freebsd-dev/crypto/openssh
Ed Maste fc3c19a9fc sshd: address capsicum issues
* Add a wrapper to proxy login_getpwclass(3) as it is not allowed in
  capability mode.
* Cache timezone data via caph_cache_tzdata() as we cannot access the
  timezone file.
* Reverse resolve hostname before entering capability mode.

PR:		231172
Submitted by:	naito.yuichiro@gmail.com
Reviewed by:	cem, des
Approved by:	re (rgrimes)
MFC after:	3 weeks
Differential Revision:	https://reviews.freebsd.org/D17128
2018-10-06 21:32:55 +00:00
..
contrib Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
openbsd-compat openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
regress openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
.depend Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
.gitignore Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
.skipped-commit-ids Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
aclocal.m4 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
addrmatch.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
atomicio.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
atomicio.h
audit-bsm.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
audit-linux.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
audit.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
audit.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
auth2-chall.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2-gss.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2-hostbased.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2-kbdint.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2-none.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2-passwd.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2-pubkey.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth2.c sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
auth-bsdauth.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-krb5.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-options.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-options.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-pam.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
auth-pam.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
auth-passwd.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-rhosts.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-shadow.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-sia.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth-sia.h
auth-skey.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
auth.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
authfd.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
authfd.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
authfile.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
authfile.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
bitmap.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
bitmap.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
blacklist_client.h Refine and update blacklist support in sshd 2017-05-12 15:20:12 +00:00
blacklist.c Refine and update blacklist support in sshd 2017-05-12 15:20:12 +00:00
buildpkg.sh.in Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
canohost.c Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
canohost.h Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
chacha.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
chacha.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
ChangeLog Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
channels.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
channels.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
cipher-aes.c Upgrade to 6.3p1. 2013-09-21 21:36:09 +00:00
cipher-aesctr.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
cipher-aesctr.h Upgrade to OpenSSH 6.7p1, retaining libwrap support (which has been removed 2016-01-19 16:18:26 +00:00
cipher-chachapoly.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
cipher-chachapoly.h Upgrade to OpenSSH 6.7p1, retaining libwrap support (which has been removed 2016-01-19 16:18:26 +00:00
cipher-ctr.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
cipher.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
cipher.h openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
cleanup.c
clientloop.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
clientloop.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
compat.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
compat.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
config.guess Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
config.h openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
config.sub Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
configure.ac openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
crc32.c
crc32.h
CREDITS Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
crypto_api.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
defines.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
dh.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
dh.h openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
digest-libc.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
digest-openssl.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
digest.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
dispatch.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
dispatch.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
dns.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
dns.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
ed25519.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
entropy.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
entropy.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
fatal.c
fe25519.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
fe25519.h Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
fixalgorithms Upgrade to 6.3p1. 2013-09-21 21:36:09 +00:00
fixpaths
freebsd-configure.sh Upgrade to OpenSSH 7.5p1. 2017-08-04 12:57:24 +00:00
freebsd-namespace.sh Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
freebsd-post-merge.sh Update the pre- and post-merge scripts to work correctly after the recent 2016-01-19 12:38:53 +00:00
freebsd-pre-merge.sh Use 'svn list -R' instead of find, and recognize comments in shell scripts 2016-01-19 14:25:22 +00:00
FREEBSD-upgrade Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
FREEBSD-vendor
ge25519_base.data Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
ge25519.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
ge25519.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
groupaccess.c Upgrade to OpenSSH 6.9p1. 2016-01-19 18:55:44 +00:00
groupaccess.h
gss-genr.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
gss-serv-krb5.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
gss-serv.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
hash.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
hmac.c Upgrade to OpenSSH 6.9p1. 2016-01-19 18:55:44 +00:00
hmac.h Upgrade to OpenSSH 6.7p1, retaining libwrap support (which has been removed 2016-01-19 16:18:26 +00:00
hostfile.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
hostfile.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
includes.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
INSTALL Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
install-sh Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
kex.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
kex.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
kexc25519.c Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
kexc25519c.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
kexc25519s.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
kexdh.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
kexdhc.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
kexdhs.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
kexecdh.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
kexecdhc.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
kexecdhs.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
kexgex.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
kexgexc.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
kexgexs.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
krb5_config.h Unbreak the WITHOUT_KERBEROS build and try to reduce the odds of a 2013-09-23 20:35:54 +00:00
krl.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
krl.h Upgrade to OpenSSH 7.2p2. 2016-03-11 00:15:29 +00:00
LICENCE Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
log.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
log.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
loginrec.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
loginrec.h
logintest.c
mac.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
mac.h Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
Makefile.in Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
match.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
match.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
md5crypt.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
md5crypt.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
mdoc2man.awk Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
misc.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
misc.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
mkinstalldirs Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
moduli Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
moduli.5 Now that we have mandoc, we can leave $Mdocdate$ tags as-is. Unfortunately, 2015-11-11 13:23:07 +00:00
moduli.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
monitor_fdpass.c Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
monitor_fdpass.h
monitor_wrap.c sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
monitor_wrap.h sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
monitor.c sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
monitor.h sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
msg.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
msg.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
mux.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
myproposal.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
nchan2.ms Pull in all the OpenSSH bits that we'd previously left out because we 2013-09-21 22:24:10 +00:00
nchan.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
nchan.ms Pull in all the OpenSSH bits that we'd previously left out because we 2013-09-21 22:24:10 +00:00
opacket.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
opacket.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
openssh.xml.in Pull in all the OpenSSH bits that we'd previously left out because we 2013-09-21 22:24:10 +00:00
opensshd.init.in Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
OVERVIEW Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
packet.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
packet.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
pathnames.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
pkcs11.h Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
platform-misc.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
platform-pledge.c Upgrade to OpenSSH 7.2p2. 2016-03-11 00:15:29 +00:00
platform-tracing.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
platform.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
platform.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
poly1305.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
poly1305.h Upgrade to OpenSSH 6.7p1, retaining libwrap support (which has been removed 2016-01-19 16:18:26 +00:00
progressmeter.c Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
progressmeter.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
PROTOCOL Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
PROTOCOL.agent Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
PROTOCOL.certkeys Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
PROTOCOL.chacha20poly1305 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
PROTOCOL.key Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
PROTOCOL.krl Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
PROTOCOL.mux Upgrade to OpenSSH 7.0p1. 2016-01-20 22:57:10 +00:00
readconf.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
readconf.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
README Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
README.dns
README.platform Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
README.privsep Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
README.tun
readpass.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
rijndael.c Upgrade to OpenSSH 6.9p1. 2016-01-19 18:55:44 +00:00
rijndael.h Upgrade to OpenSSH 6.7p1, retaining libwrap support (which has been removed 2016-01-19 16:18:26 +00:00
sandbox-capsicum.c sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
sandbox-darwin.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
sandbox-null.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
sandbox-pledge.c Upgrade to OpenSSH 7.2p2. 2016-03-11 00:15:29 +00:00
sandbox-rlimit.c Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
sandbox-seccomp-filter.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sandbox-solaris.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
sandbox-systrace.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sc25519.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
sc25519.h Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
scp.1 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
scp.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
servconf.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
servconf.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
serverloop.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
serverloop.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
session.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
session.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
sftp-client.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sftp-client.h Upgrade to OpenSSH 7.2p2. 2016-03-11 00:15:29 +00:00
sftp-common.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
sftp-common.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
sftp-glob.c Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
sftp-server-main.c Upgrade to OpenSSH 7.2p2. 2016-03-11 00:15:29 +00:00
sftp-server.8 Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
sftp-server.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sftp.1 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sftp.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sftp.h
smult_curve25519_ref.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
ssh2.h Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
ssh_api.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
ssh_api.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh_config Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh_config.5 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh_namespace.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh-add.1 Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
ssh-add.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
ssh-agent.1 Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
ssh-agent.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh-dss.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
ssh-ecdsa.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
ssh-ed25519.c Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
ssh-gss.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh-keygen.1 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh-keygen.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
ssh-keyscan.1 Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
ssh-keyscan.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh-keysign.8 Upgrade to OpenSSH 7.2p2. 2016-03-11 00:15:29 +00:00
ssh-keysign.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh-pkcs11-client.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
ssh-pkcs11-helper.8 Now that we have mandoc, we can leave $Mdocdate$ tags as-is. Unfortunately, 2015-11-11 13:23:07 +00:00
ssh-pkcs11-helper.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
ssh-pkcs11.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
ssh-pkcs11.h Upgrade to OpenSSH 6.8p1. 2016-01-19 18:28:23 +00:00
ssh-rsa.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
ssh-sandbox.h Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
ssh-xmss.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
ssh.1 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssh.c openssh: rename local macro to avoid OpenSSL 1.1.1 conflict 2018-09-19 20:52:47 +00:00
ssh.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshbuf-getput-basic.c sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
sshbuf-getput-crypto.c Upgrade to OpenSSH 7.1p2. 2016-01-21 11:54:34 +00:00
sshbuf-misc.c Upgrade to OpenSSH 7.3p1. 2017-03-02 00:11:32 +00:00
sshbuf.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshbuf.h sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
sshconnect2.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshconnect.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshconnect.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshd_config Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshd_config.5 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshd.8 Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshd.c sshd: address capsicum issues 2018-10-06 21:32:55 +00:00
ssherr.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ssherr.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshkey-xmss.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshkey-xmss.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
sshkey.c openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
sshkey.h openssh: cherry-pick OpenSSL 1.1.1 compatibility 2018-10-06 14:38:34 +00:00
sshlogin.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
sshlogin.h Upgrade to 6.3p1. 2013-09-21 21:36:09 +00:00
sshpty.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
sshpty.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
sshtty.c
survey.sh.in Pull in all the OpenSSH bits that we'd previously left out because we 2013-09-21 22:24:10 +00:00
TODO Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ttymodes.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
ttymodes.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
uidswap.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
uidswap.h Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
umac128.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
umac.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
umac.h Upgrade to 6.3p1. 2013-09-21 21:36:09 +00:00
utf8.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
utf8.h Upgrade to OpenSSH 7.4p1. 2017-03-06 01:37:05 +00:00
uuencode.c Upgrade to OpenSSH 6.9p1. 2016-01-19 18:55:44 +00:00
uuencode.h
verify.c Upgrade to OpenSSH 6.5p1. 2014-01-31 13:12:02 +00:00
version.h openssh: rename local macro to avoid OpenSSL 1.1.1 conflict 2018-09-19 20:52:47 +00:00
xmalloc.c Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
xmalloc.h Upgrade to OpenSSH 7.6p1. This will be followed shortly by 7.7p1. 2018-05-08 23:13:11 +00:00
xmss_commons.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_commons.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_fast.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_fast.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_hash_address.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_hash_address.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_hash.c Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_hash.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00
xmss_wots.c Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
xmss_wots.h Upgrade to OpenSSH 7.7p1. 2018-05-11 13:22:43 +00:00

See https://www.openssh.com/releasenotes.html#7.8p1 for the release notes.

Please read https://www.openssh.com/report.html for bug reporting
instructions and note that we do not use Github for bug reporting or
patch/pull-request management.

- A Japanese translation of this document and of the release notes is
- available at https://www.unixuser.org/~haruyama/security/openssh/index.html
- Thanks to HARUYAMA Seigo <haruyama@unixuser.org>

This is the port of OpenBSD's excellent OpenSSH[0] to Linux and other
Unices.

OpenSSH is based on the last free version of Tatu Ylonen's sample
implementation with all patent-encumbered algorithms removed (to
external libraries), all known security bugs fixed, new features
reintroduced and many other clean-ups.  OpenSSH has been created by
Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, Theo de Raadt,
and Dug Song. It has a homepage at https://www.openssh.com/

This port consists of the re-introduction of autoconf support, PAM
support, EGD[1]/PRNGD[2] support and replacements for OpenBSD library
functions that are (regrettably) absent from other unices. This port
has been best tested on AIX, Cygwin, HP-UX, Linux, MacOS/X,
NetBSD, OpenBSD, OpenServer, Solaris and UnixWare.

This version actively tracks changes in the OpenBSD CVS repository.

The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.

OpenSSH depends on Zlib[3], OpenSSL[4], and optionally PAM[5] and
libedit[6]

There is now several mailing lists for this port of OpenSSH. Please
refer to https://www.openssh.com/list.html for details on how to join.

Please send bug reports and patches to the mailing list
openssh-unix-dev@mindrot.org. The list is open to posting by unsubscribed
users.  Code contribution are welcomed, but please follow the OpenBSD
style guidelines[7].

Please refer to the INSTALL document for information on how to install
OpenSSH on your system.

Damien Miller <djm@mindrot.org>

Miscellania -

This version of OpenSSH is based upon code retrieved from the OpenBSD
CVS repository which in turn was based on the last free sample
implementation released by Tatu Ylonen.

References -

[0] https://www.openssh.com/
[1] http://www.lothar.com/tech/crypto/
[2] http://prngd.sourceforge.net/
[3] https://www.zlib.net/
[4] https://www.openssl.org/
[5] https://www.openpam.org
    https://www.kernel.org/pub/linux/libs/pam/
    (PAM also is standard on Solaris and HP-UX 11)
[6] https://thrysoee.dk/editline/ (portable version)
[7] https://man.openbsd.org/style.9