c
 +++ b/auth-rsa.c
-@@ -178,6 +178,8 @@ rsa_key_allowed_in_file(struct passwd *pw, char *file,
+@@ -179,6 +179,8 @@ rsa_key_allowed_in_file(struct passwd *pw, char *file,
        if ((f = auth_openkeyfile(file, pw, options.strict_modes)) == NULL)
                return 0;
 
@@ -104,10 +104,10 @@ index 5dad6c3..260ce2f 100644
         * Go though the accepted keys, looking for the current key.  If
         * found, perform a challenge-response dialog to verify that the
 diff --git a/auth2-pubkey.c b/auth2-pubkey.c
-index 0fd27bb..7c56927 100644
+index f3ca965..f78b046 100644
 --- a/auth2-pubkey.c
 +++ b/auth2-pubkey.c
-@@ -263,6 +263,7 @@ match_principals_file(char *file, struct passwd *pw, struct KeyCert *cert)
+@@ -263,6 +263,7 @@ match_principals_file(char *file, struct passwd *pw, struct sshkey_cert *cert)
                restore_uid();
                return 0;
        }
diff --git a/debian/patches/authorized-keys-man-symlink.patch b/debian/patches/authorized-keys-man-symlink.patch
index 74bfb46e6..6afb0420b 100644
--- a/debian/patches/authorized-keys-man-symlink.patch
+++ b/debian/patches/authorized-keys-man-symlink.patch
@@ -1,4 +1,4 @@
-From 71448da5ce75ba50bcb10dbbd3b8c7633f633e8f Mon Sep 17 00:00:00 2001
+From 19b0441502c07401dd6d418f8f81cc7f1a44ccb1 Mon Sep 17 00:00:00 2001
 From: Tomas Pospisek <tpo_deb@sourcepole.ch>
 Date: Sun, 9 Feb 2014 16:10:07 +0000
 Subject: Install authorized_keys(5) as a symlink to sshd(8)
@@ -13,10 +13,10 @@ Patch-Name: authorized-keys-man-symlink.patch
 1 file changed, 1 insertion(+)
 diff --git a/Makefile.in b/Makefile.in
-index 3d96c05..feee0b2 100644
+index c4cb8ea..a4402e9 100644
 --- a/Makefile.in
 +++ b/Makefile.in
-@@ -287,6 +287,7 @@ install-files:
+@@ -309,6 +309,7 @@ install-files:
        $(INSTALL) -m 644 sshd_config.5.out $(DESTDIR)$(mandir)/$(mansubdir)5/sshd_config.5
        $(INSTALL) -m 644 ssh_config.5.out $(DESTDIR)$(mandir)/$(mansubdir)5/ssh_config.5
        $(INSTALL) -m 644 sshd.8.out $(DESTDIR)$(mandir)/$(mansubdir)8/sshd.8
diff --git a/debian/patches/consolekit.patch b/debian/patches/consolekit.patch
index e3ff4d7e4..e50c77f62 100644
--- a/debian/patches/consolekit.patch
+++ b/debian/patches/consolekit.patch
@@ -1,33 +1,33 @@
-From 7a26d16efb4ee303c8d66ee82caf9d0686f4a074 Mon Sep 17 00:00:00 2001
+From f51fe0c55e54c12db952624e980d18f39c41e581 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@ubuntu.com>
 Date: Sun, 9 Feb 2014 16:09:57 +0000
 Subject: Add support for registering ConsoleKit sessions on login
 Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1450
-Last-Updated: 2014-03-20
+Last-Updated: 2014-10-07
 Patch-Name: consolekit.patch
 ---
 Makefile.in    |   3 +-
 configure      | 132 +++++++++++++++++++++++++++++++
 configure.ac   |  25 ++++++
- consolekit.c   | 240 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ consolekit.c   | 241 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 consolekit.h   |  24 ++++++
 monitor.c      |  42 ++++++++++
 monitor.h      |   2 +
- monitor_wrap.c |  30 ++++++++
+ monitor_wrap.c |  30 +++++++
 monitor_wrap.h |   4 +
 session.c      |  13 ++++
 session.h      |   6 ++
- 11 files changed, 520 insertions(+), 1 deletion(-)
+ 11 files changed, 521 insertions(+), 1 deletion(-)
 create mode 100644 consolekit.c
 create mode 100644 consolekit.h
 diff --git a/Makefile.in b/Makefile.in
-index ee1d2c3..3d96c05 100644
+index 086d8dd..c4cb8ea 100644
 --- a/Makefile.in
 +++ b/Makefile.in
-@@ -97,7 +97,8 @@ SSHDOBJS=sshd.o auth-rhosts.o auth-passwd.o auth-rsa.o auth-rh-rsa.o \
+@@ -107,7 +107,8 @@ SSHDOBJS=sshd.o auth-rhosts.o auth-passwd.o auth-rsa.o auth-rh-rsa.o \
        sftp-server.o sftp-common.o \
        roaming_common.o roaming_serv.o \
        sandbox-null.o sandbox-rlimit.o sandbox-systrace.o sandbox-darwin.o \
@@ -38,10 +38,10 @@ index ee1d2c3..3d96c05 100644
 MANPAGES       = moduli.5.out scp.1.out ssh-add.1.out ssh-agent.1.out ssh-keygen.1.out ssh-keyscan.1.out ssh.1.out sshd.8.out sftp-server.8.out sftp.1.out ssh-keysign.8.out ssh-pkcs11-helper.8.out sshd_config.5.out ssh_config.5.out
 MANPAGES_IN    = moduli.5 scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh.1 sshd.8 sftp-server.8 sftp.1 ssh-keysign.8 ssh-pkcs11-helper.8 sshd_config.5 ssh_config.5
 diff --git a/configure b/configure
-index b6b5b6d..e2f12cd 100755
+index ea5f200..7be478a 100755
 --- a/configure
 +++ b/configure
-@@ -740,6 +740,7 @@ with_privsep_user
+@@ -739,6 +739,7 @@ with_privsep_user
 with_sandbox
 with_selinux
 with_kerberos5
@@ -49,7 +49,7 @@ index b6b5b6d..e2f12cd 100755
 with_privsep_path
 with_xauth
 enable_strip
-@@ -1432,6 +1433,7 @@ Optional Packages:
+@@ -1430,6 +1431,7 @@ Optional Packages:
   --with-sandbox=style    Specify privilege separation sandbox (no, darwin, rlimit, systrace, seccomp_filter, capsicum)
   --with-selinux          Enable SELinux support
   --with-kerberos5=PATH   Enable Kerberos 5 support
@@ -57,7 +57,7 @@ index b6b5b6d..e2f12cd 100755
   --with-privsep-path=xxx Path for privilege separation chroot (default=/var/empty)
   --with-xauth=PATH       Specify path to xauth program
   --with-maildir=/path/to/mail    Specify your system mail directory
-@@ -17217,6 +17219,135 @@ fi
+@@ -17211,6 +17213,135 @@ fi
 
 
 
@@ -193,7 +193,7 @@ index b6b5b6d..e2f12cd 100755
 # Looking for programs, paths and files
 
 PRIVSEP_PATH=/var/empty
-@@ -19746,6 +19877,7 @@ echo "              MD5 password support: $MD5_MSG"
+@@ -19739,6 +19870,7 @@ echo "              MD5 password support: $MD5_MSG"
 echo "                   libedit support: $LIBEDIT_MSG"
 echo "  Solaris process contract support: $SPC_MSG"
 echo "           Solaris project support: $SP_MSG"
@@ -202,10 +202,10 @@ index b6b5b6d..e2f12cd 100755
 echo "           Translate v4 in v6 hack: $IPV4_IN6_HACK_MSG"
 echo "                  BSD Auth support: $BSD_AUTH_MSG"
 diff --git a/configure.ac b/configure.ac
-index d235fb0..8669271 100644
+index 7f160f1..f5c65c5 100644
 --- a/configure.ac
 +++ b/configure.ac
-@@ -4072,6 +4072,30 @@ AC_ARG_WITH([kerberos5],
+@@ -4113,6 +4113,30 @@ AC_ARG_WITH([kerberos5],
 AC_SUBST([GSSLIBS])
 AC_SUBST([K5LIBS])
 
@@ -236,7 +236,7 @@ index d235fb0..8669271 100644
 # Looking for programs, paths and files
 
 PRIVSEP_PATH=/var/empty
-@@ -4873,6 +4897,7 @@ echo "              MD5 password support: $MD5_MSG"
+@@ -4914,6 +4938,7 @@ echo "              MD5 password support: $MD5_MSG"
 echo "                   libedit support: $LIBEDIT_MSG"
 echo "  Solaris process contract support: $SPC_MSG"
 echo "           Solaris project support: $SP_MSG"
@@ -246,10 +246,10 @@ index d235fb0..8669271 100644
 echo "                  BSD Auth support: $BSD_AUTH_MSG"
 diff --git a/consolekit.c b/consolekit.c
 new file mode 100644
-index 0000000..f1039e6
+index 0000000..0266f06
 --- /dev/null
 +++ b/consolekit.c
-@@ -0,0 +1,240 @@
+@@ -0,0 +1,241 @@
 +/*
 + * Copyright (c) 2008 Colin Watson.  All rights reserved.
 + *
@@ -305,6 +305,7 @@ index 0000000..f1039e6
 +#include "hostfile.h"
 +#include "auth.h"
 +#include "log.h"
+#include "misc.h"
 +#include "servconf.h"
 +#include "canohost.h"
 +#include "session.h"
@@ -521,10 +522,10 @@ index 0000000..8ce3716
 +
 +#endif /* USE_CONSOLEKIT */
 diff --git a/monitor.c b/monitor.c
-index 11eac63..7c105e6 100644
+index 94b194d..cc15ce4 100644
 --- a/monitor.c
 +++ b/monitor.c
-@@ -97,6 +97,9 @@
+@@ -100,6 +100,9 @@
 #include "ssh2.h"
 #include "roaming.h"
 #include "authfd.h"
@@ -534,7 +535,7 @@ index 11eac63..7c105e6 100644
 
 #ifdef GSSAPI
 static Gssctxt *gsscontext = NULL;
-@@ -187,6 +190,10 @@ int mm_answer_audit_command(int, Buffer *);
+@@ -190,6 +193,10 @@ int mm_answer_audit_command(int, Buffer *);
 
 static int monitor_read_log(struct monitor *);
 
@@ -543,9 +544,9 @@ index 11eac63..7c105e6 100644
 +#endif
 +
 static Authctxt *authctxt;
- static BIGNUM *ssh1_challenge = NULL;  /* used for ssh1 rsa auth */
 
-@@ -272,6 +279,9 @@ struct mon_table mon_dispatch_postauth20[] = {
+ #ifdef WITH_SSH1
+@@ -282,6 +289,9 @@ struct mon_table mon_dispatch_postauth20[] = {
     {MONITOR_REQ_AUDIT_EVENT, MON_PERMIT, mm_answer_audit_event},
     {MONITOR_REQ_AUDIT_COMMAND, MON_PERMIT, mm_answer_audit_command},
 #endif
@@ -555,17 +556,17 @@ index 11eac63..7c105e6 100644
     {0, 0, NULL}
 };
 
-@@ -314,6 +324,9 @@ struct mon_table mon_dispatch_postauth15[] = {
+@@ -327,6 +337,9 @@ struct mon_table mon_dispatch_postauth15[] = {
     {MONITOR_REQ_AUDIT_EVENT, MON_PERMIT, mm_answer_audit_event},
     {MONITOR_REQ_AUDIT_COMMAND, MON_PERMIT|MON_ONCE, mm_answer_audit_command},
 #endif
 +#ifdef USE_CONSOLEKIT
 +    {MONITOR_REQ_CONSOLEKIT_REGISTER, 0, mm_answer_consolekit_register},
 +#endif
+ #endif /* WITH_SSH1 */
     {0, 0, NULL}
 };
- 
+@@ -509,6 +522,9 @@ monitor_child_postauth(struct monitor *pmonitor)
-@@ -492,6 +505,9 @@ monitor_child_postauth(struct monitor *pmonitor)
                monitor_permit(mon_dispatch, MONITOR_REQ_PTY, 1);
                monitor_permit(mon_dispatch, MONITOR_REQ_PTYCLEANUP, 1);
        }
@@ -575,7 +576,7 @@ index 11eac63..7c105e6 100644
 
        for (;;)
                monitor_read(pmonitor, mon_dispatch, NULL);
-@@ -2269,3 +2285,29 @@ mm_answer_gss_updatecreds(int socket, Buffer *m) {
+@@ -2296,3 +2312,29 @@ mm_answer_gss_updatecreds(int socket, Buffer *m) {
 
 #endif /* GSSAPI */
 
@@ -619,10 +620,10 @@ index 4d5e8fa..10ba59e 100644
 
 struct mm_master;
 diff --git a/monitor_wrap.c b/monitor_wrap.c
-index f75dc9d..a8fb07b 100644
+index 6dc890a..4c57d4d 100644
 --- a/monitor_wrap.c
 +++ b/monitor_wrap.c
-@@ -1353,3 +1353,33 @@ mm_ssh_gssapi_update_creds(ssh_gssapi_ccache *store)
+@@ -1363,3 +1363,33 @@ mm_ssh_gssapi_update_creds(ssh_gssapi_ccache *store)
 
 #endif /* GSSAPI */
 
@@ -670,10 +671,10 @@ index 9c2ee49..00e93fe 100644
 +
 #endif /* _MM_WRAP_H_ */
 diff --git a/session.c b/session.c
-index 6848df4..9d43fc3 100644
+index 6f389ac..6250c20 100644
 --- a/session.c
 +++ b/session.c
-@@ -92,6 +92,7 @@
+@@ -93,6 +93,7 @@
 #include "kex.h"
 #include "monitor_wrap.h"
 #include "sftp.h"
@@ -681,7 +682,7 @@ index 6848df4..9d43fc3 100644
 
 #if defined(KRB5) && defined(USE_AFS)
 #include <kafs.h>
-@@ -1160,6 +1161,9 @@ do_setup_env(Session *s, const char *shell)
+@@ -1143,6 +1144,9 @@ do_setup_env(Session *s, const char *shell)
 #if !defined (HAVE_LOGIN_CAP) && !defined (HAVE_CYGWIN)
        char *path = NULL;
 #endif
@@ -691,7 +692,7 @@ index 6848df4..9d43fc3 100644
 
        /* Initialize the environment. */
        envsize = 100;
-@@ -1304,6 +1308,11 @@ do_setup_env(Session *s, const char *shell)
+@@ -1287,6 +1291,11 @@ do_setup_env(Session *s, const char *shell)
                child_set_env(&env, &envsize, "KRB5CCNAME",
                    s->authctxt->krb5_ccname);
 #endif
@@ -703,7 +704,7 @@ index 6848df4..9d43fc3 100644
 #ifdef USE_PAM
        /*
         * Pull in any environment variables that may have
-@@ -2353,6 +2362,10 @@ session_pty_cleanup2(Session *s)
+@@ -2350,6 +2359,10 @@ session_pty_cleanup2(Session *s)
 
        debug("session_pty_cleanup: session %d release %s", s->self, s->tty);
 
diff --git a/debian/patches/curve25519-sha256-bignum-encoding.patch b/debian/patches/curve25519-sha256-bignum-encoding.patch
deleted file mode 100644
index ccb66048d..000000000
--- a/debian/patches/curve25519-sha256-bignum-encoding.patch
+++ /dev/null
@@ -1,161 +0,0 @@
-From 02883061577ec43ff8d0e8f0cf486bc5131db507 Mon Sep 17 00:00:00 2001
-From: Damien Miller <djm@mindrot.org>
-Date: Sun, 20 Apr 2014 13:47:45 +1000
-Subject: bad bignum encoding for curve25519-sha256@libssh.org
-Hi,
-So I screwed up when writing the support for the curve25519 KEX method
-that doesn't depend on OpenSSL's BIGNUM type - a bug in my code left
-leading zero bytes where they should have been skipped. The impact of
-this is that OpenSSH 6.5 and 6.6 will fail during key exchange with a
-peer that implements curve25519-sha256@libssh.org properly about 0.2%
-of the time (one in every 512ish connections).
-We've fixed this for OpenSSH 6.7 by avoiding the curve25519-sha256
-key exchange for previous versions, but I'd recommend distributors
-of OpenSSH apply this patch so the affected code doesn't become
-too entrenched in LTS releases.
-The patch fixes the bug and makes OpenSSH identify itself as 6.6.1 so as
-to distinguish itself from the incorrect versions so the compatibility
-code to disable the affected KEX isn't activated.
-I've committed this on the 6.6 branch too.
-Apologies for the hassle.
-d
-Origin: upstream, https://lists.mindrot.org/pipermail/openssh-unix-dev/2014-April/032494.html
-Forwarded: not-needed
-Last-Update: 2014-04-21
-Patch-Name: curve25519-sha256-bignum-encoding.patch
---
- bufaux.c      |  5 ++++-
- compat.c      | 17 ++++++++++++++++-
- compat.h      |  2 ++
- sshconnect2.c |  2 ++
- sshd.c        |  3 +++
- version.h     |  2 +-
- 6 files changed, 28 insertions(+), 3 deletions(-)
-diff --git a/bufaux.c b/bufaux.c
-index e24b5fc..f6a6f2a 100644
--- a/bufaux.c
-+++ b/bufaux.c
-@@ -1,4 +1,4 @@
-/* $OpenBSD: bufaux.c,v 1.56 2014/02/02 03:44:31 djm Exp $ */
-+/* $OpenBSD: bufaux.c,v 1.57 2014/04/16 23:22:45 djm Exp $ */
- /*
-  * Author: Tatu Ylonen <ylo@cs.hut.fi>
-  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
-@@ -372,6 +372,9 @@ buffer_put_bignum2_from_string(Buffer *buffer, const u_char *s, u_int l)
- 
-        if (l > 8 * 1024)
-                fatal("%s: length %u too long", __func__, l);
-+       /* Skip leading zero bytes */
-+       for (; l > 0 && *s == 0; l--, s++)
-+               ;
-        p = buf = xmalloc(l + 1);
-        /*
-         * If most significant bit is set then prepend a zero byte to
-diff --git a/compat.c b/compat.c
-index 9d9fabe..2709dc5 100644
--- a/compat.c
-+++ b/compat.c
-@@ -95,6 +95,9 @@ compat_datafellows(const char *version)
-                { "Sun_SSH_1.0*",       SSH_BUG_NOREKEY|SSH_BUG_EXTEOF},
-                { "OpenSSH_4*",         0 },
-                { "OpenSSH_5*",         SSH_NEW_OPENSSH|SSH_BUG_DYNAMIC_RPORT},
-+               { "OpenSSH_6.6.1*",     SSH_NEW_OPENSSH},
-+               { "OpenSSH_6.5*,"
-+                 "OpenSSH_6.6*",       SSH_NEW_OPENSSH|SSH_BUG_CURVE25519PAD},
-                { "OpenSSH*",           SSH_NEW_OPENSSH },
-                { "*MindTerm*",         0 },
-                { "2.1.0*",             SSH_BUG_SIGBLOB|SSH_BUG_HMAC|
-@@ -251,7 +254,6 @@ compat_cipher_proposal(char *cipher_prop)
-        return cipher_prop;
- }
- 
-
- char *
- compat_pkalg_proposal(char *pkalg_prop)
- {
-@@ -265,3 +267,16 @@ compat_pkalg_proposal(char *pkalg_prop)
-        return pkalg_prop;
- }
- 
-+char *
-+compat_kex_proposal(char *kex_prop)
-+{
-+       if (!(datafellows & SSH_BUG_CURVE25519PAD))
-+               return kex_prop;
-+       debug2("%s: original KEX proposal: %s", __func__, kex_prop);
-+       kex_prop = filter_proposal(kex_prop, "curve25519-sha256@libssh.org");
-+       debug2("%s: compat KEX proposal: %s", __func__, kex_prop);
-+       if (*kex_prop == '\0')
-+               fatal("No supported key exchange algorithms found");
-+       return kex_prop;
-+}
-+
-diff --git a/compat.h b/compat.h
-index b174fa1..a6c3f3d 100644
--- a/compat.h
-+++ b/compat.h
-@@ -59,6 +59,7 @@
- #define SSH_BUG_RFWD_ADDR      0x02000000
- #define SSH_NEW_OPENSSH                0x04000000
- #define SSH_BUG_DYNAMIC_RPORT  0x08000000
-+#define SSH_BUG_CURVE25519PAD  0x10000000
- 
- void     enable_compat13(void);
- void     enable_compat20(void);
-@@ -66,6 +67,7 @@ void     compat_datafellows(const char *);
- int     proto_spec(const char *);
- char   *compat_cipher_proposal(char *);
- char   *compat_pkalg_proposal(char *);
-+char   *compat_kex_proposal(char *);
- 
- extern int compat13;
- extern int compat20;
-diff --git a/sshconnect2.c b/sshconnect2.c
-index 66cb035..1a4e551 100644
--- a/sshconnect2.c
-+++ b/sshconnect2.c
-@@ -220,6 +220,8 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
-        }
-        if (options.kex_algorithms != NULL)
-                myproposal[PROPOSAL_KEX_ALGS] = options.kex_algorithms;
-+       myproposal[PROPOSAL_KEX_ALGS] = compat_kex_proposal(
-+           myproposal[PROPOSAL_KEX_ALGS]);
- 
- #ifdef GSSAPI
-        /* If we've got GSSAPI algorithms, then we also support the
-diff --git a/sshd.c b/sshd.c
-index 0964491..fe78d7b 100644
--- a/sshd.c
-+++ b/sshd.c
-@@ -2534,6 +2534,9 @@ do_ssh2_kex(void)
-        if (options.kex_algorithms != NULL)
-                myproposal[PROPOSAL_KEX_ALGS] = options.kex_algorithms;
- 
-+       myproposal[PROPOSAL_KEX_ALGS] = compat_kex_proposal(
-+           myproposal[PROPOSAL_KEX_ALGS]);
-+
-        if (options.rekey_limit || options.rekey_interval)
-                packet_set_rekey_limits((u_int32_t)options.rekey_limit,
-                    (time_t)options.rekey_interval);
-diff --git a/version.h b/version.h
-index a97c337..0659576 100644
--- a/version.h
-+++ b/version.h
-@@ -1,6 +1,6 @@
- /* $OpenBSD: version.h,v 1.70 2014/02/27 22:57:40 djm Exp $ */
- 
-#define SSH_VERSION    "OpenSSH_6.6"
-+#define SSH_VERSION    "OpenSSH_6.6.1"
- 
- #define SSH_PORTABLE   "p1"
- #define SSH_RELEASE_MINIMUM    SSH_VERSION SSH_PORTABLE
diff --git a/debian/patches/debian-banner.patch b/debian/patches/debian-banner.patch
index 49219cf93..ab64cbed5 100644
--- a/debian/patches/debian-banner.patch
+++ b/debian/patches/debian-banner.patch
@@ -1,4 +1,4 @@
-From 9fcad888f4dbf0ecc0c7e87b6ef0f8d88d7ac3ec Mon Sep 17 00:00:00 2001
+From 114c8a8fb488cbe39507edb75c51198a4b9e8b24 Mon Sep 17 00:00:00 2001
 From: Kees Cook <kees@debian.org>
 Date: Sun, 9 Feb 2014 16:10:06 +0000
 Subject: Add DebianBanner server configuration option
@@ -8,7 +8,7 @@ initial protocol handshake, for those scared by package-versioning.patch.
 Bug-Debian: http://bugs.debian.org/562048
 Forwarded: not-needed
-Last-Update: 2013-09-14
+Last-Update: 2014-10-07
 Patch-Name: debian-banner.patch
 ---
@@ -19,10 +19,10 @@ Patch-Name: debian-banner.patch
 4 files changed, 18 insertions(+), 1 deletion(-)
 diff --git a/servconf.c b/servconf.c
-index 90de888..37fd2de 100644
+index a252487..6c7741a 100644
 --- a/servconf.c
 +++ b/servconf.c
-@@ -156,6 +156,7 @@ initialize_server_options(ServerOptions *options)
+@@ -160,6 +160,7 @@ initialize_server_options(ServerOptions *options)
        options->ip_qos_interactive = -1;
        options->ip_qos_bulk = -1;
        options->version_addendum = NULL;
@@ -30,34 +30,34 @@ index 90de888..37fd2de 100644
 }
 
 void
-@@ -309,6 +310,8 @@ fill_default_server_options(ServerOptions *options)
+@@ -321,6 +322,8 @@ fill_default_server_options(ServerOptions *options)
-                options->ip_qos_bulk = IPTOS_THROUGHPUT;
+                options->fwd_opts.streamlocal_bind_mask = 0177;
-        if (options->version_addendum == NULL)
+        if (options->fwd_opts.streamlocal_bind_unlink == -1)
-                options->version_addendum = xstrdup("");
+                options->fwd_opts.streamlocal_bind_unlink = 0;
 +       if (options->debian_banner == -1)
 +               options->debian_banner = 1;
        /* Turn privilege separation on by default */
        if (use_privsep == -1)
                use_privsep = PRIVSEP_NOSANDBOX;
-@@ -359,6 +362,7 @@ typedef enum {
+@@ -373,6 +376,7 @@ typedef enum {
-        sKexAlgorithms, sIPQoS, sVersionAddendum,
+        sAuthenticationMethods, sHostKeyAgent, sPermitUserRC,
-        sAuthorizedKeysCommand, sAuthorizedKeysCommandUser,
+        sStreamLocalBindMask, sStreamLocalBindUnlink,
-        sAuthenticationMethods, sHostKeyAgent,
+        sAllowStreamLocalForwarding,
 +       sDebianBanner,
        sDeprecated, sUnsupported
 } ServerOpCodes;
 
-@@ -496,6 +500,7 @@ static struct {
+@@ -514,6 +518,7 @@ static struct {
-        { "authorizedkeyscommanduser", sAuthorizedKeysCommandUser, SSHCFG_ALL },
+        { "streamlocalbindmask", sStreamLocalBindMask, SSHCFG_ALL },
-        { "versionaddendum", sVersionAddendum, SSHCFG_GLOBAL },
+        { "streamlocalbindunlink", sStreamLocalBindUnlink, SSHCFG_ALL },
-        { "authenticationmethods", sAuthenticationMethods, SSHCFG_ALL },
+        { "allowstreamlocalforwarding", sAllowStreamLocalForwarding, SSHCFG_ALL },
 +       { "debianbanner", sDebianBanner, SSHCFG_GLOBAL },
        { NULL, sBadOption, 0 }
 };
 
-@@ -1654,6 +1659,10 @@ process_server_config_line(ServerOptions *options, char *line,
+@@ -1697,6 +1702,10 @@ process_server_config_line(ServerOptions *options, char *line,
-                }
+                intptr = &options->fwd_opts.streamlocal_bind_unlink;
-                return 0;
+                goto parse_flag;
 
 +       case sDebianBanner:
 +               intptr = &options->debian_banner;
@@ -67,10 +67,10 @@ index 90de888..37fd2de 100644
                logit("%s line %d: Deprecated option %s",
                    filename, linenum, arg);
 diff --git a/servconf.h b/servconf.h
-index c922eb5..dcd1c2a 100644
+index f8265a8..fa48804 100644
 --- a/servconf.h
 +++ b/servconf.h
-@@ -186,6 +186,8 @@ typedef struct {
+@@ -188,6 +188,8 @@ typedef struct {
 
        u_int   num_auth_methods;
        char   *auth_methods[MAX_AUTH_METHODS];
@@ -80,10 +80,10 @@ index c922eb5..dcd1c2a 100644
 
 /* Information about the incoming connection as used by Match */
 diff --git a/sshd.c b/sshd.c
-index af9b8f1..665c0b9 100644
+index 1710e71..87331c1 100644
 --- a/sshd.c
 +++ b/sshd.c
-@@ -440,7 +440,8 @@ sshd_exchange_identification(int sock_in, int sock_out)
+@@ -443,7 +443,8 @@ sshd_exchange_identification(int sock_in, int sock_out)
        }
 
        xasprintf(&server_version_string, "SSH-%d.%d-%.100s%s%s%s",
@@ -94,10 +94,10 @@ index af9b8f1..665c0b9 100644
            options.version_addendum, newline);
 
 diff --git a/sshd_config.5 b/sshd_config.5
-index 2164d58..8f078f6 100644
+index 2843048..58997d3 100644
 --- a/sshd_config.5
 +++ b/sshd_config.5
-@@ -413,6 +413,11 @@ or
+@@ -447,6 +447,11 @@ or
 .Dq no .
 The default is
 .Dq delayed .
diff --git a/debian/patches/debian-config.patch b/debian/patches/debian-config.patch
index 9ada04a10..661d30ca8 100644
--- a/debian/patches/debian-config.patch
+++ b/debian/patches/debian-config.patch
@@ -1,4 +1,4 @@
-From df5c8d109fb3d9ec16a487107a44300ed3006849 Mon Sep 17 00:00:00 2001
+From 762c062828f5a8f6ed189ed6e44ad38fd92f8b36 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:18 +0000
 Subject: Various Debian-specific configuration changes
@@ -34,10 +34,10 @@ Patch-Name: debian-config.patch
 5 files changed, 51 insertions(+), 3 deletions(-)
 diff --git a/readconf.c b/readconf.c
-index 32c4b42..5429fc2 100644
+index 0648867..29338b6 100644
 --- a/readconf.c
 +++ b/readconf.c
-@@ -1640,7 +1640,7 @@ fill_default_options(Options * options)
+@@ -1681,7 +1681,7 @@ fill_default_options(Options * options)
        if (options->forward_x11 == -1)
                options->forward_x11 = 0;
        if (options->forward_x11_trusted == -1)
@@ -71,7 +71,7 @@ index 228e5ab..c9386aa 100644
 +    GSSAPIAuthentication yes
 +    GSSAPIDelegateCredentials no
 diff --git a/ssh_config.5 b/ssh_config.5
-index 1d500e9..22e6372 100644
+index a1005ba..da3c177 100644
 --- a/ssh_config.5
 +++ b/ssh_config.5
 @@ -71,6 +71,22 @@ Since the first obtained value for each parameter is used, more
@@ -97,7 +97,7 @@ index 1d500e9..22e6372 100644
 The configuration file has the following format:
 .Pp
 Empty lines and lines starting with
-@@ -654,7 +670,8 @@ token used for the session will be set to expire after 20 minutes.
+@@ -673,7 +689,8 @@ token used for the session will be set to expire after 20 minutes.
 Remote clients will be refused access after this time.
 .Pp
 The default is
@@ -120,7 +120,7 @@ index d9b8594..4db32f5 100644
 #StrictModes yes
 #MaxAuthTries 6
 diff --git a/sshd_config.5 b/sshd_config.5
-index 908e0bb..90fd3f4 100644
+index 7396b23..7aa7b47 100644
 --- a/sshd_config.5
 +++ b/sshd_config.5
 @@ -57,6 +57,31 @@ Arguments may optionally be enclosed in double quotes
diff --git a/debian/patches/dnssec-sshfp.patch b/debian/patches/dnssec-sshfp.patch
index bc89c50fc..0212ea841 100644
--- a/debian/patches/dnssec-sshfp.patch
+++ b/debian/patches/dnssec-sshfp.patch
@@ -1,4 +1,4 @@
-From 912129ba92bea401d8cdeadc7aa7084fbf7625a1 Mon Sep 17 00:00:00 2001
+From 4ac9937c1d9f1901ab0694114d76e59a138aae96 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:01 +0000
 Subject: Force use of DNSSEC even if "options edns0" isn't in resolv.conf
@@ -18,10 +18,10 @@ Patch-Name: dnssec-sshfp.patch
 3 files changed, 21 insertions(+), 6 deletions(-)
 diff --git a/dns.c b/dns.c
-index 630b97a..478c3d9 100644
+index c4d073c..e5872c1 100644
 --- a/dns.c
 +++ b/dns.c
-@@ -196,6 +196,7 @@ verify_host_key_dns(const char *hostname, struct sockaddr *address,
+@@ -203,6 +203,7 @@ verify_host_key_dns(const char *hostname, struct sockaddr *address,
 {
        u_int counter;
        int result;
@@ -29,7 +29,7 @@ index 630b97a..478c3d9 100644
        struct rrsetinfo *fingerprints = NULL;
 
        u_int8_t hostkey_algorithm;
-@@ -219,8 +220,19 @@ verify_host_key_dns(const char *hostname, struct sockaddr *address,
+@@ -226,8 +227,19 @@ verify_host_key_dns(const char *hostname, struct sockaddr *address,
                return -1;
        }
 
diff --git a/debian/patches/doc-hash-tab-completion.patch b/debian/patches/doc-hash-tab-completion.patch
index 16c40b05f..8e6cfa575 100644
--- a/debian/patches/doc-hash-tab-completion.patch
+++ b/debian/patches/doc-hash-tab-completion.patch
@@ -1,4 +1,4 @@
-From 1d108ef62050b4368e24e1efada16ec88c177fb8 Mon Sep 17 00:00:00 2001
+From 2fd0b3814e27d584efa6df92845a7354e7c2de6c Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:11 +0000
 Subject: Document that HashKnownHosts may break tab-completion
@@ -13,10 +13,10 @@ Patch-Name: doc-hash-tab-completion.patch
 1 file changed, 3 insertions(+)
 diff --git a/ssh_config.5 b/ssh_config.5
-index 4bf7cbb..1d500e9 100644
+index d68b45a..a1005ba 100644
 --- a/ssh_config.5
 +++ b/ssh_config.5
-@@ -740,6 +740,9 @@ Note that existing names and addresses in known hosts files
+@@ -759,6 +759,9 @@ Note that existing names and addresses in known hosts files
 will not be converted automatically,
 but may be manually hashed using
 .Xr ssh-keygen 1 .
diff --git a/debian/patches/doc-upstart.patch b/debian/patches/doc-upstart.patch
index da8fc7ed4..c1ce1bcae 100644
--- a/debian/patches/doc-upstart.patch
+++ b/debian/patches/doc-upstart.patch
@@ -1,4 +1,4 @@
-From 111de26347496af3f6ed04849fd29bc4bf1c2cea Mon Sep 17 00:00:00 2001
+From 252e76b3ad6e83a798e479a2beba5be7000ff85e Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@ubuntu.com>
 Date: Sun, 9 Feb 2014 16:10:12 +0000
 Subject: Refer to ssh's Upstart job as well as its init script
@@ -12,10 +12,10 @@ Patch-Name: doc-upstart.patch
 1 file changed, 4 insertions(+), 1 deletion(-)
 diff --git a/sshd.8 b/sshd.8
-index b016e90..cba168a 100644
+index 3538208..f8f9eac 100644
 --- a/sshd.8
 +++ b/sshd.8
-@@ -70,7 +70,10 @@ over an insecure network.
+@@ -67,7 +67,10 @@ over an insecure network.
 .Nm
 listens for connections from clients.
 It is normally started at boot from
diff --git a/debian/patches/gnome-ssh-askpass2-icon.patch b/debian/patches/gnome-ssh-askpass2-icon.patch
index dab518f65..84fe03acc 100644
--- a/debian/patches/gnome-ssh-askpass2-icon.patch
+++ b/debian/patches/gnome-ssh-askpass2-icon.patch
@@ -1,4 +1,4 @@
-From b7df8fdb32f3d33b70ff8733cb0c39417e367534 Mon Sep 17 00:00:00 2001
+From 1195b028cb9f402633cfdcae6ec34bf63b4ab771 Mon Sep 17 00:00:00 2001
 From: Vincent Untz <vuntz@ubuntu.com>
 Date: Sun, 9 Feb 2014 16:10:16 +0000
 Subject: Give the ssh-askpass-gnome window a default icon
diff --git a/debian/patches/gssapi.patch b/debian/patches/gssapi.patch
index d8439bf03..e8cbc1083 100644
--- a/debian/patches/gssapi.patch
+++ b/debian/patches/gssapi.patch
@@ -1,4 +1,4 @@
-From 9dfcd1a0e691c1cad34b168e27b3ed31ab6986cd Mon Sep 17 00:00:00 2001
+From 1c1b6fa17982eb622e2c4e8f4a279f2113f57413 Mon Sep 17 00:00:00 2001
 From: Simon Wilkinson <simon@sxw.org.uk>
 Date: Sun, 9 Feb 2014 16:09:48 +0000
 Subject: GSSAPI key exchange support
@@ -17,7 +17,7 @@ have it merged into the main openssh package rather than having separate
 security history.
 Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1242
-Last-Updated: 2014-03-19
+Last-Updated: 2014-10-07
 Patch-Name: gssapi.patch
 ---
@@ -36,9 +36,7 @@ Patch-Name: gssapi.patch
 kex.c            |  16 +++
 kex.h            |  14 +++
 kexgssc.c        | 332 +++++++++++++++++++++++++++++++++++++++++++++++++++++++
- kexgsss.c        | 289 ++++++++++++++++++++++++++++++++++++++++++++++++
+ kexgsss.c        | 290 ++++++++++++++++++++++++++++++++++++++++++++++++
- key.c            |   3 +-
- key.h            |   1 +
 monitor.c        | 108 +++++++++++++++++-
 monitor.h        |   3 +
 monitor_wrap.c   |  47 +++++++-
@@ -54,7 +52,9 @@ Patch-Name: gssapi.patch
 sshd.c           | 110 ++++++++++++++++++
 sshd_config      |   2 +
 sshd_config.5    |  28 +++++
- 33 files changed, 2051 insertions(+), 59 deletions(-)
+ sshkey.c         |   3 +-
+ sshkey.h         |   1 +
+ 33 files changed, 2052 insertions(+), 59 deletions(-)
 create mode 100644 ChangeLog.gssapi
 create mode 100644 kexgssc.c
 create mode 100644 kexgsss.c
@@ -179,10 +179,10 @@ index 0000000..f117a33
 +    (from jbasney AT ncsa.uiuc.edu)
 +    <gssapi-with-mic support is Bugzilla #1008>
 diff --git a/Makefile.in b/Makefile.in
-index 28a8ec4..ee1d2c3 100644
+index 06be3d5..086d8dd 100644
 --- a/Makefile.in
 +++ b/Makefile.in
-@@ -72,6 +72,7 @@ LIBSSH_OBJS=authfd.o authfile.o bufaux.o bufbn.o buffer.o \
+@@ -82,6 +82,7 @@ LIBSSH_OBJS=${LIBOPENSSH_OBJS} \
        atomicio.o key.o dispatch.o kex.o mac.o uidswap.o uuencode.o misc.o \
        monitor_fdpass.o rijndael.o ssh-dss.o ssh-ecdsa.o ssh-rsa.o dh.o \
        kexdh.o kexgex.o kexdhc.o kexgexc.o bufec.o kexecdh.o kexecdhc.o \
@@ -190,7 +190,7 @@ index 28a8ec4..ee1d2c3 100644
        msg.o progressmeter.o dns.o entropy.o gss-genr.o umac.o umac128.o \
        ssh-pkcs11.o krl.o smult_curve25519_ref.o \
        kexc25519.o kexc25519c.o poly1305.o chacha.o cipher-chachapoly.o \
-@@ -91,7 +92,7 @@ SSHDOBJS=sshd.o auth-rhosts.o auth-passwd.o auth-rsa.o auth-rh-rsa.o \
+@@ -101,7 +102,7 @@ SSHDOBJS=sshd.o auth-rhosts.o auth-passwd.o auth-rsa.o auth-rh-rsa.o \
        auth2-none.o auth2-passwd.o auth2-pubkey.o \
        monitor_mm.o monitor.o monitor_wrap.o kexdhs.o kexgexs.o kexecdhs.o \
        kexc25519s.o auth-krb5.o \
@@ -200,10 +200,10 @@ index 28a8ec4..ee1d2c3 100644
        sftp-server.o sftp-common.o \
        roaming_common.o roaming_serv.o \
 diff --git a/auth-krb5.c b/auth-krb5.c
-index 6c62bdf..69a1a53 100644
+index 0089b18..ec47869 100644
 --- a/auth-krb5.c
 +++ b/auth-krb5.c
-@@ -182,8 +182,13 @@ auth_krb5_password(Authctxt *authctxt, const char *password)
+@@ -183,8 +183,13 @@ auth_krb5_password(Authctxt *authctxt, const char *password)
 
        len = strlen(authctxt->krb5_ticket_file) + 6;
        authctxt->krb5_ccname = xmalloc(len);
@@ -217,7 +217,7 @@ index 6c62bdf..69a1a53 100644
 
 #ifdef USE_PAM
        if (options.use_pam)
-@@ -240,15 +245,22 @@ krb5_cleanup_proc(Authctxt *authctxt)
+@@ -241,15 +246,22 @@ krb5_cleanup_proc(Authctxt *authctxt)
 #ifndef HEIMDAL
 krb5_error_code
 ssh_krb5_cc_gen(krb5_context ctx, krb5_ccache *ccache) {
@@ -242,7 +242,7 @@ index 6c62bdf..69a1a53 100644
        old_umask = umask(0177);
        tmpfd = mkstemp(ccname + strlen("FILE:"));
        oerrno = errno;
-@@ -265,6 +277,7 @@ ssh_krb5_cc_gen(krb5_context ctx, krb5_ccache *ccache) {
+@@ -266,6 +278,7 @@ ssh_krb5_cc_gen(krb5_context ctx, krb5_ccache *ccache) {
                return oerrno;
        }
        close(tmpfd);
@@ -251,7 +251,7 @@ index 6c62bdf..69a1a53 100644
        return (krb5_cc_resolve(ctx, ccname, ccache));
 }
 diff --git a/auth2-gss.c b/auth2-gss.c
-index c28a705..3ff2d72 100644
+index 447f896..284f364 100644
 --- a/auth2-gss.c
 +++ b/auth2-gss.c
 @@ -1,7 +1,7 @@
@@ -263,7 +263,7 @@ index c28a705..3ff2d72 100644
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
-@@ -52,6 +52,40 @@ static void input_gssapi_mic(int type, u_int32_t plen, void *ctxt);
+@@ -53,6 +53,40 @@ static void input_gssapi_mic(int type, u_int32_t plen, void *ctxt);
 static void input_gssapi_exchange_complete(int type, u_int32_t plen, void *ctxt);
 static void input_gssapi_errtok(int, u_int32_t, void *);
 
@@ -304,7 +304,7 @@ index c28a705..3ff2d72 100644
 /*
  * We only support those mechanisms that we know about (ie ones that we know
  * how to check local user kuserok and the like)
-@@ -235,7 +269,8 @@ input_gssapi_exchange_complete(int type, u_int32_t plen, void *ctxt)
+@@ -236,7 +270,8 @@ input_gssapi_exchange_complete(int type, u_int32_t plen, void *ctxt)
 
        packet_check_eom();
 
@@ -314,7 +314,7 @@ index c28a705..3ff2d72 100644
 
        authctxt->postponed = 0;
        dispatch_set(SSH2_MSG_USERAUTH_GSSAPI_TOKEN, NULL);
-@@ -270,7 +305,8 @@ input_gssapi_mic(int type, u_int32_t plen, void *ctxt)
+@@ -271,7 +306,8 @@ input_gssapi_mic(int type, u_int32_t plen, void *ctxt)
        gssbuf.length = buffer_len(&b);
 
        if (!GSS_ERROR(PRIVSEP(ssh_gssapi_checkmic(gssctxt, &gssbuf, &mic))))
@@ -324,7 +324,7 @@ index c28a705..3ff2d72 100644
        else
                logit("GSSAPI MIC check failed");
 
-@@ -285,6 +321,12 @@ input_gssapi_mic(int type, u_int32_t plen, void *ctxt)
+@@ -286,6 +322,12 @@ input_gssapi_mic(int type, u_int32_t plen, void *ctxt)
        userauth_finish(authctxt, authenticated, "gssapi-with-mic", NULL);
 }
 
@@ -338,10 +338,10 @@ index c28a705..3ff2d72 100644
        "gssapi-with-mic",
        userauth_gssapi,
 diff --git a/auth2.c b/auth2.c
-index a5490c0..fbe3e1b 100644
+index d9b440a..2f0d565 100644
 --- a/auth2.c
 +++ b/auth2.c
-@@ -69,6 +69,7 @@ extern Authmethod method_passwd;
+@@ -70,6 +70,7 @@ extern Authmethod method_passwd;
 extern Authmethod method_kbdint;
 extern Authmethod method_hostbased;
 #ifdef GSSAPI
@@ -349,7 +349,7 @@ index a5490c0..fbe3e1b 100644
 extern Authmethod method_gssapi;
 #endif
 
-@@ -76,6 +77,7 @@ Authmethod *authmethods[] = {
+@@ -77,6 +78,7 @@ Authmethod *authmethods[] = {
        &method_none,
        &method_pubkey,
 #ifdef GSSAPI
@@ -358,7 +358,7 @@ index a5490c0..fbe3e1b 100644
 #endif
        &method_passwd,
 diff --git a/clientloop.c b/clientloop.c
-index 59ad3a2..6d8cd7d 100644
+index 397c965..f9175e3 100644
 --- a/clientloop.c
 +++ b/clientloop.c
 @@ -111,6 +111,10 @@
@@ -372,7 +372,7 @@ index 59ad3a2..6d8cd7d 100644
 /* import options */
 extern Options options;
 
-@@ -1608,6 +1612,15 @@ client_loop(int have_pty, int escape_char_arg, int ssh2_chan_id)
+@@ -1596,6 +1600,15 @@ client_loop(int have_pty, int escape_char_arg, int ssh2_chan_id)
                /* Do channel operations unless rekeying in progress. */
                if (!rekeying) {
                        channel_after_select(readset, writeset);
@@ -389,7 +389,7 @@ index 59ad3a2..6d8cd7d 100644
                                debug("need rekeying");
                                xxx_kex->done = 0;
 diff --git a/config.h.in b/config.h.in
-index 0401ad1..6bc422c 100644
+index 16d6206..a9a8b7a 100644
 --- a/config.h.in
 +++ b/config.h.in
 @@ -1622,6 +1622,9 @@
@@ -413,10 +413,10 @@ index 0401ad1..6bc422c 100644
 #undef USE_SOLARIS_PROCESS_CONTRACTS
 
 diff --git a/configure b/configure
-index d690393..b6b5b6d 100755
+index 6815388..ea5f200 100755
 --- a/configure
 +++ b/configure
-@@ -7170,6 +7170,63 @@ $as_echo "#define SSH_TUN_COMPAT_AF 1" >>confdefs.h
+@@ -7168,6 +7168,63 @@ $as_echo "#define SSH_TUN_COMPAT_AF 1" >>confdefs.h
 
 $as_echo "#define SSH_TUN_PREPEND_AF 1" >>confdefs.h
 
@@ -481,7 +481,7 @@ index d690393..b6b5b6d 100755
        ac_fn_c_check_decl "$LINENO" "AU_IPv4" "ac_cv_have_decl_AU_IPv4" "$ac_includes_default"
 if test "x$ac_cv_have_decl_AU_IPv4" = xyes; then :
 diff --git a/configure.ac b/configure.ac
-index 7c6ce08..d235fb0 100644
+index 67c4486..90e81e1 100644
 --- a/configure.ac
 +++ b/configure.ac
 @@ -584,6 +584,30 @@ main() { if (NSVersionOfRunTimeLibrary("System") >= (60 << 16))
@@ -866,7 +866,7 @@ index b39281b..1e569ad 100644
 +
 #endif /* GSSAPI */
 diff --git a/gss-serv-krb5.c b/gss-serv-krb5.c
-index 759fa10..e678a27 100644
+index 795992d..fd8b371 100644
 --- a/gss-serv-krb5.c
 +++ b/gss-serv-krb5.c
 @@ -1,7 +1,7 @@
@@ -878,7 +878,7 @@ index 759fa10..e678a27 100644
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
-@@ -120,8 +120,8 @@ ssh_gssapi_krb5_storecreds(ssh_gssapi_client *client)
+@@ -121,8 +121,8 @@ ssh_gssapi_krb5_storecreds(ssh_gssapi_client *client)
        krb5_error_code problem;
        krb5_principal princ;
        OM_uint32 maj_status, min_status;
@@ -888,7 +888,7 @@ index 759fa10..e678a27 100644
 
        if (client->creds == NULL) {
                debug("No credentials stored");
-@@ -180,11 +180,16 @@ ssh_gssapi_krb5_storecreds(ssh_gssapi_client *client)
+@@ -181,11 +181,16 @@ ssh_gssapi_krb5_storecreds(ssh_gssapi_client *client)
                return;
        }
 
@@ -909,7 +909,7 @@ index 759fa10..e678a27 100644
 
 #ifdef USE_PAM
        if (options.use_pam)
-@@ -196,6 +201,71 @@ ssh_gssapi_krb5_storecreds(ssh_gssapi_client *client)
+@@ -197,6 +202,71 @@ ssh_gssapi_krb5_storecreds(ssh_gssapi_client *client)
        return;
 }
 
@@ -981,7 +981,7 @@ index 759fa10..e678a27 100644
 ssh_gssapi_mech gssapi_kerberos_mech = {
        "toWM5Slw5Ew8Mqkay+al2g==",
        "Kerberos",
-@@ -203,7 +273,8 @@ ssh_gssapi_mech gssapi_kerberos_mech = {
+@@ -204,7 +274,8 @@ ssh_gssapi_mech gssapi_kerberos_mech = {
        NULL,
        &ssh_gssapi_krb5_userok,
        NULL,
@@ -992,11 +992,11 @@ index 759fa10..e678a27 100644
 
 #endif /* KRB5 */
 diff --git a/gss-serv.c b/gss-serv.c
-index e61b37b..c33463b 100644
+index 5c59924..50fa438 100644
 --- a/gss-serv.c
 +++ b/gss-serv.c
 @@ -1,7 +1,7 @@
- /* $OpenBSD: gss-serv.c,v 1.26 2014/02/26 20:28:44 djm Exp $ */
+ /* $OpenBSD: gss-serv.c,v 1.27 2014/07/03 03:34:09 djm Exp $ */
 
 /*
 - * Copyright (c) 2001-2003 Simon Wilkinson. All rights reserved.
@@ -1029,7 +1029,7 @@ index e61b37b..c33463b 100644
 #ifdef KRB5
 extern ssh_gssapi_mech gssapi_kerberos_mech;
 @@ -100,25 +106,32 @@ ssh_gssapi_acquire_cred(Gssctxt *ctx)
-        char lname[MAXHOSTNAMELEN];
+        char lname[NI_MAXHOST];
        gss_OID_set oidset;
 
 -       gss_create_empty_oid_set(&status, &oidset);
@@ -1038,11 +1038,11 @@ index e61b37b..c33463b 100644
 +               gss_create_empty_oid_set(&status, &oidset);
 +               gss_add_oid_set_member(&status, ctx->oid, &oidset);
 
-       if (gethostname(lname, MAXHOSTNAMELEN)) {
+-       if (gethostname(lname, sizeof(lname))) {
 -               gss_release_oid_set(&status, &oidset);
 -               return (-1);
 -       }
-+               if (gethostname(lname, MAXHOSTNAMELEN)) {
+               if (gethostname(lname, sizeof(lname))) {
 +                       gss_release_oid_set(&status, &oidset);
 +                       return (-1);
 +               }
@@ -1310,10 +1310,10 @@ index e61b37b..c33463b 100644
 
 #endif
 diff --git a/kex.c b/kex.c
-index 74e2b86..d114ee3 100644
+index a173e70..891852b 100644
 --- a/kex.c
 +++ b/kex.c
-@@ -51,6 +51,10 @@
+@@ -53,6 +53,10 @@
 #include "roaming.h"
 #include "digest.h"
 
@@ -1324,8 +1324,8 @@ index 74e2b86..d114ee3 100644
 #if OPENSSL_VERSION_NUMBER >= 0x00907000L
 # if defined(HAVE_EVP_SHA256)
 # define evp_ssh_sha256 EVP_sha256
-@@ -92,6 +96,14 @@ static const struct kexalg kexalgs[] = {
+@@ -96,6 +100,14 @@ static const struct kexalg kexalgs[] = {
- #endif
+ #endif /* HAVE_EVP_SHA256 */
        { NULL, -1, -1, -1},
 };
 +static const struct kexalg kexalg_prefixes[] = {
@@ -1339,7 +1339,7 @@ index 74e2b86..d114ee3 100644
 
 char *
 kex_alg_list(char sep)
-@@ -120,6 +132,10 @@ kex_alg_by_name(const char *name)
+@@ -124,6 +136,10 @@ kex_alg_by_name(const char *name)
                if (strcmp(k->name, name) == 0)
                        return k;
        }
@@ -1351,7 +1351,7 @@ index 74e2b86..d114ee3 100644
 }
 
 diff --git a/kex.h b/kex.h
-index c85680e..ea698c4 100644
+index 4c40ec8..c179a4d 100644
 --- a/kex.h
 +++ b/kex.h
 @@ -76,6 +76,9 @@ enum kex_exchange {
@@ -1729,10 +1729,10 @@ index 0000000..92a31c5
 +#endif /* GSSAPI */
 diff --git a/kexgsss.c b/kexgsss.c
 new file mode 100644
-index 0000000..8095259
+index 0000000..6a0ece8
 --- /dev/null
 +++ b/kexgsss.c
-@@ -0,0 +1,289 @@
+@@ -0,0 +1,290 @@
 +/*
 + * Copyright (c) 2001-2009 Simon Wilkinson. All rights reserved.
 + *
@@ -1777,6 +1777,7 @@ index 0000000..8095259
 +#include "dh.h"
 +#include "ssh-gss.h"
 +#include "monitor_wrap.h"
+#include "misc.h"
 +#include "servconf.h"
 +
 +extern ServerOptions options;
@@ -2022,44 +2023,11 @@ index 0000000..8095259
 +               ssh_gssapi_rekey_creds();
 +}
 +#endif /* GSSAPI */
-diff --git a/key.c b/key.c
-index 168e1b7..3d640e7 100644
--- a/key.c
-+++ b/key.c
-@@ -985,6 +985,7 @@ static const struct keytype keytypes[] = {
-            KEY_DSA_CERT_V00, 0, 1 },
-        { "ssh-ed25519-cert-v01@openssh.com", "ED25519-CERT",
-            KEY_ED25519_CERT, 0, 1 },
-+       { "null", "null", KEY_NULL, 0, 0 },
-        { NULL, NULL, -1, -1, 0 }
- };
- 
-@@ -1063,7 +1064,7 @@ key_alg_list(int certs_only, int plain_only)
-        const struct keytype *kt;
- 
-        for (kt = keytypes; kt->type != -1; kt++) {
-               if (kt->name == NULL)
-+               if (kt->name == NULL || kt->type == KEY_NULL)
-                        continue;
-                if ((certs_only && !kt->cert) || (plain_only && kt->cert))
-                        continue;
-diff --git a/key.h b/key.h
-index d8ad13d..c8aeba2 100644
--- a/key.h
-+++ b/key.h
-@@ -46,6 +46,7 @@ enum types {
-        KEY_ED25519_CERT,
-        KEY_RSA_CERT_V00,
-        KEY_DSA_CERT_V00,
-+       KEY_NULL,
-        KEY_UNSPEC
- };
- enum fp_type {
 diff --git a/monitor.c b/monitor.c
-index 531c4f9..2918814 100644
+index dbe29f1..b0896ef 100644
 --- a/monitor.c
 +++ b/monitor.c
-@@ -175,6 +175,8 @@ int mm_answer_gss_setup_ctx(int, Buffer *);
+@@ -178,6 +178,8 @@ int mm_answer_gss_setup_ctx(int, Buffer *);
 int mm_answer_gss_accept_ctx(int, Buffer *);
 int mm_answer_gss_userok(int, Buffer *);
 int mm_answer_gss_checkmic(int, Buffer *);
@@ -2068,7 +2036,7 @@ index 531c4f9..2918814 100644
 #endif
 
 #ifdef SSH_AUDIT_EVENTS
-@@ -247,11 +249,18 @@ struct mon_table mon_dispatch_proto20[] = {
+@@ -255,11 +257,18 @@ struct mon_table mon_dispatch_proto20[] = {
     {MONITOR_REQ_GSSSTEP, MON_ISAUTH, mm_answer_gss_accept_ctx},
     {MONITOR_REQ_GSSUSEROK, MON_AUTH, mm_answer_gss_userok},
     {MONITOR_REQ_GSSCHECKMIC, MON_ISAUTH, mm_answer_gss_checkmic},
@@ -2084,10 +2052,10 @@ index 531c4f9..2918814 100644
 +    {MONITOR_REQ_GSSSIGN, 0, mm_answer_gss_sign},
 +    {MONITOR_REQ_GSSUPCREDS, 0, mm_answer_gss_updatecreds},
 +#endif
+ #ifdef WITH_OPENSSL
     {MONITOR_REQ_MODULI, 0, mm_answer_moduli},
-     {MONITOR_REQ_SIGN, 0, mm_answer_sign},
+ #endif
-     {MONITOR_REQ_PTY, 0, mm_answer_pty},
+@@ -374,6 +383,10 @@ monitor_child_preauth(Authctxt *_authctxt, struct monitor *pmonitor)
-@@ -360,6 +369,10 @@ monitor_child_preauth(Authctxt *_authctxt, struct monitor *pmonitor)
                /* Permit requests for moduli and signatures */
                monitor_permit(mon_dispatch, MONITOR_REQ_MODULI, 1);
                monitor_permit(mon_dispatch, MONITOR_REQ_SIGN, 1);
@@ -2098,7 +2066,7 @@ index 531c4f9..2918814 100644
        } else {
                mon_dispatch = mon_dispatch_proto15;
 
-@@ -465,6 +478,10 @@ monitor_child_postauth(struct monitor *pmonitor)
+@@ -482,6 +495,10 @@ monitor_child_postauth(struct monitor *pmonitor)
                monitor_permit(mon_dispatch, MONITOR_REQ_MODULI, 1);
                monitor_permit(mon_dispatch, MONITOR_REQ_SIGN, 1);
                monitor_permit(mon_dispatch, MONITOR_REQ_TERM, 1);
@@ -2109,9 +2077,9 @@ index 531c4f9..2918814 100644
        } else {
                mon_dispatch = mon_dispatch_postauth15;
                monitor_permit(mon_dispatch, MONITOR_REQ_TERM, 1);
-@@ -1834,6 +1851,13 @@ mm_get_kex(Buffer *m)
+@@ -1861,6 +1878,13 @@ mm_get_kex(Buffer *m)
-        kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;
        kex->kex[KEX_ECDH_SHA2] = kexecdh_server;
+ #endif
        kex->kex[KEX_C25519_SHA256] = kexc25519_server;
 +#ifdef GSSAPI
 +       if (options.gss_keyex) {
@@ -2123,7 +2091,7 @@ index 531c4f9..2918814 100644
        kex->server = 1;
        kex->hostkey_type = buffer_get_int(m);
        kex->kex_type = buffer_get_int(m);
-@@ -2041,6 +2065,9 @@ mm_answer_gss_setup_ctx(int sock, Buffer *m)
+@@ -2068,6 +2092,9 @@ mm_answer_gss_setup_ctx(int sock, Buffer *m)
        OM_uint32 major;
        u_int len;
 
@@ -2133,7 +2101,7 @@ index 531c4f9..2918814 100644
        goid.elements = buffer_get_string(m, &len);
        goid.length = len;
 
-@@ -2068,6 +2095,9 @@ mm_answer_gss_accept_ctx(int sock, Buffer *m)
+@@ -2095,6 +2122,9 @@ mm_answer_gss_accept_ctx(int sock, Buffer *m)
        OM_uint32 flags = 0; /* GSI needs this */
        u_int len;
 
@@ -2143,7 +2111,7 @@ index 531c4f9..2918814 100644
        in.value = buffer_get_string(m, &len);
        in.length = len;
        major = ssh_gssapi_accept_ctx(gsscontext, &in, &out, &flags);
-@@ -2085,6 +2115,7 @@ mm_answer_gss_accept_ctx(int sock, Buffer *m)
+@@ -2112,6 +2142,7 @@ mm_answer_gss_accept_ctx(int sock, Buffer *m)
                monitor_permit(mon_dispatch, MONITOR_REQ_GSSSTEP, 0);
                monitor_permit(mon_dispatch, MONITOR_REQ_GSSUSEROK, 1);
                monitor_permit(mon_dispatch, MONITOR_REQ_GSSCHECKMIC, 1);
@@ -2151,7 +2119,7 @@ index 531c4f9..2918814 100644
        }
        return (0);
 }
-@@ -2096,6 +2127,9 @@ mm_answer_gss_checkmic(int sock, Buffer *m)
+@@ -2123,6 +2154,9 @@ mm_answer_gss_checkmic(int sock, Buffer *m)
        OM_uint32 ret;
        u_int len;
 
@@ -2161,7 +2129,7 @@ index 531c4f9..2918814 100644
        gssbuf.value = buffer_get_string(m, &len);
        gssbuf.length = len;
        mic.value = buffer_get_string(m, &len);
-@@ -2122,7 +2156,11 @@ mm_answer_gss_userok(int sock, Buffer *m)
+@@ -2149,7 +2183,11 @@ mm_answer_gss_userok(int sock, Buffer *m)
 {
        int authenticated;
 
@@ -2174,7 +2142,7 @@ index 531c4f9..2918814 100644
 
        buffer_clear(m);
        buffer_put_int(m, authenticated);
-@@ -2135,5 +2173,73 @@ mm_answer_gss_userok(int sock, Buffer *m)
+@@ -2162,5 +2200,73 @@ mm_answer_gss_userok(int sock, Buffer *m)
        /* Monitor loop will terminate if authenticated */
        return (authenticated);
 }
@@ -2263,10 +2231,10 @@ index 5bc41b5..7f32b0c 100644
 
 struct mm_master;
 diff --git a/monitor_wrap.c b/monitor_wrap.c
-index 1a47e41..60b987d 100644
+index 45dc169..e476f0d 100644
 --- a/monitor_wrap.c
 +++ b/monitor_wrap.c
-@@ -1271,7 +1271,7 @@ mm_ssh_gssapi_checkmic(Gssctxt *ctx, gss_buffer_t gssbuf, gss_buffer_t gssmic)
+@@ -1281,7 +1281,7 @@ mm_ssh_gssapi_checkmic(Gssctxt *ctx, gss_buffer_t gssbuf, gss_buffer_t gssmic)
 }
 
 int
@@ -2275,7 +2243,7 @@ index 1a47e41..60b987d 100644
 {
        Buffer m;
        int authenticated = 0;
-@@ -1288,5 +1288,50 @@ mm_ssh_gssapi_userok(char *user)
+@@ -1298,5 +1298,50 @@ mm_ssh_gssapi_userok(char *user)
        debug3("%s: user %sauthenticated",__func__, authenticated ? "" : "not ");
        return (authenticated);
 }
@@ -2343,10 +2311,10 @@ index 18c2501..a4e9d24 100644
 
 #ifdef USE_PAM
 diff --git a/readconf.c b/readconf.c
-index dc884c9..7613ff2 100644
+index 7948ce1..9127e93 100644
 --- a/readconf.c
 +++ b/readconf.c
-@@ -141,6 +141,8 @@ typedef enum {
+@@ -142,6 +142,8 @@ typedef enum {
        oClearAllForwardings, oNoHostAuthenticationForLocalhost,
        oEnableSSHKeysign, oRekeyLimit, oVerifyHostKeyDNS, oConnectTimeout,
        oAddressFamily, oGssAuthentication, oGssDelegateCreds,
@@ -2355,7 +2323,7 @@ index dc884c9..7613ff2 100644
        oServerAliveInterval, oServerAliveCountMax, oIdentitiesOnly,
        oSendEnv, oControlPath, oControlMaster, oControlPersist,
        oHashKnownHosts,
-@@ -183,10 +185,19 @@ static struct {
+@@ -185,10 +187,19 @@ static struct {
        { "afstokenpassing", oUnsupported },
 #if defined(GSSAPI)
        { "gssapiauthentication", oGssAuthentication },
@@ -2375,7 +2343,7 @@ index dc884c9..7613ff2 100644
 #endif
        { "fallbacktorsh", oDeprecated },
        { "usersh", oDeprecated },
-@@ -841,10 +852,30 @@ parse_time:
+@@ -865,10 +876,30 @@ parse_time:
                intptr = &options->gss_authentication;
                goto parse_flag;
 
@@ -2406,7 +2374,7 @@ index dc884c9..7613ff2 100644
        case oBatchMode:
                intptr = &options->batch_mode;
                goto parse_flag;
-@@ -1497,7 +1528,12 @@ initialize_options(Options * options)
+@@ -1538,7 +1569,12 @@ initialize_options(Options * options)
        options->pubkey_authentication = -1;
        options->challenge_response_authentication = -1;
        options->gss_authentication = -1;
@@ -2419,7 +2387,7 @@ index dc884c9..7613ff2 100644
        options->password_authentication = -1;
        options->kbd_interactive_authentication = -1;
        options->kbd_interactive_devices = NULL;
-@@ -1616,8 +1652,14 @@ fill_default_options(Options * options)
+@@ -1661,8 +1697,14 @@ fill_default_options(Options * options)
                options->challenge_response_authentication = 1;
        if (options->gss_authentication == -1)
                options->gss_authentication = 0;
@@ -2435,10 +2403,10 @@ index dc884c9..7613ff2 100644
                options->password_authentication = 1;
        if (options->kbd_interactive_authentication == -1)
 diff --git a/readconf.h b/readconf.h
-index 75e3f8f..5cc97f0 100644
+index 0b9cb77..0e29889 100644
 --- a/readconf.h
 +++ b/readconf.h
-@@ -54,7 +54,12 @@ typedef struct {
+@@ -45,7 +45,12 @@ typedef struct {
        int     challenge_response_authentication;
                                        /* Try S/Key or TIS, authentication. */
        int     gss_authentication;     /* Try GSS authentication */
@@ -2452,10 +2420,10 @@ index 75e3f8f..5cc97f0 100644
                                                 * authentication. */
        int     kbd_interactive_authentication; /* Try keyboard-interactive auth. */
 diff --git a/servconf.c b/servconf.c
-index 7ba65d5..0083cf8 100644
+index b7f3294..cb3c831 100644
 --- a/servconf.c
 +++ b/servconf.c
-@@ -108,7 +108,10 @@ initialize_server_options(ServerOptions *options)
+@@ -109,7 +109,10 @@ initialize_server_options(ServerOptions *options)
        options->kerberos_ticket_cleanup = -1;
        options->kerberos_get_afs_token = -1;
        options->gss_authentication=-1;
@@ -2466,7 +2434,7 @@ index 7ba65d5..0083cf8 100644
        options->password_authentication = -1;
        options->kbd_interactive_authentication = -1;
        options->challenge_response_authentication = -1;
-@@ -244,8 +247,14 @@ fill_default_server_options(ServerOptions *options)
+@@ -250,8 +253,14 @@ fill_default_server_options(ServerOptions *options)
                options->kerberos_get_afs_token = 0;
        if (options->gss_authentication == -1)
                options->gss_authentication = 0;
@@ -2481,7 +2449,7 @@ index 7ba65d5..0083cf8 100644
        if (options->password_authentication == -1)
                options->password_authentication = 1;
        if (options->kbd_interactive_authentication == -1)
-@@ -340,7 +349,9 @@ typedef enum {
+@@ -352,7 +361,9 @@ typedef enum {
        sBanner, sUseDNS, sHostbasedAuthentication,
        sHostbasedUsesNameFromPacketOnly, sClientAliveInterval,
        sClientAliveCountMax, sAuthorizedKeysFile,
@@ -2492,7 +2460,7 @@ index 7ba65d5..0083cf8 100644
        sMatch, sPermitOpen, sForceCommand, sChrootDirectory,
        sUsePrivilegeSeparation, sAllowAgentForwarding,
        sHostCertificate,
-@@ -407,10 +418,20 @@ static struct {
+@@ -421,10 +432,20 @@ static struct {
 #ifdef GSSAPI
        { "gssapiauthentication", sGssAuthentication, SSHCFG_ALL },
        { "gssapicleanupcredentials", sGssCleanupCreds, SSHCFG_GLOBAL },
@@ -2513,7 +2481,7 @@ index 7ba65d5..0083cf8 100644
        { "passwordauthentication", sPasswordAuthentication, SSHCFG_ALL },
        { "kbdinteractiveauthentication", sKbdInteractiveAuthentication, SSHCFG_ALL },
        { "challengeresponseauthentication", sChallengeResponseAuthentication, SSHCFG_GLOBAL },
-@@ -1086,10 +1107,22 @@ process_server_config_line(ServerOptions *options, char *line,
+@@ -1104,10 +1125,22 @@ process_server_config_line(ServerOptions *options, char *line,
                intptr = &options->gss_authentication;
                goto parse_flag;
 
@@ -2536,7 +2504,7 @@ index 7ba65d5..0083cf8 100644
        case sPasswordAuthentication:
                intptr = &options->password_authentication;
                goto parse_flag;
-@@ -1995,7 +2028,10 @@ dump_config(ServerOptions *o)
+@@ -2042,7 +2075,10 @@ dump_config(ServerOptions *o)
 #endif
 #ifdef GSSAPI
        dump_cfg_fmtint(sGssAuthentication, o->gss_authentication);
@@ -2548,10 +2516,10 @@ index 7ba65d5..0083cf8 100644
        dump_cfg_fmtint(sPasswordAuthentication, o->password_authentication);
        dump_cfg_fmtint(sKbdInteractiveAuthentication,
 diff --git a/servconf.h b/servconf.h
-index 752d1c5..c922eb5 100644
+index 766db3a..f8265a8 100644
 --- a/servconf.h
 +++ b/servconf.h
-@@ -112,7 +112,10 @@ typedef struct {
+@@ -113,7 +113,10 @@ typedef struct {
        int     kerberos_get_afs_token;         /* If true, try to get AFS token if
                                                 * authenticated with Kerberos. */
        int     gss_authentication;     /* If true, permit GSSAPI authentication */
@@ -2679,10 +2647,10 @@ index 03a228f..228e5ab 100644
 #   CheckHostIP yes
 #   AddressFamily any
 diff --git a/ssh_config.5 b/ssh_config.5
-index b580392..e7accd6 100644
+index f9ede7a..e6649ac 100644
 --- a/ssh_config.5
 +++ b/ssh_config.5
-@@ -682,11 +682,43 @@ Specifies whether user authentication based on GSSAPI is allowed.
+@@ -701,11 +701,43 @@ Specifies whether user authentication based on GSSAPI is allowed.
 The default is
 .Dq no .
 Note that this option applies to protocol version 2 only.
@@ -2728,11 +2696,11 @@ index b580392..e7accd6 100644
 Indicates that
 .Xr ssh 1
 diff --git a/sshconnect2.c b/sshconnect2.c
-index 7f4ff41..66cb035 100644
+index 68f7f4f..7b478f1 100644
 --- a/sshconnect2.c
 +++ b/sshconnect2.c
-@@ -158,9 +158,34 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
+@@ -159,9 +159,34 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
- {
+        char *myproposal[PROPOSAL_MAX] = { KEX_CLIENT };
        Kex *kex;
 
 +#ifdef GSSAPI
@@ -2766,9 +2734,9 @@ index 7f4ff41..66cb035 100644
        if (options.ciphers == (char *)-1) {
                logit("No valid ciphers for protocol version 2 given, using defaults.");
                options.ciphers = NULL;
-@@ -196,6 +221,17 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
+@@ -199,6 +224,17 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
-        if (options.kex_algorithms != NULL)
+        myproposal[PROPOSAL_KEX_ALGS] = compat_kex_proposal(
-                myproposal[PROPOSAL_KEX_ALGS] = options.kex_algorithms;
+            myproposal[PROPOSAL_KEX_ALGS]);
 
 +#ifdef GSSAPI
 +       /* If we've got GSSAPI algorithms, then we also support the
@@ -2784,9 +2752,9 @@ index 7f4ff41..66cb035 100644
        if (options.rekey_limit || options.rekey_interval)
                packet_set_rekey_limits((u_int32_t)options.rekey_limit,
                    (time_t)options.rekey_interval);
-@@ -208,10 +244,30 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
+@@ -213,10 +249,30 @@ ssh_kex2(char *host, struct sockaddr *hostaddr, u_short port)
-        kex->kex[KEX_DH_GEX_SHA256] = kexgex_client;
        kex->kex[KEX_ECDH_SHA2] = kexecdh_client;
+ #endif
        kex->kex[KEX_C25519_SHA256] = kexc25519_client;
 +#ifdef GSSAPI
 +       if (options.gss_keyex) {
@@ -2815,7 +2783,7 @@ index 7f4ff41..66cb035 100644
        xxx_kex = kex;
 
        dispatch_run(DISPATCH_BLOCK, &kex->done, kex);
-@@ -301,6 +357,7 @@ void        input_gssapi_token(int type, u_int32_t, void *);
+@@ -306,6 +362,7 @@ void        input_gssapi_token(int type, u_int32_t, void *);
 void   input_gssapi_hash(int type, u_int32_t, void *);
 void   input_gssapi_error(int, u_int32_t, void *);
 void   input_gssapi_errtok(int, u_int32_t, void *);
@@ -2823,7 +2791,7 @@ index 7f4ff41..66cb035 100644
 #endif
 
 void   userauth(Authctxt *, char *);
-@@ -316,6 +373,11 @@ static char *authmethods_get(void);
+@@ -321,6 +378,11 @@ static char *authmethods_get(void);
 
 Authmethod authmethods[] = {
 #ifdef GSSAPI
@@ -2835,7 +2803,7 @@ index 7f4ff41..66cb035 100644
        {"gssapi-with-mic",
                userauth_gssapi,
                NULL,
-@@ -612,19 +674,31 @@ userauth_gssapi(Authctxt *authctxt)
+@@ -617,19 +679,31 @@ userauth_gssapi(Authctxt *authctxt)
        static u_int mech = 0;
        OM_uint32 min;
        int ok = 0;
@@ -2869,7 +2837,7 @@ index 7f4ff41..66cb035 100644
                        ok = 1; /* Mechanism works */
                } else {
                        mech++;
-@@ -721,8 +795,8 @@ input_gssapi_response(int type, u_int32_t plen, void *ctxt)
+@@ -726,8 +800,8 @@ input_gssapi_response(int type, u_int32_t plen, void *ctxt)
 {
        Authctxt *authctxt = ctxt;
        Gssctxt *gssctxt;
@@ -2880,7 +2848,7 @@ index 7f4ff41..66cb035 100644
 
        if (authctxt == NULL)
                fatal("input_gssapi_response: no authentication context");
-@@ -831,6 +905,48 @@ input_gssapi_error(int type, u_int32_t plen, void *ctxt)
+@@ -836,6 +910,48 @@ input_gssapi_error(int type, u_int32_t plen, void *ctxt)
        free(msg);
        free(lang);
 }
@@ -2930,10 +2898,10 @@ index 7f4ff41..66cb035 100644
 
 int
 diff --git a/sshd.c b/sshd.c
-index 7523de9..d787fea 100644
+index 481d001..e6706a8 100644
 --- a/sshd.c
 +++ b/sshd.c
-@@ -122,6 +122,10 @@
+@@ -123,6 +123,10 @@
 #include "ssh-sandbox.h"
 #include "version.h"
 
@@ -2941,10 +2909,10 @@ index 7523de9..d787fea 100644
 +#include <Security/AuthSession.h>
 +#endif
 +
- #ifdef LIBWRAP
+ #ifndef O_NOCTTY
- #include <tcpd.h>
+ #define O_NOCTTY       0
- #include <syslog.h>
+ #endif
-@@ -1728,10 +1732,13 @@ main(int ac, char **av)
+@@ -1745,10 +1749,13 @@ main(int ac, char **av)
                logit("Disabling protocol version 1. Could not load host key");
                options.protocol &= ~SSH_PROTO_1;
        }
@@ -2958,7 +2926,7 @@ index 7523de9..d787fea 100644
        if (!(options.protocol & (SSH_PROTO_1|SSH_PROTO_2))) {
                logit("sshd: no hostkeys available -- exiting.");
                exit(1);
-@@ -2058,6 +2065,60 @@ main(int ac, char **av)
+@@ -2060,6 +2067,60 @@ main(int ac, char **av)
            remote_ip, remote_port,
            get_local_ipaddr(sock_in), get_local_port());
 
@@ -3019,7 +2987,7 @@ index 7523de9..d787fea 100644
        /*
         * We don't want to listen forever unless the other side
         * successfully authenticates itself.  So we set up an alarm which is
-@@ -2469,6 +2530,48 @@ do_ssh2_kex(void)
+@@ -2482,6 +2543,48 @@ do_ssh2_kex(void)
        myproposal[PROPOSAL_SERVER_HOST_KEY_ALGS] = compat_pkalg_proposal(
            list_hostkey_types());
 
@@ -3067,10 +3035,10 @@ index 7523de9..d787fea 100644
 +
        /* start key exchange */
        kex = kex_setup(myproposal);
-        kex->kex[KEX_DH_GRP1_SHA1] = kexdh_server;
+ #ifdef WITH_OPENSSL
-@@ -2477,6 +2580,13 @@ do_ssh2_kex(void)
+@@ -2492,6 +2595,13 @@ do_ssh2_kex(void)
-        kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;
        kex->kex[KEX_ECDH_SHA2] = kexecdh_server;
+ #endif
        kex->kex[KEX_C25519_SHA256] = kexc25519_server;
 +#ifdef GSSAPI
 +       if (options.gss_keyex) {
@@ -3096,10 +3064,10 @@ index e9045bc..d9b8594 100644
 # Set this to 'yes' to enable PAM authentication, account processing,
 # and session processing. If this is enabled, PAM authentication will
 diff --git a/sshd_config.5 b/sshd_config.5
-index ce71efe..ceed88a 100644
+index fd44abe..c8b43da 100644
 --- a/sshd_config.5
 +++ b/sshd_config.5
-@@ -493,12 +493,40 @@ Specifies whether user authentication based on GSSAPI is allowed.
+@@ -527,12 +527,40 @@ Specifies whether user authentication based on GSSAPI is allowed.
 The default is
 .Dq no .
 Note that this option applies to protocol version 2 only.
@@ -3140,3 +3108,36 @@ index ce71efe..ceed88a 100644
 .It Cm HostbasedAuthentication
 Specifies whether rhosts or /etc/hosts.equiv authentication together
 with successful public key client host authentication is allowed
+diff --git a/sshkey.c b/sshkey.c
+index fdd0c8a..1a96eae 100644
+--- a/sshkey.c
+++ b/sshkey.c
+@@ -110,6 +110,7 @@ static const struct keytype keytypes[] = {
+        { "ssh-dss-cert-v00@openssh.com", "DSA-CERT-V00",
+            KEY_DSA_CERT_V00, 0, 1 },
+ #endif /* WITH_OPENSSL */
+       { "null", "null", KEY_NULL, 0, 0 },
+        { NULL, NULL, -1, -1, 0 }
+ };
+ 
+@@ -198,7 +199,7 @@ key_alg_list(int certs_only, int plain_only)
+        const struct keytype *kt;
+ 
+        for (kt = keytypes; kt->type != -1; kt++) {
+-               if (kt->name == NULL)
+               if (kt->name == NULL || kt->type == KEY_NULL)
+                        continue;
+                if ((certs_only && !kt->cert) || (plain_only && kt->cert))
+                        continue;
+diff --git a/sshkey.h b/sshkey.h
+index 450b30c..b573e7f 100644
+--- a/sshkey.h
+++ b/sshkey.h
+@@ -64,6 +64,7 @@ enum sshkey_types {
+        KEY_ED25519_CERT,
+        KEY_RSA_CERT_V00,
+        KEY_DSA_CERT_V00,
+       KEY_NULL,
+        KEY_UNSPEC
+ };
+ 
diff --git a/debian/patches/helpful-wait-terminate.patch b/debian/patches/helpful-wait-terminate.patch
index e79f4990f..de43f2a80 100644
--- a/debian/patches/helpful-wait-terminate.patch
+++ b/debian/patches/helpful-wait-terminate.patch
@@ -1,4 +1,4 @@
-From ef912859a4300360164292abe47b5516c8ee4a13 Mon Sep 17 00:00:00 2001
+From aca34215fc0e85d6b49e04f0a3cd0db79732125e Mon Sep 17 00:00:00 2001
 From: Matthew Vernon <matthew@debian.org>
 Date: Sun, 9 Feb 2014 16:09:56 +0000
 Subject: Mention ~& when waiting for forwarded connections to terminate
@@ -12,7 +12,7 @@ Patch-Name: helpful-wait-terminate.patch
 1 file changed, 1 insertion(+), 1 deletion(-)
 diff --git a/serverloop.c b/serverloop.c
-index 2f8e3a0..441d73b 100644
+index e92f9e2..813e5bf 100644
 --- a/serverloop.c
 +++ b/serverloop.c
 @@ -687,7 +687,7 @@ server_loop(pid_t pid, int fdin_arg, int fdout_arg, int fderr_arg)
diff --git a/debian/patches/keepalive-extensions.patch b/debian/patches/keepalive-extensions.patch
index 680701f3d..15acabc0e 100644
--- a/debian/patches/keepalive-extensions.patch
+++ b/debian/patches/keepalive-extensions.patch
@@ -1,4 +1,4 @@
-From 81540b7886fdc73c7be304706ea33d6d87b5fc81 Mon Sep 17 00:00:00 2001
+From bd3abc2f732da3a61e4158b915480808957a4357 Mon Sep 17 00:00:00 2001
 From: Richard Kettlewell <rjk@greenend.org.uk>
 Date: Sun, 9 Feb 2014 16:09:52 +0000
 Subject: Various keepalive extensions
@@ -16,7 +16,7 @@ keepalives.
 Author: Ian Jackson <ian@chiark.greenend.org.uk>
 Author: Matthew Vernon <matthew@debian.org>
 Author: Colin Watson <cjwatson@debian.org>
-Last-Update: 2013-09-14
+Last-Update: 2014-10-07
 Patch-Name: keepalive-extensions.patch
 ---
@@ -26,27 +26,27 @@ Patch-Name: keepalive-extensions.patch
 3 files changed, 34 insertions(+), 4 deletions(-)
 diff --git a/readconf.c b/readconf.c
-index bcd8cad..6409937 100644
+index bc879eb..337818c 100644
 --- a/readconf.c
 +++ b/readconf.c
-@@ -151,6 +151,7 @@ typedef enum {
+@@ -153,6 +153,7 @@ typedef enum {
-        oKexAlgorithms, oIPQoS, oRequestTTY, oIgnoreUnknown, oProxyUseFdpass,
        oCanonicalDomains, oCanonicalizeHostname, oCanonicalizeMaxDots,
        oCanonicalizeFallbackLocal, oCanonicalizePermittedCNAMEs,
+        oStreamLocalBindMask, oStreamLocalBindUnlink,
 +       oProtocolKeepAlives, oSetupTimeOut,
        oIgnoredUnknownOption, oDeprecated, oUnsupported
 } OpCodes;
 
-@@ -274,6 +275,8 @@ static struct {
+@@ -278,6 +279,8 @@ static struct {
-        { "canonicalizemaxdots", oCanonicalizeMaxDots },
+        { "streamlocalbindmask", oStreamLocalBindMask },
-        { "canonicalizepermittedcnames", oCanonicalizePermittedCNAMEs },
+        { "streamlocalbindunlink", oStreamLocalBindUnlink },
        { "ignoreunknown", oIgnoreUnknown },
 +       { "protocolkeepalives", oProtocolKeepAlives },
 +       { "setuptimeout", oSetupTimeOut },
 
        { NULL, oBadOption }
 };
-@@ -1247,6 +1250,8 @@ parse_int:
+@@ -1271,6 +1274,8 @@ parse_int:
                goto parse_flag;
 
        case oServerAliveInterval:
@@ -55,7 +55,7 @@ index bcd8cad..6409937 100644
                intptr = &options->server_alive_interval;
                goto parse_time;
 
-@@ -1746,8 +1751,13 @@ fill_default_options(Options * options)
+@@ -1791,8 +1796,13 @@ fill_default_options(Options * options)
                options->rekey_interval = 0;
        if (options->verify_host_key_dns == -1)
                options->verify_host_key_dns = 0;
@@ -72,7 +72,7 @@ index bcd8cad..6409937 100644
                options->server_alive_count_max = 3;
        if (options->control_master == -1)
 diff --git a/ssh_config.5 b/ssh_config.5
-index 473971e..3172fd4 100644
+index 01f1f7f..ea92ea8 100644
 --- a/ssh_config.5
 +++ b/ssh_config.5
 @@ -205,8 +205,12 @@ Valid arguments are
@@ -89,7 +89,7 @@ index 473971e..3172fd4 100644
 The argument must be
 .Dq yes
 or
-@@ -1305,8 +1309,15 @@ from the server,
+@@ -1336,8 +1340,15 @@ from the server,
 will send a message through the encrypted
 channel to request a response from the server.
 The default
@@ -103,10 +103,10 @@ index 473971e..3172fd4 100644
 +and
 +.Cm SetupTimeOut
 +are Debian-specific compatibility aliases for this option.
- .It Cm StrictHostKeyChecking
+ .It Cm StreamLocalBindMask
- If this flag is set to
+ Sets the octal file creation mode mask
- .Dq yes ,
+ .Pq umask
-@@ -1345,6 +1356,12 @@ Specifies whether the system should send TCP keepalive messages to the
+@@ -1403,6 +1414,12 @@ Specifies whether the system should send TCP keepalive messages to the
 other side.
 If they are sent, death of the connection or crash of one
 of the machines will be properly noticed.
@@ -120,10 +120,10 @@ index 473971e..3172fd4 100644
 connections will die if the route is down temporarily, and some people
 find it annoying.
 diff --git a/sshd_config.5 b/sshd_config.5
-index ceed88a..2164d58 100644
+index c8b43da..2843048 100644
 --- a/sshd_config.5
 +++ b/sshd_config.5
-@@ -1183,6 +1183,9 @@ This avoids infinitely hanging sessions.
+@@ -1307,6 +1307,9 @@ This avoids infinitely hanging sessions.
 .Pp
 To disable TCP keepalive messages, the value should be set to
 .Dq no .
diff --git a/debian/patches/lintian-symlink-pickiness.patch b/debian/patches/lintian-symlink-pickiness.patch
index 09e09ecf8..81b924e35 100644
--- a/debian/patches/lintian-symlink-pickiness.patch
+++ b/debian/patches/lintian-symlink-pickiness.patch
@@ -1,4 +1,4 @@
-From eb567100ef178f4395c95cc1f37b921e02c3dd5b Mon Sep 17 00:00:00 2001
+From 248d3bb8de371b55aaf3a8f544c15f3a25eb7339 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:08 +0000
 Subject: Fix picky lintian errors about slogin symlinks
@@ -15,10 +15,10 @@ Patch-Name: lintian-symlink-pickiness.patch
 1 file changed, 2 insertions(+), 2 deletions(-)
 diff --git a/Makefile.in b/Makefile.in
-index feee0b2..7d192bb 100644
+index a4402e9..4eab574 100644
 --- a/Makefile.in
 +++ b/Makefile.in
-@@ -293,9 +293,9 @@ install-files:
+@@ -315,9 +315,9 @@ install-files:
        $(INSTALL) -m 644 ssh-keysign.8.out $(DESTDIR)$(mandir)/$(mansubdir)8/ssh-keysign.8
        $(INSTALL) -m 644 ssh-pkcs11-helper.8.out $(DESTDIR)$(mandir)/$(mansubdir)8/ssh-pkcs11-helper.8
        -rm -f $(DESTDIR)$(bindir)/slogin
diff --git a/debian/patches/mention-ssh-keygen-on-keychange.patch b/debian/patches/mention-ssh-keygen-on-keychange.patch
index e00b6c345..f90c7e2b1 100644
--- a/debian/patches/mention-ssh-keygen-on-keychange.patch
+++ b/debian/patches/mention-ssh-keygen-on-keychange.patch
@@ -1,4 +1,4 @@
-From 8ab8f1465980856291f215c7b7184a4456398fb4 Mon Sep 17 00:00:00 2001
+From 064453886f4c3d8ac0b0c8d015ad614c8bce3b42 Mon Sep 17 00:00:00 2001
 From: Scott Moser <smoser@ubuntu.com>
 Date: Sun, 9 Feb 2014 16:10:03 +0000
 Subject: Mention ssh-keygen in ssh fingerprint changed warning
@@ -13,10 +13,10 @@ Patch-Name: mention-ssh-keygen-on-keychange.patch
 1 file changed, 6 insertions(+), 1 deletion(-)
 diff --git a/sshconnect.c b/sshconnect.c
-index 9e02837..e0a5db9 100644
+index 26116d2..ab83d0c 100644
 --- a/sshconnect.c
 +++ b/sshconnect.c
-@@ -1065,9 +1065,12 @@ check_host_key(char *hostname, struct sockaddr *hostaddr, u_short port,
+@@ -1066,9 +1066,12 @@ check_host_key(char *hostname, struct sockaddr *hostaddr, u_short port,
                        error("%s. This could either mean that", key_msg);
                        error("DNS SPOOFING is happening or the IP address for the host");
                        error("and its host key have changed at the same time.");
@@ -30,7 +30,7 @@ index 9e02837..e0a5db9 100644
                }
                /* The host key has changed. */
                warn_changed_key(host_key);
-@@ -1075,6 +1078,8 @@ check_host_key(char *hostname, struct sockaddr *hostaddr, u_short port,
+@@ -1076,6 +1079,8 @@ check_host_key(char *hostname, struct sockaddr *hostaddr, u_short port,
                    user_hostfiles[0]);
                error("Offending %s key in %s:%lu", key_type(host_found->key),
                    host_found->file, host_found->line);
diff --git a/debian/patches/no-openssl-version-check.patch b/debian/patches/no-openssl-version-check.patch
deleted file mode 100644
index 56fa46aac..000000000
--- a/debian/patches/no-openssl-version-check.patch
+++ /dev/null
@@ -1,41 +0,0 @@
-From 20690ea4b33e8ff81fea287492270df3a7029777 Mon Sep 17 00:00:00 2001
-From: Philip Hands <phil@hands.com>
-Date: Sun, 9 Feb 2014 16:10:14 +0000
-Subject: Disable OpenSSL version check
-OpenSSL's SONAME is sufficient nowadays.
-Author: Colin Watson <cjwatson@debian.org>
-Bug-Debian: http://bugs.debian.org/93581
-Bug-Debian: http://bugs.debian.org/664383
-Forwarded: not-needed
-Last-Update: 2013-12-23
-Patch-Name: no-openssl-version-check.patch
---
- entropy.c | 12 ------------
- 1 file changed, 12 deletions(-)
-diff --git a/entropy.c b/entropy.c
-index 2d483b3..2aee2d9 100644
--- a/entropy.c
-+++ b/entropy.c
-@@ -209,18 +209,6 @@ seed_rng(void)
- #ifndef OPENSSL_PRNG_ONLY
-        unsigned char buf[RANDOM_SEED_SIZE];
- #endif
-       /*
-        * OpenSSL version numbers: MNNFFPPS: major minor fix patch status
-        * We match major, minor, fix and status (not patch) for <1.0.0.
-        * After that, we acceptable compatible fix versions (so we
-        * allow 1.0.1 to work with 1.0.0). Going backwards is only allowed
-        * within a patch series.
-        */
-       u_long version_mask = SSLeay() >= 0x1000000f ?  ~0xffff0L : ~0xff0L;
-       if (((SSLeay() ^ OPENSSL_VERSION_NUMBER) & version_mask) ||
-           (SSLeay() >> 12) < (OPENSSL_VERSION_NUMBER >> 12))
-               fatal("OpenSSL version mismatch. Built against %lx, you "
-                   "have %lx", (u_long)OPENSSL_VERSION_NUMBER, SSLeay());
- 
- #ifndef OPENSSL_PRNG_ONLY
-        if (RAND_status() == 1) {
diff --git a/debian/patches/no-openssl-version-status.patch b/debian/patches/no-openssl-version-status.patch
new file mode 100644
index 000000000..dfcef83b0
--- /dev/null
+++ b/debian/patches/no-openssl-version-status.patch
@@ -0,0 +1,62 @@
+From 37fd625165d0df302e441d9cad9bcc742378eef5 Mon Sep 17 00:00:00 2001
+From: Kurt Roeckx <kurt@roeckx.be>
+Date: Sun, 9 Feb 2014 16:10:14 +0000
+Subject: Don't check the status field of the OpenSSL version
+There is no reason to check the version of OpenSSL (in Debian).  If it's
+not compatible the soname will change.  OpenSSH seems to want to do a
+check for the soname based on the version number, but wants to keep the
+status of the release the same.  Remove that check on the status since
+it doesn't tell you anything about how compatible that version is.
+Author: Colin Watson <cjwatson@debian.org>
+Bug-Debian: https://bugs.debian.org/93581
+Bug-Debian: https://bugs.debian.org/664383
+Bug-Debian: https://bugs.debian.org/732940
+Forwarded: not-needed
+Last-Update: 2014-10-07
+Patch-Name: no-openssl-version-status.patch
+---
+ openbsd-compat/openssl-compat.c         | 6 +++---
+ openbsd-compat/regress/opensslvertest.c | 1 +
+ 2 files changed, 4 insertions(+), 3 deletions(-)
+diff --git a/openbsd-compat/openssl-compat.c b/openbsd-compat/openssl-compat.c
+index 36570e4..defd5fb 100644
+--- a/openbsd-compat/openssl-compat.c
+++ b/openbsd-compat/openssl-compat.c
+@@ -34,7 +34,7 @@
+ /*
+  * OpenSSL version numbers: MNNFFPPS: major minor fix patch status
+  * We match major, minor, fix and status (not patch) for <1.0.0.
+- * After that, we acceptable compatible fix versions (so we
+ * After that, we accept compatible fix and status versions (so we
+  * allow 1.0.1 to work with 1.0.0). Going backwards is only allowed
+  * within a patch series.
+  */
+@@ -55,10 +55,10 @@ ssh_compatible_openssl(long headerver, long libver)
+        }
+        
+        /*
+-        * For versions >= 1.0.0, major,minor,status must match and library
+        * For versions >= 1.0.0, major,minor must match and library
+         * fix version must be equal to or newer than the header.
+         */
+-       mask = 0xfff0000fL; /* major,minor,status */
+       mask = 0xfff00000L; /* major,minor */
+        hfix = (headerver & 0x000ff000) >> 12;
+        lfix = (libver & 0x000ff000) >> 12;
+        if ( (headerver & mask) == (libver & mask) && lfix >= hfix)
+diff --git a/openbsd-compat/regress/opensslvertest.c b/openbsd-compat/regress/opensslvertest.c
+index 5d019b5..5847487 100644
+--- a/openbsd-compat/regress/opensslvertest.c
+++ b/openbsd-compat/regress/opensslvertest.c
+@@ -35,6 +35,7 @@ struct version_test {
+ 
+        /* built with 1.0.1b release headers */
+        { 0x1000101fL, 0x1000101fL, 1},/* exact match */
+       { 0x1000101fL, 0x10001010L, 1}, /* different status: ok */
+        { 0x1000101fL, 0x1000102fL, 1}, /* newer library patch version: ok */
+        { 0x1000101fL, 0x1000100fL, 1}, /* older library patch version: ok */
+        { 0x1000101fL, 0x1000201fL, 1}, /* newer library fix version: ok */
diff --git a/debian/patches/openbsd-docs.patch b/debian/patches/openbsd-docs.patch
index 9a34a4182..37ad675d4 100644
--- a/debian/patches/openbsd-docs.patch
+++ b/debian/patches/openbsd-docs.patch
@@ -1,4 +1,4 @@
-From ec9bfd62211fdf5a3004ef2045c2eb3baccfd375 Mon Sep 17 00:00:00 2001
+From 0b9407d3023938b02bccf7dd1874a871d0cc8eb5 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:09 +0000
 Subject: Adjust various OpenBSD-specific references in manual pages
@@ -10,7 +10,7 @@ No single bug reference for this patch, but history includes:
 https://bugs.launchpad.net/bugs/456660 (ssl(8))
 Forwarded: not-needed
-Last-Update: 2013-09-14
+Last-Update: 2014-10-07
 Patch-Name: openbsd-docs.patch
 ---
@@ -44,7 +44,7 @@ index ef0de08..149846c 100644
 .Sh SEE ALSO
 .Xr ssh-keygen 1 ,
 diff --git a/ssh-keygen.1 b/ssh-keygen.1
-index 12e00d4..a71de74 100644
+index 723a016..79b948c 100644
 --- a/ssh-keygen.1
 +++ b/ssh-keygen.1
 @@ -172,9 +172,7 @@ key in
@@ -88,10 +88,10 @@ index 12e00d4..a71de74 100644
 The file format is described in
 .Xr moduli 5 .
 diff --git a/ssh.1 b/ssh.1
-index ff5e6ac..67b4f44 100644
+index 7f6ab77..de178cd 100644
 --- a/ssh.1
 +++ b/ssh.1
-@@ -763,6 +763,10 @@ Protocol 1 is restricted to using only RSA keys,
+@@ -753,6 +753,10 @@ Protocol 1 is restricted to using only RSA keys,
 but protocol 2 may use any.
 The HISTORY section of
 .Xr ssl 8
@@ -103,10 +103,10 @@ index ff5e6ac..67b4f44 100644
 .Pp
 The file
 diff --git a/sshd.8 b/sshd.8
-index e6a900b..b016e90 100644
+index eaeac45..3538208 100644
 --- a/sshd.8
 +++ b/sshd.8
-@@ -70,7 +70,7 @@ over an insecure network.
+@@ -67,7 +67,7 @@ over an insecure network.
 .Nm
 listens for connections from clients.
 It is normally started at boot from
@@ -133,14 +133,14 @@ index e6a900b..b016e90 100644
 .Xr sshd_config 5 ,
 .Xr inetd 8 ,
 diff --git a/sshd_config.5 b/sshd_config.5
-index 8f078f6..908e0bb 100644
+index 58997d3..7396b23 100644
 --- a/sshd_config.5
 +++ b/sshd_config.5
-@@ -283,8 +283,7 @@ This option is only available for protocol version 2.
+@@ -303,8 +303,7 @@ This option is only available for protocol version 2.
 By default, no banner is displayed.
 .It Cm ChallengeResponseAuthentication
 Specifies whether challenge-response authentication is allowed (e.g. via
-PAM or though authentication styles supported in
+-PAM or through authentication styles supported in
 -.Xr login.conf 5 )
 +PAM).
 The default is
diff --git a/debian/patches/package-versioning.patch b/debian/patches/package-versioning.patch
index c9c20d1c0..07a28af9a 100644
--- a/debian/patches/package-versioning.patch
+++ b/debian/patches/package-versioning.patch
@@ -1,4 +1,4 @@
-From 6de70b95f5005447ae23532d4f3ee41a9338479f Mon Sep 17 00:00:00 2001
+From 8679c96f74ee7dbea6c15c764b036fbab7372740 Mon Sep 17 00:00:00 2001
 From: Matthew Vernon <matthew@debian.org>
 Date: Sun, 9 Feb 2014 16:10:05 +0000
 Subject: Include the Debian version in our identification
@@ -19,10 +19,10 @@ Patch-Name: package-versioning.patch
 3 files changed, 9 insertions(+), 4 deletions(-)
 diff --git a/sshconnect.c b/sshconnect.c
-index e0a5db9..87c3770 100644
+index ab83d0c..563405e 100644
 --- a/sshconnect.c
 +++ b/sshconnect.c
-@@ -520,10 +520,10 @@ send_client_banner(int connection_out, int minor1)
+@@ -521,10 +521,10 @@ send_client_banner(int connection_out, int minor1)
        /* Send our own protocol version identification. */
        if (compat20) {
                xasprintf(&client_version_string, "SSH-%d.%d-%.100s\r\n",
@@ -36,10 +36,10 @@ index e0a5db9..87c3770 100644
        if (roaming_atomicio(vwrite, connection_out, client_version_string,
            strlen(client_version_string)) != strlen(client_version_string))
 diff --git a/sshd.c b/sshd.c
-index e343d90..af9b8f1 100644
+index 48a14dd..1710e71 100644
 --- a/sshd.c
 +++ b/sshd.c
-@@ -440,7 +440,7 @@ sshd_exchange_identification(int sock_in, int sock_out)
+@@ -443,7 +443,7 @@ sshd_exchange_identification(int sock_in, int sock_out)
        }
 
        xasprintf(&server_version_string, "SSH-%d.%d-%.100s%s%s%s",
@@ -49,11 +49,11 @@ index e343d90..af9b8f1 100644
            options.version_addendum, newline);
 
 diff --git a/version.h b/version.h
-index a1579ac..a97c337 100644
+index cc8a079..0fee7c3 100644
 --- a/version.h
 +++ b/version.h
 @@ -3,4 +3,9 @@
- #define SSH_VERSION    "OpenSSH_6.6"
+ #define SSH_VERSION    "OpenSSH_6.7"
 
 #define SSH_PORTABLE   "p1"
 -#define SSH_RELEASE    SSH_VERSION SSH_PORTABLE
diff --git a/debian/patches/quieter-signals.patch b/debian/patches/quieter-signals.patch
index 075b59823..6d9a2f9c0 100644
--- a/debian/patches/quieter-signals.patch
+++ b/debian/patches/quieter-signals.patch
@@ -1,4 +1,4 @@
-From 9875e47079abff55f8d2c1e958e9d50de6eae7ec Mon Sep 17 00:00:00 2001
+From dc028c5992b4b14cca380b6ad2115fcc6907a8b7 Mon Sep 17 00:00:00 2001
 From: Peter Samuelson <peter@p12n.org>
 Date: Sun, 9 Feb 2014 16:09:55 +0000
 Subject: Reduce severity of "Killed by signal %d"
@@ -22,10 +22,10 @@ Patch-Name: quieter-signals.patch
 1 file changed, 4 insertions(+), 2 deletions(-)
 diff --git a/clientloop.c b/clientloop.c
-index 73a800c..4bc5b57 100644
+index 046ca8b..0180774 100644
 --- a/clientloop.c
 +++ b/clientloop.c
-@@ -1717,8 +1717,10 @@ client_loop(int have_pty, int escape_char_arg, int ssh2_chan_id)
+@@ -1705,8 +1705,10 @@ client_loop(int have_pty, int escape_char_arg, int ssh2_chan_id)
                exit_status = 0;
        }
 
diff --git a/debian/patches/restore-tcp-wrappers.patch b/debian/patches/restore-tcp-wrappers.patch
new file mode 100644
index 000000000..c590f52ce
--- /dev/null
+++ b/debian/patches/restore-tcp-wrappers.patch
@@ -0,0 +1,172 @@
+From b25d6dd3b6b5a2cb93723586c56d6fa0277ea56a Mon Sep 17 00:00:00 2001
+From: Colin Watson <cjwatson@debian.org>
+Date: Tue, 7 Oct 2014 13:22:41 +0100
+Subject: Restore TCP wrappers support
+Support for TCP wrappers was dropped in OpenSSH 6.7.  See this message
+and thread:
+  https://lists.mindrot.org/pipermail/openssh-unix-dev/2014-April/032497.html
+It is true that this reduces preauth attack surface in sshd.  On the
+other hand, this support seems to be quite widely used, and abruptly
+dropping it (from the perspective of users who don't read
+openssh-unix-dev) could easily cause more serious problems in practice.
+It's not entirely clear what the right long-term answer for Debian is,
+but it at least probably doesn't involve dropping this feature shortly
+before a freeze.
+Forwarded: not-needed
+Last-Update: 2014-10-07
+Patch-Name: restore-tcp-wrappers.patch
+---
+ configure.ac | 57 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ sshd.8       |  7 +++++++
+ sshd.c       | 25 +++++++++++++++++++++++++
+ 3 files changed, 89 insertions(+)
+diff --git a/configure.ac b/configure.ac
+index 90e81e1..7f160f1 100644
+--- a/configure.ac
+++ b/configure.ac
+@@ -1404,6 +1404,62 @@ AC_ARG_WITH([skey],
+        ]
+ )
+ 
+# Check whether user wants TCP wrappers support
+TCPW_MSG="no"
+AC_ARG_WITH([tcp-wrappers],
+       [  --with-tcp-wrappers[[=PATH]] Enable tcpwrappers support (optionally in PATH)],
+       [
+               if test "x$withval" != "xno" ; then
+                       saved_LIBS="$LIBS"
+                       saved_LDFLAGS="$LDFLAGS"
+                       saved_CPPFLAGS="$CPPFLAGS"
+                       if test -n "${withval}" && \
+                           test "x${withval}" != "xyes"; then
+                               if test -d "${withval}/lib"; then
+                                       if test -n "${need_dash_r}"; then
+                                               LDFLAGS="-L${withval}/lib -R${withval}/lib ${LDFLAGS}"
+                                       else
+                                               LDFLAGS="-L${withval}/lib ${LDFLAGS}"
+                                       fi
+                               else
+                                       if test -n "${need_dash_r}"; then
+                                               LDFLAGS="-L${withval} -R${withval} ${LDFLAGS}"
+                                       else
+                                               LDFLAGS="-L${withval} ${LDFLAGS}"
+                                       fi
+                               fi
+                               if test -d "${withval}/include"; then
+                                       CPPFLAGS="-I${withval}/include ${CPPFLAGS}"
+                               else
+                                       CPPFLAGS="-I${withval} ${CPPFLAGS}"
+                               fi
+                       fi
+                       LIBS="-lwrap $LIBS"
+                       AC_MSG_CHECKING([for libwrap])
+                       AC_LINK_IFELSE([AC_LANG_PROGRAM([[
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <netinet/in.h>
+#include <tcpd.h>
+int deny_severity = 0, allow_severity = 0;
+                               ]], [[
+       hosts_access(0);
+                               ]])], [
+                                       AC_MSG_RESULT([yes])
+                                       AC_DEFINE([LIBWRAP], [1],
+                                               [Define if you want
+                                               TCP Wrappers support])
+                                       SSHDLIBS="$SSHDLIBS -lwrap"
+                                       TCPW_MSG="yes"
+                               ], [
+                                       AC_MSG_ERROR([*** libwrap missing])
+                               
+                       ])
+                       LIBS="$saved_LIBS"
+               fi
+       ]
+)
+
+ # Check whether user wants to use ldns
+ LDNS_MSG="no"
+ AC_ARG_WITH(ldns,
+@@ -4853,6 +4909,7 @@ echo "                 KerberosV support: $KRB5_MSG"
+ echo "                   SELinux support: $SELINUX_MSG"
+ echo "                 Smartcard support: $SCARD_MSG"
+ echo "                     S/KEY support: $SKEY_MSG"
+echo "              TCP Wrappers support: $TCPW_MSG"
+ echo "              MD5 password support: $MD5_MSG"
+ echo "                   libedit support: $LIBEDIT_MSG"
+ echo "  Solaris process contract support: $SPC_MSG"
+diff --git a/sshd.8 b/sshd.8
+index 01459d6..eaeac45 100644
+--- a/sshd.8
+++ b/sshd.8
+@@ -851,6 +851,12 @@ the user's home directory becomes accessible.
+ This file should be writable only by the user, and need not be
+ readable by anyone else.
+ .Pp
+.It Pa /etc/hosts.allow
+.It Pa /etc/hosts.deny
+Access controls that should be enforced by tcp-wrappers are defined here.
+Further details are described in
+.Xr hosts_access 5 .
+.Pp
+ .It Pa /etc/hosts.equiv
+ This file is for host-based authentication (see
+ .Xr ssh 1 ) .
+@@ -954,6 +960,7 @@ The content of this file is not sensitive; it can be world-readable.
+ .Xr ssh-keygen 1 ,
+ .Xr ssh-keyscan 1 ,
+ .Xr chroot 2 ,
+.Xr hosts_access 5 ,
+ .Xr login.conf 5 ,
+ .Xr moduli 5 ,
+ .Xr sshd_config 5 ,
+diff --git a/sshd.c b/sshd.c
+index e6706a8..3a6be65 100644
+--- a/sshd.c
+++ b/sshd.c
+@@ -127,6 +127,13 @@
+ #include <Security/AuthSession.h>
+ #endif
+ 
+#ifdef LIBWRAP
+#include <tcpd.h>
+#include <syslog.h>
+int allow_severity;
+int deny_severity;
+#endif /* LIBWRAP */
+
+ #ifndef O_NOCTTY
+ #define O_NOCTTY       0
+ #endif
+@@ -2061,6 +2068,24 @@ main(int ac, char **av)
+ #ifdef SSH_AUDIT_EVENTS
+        audit_connection_from(remote_ip, remote_port);
+ #endif
+#ifdef LIBWRAP
+       allow_severity = options.log_facility|LOG_INFO;
+       deny_severity = options.log_facility|LOG_WARNING;
+       /* Check whether logins are denied from this host. */
+       if (packet_connection_is_on_socket()) {
+               struct request_info req;
+
+               request_init(&req, RQ_DAEMON, __progname, RQ_FILE, sock_in, 0);
+               fromhost(&req);
+
+               if (!hosts_access(&req)) {
+                       debug("Connection refused by tcp wrapper");
+                       refuse(&req);
+                       /* NOTREACHED */
+                       fatal("libwrap refuse returns");
+               }
+       }
+#endif /* LIBWRAP */
+ 
+        /* Log the connection. */
+        verbose("Connection from %s port %d on %s port %d",
diff --git a/debian/patches/scp-quoting.patch b/debian/patches/scp-quoting.patch
index ff037a43a..ee006da93 100644
--- a/debian/patches/scp-quoting.patch
+++ b/debian/patches/scp-quoting.patch
@@ -1,4 +1,4 @@
-From 8ab204ee192e655d5a8f4d599adb3d99eeabedc6 Mon Sep 17 00:00:00 2001
+From fd174c13c46191abdb33c0a45545573a8e06b061 Mon Sep 17 00:00:00 2001
 From: =?UTF-8?q?Nicolas=20Valc=C3=A1rcel?= <nvalcarcel@ubuntu.com>
 Date: Sun, 9 Feb 2014 16:09:59 +0000
 Subject: Adjust scp quoting in verbose mode
@@ -17,7 +17,7 @@ Patch-Name: scp-quoting.patch
 1 file changed, 10 insertions(+), 2 deletions(-)
 diff --git a/scp.c b/scp.c
-index 18d3b1d..0669d02 100644
+index 1ec3b70..a1b318b 100644
 --- a/scp.c
 +++ b/scp.c
 @@ -189,8 +189,16 @@ do_local_cmd(arglist *a)
diff --git a/debian/patches/selinux-role.patch b/debian/patches/selinux-role.patch
index e0ca12fb0..1fa0bf928 100644
--- a/debian/patches/selinux-role.patch
+++ b/debian/patches/selinux-role.patch
@@ -1,4 +1,4 @@
-From ae32d626ed3d15cfd7f432358b63c005961921df Mon Sep 17 00:00:00 2001
+From c9638aa44d787849cea1ae273f0908c6313fd19b Mon Sep 17 00:00:00 2001
 From: Manoj Srivastava <srivasta@debian.org>
 Date: Sun, 9 Feb 2014 16:09:49 +0000
 Subject: Handle SELinux authorisation roles
@@ -32,7 +32,7 @@ Patch-Name: selinux-role.patch
 16 files changed, 104 insertions(+), 31 deletions(-)
 diff --git a/auth.h b/auth.h
-index 124e597..79e4ea5 100644
+index d081c94..f099e98 100644
 --- a/auth.h
 +++ b/auth.h
 @@ -59,6 +59,7 @@ struct Authctxt {
@@ -44,10 +44,10 @@ index 124e597..79e4ea5 100644
        char            *info;          /* Extra info for next auth_log */
 #ifdef BSD_AUTH
 diff --git a/auth1.c b/auth1.c
-index 0f870b3..c707390 100644
+index 5038828..52b17db 100644
 --- a/auth1.c
 +++ b/auth1.c
-@@ -380,7 +380,7 @@ void
+@@ -381,7 +381,7 @@ void
 do_authentication(Authctxt *authctxt)
 {
        u_int ulen;
@@ -56,7 +56,7 @@ index 0f870b3..c707390 100644
 
        /* Get the name of the user that we wish to log in as. */
        packet_read_expect(SSH_CMSG_USER);
-@@ -389,11 +389,17 @@ do_authentication(Authctxt *authctxt)
+@@ -390,11 +390,17 @@ do_authentication(Authctxt *authctxt)
        user = packet_get_cstring(&ulen);
        packet_check_eom();
 
@@ -75,10 +75,10 @@ index 0f870b3..c707390 100644
        /* Verify that the user is a valid user. */
        if ((authctxt->pw = PRIVSEP(getpwnamallow(user))) != NULL)
 diff --git a/auth2.c b/auth2.c
-index fbe3e1b..70f2925 100644
+index 2f0d565..fa1a588 100644
 --- a/auth2.c
 +++ b/auth2.c
-@@ -216,7 +216,7 @@ input_userauth_request(int type, u_int32_t seq, void *ctxt)
+@@ -217,7 +217,7 @@ input_userauth_request(int type, u_int32_t seq, void *ctxt)
 {
        Authctxt *authctxt = ctxt;
        Authmethod *m = NULL;
@@ -87,7 +87,7 @@ index fbe3e1b..70f2925 100644
        int authenticated = 0;
 
        if (authctxt == NULL)
-@@ -228,8 +228,13 @@ input_userauth_request(int type, u_int32_t seq, void *ctxt)
+@@ -229,8 +229,13 @@ input_userauth_request(int type, u_int32_t seq, void *ctxt)
        debug("userauth-request for user %s service %s method %s", user, service, method);
        debug("attempt %d failures %d", authctxt->attempt, authctxt->failures);
 
@@ -101,7 +101,7 @@ index fbe3e1b..70f2925 100644
 
        if (authctxt->attempt++ == 0) {
                /* setup auth context */
-@@ -253,8 +258,9 @@ input_userauth_request(int type, u_int32_t seq, void *ctxt)
+@@ -254,8 +259,9 @@ input_userauth_request(int type, u_int32_t seq, void *ctxt)
                    use_privsep ? " [net]" : "");
                authctxt->service = xstrdup(service);
                authctxt->style = style ? xstrdup(style) : NULL;
@@ -113,10 +113,10 @@ index fbe3e1b..70f2925 100644
                if (auth2_setup_methods_lists(authctxt) != 0)
                        packet_disconnect("no authentication methods enabled");
 diff --git a/monitor.c b/monitor.c
-index 2918814..11eac63 100644
+index b0896ef..94b194d 100644
 --- a/monitor.c
 +++ b/monitor.c
-@@ -145,6 +145,7 @@ int mm_answer_sign(int, Buffer *);
+@@ -148,6 +148,7 @@ int mm_answer_sign(int, Buffer *);
 int mm_answer_pwnamallow(int, Buffer *);
 int mm_answer_auth2_read_banner(int, Buffer *);
 int mm_answer_authserv(int, Buffer *);
@@ -124,7 +124,7 @@ index 2918814..11eac63 100644
 int mm_answer_authpassword(int, Buffer *);
 int mm_answer_bsdauthquery(int, Buffer *);
 int mm_answer_bsdauthrespond(int, Buffer *);
-@@ -221,6 +222,7 @@ struct mon_table mon_dispatch_proto20[] = {
+@@ -229,6 +230,7 @@ struct mon_table mon_dispatch_proto20[] = {
     {MONITOR_REQ_SIGN, MON_ONCE, mm_answer_sign},
     {MONITOR_REQ_PWNAM, MON_ONCE, mm_answer_pwnamallow},
     {MONITOR_REQ_AUTHSERV, MON_ONCE, mm_answer_authserv},
@@ -132,7 +132,7 @@ index 2918814..11eac63 100644
     {MONITOR_REQ_AUTH2_READ_BANNER, MON_ONCE, mm_answer_auth2_read_banner},
     {MONITOR_REQ_AUTHPASSWORD, MON_AUTH, mm_answer_authpassword},
 #ifdef USE_PAM
-@@ -822,6 +824,7 @@ mm_answer_pwnamallow(int sock, Buffer *m)
+@@ -841,6 +843,7 @@ mm_answer_pwnamallow(int sock, Buffer *m)
        else {
                /* Allow service/style information on the auth context */
                monitor_permit(mon_dispatch, MONITOR_REQ_AUTHSERV, 1);
@@ -140,7 +140,7 @@ index 2918814..11eac63 100644
                monitor_permit(mon_dispatch, MONITOR_REQ_AUTH2_READ_BANNER, 1);
        }
 #ifdef USE_PAM
-@@ -852,14 +855,37 @@ mm_answer_authserv(int sock, Buffer *m)
+@@ -871,14 +874,37 @@ mm_answer_authserv(int sock, Buffer *m)
 
        authctxt->service = buffer_get_string(m, NULL);
        authctxt->style = buffer_get_string(m, NULL);
@@ -180,7 +180,7 @@ index 2918814..11eac63 100644
        return (0);
 }
 
-@@ -1464,7 +1490,7 @@ mm_answer_pty(int sock, Buffer *m)
+@@ -1485,7 +1511,7 @@ mm_answer_pty(int sock, Buffer *m)
        res = pty_allocate(&s->ptyfd, &s->ttyfd, s->tty, sizeof(s->tty));
        if (res == 0)
                goto error;
@@ -203,10 +203,10 @@ index 7f32b0c..4d5e8fa 100644
 
 struct mm_master;
 diff --git a/monitor_wrap.c b/monitor_wrap.c
-index 60b987d..f75dc9d 100644
+index e476f0d..6dc890a 100644
 --- a/monitor_wrap.c
 +++ b/monitor_wrap.c
-@@ -318,10 +318,10 @@ mm_auth2_read_banner(void)
+@@ -324,10 +324,10 @@ mm_auth2_read_banner(void)
        return (banner);
 }
 
@@ -219,7 +219,7 @@ index 60b987d..f75dc9d 100644
 {
        Buffer m;
 
-@@ -330,12 +330,30 @@ mm_inform_authserv(char *service, char *style)
+@@ -336,12 +336,30 @@ mm_inform_authserv(char *service, char *style)
        buffer_init(&m);
        buffer_put_cstring(&m, service);
        buffer_put_cstring(&m, style ? style : "");
@@ -361,10 +361,10 @@ index e3d1004..80ce13a 100644
 void ssh_selinux_setfscreatecon(const char *);
 #endif
 diff --git a/platform.c b/platform.c
-index 30fc609..4aab9a9 100644
+index ee313da..f35ec39 100644
 --- a/platform.c
 +++ b/platform.c
-@@ -142,7 +142,7 @@ platform_setusercontext(struct passwd *pw)
+@@ -143,7 +143,7 @@ platform_setusercontext(struct passwd *pw)
  * called if sshd is running as root.
  */
 void
@@ -373,7 +373,7 @@ index 30fc609..4aab9a9 100644
 {
 #if !defined(HAVE_LOGIN_CAP) && defined(USE_PAM)
        /*
-@@ -183,7 +183,7 @@ platform_setusercontext_post_groups(struct passwd *pw)
+@@ -184,7 +184,7 @@ platform_setusercontext_post_groups(struct passwd *pw)
        }
 #endif /* HAVE_SETPCRED */
 #ifdef WITH_SELINUX
@@ -396,10 +396,10 @@ index 1c7a45d..436ae7c 100644
 char *platform_krb5_get_principal_name(const char *);
 int platform_sys_dir_uid(uid_t);
 diff --git a/session.c b/session.c
-index 2bcf818..6848df4 100644
+index 3e96557..6f389ac 100644
 --- a/session.c
 +++ b/session.c
-@@ -1502,7 +1502,7 @@ safely_chroot(const char *path, uid_t uid)
+@@ -1486,7 +1486,7 @@ safely_chroot(const char *path, uid_t uid)
 
 /* Set login name, uid, gid, and groups. */
 void
@@ -407,8 +407,8 @@ index 2bcf818..6848df4 100644
 +do_setusercontext(struct passwd *pw, const char *role)
 {
        char *chroot_path, *tmp;
- 
+ #ifdef USE_LIBIAF
-@@ -1530,7 +1530,7 @@ do_setusercontext(struct passwd *pw)
+@@ -1517,7 +1517,7 @@ do_setusercontext(struct passwd *pw)
                endgrent();
 #endif
 
@@ -417,7 +417,7 @@ index 2bcf818..6848df4 100644
 
                if (options.chroot_directory != NULL &&
                    strcasecmp(options.chroot_directory, "none") != 0) {
-@@ -1679,7 +1679,7 @@ do_child(Session *s, const char *command)
+@@ -1676,7 +1676,7 @@ do_child(Session *s, const char *command)
 
        /* Force a password change */
        if (s->authctxt->force_pwchange) {
@@ -426,7 +426,7 @@ index 2bcf818..6848df4 100644
                child_close_fds();
                do_pwchange(s);
                exit(1);
-@@ -1706,7 +1706,7 @@ do_child(Session *s, const char *command)
+@@ -1703,7 +1703,7 @@ do_child(Session *s, const char *command)
                /* When PAM is enabled we rely on it to do the nologin check */
                if (!options.use_pam)
                        do_nologin(pw);
@@ -435,7 +435,7 @@ index 2bcf818..6848df4 100644
                /*
                 * PAM session modules in do_setusercontext may have
                 * generated messages, so if this in an interactive
-@@ -2117,7 +2117,7 @@ session_pty_req(Session *s)
+@@ -2114,7 +2114,7 @@ session_pty_req(Session *s)
        tty_parse_modes(s->ttyfd, &n_bytes);
 
        if (!use_privsep)
@@ -458,10 +458,10 @@ index 6a2f35e..ef6593c 100644
                       const char *value);
 
 diff --git a/sshd.c b/sshd.c
-index d787fea..e343d90 100644
+index 3a6be65..48a14dd 100644
 --- a/sshd.c
 +++ b/sshd.c
-@@ -769,7 +769,7 @@ privsep_postauth(Authctxt *authctxt)
+@@ -772,7 +772,7 @@ privsep_postauth(Authctxt *authctxt)
        explicit_bzero(rnd, sizeof(rnd));
 
        /* Drop privileges */
@@ -471,10 +471,10 @@ index d787fea..e343d90 100644
  skip:
        /* It is safe now to apply the key state */
 diff --git a/sshpty.c b/sshpty.c
-index bbbc0fe..8cc26a2 100644
+index a2059b7..3512ec8 100644
 --- a/sshpty.c
 +++ b/sshpty.c
-@@ -200,7 +200,7 @@ pty_change_window_size(int ptyfd, u_int row, u_int col,
+@@ -187,7 +187,7 @@ pty_change_window_size(int ptyfd, u_int row, u_int col,
 }
 
 void
@@ -483,7 +483,7 @@ index bbbc0fe..8cc26a2 100644
 {
        struct group *grp;
        gid_t gid;
-@@ -227,7 +227,7 @@ pty_setowner(struct passwd *pw, const char *tty)
+@@ -214,7 +214,7 @@ pty_setowner(struct passwd *pw, const char *tty)
                    strerror(errno));
 
 #ifdef WITH_SELINUX
diff --git a/debian/patches/series b/debian/patches/series
index c554b34ca..bbc7a5fb4 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,4 +1,5 @@
 gssapi.patch
+restore-tcp-wrappers.patch
 selinux-role.patch
 ssh-vulnkey-compat.patch
 ssh1-keepalive.patch
@@ -22,9 +23,7 @@ ssh-argv0.patch
 doc-hash-tab-completion.patch
 doc-upstart.patch
 ssh-agent-setgid.patch
-no-openssl-version-check.patch
+no-openssl-version-status.patch
 gnome-ssh-askpass2-icon.patch
 sigstop.patch
 debian-config.patch
-sshfp_with_server_cert_upstr
-curve25519-sha256-bignum-encoding.patch
diff --git a/debian/patches/shell-path.patch b/debian/patches/shell-path.patch
index 48c16d2a2..07e20f03d 100644
--- a/debian/patches/shell-path.patch
+++ b/debian/patches/shell-path.patch
@@ -1,4 +1,4 @@
-From 6103c29d855e82c098e88ee12f05a6eb41f659ce Mon Sep 17 00:00:00 2001
+From 66377fbb52584b41bd7f6f19116107fbbad41058 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:00 +0000
 Subject: Look for $SHELL on the path for ProxyCommand/LocalCommand
@@ -16,10 +16,10 @@ Patch-Name: shell-path.patch
 1 file changed, 2 insertions(+), 2 deletions(-)
 diff --git a/sshconnect.c b/sshconnect.c
-index 573d7a8..9e02837 100644
+index ac09eae..26116d2 100644
 --- a/sshconnect.c
 +++ b/sshconnect.c
-@@ -227,7 +227,7 @@ ssh_proxy_connect(const char *host, u_short port, const char *proxy_command)
+@@ -228,7 +228,7 @@ ssh_proxy_connect(const char *host, u_short port, const char *proxy_command)
                /* Execute the proxy command.  Note that we gave up any
                   extra privileges above. */
                signal(SIGPIPE, SIG_DFL);
@@ -28,7 +28,7 @@ index 573d7a8..9e02837 100644
                perror(argv[0]);
                exit(1);
        }
-@@ -1387,7 +1387,7 @@ ssh_local_cmd(const char *args)
+@@ -1416,7 +1416,7 @@ ssh_local_cmd(const char *args)
        if (pid == 0) {
                signal(SIGPIPE, SIG_DFL);
                debug3("Executing %s -c \"%s\"", shell, args);
diff --git a/debian/patches/sigstop.patch b/debian/patches/sigstop.patch
index 6a15e0dc5..1eaa7758b 100644
--- a/debian/patches/sigstop.patch
+++ b/debian/patches/sigstop.patch
@@ -1,4 +1,4 @@
-From cfeaa0ba2ce2859573f7e980be09ef05511f56a2 Mon Sep 17 00:00:00 2001
+From 689f465c66059e527974c6d4ea8e95f04d5abab7 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:17 +0000
 Subject: Support synchronisation with service supervisor using SIGSTOP
@@ -13,10 +13,10 @@ Patch-Name: sigstop.patch
 1 file changed, 10 insertions(+)
 diff --git a/sshd.c b/sshd.c
-index 665c0b9..0964491 100644
+index 87331c1..23d5a64 100644
 --- a/sshd.c
 +++ b/sshd.c
-@@ -1931,6 +1931,16 @@ main(int ac, char **av)
+@@ -1958,6 +1958,16 @@ main(int ac, char **av)
                        }
                }
 
diff --git a/debian/patches/ssh-agent-setgid.patch b/debian/patches/ssh-agent-setgid.patch
index af23075b3..9c3ddc86e 100644
--- a/debian/patches/ssh-agent-setgid.patch
+++ b/debian/patches/ssh-agent-setgid.patch
@@ -1,4 +1,4 @@
-From d53483ab71ac2a9195c8f171da5a5dcf54ec16ec Mon Sep 17 00:00:00 2001
+From 78dd041bb6ad29ceb35f05b539b09ccf761eaee2 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:13 +0000
 Subject: Document consequences of ssh-agent being setgid in ssh-agent(1)
@@ -13,10 +13,10 @@ Patch-Name: ssh-agent-setgid.patch
 1 file changed, 15 insertions(+)
 diff --git a/ssh-agent.1 b/ssh-agent.1
-index 281ecbd..38fd540 100644
+index a1e634f..f2c4080 100644
 --- a/ssh-agent.1
 +++ b/ssh-agent.1
-@@ -183,6 +183,21 @@ environment variable holds the agent's process ID.
+@@ -172,6 +172,21 @@ environment variable holds the agent's process ID.
 .Pp
 The agent exits automatically when the command given on the command
 line terminates.
@@ -37,4 +37,4 @@ index 281ecbd..38fd540 100644
 +so in the program executed by ssh-agent.
 .Sh FILES
 .Bl -tag -width Ds
- .It Pa ~/.ssh/identity
+ .It Pa $TMPDIR/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt
diff --git a/debian/patches/ssh-argv0.patch b/debian/patches/ssh-argv0.patch
index d456facea..0ccf7c42b 100644
--- a/debian/patches/ssh-argv0.patch
+++ b/debian/patches/ssh-argv0.patch
@@ -1,4 +1,4 @@
-From d4ac61d918775f629eff9a389d0f7bb0f8426b48 Mon Sep 17 00:00:00 2001
+From cbd5cb03866f6df50c82d26588b73135d05bf245 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:10:10 +0000
 Subject: ssh(1): Refer to ssh-argv0(1)
@@ -18,10 +18,10 @@ Patch-Name: ssh-argv0.patch
 1 file changed, 1 insertion(+)
 diff --git a/ssh.1 b/ssh.1
-index 67b4f44..9868025 100644
+index de178cd..2606b15 100644
 --- a/ssh.1
 +++ b/ssh.1
-@@ -1468,6 +1468,7 @@ if an error occurred.
+@@ -1458,6 +1458,7 @@ if an error occurred.
 .Xr sftp 1 ,
 .Xr ssh-add 1 ,
 .Xr ssh-agent 1 ,
diff --git a/debian/patches/ssh-vulnkey-compat.patch b/debian/patches/ssh-vulnkey-compat.patch
index fa738b084..427ee6be1 100644
--- a/debian/patches/ssh-vulnkey-compat.patch
+++ b/debian/patches/ssh-vulnkey-compat.patch
@@ -1,4 +1,4 @@
-From d422205e757aaf23e8e0e787f842ef37f6a170a2 Mon Sep 17 00:00:00 2001
+From e6836d7c98c75d3252de56c2f3ea07e12c817e00 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@ubuntu.com>
 Date: Sun, 9 Feb 2014 16:09:50 +0000
 Subject: Accept obsolete ssh-vulnkey configuration options
@@ -17,10 +17,10 @@ Patch-Name: ssh-vulnkey-compat.patch
 2 files changed, 2 insertions(+)
 diff --git a/readconf.c b/readconf.c
-index 7613ff2..bcd8cad 100644
+index 9127e93..bc879eb 100644
 --- a/readconf.c
 +++ b/readconf.c
-@@ -172,6 +172,7 @@ static struct {
+@@ -174,6 +174,7 @@ static struct {
        { "passwordauthentication", oPasswordAuthentication },
        { "kbdinteractiveauthentication", oKbdInteractiveAuthentication },
        { "kbdinteractivedevices", oKbdInteractiveDevices },
@@ -29,10 +29,10 @@ index 7613ff2..bcd8cad 100644
        { "pubkeyauthentication", oPubkeyAuthentication },
        { "dsaauthentication", oPubkeyAuthentication },             /* alias */
 diff --git a/servconf.c b/servconf.c
-index 0083cf8..90de888 100644
+index cb3c831..a252487 100644
 --- a/servconf.c
 +++ b/servconf.c
-@@ -448,6 +448,7 @@ static struct {
+@@ -462,6 +462,7 @@ static struct {
        { "x11uselocalhost", sX11UseLocalhost, SSHCFG_ALL },
        { "xauthlocation", sXAuthLocation, SSHCFG_GLOBAL },
        { "strictmodes", sStrictModes, SSHCFG_GLOBAL },
diff --git a/debian/patches/ssh1-keepalive.patch b/debian/patches/ssh1-keepalive.patch
index ded7c122a..2e5fa306d 100644
--- a/debian/patches/ssh1-keepalive.patch
+++ b/debian/patches/ssh1-keepalive.patch
@@ -1,4 +1,4 @@
-From 789d58ed3df120c7b80d07fb2d259c216194a29c Mon Sep 17 00:00:00 2001
+From cbbc8577950b93090171c7394bcdeb68b7c3cd0c Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:09:51 +0000
 Subject: Partial server keep-alive implementation for SSH1
@@ -13,7 +13,7 @@ Patch-Name: ssh1-keepalive.patch
 2 files changed, 19 insertions(+), 11 deletions(-)
 diff --git a/clientloop.c b/clientloop.c
-index 6d8cd7d..73a800c 100644
+index f9175e3..046ca8b 100644
 --- a/clientloop.c
 +++ b/clientloop.c
 @@ -563,16 +563,21 @@ client_global_request_reply(int type, u_int32_t seq, void *ctxt)
@@ -57,10 +57,10 @@ index 6d8cd7d..73a800c 100644
                server_alive_time = now + options.server_alive_interval;
        }
 diff --git a/ssh_config.5 b/ssh_config.5
-index e7accd6..473971e 100644
+index e6649ac..01f1f7f 100644
 --- a/ssh_config.5
 +++ b/ssh_config.5
-@@ -1294,7 +1294,10 @@ If, for example,
+@@ -1325,7 +1325,10 @@ If, for example,
 .Cm ServerAliveCountMax
 is left at the default, if the server becomes unresponsive,
 ssh will disconnect after approximately 45 seconds.
diff --git a/debian/patches/sshfp_with_server_cert_upstr b/debian/patches/sshfp_with_server_cert_upstr
deleted file mode 100644
index b453081c5..000000000
--- a/debian/patches/sshfp_with_server_cert_upstr
+++ /dev/null
@@ -1,83 +0,0 @@
-From 08a63152deb5deda168aaef870bdb9f56425acb3 Mon Sep 17 00:00:00 2001
-From: Matthew Vernon <mcv21@cam.ac.uk>
-Date: Wed, 26 Mar 2014 15:32:23 +0000
-Subject: Attempt SSHFP lookup even if server presents a certificate
-If an ssh server presents a certificate to the client, then the client
-does not check the DNS for SSHFP records. This means that a malicious
-server can essentially disable DNS-host-key-checking, which means the
-client will fall back to asking the user (who will just say "yes" to
-the fingerprint, sadly).
-This patch is by Damien Miller (of openssh upstream). It's simpler
-than the patch by Mark Wooding which I applied yesterday; a copy is
-taken of the proffered key/cert, the key extracted from the cert (if
-necessary), and then the DNS consulted.
-Signed-off-by: Matthew Vernon <matthew@debian.org>
-Bug-Debian: http://bugs.debian.org/742513
-Patch-Name: sshfp_with_server_cert_upstr
---
- sshconnect.c | 42 ++++++++++++++++++++++++++----------------
- 1 file changed, 26 insertions(+), 16 deletions(-)
-diff --git a/sshconnect.c b/sshconnect.c
-index 87c3770..324f5e0 100644
--- a/sshconnect.c
-+++ b/sshconnect.c
-@@ -1224,29 +1224,39 @@ verify_host_key(char *host, struct sockaddr *hostaddr, Key *host_key)
- {
-        int flags = 0;
-        char *fp;
-+       Key *plain = NULL;
- 
-        fp = key_fingerprint(host_key, SSH_FP_MD5, SSH_FP_HEX);
-        debug("Server host key: %s %s", key_type(host_key), fp);
-        free(fp);
- 
-       /* XXX certs are not yet supported for DNS */
-       if (!key_is_cert(host_key) && options.verify_host_key_dns &&
-           verify_host_key_dns(host, hostaddr, host_key, &flags) == 0) {
-               if (flags & DNS_VERIFY_FOUND) {
-
-                       if (options.verify_host_key_dns == 1 &&
-                           flags & DNS_VERIFY_MATCH &&
-                           flags & DNS_VERIFY_SECURE)
-                               return 0;
-
-                       if (flags & DNS_VERIFY_MATCH) {
-                               matching_host_key_dns = 1;
-                       } else {
-                               warn_changed_key(host_key);
-                               error("Update the SSHFP RR in DNS with the new "
-                                   "host key to get rid of this message.");
-+       if (options.verify_host_key_dns) {
-+               /*
-+                * XXX certs are not yet supported for DNS, so downgrade
-+                * them and try the plain key.
-+                */
-+               plain = key_from_private(host_key);
-+               if (key_is_cert(plain))
-+                       key_drop_cert(plain);
-+               if (verify_host_key_dns(host, hostaddr, plain, &flags) == 0) {
-+                       if (flags & DNS_VERIFY_FOUND) {
-+                               if (options.verify_host_key_dns == 1 &&
-+                                   flags & DNS_VERIFY_MATCH &&
-+                                   flags & DNS_VERIFY_SECURE) {
-+                                       key_free(plain);
-+                                       return 0;
-+                               }
-+                               if (flags & DNS_VERIFY_MATCH) {
-+                                       matching_host_key_dns = 1;
-+                               } else {
-+                                       warn_changed_key(plain);
-+                                       error("Update the SSHFP RR in DNS "
-+                                           "with the new host key to get rid "
-+                                           "of this message.");
-+                               }
-                        }
-                }
-+               key_free(plain);
-        }
- 
-        return check_host_key(host, hostaddr, options.port, host_key, RDRW,
diff --git a/debian/patches/syslog-level-silent.patch b/debian/patches/syslog-level-silent.patch
index 7cbd3a7e3..bfc236927 100644
--- a/debian/patches/syslog-level-silent.patch
+++ b/debian/patches/syslog-level-silent.patch
@@ -1,4 +1,4 @@
-From b8ed36cdf2dbebc01e52e83eece4bb1d78607e84 Mon Sep 17 00:00:00 2001
+From 69f7c00e04d1baa01a9038eeb764cfed0830fb19 Mon Sep 17 00:00:00 2001
 From: Jonathan David Amery <jdamery@ysolde.ucam.org>
 Date: Sun, 9 Feb 2014 16:09:54 +0000
 Subject: "LogLevel SILENT" compatibility
@@ -33,10 +33,10 @@ index 32e1d2e..53e7b65 100644
        { "FATAL",      SYSLOG_LEVEL_FATAL },
        { "ERROR",      SYSLOG_LEVEL_ERROR },
 diff --git a/ssh.c b/ssh.c
-index 1e6cb90..3e63708 100644
+index 26e9681..5bce695 100644
 --- a/ssh.c
 +++ b/ssh.c
-@@ -965,7 +965,7 @@ main(int ac, char **av)
+@@ -989,7 +989,7 @@ main(int ac, char **av)
        /* Do not allocate a tty if stdin is not a tty. */
        if ((!isatty(fileno(stdin)) || stdin_null_flag) &&
            options.request_tty != REQUEST_TTY_FORCE) {
diff --git a/debian/patches/user-group-modes.patch b/debian/patches/user-group-modes.patch
index 3cdb9d8a1..e4e4657f3 100644
--- a/debian/patches/user-group-modes.patch
+++ b/debian/patches/user-group-modes.patch
@@ -1,4 +1,4 @@
-From 77638f6662ecd8500e1b97e537233b1277ca829f Mon Sep 17 00:00:00 2001
+From 28ea747089f695e58a476a2849133402d4f86b92 Mon Sep 17 00:00:00 2001
 From: Colin Watson <cjwatson@debian.org>
 Date: Sun, 9 Feb 2014 16:09:58 +0000
 Subject: Allow harmless group-writability
@@ -28,7 +28,7 @@ Patch-Name: user-group-modes.patch
 8 files changed, 82 insertions(+), 29 deletions(-)
 diff --git a/auth-rhosts.c b/auth-rhosts.c
-index 06ae7f0..f202787 100644
+index b5bedee..11fcca6 100644
 --- a/auth-rhosts.c
 +++ b/auth-rhosts.c
 @@ -256,8 +256,7 @@ auth_rhosts2_raw(struct passwd *pw, const char *client_user, const char *hostnam
@@ -52,10 +52,10 @@ index 06ae7f0..f202787 100644
                            pw->pw_name, buf);
                        auth_debug_add("Bad file modes for %.200s", buf);
 diff --git a/auth.c b/auth.c
-index 9a36f1d..0c45f09 100644
+index 5e60682..18de51a 100644
 --- a/auth.c
 +++ b/auth.c
-@@ -407,8 +407,7 @@ check_key_in_hostfiles(struct passwd *pw, Key *key, const char *host,
+@@ -421,8 +421,7 @@ check_key_in_hostfiles(struct passwd *pw, Key *key, const char *host,
                user_hostfile = tilde_expand_filename(userfile, pw->pw_uid);
                if (options.strict_modes &&
                    (stat(user_hostfile, &st) == 0) &&
@@ -65,7 +65,7 @@ index 9a36f1d..0c45f09 100644
                        logit("Authentication refused for %.100s: "
                            "bad owner or modes for %.200s",
                            pw->pw_name, user_hostfile);
-@@ -470,8 +469,7 @@ auth_secure_path(const char *name, struct stat *stp, const char *pw_dir,
+@@ -484,8 +483,7 @@ auth_secure_path(const char *name, struct stat *stp, const char *pw_dir,
                snprintf(err, errlen, "%s is not a regular file", buf);
                return -1;
        }
@@ -75,7 +75,7 @@ index 9a36f1d..0c45f09 100644
                snprintf(err, errlen, "bad ownership or modes for file %s",
                    buf);
                return -1;
-@@ -486,8 +484,7 @@ auth_secure_path(const char *name, struct stat *stp, const char *pw_dir,
+@@ -500,8 +498,7 @@ auth_secure_path(const char *name, struct stat *stp, const char *pw_dir,
                strlcpy(buf, cp, sizeof(buf));
 
                if (stat(buf, &st) < 0 ||
@@ -86,10 +86,10 @@ index 9a36f1d..0c45f09 100644
                            "bad ownership or modes for directory %s", buf);
                        return -1;
 diff --git a/misc.c b/misc.c
-index e4c8c32..4e756b0 100644
+index 94b05b0..c25ccd8 100644
 --- a/misc.c
 +++ b/misc.c
-@@ -49,8 +49,9 @@
+@@ -50,8 +50,9 @@
 #include <netdb.h>
 #ifdef HAVE_PATHS_H
 # include <paths.h>
@@ -100,7 +100,7 @@ index e4c8c32..4e756b0 100644
 #ifdef SSH_TUN_OPENBSD
 #include <net/if.h>
 #endif
-@@ -59,6 +60,7 @@
+@@ -60,6 +61,7 @@
 #include "misc.h"
 #include "log.h"
 #include "ssh.h"
@@ -108,7 +108,7 @@ index e4c8c32..4e756b0 100644
 
 /* remove newline at end of string */
 char *
-@@ -643,6 +645,71 @@ read_keyfile_line(FILE *f, const char *filename, char *buf, size_t bufsz,
+@@ -644,6 +646,71 @@ read_keyfile_line(FILE *f, const char *filename, char *buf, size_t bufsz,
        return -1;
 }
 
@@ -181,10 +181,10 @@ index e4c8c32..4e756b0 100644
 tun_open(int tun, int mode)
 {
 diff --git a/misc.h b/misc.h
-index d4df619..ceb173b 100644
+index 374c33c..89e1f75 100644
 --- a/misc.h
 +++ b/misc.h
-@@ -106,4 +106,6 @@ char        *read_passphrase(const char *, int);
+@@ -135,4 +135,6 @@ char        *read_passphrase(const char *, int);
 int     ask_permission(const char *, ...) __attribute__((format(printf, 1, 2)));
 int     read_keyfile_line(FILE *, const char *, char *, size_t, u_long *);
 
@@ -192,10 +192,10 @@ index d4df619..ceb173b 100644
 +
 #endif /* _MISC_H */
 diff --git a/platform.c b/platform.c
-index 4aab9a9..f99de7f 100644
+index f35ec39..9a23e6e 100644
 --- a/platform.c
 +++ b/platform.c
-@@ -196,19 +196,3 @@ platform_krb5_get_principal_name(const char *pw_name)
+@@ -197,19 +197,3 @@ platform_krb5_get_principal_name(const char *pw_name)
        return NULL;
 #endif
 }
@@ -216,10 +216,10 @@ index 4aab9a9..f99de7f 100644
 -       return 0;
 -}
 diff --git a/readconf.c b/readconf.c
-index 6409937..32c4b42 100644
+index 337818c..0648867 100644
 --- a/readconf.c
 +++ b/readconf.c
-@@ -37,6 +37,8 @@
+@@ -38,6 +38,8 @@
 #include <stdio.h>
 #include <string.h>
 #include <unistd.h>
@@ -228,7 +228,7 @@ index 6409937..32c4b42 100644
 #ifdef HAVE_UTIL_H
 #include <util.h>
 #endif
-@@ -1477,8 +1479,7 @@ read_config_file(const char *filename, struct passwd *pw, const char *host,
+@@ -1516,8 +1518,7 @@ read_config_file(const char *filename, struct passwd *pw, const char *host,
 
                if (fstat(fileno(f), &sb) == -1)
                        fatal("fstat %s: %s", filename, strerror(errno));
@@ -239,10 +239,10 @@ index 6409937..32c4b42 100644
        }
 
 diff --git a/ssh.1 b/ssh.1
-index 27794e2..ff5e6ac 100644
+index fa5cfb2..7f6ab77 100644
 --- a/ssh.1
 +++ b/ssh.1
-@@ -1352,6 +1352,8 @@ The file format and configuration options are described in
+@@ -1342,6 +1342,8 @@ The file format and configuration options are described in
 .Xr ssh_config 5 .
 Because of the potential for abuse, this file must have strict permissions:
 read/write for the user, and not writable by others.
@@ -252,10 +252,10 @@ index 27794e2..ff5e6ac 100644
 .It Pa ~/.ssh/environment
 Contains additional definitions for environment variables; see
 diff --git a/ssh_config.5 b/ssh_config.5
-index 3172fd4..4bf7cbb 100644
+index ea92ea8..d68b45a 100644
 --- a/ssh_config.5
 +++ b/ssh_config.5
-@@ -1529,6 +1529,8 @@ The format of this file is described above.
+@@ -1587,6 +1587,8 @@ The format of this file is described above.
 This file is used by the SSH client.
 Because of the potential for abuse, this file must have strict permissions:
 read/write for the user, and not accessible by others.