dilim/openssh-portable
1
0
Fork 0
mirror of https://github.com/openssh/openssh-portable.git synced 2026-06-24 08:48:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 8058c5bdb5 upstream: mention a caveat regarding GSSAPIStrictAcceptorCheck in master anongit/master djm@openbsd.org 2026-06-24 06:55:12 +00:00
  • 87e21b16d0 upstream: add some logging to make debugging interactive/bulk djm@openbsd.org 2026-06-24 06:53:57 +00:00
  • 162cb8721c upstream: add a missing channels type for bulk/interactive djm@openbsd.org 2026-06-24 06:53:11 +00:00
  • 5dac5a9252 Set build options in /etc/mk.conf once at startup. github/master github-selfhosted/master Darren Tucker 2026-06-24 12:19:53 +10:00
  • 512bfedf61 upstream: Check return values from malloc. dtucker@openbsd.org 2026-06-22 12:28:48 +00:00
  • e683097d90 upstream: Check return value of sscanf. dtucker@openbsd.org 2026-06-22 12:08:33 +00:00
  • b88165a06c upstream: annotate tm_wday = -1 with /* sentinel for error */ per tb@openbsd.org 2026-06-21 19:23:56 +00:00
  • 0d08d384a6 upstream: remove cipher_set_keyiv() as nothing uses it from djm@openbsd.org 2026-06-19 05:26:04 +00:00
  • 10715f25c4 Output Actions allowlist for uploading to Github. Darren Tucker 2026-06-22 21:28:58 +10:00
  • 01404fa5da Add script to lookup and pin Actions to hashes. Darren Tucker 2026-06-22 19:00:15 +10:00
  • faa646a9bf ci: pin upstream.yml actions to full commit SHAs El Mehdi Abenhazou 2026-06-03 02:02:31 +01:00
  • 983096a7b2 ci: pin GitHub Actions to full commit SHAs El Mehdi Abenhazou 2026-06-03 02:02:30 +01:00
  • 0d156d385e upstream: Factor out hex2bin into a shared helper function. dtucker@openbsd.org 2026-06-16 22:27:10 +00:00
  • b9d134a0b1 upstream: Use awk instead of cut to help -portable. dtucker@openbsd.org 2026-06-16 10:58:42 +00:00
  • 60978ddb08 upstream: Include stdarg.h for va_list (needed for xmalloc.h). dtucker@openbsd.org 2026-06-16 09:00:47 +00:00
  • 3de49e0d28 upstream: Include stdlib.h for malloc/free and sort headers. dtucker@openbsd.org 2026-06-16 08:15:35 +00:00
  • 61ca39c119 Remove check for OpenSSL w/out AES192/256. Darren Tucker 2026-06-16 18:16:32 +10:00
  • f433c09931 upstream: use different strategy to check whether keys are present or djm@openbsd.org 2026-06-15 06:36:52 +00:00
  • 860ed04158 upstream: avoid use of paste(1); helps portable djm@openbsd.org 2026-06-15 06:24:20 +00:00
  • f5f02aafe8 another place mldsa-ed25519 keys need deactivation Damien Miller 2026-06-15 12:53:53 +10:00
  • 1d6064d25f upstream: fix multiple problems with testing hostkey types that are not djm@openbsd.org 2026-06-15 01:55:44 +00:00
  • ebdaacf490 bring back mlkem768x25519-sha256 stubs Damien Miller 2026-06-15 11:43:52 +10:00
  • b35a6a153f don't build ML-KEM/ML-DSA code with <C99 compilers Damien Miller 2026-06-14 20:32:12 +10:00
  • 1c46384db9 include includes.h Damien Miller 2026-06-14 20:24:25 +10:00
  • ea505c83ec provide a htobe32() replacement Damien Miller 2026-06-14 18:56:31 +10:00
  • 8e0cb47177 hook up new regress/unittests/crypto Damien Miller 2026-06-14 15:02:24 +10:00
  • 5a474d1bf3 upstream: unit and regression tests for composite PQ ML-DSA44/Ed25519 djm@openbsd.org 2026-06-14 04:08:05 +00:00
  • db1bad146f upstream: make crypto_sign_ed25519_keypair_from_seed non-static. djm@openbsd.org 2026-06-14 04:16:19 +00:00
  • 81ca1451bf upstream: Add experimental support for a composite post-quantum djm@openbsd.org 2026-06-14 03:59:34 +00:00
  • b7e552138b upstream: when replying to a "query" SSH_AGENTC_EXTENSION request, djm@openbsd.org 2026-06-13 00:37:13 +00:00
  • 5af8f3f290 upstream: Make crypto_sign_ed25519_keypair_from_seed() dtucker@openbsd.org 2026-06-07 08:50:17 +00:00
  • 5ebfdf3afa upstream: Import updated moduli dtucker@openbsd.org 2026-06-07 08:21:07 +00:00
  • 47af21eb8d sync fmt_scaled.c with OpenBSD upstream Damien Miller 2026-06-07 09:56:41 +10:00
  • e9916c44c1 upstream: pass >9 commandline arguments to the internal-sftp server, djm@openbsd.org 2026-06-05 08:53:07 +00:00
  • 70d7044a96 upstream: avoid truncation of pathnames headed to lstat() for djm@openbsd.org 2026-06-05 08:48:43 +00:00
  • 37bf1431aa upstream: rename a variable to be more accurate djm@openbsd.org 2026-06-05 06:51:02 +00:00
  • 7763a38bc2 upstream: add signature malleability and pubkey validity checks to djm@openbsd.org 2026-06-04 04:26:51 +00:00
  • 65c6ac0a82 upstream: refer to RFC9987 instead of I-D djm@openbsd.org 2026-06-02 06:18:27 +00:00
  • c9ebebb22f Reformat setup_ci command line. Darren Tucker 2026-06-02 21:57:42 +10:00
  • 60343e46d5 Fix search for awk formatter. Darren Tucker 2026-06-02 22:20:44 +10:00
  • 7e5590cf8f Replace shell-level timeout with dedicated command. Darren Tucker 2026-06-02 18:49:02 +10:00
  • 41bb8c1823 Add a single retry to VM package install steps. Darren Tucker 2026-06-02 18:10:25 +10:00
  • 14d88d4da7 Add includes.h for compat functions. Darren Tucker 2026-06-02 17:44:12 +10:00
  • e8c12cc085 setup_ci.sh: add timeout and allow one retry Darren Tucker 2026-06-01 20:43:31 +10:00
  • de97e5a44c upstream: differentiate between execution failures and subsystem not djm@openbsd.org 2026-06-01 08:27:28 +00:00
  • 51db029b53 Don't install shim for AWK=awk. Darren Tucker 2026-06-01 18:26:31 +10:00
  • 2afcdf7b3e Pass awk detected by configure to regress tests. Darren Tucker 2026-06-01 17:40:03 +10:00
  • 7b776066bc Update LibreSSL test 4.3.1->4.3.2. Darren Tucker 2026-06-01 17:39:40 +10:00
  • 684d26a3c4 upstream: sk-usbhid: skip unsupported key types in read_rks() djm@openbsd.org 2026-06-01 05:49:20 +00:00
  • de24573efc upstream: Actually set pollfd.events correctly for socket type djm@openbsd.org 2026-06-01 05:40:13 +00:00
  • 58b9381e0b upstream: handle compiled-time unsupported options in servconf.h djm@openbsd.org 2026-05-31 13:12:07 +00:00
  • ea91c7a1a9 depend Damien Miller 2026-05-31 22:03:56 +10:00
  • 3bc4ac4394 upstream: unit test for new servconf.[ch] code, including a basic djm@openbsd.org 2026-05-31 11:39:44 +00:00
  • f2b815e42d upstream: the new configuration dump code emits configuration djm@openbsd.org 2026-05-31 11:31:57 +00:00
  • 633a4c1a24 upstream: flesh out match_pattern() tests, including a new djm@openbsd.org 2026-05-31 04:20:58 +00:00
  • bebc855fdb upstream: big refactor of sshd config management code. djm@openbsd.org 2026-05-31 11:30:50 +00:00
  • a1dd1c8068 upstream: avoid strlen(NULL) crash if an X11 channel was created before djm@openbsd.org 2026-05-31 06:14:42 +00:00
  • df18979e11 upstream: DNS0x20[1] can randomise the case of domain names returned by djm@openbsd.org 2026-05-31 05:55:21 +00:00
  • 5a5e47740b upstream: disallow use of the copy-data extension to read and write djm@openbsd.org 2026-05-31 04:59:51 +00:00
  • 073faa6bec upstream: Fix two separate one-byte out-of-cound reads djm@openbsd.org 2026-05-31 04:51:45 +00:00
  • 8dfe7ed6e2 upstream: DisableForwarding=yes didn't override PermitTunnel=yes djm@openbsd.org 2026-05-31 04:47:29 +00:00
  • 72b05ecd14 upstream: make the transport protocol stricter by disconnecting if djm@openbsd.org 2026-05-31 04:44:38 +00:00
  • 26cde4cfc5 upstream: stricter validation of the transport state passed from djm@openbsd.org 2026-05-31 04:37:56 +00:00
  • 10f66b2af9 upstream: Enforce a maximum size for usernames in agent key use djm@openbsd.org 2026-05-31 04:31:04 +00:00
  • 1e82d2cfcf upstream: fix client use-after-free on error path if cipher_init() djm@openbsd.org 2026-05-31 04:24:39 +00:00
  • 9d4c0b31f1 upstream: Replace the old recursive match_pattern() with an djm@openbsd.org 2026-05-31 04:19:16 +00:00
  • 7ab700f170 Make failure to set SECCOMP or NO_NEW_PRIVS fatal Damien Miller 2026-05-30 23:24:01 +10:00
  • 4f4aeee6ed sandbox-seccomp-filter: remove duplicate SC_ALLOW(__NR_clock_gettime64) Manfred Kaiser 2026-05-24 09:53:42 +02:00
  • 1690822136 upstream: Use the new RELINK feature in bsd.prog.mk to build the deraadt@openbsd.org 2026-05-27 13:57:26 +00:00
  • 3bee4a1a26 upstream: ssh: use sentinel idiom for timegm(3) and mktime(3) tb@openbsd.org 2026-05-27 13:54:15 +00:00
  • 26a8c13e61 upstream: ssh-agent: add -V to usage() tb@openbsd.org 2026-05-27 03:28:07 +00:00
  • 3a05a07e78 upstream: use "ssh-agent -V" to test the binary is functional after djm@openbsd.org 2026-05-27 03:05:21 +00:00
  • 7fbe3e440e upstream: add a -V flag to print the version, but mostly as a way djm@openbsd.org 2026-05-27 03:04:30 +00:00
  • f44f124a23 upstream: Test all mutually supported algorithms, dtucker@openbsd.org 2026-05-27 23:04:36 +00:00
  • 0cadf7e0e8 upstream: Dropbear recently added a -Q option; dtucker@openbsd.org 2026-05-12 13:02:40 +00:00
  • 0e2db7bc01 upstream: Fix skip message. dtucker@openbsd.org 2026-05-04 10:57:24 +00:00
  • 0a561f9067 Run hardenedmalloc test on ubuntu-latest. Darren Tucker 2026-05-26 10:48:19 +10:00
  • 3468ac7296 Hardenedmalloc needs -std=c23 so build with clang. Darren Tucker 2026-05-26 09:33:51 +10:00
  • 42b213c66b Fix IPTOS_DSCP_VA fallback Michael Forney 2026-05-22 03:02:00 +10:00
  • 66847768ff Add OpenBSD 7.9 test VM. Darren Tucker 2026-05-21 18:39:54 +10:00
  • d0d7981cf5 Another shell portability fix for Solaris. Darren Tucker 2026-05-21 18:38:47 +10:00
  • 498372545f Use backticks for shell portability w/ Solaris. Darren Tucker 2026-05-21 18:25:50 +10:00
  • 18b9db789e Add interop tests against Dropbear >= 2020.79 Darren Tucker 2026-05-19 18:37:26 +10:00
  • a5a1b7e753 upstream: mention that compression could potentially leak djm@openbsd.org 2026-05-21 04:04:57 +00:00
  • e5c9cf9ac7 upstream: mention usefulness of request type allow/denylisting for djm@openbsd.org 2026-05-21 02:50:59 +00:00
  • 62fce76130 upstream: chacha: avoid -Wunterminated-string-initialization tb@openbsd.org 2026-05-18 04:14:57 +00:00
  • 33392024f4 upstream: avoid validating bad cipher or mac lists in config files djm@openbsd.org 2026-05-13 05:58:58 +00:00
  • f945f1256d upstream: fix hard-to-reach NULL deref during pubkey auth github/V_10_3 github-selfhosted/V_10_3 anongit/V_10_3 V_10_3 djm@openbsd.org 2026-05-13 05:11:02 +00:00
  • cf6c0b3b94 upstream: fix hard-to-reach NULL deref during pubkey auth djm@openbsd.org 2026-05-13 05:11:02 +00:00
  • 55df196e39 Retire OmniOS r151046 & r151054 test configs. Darren Tucker 2026-05-12 19:53:54 +10:00
  • 6d9116d4df Handle missing packages for FreeBSD 12.4. Darren Tucker 2026-05-12 19:43:48 +10:00
  • 99f1e0c2f9 OmniOS: check for gcc before installing. Darren Tucker 2026-05-12 18:50:20 +10:00
  • ded80eb0ff Add VM test versions for : OmniOS and FreeBSD. Darren Tucker 2026-05-12 18:05:24 +10:00
  • 67f31cefd8 update getrrsetbyname.c from OpenBSD upstream Damien Miller 2026-05-12 14:36:27 +10:00
  • 56e73cd804 ci: avoid rsync dependency in NetBSD VM jobs Darafei Praliaskouski 2026-05-09 19:50:31 +04:00
  • ac4a41265a upstream: unbreak; spotted by Darren's test army djm@openbsd.org 2026-05-05 06:21:14 +00:00
  • 3754f2edd4 upstream: classify dynamic-tcpip channels as bulk, not interactive; djm@openbsd.org 2026-05-05 05:34:27 +00:00
  • 4ea08a0353 Improve NetBSD PAM tests. Darren Tucker 2026-05-04 23:33:57 +10:00
  • 504d01d81f Improve FreeBSD PAM tests. Darren Tucker 2026-05-04 23:15:05 +10:00
  • a05de3f67f Update to FreeBSD 14.4, add 15.0. Darren Tucker 2026-05-04 22:57:58 +10:00