summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2020-01-25Put EC key export inside OPENSSL_HAS_ECC.Darren Tucker
2020-01-25upstream: Wait a bit longer for the multiplex master to become readydtucker@openbsd.org
2020-01-25upstream: Add a connection test for proxycommand. This would havedtucker@openbsd.org
2020-01-25upstream: set UpdateKnownHosts=ask by default; bz#2894; okdjm@openbsd.org
2020-01-25upstream: allow UpdateKnownHosts=yes to function when multipledjm@openbsd.org
2020-01-25upstream: process security key provider via realpath() in agent,djm@openbsd.org
2020-01-25upstream: expose PKCS#11 key labels/X.509 subjects as commentsdjm@openbsd.org
2020-01-25upstream: tweak proctitle to include sshd arguments, as these aredjm@openbsd.org
2020-01-25upstream: add xextendf() to extend a string with a formatdjm@openbsd.org
2020-01-25upstream: minor tweaks to ssh-keygen -Y find-principals:djm@openbsd.org
2020-01-25upstream: remove ssh-rsa (SHA1) from the list of allowed CAdjm@openbsd.org
2020-01-25upstream: when signing a certificate with an RSA key, default todjm@openbsd.org
2020-01-25upstream: allow PEM export of DSA and ECDSA keys; bz3091, patchdjm@openbsd.org
2020-01-25upstream: ssh-keygen -Y find-principals fixes based on feedbackdjm@openbsd.org
2020-01-24upstream: Do not warn about permissions on symlinks.dtucker@openbsd.org
2020-01-23upstream: Handle zlib compression being disabled now that it'sdtucker@openbsd.org
2020-01-23upstream: Fix typo in comment.dtucker@openbsd.org
2020-01-23upstream: When checking for unsafe directories, ignore non-directoriesdtucker@openbsd.org
2020-01-23zlib is now optional.Darren Tucker
2020-01-23Plumb WITH_ZLIB into configure.Darren Tucker
2020-01-23upstream: Make zlib optional. This adds a "ZLIB" build time optiondtucker@openbsd.org
2020-01-23upstream: remove trailing period characters from pub/priv keydjm@openbsd.org
2020-01-23Fix a couple of mysig_t leftovers.Darren Tucker
2020-01-23Remove mysignal wrapper.Darren Tucker
2020-01-23upstream: new sentence, new line;jmc@openbsd.org
2020-01-23upstream: Replace all calls to signal(2) with a wrapper arounddtucker@openbsd.org
2020-01-23upstream: missing header change from previous; spotted by dtucker@djm@openbsd.org
2020-01-23upstream: Check for and warn about StrictModes permission problems. ok tb@dtucker@openbsd.org
2020-01-23upstream: Also test PuTTY chacha20.dtucker@openbsd.org
2020-01-23upstream: Also test PuTTY ecdh kex methods.dtucker@openbsd.org
2020-01-23upstream: Remove unsupported algorithms from list of defaults at rundtucker@openbsd.org
2020-01-23upstream: add a new signature operations "find-principal" to lookdjm@openbsd.org
2020-01-23upstream: Ignore whitespace when checking explict fingerprint.dtucker@openbsd.org
2020-01-22upstream: Increase keyscan timeout from default. On slow hosts 3dtucker@openbsd.org
2020-01-22upstream: remove diffie-hellman-group14-sha1 from default kex totedu@openbsd.org
2020-01-22upstream: For ssh-keygen -lF only add a space after key fingerprintclaudio@openbsd.org
2020-01-22upstream: some __func__ and strerror(errno) here; no functionaldjm@openbsd.org
2020-01-22upstream: factor out parsing of allowed-signers linesdjm@openbsd.org
2020-01-22unbreak fuzzer support for recent ssh-sk.h changesDamien Miller
2020-01-22upstream: expose the number of currently-authenticating connectionsdjm@openbsd.org
2020-01-22upstream: document the default value of the ControlPersist option;naddy@openbsd.org
2020-01-22remove accidental change in f8c11461Damien Miller
2020-01-21upstream: don't #ifdef out the KRL code when compiling withoutdjm@openbsd.org
2020-01-21upstream: pass SSH_SK_HELPER explicitly past $SUDO to avoid it gettingdjm@openbsd.org
2020-01-21upstream: check access(ssh-sk-helper, X_OK) to provide friendlydjm@openbsd.org
2020-01-21upstream: Document sntrup4591761x25519-sha512@tinyssh.org. Patchdtucker@openbsd.org
2020-01-21upstream: fix ssh-keygen not displaying authenticator touchdjm@openbsd.org
2020-01-21upstream: a little more verbosity in sign_and_send_pubkey() debugdjm@openbsd.org
2020-01-21upstream: one more replacement "(security) key" -> "(FIDO)naddy@openbsd.org
2020-01-21upstream: undo merge error and replace the term "security key"naddy@openbsd.org