Portable OpenSSH
Clone or download
djmdjm upstream: remove big ugly TODO comment from start of file. Some of
the mentioned tasks are obsolete and, of the remainder, most are already
captured in PROTOCOL.mux where they better belong

OpenBSD-Commit-ID: 16d9d76dee42a5bb651c9d6740f7f0ef68aeb407
Latest commit dba5025 Sep 26, 2018
Permalink
Failed to load latest commit information.
contrib update version numbers in anticipation of release Aug 16, 2018
openbsd-compat Remove unused variable in _ssh_compat_fflush. Sep 22, 2018
regress really add source for authopt_fuzz this time Sep 15, 2018
.depend rebuild dependencies Aug 23, 2018
.gitignore Fuzzer harnesses for sig verify and pubkey parsing Sep 8, 2017
.skipped-commit-ids upstream: Import updated moduli. Sep 20, 2018
CREDITS Remove now-obsolete CVS $Id tags from text files. Aug 17, 2016
INSTALL Remove support for S/Key Jul 31, 2018
LICENCE upstream commit May 1, 2017
Makefile.in delete the correct thing; kexfuzz binary Sep 12, 2018
OVERVIEW upstream: ssh(1) no longer supports being setuid root. Remove reference Jul 27, 2018
PROTOCOL upstream: improve Aug 10, 2018
PROTOCOL.agent update URL again Sep 30, 2017
PROTOCOL.certkeys upstream: Improve strictness and control over RSA-SHA2 signature Jul 3, 2018
PROTOCOL.chacha20poly1305 upstream: lots of typos in comments/docs. Patch from Karsten Weiss Apr 10, 2018
PROTOCOL.key - markus@cvs.openbsd.org 2013/12/06 13:34:54 Dec 6, 2013
PROTOCOL.krl upstream: allow key revocation by SHA256 hash and allow ssh-keygen Sep 12, 2018
PROTOCOL.mux upstream: Document mux proxy mode; added by Markus in openssh-7.4 Sep 26, 2018
README update version numbers in anticipation of release Aug 16, 2018
README.dns - jakob@cvs.openbsd.org 2003/10/14 19:43:23 Oct 15, 2003
README.platform Many typo fixes from Karsten Weiss Apr 10, 2018
README.privsep Remove references to UNICOS. Feb 15, 2018
README.tun - deraadt@cvs.openbsd.org 2006/03/28 00:12:31 Mar 31, 2006
TODO Remove support for S/Key Jul 31, 2018
aclocal.m4 Better detection of unsupported compiler options. Jun 8, 2018
addrmatch.c upstream: fix some memory leaks spotted by Coverity via Jakub Jelen Jul 31, 2018
atomicio.c upstream commit Aug 3, 2016
atomicio.h - djm@cvs.openbsd.org 2010/09/22 22:58:51 Sep 24, 2010
audit-bsm.c Remove key.h from portable files too. Jul 12, 2018
audit-linux.c Remove obsolete CVS $Id from source files. Aug 17, 2016
audit.c Include unistd.h for geteuid declaration. Jul 13, 2018
audit.h Remove obsolete CVS $Id from source files. Aug 17, 2016
auth-bsdauth.c upstream: sshd: switch authentication to sshbuf API; ok djm@ Jul 10, 2018
auth-krb5.c upstream: sshd: switch authentication to sshbuf API; ok djm@ Jul 10, 2018
auth-options.c upstream: allow bare port numbers to appear in PermitListen directives, Jun 19, 2018
auth-options.h upstream: permitlisten option for authorized_keys; ok markus@ Jun 6, 2018
auth-pam.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
auth-pam.h upstream: switch over to the new authorized_keys options API and Mar 3, 2018
auth-passwd.c upstream: sshd: switch loginmsg to sshbuf API; ok djm@ Jul 10, 2018
auth-rhosts.c upstream: sshd: switch authentication to sshbuf API; ok djm@ Jul 10, 2018
auth-shadow.c Remove key.h from portable files too. Jul 12, 2018
auth-sia.c Remove key.h from portable files too. Jul 12, 2018
auth-sia.h - (dtucker) [auth-passwd.c auth-sia.h] Remove duplicate definitions of Apr 5, 2005
auth-skey.c Remove key.h from portable files too. Jul 12, 2018
auth.c upstream: log certificate fingerprint in authentication Sep 12, 2018
auth.h Remove support for S/Key Jul 31, 2018
auth2-chall.c Remove support for S/Key Jul 31, 2018
auth2-gss.c upstream: delay bailout for invalid authentic Jul 31, 2018
auth2-hostbased.c upstream: Add sshd_config CASignatureAlgorithms option to allow Sep 20, 2018
auth2-kbdint.c upstream: sshd: switch authentication to sshbuf API; ok djm@ Jul 10, 2018
auth2-none.c upstream: sshd: switch authentication to sshbuf API; ok djm@ Jul 10, 2018
auth2-passwd.c upstream: sshd: switch authentication to sshbuf API; ok djm@ Jul 10, 2018
auth2-pubkey.c upstream: Add sshd_config CASignatureAlgorithms option to allow Sep 20, 2018
auth2.c upstream: hold our collective noses and use the openssl-1.1.x API in Sep 13, 2018
authfd.c upstream: replace cast with call to sshbuf_mutable_ptr(); ok djm@ Jul 10, 2018
authfd.h upstream: remove prototype to long-gone function Jul 12, 2018
authfile.c upstream: In sshkey_in_file(), ignore keys that are considered for Sep 21, 2018
authfile.h upstream commit Jan 8, 2015
bitmap.c upstream commit Oct 20, 2017
bitmap.h upstream commit Oct 20, 2017
buildpkg.sh.in Update links to https. Oct 20, 2016
canohost.c upstream commit Mar 7, 2016
canohost.h upstream commit Mar 7, 2016
chacha.c - djm@cvs.openbsd.org 2013/11/21 00:45:44 Nov 21, 2013
chacha.h upstream commit Aug 29, 2016
channels.c upstream: avoid expensive channel_open_message() calls; ok djm@ Jul 31, 2018
channels.h upstream: Add a PermitListen directive to control which server-side Jun 6, 2018
cipher-aes.c - (dtucker) [M auth-chall.c auth-krb5.c auth-pam.c cipher-aes.c ciph… Jun 1, 2013
cipher-aesctr.c Add includes.h for compatibility stuff. Feb 25, 2015
cipher-aesctr.h - markus@cvs.openbsd.org 2014/04/29 18:01:49 May 15, 2014
cipher-chachapoly.c upstream commit Aug 8, 2016
cipher-chachapoly.h - djm@cvs.openbsd.org 2014/06/24 01:13:21 Jul 2, 2014
cipher-ctr.c support --without-openssl at configure time Jan 14, 2015
cipher.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
cipher.h upstream: hold our collective noses and use the openssl-1.1.x API in Sep 13, 2018
cleanup.c - (djm) [auth-pam.c auth-shadow.c auth2-none.c cleanup.c sshd.c] Aug 5, 2006
clientloop.c upstream: Allow ssh_config ForwardX11Timeout=0 to disable the Sep 21, 2018
clientloop.h upstream: client: switch to sshbuf API; ok djm@ Jul 10, 2018
compat.c upstream: revert compat.[ch] section of the following change. It Aug 13, 2018
compat.h upstream: revert compat.[ch] section of the following change. It Aug 13, 2018
config.guess update config.guess and config.sub to current Aug 2, 2016
config.sub update config.guess and config.sub to current Aug 2, 2016
configure.ac adapt -portable to OpenSSL 1.1x API Sep 13, 2018
crc32.c - stevesk@cvs.openbsd.org 2006/04/22 18:29:33 Apr 23, 2006
crc32.h - djm@cvs.openbsd.org 2006/03/25 22:22:43 Mar 26, 2006
crypto_api.h crypto_api.h needs includes.h Jan 24, 2018
defines.h Remove support for S/Key Jul 31, 2018
dh.c upstream: When choosing a prime from the moduli file, avoid Sep 20, 2018
dh.h upstream: hold our collective noses and use the openssl-1.1.x API in Sep 13, 2018
digest-libc.c upstream commit May 10, 2017
digest-openssl.c upstream: hold our collective noses and use the openssl-1.1.x API in Sep 13, 2018
digest.h upstream commit May 10, 2017
dispatch.c upstream commit Jun 1, 2017
dispatch.h upstream commit Jun 1, 2017
dns.c upstream: Add experimental support for PQC XMSS keys (Extended Feb 26, 2018
dns.h upstream: Add experimental support for PQC XMSS keys (Extended Feb 26, 2018
ed25519.c - markus@cvs.openbsd.org 2013/12/09 11:03:45 Dec 18, 2013
entropy.c Adapt portable to legacy buffer API removal Jul 10, 2018
entropy.h Adapt portable to legacy buffer API removal Jul 10, 2018
fatal.c - deraadt@cvs.openbsd.org 2006/08/03 03:34:42 Aug 5, 2006
fe25519.c - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c]… Jan 17, 2014
fe25519.h - markus@cvs.openbsd.org 2013/12/09 11:03:45 Dec 18, 2013
fixalgorithms - (dtucker) [Makefile.in configure.ac fixalgorithms] Remove unsupported Jun 11, 2013
fixpaths - (djm) PERL-free fixpaths from stuge-openssh-unix-dev@cdy.org Dec 5, 2002
ge25519.c - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c]… Jan 17, 2014
ge25519.h upstream commit Feb 16, 2015
ge25519_base.data - markus@cvs.openbsd.org 2013/12/09 11:03:45 Dec 18, 2013
groupaccess.c Handle ngroups>_SC_NGROUPS_MAX. Sep 7, 2018
groupaccess.h - djm@cvs.openbsd.org 2008/07/04 03:44:59 Jul 4, 2008
gss-genr.c upstream: kerberos/gssapi fixes for buffer removal Jul 10, 2018
gss-serv-krb5.c upstream: sshd: switch GSSAPI to sshbuf API; ok djm@ Jul 10, 2018
gss-serv.c upstream: sshd: switch GSSAPI to sshbuf API; ok djm@ Jul 10, 2018
hash.c upstream commit Jan 23, 2018
hmac.c upstream commit Mar 27, 2015
hmac.h - djm@cvs.openbsd.org 2014/06/24 01:13:21 Jul 2, 2014
hostfile.c upstream: memleaks; found by valgrind Jul 16, 2018
hostfile.h upstream commit Feb 16, 2015
includes.h portability for sftp globbed ls sort by mtime Jun 10, 2017
install-sh Pull in newer install-sh from autoconf-2.69. Dec 1, 2017
kex.c upstream: Revert previous two commits Jul 10, 2018
kex.h repair !WITH_OPENSSL build Jul 13, 2018
kexc25519.c upstream commit May 2, 2016
kexc25519c.c upstream commit Dec 19, 2017
kexc25519s.c upstream commit Oct 20, 2017
kexdh.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
kexdhc.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
kexdhs.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
kexecdh.c upstream commit Jan 19, 2015
kexecdhc.c upstream commit Feb 7, 2018
kexecdhs.c upstream commit Feb 7, 2018
kexgex.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
kexgexc.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
kexgexs.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
krl.c upstream: allow key revocation by SHA256 hash and allow ssh-keygen Sep 12, 2018
krl.h upstream: allow key revocation by SHA256 hash and allow ssh-keygen Sep 12, 2018
log.c upstream: avoid expensive channel_open_message() calls; ok djm@ Jul 31, 2018
log.h upstream: avoid expensive channel_open_message() calls; ok djm@ Jul 31, 2018
loginrec.c upstream: remove legacy key emulation layer; ok djm@ Jul 12, 2018
loginrec.h - (djm) [loginrec.c loginrec.h] Use correct uid_t/pid_t types instea… Nov 4, 2010
logintest.c - (dtucker) [configure.ac defines.h loginrec.c logintest.c] Bug #173… Apr 9, 2010
mac.c upstream commit May 10, 2017
mac.h upstream commit Jul 8, 2016
match.c upstream: repair PubkeyAcceptedKeyTypes (and friends) after RSA Jul 4, 2018
match.h upstream: repair PubkeyAcceptedKeyTypes (and friends) after RSA Jul 4, 2018
md5crypt.c Remove assigned-to-but-never-used variable. Feb 13, 2018
md5crypt.h Remove obsolete CVS $Id from source files. Aug 17, 2016
mdoc2man.awk Remove remaining now-obsolete cvs $Ids. Feb 15, 2018
misc.c upstream: Remove uid checks from low port binds. Now that ssh Jul 31, 2018
misc.h upstream: Remove uid checks from low port binds. Now that ssh Jul 31, 2018
mkinstalldirs Remove remaining now-obsolete cvs $Ids. Feb 15, 2018
moduli Import updated moduli. Sep 22, 2018
moduli.5 - jmc@cvs.openbsd.org 2012/09/26 17:34:38 Nov 6, 2012
moduli.c upstream commit Dec 11, 2017
monitor.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
monitor.h Remove support for S/Key Jul 31, 2018
monitor_fdpass.c upstream commit Mar 4, 2016
monitor_fdpass.h - djm@cvs.openbsd.org 2007/09/04 03:21:03 Sep 17, 2007
monitor_wrap.c Remove support for S/Key Jul 31, 2018
monitor_wrap.h Remove support for S/Key Jul 31, 2018
msg.c upstream: replace cast with call to sshbuf_mutable_ptr(); ok djm@ Jul 10, 2018
msg.h upstream commit Jan 15, 2015
mux.c upstream: remove big ugly TODO comment from start of file. Some of Sep 26, 2018
myproposal.h upstream: add SSH_ALLOWED_CA_SIGALGS - the default list of Sep 12, 2018
nchan.c upstream commit Sep 12, 2017
nchan.ms - djm@cvs.openbsd.org 2003/11/21 11:57:03 Nov 21, 2003
nchan2.ms - djm@cvs.openbsd.org 2008/05/15 23:52:24 May 19, 2008
opacket.c missing headers Jul 13, 2018
opacket.h upstream: Remove unused ssh_packet_start_compression() Jul 10, 2018
openssh.xml.in - (tim) [buildpkg.sh.in openssh.xml.in] Allow more flexibility where… Jul 25, 2007
opensshd.init.in Remove RSA1 host key generation. Dec 1, 2017
packet.c Explicitly include openssl before zlib. Jul 20, 2018
packet.h upstream: ttymodes: switch to sshbuf API; ok djm@ Jul 10, 2018
pathnames.h upstream: Add experimental support for PQC XMSS keys (Extended Feb 26, 2018
pkcs11.h - deraadt@cvs.openbsd.org 2013/11/26 19:15:09 Dec 4, 2013
platform-misc.c Split platform_sys_dir_uid into its own file Aug 25, 2017
platform-pledge.c Support Illumos/Solaris fine-grained privileges Jan 8, 2016
platform-tracing.c Use ptrace(PT_DENY_ATTACH, ..) on OS X. Oct 31, 2016
platform.c upstream: remove legacy key emulation layer; ok djm@ Jul 12, 2018
platform.h Remove obsolete CVS $Id from source files. Aug 17, 2016
poly1305.c - (dtucker) [poly1305.c] Wrap stdlib.h include inside #ifdef HAVE_ST… Jan 17, 2014
poly1305.h - djm@cvs.openbsd.org 2014/05/02 03:27:54 May 15, 2014
progressmeter.c upstream commit Jul 8, 2016
progressmeter.h upstream commit Jan 14, 2015
readconf.c upstream: add CASignatureAlgorithms option for the client, allowing Sep 20, 2018
readconf.h upstream: add CASignatureAlgorithms option for the client, allowing Sep 20, 2018
readpass.c upstream: Remove support for running ssh(1) setuid and fatal if Jul 19, 2018
rijndael.c upstream commit Mar 23, 2015
rijndael.h - (djm) [rijndael.c rijndael.h] Sync with newly-ressurected versions… May 15, 2014
sandbox-capsicum.c Switch Capsicum header to sys/capsicum.h. Aug 28, 2017
sandbox-darwin.c Add missing monitor.h include. Dec 16, 2016
sandbox-null.c - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c] Jan 17, 2014
sandbox-pledge.c s/SANDBOX_TAME/SANDBOX_PLEDGE/g Oct 14, 2015
sandbox-rlimit.c upstream commit Sep 12, 2016
sandbox-seccomp-filter.c add futex(2) syscall to seccomp sandbox Sep 15, 2018
sandbox-solaris.c drop two more privileges in the Solaris sandbox Jun 9, 2017
sandbox-systrace.c Allow nanosleep in preauth privsep child. Apr 13, 2018
sc25519.c - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c]… Jan 17, 2014
sc25519.h - markus@cvs.openbsd.org 2013/12/09 11:03:45 Dec 18, 2013
scp.1 upstream: reorder CASignatureAlgorithms, and add them to the Sep 20, 2018
scp.c upstream: Apply umask to all incoming files and directories not Jun 4, 2018
servconf.c upstream: actually make CASignatureAlgorithms available as a config Sep 20, 2018
servconf.h upstream: Add sshd_config CASignatureAlgorithms option to allow Sep 20, 2018
serverloop.c upstream: Remove uid checks from low port binds. Now that ssh Jul 31, 2018
serverloop.h upstream commit Sep 12, 2017
session.c upstream: fix indent; Clemens Goessnitzer Jul 26, 2018
session.h upstream commit Sep 12, 2017
sftp-client.c upstream: fix some memory leaks spotted by Coverity via Jakub Jelen Jul 31, 2018
sftp-client.h Prevent name collisions with system glob (bz#2463) Oct 28, 2015
sftp-common.c upstream: Fix warnings caused by user_from_uid() and group_from_gid() Sep 14, 2018
sftp-common.h upstream commit Jan 14, 2015
sftp-glob.c upstream commit Jan 14, 2015
sftp-server-main.c upstream commit Feb 15, 2016
sftp-server.8 upstream commit Dec 11, 2014
sftp-server.c upstream: make UID available as a %-expansion everywhere that the Jun 1, 2018
sftp.1 upstream: reorder CASignatureAlgorithms, and add them to the Sep 20, 2018
sftp.c upstream: Add FALLTHROUGH comments where appropriate. Patch from Sep 9, 2018
sftp.h - dtucker@cvs.openbsd.org 2008/06/13 00:12:02 Jun 13, 2008
smult_curve25519_ref.c - markus@cvs.openbsd.org 2013/11/02 21:59:15 Nov 3, 2013
ssh-add.1 upstream commit Sep 3, 2017
ssh-add.c upstream: Make "ssh-add -q" do what it says on the tin: silence Sep 20, 2018
ssh-agent.1 upstream commit Nov 30, 2016
ssh-agent.c upstream: implement EMFILE mitigation for ssh-agent: remember the May 11, 2018
ssh-dss.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
ssh-ecdsa.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
ssh-ed25519.c upstream commit Apr 21, 2016
ssh-gss.h upstream: kerberos/gssapi fixes for buffer removal Jul 10, 2018
ssh-keygen.1 upstream: fix edit mistake; spotted by jmc@ Sep 12, 2018
ssh-keygen.c upstream: garbage-collect moribund ssh_new_private() API. Sep 14, 2018
ssh-keyscan.1 upstream: move the input format details to -f; remove the output Mar 12, 2018
ssh-keyscan.c upstream: switch config file parsing to getline(3) as this avoids Jun 6, 2018
ssh-keysign.8 upstream commit Feb 17, 2016
ssh-keysign.c upstream: Now that ssh can't be setuid, remove the Jul 31, 2018
ssh-pkcs11-client.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
ssh-pkcs11-helper.8 - schwarze@cvs.openbsd.org 2013/07/16 00:07:52 Jul 18, 2013
ssh-pkcs11-helper.c upstream commit Jan 23, 2018
ssh-pkcs11.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
ssh-pkcs11.h upstream commit Jan 15, 2015
ssh-rsa.c adapt -portable to OpenSSL 1.1x API Sep 13, 2018
ssh-sandbox.h - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c] Jan 17, 2014
ssh-xmss.c Add WITH_XMSS, move to prevent conflicts. Feb 28, 2018
ssh.1 upstream: reorder CASignatureAlgorithms, and add them to the Sep 20, 2018
ssh.c upstream: Treat connections with ProxyJump specified the same as ones Sep 21, 2018
ssh.h upstream: switch config file parsing to getline(3) as this avoids Jun 6, 2018
ssh2.h upstream commit May 19, 2016
ssh_api.c upstream commit Apr 30, 2017
ssh_api.h upstream: lots of typos in comments/docs. Patch from Karsten Weiss Apr 10, 2018
ssh_config upstream commit May 7, 2017
ssh_config.5 upstream: Allow ssh_config ForwardX11Timeout=0 to disable the Sep 21, 2018
sshbuf-getput-basic.c upstream commit Jun 1, 2017
sshbuf-getput-crypto.c upstream commit Jan 12, 2016
sshbuf-misc.c upstream commit May 2, 2016
sshbuf.c upstream: remove legacy buffer API emulation layer; ok djm@ Jul 10, 2018
sshbuf.h upstream: remove legacy buffer API emulation layer; ok djm@ Jul 10, 2018
sshconnect.c upstream: add CASignatureAlgorithms option for the client, allowing Sep 20, 2018
sshconnect.h upstream: Deprecate UsePrivilegedPort now that support for running Jul 19, 2018
sshconnect2.c upstream: second try, deals properly with missing and private-only Sep 14, 2018
sshd.8 upstream: Switch authorized_keys example from ssh-dss to ssh-rsa Jul 26, 2018
sshd.c upstream: when compiled with GSSAPI support, cache supported method Sep 21, 2018
sshd_config upstream: the UseLogin option was removed, so remove it here too. Apr 10, 2018
sshd_config.5 upstream: Add sshd_config CASignatureAlgorithms option to allow Sep 20, 2018
ssherr.c upstream: Improve strictness and control over RSA-SHA2 signature Jul 3, 2018
ssherr.h upstream: Improve strictness and control over RSA-SHA2 signature Jul 3, 2018
sshkey-xmss.c upstream: replace cast with call to sshbuf_mutable_ptr(); ok djm@ Jul 10, 2018
sshkey-xmss.h upstream: Add experimental support for PQC XMSS keys (Extended Feb 26, 2018
sshkey.c Fix openssl-1.1 fallout for --without-openssl. Sep 15, 2018
sshkey.h upstream: garbage-collect moribund ssh_new_private() API. Sep 14, 2018
sshlogin.c upstream: sshd: switch loginmsg to sshbuf API; ok djm@ Jul 10, 2018
sshlogin.h - (djm) [sshlogin.h] Fix prototype merge botch from 2006; bz#2134 Aug 1, 2013
sshpty.c Remove UNICOS support. Feb 15, 2018
sshpty.h upstream commit Nov 29, 2016
sshtty.c - djm@cvs.openbsd.org 2010/01/09 05:04:24 Jan 9, 2010
survey.sh.in - (dtucker) [config.sh.in] Collect oslevel -r too. Feb 15, 2005
ttymodes.c upstream: ttymodes: switch to sshbuf API; ok djm@ Jul 10, 2018
ttymodes.h upstream commit May 1, 2017
uidswap.c upstream: Remove support for running ssh(1) setuid and fatal if Jul 19, 2018
uidswap.h upstream: Remove support for running ssh(1) setuid and fatal if Jul 19, 2018
umac.c upstream: lots of typos in comments/docs. Patch from Karsten Weiss Apr 10, 2018
umac.h - djm@cvs.openbsd.org 2013/07/22 12:20:02 Jul 25, 2013
umac128.c upstream commit Feb 9, 2018
utf8.c upstream: AIX reports the CODESET as "ISO8859-1" in the POSIX locale. Aug 21, 2018
utf8.h Force Turkish locales back to C/POSIX; bz#2643 Dec 12, 2016
uuencode.c upstream commit Apr 29, 2015
uuencode.h - djm@cvs.openbsd.org 2010/08/31 11:54:45 Aug 31, 2010
verify.c - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c]… Jan 17, 2014
version.h upstream: crank version number to 7.8; needed for new compat flag Jul 3, 2018
xmalloc.c upstream commit Jun 1, 2017
xmalloc.h upstream commit Jun 1, 2017
xmss_commons.c upstream: Add $OpenBSD$ markers to xmss files to help keep synced Mar 2, 2018
xmss_commons.h Remove extra XMSS #endif Mar 4, 2018
xmss_fast.c upstream: ssh/xmss: fix build; ok djm@ Mar 23, 2018
xmss_fast.h upstream: Add $OpenBSD$ markers to xmss files to help keep synced Mar 2, 2018
xmss_hash.c upstream: Add $OpenBSD$ markers to xmss files to help keep synced Mar 2, 2018
xmss_hash.h upstream: Add $OpenBSD$ markers to xmss files to help keep synced Mar 2, 2018
xmss_hash_address.c upstream: Add $OpenBSD$ markers to xmss files to help keep synced Mar 2, 2018
xmss_hash_address.h upstream: Add $OpenBSD$ markers to xmss files to help keep synced Mar 2, 2018
xmss_wots.c upstream: lots of typos in comments/docs. Patch from Karsten Weiss Apr 10, 2018
xmss_wots.h upstream: Remove unneeded (local) include. ok markus@ Mar 2, 2018

README

See https://www.openssh.com/releasenotes.html#7.8p1 for the release notes.

Please read https://www.openssh.com/report.html for bug reporting
instructions and note that we do not use Github for bug reporting or
patch/pull-request management.

- A Japanese translation of this document and of the release notes is
- available at https://www.unixuser.org/~haruyama/security/openssh/index.html
- Thanks to HARUYAMA Seigo <haruyama@unixuser.org>

This is the port of OpenBSD's excellent OpenSSH[0] to Linux and other
Unices.

OpenSSH is based on the last free version of Tatu Ylonen's sample
implementation with all patent-encumbered algorithms removed (to
external libraries), all known security bugs fixed, new features
reintroduced and many other clean-ups.  OpenSSH has been created by
Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, Theo de Raadt,
and Dug Song. It has a homepage at https://www.openssh.com/

This port consists of the re-introduction of autoconf support, PAM
support, EGD[1]/PRNGD[2] support and replacements for OpenBSD library
functions that are (regrettably) absent from other unices. This port
has been best tested on AIX, Cygwin, HP-UX, Linux, MacOS/X,
NetBSD, OpenBSD, OpenServer, Solaris and UnixWare.

This version actively tracks changes in the OpenBSD CVS repository.

The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.

OpenSSH depends on Zlib[3], OpenSSL[4], and optionally PAM[5] and
libedit[6]

There is now several mailing lists for this port of OpenSSH. Please
refer to https://www.openssh.com/list.html for details on how to join.

Please send bug reports and patches to the mailing list
openssh-unix-dev@mindrot.org. The list is open to posting by unsubscribed
users.  Code contribution are welcomed, but please follow the OpenBSD
style guidelines[7].

Please refer to the INSTALL document for information on how to install
OpenSSH on your system.

Damien Miller <djm@mindrot.org>

Miscellania -

This version of OpenSSH is based upon code retrieved from the OpenBSD
CVS repository which in turn was based on the last free sample
implementation released by Tatu Ylonen.

References -

[0] https://www.openssh.com/
[1] http://www.lothar.com/tech/crypto/
[2] http://prngd.sourceforge.net/
[3] https://www.zlib.net/
[4] https://www.openssl.org/
[5] https://www.openpam.org
    https://www.kernel.org/pub/linux/libs/pam/
    (PAM also is standard on Solaris and HP-UX 11)
[6] https://thrysoee.dk/editline/ (portable version)
[7] https://man.openbsd.org/style.9