localoptions.h | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 custom options (overriding those defined in default_options.h)

Cf. upstream's INSTALL file.

cli-auth.c | 3 3 + 0 - 0 !
cli-authinteract.c | 1 1 + 0 - 0 !
cli-authpasswd.c | 2 1 + 1 - 0 !
cli-authpubkey.c | 1 1 + 0 - 0 !
cli-runopts.c | 7 7 + 0 - 0 !
cli-session.c | 1 1 + 0 - 0 !
dbclient.1 | 20 19 + 1 - 0 !
runopts.h | 1 1 + 0 - 0 !
session.h | 1 1 + 0 - 0 !
9 files changed, 35 insertions(+), 2 deletions(-)

 added option to disable trivial auth methods

* added option to disable trivial auth methods

* rename argument to match with other ssh clients

* fixed trivial auth detection for pubkeys

cli-session.c | 11 11 + 0 - 0 !
common-algo.c | 6 6 + 0 - 0 !
common-kex.c | 26 25 + 1 - 0 !
kex.h | 3 3 + 0 - 0 !
process-packet.c | 34 19 + 15 - 0 !
ssh.h | 4 4 + 0 - 0 !
svr-session.c | 3 3 + 0 - 0 !
7 files changed, 71 insertions(+), 16 deletions(-)

 implement strict kex mode

As specified by OpenSSH with kex-strict-c-v00@openssh.com and
kex-strict-s-v00@openssh.com.

svr-tcpfwd.c | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 src: svr-tcpfwd: fix noremotetcp behavior

If noremotetcp is set, we should still reply with
send_msg_request_failed. This matches the behavior
of !DROPBEAR_SVR_REMOTETCPFWD.

We were seeing keepalive packets being ignored when
the "-k" option was used.