Makefile.am | 19 12 + 7 - 0 !
acss.c | 267 267 + 0 - 0 !
acss.h | 47 47 + 0 - 0 !
atomicio.c | 135 119 + 16 - 0 !
atomicio.h | 22 21 + 1 - 0 !
authfd.c | 292 249 + 43 - 0 !
authfd.h | 28 23 + 5 - 0 !
authfile.c | 875 700 + 175 - 0 !
authfile.h | 13 12 + 1 - 0 !
bufaux.c | 273 180 + 93 - 0 !
bufbn.c | 223 223 + 0 - 0 !
bufec.c | 146 146 + 0 - 0 !
buffer.c | 128 97 + 31 - 0 !
buffer.h | 63 60 + 3 - 0 !
cipher-3des1.c | 23 17 + 6 - 0 !
cipher-acss.c | 91 91 + 0 - 0 !
cipher-bf1.c | 23 16 + 7 - 0 !
cipher-ctr.c | 36 19 + 17 - 0 !
cipher.c | 233 165 + 68 - 0 !
cipher.h | 15 9 + 6 - 0 !
cleanup.c | 32 32 + 0 - 0 !
configure.ac | 54 52 + 2 - 0 !
defines.h | 807 807 + 0 - 0 !
fatal.c | 45 45 + 0 - 0 !
includes.h | 175 175 + 0 - 0 !
kex.h | 78 63 + 15 - 0 !
key.c | 2170 2137 + 33 - 0 !
key.h | 102 93 + 9 - 0 !
log.c | 204 108 + 96 - 0 !
log.h | 29 14 + 15 - 0 !
misc.c | 1018 1018 + 0 - 0 !
misc.h | 106 106 + 0 - 0 !
rijndael.c | 142 72 + 70 - 0 !
rijndael.h | 2 2 + 0 - 0 !
rsa.c | 151 151 + 0 - 0 !
rsa.h | 26 26 + 0 - 0 !
ssh.h | 99 99 + 0 - 0 !
ssh2.h | 182 182 + 0 - 0 !
xmalloc.c | 54 48 + 6 - 0 !
xmalloc.h | 13 7 + 6 - 0 !
40 files changed, 7710 insertions(+), 731 deletions(-)

 update openssh embedded code
 The upstream source embeds code from OpenSSH,
 this embedded code is updated against OpenSSH-6.0p1
 code; then ECDSA keys can be supported.
 Basically files containing the used code are
 brought in from the OpenSSH-6.0p1 and then
 the unused code is commented out by hand.
 Ideally the involved code may be invoked through
 a share library, but unfortunately such a library
 does not exist.

log.c | 2 1 + 1 - 0 !
log.h | 7 6 + 1 - 0 !
2 files changed, 7 insertions(+), 2 deletions(-)

 render the function `error' unambiguous
	The function `error' defined in `log.h' is unambigously renamed
	to work around an ambiguity at linking stage with the function
	`error' defined in `error.h'.

authfd.c | 54 48 + 6 - 0 !
authfd.h | 6 4 + 2 - 0 !
2 files changed, 52 insertions(+), 8 deletions(-)

 adapt the updated embedded openssh code to the upstream code
 The function ssh_get_authentication_connection[_authsocket](const char *authsocket)
 is reimplemented with respect to the embedded openssh code.

pam_ssh.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 update the upstream code with respect to updated openssh embedded code

pam_ssh.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 fix missing syslog include

pam_ssh.c | 566 256 + 310 - 0 !
1 file changed, 256 insertions(+), 310 deletions(-)

 safe spawn of the ssh-agent
 The origins of this patch is unknown as of this writing.
 If you made this patch, please email the maintainer of
 the Debian package so proper credit can be given.
 Upgraded and slightly modified by Jerome Benoit <calculus@rezozer.net>.

pam_ssh.c | 35 32 + 3 - 0 !
1 file changed, 32 insertions(+), 3 deletions(-)

 inexistent configuration directory handling
 Short cut the session phase if no configuration directory exist:
 it is meant to prevent meangningless ssh-agent launches for users
 that obviously never use ssh.

pam_ssh.c | 31 23 + 8 - 0 !
1 file changed, 23 insertions(+), 8 deletions(-)

 set ssh-agent real gid to ssh group gid
 If ssh-agent is installed setgid wrt to the ssh group,
 as for Debian distributions, setting its real GID to
 the ssh GID allows to pass (and to honour) environment
 variables otherwise discarded by glibc, as TMPDIR.
 For Debian distributions, read subsection entitled
 `Setgid ssh-agent and environment variables' in
 /usr/share/doc/openssh-server/README.Debian .

pam_ssh.c | 14 12 + 2 - 0 !
1 file changed, 12 insertions(+), 2 deletions(-)

 ssh-agent tmpdir honouring

pam_ssh.c | 5 2 + 3 - 0 !
1 file changed, 2 insertions(+), 3 deletions(-)

 let ssh-agent to determine the apropriate shell style
 This was rendered possible by making the ssh-agent possessing
 the user UID.

pam_get_pass.c | 4 1 + 3 - 0 !
pam_get_pass.h | 1 1 + 0 - 0 !
pam_ssh.c | 366 244 + 122 - 0 !
3 files changed, 246 insertions(+), 125 deletions(-)

 try_first_password implementation and specific login keys
 Implement the intended semantics of try_first_password as described in
 in the manual page (and PAM).
 Ask for SSH passphrase even if user does not exist.
 Look for SSH keys in  $HOME/.ssh/login-keys.d/, given that SSH keys
 with .disabled or .frozen as suffix are ignored.
 Original code by Jens Peter Secher <jps@debian.org>
 upgraded and slightly improved by Jerome Benoit <calculus@rezozer.net>.

pam_ssh.c | 36 20 + 16 - 0 !
1 file changed, 20 insertions(+), 16 deletions(-)

 handle session with no controlling tty
 Let the PAM session handle situations where there is no controlling tty
 by using the PID to construct the sessoin file name.

pam_ssh.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 add ecdsa key support

pam_ssh.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 fix faulty return in pam_sm_{open,close}_session()
 Returns PAM_SESSION_ERR instead of PAM_AUTH_ERR in pam_sm_{open,close}_session()

acinclude.m4 | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 upstream fixes for the autotools machinery

Makefile.am | 2 1 + 1 - 0 !
configure.ac | 1 1 + 0 - 0 !
2 files changed, 2 insertions(+), 1 deletion(-)

 debianization
	Meant to maintain a minimal debian/rules, to fix warnings,
	to address Debian specific stuff in general.