summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2020-01-25upstream: remove ssh-rsa (SHA1) from the list of allowed CAdjm@openbsd.org
2020-01-25upstream: when signing a certificate with an RSA key, default todjm@openbsd.org
2020-01-25upstream: allow PEM export of DSA and ECDSA keys; bz3091, patchdjm@openbsd.org
2020-01-25upstream: ssh-keygen -Y find-principals fixes based on feedbackdjm@openbsd.org
2020-01-24upstream: Do not warn about permissions on symlinks.dtucker@openbsd.org
2020-01-23upstream: Handle zlib compression being disabled now that it'sdtucker@openbsd.org
2020-01-23upstream: Fix typo in comment.dtucker@openbsd.org
2020-01-23upstream: When checking for unsafe directories, ignore non-directoriesdtucker@openbsd.org
2020-01-23zlib is now optional.Darren Tucker
2020-01-23Plumb WITH_ZLIB into configure.Darren Tucker
2020-01-23upstream: Make zlib optional. This adds a "ZLIB" build time optiondtucker@openbsd.org
2020-01-23upstream: remove trailing period characters from pub/priv keydjm@openbsd.org
2020-01-23Fix a couple of mysig_t leftovers.Darren Tucker
2020-01-23Remove mysignal wrapper.Darren Tucker
2020-01-23upstream: new sentence, new line;jmc@openbsd.org
2020-01-23upstream: Replace all calls to signal(2) with a wrapper arounddtucker@openbsd.org
2020-01-23upstream: missing header change from previous; spotted by dtucker@djm@openbsd.org
2020-01-23upstream: Check for and warn about StrictModes permission problems. ok tb@dtucker@openbsd.org
2020-01-23upstream: Also test PuTTY chacha20.dtucker@openbsd.org
2020-01-23upstream: Also test PuTTY ecdh kex methods.dtucker@openbsd.org
2020-01-23upstream: Remove unsupported algorithms from list of defaults at rundtucker@openbsd.org
2020-01-23upstream: add a new signature operations "find-principal" to lookdjm@openbsd.org
2020-01-23upstream: Ignore whitespace when checking explict fingerprint.dtucker@openbsd.org
2020-01-22upstream: Increase keyscan timeout from default. On slow hosts 3dtucker@openbsd.org
2020-01-22upstream: remove diffie-hellman-group14-sha1 from default kex totedu@openbsd.org
2020-01-22upstream: For ssh-keygen -lF only add a space after key fingerprintclaudio@openbsd.org
2020-01-22upstream: some __func__ and strerror(errno) here; no functionaldjm@openbsd.org
2020-01-22upstream: factor out parsing of allowed-signers linesdjm@openbsd.org
2020-01-22unbreak fuzzer support for recent ssh-sk.h changesDamien Miller
2020-01-22upstream: expose the number of currently-authenticating connectionsdjm@openbsd.org
2020-01-22upstream: document the default value of the ControlPersist option;naddy@openbsd.org
2020-01-22remove accidental change in f8c11461Damien Miller
2020-01-21upstream: don't #ifdef out the KRL code when compiling withoutdjm@openbsd.org
2020-01-21upstream: pass SSH_SK_HELPER explicitly past $SUDO to avoid it gettingdjm@openbsd.org
2020-01-21upstream: check access(ssh-sk-helper, X_OK) to provide friendlydjm@openbsd.org
2020-01-21upstream: Document sntrup4591761x25519-sha512@tinyssh.org. Patchdtucker@openbsd.org
2020-01-21upstream: fix ssh-keygen not displaying authenticator touchdjm@openbsd.org
2020-01-21upstream: a little more verbosity in sign_and_send_pubkey() debugdjm@openbsd.org
2020-01-21upstream: one more replacement "(security) key" -> "(FIDO)naddy@openbsd.org
2020-01-21upstream: undo merge error and replace the term "security key"naddy@openbsd.org
2020-01-21upstream: Document loading of resident keys from a FIDOnaddy@openbsd.org
2020-01-21upstream: sync ssh-keygen.1 and ssh-keygen's usage() with eachnaddy@openbsd.org
2020-01-21upstream: revise the fix for reversed arguments onnaddy@openbsd.org
2020-01-21upstream: pass the log-on-stderr flag and log level through todjm@openbsd.org
2020-01-21Wrap copy_environment_blacklist() in #ifdefDamien Miller
2020-01-21dependDamien Miller
2020-01-21Fix missing prototype warning for copy_environmentRuben Kerkhof
2020-01-21configure.ac: fix ldns testRuben Kerkhof
2020-01-21Make sshpam_password_change_required static.Ruben Kerkhof
2020-01-21sandbox-darwin.c: fix missing prototypes.Ruben Kerkhof