summaryrefslogtreecommitdiff
path: root/ChangeLog
diff options
context:
space:
mode:
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog9146
1 files changed, 9146 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
new file mode 100644
index 000000000..ed0502115
--- /dev/null
+++ b/ChangeLog
@@ -0,0 +1,9146 @@
1commit 1dc8d93ce69d6565747eb44446ed117187621b26
2Author: deraadt@openbsd.org <deraadt@openbsd.org>
3Date: Thu Aug 6 14:53:21 2015 +0000
4
5 upstream commit
6
7 add prohibit-password as a synonymn for without-password,
8 since the without-password is causing too many questions. Harden it to ban
9 all but pubkey, hostbased, and GSSAPI auth (when the latter is enabled) from
10 djm, ok markus
11
12 Upstream-ID: d53317d7b28942153e6236d3fd6e12ceb482db7a
13
14commit 90a95a4745a531b62b81ce3b025e892bdc434de5
15Author: Damien Miller <djm@mindrot.org>
16Date: Tue Aug 11 13:53:41 2015 +1000
17
18 update version in README
19
20commit 318c37743534b58124f1bab37a8a0087a3a9bd2f
21Author: Damien Miller <djm@mindrot.org>
22Date: Tue Aug 11 13:53:09 2015 +1000
23
24 update versions in *.spec
25
26commit 5e75f5198769056089fb06c4d738ab0e5abc66f7
27Author: Damien Miller <djm@mindrot.org>
28Date: Tue Aug 11 13:34:12 2015 +1000
29
30 set sshpam_ctxt to NULL after free
31
32 Avoids use-after-free in monitor when privsep child is compromised.
33 Reported by Moritz Jodeit; ok dtucker@
34
35commit d4697fe9a28dab7255c60433e4dd23cf7fce8a8b
36Author: Damien Miller <djm@mindrot.org>
37Date: Tue Aug 11 13:33:24 2015 +1000
38
39 Don't resend username to PAM; it already has it.
40
41 Pointed out by Moritz Jodeit; ok dtucker@
42
43commit 88763a6c893bf3dfe951ba9271bf09715e8d91ca
44Author: Darren Tucker <dtucker@zip.com.au>
45Date: Mon Jul 27 12:14:25 2015 +1000
46
47 Import updated moduli file from OpenBSD.
48
49commit 55b263fb7cfeacb81aaf1c2036e0394c881637da
50Author: Damien Miller <djm@mindrot.org>
51Date: Mon Aug 10 11:13:44 2015 +1000
52
53 let principals-command.sh work for noexec /var/run
54
55commit 2651e34cd11b1aac3a0fe23b86d8c2ff35c07897
56Author: Damien Miller <djm@mindrot.org>
57Date: Thu Aug 6 11:43:42 2015 +1000
58
59 work around echo -n / sed behaviour in tests
60
61commit d85dad81778c1aa8106acd46930b25fdf0d15b2a
62Author: djm@openbsd.org <djm@openbsd.org>
63Date: Wed Aug 5 05:27:33 2015 +0000
64
65 upstream commit
66
67 adjust for RSA minimum modulus switch; ok deraadt@
68
69 Upstream-Regress-ID: 5a72c83431b96224d583c573ca281cd3a3ebfdae
70
71commit 57e8e229bad5fe6056b5f1199665f5f7008192c6
72Author: djm@openbsd.org <djm@openbsd.org>
73Date: Tue Aug 4 05:23:06 2015 +0000
74
75 upstream commit
76
77 backout SSH_RSA_MINIMUM_MODULUS_SIZE increase for this
78 release; problems spotted by sthen@ ok deraadt@ markus@
79
80 Upstream-ID: d0bd60dde9e8c3cd7030007680371894c1499822
81
82commit f097d0ea1e0889ca0fa2e53a00214e43ab7fa22a
83Author: djm@openbsd.org <djm@openbsd.org>
84Date: Sun Aug 2 09:56:42 2015 +0000
85
86 upstream commit
87
88 openssh 7.0; ok deraadt@
89
90 Upstream-ID: c63afdef537f57f28ae84145c5a8e29e9250221f
91
92commit 3d5728a0f6874ce4efb16913a12963595070f3a9
93Author: chris@openbsd.org <chris@openbsd.org>
94Date: Fri Jul 31 15:38:09 2015 +0000
95
96 upstream commit
97
98 Allow PermitRootLogin to be overridden by config
99
100 ok markus@ deeradt@
101
102 Upstream-ID: 5cf3e26ed702888de84e2dc9d0054ccf4d9125b4
103
104commit 6f941396b6835ad18018845f515b0c4fe20be21a
105Author: djm@openbsd.org <djm@openbsd.org>
106Date: Thu Jul 30 23:09:15 2015 +0000
107
108 upstream commit
109
110 fix pty permissions; patch from Nikolay Edigaryev; ok
111 deraadt
112
113 Upstream-ID: 40ff076d2878b916fbfd8e4f45dbe5bec019e550
114
115commit f4373ed1e8fbc7c8ce3fc4ea97d0ba2e0c1d7ef0
116Author: deraadt@openbsd.org <deraadt@openbsd.org>
117Date: Thu Jul 30 19:23:02 2015 +0000
118
119 upstream commit
120
121 change default: PermitRootLogin without-password matching
122 install script changes coming as well ok djm markus
123
124 Upstream-ID: 0e2a6c4441daf5498b47a61767382bead5eb8ea6
125
126commit 0c30ba91f87fcda7e975e6ff8a057f624e87ea1c
127Author: Damien Miller <djm@mindrot.org>
128Date: Thu Jul 30 12:31:39 2015 +1000
129
130 downgrade OOM adjustment logging: verbose -> debug
131
132commit f9eca249d4961f28ae4b09186d7dc91de74b5895
133Author: djm@openbsd.org <djm@openbsd.org>
134Date: Thu Jul 30 00:01:34 2015 +0000
135
136 upstream commit
137
138 Allow ssh_config and sshd_config kex parameters options be
139 prefixed by a '+' to indicate that the specified items be appended to the
140 default rather than replacing it.
141
142 approach suggested by dtucker@, feedback dlg@, ok markus@
143
144 Upstream-ID: 0f901137298fc17095d5756ff1561a7028e8882a
145
146commit 5cefe769105a2a2e3ca7479d28d9a325d5ef0163
147Author: djm@openbsd.org <djm@openbsd.org>
148Date: Wed Jul 29 08:34:54 2015 +0000
149
150 upstream commit
151
152 fix bug in previous; was printing incorrect string for
153 failed host key algorithms negotiation
154
155 Upstream-ID: 22c0dc6bc61930513065d92e11f0753adc4c6e6e
156
157commit f319912b0d0e1675b8bb051ed8213792c788bcb2
158Author: djm@openbsd.org <djm@openbsd.org>
159Date: Wed Jul 29 04:43:06 2015 +0000
160
161 upstream commit
162
163 include the peer's offer when logging a failure to
164 negotiate a mutual set of algorithms (kex, pubkey, ciphers, etc.) ok markus@
165
166 Upstream-ID: bbb8caabf5c01790bb845f5ce135565248d7c796
167
168commit b6ea0e573042eb85d84defb19227c89eb74cf05a
169Author: djm@openbsd.org <djm@openbsd.org>
170Date: Tue Jul 28 23:20:42 2015 +0000
171
172 upstream commit
173
174 add Cisco to the list of clients that choke on the
175 hostkeys update extension. Pointed out by Howard Kash
176
177 Upstream-ID: c9eadde28ecec056c73d09ee10ba4570dfba7e84
178
179commit 3f628c7b537291c1019ce86af90756fb4e66d0fd
180Author: guenther@openbsd.org <guenther@openbsd.org>
181Date: Mon Jul 27 16:29:23 2015 +0000
182
183 upstream commit
184
185 Permit kbind(2) use in the sandbox now, to ease testing
186 of ld.so work using it
187
188 reminded by miod@, ok deraadt@
189
190 Upstream-ID: 523922e4d1ba7a091e3824e77a8a3c818ee97413
191
192commit ebe27ebe520098bbc0fe58945a87ce8490121edb
193Author: millert@openbsd.org <millert@openbsd.org>
194Date: Mon Jul 20 18:44:12 2015 +0000
195
196 upstream commit
197
198 Move .Pp before .Bl, not after to quiet mandoc -Tlint.
199 Noticed by jmc@
200
201 Upstream-ID: 59fadbf8407cec4e6931e50c53cfa0214a848e23
202
203commit d5d91d0da819611167782c66ab629159169d94d4
204Author: millert@openbsd.org <millert@openbsd.org>
205Date: Mon Jul 20 18:42:35 2015 +0000
206
207 upstream commit
208
209 Sync usage with SYNOPSIS
210
211 Upstream-ID: 7a321a170181a54f6450deabaccb6ef60cf3f0b7
212
213commit 79ec2142fbc68dd2ed9688608da355fc0b1ed743
214Author: millert@openbsd.org <millert@openbsd.org>
215Date: Mon Jul 20 15:39:52 2015 +0000
216
217 upstream commit
218
219 Better desciption of Unix domain socket forwarding.
220 bz#2423; ok jmc@
221
222 Upstream-ID: 85e28874726897e3f26ae50dfa2e8d2de683805d
223
224commit d56fd1828074a4031b18b8faa0bf949669eb18a0
225Author: Damien Miller <djm@mindrot.org>
226Date: Mon Jul 20 11:19:51 2015 +1000
227
228 make realpath.c compile -Wsign-compare clean
229
230commit c63c9a691dca26bb7648827f5a13668832948929
231Author: djm@openbsd.org <djm@openbsd.org>
232Date: Mon Jul 20 00:30:01 2015 +0000
233
234 upstream commit
235
236 mention that the default of UseDNS=no implies that
237 hostnames cannot be used for host matching in sshd_config and
238 authorized_keys; bz#2045, ok dtucker@
239
240 Upstream-ID: 0812705d5f2dfa59aab01f2764ee800b1741c4e1
241
242commit 63ebcd0005e9894fcd6871b7b80aeea1fec0ff76
243Author: djm@openbsd.org <djm@openbsd.org>
244Date: Sat Jul 18 08:02:17 2015 +0000
245
246 upstream commit
247
248 don't ignore PKCS#11 hosted keys that return empty
249 CKA_ID; patch by Jakub Jelen via bz#2429; ok markus
250
251 Upstream-ID: 2f7c94744eb0342f8ee8bf97b2351d4e00116485
252
253commit b15fd989c8c62074397160147a8d5bc34b3f3c63
254Author: djm@openbsd.org <djm@openbsd.org>
255Date: Sat Jul 18 08:00:21 2015 +0000
256
257 upstream commit
258
259 skip uninitialised PKCS#11 slots; patch from Jakub Jelen
260 in bz#2427 ok markus@
261
262 Upstream-ID: 744c1e7796e237ad32992d0d02148e8a18f27d29
263
264commit 5b64f85bb811246c59ebab70aed331f26ba37b18
265Author: djm@openbsd.org <djm@openbsd.org>
266Date: Sat Jul 18 07:57:14 2015 +0000
267
268 upstream commit
269
270 only query each keyboard-interactive device once per
271 authentication request regardless of how many times it is listed; ok markus@
272
273 Upstream-ID: d73fafba6e86030436ff673656ec1f33d9ffeda1
274
275commit cd7324d0667794eb5c236d8a4e0f236251babc2d
276Author: djm@openbsd.org <djm@openbsd.org>
277Date: Fri Jul 17 03:34:27 2015 +0000
278
279 upstream commit
280
281 remove -u flag to diff (only used for error output) to make
282 things easier for -portable
283
284 Upstream-Regress-ID: a5d6777d2909540d87afec3039d9bb2414ade548
285
286commit deb8d99ecba70b67f4af7880b11ca8768df9ec3a
287Author: djm@openbsd.org <djm@openbsd.org>
288Date: Fri Jul 17 03:09:19 2015 +0000
289
290 upstream commit
291
292 direct-streamlocal@openssh.com Unix domain foward
293 messages do not contain a "reserved for future use" field and in fact,
294 serverloop.c checks that there isn't one. Remove erroneous mention from
295 PROTOCOL description. bz#2421 from Daniel Black
296
297 Upstream-ID: 3d51a19e64f72f764682f1b08f35a8aa810a43ac
298
299commit 356b61f365405b5257f5b2ab446e5d7bd33a7b52
300Author: djm@openbsd.org <djm@openbsd.org>
301Date: Fri Jul 17 03:04:27 2015 +0000
302
303 upstream commit
304
305 describe magic for setting up Unix domain socket fowards
306 via the mux channel; bz#2422 patch from Daniel Black
307
308 Upstream-ID: 943080fe3864715c423bdeb7c920bb30c4eee861
309
310commit d3e2aee41487d55b8d7d40f538b84ff1db7989bc
311Author: Darren Tucker <dtucker@zip.com.au>
312Date: Fri Jul 17 12:52:34 2015 +1000
313
314 Check if realpath works on nonexistent files.
315
316 On some platforms the native realpath doesn't work with non-existent
317 files (this is actually specified in some versions of POSIX), however
318 the sftp spec says its realpath with "canonicalize any given path name".
319 On those platforms, use realpath from the compat library.
320
321 In addition, when compiling with -DFORTIFY_SOURCE, glibc redefines
322 the realpath symbol to the checked version, so redefine ours to
323 something else so we pick up the compat version we want.
324
325 bz#2428, ok djm@
326
327commit 25b14610dab655646a109db5ef8cb4c4bf2a48a0
328Author: djm@openbsd.org <djm@openbsd.org>
329Date: Fri Jul 17 02:47:45 2015 +0000
330
331 upstream commit
332
333 fix incorrect test for SSH1 keys when compiled without SSH1
334 support
335
336 Upstream-ID: 6004d720345b8e481c405e8ad05ce2271726e451
337
338commit df56a8035d429b2184ee94aaa7e580c1ff67f73a
339Author: djm@openbsd.org <djm@openbsd.org>
340Date: Wed Jul 15 08:00:11 2015 +0000
341
342 upstream commit
343
344 fix NULL-deref when SSH1 reenabled
345
346 Upstream-ID: f22fd805288c92b3e9646782d15b48894b2d5295
347
348commit 41e38c4d49dd60908484e6703316651333f16b93
349Author: djm@openbsd.org <djm@openbsd.org>
350Date: Wed Jul 15 07:19:50 2015 +0000
351
352 upstream commit
353
354 regen RSA1 test keys; the last batch was missing their
355 private parts
356
357 Upstream-Regress-ID: 7ccf437305dd63ff0b48dd50c5fd0f4d4230c10a
358
359commit 5bf0933184cb622ca3f96d224bf3299fd2285acc
360Author: markus@openbsd.org <markus@openbsd.org>
361Date: Fri Jul 10 06:23:25 2015 +0000
362
363 upstream commit
364
365 Adapt tests, now that DSA if off by default; use
366 PubkeyAcceptedKeyTypes and PubkeyAcceptedKeyTypes to test DSA.
367
368 Upstream-Regress-ID: 0ff2a3ff5ac1ce5f92321d27aa07b98656efcc5c
369
370commit 7a6e3fd7b41dbd3756b6bf9acd67954c0b1564cc
371Author: markus@openbsd.org <markus@openbsd.org>
372Date: Tue Jul 7 14:54:16 2015 +0000
373
374 upstream commit
375
376 regen test data after mktestdata.sh changes
377
378 Upstream-Regress-ID: 3495ecb082b9a7c048a2d7c5c845d3bf181d25a4
379
380commit 7c8c174c69f681d4910fa41c37646763692b28e2
381Author: markus@openbsd.org <markus@openbsd.org>
382Date: Tue Jul 7 14:53:30 2015 +0000
383
384 upstream commit
385
386 adapt tests to new minimum RSA size and default FP format
387
388 Upstream-Regress-ID: a4b30afd174ce82b96df14eb49fb0b81398ffd0e
389
390commit 6a977a4b68747ade189e43d302f33403fd4a47ac
391Author: djm@openbsd.org <djm@openbsd.org>
392Date: Fri Jul 3 04:39:23 2015 +0000
393
394 upstream commit
395
396 legacy v00 certificates are gone; adapt and don't try to
397 test them; "sure" markus@ dtucker@
398
399 Upstream-Regress-ID: c57321e69b3cd4a3b3396dfcc43f0803d047da12
400
401commit 0c4123ad5e93fb90fee9c6635b13a6cdabaac385
402Author: djm@openbsd.org <djm@openbsd.org>
403Date: Wed Jul 1 23:11:18 2015 +0000
404
405 upstream commit
406
407 don't expect SSH v.1 in unittests
408
409 Upstream-Regress-ID: f8812b16668ba78e6a698646b2a652b90b653397
410
411commit 3c099845798a817cdde513c39074ec2063781f18
412Author: djm@openbsd.org <djm@openbsd.org>
413Date: Mon Jun 15 06:38:50 2015 +0000
414
415 upstream commit
416
417 turn SSH1 back on to match src/usr.bin/ssh being tested
418
419 Upstream-Regress-ID: 6c4f763a2f0cc6893bf33983919e9030ae638333
420
421commit b1dc2b33689668c75e95f873a42d5aea1f4af1db
422Author: dtucker@openbsd.org <dtucker@openbsd.org>
423Date: Mon Jul 13 04:57:14 2015 +0000
424
425 upstream commit
426
427 Add "PuTTY_Local:" to the clients to which we do not
428 offer DH-GEX. This was the string that was used for development versions
429 prior to September 2014 and they don't do RFC4419 DH-GEX, but unfortunately
430 there are some extant products based on those versions. bx2424 from Jay
431 Rouman, ok markus@ djm@
432
433 Upstream-ID: be34d41e18b966832fe09ca243d275b81882e1d5
434
435commit 3a1638dda19bbc73d0ae02b4c251ce08e564b4b9
436Author: markus@openbsd.org <markus@openbsd.org>
437Date: Fri Jul 10 06:21:53 2015 +0000
438
439 upstream commit
440
441 Turn off DSA by default; add HostKeyAlgorithms to the
442 server and PubkeyAcceptedKeyTypes to the client side, so it still can be
443 tested or turned back on; feedback and ok djm@
444
445 Upstream-ID: 8450a9e6d83f80c9bfed864ff061dfc9323cec21
446
447commit 16db0a7ee9a87945cc594d13863cfcb86038db59
448Author: markus@openbsd.org <markus@openbsd.org>
449Date: Thu Jul 9 09:49:46 2015 +0000
450
451 upstream commit
452
453 re-enable ed25519-certs if compiled w/o openssl; ok djm
454
455 Upstream-ID: e10c90808b001fd2c7a93778418e9b318f5c4c49
456
457commit c355bf306ac33de6545ce9dac22b84a194601e2f
458Author: markus@openbsd.org <markus@openbsd.org>
459Date: Wed Jul 8 20:24:02 2015 +0000
460
461 upstream commit
462
463 no need to include the old buffer/key API
464
465 Upstream-ID: fb13c9f7c0bba2545f3eb0a0e69cb0030819f52b
466
467commit a3cc48cdf9853f1e832d78cb29bedfab7adce1ee
468Author: markus@openbsd.org <markus@openbsd.org>
469Date: Wed Jul 8 19:09:25 2015 +0000
470
471 upstream commit
472
473 typedefs for Cipher&CipherContext are unused
474
475 Upstream-ID: 50e6a18ee92221d23ad173a96d5b6c42207cf9a7
476
477commit a635bd06b5c427a57c3ae760d3a2730bb2c863c0
478Author: markus@openbsd.org <markus@openbsd.org>
479Date: Wed Jul 8 19:04:21 2015 +0000
480
481 upstream commit
482
483 xmalloc.h is unused
484
485 Upstream-ID: afb532355b7fa7135a60d944ca1e644d1d63cb58
486
487commit 2521cf0e36c7f3f6b19f206da0af134f535e4a31
488Author: markus@openbsd.org <markus@openbsd.org>
489Date: Wed Jul 8 19:01:15 2015 +0000
490
491 upstream commit
492
493 compress.c is gone
494
495 Upstream-ID: 174fa7faa9b9643cba06164b5e498591356fbced
496
497commit c65a7aa6c43aa7a308ee1ab8a96f216169ae9615
498Author: djm@openbsd.org <djm@openbsd.org>
499Date: Fri Jul 3 04:05:54 2015 +0000
500
501 upstream commit
502
503 another SSH_RSA_MINIMUM_MODULUS_SIZE that needed
504 cranking
505
506 Upstream-ID: 9d8826cafe96aab4ae8e2f6fd22800874b7ffef1
507
508commit b1f383da5cd3cb921fc7776f17a14f44b8a31757
509Author: djm@openbsd.org <djm@openbsd.org>
510Date: Fri Jul 3 03:56:25 2015 +0000
511
512 upstream commit
513
514 add an XXX reminder for getting correct key paths from
515 sshd_config
516
517 Upstream-ID: feae52b209d7782ad742df04a4260e9fe41741db
518
519commit 933935ce8d093996c34d7efa4d59113163080680
520Author: djm@openbsd.org <djm@openbsd.org>
521Date: Fri Jul 3 03:49:45 2015 +0000
522
523 upstream commit
524
525 refuse to generate or accept RSA keys smaller than 1024
526 bits; feedback and ok dtucker@
527
528 Upstream-ID: 7ea3d31271366ba264f06e34a3539bf1ac30f0ba
529
530commit bdfd29f60b74f3e678297269dc6247a5699583c1
531Author: djm@openbsd.org <djm@openbsd.org>
532Date: Fri Jul 3 03:47:00 2015 +0000
533
534 upstream commit
535
536 turn off 1024 bit diffie-hellman-group1-sha1 key
537 exchange method (already off in server, this turns it off in the client by
538 default too) ok dtucker@
539
540 Upstream-ID: f59b88f449210ab7acf7d9d88f20f1daee97a4fa
541
542commit c28fc62d789d860c75e23a9fa9fb250eb2beca57
543Author: djm@openbsd.org <djm@openbsd.org>
544Date: Fri Jul 3 03:43:18 2015 +0000
545
546 upstream commit
547
548 delete support for legacy v00 certificates; "sure"
549 markus@ dtucker@
550
551 Upstream-ID: b5b9bb5f9202d09e88f912989d74928601b6636f
552
553commit 564d63e1b4a9637a209d42a9d49646781fc9caef
554Author: djm@openbsd.org <djm@openbsd.org>
555Date: Wed Jul 1 23:10:47 2015 +0000
556
557 upstream commit
558
559 Compile-time disable SSH v.1 again
560
561 Upstream-ID: 1d4b513a3a06232f02650b73bad25100d1b800af
562
563commit 868109b650504dd9bcccdb1f51d0906f967c20ff
564Author: djm@openbsd.org <djm@openbsd.org>
565Date: Wed Jul 1 02:39:06 2015 +0000
566
567 upstream commit
568
569 twiddle PermitRootLogin back
570
571 Upstream-ID: 2bd23976305d0512e9f84d054e1fc23cd70b89f2
572
573commit 7de4b03a6e4071d454b72927ffaf52949fa34545
574Author: djm@openbsd.org <djm@openbsd.org>
575Date: Wed Jul 1 02:32:17 2015 +0000
576
577 upstream commit
578
579 twiddle; (this commit marks the openssh-6.9 release)
580
581 Upstream-ID: 78500582819f61dd8adee36ec5cc9b9ac9351234
582
583commit 1bf477d3cdf1a864646d59820878783d42357a1d
584Author: djm@openbsd.org <djm@openbsd.org>
585Date: Wed Jul 1 02:26:31 2015 +0000
586
587 upstream commit
588
589 better refuse ForwardX11Trusted=no connections attempted
590 after ForwardX11Timeout expires; reported by Jann Horn
591
592 Upstream-ID: bf0fddadc1b46a0334e26c080038313b4b6dea21
593
594commit 47aa7a0f8551b471fcae0447c1d78464f6dba869
595Author: djm@openbsd.org <djm@openbsd.org>
596Date: Wed Jul 1 01:56:13 2015 +0000
597
598 upstream commit
599
600 put back default PermitRootLogin=no
601
602 Upstream-ID: 7bdedd5cead99c57ed5571f3b6b7840922d5f728
603
604commit 984b064fe2a23733733262f88d2e1b2a1a501662
605Author: djm@openbsd.org <djm@openbsd.org>
606Date: Wed Jul 1 01:55:13 2015 +0000
607
608 upstream commit
609
610 openssh-6.9
611
612 Upstream-ID: 6cfe8e1904812531080e6ab6e752d7001b5b2d45
613
614commit d921082ed670f516652eeba50705e1e9f6325346
615Author: djm@openbsd.org <djm@openbsd.org>
616Date: Wed Jul 1 01:55:00 2015 +0000
617
618 upstream commit
619
620 reset default PermitRootLogin to 'yes' (momentarily, for
621 release)
622
623 Upstream-ID: cad8513527066e65dd7a1c16363d6903e8cefa24
624
625commit 66295e0e1ba860e527f191b6325d2d77dec4dbce
626Author: Damien Miller <djm@mindrot.org>
627Date: Wed Jul 1 11:49:12 2015 +1000
628
629 crank version numbers for release
630
631commit 37035c07d4f26bb1fbe000d2acf78efdb008681d
632Author: Damien Miller <djm@mindrot.org>
633Date: Wed Jul 1 10:49:37 2015 +1000
634
635 s/--with-ssh1/--without-ssh1/
636
637commit 629df770dbadc2accfbe1c81b3f31f876d0acd84
638Author: djm@openbsd.org <djm@openbsd.org>
639Date: Tue Jun 30 05:25:07 2015 +0000
640
641 upstream commit
642
643 fatal() when a remote window update causes the window
644 value to overflow. Reported by Georg Wicherski, ok markus@
645
646 Upstream-ID: ead397a9aceb3bf74ebfa5fcaf259d72e569f351
647
648commit f715afebe735d61df3fd30ad72d9ac1c8bd3b5f2
649Author: djm@openbsd.org <djm@openbsd.org>
650Date: Tue Jun 30 05:23:25 2015 +0000
651
652 upstream commit
653
654 Fix math error in remote window calculations that causes
655 eventual stalls for datagram channels. Reported by Georg Wicherski, ok
656 markus@
657
658 Upstream-ID: be54059d11bf64e0d85061f7257f53067842e2ab
659
660commit 52fb6b9b034fcfd24bf88cc7be313e9c31de9889
661Author: Damien Miller <djm@mindrot.org>
662Date: Tue Jun 30 16:05:40 2015 +1000
663
664 skip IPv6-related portions on hosts without IPv6
665
666 with Tim Rice
667
668commit 512caddf590857af6aa12218461b5c0441028cf5
669Author: djm@openbsd.org <djm@openbsd.org>
670Date: Mon Jun 29 22:35:12 2015 +0000
671
672 upstream commit
673
674 add getpid to sandbox, reachable by grace_alarm_handler
675
676 reported by Jakub Jelen; bz#2419
677
678 Upstream-ID: d0da1117c16d4c223954995d35b0f47c8f684cd8
679
680commit 78c2a4f883ea9aba866358e2acd9793a7f42ca93
681Author: djm@openbsd.org <djm@openbsd.org>
682Date: Fri Jun 26 05:13:20 2015 +0000
683
684 upstream commit
685
686 Fix \-escaping bug that caused forward path parsing to skip
687 two characters and skip past the end of the string.
688
689 Based on patch by Salvador Fandino; ok dtucker@
690
691 Upstream-ID: 7b879dc446335677cbe4cb549495636a0535f3bd
692
693commit bc20205c91c9920361d12b15d253d4997dba494a
694Author: Damien Miller <djm@mindrot.org>
695Date: Thu Jun 25 09:51:39 2015 +1000
696
697 add missing pselect6
698
699 patch from Jakub Jelen
700
701commit 9d27fb73b4a4e5e99cb880af790d5b1ce44f720a
702Author: djm@openbsd.org <djm@openbsd.org>
703Date: Wed Jun 24 23:47:23 2015 +0000
704
705 upstream commit
706
707 correct test to sshkey_sign(); spotted by Albert S.
708
709 Upstream-ID: 5f7347f40f0ca6abdaca2edb3bd62f4776518933
710
711commit 7ed01a96a1911d8b4a9ef4f3d064e1923bfad7e3
712Author: dtucker@openbsd.org <dtucker@openbsd.org>
713Date: Wed Jun 24 01:49:19 2015 +0000
714
715 upstream commit
716
717 Revert previous commit. We still want to call setgroups
718 in the case where there are zero groups to remove any that we might otherwise
719 inherit (as pointed out by grawity at gmail.com) and since the 2nd argument
720 to setgroups is always a static global it's always valid to dereference in
721 this case. ok deraadt@ djm@
722
723 Upstream-ID: 895b5ac560a10befc6b82afa778641315725fd01
724
725commit 882f8bf94f79528caa65b0ba71c185d705bb7195
726Author: dtucker@openbsd.org <dtucker@openbsd.org>
727Date: Wed Jun 24 01:49:19 2015 +0000
728
729 upstream commit
730
731 Revert previous commit. We still want to call setgroups in
732 the case where there are zero groups to remove any that we might otherwise
733 inherit (as pointed out by grawity at gmail.com) and since the 2nd argument
734 to setgroups is always a static global it's always valid to dereference in
735 this case. ok deraadt@ djm@
736
737 Upstream-ID: 895b5ac560a10befc6b82afa778641315725fd01
738
739commit 9488538a726951e82b3a4374f3c558d72c80a89b
740Author: djm@openbsd.org <djm@openbsd.org>
741Date: Mon Jun 22 23:42:16 2015 +0000
742
743 upstream commit
744
745 Don't count successful partial authentication as failures
746 in monitor; this may have caused the monitor to refuse multiple
747 authentications that would otherwise have successfully completed; ok markus@
748
749 Upstream-ID: eb74b8e506714d0f649bd5c300f762a527af04a3
750
751commit 63b78d003bd8ca111a736e6cea6333da50f5f09b
752Author: dtucker@openbsd.org <dtucker@openbsd.org>
753Date: Mon Jun 22 12:29:57 2015 +0000
754
755 upstream commit
756
757 Don't call setgroups if we have zero groups; there's no
758 guarantee that it won't try to deref the pointer. Based on a patch from mail
759 at quitesimple.org, ok djm deraadt
760
761 Upstream-ID: 2fff85e11d7a9a387ef7fddf41fbfaf566708ab1
762
763commit 5c15e22c691c79a47747bcf5490126656f97cecd
764Author: Damien Miller <djm@mindrot.org>
765Date: Thu Jun 18 15:07:56 2015 +1000
766
767 fix syntax error
768
769commit 596dbca82f3f567fb3d2d69af4b4e1d3ba1e6403
770Author: jsing@openbsd.org <jsing@openbsd.org>
771Date: Mon Jun 15 18:44:22 2015 +0000
772
773 upstream commit
774
775 If AuthorizedPrincipalsCommand is specified, however
776 AuthorizedPrincipalsFile is not (or is set to "none"), authentication will
777 potentially fail due to key_cert_check_authority() failing to locate a
778 principal that matches the username, even though an authorized principal has
779 already been matched in the output of the subprocess. Fix this by using the
780 same logic to determine if pw->pw_name should be passed, as is used to
781 determine if a authorized principal must be matched earlier on.
782
783 ok djm@
784
785 Upstream-ID: 43b42302ec846b0ea68aceb40677245391b9409d
786
787commit aff3e94c0d75d0d0fa84ea392b50ab04f8c57905
788Author: jsing@openbsd.org <jsing@openbsd.org>
789Date: Mon Jun 15 18:42:19 2015 +0000
790
791 upstream commit
792
793 Make the arguments to match_principals_command() similar
794 to match_principals_file(), by changing the last argument a struct
795 sshkey_cert * and dereferencing key->cert in the caller.
796
797 No functional change.
798
799 ok djm@
800
801 Upstream-ID: 533f99b844b21b47342b32b62e198dfffcf8651c
802
803commit 97e2e1596c202a4693468378b16b2353fd2d6c5e
804Author: Damien Miller <djm@mindrot.org>
805Date: Wed Jun 17 14:36:54 2015 +1000
806
807 trivial optimisation for seccomp-bpf
808
809 When doing arg inspection and the syscall doesn't match, skip
810 past the instruction that reloads the syscall into the accumulator,
811 since the accumulator hasn't been modified at this point.
812
813commit 99f33d7304893bd9fa04d227cb6e870171cded19
814Author: Damien Miller <djm@mindrot.org>
815Date: Wed Jun 17 10:50:51 2015 +1000
816
817 aarch64 support for seccomp-bpf sandbox
818
819 Also resort and tidy syscall list. Based on patches by Jakub Jelen
820 bz#2361; ok dtucker@
821
822commit 4ef702e1244633c1025ec7cfe044b9ab267097bf
823Author: djm@openbsd.org <djm@openbsd.org>
824Date: Mon Jun 15 01:32:50 2015 +0000
825
826 upstream commit
827
828 return failure on RSA signature error; reported by Albert S
829
830 Upstream-ID: e61bb93dbe0349625807b0810bc213a6822121fa
831
832commit a170f22baf18af0b1acf2788b8b715605f41a1f9
833Author: Tim Rice <tim@multitalents.net>
834Date: Tue Jun 9 22:41:13 2015 -0700
835
836 Fix t12 rules for out of tree builds.
837
838commit ec04dc4a5515c913121bc04ed261857e68fa5c18
839Author: millert@openbsd.org <millert@openbsd.org>
840Date: Fri Jun 5 15:13:13 2015 +0000
841
842 upstream commit
843
844 For "ssh -L 12345:/tmp/sock" don't fail with "No forward host
845 name." (we have a path, not a host name). Based on a diff from Jared
846 Yanovich. OK djm@
847
848 Upstream-ID: 2846b0a8c7de037e33657f95afbd282837fc213f
849
850commit 732d61f417a6aea0aa5308b59cb0f563bcd6edd6
851Author: djm@openbsd.org <djm@openbsd.org>
852Date: Fri Jun 5 03:44:14 2015 +0000
853
854 upstream commit
855
856 typo: accidental repetition; bz#2386
857
858 Upstream-ID: 45e620d99f6bc301e5949d34a54027374991c88b
859
860commit adfb24c69d1b6f5e758db200866c711e25a2ba73
861Author: Darren Tucker <dtucker@zip.com.au>
862Date: Fri Jun 5 14:51:40 2015 +1000
863
864 Add Linux powerpc64le and powerpcle entries.
865
866 Stopgap to resolve bz#2409 because we are so close to release and will
867 update config.guess and friends shortly after the release. ok djm@
868
869commit a1195a0fdc9eddddb04d3e9e44c4775431cb77da
870Merge: 6397eed d2480bc
871Author: Tim Rice <tim@multitalents.net>
872Date: Wed Jun 3 21:43:13 2015 -0700
873
874 Merge branch 'master' of git.mindrot.org:/var/git/openssh
875
876commit 6397eedf953b2b973d2d7cbb504ab501a07f8ddc
877Author: Tim Rice <tim@multitalents.net>
878Date: Wed Jun 3 21:41:11 2015 -0700
879
880 Remove unneeded backslashes. Patch from Ángel González
881
882commit d2480bcac1caf31b03068de877a47d6e1027bf6d
883Author: Darren Tucker <dtucker@zip.com.au>
884Date: Thu Jun 4 14:10:55 2015 +1000
885
886 Remove redundant include of stdarg.h. bz#2410
887
888commit 5e67859a623826ccdf2df284cbb37e2d8e2787eb
889Author: djm@openbsd.org <djm@openbsd.org>
890Date: Tue Jun 2 09:10:40 2015 +0000
891
892 upstream commit
893
894 mention CheckHostIP adding addresses to known_hosts;
895 bz#1993; ok dtucker@
896
897 Upstream-ID: fd44b68440fd0dc29abf9f2d3f703d74a2396cb7
898
899commit d7a58bbac6583e33fd5eca8e2c2cc70c57617818
900Author: Darren Tucker <dtucker@zip.com.au>
901Date: Tue Jun 2 20:15:26 2015 +1000
902
903 Replace strcpy with strlcpy.
904
905 ok djm, sanity check by Corinna Vinschen.
906
907commit 51a1c2115265c6e80ede8a5c9dccada9aeed7143
908Author: Damien Miller <djm@mindrot.org>
909Date: Fri May 29 18:27:21 2015 +1000
910
911 skip, rather than fatal when run without SUDO set
912
913commit 599f01142a376645b15cbc9349d7e8975e1cf245
914Author: Damien Miller <djm@mindrot.org>
915Date: Fri May 29 18:03:15 2015 +1000
916
917 fix merge botch that left ",," in KEX algs
918
919commit 0c2a81dfc21822f2423edd30751e5ec53467b347
920Author: Damien Miller <djm@mindrot.org>
921Date: Fri May 29 17:08:28 2015 +1000
922
923 re-enable SSH protocol 1 at compile time
924
925commit db438f9285d64282d3ac9e8c0944f59f037c0151
926Author: djm@openbsd.org <djm@openbsd.org>
927Date: Fri May 29 03:05:13 2015 +0000
928
929 upstream commit
930
931 make this work without SUDO set; ok dtucker@
932
933 Upstream-Regress-ID: bca88217b70bce2fe52b23b8e06bdeb82d98c715
934
935commit 1d9a2e2849c9864fe75daabf433436341c968e14
936Author: djm@openbsd.org <djm@openbsd.org>
937Date: Thu May 28 07:37:31 2015 +0000
938
939 upstream commit
940
941 wrap all moduli-related code in #ifdef WITH_OPENSSL.
942 based on patch from Reuben Hawkins; bz#2388 feedback and ok dtucker@
943
944 Upstream-ID: d80cfc8be3e6ec65b3fac9e87c4466533b31b7cf
945
946commit 496aeb25bc2d6c434171292e4714771b594bd00e
947Author: dtucker@openbsd.org <dtucker@openbsd.org>
948Date: Thu May 28 05:41:29 2015 +0000
949
950 upstream commit
951
952 Increase the allowed length of the known host file name
953 in the log message to be consistent with other cases. Part of bz#1993, ok
954 deraadt.
955
956 Upstream-ID: a9e97567be49f25daf286721450968251ff78397
957
958commit dd2cfeb586c646ff8d70eb93567b2e559ace5b14
959Author: dtucker@openbsd.org <dtucker@openbsd.org>
960Date: Thu May 28 05:09:45 2015 +0000
961
962 upstream commit
963
964 Fix typo (keywork->keyword)
965
966 Upstream-ID: 8aacd0f4089c0a244cf43417f4f9045dfaeab534
967
968commit 9cc6842493fbf23025ccc1edab064869640d3bec
969Author: djm@openbsd.org <djm@openbsd.org>
970Date: Thu May 28 04:50:53 2015 +0000
971
972 upstream commit
973
974 add error message on ftruncate failure; bz#2176
975
976 Upstream-ID: cbcc606e0b748520c74a210d8f3cc9718d3148cf
977
978commit d1958793a0072c22be26d136dbda5ae263e717a0
979Author: djm@openbsd.org <djm@openbsd.org>
980Date: Thu May 28 04:40:13 2015 +0000
981
982 upstream commit
983
984 make ssh-keygen default to ed25519 keys when compiled
985 without OpenSSL; bz#2388, ok dtucker@
986
987 Upstream-ID: 85a471fa6d3fa57a7b8e882d22cfbfc1d84cdc71
988
989commit 3ecde664c9fc5fb3667aedf9e6671462600f6496
990Author: dtucker@openbsd.org <dtucker@openbsd.org>
991Date: Wed May 27 23:51:10 2015 +0000
992
993 upstream commit
994
995 Reorder client proposal to prefer
996 diffie-hellman-group-exchange-sha1 over diffie-hellman-group14-sha1. ok djm@
997
998 Upstream-ID: 552c08d47347c3ee1a9a57d88441ab50abe17058
999
1000commit 40f64292b907afd0a674fdbf3e4c2356d17a7d68
1001Author: dtucker@openbsd.org <dtucker@openbsd.org>
1002Date: Wed May 27 23:39:18 2015 +0000
1003
1004 upstream commit
1005
1006 Add a stronger (4k bit) fallback group that sshd can use
1007 when the moduli file is missing or broken, sourced from RFC3526. bz#2302, ok
1008 markus@ (earlier version), djm@
1009
1010 Upstream-ID: b635215746a25a829d117673d5e5a76d4baee7f4
1011
1012commit 5ab7d5fa03ad55bc438fab45dfb3aeb30a3c237a
1013Author: Darren Tucker <dtucker@zip.com.au>
1014Date: Thu May 28 10:03:40 2015 +1000
1015
1016 New moduli file from OpenBSD, removing 1k groups.
1017
1018 Remove 1k bit groups. ok deraadt@, markus@
1019
1020commit a71ba58adf34e599f30cdda6e9b93ae6e3937eea
1021Author: djm@openbsd.org <djm@openbsd.org>
1022Date: Wed May 27 05:15:02 2015 +0000
1023
1024 upstream commit
1025
1026 support PKCS#11 devices with external PIN entry devices
1027 bz#2240, based on patch from Dirk-Willem van Gulik; feedback and ok dtucker@
1028
1029 Upstream-ID: 504568992b55a8fc984375242b1bd505ced61b0d
1030
1031commit b282fec1aa05246ed3482270eb70fc3ec5f39a00
1032Author: dtucker@openbsd.org <dtucker@openbsd.org>
1033Date: Tue May 26 23:23:40 2015 +0000
1034
1035 upstream commit
1036
1037 Cap DH-GEX group size at 4kbits for Cisco implementations.
1038 Some of them will choke when asked for preferred sizes >4k instead of
1039 returning the 4k group that they do have. bz#2209, ok djm@
1040
1041 Upstream-ID: 54b863a19713446b7431f9d06ad0532b4fcfef8d
1042
1043commit 3e91b4e8b0dc2b4b7e7d42cf6e8994a32e4cb55e
1044Author: djm@openbsd.org <djm@openbsd.org>
1045Date: Sun May 24 23:39:16 2015 +0000
1046
1047 upstream commit
1048
1049 add missing 'c' option to getopt(), case statement was
1050 already there; from Felix Bolte
1051
1052 Upstream-ID: 9b19b4e2e0b54d6fefa0dfac707c51cf4bae3081
1053
1054commit 64a89ec07660abba4d0da7c0095b7371c98bab62
1055Author: jsg@openbsd.org <jsg@openbsd.org>
1056Date: Sat May 23 14:28:37 2015 +0000
1057
1058 upstream commit
1059
1060 fix a memory leak in an error path ok markus@ dtucker@
1061
1062 Upstream-ID: bc1da0f205494944918533d8780fde65dff6c598
1063
1064commit f948737449257d2cb83ffcfe7275eb79b677fd4a
1065Author: djm@openbsd.org <djm@openbsd.org>
1066Date: Fri May 22 05:28:45 2015 +0000
1067
1068 upstream commit
1069
1070 mention ssh-keygen -E for comparing legacy MD5
1071 fingerprints; bz#2332
1072
1073 Upstream-ID: 079a3669549041dbf10dbc072d9563f0dc3b2859
1074
1075commit 0882332616e4f0272c31cc47bf2018f9cb258a4e
1076Author: djm@openbsd.org <djm@openbsd.org>
1077Date: Fri May 22 04:45:52 2015 +0000
1078
1079 upstream commit
1080
1081 Reorder EscapeChar option parsing to avoid a single-byte
1082 out- of-bounds read. bz#2396 from Jaak Ristioja; ok dtucker@
1083
1084 Upstream-ID: 1dc6b5b63d1c8d9a88619da0b27ade461d79b060
1085
1086commit d7c31da4d42c115843edee2074d7d501f8804420
1087Author: djm@openbsd.org <djm@openbsd.org>
1088Date: Fri May 22 03:50:02 2015 +0000
1089
1090 upstream commit
1091
1092 add knob to relax GSSAPI host credential check for
1093 multihomed hosts bz#928, patch by Simon Wilkinson; ok dtucker
1094 (kerberos/GSSAPI is not compiled by default on OpenBSD)
1095
1096 Upstream-ID: 15ddf1c6f7fd9d98eea9962f480079ae3637285d
1097
1098commit aa72196a00be6e0b666215edcffbc10af234cb0e
1099Author: Darren Tucker <dtucker@zip.com.au>
1100Date: Fri May 22 17:49:46 2015 +1000
1101
1102 Include signal.h for sig_atomic_t, used by kex.h.
1103
1104 bz#2402, from tomas.kuthan at oracle com.
1105
1106commit 8b02481143d75e91c49d1bfae0876ac1fbf9511a
1107Author: Darren Tucker <dtucker@zip.com.au>
1108Date: Fri May 22 12:47:24 2015 +1000
1109
1110 Import updated moduli file from OpenBSD.
1111
1112commit 4739e8d5e1c0be49624082bd9f6b077e9e758db9
1113Author: djm@openbsd.org <djm@openbsd.org>
1114Date: Thu May 21 12:01:19 2015 +0000
1115
1116 upstream commit
1117
1118 Support "ssh-keygen -lF hostname" to find search known_hosts
1119 and print key hashes. Already advertised by ssh-keygen(1), but not delivered
1120 by code; ok dtucker@
1121
1122 Upstream-ID: 459e0e2bf39825e41b0811c336db2d56a1c23387
1123
1124commit e97201feca10b5196da35819ae516d0b87cf3a50
1125Author: Damien Miller <djm@mindrot.org>
1126Date: Thu May 21 17:55:15 2015 +1000
1127
1128 conditionalise util.h inclusion
1129
1130commit 13640798c7dd011ece0a7d02841fe48e94cfa0e0
1131Author: djm@openbsd.org <djm@openbsd.org>
1132Date: Thu May 21 06:44:25 2015 +0000
1133
1134 upstream commit
1135
1136 regress test for AuthorizedPrincipalsCommand
1137
1138 Upstream-Regress-ID: c658fbf1ab6b6011dc83b73402322e396f1e1219
1139
1140commit 84452c5d03c21f9bfb28c234e0dc1dc67dd817b1
1141Author: djm@openbsd.org <djm@openbsd.org>
1142Date: Thu May 21 06:40:02 2015 +0000
1143
1144 upstream commit
1145
1146 regress test for AuthorizedKeysCommand arguments
1147
1148 Upstream-Regress-ID: bbd65c13c6b3be9a442ec115800bff9625898f12
1149
1150commit bcc50d816187fa9a03907ac1f3a52f04a52e10d1
1151Author: djm@openbsd.org <djm@openbsd.org>
1152Date: Thu May 21 06:43:30 2015 +0000
1153
1154 upstream commit
1155
1156 add AuthorizedPrincipalsCommand that allows getting
1157 authorized_principals from a subprocess rather than a file, which is quite
1158 useful in deployments with large userbases
1159
1160 feedback and ok markus@
1161
1162 Upstream-ID: aa1bdac7b16fc6d2fa3524ef08f04c7258d247f6
1163
1164commit 24232a3e5ab467678a86aa67968bbb915caffed4
1165Author: djm@openbsd.org <djm@openbsd.org>
1166Date: Thu May 21 06:38:35 2015 +0000
1167
1168 upstream commit
1169
1170 support arguments to AuthorizedKeysCommand
1171
1172 bz#2081 loosely based on patch by Sami Hartikainen
1173 feedback and ok markus@
1174
1175 Upstream-ID: b080387a14aa67dddd8ece67c00f268d626541f7
1176
1177commit d80fbe41a57c72420c87a628444da16d09d66ca7
1178Author: djm@openbsd.org <djm@openbsd.org>
1179Date: Thu May 21 04:55:51 2015 +0000
1180
1181 upstream commit
1182
1183 refactor: split base64 encoding of pubkey into its own
1184 sshkey_to_base64() function and out of sshkey_write(); ok markus@
1185
1186 Upstream-ID: 54fc38f5832e9b91028900819bda46c3959a0c1a
1187
1188commit 7cc44ef74133a473734bbcbd3484f24d6a7328c5
1189Author: deraadt@openbsd.org <deraadt@openbsd.org>
1190Date: Mon May 18 15:06:05 2015 +0000
1191
1192 upstream commit
1193
1194 getentropy() and sendsyslog() have been around long
1195 enough. openssh-portable may want the #ifdef's but not base. discussed with
1196 djm few weeks back
1197
1198 Upstream-ID: 0506a4334de108e3fb6c66f8d6e0f9c112866926
1199
1200commit 9173d0fbe44de7ebcad8a15618e13a8b8d78902e
1201Author: dtucker@openbsd.org <dtucker@openbsd.org>
1202Date: Fri May 15 05:44:21 2015 +0000
1203
1204 upstream commit
1205
1206 Use a salted hash of the lock passphrase instead of plain
1207 text and do constant-time comparisons of it. Should prevent leaking any
1208 information about it via timing, pointed out by Ryan Castellucci. Add a 0.1s
1209 incrementing delay for each failed unlock attempt up to 10s. ok markus@
1210 (earlier version), djm@
1211
1212 Upstream-ID: c599fcc325aa1cc65496b25220b622d22208c85f
1213
1214commit d028d5d3a697c71b21e4066d8672cacab3caa0a8
1215Author: Damien Miller <djm@mindrot.org>
1216Date: Tue May 5 19:10:58 2015 +1000
1217
1218 upstream commit
1219
1220 - tedu@cvs.openbsd.org 2015/01/12 03:20:04
1221 [bcrypt_pbkdf.c]
1222 rename blocks to words. bcrypt "blocks" are unrelated to blowfish blocks,
1223 nor are they the same size.
1224
1225commit f6391d4e59b058984163ab28f4e317e7a72478f1
1226Author: Damien Miller <djm@mindrot.org>
1227Date: Tue May 5 19:10:23 2015 +1000
1228
1229 upstream commit
1230
1231 - deraadt@cvs.openbsd.org 2015/01/08 00:30:07
1232 [bcrypt_pbkdf.c]
1233 declare a local version of MIN(), call it MINIMUM()
1234
1235commit 8ac6b13cc9113eb47cd9e86c97d7b26b4b71b77f
1236Author: Damien Miller <djm@mindrot.org>
1237Date: Tue May 5 19:09:46 2015 +1000
1238
1239 upstream commit
1240
1241 - djm@cvs.openbsd.org 2014/12/30 01:41:43
1242 [bcrypt_pbkdf.c]
1243 typo in comment: ouput => output
1244
1245commit 1f792489d5cf86a4f4e3003e6e9177654033f0f2
1246Author: djm@openbsd.org <djm@openbsd.org>
1247Date: Mon May 4 06:10:48 2015 +0000
1248
1249 upstream commit
1250
1251 Remove pattern length argument from match_pattern_list(), we
1252 only ever use it for strlen(pattern).
1253
1254 Prompted by hanno AT hboeck.de pointing an out-of-bound read
1255 error caused by an incorrect pattern length found using AFL
1256 and his own tools.
1257
1258 ok markus@
1259
1260commit 639d6bc57b1942393ed12fb48f00bc05d4e093e4
1261Author: djm@openbsd.org <djm@openbsd.org>
1262Date: Fri May 1 07:10:01 2015 +0000
1263
1264 upstream commit
1265
1266 refactor ssh_dispatch_run_fatal() to use sshpkt_fatal()
1267 to better report error conditions. Teach sshpkt_fatal() about ECONNRESET.
1268
1269 Improves error messages on TCP connection resets. bz#2257
1270
1271 ok dtucker@
1272
1273commit 9559d7de34c572d4d3fd990ca211f8ec99f62c4d
1274Author: djm@openbsd.org <djm@openbsd.org>
1275Date: Fri May 1 07:08:08 2015 +0000
1276
1277 upstream commit
1278
1279 a couple of parse targets were missing activep checks,
1280 causing them to be misapplied in match context; bz#2272 diagnosis and
1281 original patch from Sami Hartikainen ok dtucker@
1282
1283commit 7e8528cad04b2775c3b7db08abf8fb42e47e6b2a
1284Author: djm@openbsd.org <djm@openbsd.org>
1285Date: Fri May 1 04:17:51 2015 +0000
1286
1287 upstream commit
1288
1289 make handling of AuthorizedPrincipalsFile=none more
1290 consistent with other =none options; bz#2288 from Jakub Jelen; ok dtucker@
1291
1292commit ca430d4d9cc0f62eca3b1fb1e2928395b7ce80f7
1293Author: djm@openbsd.org <djm@openbsd.org>
1294Date: Fri May 1 04:03:20 2015 +0000
1295
1296 upstream commit
1297
1298 remove failed remote forwards established by muliplexing
1299 from the list of active forwards; bz#2363, patch mostly by Yoann Ricordel; ok
1300 dtucker@
1301
1302commit 8312cfb8ad88657517b3e23ac8c56c8e38eb9792
1303Author: djm@openbsd.org <djm@openbsd.org>
1304Date: Fri May 1 04:01:58 2015 +0000
1305
1306 upstream commit
1307
1308 reduce stderr spam when using ssh -S /path/mux -O forward
1309 -R 0:... ok dtucker@
1310
1311commit 179be0f5e62f1f492462571944e45a3da660d82b
1312Author: djm@openbsd.org <djm@openbsd.org>
1313Date: Fri May 1 03:23:51 2015 +0000
1314
1315 upstream commit
1316
1317 prevent authorized_keys options picked up on public key
1318 tests without a corresponding private key authentication being applied to
1319 other authentication methods. Reported by halex@, ok markus@
1320
1321commit a42d67be65b719a430b7fcaba2a4e4118382723a
1322Author: djm@openbsd.org <djm@openbsd.org>
1323Date: Fri May 1 03:20:54 2015 +0000
1324
1325 upstream commit
1326
1327 Don't make parsing of authorized_keys' environment=
1328 option conditional on PermitUserEnv - always parse it, but only use the
1329 result if the option is enabled. This prevents the syntax of authorized_keys
1330 changing depending on which sshd_config options were enabled.
1331
1332 bz#2329; based on patch from coladict AT gmail.com, ok dtucker@
1333
1334commit e661a86353e11592c7ed6a847e19a83609f49e77
1335Author: djm@openbsd.org <djm@openbsd.org>
1336Date: Mon May 4 06:10:48 2015 +0000
1337
1338 upstream commit
1339
1340 Remove pattern length argument from match_pattern_list(), we
1341 only ever use it for strlen(pattern).
1342
1343 Prompted by hanno AT hboeck.de pointing an out-of-bound read
1344 error caused by an incorrect pattern length found using AFL
1345 and his own tools.
1346
1347 ok markus@
1348
1349commit 0ef1de742be2ee4b10381193fe90730925b7f027
1350Author: dtucker@openbsd.org <dtucker@openbsd.org>
1351Date: Thu Apr 23 05:01:19 2015 +0000
1352
1353 upstream commit
1354
1355 Add a simple regression test for sshd's configuration
1356 parser. Right now, all it does is run the output of sshd -T back through
1357 itself and ensure the output is valid and invariant.
1358
1359commit 368f83c793275faa2c52f60eaa9bdac155c4254b
1360Author: djm@openbsd.org <djm@openbsd.org>
1361Date: Wed Apr 22 01:38:36 2015 +0000
1362
1363 upstream commit
1364
1365 use correct key for nested certificate test
1366
1367commit 8d4d1bfddbbd7d21f545dc6997081d1ea1fbc99a
1368Author: djm@openbsd.org <djm@openbsd.org>
1369Date: Fri May 1 07:11:47 2015 +0000
1370
1371 upstream commit
1372
1373 mention that the user's shell from /etc/passwd is used
1374 for commands too; bz#1459 ok dtucker@
1375
1376commit 5ab283d0016bbc9d4d71e8e5284d011bc5a930cf
1377Author: djm@openbsd.org <djm@openbsd.org>
1378Date: Fri May 8 07:29:00 2015 +0000
1379
1380 upstream commit
1381
1382 whitespace
1383
1384 Upstream-Regress-ID: 6b708a3e709d5b7fd37890f874bafdff1f597519
1385
1386commit 8377d5008ad260048192e1e56ad7d15a56d103dd
1387Author: djm@openbsd.org <djm@openbsd.org>
1388Date: Fri May 8 07:26:13 2015 +0000
1389
1390 upstream commit
1391
1392 whitespace at EOL
1393
1394 Upstream-Regress-ID: 9c48911643d5b05173b36a012041bed4080b8554
1395
1396commit c28a3436fa8737709ea88e4437f8f23a6ab50359
1397Author: djm@openbsd.org <djm@openbsd.org>
1398Date: Fri May 8 06:45:13 2015 +0000
1399
1400 upstream commit
1401
1402 moar whitespace at eol
1403
1404 Upstream-ID: 64eaf872a3ba52ed41e494287e80d40aaba4b515
1405
1406commit 2b64c490468fd4ca35ac8d5cc31c0520dc1508bb
1407Author: djm@openbsd.org <djm@openbsd.org>
1408Date: Fri May 8 06:41:56 2015 +0000
1409
1410 upstream commit
1411
1412 whitespace at EOL
1413
1414 Upstream-ID: 57bcf67d666c6fc1ad798aee448fdc3f70f7ec2c
1415
1416commit 4e636cf201ce6e7e3b9088568218f9d4e2c51712
1417Author: djm@openbsd.org <djm@openbsd.org>
1418Date: Fri May 8 03:56:51 2015 +0000
1419
1420 upstream commit
1421
1422 whitespace at EOL
1423
1424commit 38b8272f823dc1dd4e29dbcee83943ed48bb12fa
1425Author: dtucker@openbsd.org <dtucker@openbsd.org>
1426Date: Mon May 4 01:47:53 2015 +0000
1427
1428 upstream commit
1429
1430 Use diff w/out -u for better portability
1431
1432commit 297060f42d5189a4065ea1b6f0afdf6371fb0507
1433Author: dtucker@openbsd.org <dtucker@openbsd.org>
1434Date: Fri May 8 03:25:07 2015 +0000
1435
1436 upstream commit
1437
1438 Use xcalloc for permitted_adm_opens instead of xmalloc to
1439 ensure it's zeroed. Fixes post-auth crash with permitopen=none. bz#2355, ok
1440 djm@
1441
1442commit 63ebf019be863b2d90492a85e248cf55a6e87403
1443Author: djm@openbsd.org <djm@openbsd.org>
1444Date: Fri May 8 03:17:49 2015 +0000
1445
1446 upstream commit
1447
1448 don't choke on new-format private keys encrypted with an
1449 AEAD cipher; bz#2366, patch from Ron Frederick; ok markus@
1450
1451commit f8484dac678ab3098ae522a5f03bb2530f822987
1452Author: dtucker@openbsd.org <dtucker@openbsd.org>
1453Date: Wed May 6 05:45:17 2015 +0000
1454
1455 upstream commit
1456
1457 Clarify pseudo-terminal request behaviour and use
1458 "pseudo-terminal" consistently. bz#1716, ok jmc@ "I like it" deraadt@.
1459
1460commit ea139507bef8bad26e86ed99a42c7233ad115c38
1461Author: dtucker@openbsd.org <dtucker@openbsd.org>
1462Date: Wed May 6 04:07:18 2015 +0000
1463
1464 upstream commit
1465
1466 Blacklist DH-GEX for specific PuTTY versions known to
1467 send non-RFC4419 DH-GEX messages rather than all versions of PuTTY.
1468 According to Simon Tatham, 0.65 and newer versions will send RFC4419 DH-GEX
1469 messages. ok djm@
1470
1471commit b58234f00ee3872eb84f6e9e572a9a34e902e36e
1472Author: dtucker@openbsd.org <dtucker@openbsd.org>
1473Date: Tue May 5 10:17:49 2015 +0000
1474
1475 upstream commit
1476
1477 WinSCP doesn't implement RFC4419 DH-GEX so flag it so we
1478 don't offer that KEX method. ok markus@
1479
1480commit d5b1507a207253b39e810e91e68f9598691b7a29
1481Author: jsg@openbsd.org <jsg@openbsd.org>
1482Date: Tue May 5 02:48:17 2015 +0000
1483
1484 upstream commit
1485
1486 use the sizeof the struct not the sizeof a pointer to the
1487 struct in ssh_digest_start()
1488
1489 This file is only used if ssh is built with OPENSSL=no
1490
1491 ok markus@
1492
1493commit a647b9b8e616c231594b2710c925d31b1b8afea3
1494Author: Darren Tucker <dtucker@zip.com.au>
1495Date: Fri May 8 11:07:27 2015 +1000
1496
1497 Put brackets around mblen() compat constant.
1498
1499 This might help with the reported problem cross compiling for Android
1500 ("error: expected identifier or '(' before numeric constant") but
1501 shouldn't hurt in any case.
1502
1503commit d1680d36e17244d9af3843aeb5025cb8e40d6c07
1504Author: Darren Tucker <dtucker@zip.com.au>
1505Date: Thu Apr 30 09:18:11 2015 +1000
1506
1507 xrealloc -> xreallocarray in portable code too.
1508
1509commit 531a57a3893f9fcd4aaaba8c312b612bbbcc021e
1510Author: dtucker@openbsd.org <dtucker@openbsd.org>
1511Date: Wed Apr 29 03:48:56 2015 +0000
1512
1513 upstream commit
1514
1515 Allow ListenAddress, Port and AddressFamily in any
1516 order. bz#68, ok djm@, jmc@ (for the man page bit).
1517
1518commit c1d5bcf1aaf1209af02f79e48ba1cbc76a87b56f
1519Author: jmc@openbsd.org <jmc@openbsd.org>
1520Date: Tue Apr 28 13:47:38 2015 +0000
1521
1522 upstream commit
1523
1524 enviroment -> environment: apologies to darren for not
1525 spotting that first time round...
1526
1527commit 43beea053db191cac47c2cd8d3dc1930158aff1a
1528Author: dtucker@openbsd.org <dtucker@openbsd.org>
1529Date: Tue Apr 28 10:25:15 2015 +0000
1530
1531 upstream commit
1532
1533 Fix typo in previous
1534
1535commit 85b96ef41374f3ddc9139581f87da09b2cd9199e
1536Author: dtucker@openbsd.org <dtucker@openbsd.org>
1537Date: Tue Apr 28 10:17:58 2015 +0000
1538
1539 upstream commit
1540
1541 Document that the TERM environment variable is not
1542 subject to SendEnv and AcceptEnv. bz#2386, based loosely on a patch from
1543 jjelen at redhat, help and ok jmc@
1544
1545commit 88a7c598a94ff53f76df228eeaae238d2d467565
1546Author: djm@openbsd.org <djm@openbsd.org>
1547Date: Mon Apr 27 21:42:48 2015 +0000
1548
1549 upstream commit
1550
1551 Make sshd default to PermitRootLogin=no; ok deraadt@
1552 rpe@
1553
1554commit 734226b4480a6c736096c729fcf6f391400599c7
1555Author: djm@openbsd.org <djm@openbsd.org>
1556Date: Mon Apr 27 01:52:30 2015 +0000
1557
1558 upstream commit
1559
1560 fix compilation with OPENSSL=no; ok dtucker@
1561
1562commit a4b9d2ce1eb7703eaf0809b0c8a82ded8aa4f1c6
1563Author: dtucker@openbsd.org <dtucker@openbsd.org>
1564Date: Mon Apr 27 00:37:53 2015 +0000
1565
1566 upstream commit
1567
1568 Include stdio.h for FILE (used in sshkey.h) so it
1569 compiles with OPENSSL=no.
1570
1571commit dbcc652f4ca11fe04e5930c7ef18a219318c6cda
1572Author: djm@openbsd.org <djm@openbsd.org>
1573Date: Mon Apr 27 00:21:21 2015 +0000
1574
1575 upstream commit
1576
1577 allow "sshd -f none" to skip reading the config file,
1578 much like "ssh -F none" does. ok dtucker
1579
1580commit b7ca276fca316c952f0b90f5adb1448c8481eedc
1581Author: jmc@openbsd.org <jmc@openbsd.org>
1582Date: Fri Apr 24 06:26:49 2015 +0000
1583
1584 upstream commit
1585
1586 combine -Dd onto one line and update usage();
1587
1588commit 2ea974630d7017e4c7666d14d9dc939707613e96
1589Author: djm@openbsd.org <djm@openbsd.org>
1590Date: Fri Apr 24 05:26:44 2015 +0000
1591
1592 upstream commit
1593
1594 add ssh-agent -D to leave ssh-agent in foreground
1595 without enabling debug mode; bz#2381 ok dtucker@
1596
1597commit 8ac2ffd7aa06042f6b924c87139f2fea5c5682f7
1598Author: deraadt@openbsd.org <deraadt@openbsd.org>
1599Date: Fri Apr 24 01:36:24 2015 +0000
1600
1601 upstream commit
1602
1603 2*len -> use xreallocarray() ok djm
1604
1605commit 657a5fbc0d0aff309079ff8fb386f17e964963c2
1606Author: deraadt@openbsd.org <deraadt@openbsd.org>
1607Date: Fri Apr 24 01:36:00 2015 +0000
1608
1609 upstream commit
1610
1611 rename xrealloc() to xreallocarray() since it follows
1612 that form. ok djm
1613
1614commit 1108ae242fdd2c304307b68ddf46aebe43ebffaa
1615Author: dtucker@openbsd.org <dtucker@openbsd.org>
1616Date: Thu Apr 23 04:59:10 2015 +0000
1617
1618 upstream commit
1619
1620 Two small fixes for sshd -T: ListenAddress'es are added
1621 to a list head so reverse the order when printing them to ensure the
1622 behaviour remains the same, and print StreamLocalBindMask as octal with
1623 leading zero. ok deraadt@
1624
1625commit bd902b8473e1168f19378d5d0ae68d0c203525df
1626Author: dtucker@openbsd.org <dtucker@openbsd.org>
1627Date: Thu Apr 23 04:53:53 2015 +0000
1628
1629 upstream commit
1630
1631 Check for and reject missing arguments for
1632 VersionAddendum and ForceCommand. bz#2281, patch from plautrba at redhat com,
1633 ok djm@
1634
1635commit ca42c1758575e592239de1d5755140e054b91a0d
1636Author: djm@openbsd.org <djm@openbsd.org>
1637Date: Wed Apr 22 01:24:01 2015 +0000
1638
1639 upstream commit
1640
1641 unknown certificate extensions are non-fatal, so don't
1642 fatal when they are encountered; bz#2387 reported by Bob Van Zant; ok
1643 dtucker@
1644
1645commit 39bfbf7caad231cc4bda6909fb1af0705bca04d8
1646Author: jsg@openbsd.org <jsg@openbsd.org>
1647Date: Tue Apr 21 07:01:00 2015 +0000
1648
1649 upstream commit
1650
1651 Add back a backslash removed in rev 1.42 so
1652 KEX_SERVER_ENCRYPT will include aes again.
1653
1654 ok deraadt@
1655
1656commit 6b0d576bb87eca3efd2b309fcfe4edfefc289f9c
1657Author: djm@openbsd.org <djm@openbsd.org>
1658Date: Fri Apr 17 13:32:09 2015 +0000
1659
1660 upstream commit
1661
1662 s/recommended/required/ that private keys be og-r this
1663 wording change was made a while ago but got accidentally reverted
1664
1665commit 44a8e7ce6f3ab4c2eb1ae49115c210b98e53c4df
1666Author: djm@openbsd.org <djm@openbsd.org>
1667Date: Fri Apr 17 13:25:52 2015 +0000
1668
1669 upstream commit
1670
1671 don't try to cleanup NULL KEX proposals in
1672 kex_prop_free(); found by Jukka Taimisto and Markus Hietava
1673
1674commit 3038a191872d2882052306098c1810d14835e704
1675Author: djm@openbsd.org <djm@openbsd.org>
1676Date: Fri Apr 17 13:19:22 2015 +0000
1677
1678 upstream commit
1679
1680 use error/logit/fatal instead of fprintf(stderr, ...)
1681 and exit(0), fix a few errors that were being printed to stdout instead of
1682 stderr and a few non-errors that were going to stderr instead of stdout
1683 bz#2325; ok dtucker
1684
1685commit a58be33cb6cd24441fa7e634db0e5babdd56f07f
1686Author: djm@openbsd.org <djm@openbsd.org>
1687Date: Fri Apr 17 13:16:48 2015 +0000
1688
1689 upstream commit
1690
1691 debug log missing DISPLAY environment when X11
1692 forwarding requested; bz#1682 ok dtucker@
1693
1694commit 17d4d9d9fbc8fb80e322f94d95eecc604588a474
1695Author: djm@openbsd.org <djm@openbsd.org>
1696Date: Fri Apr 17 04:32:31 2015 +0000
1697
1698 upstream commit
1699
1700 don't call record_login() in monitor when UseLogin is
1701 enabled; bz#278 reported by drk AT sgi.com; ok dtucker
1702
1703commit 40132ff87b6cbc3dc05fb5df2e9d8e3afa06aafd
1704Author: dtucker@openbsd.org <dtucker@openbsd.org>
1705Date: Fri Apr 17 04:12:35 2015 +0000
1706
1707 upstream commit
1708
1709 Add some missing options to sshd -T and fix the output
1710 of VersionAddendum HostCertificate. bz#2346, patch from jjelen at redhat
1711 com, ok djm.
1712
1713commit 6cc7cfa936afde2d829e56ee6528c7ea47a42441
1714Author: dtucker@openbsd.org <dtucker@openbsd.org>
1715Date: Thu Apr 16 23:25:50 2015 +0000
1716
1717 upstream commit
1718
1719 Document "none" for PidFile XAuthLocation
1720 TrustedUserCAKeys and RevokedKeys. bz#2382, feedback from jmc@, ok djm@
1721
1722commit 15fdfc9b1c6808b26bc54d4d61a38b54541763ed
1723Author: dtucker@openbsd.org <dtucker@openbsd.org>
1724Date: Wed Apr 15 23:23:25 2015 +0000
1725
1726 upstream commit
1727
1728 Plug leak of address passed to logging. bz#2373, patch
1729 from jjelen at redhat, ok markus@
1730
1731commit bb2289e2a47d465eaaaeff3dee2a6b7777b4c291
1732Author: dtucker@openbsd.org <dtucker@openbsd.org>
1733Date: Tue Apr 14 04:17:03 2015 +0000
1734
1735 upstream commit
1736
1737 Output remote username in debug output since with Host
1738 and Match it's not always obvious what it will be. bz#2368, ok djm@
1739
1740commit 70860b6d07461906730632f9758ff1b7c98c695a
1741Author: Darren Tucker <dtucker@zip.com.au>
1742Date: Fri Apr 17 10:56:13 2015 +1000
1743
1744 Format UsePAM setting when using sshd -T.
1745
1746 Part of bz#2346, patch from jjelen at redhat com.
1747
1748commit ee15d9c9f0720f5a8b0b34e4b10ecf21f9824814
1749Author: Darren Tucker <dtucker@zip.com.au>
1750Date: Fri Apr 17 10:40:23 2015 +1000
1751
1752 Wrap endian.h include inside ifdef (bz#2370).
1753
1754commit 408f4c2ad4a4c41baa7b9b2b7423d875abbfa70b
1755Author: Darren Tucker <dtucker@zip.com.au>
1756Date: Fri Apr 17 09:39:58 2015 +1000
1757
1758 Look for '${host}-ar' before 'ar'.
1759
1760 This changes configure.ac to look for '${host}-ar' as set by
1761 AC_CANONICAL_HOST before looking for the unprefixed 'ar'.
1762 Useful when cross-compiling when all your binutils are prefixed.
1763
1764 Patch from moben at exherbo org via astrand at lysator liu se and
1765 bz#2352.
1766
1767commit 673a1c16ad078d41558247ce739fe812c960acc8
1768Author: Damien Miller <djm@google.com>
1769Date: Thu Apr 16 11:40:20 2015 +1000
1770
1771 remove dependency on arpa/telnet.h
1772
1773commit 202d443eeda1829d336595a3cfc07827e49f45ed
1774Author: Darren Tucker <dtucker@zip.com.au>
1775Date: Wed Apr 15 15:59:49 2015 +1000
1776
1777 Remove duplicate include of pwd.h. bz#2337, patch from Mordy Ovits.
1778
1779commit 597986493412c499f2bc2209420cb195f97b3668
1780Author: Damien Miller <djm@google.com>
1781Date: Thu Apr 9 10:14:48 2015 +1000
1782
1783 platform's with openpty don't need pty_release
1784
1785commit 318be28cda1fd9108f2e6f2f86b0b7589ba2aed0
1786Author: djm@openbsd.org <djm@openbsd.org>
1787Date: Mon Apr 13 02:04:08 2015 +0000
1788
1789 upstream commit
1790
1791 deprecate ancient, pre-RFC4419 and undocumented
1792 SSH2_MSG_KEX_DH_GEX_REQUEST_OLD message; ok markus@ deraadt@ "seems
1793 reasonable" dtucker@
1794
1795commit d8f391caef62378463a0e6b36f940170dadfe605
1796Author: dtucker@openbsd.org <dtucker@openbsd.org>
1797Date: Fri Apr 10 05:16:50 2015 +0000
1798
1799 upstream commit
1800
1801 Don't send hostkey advertisments
1802 (hostkeys-00@openssh.com) to current versions of Tera Term as they can't
1803 handle them. Newer versions should be OK. Patch from Bryan Drewery and
1804 IWAMOTO Kouichi, ok djm@
1805
1806commit 2c2cfe1a1c97eb9a08cc9817fd0678209680c636
1807Author: djm@openbsd.org <djm@openbsd.org>
1808Date: Fri Apr 10 00:08:55 2015 +0000
1809
1810 upstream commit
1811
1812 include port number if a non-default one has been
1813 specified; based on patch from Michael Handler
1814
1815commit 4492a4f222da4cf1e8eab12689196322e27b08c4
1816Author: djm@openbsd.org <djm@openbsd.org>
1817Date: Tue Apr 7 23:00:42 2015 +0000
1818
1819 upstream commit
1820
1821 treat Protocol=1,2|2,1 as Protocol=2 when compiled
1822 without SSH1 support; ok dtucker@ millert@
1823
1824commit c265e2e6e932efc6d86f6cc885dea33637a67564
1825Author: miod@openbsd.org <miod@openbsd.org>
1826Date: Sun Apr 5 15:43:43 2015 +0000
1827
1828 upstream commit
1829
1830 Do not use int for sig_atomic_t; spotted by
1831 christos@netbsd; ok markus@
1832
1833commit e7bf3a5eda6a1b02bef6096fed78527ee11e54cc
1834Author: Darren Tucker <dtucker@zip.com.au>
1835Date: Tue Apr 7 10:48:04 2015 +1000
1836
1837 Use do{}while(0) for no-op functions.
1838
1839 From FreeBSD.
1840
1841commit bb99844abae2b6447272f79e7fa84134802eb4df
1842Author: Darren Tucker <dtucker@zip.com.au>
1843Date: Tue Apr 7 10:47:15 2015 +1000
1844
1845 Wrap blf.h include in ifdef. From FreeBSD.
1846
1847commit d9b9b43656091cf0ad55c122f08fadb07dad0abd
1848Author: Darren Tucker <dtucker@zip.com.au>
1849Date: Tue Apr 7 09:10:00 2015 +1000
1850
1851 Fix misspellings of regress CONFOPTS env variables.
1852
1853 Patch from Bryan Drewery.
1854
1855commit 3f4ea3c9ab1d32d43c9222c4351f58ca11144156
1856Author: djm@openbsd.org <djm@openbsd.org>
1857Date: Fri Apr 3 22:17:27 2015 +0000
1858
1859 upstream commit
1860
1861 correct return value in pubkey parsing, spotted by Ben Hawkes
1862 ok markus@
1863
1864commit 7da2be0cb9601ed25460c83aa4d44052b967ba0f
1865Author: djm@openbsd.org <djm@openbsd.org>
1866Date: Tue Mar 31 22:59:01 2015 +0000
1867
1868 upstream commit
1869
1870 adapt to recent hostfile.c change: when parsing
1871 known_hosts without fully parsing the keys therein, hostkeys_foreach() will
1872 now correctly identify KEY_RSA1 keys; ok markus@ miod@
1873
1874commit 9e1777a0d1c706714b055811c12ab8cc21033e4a
1875Author: markus@openbsd.org <markus@openbsd.org>
1876Date: Tue Mar 24 20:19:15 2015 +0000
1877
1878 upstream commit
1879
1880 use ${SSH} for -Q instead of installed ssh
1881
1882commit ce1b358ea414a2cc88e4430cd5a2ea7fecd9de57
1883Author: djm@openbsd.org <djm@openbsd.org>
1884Date: Mon Mar 16 22:46:14 2015 +0000
1885
1886 upstream commit
1887
1888 make CLEANFILES clean up more of the tests' droppings
1889
1890commit 398f9ef192d820b67beba01ec234d66faca65775
1891Author: djm@openbsd.org <djm@openbsd.org>
1892Date: Tue Mar 31 22:57:06 2015 +0000
1893
1894 upstream commit
1895
1896 downgrade error() for known_hosts parse errors to debug()
1897 to quiet warnings from ssh1 keys present when compiled !ssh1.
1898
1899 also identify ssh1 keys when scanning, even when compiled !ssh1
1900
1901 ok markus@ miod@
1902
1903commit 9a47ab80030a31f2d122b8fd95bd48c408b9fcd9
1904Author: djm@openbsd.org <djm@openbsd.org>
1905Date: Tue Mar 31 22:55:50 2015 +0000
1906
1907 upstream commit
1908
1909 fd leak for !ssh1 case; found by unittests; ok markus@
1910
1911commit c9a0805a6280681901c270755a7cd630d7c5280e
1912Author: djm@openbsd.org <djm@openbsd.org>
1913Date: Tue Mar 31 22:55:24 2015 +0000
1914
1915 upstream commit
1916
1917 don't fatal when a !ssh1 sshd is reexeced from a w/ssh1
1918 listener; reported by miod@; ok miod@ markus@
1919
1920commit 704d8c88988cae38fb755a6243b119731d223222
1921Author: tobias@openbsd.org <tobias@openbsd.org>
1922Date: Tue Mar 31 11:06:49 2015 +0000
1923
1924 upstream commit
1925
1926 Comments are only supported for RSA1 keys. If a user
1927 tried to add one and entered his passphrase, explicitly clear it before exit.
1928 This is done in all other error paths, too.
1929
1930 ok djm
1931
1932commit 78de1673c05ea2c33e0d4a4b64ecb5186b6ea2e9
1933Author: jmc@openbsd.org <jmc@openbsd.org>
1934Date: Mon Mar 30 18:28:37 2015 +0000
1935
1936 upstream commit
1937
1938 ssh-askpass(1) is the default, overridden by SSH_ASKPASS;
1939 diff originally from jiri b;
1940
1941commit 26e0bcf766fadb4a44fb6199386fb1dcab65ad00
1942Author: djm@openbsd.org <djm@openbsd.org>
1943Date: Mon Mar 30 00:00:29 2015 +0000
1944
1945 upstream commit
1946
1947 fix uninitialised memory read when parsing a config file
1948 consisting of a single nul byte. Found by hanno AT hboeck.de using AFL; ok
1949 dtucker
1950
1951commit fecede00a76fbb33a349f5121c0b2f9fbc04a777
1952Author: markus@openbsd.org <markus@openbsd.org>
1953Date: Thu Mar 26 19:32:19 2015 +0000
1954
1955 upstream commit
1956
1957 sigp and lenp are not optional in ssh_agent_sign(); ok
1958 djm@
1959
1960commit 1b0ef3813244c78669e6d4d54c624f600945327d
1961Author: naddy@openbsd.org <naddy@openbsd.org>
1962Date: Thu Mar 26 12:32:38 2015 +0000
1963
1964 upstream commit
1965
1966 don't try to load .ssh/identity by default if SSH1 is
1967 disabled; ok markus@
1968
1969commit f9b78852379b74a2d14e6fc94fe52af30b7e9c31
1970Author: djm@openbsd.org <djm@openbsd.org>
1971Date: Thu Mar 26 07:00:04 2015 +0000
1972
1973 upstream commit
1974
1975 ban all-zero curve25519 keys as recommended by latest
1976 CFRG curves draft; ok markus
1977
1978commit b8afbe2c1aaf573565e4da775261dfafc8b1ba9c
1979Author: djm@openbsd.org <djm@openbsd.org>
1980Date: Thu Mar 26 06:59:28 2015 +0000
1981
1982 upstream commit
1983
1984 relax bits needed check to allow
1985 diffie-hellman-group1-sha1 key exchange to complete for chacha20-poly1305 was
1986 selected as symmetric cipher; ok markus
1987
1988commit 47842f71e31da130555353c1d57a1e5a8937f1c0
1989Author: markus@openbsd.org <markus@openbsd.org>
1990Date: Wed Mar 25 19:29:58 2015 +0000
1991
1992 upstream commit
1993
1994 ignore v1 errors on ssh-add -D; only try v2 keys on
1995 -l/-L (unless WITH_SSH1) ok djm@
1996
1997commit 5f57e77f91bf2230c09eca96eb5ecec39e5f2da6
1998Author: markus@openbsd.org <markus@openbsd.org>
1999Date: Wed Mar 25 19:21:48 2015 +0000
2000
2001 upstream commit
2002
2003 unbreak ssh_agent_sign (lenp vs *lenp)
2004
2005commit 4daeb67181054f2a377677fac919ee8f9ed3490e
2006Author: markus@openbsd.org <markus@openbsd.org>
2007Date: Tue Mar 24 20:10:08 2015 +0000
2008
2009 upstream commit
2010
2011 don't leak 'setp' on error; noted by Nicholas Lemonias;
2012 ok djm@
2013
2014commit 7d4f96f9de2a18af0d9fa75ea89a4990de0344f5
2015Author: markus@openbsd.org <markus@openbsd.org>
2016Date: Tue Mar 24 20:09:11 2015 +0000
2017
2018 upstream commit
2019
2020 consistent check for NULL as noted by Nicholas
2021 Lemonias; ok djm@
2022
2023commit df100be51354e447d9345cf1ec22e6013c0eed50
2024Author: markus@openbsd.org <markus@openbsd.org>
2025Date: Tue Mar 24 20:03:44 2015 +0000
2026
2027 upstream commit
2028
2029 correct fmt-string for size_t as noted by Nicholas
2030 Lemonias; ok djm@
2031
2032commit a22b9ef21285e81775732436f7c84a27bd3f71e0
2033Author: djm@openbsd.org <djm@openbsd.org>
2034Date: Tue Mar 24 09:17:21 2015 +0000
2035
2036 upstream commit
2037
2038 promote chacha20-poly1305@openssh.com to be the default
2039 cipher; ok markus
2040
2041commit 2aa9da1a3b360cf7b13e96fe1521534b91501fb5
2042Author: djm@openbsd.org <djm@openbsd.org>
2043Date: Tue Mar 24 01:29:19 2015 +0000
2044
2045 upstream commit
2046
2047 Compile-time disable SSH protocol 1. You can turn it
2048 back on using the Makefile.inc knob if you need it to talk to ancient
2049 devices.
2050
2051commit 53097b2022154edf96b4e8526af5666f979503f7
2052Author: djm@openbsd.org <djm@openbsd.org>
2053Date: Tue Mar 24 01:11:12 2015 +0000
2054
2055 upstream commit
2056
2057 fix double-negative error message "ssh1 is not
2058 unsupported"
2059
2060commit 5c27e3b6ec2db711dfcd40e6359c0bcdd0b62ea9
2061Author: djm@openbsd.org <djm@openbsd.org>
2062Date: Mon Mar 23 06:06:38 2015 +0000
2063
2064 upstream commit
2065
2066 for ssh-keygen -A, don't try (and fail) to generate ssh
2067 v.1 keys when compiled without SSH1 support RSA/DSA/ECDSA keys when compiled
2068 without OpenSSL based on patch by Mike Frysinger; bz#2369
2069
2070commit 725fd22a8c41db7de73a638539a5157b7e4424ae
2071Author: djm@openbsd.org <djm@openbsd.org>
2072Date: Wed Mar 18 01:44:21 2015 +0000
2073
2074 upstream commit
2075
2076 KRL support doesn't need OpenSSL anymore, remove #ifdefs
2077 from around call
2078
2079commit b07011c18e0b2e172c5fd09d21fb159a0bf5fcc7
2080Author: djm@openbsd.org <djm@openbsd.org>
2081Date: Mon Mar 16 11:09:52 2015 +0000
2082
2083 upstream commit
2084
2085 #if 0 some more arrays used only for decrypting (we don't
2086 use since we only need encrypt for AES-CTR)
2087
2088commit 1cb3016635898d287e9d58b50c430995652d5358
2089Author: jsg@openbsd.org <jsg@openbsd.org>
2090Date: Wed Mar 11 00:48:39 2015 +0000
2091
2092 upstream commit
2093
2094 add back the changes from rev 1.206, djm reverted this by
2095 mistake in rev 1.207
2096
2097commit 4d24b3b6a4a6383e05e7da26d183b79fa8663697
2098Author: Damien Miller <djm@mindrot.org>
2099Date: Fri Mar 20 09:11:59 2015 +1100
2100
2101 remove error() accidentally inserted for debugging
2102
2103 pointed out by Christian Hesse
2104
2105commit 9f82e5a9042f2d872e98f48a876fcab3e25dd9bb
2106Author: Tim Rice <tim@multitalents.net>
2107Date: Mon Mar 16 22:49:20 2015 -0700
2108
2109 portability fix: Solaris systems may not have a grep that understands -q
2110
2111commit 8ef691f7d9ef500257a549d0906d78187490668f
2112Author: Damien Miller <djm@google.com>
2113Date: Wed Mar 11 10:35:26 2015 +1100
2114
2115 fix compile with clang
2116
2117commit 4df590cf8dc799e8986268d62019b487a8ed63ad
2118Author: Damien Miller <djm@google.com>
2119Date: Wed Mar 11 10:02:39 2015 +1100
2120
2121 make unit tests work for !OPENSSH_HAS_ECC
2122
2123commit 307bb40277ca2c32e97e61d70d1ed74b571fd6ba
2124Author: djm@openbsd.org <djm@openbsd.org>
2125Date: Sat Mar 7 04:41:48 2015 +0000
2126
2127 upstream commit
2128
2129 unbreak for w/SSH1 (default) case; ok markus@ deraadt@
2130
2131commit b44ee0c998fb4c5f3c3281f2398af5ce42840b6f
2132Author: Damien Miller <djm@mindrot.org>
2133Date: Thu Mar 5 18:39:20 2015 -0800
2134
2135 unbreak hostkeys test for w/ SSH1 case
2136
2137commit 55e5bdeb519cb60cc18b7ba0545be581fb8598b4
2138Author: djm@openbsd.org <djm@openbsd.org>
2139Date: Fri Mar 6 01:40:56 2015 +0000
2140
2141 upstream commit
2142
2143 fix sshkey_certify() return value for unsupported key types;
2144 ok markus@ deraadt@
2145
2146commit be8f658e550a434eac04256bfbc4289457a24e99
2147Author: Damien Miller <djm@mindrot.org>
2148Date: Wed Mar 4 15:38:03 2015 -0800
2149
2150 update version numbers to match version.h
2151
2152commit ac5e8acefa253eb5e5ba186e34236c0e8007afdc
2153Author: djm@openbsd.org <djm@openbsd.org>
2154Date: Wed Mar 4 23:22:35 2015 +0000
2155
2156 upstream commit
2157
2158 make these work with !SSH1; ok markus@ deraadt@
2159
2160commit 2f04af92f036b0c87a23efb259c37da98cd81fe6
2161Author: djm@openbsd.org <djm@openbsd.org>
2162Date: Wed Mar 4 21:12:59 2015 +0000
2163
2164 upstream commit
2165
2166 make ssh-add -D work with !SSH1 agent
2167
2168commit a05adf95d2af6abb2b7826ddaa7a0ec0cdc1726b
2169Author: Damien Miller <djm@mindrot.org>
2170Date: Wed Mar 4 00:55:48 2015 -0800
2171
2172 netcat needs poll.h portability goop
2173
2174commit dad2b1892b4c1b7e58df483a8c5b983c4454e099
2175Author: markus@openbsd.org <markus@openbsd.org>
2176Date: Tue Mar 3 22:35:19 2015 +0000
2177
2178 upstream commit
2179
2180 make it possible to run tests w/o ssh1 support; ok djm@
2181
2182commit d48a22601bdd3eec054794c535f4ae8d8ae4c6e2
2183Author: djm@openbsd.org <djm@openbsd.org>
2184Date: Wed Mar 4 18:53:53 2015 +0000
2185
2186 upstream commit
2187
2188 crank; ok markus, deraadt
2189
2190commit bbffb23daa0b002dd9f296e396a9ab8a5866b339
2191Author: Damien Miller <djm@mindrot.org>
2192Date: Tue Mar 3 13:50:27 2015 -0800
2193
2194 more --without-ssh1 fixes
2195
2196commit 6c2039286f503e2012a58a1d109e389016e7a99b
2197Author: Damien Miller <djm@mindrot.org>
2198Date: Tue Mar 3 13:48:48 2015 -0800
2199
2200 fix merge both that broke --without-ssh1 compile
2201
2202commit 111dfb225478a76f89ecbcd31e96eaf1311b59d3
2203Author: djm@openbsd.org <djm@openbsd.org>
2204Date: Tue Mar 3 21:21:13 2015 +0000
2205
2206 upstream commit
2207
2208 add SSH1 Makefile knob to make it easier to build without
2209 SSH1 support; ok markus@
2210
2211commit 3f7f5e6c5d2aa3f6710289c1a30119e534e56c5c
2212Author: djm@openbsd.org <djm@openbsd.org>
2213Date: Tue Mar 3 20:42:49 2015 +0000
2214
2215 upstream commit
2216
2217 expand __unused to full __attribute__ for better portability
2218
2219commit 2fab9b0f8720baf990c931e3f68babb0bf9949c6
2220Author: Damien Miller <djm@mindrot.org>
2221Date: Wed Mar 4 07:41:27 2015 +1100
2222
2223 avoid warning
2224
2225commit d1bc844322461f882b4fd2277ba9a8d4966573d2
2226Author: Damien Miller <djm@mindrot.org>
2227Date: Wed Mar 4 06:31:45 2015 +1100
2228
2229 Revert "define __unused to nothing if not already defined"
2230
2231 This reverts commit 1598419e38afbaa8aa5df8dd6b0af98301e2c908.
2232
2233 Some system headers have objects named __unused
2234
2235commit 00797e86b2d98334d1bb808f65fa1fd47f328ff1
2236Author: Damien Miller <djm@mindrot.org>
2237Date: Wed Mar 4 05:02:45 2015 +1100
2238
2239 check for crypt and DES_crypt in openssl block
2240
2241 fixes builds on systems that use DES_crypt; based on patch
2242 from Roumen Petrov
2243
2244commit 1598419e38afbaa8aa5df8dd6b0af98301e2c908
2245Author: Damien Miller <djm@mindrot.org>
2246Date: Wed Mar 4 04:59:13 2015 +1100
2247
2248 define __unused to nothing if not already defined
2249
2250 fixes builds on BSD/OS
2251
2252commit d608a51daad4f14ad6ab43d7cf74ef4801cc3fe9
2253Author: djm@openbsd.org <djm@openbsd.org>
2254Date: Tue Mar 3 17:53:40 2015 +0000
2255
2256 upstream commit
2257
2258 reorder logic for better portability; patch from Roumen
2259 Petrov
2260
2261commit 68d2dfc464fbcdf8d6387884260f9801f4352393
2262Author: djm@openbsd.org <djm@openbsd.org>
2263Date: Tue Mar 3 06:48:58 2015 +0000
2264
2265 upstream commit
2266
2267 Allow "ssh -Q protocol-version" to list supported SSH
2268 protocol versions. Useful for detecting builds without SSH v.1 support; idea
2269 and ok markus@
2270
2271commit 39e2f1229562e1195169905607bc12290d21f021
2272Author: millert@openbsd.org <millert@openbsd.org>
2273Date: Sun Mar 1 15:44:40 2015 +0000
2274
2275 upstream commit
2276
2277 Make sure we only call getnameinfo() for AF_INET or AF_INET6
2278 sockets. getpeername() of a Unix domain socket may return without error on
2279 some systems without actually setting ss_family so getnameinfo() was getting
2280 called with ss_family set to AF_UNSPEC. OK djm@
2281
2282commit e47536ba9692d271b8ad89078abdecf0a1c11707
2283Author: Damien Miller <djm@mindrot.org>
2284Date: Sat Feb 28 08:20:11 2015 -0800
2285
2286 portability fixes for regress/netcat.c
2287
2288 Mostly avoiding "err(1, NULL)"
2289
2290commit 02973ad5f6f49d8420e50a392331432b0396c100
2291Author: Damien Miller <djm@mindrot.org>
2292Date: Sat Feb 28 08:05:27 2015 -0800
2293
2294 twiddle another test for portability
2295
2296 from Tom G. Christensen
2297
2298commit f7f3116abf2a6e2f309ab096b08c58d19613e5d0
2299Author: Damien Miller <djm@mindrot.org>
2300Date: Fri Feb 27 15:52:49 2015 -0800
2301
2302 twiddle test for portability
2303
2304commit 1ad3a77cc9d5568f5437ff99d377aa7a41859b83
2305Author: Damien Miller <djm@mindrot.org>
2306Date: Thu Feb 26 20:33:22 2015 -0800
2307
2308 make regress/netcat.c fd passing (more) portable
2309
2310commit 9e1cfca7e1fe9cf8edb634fc894e43993e4da1ea
2311Author: Damien Miller <djm@mindrot.org>
2312Date: Thu Feb 26 20:32:58 2015 -0800
2313
2314 create OBJ/valgrind-out before running unittests
2315
2316commit bd58853102cee739f0e115e6d4b5334332ab1442
2317Author: Damien Miller <djm@mindrot.org>
2318Date: Wed Feb 25 16:58:22 2015 -0800
2319
2320 valgrind support
2321
2322commit f43d17269194761eded9e89f17456332f4c83824
2323Author: djm@openbsd.org <djm@openbsd.org>
2324Date: Thu Feb 26 20:45:47 2015 +0000
2325
2326 upstream commit
2327
2328 don't printf NULL key comments; reported by Tom Christensen
2329
2330commit 6e6458b476ec854db33e3e68ebf4f489d0ab3df8
2331Author: djm@openbsd.org <djm@openbsd.org>
2332Date: Wed Feb 25 23:05:47 2015 +0000
2333
2334 upstream commit
2335
2336 zero cmsgbuf before use; we initialise the bits we use
2337 but valgrind still spams warning on it
2338
2339commit a63cfa26864b93ab6afefad0b630e5358ed8edfa
2340Author: djm@openbsd.org <djm@openbsd.org>
2341Date: Wed Feb 25 19:54:02 2015 +0000
2342
2343 upstream commit
2344
2345 fix small memory leak when UpdateHostkeys=no
2346
2347commit e6b950341dd75baa8526f1862bca39e52f5b879b
2348Author: Tim Rice <tim@multitalents.net>
2349Date: Wed Feb 25 09:56:48 2015 -0800
2350
2351 Revert "Work around finicky USL linker so netcat will build."
2352
2353 This reverts commit d1db656021d0cd8c001a6692f772f1de29b67c8b.
2354
2355 No longer needed with commit 678e473e2af2e4802f24dd913985864d9ead7fb3
2356
2357commit 6f621603f9cff2a5d6016a404c96cb2f8ac2dec0
2358Author: djm@openbsd.org <djm@openbsd.org>
2359Date: Wed Feb 25 17:29:38 2015 +0000
2360
2361 upstream commit
2362
2363 don't leak validity of user in "too many authentication
2364 failures" disconnect message; reported by Sebastian Reitenbach
2365
2366commit 6288e3a935494df12519164f52ca5c8c65fc3ca5
2367Author: naddy@openbsd.org <naddy@openbsd.org>
2368Date: Tue Feb 24 15:24:05 2015 +0000
2369
2370 upstream commit
2371
2372 add -v (show ASCII art) to -l's synopsis; ok djm@
2373
2374commit 678e473e2af2e4802f24dd913985864d9ead7fb3
2375Author: Darren Tucker <dtucker@zip.com.au>
2376Date: Thu Feb 26 04:12:58 2015 +1100
2377
2378 Remove dependency on xmalloc.
2379
2380 Remove ssh_get_progname's dependency on xmalloc, which should reduce
2381 link order problems. ok djm@
2382
2383commit 5d5ec165c5b614b03678afdad881f10e25832e46
2384Author: Darren Tucker <dtucker@zip.com.au>
2385Date: Wed Feb 25 15:32:49 2015 +1100
2386
2387 Restrict ECDSA and ECDH tests.
2388
2389 ifdef out some more ECDSA and ECDH tests when built against an OpenSSL
2390 that does not have eliptic curve functionality.
2391
2392commit 1734e276d99b17e92d4233fac7aef3a3180aaca7
2393Author: Darren Tucker <dtucker@zip.com.au>
2394Date: Wed Feb 25 13:40:45 2015 +1100
2395
2396 Move definition of _NSIG.
2397
2398 _NSIG is only unsed in one file, so move it there prevent redefinition
2399 warnings reported by Kevin Brott.
2400
2401commit a47ead7c95cfbeb72721066c4da2312e5b1b9f3d
2402Author: Darren Tucker <dtucker@zip.com.au>
2403Date: Wed Feb 25 13:17:40 2015 +1100
2404
2405 Add includes.h for compatibility stuff.
2406
2407commit 38806bda6d2e48ad32812b461eebe17672ada771
2408Author: Damien Miller <djm@mindrot.org>
2409Date: Tue Feb 24 16:50:06 2015 -0800
2410
2411 include netdb.h to look for MAXHOSTNAMELEN; ok tim
2412
2413commit d1db656021d0cd8c001a6692f772f1de29b67c8b
2414Author: Tim Rice <tim@multitalents.net>
2415Date: Tue Feb 24 10:42:08 2015 -0800
2416
2417 Work around finicky USL linker so netcat will build.
2418
2419commit cb030ce25f555737e8ba97bdd7883ac43f3ff2a3
2420Author: Damien Miller <djm@mindrot.org>
2421Date: Tue Feb 24 09:23:04 2015 -0800
2422
2423 include includes.h to avoid build failure on AIX
2424
2425commit 13af342458f5064144abbb07e5ac9bbd4eb42567
2426Author: Tim Rice <tim@multitalents.net>
2427Date: Tue Feb 24 07:56:47 2015 -0800
2428
2429 Original portability patch from djm@ for platforms missing err.h.
2430 Fix name space clash on Solaris 10. Still more to do for Solaris 10
2431 to deal with msghdr structure differences. ok djm@
2432
2433commit 910209203d0cd60c5083901cbcc0b7b44d9f48d2
2434Author: Tim Rice <tim@multitalents.net>
2435Date: Mon Feb 23 22:06:56 2015 -0800
2436
2437 cleaner way fix dispatch.h portion of commit
2438 a88dd1da119052870bb2654c1a32c51971eade16
2439 (some systems have sig_atomic_t in signal.h, some in sys/signal.h)
2440 Sounds good to me djm@
2441
2442commit 676c38d7cbe65b76bbfff796861bb6615cc6a596
2443Author: Tim Rice <tim@multitalents.net>
2444Date: Mon Feb 23 21:51:33 2015 -0800
2445
2446 portability fix: if we can't dind a better define for HOST_NAME_MAX, use 255
2447
2448commit 1221b22023dce38cbc90ba77eae4c5d78c77a5e6
2449Author: Tim Rice <tim@multitalents.net>
2450Date: Mon Feb 23 21:50:34 2015 -0800
2451
2452 portablity fix: s/__inline__/inline/
2453
2454commit 4c356308a88d309c796325bb75dce90ca16591d5
2455Author: Darren Tucker <dtucker@zip.com.au>
2456Date: Tue Feb 24 13:49:31 2015 +1100
2457
2458 Wrap stdint.h includes in HAVE_STDINT_H.
2459
2460commit c9c88355c6a27a908e7d1e5003a2b35ea99c1614
2461Author: Darren Tucker <dtucker@zip.com.au>
2462Date: Tue Feb 24 13:43:57 2015 +1100
2463
2464 Add AI_NUMERICSERV to fake-rfc2553.
2465
2466 Our getaddrinfo implementation always returns numeric values already.
2467
2468commit ef342ab1ce6fb9a4b30186c89c309d0ae9d0eeb4
2469Author: Darren Tucker <dtucker@zip.com.au>
2470Date: Tue Feb 24 13:39:57 2015 +1100
2471
2472 Include OpenSSL's objects.h before bn.h.
2473
2474 Prevents compile errors on some platforms (at least old GCCs and AIX's
2475 XLC compilers).
2476
2477commit dcc8997d116f615195aa7c9ec019fb36c28c6228
2478Author: Darren Tucker <dtucker@zip.com.au>
2479Date: Tue Feb 24 12:30:59 2015 +1100
2480
2481 Convert two macros into functions.
2482
2483 Convert packet_send_debug and packet_disconnect from macros to
2484 functions. Some older GCCs (2.7.x, 2.95.x) see to have problems with
2485 variadic macros with only one argument so we convert these two into
2486 functions. ok djm@
2487
2488commit 2285c30d51b7e2052c6526445abe7e7cc7e170a1
2489Author: djm@openbsd.org <djm@openbsd.org>
2490Date: Mon Feb 23 22:21:21 2015 +0000
2491
2492 upstream commit
2493
2494 further silence spurious error message even when -v is
2495 specified (e.g. to get visual host keys); reported by naddy@
2496
2497commit 9af21979c00652029e160295e988dea40758ece2
2498Author: Damien Miller <djm@mindrot.org>
2499Date: Tue Feb 24 09:04:32 2015 +1100
2500
2501 don't include stdint.h unless HAVE_STDINT_H set
2502
2503commit 62f678dd51660d6f8aee1da33d3222c5de10a89e
2504Author: Damien Miller <djm@mindrot.org>
2505Date: Tue Feb 24 09:02:54 2015 +1100
2506
2507 nother sys/queue.h -> sys-queue.h fix
2508
2509 spotted by Tom Christensen
2510
2511commit b3c19151cba2c0ed01b27f55de0d723ad07ca98f
2512Author: djm@openbsd.org <djm@openbsd.org>
2513Date: Mon Feb 23 20:32:15 2015 +0000
2514
2515 upstream commit
2516
2517 fix a race condition by using a mux socket rather than an
2518 ineffectual wait statement
2519
2520commit a88dd1da119052870bb2654c1a32c51971eade16
2521Author: Damien Miller <djm@mindrot.org>
2522Date: Tue Feb 24 06:30:29 2015 +1100
2523
2524 various include fixes for portable
2525
2526commit 5248429b5ec524d0a65507cff0cdd6e0cb99effd
2527Author: djm@openbsd.org <djm@openbsd.org>
2528Date: Mon Feb 23 16:55:51 2015 +0000
2529
2530 upstream commit
2531
2532 add an XXX to remind me to improve sshkey_load_public
2533
2534commit e94e4b07ef2eaead38b085a60535df9981cdbcdb
2535Author: djm@openbsd.org <djm@openbsd.org>
2536Date: Mon Feb 23 16:55:31 2015 +0000
2537
2538 upstream commit
2539
2540 silence a spurious error message when listing
2541 fingerprints for known_hosts; bz#2342
2542
2543commit f2293a65392b54ac721f66bc0b44462e8d1d81f8
2544Author: djm@openbsd.org <djm@openbsd.org>
2545Date: Mon Feb 23 16:33:25 2015 +0000
2546
2547 upstream commit
2548
2549 fix setting/clearing of TTY raw mode around
2550 UpdateHostKeys=ask confirmation question; reported by Herb Goldman
2551
2552commit f2004cd1adf34492eae0a44b1ef84e0e31b06088
2553Author: Darren Tucker <dtucker@zip.com.au>
2554Date: Mon Feb 23 05:04:21 2015 +1100
2555
2556 Repair for non-ECC OpenSSL.
2557
2558 Ifdef out the ECC parts when building with an OpenSSL that doesn't have
2559 it.
2560
2561commit 37f9220db8d1a52c75894c3de1e5f2ae5bd71b6f
2562Author: Darren Tucker <dtucker@zip.com.au>
2563Date: Mon Feb 23 03:07:24 2015 +1100
2564
2565 Wrap stdint.h includes in ifdefs.
2566
2567commit f81f1bbc5b892c8614ea740b1f92735652eb43f0
2568Author: Tim Rice <tim@multitalents.net>
2569Date: Sat Feb 21 18:12:10 2015 -0800
2570
2571 out of tree build fix
2572
2573commit 2e13a1e4d22f3b503c3bfc878562cc7386a1d1ae
2574Author: Tim Rice <tim@multitalents.net>
2575Date: Sat Feb 21 18:08:51 2015 -0800
2576
2577 mkdir kex unit test directory so testing out of tree builds works
2578
2579commit 1797f49b1ba31e8700231cd6b1d512d80bb50d2c
2580Author: halex@openbsd.org <halex@openbsd.org>
2581Date: Sat Feb 21 21:46:57 2015 +0000
2582
2583 upstream commit
2584
2585 make "ssh-add -d" properly remove a corresponding
2586 certificate, and also not whine and fail if there is none
2587
2588 ok djm@
2589
2590commit 7faaa32da83a609059d95dbfcb0649fdb04caaf6
2591Author: Damien Miller <djm@mindrot.org>
2592Date: Sun Feb 22 07:57:27 2015 +1100
2593
2594 mkdir hostkey and bitmap unit test directories
2595
2596commit bd49da2ef197efac5e38f5399263a8b47990c538
2597Author: djm@openbsd.org <djm@openbsd.org>
2598Date: Fri Feb 20 23:46:01 2015 +0000
2599
2600 upstream commit
2601
2602 sort options useable under Match case-insensitively; prodded
2603 jmc@
2604
2605commit 1a779a0dd6cd8b4a1a40ea33b5415ab8408128ac
2606Author: djm@openbsd.org <djm@openbsd.org>
2607Date: Sat Feb 21 20:51:02 2015 +0000
2608
2609 upstream commit
2610
2611 correct paths to configuration files being written/updated;
2612 they live in $OBJ not cwd; some by Roumen Petrov
2613
2614commit 28ba006c1acddff992ae946d0bc0b500b531ba6b
2615Author: Darren Tucker <dtucker@zip.com.au>
2616Date: Sat Feb 21 15:41:07 2015 +1100
2617
2618 More correct checking of HAVE_DECL_AI_NUMERICSERV.
2619
2620commit e50e8c97a9cecae1f28febccaa6ca5ab3bc10f54
2621Author: Darren Tucker <dtucker@zip.com.au>
2622Date: Sat Feb 21 15:10:33 2015 +1100
2623
2624 Add null declaration of AI_NUMERICINFO.
2625
2626 Some platforms (older FreeBSD and DragonFly versions) do have
2627 getaddrinfo() but do not have AI_NUMERICINFO. so define it to zero
2628 in those cases.
2629
2630commit 18a208d6a460d707a45916db63a571e805f5db46
2631Author: djm@openbsd.org <djm@openbsd.org>
2632Date: Fri Feb 20 22:40:32 2015 +0000
2633
2634 upstream commit
2635
2636 more options that are available under Match; bz#2353 reported
2637 by calestyo AT scientia.net
2638
2639commit 44732de06884238049f285f1455b2181baa7dc82
2640Author: djm@openbsd.org <djm@openbsd.org>
2641Date: Fri Feb 20 22:17:21 2015 +0000
2642
2643 upstream commit
2644
2645 UpdateHostKeys fixes:
2646
2647 I accidentally changed the format of the hostkeys@openssh.com messages
2648 last week without changing the extension name, and this has been causing
2649 connection failures for people who are running -current. First reported
2650 by sthen@
2651
2652 s/hostkeys@openssh.com/hostkeys-00@openssh.com/
2653 Change the name of the proof message too, and reorder it a little.
2654
2655 Also, UpdateHostKeys=ask is incompatible with ControlPersist (no TTY
2656 available to read the response) so disable UpdateHostKeys if it is in
2657 ask mode and ControlPersist is active (and document this)
2658
2659commit 13a39414d25646f93e6d355521d832a03aaaffe2
2660Author: djm@openbsd.org <djm@openbsd.org>
2661Date: Tue Feb 17 00:14:05 2015 +0000
2662
2663 upstream commit
2664
2665 Regression: I broke logging of public key fingerprints in
2666 1.46. Pointed out by Pontus Lundkvist
2667
2668commit 773dda25e828c4c9a52f7bdce6e1e5924157beab
2669Author: Damien Miller <djm@mindrot.org>
2670Date: Fri Jan 30 23:10:17 2015 +1100
2671
2672 repair --without-openssl; broken in refactor
2673
2674commit e89c780886b23600de1e1c8d74aabd1ff61f43f0
2675Author: Damien Miller <djm@google.com>
2676Date: Tue Feb 17 10:04:55 2015 +1100
2677
2678 hook up hostkeys unittest to portable Makefiles
2679
2680commit 0abf41f99aa16ff09b263bead242d6cb2dbbcf99
2681Author: djm@openbsd.org <djm@openbsd.org>
2682Date: Mon Feb 16 22:21:03 2015 +0000
2683
2684 upstream commit
2685
2686 enable hostkeys unit tests
2687
2688commit 68a5d647ccf0fb6782b2f749433a1eee5bc9044b
2689Author: djm@openbsd.org <djm@openbsd.org>
2690Date: Mon Feb 16 22:20:50 2015 +0000
2691
2692 upstream commit
2693
2694 check string/memory compare arguments aren't NULL
2695
2696commit ef575ef20d09f20722e26b45dab80b3620469687
2697Author: djm@openbsd.org <djm@openbsd.org>
2698Date: Mon Feb 16 22:18:34 2015 +0000
2699
2700 upstream commit
2701
2702 unit tests for hostfile.c code, just hostkeys_foreach so
2703 far
2704
2705commit 8ea3365e6aa2759ccf5c76eaea62cbc8a280b0e7
2706Author: markus@openbsd.org <markus@openbsd.org>
2707Date: Sat Feb 14 12:43:16 2015 +0000
2708
2709 upstream commit
2710
2711 test server rekey limit
2712
2713commit ce63c4b063c39b2b22d4ada449c9e3fbde788cb3
2714Author: djm@openbsd.org <djm@openbsd.org>
2715Date: Mon Feb 16 22:30:03 2015 +0000
2716
2717 upstream commit
2718
2719 partial backout of:
2720
2721 revision 1.441
2722 date: 2015/01/31 20:30:05; author: djm; state: Exp; lines: +17 -10; commitid
2723 : x8klYPZMJSrVlt3O;
2724 Let sshd load public host keys even when private keys are missing.
2725 Allows sshd to advertise additional keys for future key rotation.
2726 Also log fingerprint of hostkeys loaded; ok markus@
2727
2728 hostkey updates now require access to the private key, so we can't
2729 load public keys only. The improved log messages (fingerprints of keys
2730 loaded) are kept.
2731
2732commit 523463a3a2a9bfc6cfc5afa01bae9147f76a37cc
2733Author: djm@openbsd.org <djm@openbsd.org>
2734Date: Mon Feb 16 22:13:32 2015 +0000
2735
2736 upstream commit
2737
2738 Revise hostkeys@openssh.com hostkey learning extension.
2739
2740 The client will not ask the server to prove ownership of the private
2741 halves of any hitherto-unseen hostkeys it offers to the client.
2742
2743 Allow UpdateHostKeys option to take an 'ask' argument to let the
2744 user manually review keys offered.
2745
2746 ok markus@
2747
2748commit 6c5c949782d86a6e7d58006599c7685bfcd01685
2749Author: djm@openbsd.org <djm@openbsd.org>
2750Date: Mon Feb 16 22:08:57 2015 +0000
2751
2752 upstream commit
2753
2754 Refactor hostkeys_foreach() and dependent code Deal with
2755 IP addresses (i.e. CheckHostIP) Don't clobber known_hosts when nothing
2756 changed ok markus@ as part of larger commit
2757
2758commit 51b082ccbe633dc970df1d1f4c9c0497115fe721
2759Author: miod@openbsd.org <miod@openbsd.org>
2760Date: Mon Feb 16 18:26:26 2015 +0000
2761
2762 upstream commit
2763
2764 Declare ge25519_base as extern, to prevent it from
2765 becoming a common. Gets us rid of ``lignment 4 of symbol
2766 `crypto_sign_ed25519_ref_ge25519_base' in mod_ge25519.o is smaller than 16 in
2767 mod_ed25519.o'' warnings at link time.
2768
2769commit 02db468bf7e3281a8e3c058ced571b38b6407c34
2770Author: markus@openbsd.org <markus@openbsd.org>
2771Date: Fri Feb 13 18:57:00 2015 +0000
2772
2773 upstream commit
2774
2775 make rekey_limit for sshd w/privsep work; ok djm@
2776 dtucker@
2777
2778commit 8ec67d505bd23c8bf9e17b7a364b563a07a58ec8
2779Author: dtucker@openbsd.org <dtucker@openbsd.org>
2780Date: Thu Feb 12 20:34:19 2015 +0000
2781
2782 upstream commit
2783
2784 Prevent sshd spamming syslog with
2785 "ssh_dispatch_run_fatal: disconnected". ok markus@
2786
2787commit d4c0295d1afc342057ba358237acad6be8af480b
2788Author: djm@openbsd.org <djm@openbsd.org>
2789Date: Wed Feb 11 01:20:38 2015 +0000
2790
2791 upstream commit
2792
2793 Some packet error messages show the address of the peer,
2794 but might be generated after the socket to the peer has suffered a TCP reset.
2795 In these cases, getpeername() won't work so cache the address earlier.
2796
2797 spotted in the wild via deraadt@ and tedu@
2798
2799commit 4af1709cf774475ce5d1bc3ddcc165f6c222897d
2800Author: jsg@openbsd.org <jsg@openbsd.org>
2801Date: Mon Feb 9 23:22:37 2015 +0000
2802
2803 upstream commit
2804
2805 fix some leaks in error paths ok markus@
2806
2807commit fd36834871d06a03e1ff8d69e41992efa1bbf85f
2808Author: millert@openbsd.org <millert@openbsd.org>
2809Date: Fri Feb 6 23:21:59 2015 +0000
2810
2811 upstream commit
2812
2813 SIZE_MAX is standard, we should be using it in preference to
2814 the obsolete SIZE_T_MAX. OK miod@ beck@
2815
2816commit 1910a286d7771eab84c0b047f31c0a17505236fa
2817Author: millert@openbsd.org <millert@openbsd.org>
2818Date: Thu Feb 5 12:59:57 2015 +0000
2819
2820 upstream commit
2821
2822 Include stdint.h, not limits.h to get SIZE_MAX. OK guenther@
2823
2824commit ce4f59b2405845584f45e0b3214760eb0008c06c
2825Author: deraadt@openbsd.org <deraadt@openbsd.org>
2826Date: Tue Feb 3 08:07:20 2015 +0000
2827
2828 upstream commit
2829
2830 missing ; djm and mlarkin really having great
2831 interactions recently
2832
2833commit 5d34aa94938abb12b877a25be51862757f25d54b
2834Author: halex@openbsd.org <halex@openbsd.org>
2835Date: Tue Feb 3 00:34:14 2015 +0000
2836
2837 upstream commit
2838
2839 slightly extend the passphrase prompt if running with -c
2840 in order to give the user a chance to notice if unintentionally running
2841 without it
2842
2843 wording tweak and ok djm@
2844
2845commit cb3bde373e80902c7d5d0db429f85068d19b2918
2846Author: djm@openbsd.org <djm@openbsd.org>
2847Date: Mon Feb 2 22:48:53 2015 +0000
2848
2849 upstream commit
2850
2851 handle PKCS#11 C_Login returning
2852 CKR_USER_ALREADY_LOGGED_IN; based on patch from Yuri Samoilenko; ok markus@
2853
2854commit 15ad750e5ec3cc69765b7eba1ce90060e7083399
2855Author: djm@openbsd.org <djm@openbsd.org>
2856Date: Mon Feb 2 07:41:40 2015 +0000
2857
2858 upstream commit
2859
2860 turn UpdateHostkeys off by default until I figure out
2861 mlarkin@'s warning message; requested by deraadt@
2862
2863commit 3cd5103c1e1aaa59bd66f7f52f6ebbcd5deb12f9
2864Author: deraadt@openbsd.org <deraadt@openbsd.org>
2865Date: Mon Feb 2 01:57:44 2015 +0000
2866
2867 upstream commit
2868
2869 increasing encounters with difficult DNS setups in
2870 darknets has convinced me UseDNS off by default is better ok djm
2871
2872commit 6049a548a8a68ff0bbe581ab1748ea6a59ecdc38
2873Author: djm@openbsd.org <djm@openbsd.org>
2874Date: Sat Jan 31 20:30:05 2015 +0000
2875
2876 upstream commit
2877
2878 Let sshd load public host keys even when private keys are
2879 missing. Allows sshd to advertise additional keys for future key rotation.
2880 Also log fingerprint of hostkeys loaded; ok markus@
2881
2882commit 46347ed5968f582661e8a70a45f448e0179ca0ab
2883Author: djm@openbsd.org <djm@openbsd.org>
2884Date: Fri Jan 30 11:43:14 2015 +0000
2885
2886 upstream commit
2887
2888 Add a ssh_config HostbasedKeyType option to control which
2889 host public key types are tried during hostbased authentication.
2890
2891 This may be used to prevent too many keys being sent to the server,
2892 and blowing past its MaxAuthTries limit.
2893
2894 bz#2211 based on patch by Iain Morgan; ok markus@
2895
2896commit 802660cb70453fa4d230cb0233bc1bbdf8328de1
2897Author: djm@openbsd.org <djm@openbsd.org>
2898Date: Fri Jan 30 10:44:49 2015 +0000
2899
2900 upstream commit
2901
2902 set a timeout to prevent hangs when talking to busted
2903 servers; ok markus@
2904
2905commit 86936ec245a15c7abe71a0722610998b0a28b194
2906Author: djm@openbsd.org <djm@openbsd.org>
2907Date: Fri Jan 30 01:11:39 2015 +0000
2908
2909 upstream commit
2910
2911 regression test for 'wildcard CA' serial/key ID revocations
2912
2913commit 4509b5d4a4fa645a022635bfa7e86d09b285001f
2914Author: djm@openbsd.org <djm@openbsd.org>
2915Date: Fri Jan 30 01:13:33 2015 +0000
2916
2917 upstream commit
2918
2919 avoid more fatal/exit in the packet.c paths that
2920 ssh-keyscan uses; feedback and "looks good" markus@
2921
2922commit 669aee994348468af8b4b2ebd29b602cf2860b22
2923Author: djm@openbsd.org <djm@openbsd.org>
2924Date: Fri Jan 30 01:10:33 2015 +0000
2925
2926 upstream commit
2927
2928 permit KRLs that revoke certificates by serial number or
2929 key ID without scoping to a particular CA; ok markus@
2930
2931commit 7a2c368477e26575d0866247d3313da4256cb2b5
2932Author: djm@openbsd.org <djm@openbsd.org>
2933Date: Fri Jan 30 00:59:19 2015 +0000
2934
2935 upstream commit
2936
2937 missing parentheses after if in do_convert_from() broke
2938 private key conversion from other formats some time in 2010; bz#2345 reported
2939 by jjelen AT redhat.com
2940
2941commit 25f5f78d8bf5c22d9cea8b49de24ebeee648a355
2942Author: djm@openbsd.org <djm@openbsd.org>
2943Date: Fri Jan 30 00:22:25 2015 +0000
2944
2945 upstream commit
2946
2947 fix ssh protocol 1, spotted by miod@
2948
2949commit 9ce86c926dfa6e0635161b035e3944e611cbccf0
2950Author: djm@openbsd.org <djm@openbsd.org>
2951Date: Wed Jan 28 22:36:00 2015 +0000
2952
2953 upstream commit
2954
2955 update to new API (key_fingerprint => sshkey_fingerprint)
2956 check sshkey_fingerprint return values; ok markus
2957
2958commit 9125525c37bf73ad3ee4025520889d2ce9d10f29
2959Author: djm@openbsd.org <djm@openbsd.org>
2960Date: Wed Jan 28 22:05:31 2015 +0000
2961
2962 upstream commit
2963
2964 avoid fatal() calls in packet code makes ssh-keyscan more
2965 reliable against server failures ok dtucker@ markus@
2966
2967commit fae7bbe544cba7a9e5e4ab47ff6faa3d978646eb
2968Author: djm@openbsd.org <djm@openbsd.org>
2969Date: Wed Jan 28 21:15:47 2015 +0000
2970
2971 upstream commit
2972
2973 avoid fatal() calls in packet code makes ssh-keyscan more
2974 reliable against server failures ok dtucker@ markus@
2975
2976commit 1a3d14f6b44a494037c7deab485abe6496bf2c60
2977Author: djm@openbsd.org <djm@openbsd.org>
2978Date: Wed Jan 28 11:07:25 2015 +0000
2979
2980 upstream commit
2981
2982 remove obsolete comment
2983
2984commit 80c25b7bc0a71d75c43a4575d9a1336f589eb639
2985Author: okan@openbsd.org <okan@openbsd.org>
2986Date: Tue Jan 27 12:54:06 2015 +0000
2987
2988 upstream commit
2989
2990 Since r1.2 removed the use of PRI* macros, inttypes.h is
2991 no longer required.
2992
2993 ok djm@
2994
2995commit 69ff64f69615c2a21c97cb5878a0996c21423257
2996Author: Damien Miller <djm@mindrot.org>
2997Date: Tue Jan 27 23:07:43 2015 +1100
2998
2999 compile on systems without TCP_MD5SIG (e.g. OSX)
3000
3001commit 358964f3082fb90b2ae15bcab07b6105cfad5a43
3002Author: Damien Miller <djm@mindrot.org>
3003Date: Tue Jan 27 23:07:25 2015 +1100
3004
3005 use ssh-keygen under test rather than system's
3006
3007commit a2c95c1bf33ea53038324d1fdd774bc953f98236
3008Author: Damien Miller <djm@mindrot.org>
3009Date: Tue Jan 27 23:06:59 2015 +1100
3010
3011 OSX lacks HOST_NAME_MAX, has _POSIX_HOST_NAME_MAX
3012
3013commit ade31d7b6f608a19b85bee29a7a00b1e636a2919
3014Author: Damien Miller <djm@mindrot.org>
3015Date: Tue Jan 27 23:06:23 2015 +1100
3016
3017 these need active_state defined to link on OSX
3018
3019 temporary measure until active_state goes away entirely
3020
3021commit e56aa87502f22c5844918c10190e8b4f785f067b
3022Author: djm@openbsd.org <djm@openbsd.org>
3023Date: Tue Jan 27 12:01:36 2015 +0000
3024
3025 upstream commit
3026
3027 use printf instead of echo -n to reduce diff against
3028 -portable
3029
3030commit 9f7637f56eddfaf62ce3c0af89c25480f2cf1068
3031Author: jmc@openbsd.org <jmc@openbsd.org>
3032Date: Mon Jan 26 13:55:29 2015 +0000
3033
3034 upstream commit
3035
3036 sort previous;
3037
3038commit 3076ee7d530d5b16842fac7a6229706c7e5acd26
3039Author: djm@openbsd.org <djm@openbsd.org>
3040Date: Mon Jan 26 13:36:53 2015 +0000
3041
3042 upstream commit
3043
3044 properly restore umask
3045
3046commit d411d395556b73ba1b9e451516a0bd6697c4b03d
3047Author: djm@openbsd.org <djm@openbsd.org>
3048Date: Mon Jan 26 06:12:18 2015 +0000
3049
3050 upstream commit
3051
3052 regression test for host key rotation
3053
3054commit fe8a3a51699afbc6407a8fae59b73349d01e49f8
3055Author: djm@openbsd.org <djm@openbsd.org>
3056Date: Mon Jan 26 06:11:28 2015 +0000
3057
3058 upstream commit
3059
3060 adapt to sshkey API tweaks
3061
3062commit 7dd355fb1f0038a3d5cdca57ebab4356c7a5b434
3063Author: miod@openbsd.org <miod@openbsd.org>
3064Date: Sat Jan 24 10:39:21 2015 +0000
3065
3066 upstream commit
3067
3068 Move -lz late in the linker commandline for things to
3069 build on static arches.
3070
3071commit 0dad3b806fddb93c475b30853b9be1a25d673a33
3072Author: miod@openbsd.org <miod@openbsd.org>
3073Date: Fri Jan 23 21:21:23 2015 +0000
3074
3075 upstream commit
3076
3077 -Wpointer-sign is supported by gcc 4 only.
3078
3079commit 2b3b1c1e4bd9577b6e780c255c278542ea66c098
3080Author: djm@openbsd.org <djm@openbsd.org>
3081Date: Tue Jan 20 22:58:57 2015 +0000
3082
3083 upstream commit
3084
3085 use SUBDIR to recuse into unit tests; makes "make obj"
3086 actually work
3087
3088commit 1d1092bff8db27080155541212b420703f8b9c92
3089Author: djm@openbsd.org <djm@openbsd.org>
3090Date: Mon Jan 26 12:16:36 2015 +0000
3091
3092 upstream commit
3093
3094 correct description of UpdateHostKeys in ssh_config.5 and
3095 add it to -o lists for ssh, scp and sftp; pointed out by jmc@
3096
3097commit 5104db7cbd6cdd9c5971f4358e74414862fc1022
3098Author: djm@openbsd.org <djm@openbsd.org>
3099Date: Mon Jan 26 06:10:03 2015 +0000
3100
3101 upstream commit
3102
3103 correctly match ECDSA subtype (== curve) for
3104 offered/recevied host keys. Fixes connection-killing host key mismatches when
3105 a server offers multiple ECDSA keys with different curve type (an extremely
3106 unlikely configuration).
3107
3108 ok markus, "looks mechanical" deraadt@
3109
3110commit 8d4f87258f31cb6def9b3b55b6a7321d84728ff2
3111Author: djm@openbsd.org <djm@openbsd.org>
3112Date: Mon Jan 26 03:04:45 2015 +0000
3113
3114 upstream commit
3115
3116 Host key rotation support.
3117
3118 Add a hostkeys@openssh.com protocol extension (global request) for
3119 a server to inform a client of all its available host key after
3120 authentication has completed. The client may record the keys in
3121 known_hosts, allowing it to upgrade to better host key algorithms
3122 and a server to gracefully rotate its keys.
3123
3124 The client side of this is controlled by a UpdateHostkeys config
3125 option (default on).
3126
3127 ok markus@
3128
3129commit 60b1825262b1f1e24fc72050b907189c92daf18e
3130Author: djm@openbsd.org <djm@openbsd.org>
3131Date: Mon Jan 26 02:59:11 2015 +0000
3132
3133 upstream commit
3134
3135 small refactor and add some convenience functions; ok
3136 markus
3137
3138commit a5a3e3328ddce91e76f71ff479022d53e35c60c9
3139Author: jmc@openbsd.org <jmc@openbsd.org>
3140Date: Thu Jan 22 21:00:42 2015 +0000
3141
3142 upstream commit
3143
3144 heirarchy -> hierarchy;
3145
3146commit dcff5810a11195c57e1b3343c0d6b6f2b9974c11
3147Author: deraadt@openbsd.org <deraadt@openbsd.org>
3148Date: Thu Jan 22 20:24:41 2015 +0000
3149
3150 upstream commit
3151
3152 Provide a warning about chroot misuses (which sadly, seem
3153 to have become quite popular because shiny). sshd cannot detect/manage/do
3154 anything about these cases, best we can do is warn in the right spot in the
3155 man page. ok markus
3156
3157commit 087266ec33c76fc8d54ac5a19efacf2f4a4ca076
3158Author: deraadt@openbsd.org <deraadt@openbsd.org>
3159Date: Tue Jan 20 23:14:00 2015 +0000
3160
3161 upstream commit
3162
3163 Reduce use of <sys/param.h> and transition to <limits.h>
3164 throughout. ok djm markus
3165
3166commit 57e783c8ba2c0797f93977e83b2a8644a03065d8
3167Author: markus@openbsd.org <markus@openbsd.org>
3168Date: Tue Jan 20 20:16:21 2015 +0000
3169
3170 upstream commit
3171
3172 kex_setup errors are fatal()
3173
3174commit 1d6424a6ff94633c221297ae8f42d54e12a20912
3175Author: djm@openbsd.org <djm@openbsd.org>
3176Date: Tue Jan 20 08:02:33 2015 +0000
3177
3178 upstream commit
3179
3180 this test would accidentally delete agent.sh if run without
3181 obj/
3182
3183commit 12b5f50777203e12575f1b08568281e447249ed3
3184Author: djm@openbsd.org <djm@openbsd.org>
3185Date: Tue Jan 20 07:56:44 2015 +0000
3186
3187 upstream commit
3188
3189 make this compile with KERBEROS5 enabled
3190
3191commit e2cc6bef08941256817d44d146115b3478586ad4
3192Author: djm@openbsd.org <djm@openbsd.org>
3193Date: Tue Jan 20 07:55:33 2015 +0000
3194
3195 upstream commit
3196
3197 fix hostkeys in agent; ok markus@
3198
3199commit 1ca3e2155aa5d3801a7ae050f85c71f41fcb95b1
3200Author: Damien Miller <djm@mindrot.org>
3201Date: Tue Jan 20 10:11:31 2015 +1100
3202
3203 fix kex test
3204
3205commit c78a578107c7e6dcf5d30a2f34cb6581bef14029
3206Author: markus@openbsd.org <markus@openbsd.org>
3207Date: Mon Jan 19 20:45:25 2015 +0000
3208
3209 upstream commit
3210
3211 finally enable the KEX tests I wrote some years ago...
3212
3213commit 31821d7217e686667d04935aeec99e1fc4a46e7e
3214Author: markus@openbsd.org <markus@openbsd.org>
3215Date: Mon Jan 19 20:42:31 2015 +0000
3216
3217 upstream commit
3218
3219 adapt to new error message (SSH_ERR_MAC_INVALID)
3220
3221commit d3716ca19e510e95d956ae14d5b367e364bff7f1
3222Author: djm@openbsd.org <djm@openbsd.org>
3223Date: Mon Jan 19 17:31:13 2015 +0000
3224
3225 upstream commit
3226
3227 this test was broken in at least two ways, such that it
3228 wasn't checking that a KRL was not excluding valid keys
3229
3230commit 3f797653748e7c2b037dacb57574c01d9ef3b4d3
3231Author: markus@openbsd.org <markus@openbsd.org>
3232Date: Mon Jan 19 20:32:39 2015 +0000
3233
3234 upstream commit
3235
3236 switch ssh-keyscan from setjmp to multiple ssh transport
3237 layer instances ok djm@
3238
3239commit f582f0e917bb0017b00944783cd5f408bf4b0b5e
3240Author: markus@openbsd.org <markus@openbsd.org>
3241Date: Mon Jan 19 20:30:23 2015 +0000
3242
3243 upstream commit
3244
3245 add experimental api for packet layer; ok djm@
3246
3247commit 48b3b2ba75181f11fca7f327058a591f4426cade
3248Author: markus@openbsd.org <markus@openbsd.org>
3249Date: Mon Jan 19 20:20:20 2015 +0000
3250
3251 upstream commit
3252
3253 store compat flags in struct ssh; ok djm@
3254
3255commit 57d10cbe861a235dd269c74fb2fe248469ecee9d
3256Author: markus@openbsd.org <markus@openbsd.org>
3257Date: Mon Jan 19 20:16:15 2015 +0000
3258
3259 upstream commit
3260
3261 adapt kex to sshbuf and struct ssh; ok djm@
3262
3263commit 3fdc88a0def4f86aa88a5846ac079dc964c0546a
3264Author: markus@openbsd.org <markus@openbsd.org>
3265Date: Mon Jan 19 20:07:45 2015 +0000
3266
3267 upstream commit
3268
3269 move dispatch to struct ssh; ok djm@
3270
3271commit 091c302829210c41e7f57c3f094c7b9c054306f0
3272Author: markus@openbsd.org <markus@openbsd.org>
3273Date: Mon Jan 19 19:52:16 2015 +0000
3274
3275 upstream commit
3276
3277 update packet.c & isolate, introduce struct ssh a) switch
3278 packet.c to buffer api and isolate per-connection info into struct ssh b)
3279 (de)serialization of the state is moved from monitor to packet.c c) the old
3280 packet.c API is implemented in opacket.[ch] d) compress.c/h is removed and
3281 integrated into packet.c with and ok djm@
3282
3283commit 4e62cc68ce4ba20245d208b252e74e91d3785b74
3284Author: djm@openbsd.org <djm@openbsd.org>
3285Date: Mon Jan 19 17:35:48 2015 +0000
3286
3287 upstream commit
3288
3289 fix format strings in (disabled) debugging
3290
3291commit d85e06245907d49a2cd0cfa0abf59150ad616f42
3292Author: djm@openbsd.org <djm@openbsd.org>
3293Date: Mon Jan 19 06:01:32 2015 +0000
3294
3295 upstream commit
3296
3297 be a bit more careful in these tests to ensure that
3298 known_hosts is clean
3299
3300commit 7947810eab5fe0ad311f32a48f4d4eb1f71be6cf
3301Author: djm@openbsd.org <djm@openbsd.org>
3302Date: Sun Jan 18 22:00:18 2015 +0000
3303
3304 upstream commit
3305
3306 regression test for known_host file editing using
3307 ssh-keygen (-H / -R / -F) after hostkeys_foreach() change; feedback and ok
3308 markus@
3309
3310commit 3a2b09d147a565d8a47edf37491e149a02c0d3a3
3311Author: djm@openbsd.org <djm@openbsd.org>
3312Date: Sun Jan 18 19:54:46 2015 +0000
3313
3314 upstream commit
3315
3316 more and better key tests
3317
3318 test signatures and verification
3319 test certificate generation
3320 flesh out nested cert test
3321
3322 removes most of the XXX todo markers
3323
3324commit 589e69fd82724cfc9738f128e4771da2e6405d0d
3325Author: djm@openbsd.org <djm@openbsd.org>
3326Date: Sun Jan 18 19:53:58 2015 +0000
3327
3328 upstream commit
3329
3330 make the signature fuzzing test much more rigorous:
3331 ensure that the fuzzed input cases do not match the original (using new
3332 fuzz_matches_original() function) and check that the verification fails in
3333 each case
3334
3335commit 80603c0daa2538c349c1c152405580b164d5475f
3336Author: djm@openbsd.org <djm@openbsd.org>
3337Date: Sun Jan 18 19:52:44 2015 +0000
3338
3339 upstream commit
3340
3341 add a fuzz_matches_original() function to the fuzzer to
3342 detect fuzz cases that are identical to the original data. Hacky
3343 implementation, but very useful when you need the fuzz to be different, e.g.
3344 when verifying signature
3345
3346commit 87d5495bd337e358ad69c524fcb9495208c0750b
3347Author: djm@openbsd.org <djm@openbsd.org>
3348Date: Sun Jan 18 19:50:55 2015 +0000
3349
3350 upstream commit
3351
3352 better dumps from the fuzzer (shown on errors) -
3353 include the original data as well as the fuzzed copy.
3354
3355commit d59ec478c453a3fff05badbbfd96aa856364f2c2
3356Author: djm@openbsd.org <djm@openbsd.org>
3357Date: Sun Jan 18 19:47:55 2015 +0000
3358
3359 upstream commit
3360
3361 enable hostkey-agent.sh test
3362
3363commit 26b3425170bf840e4b095e1c10bf25a0a3e3a105
3364Author: djm@openbsd.org <djm@openbsd.org>
3365Date: Sat Jan 17 18:54:30 2015 +0000
3366
3367 upstream commit
3368
3369 unit test for hostkeys in ssh-agent
3370
3371commit 9e06a0fb23ec55d9223b26a45bb63c7649e2f2f2
3372Author: markus@openbsd.org <markus@openbsd.org>
3373Date: Thu Jan 15 23:41:29 2015 +0000
3374
3375 upstream commit
3376
3377 add kex unit tests
3378
3379commit d2099dec6da21ae627f6289aedae6bc1d41a22ce
3380Author: deraadt@openbsd.org <deraadt@openbsd.org>
3381Date: Mon Jan 19 00:32:54 2015 +0000
3382
3383 upstream commit
3384
3385 djm, your /usr/include tree is old
3386
3387commit 2b3c3c76c30dc5076fe09d590f5b26880f148a54
3388Author: djm@openbsd.org <djm@openbsd.org>
3389Date: Sun Jan 18 21:51:19 2015 +0000
3390
3391 upstream commit
3392
3393 some feedback from markus@: comment hostkeys_foreach()
3394 context and avoid a member in it.
3395
3396commit cecb30bc2ba6d594366e657d664d5c494b6c8a7f
3397Author: djm@openbsd.org <djm@openbsd.org>
3398Date: Sun Jan 18 21:49:42 2015 +0000
3399
3400 upstream commit
3401
3402 make ssh-keygen use hostkeys_foreach(). Removes some
3403 horrendous code; ok markus@
3404
3405commit ec3d065df3a9557ea96b02d061fd821a18c1a0b9
3406Author: djm@openbsd.org <djm@openbsd.org>
3407Date: Sun Jan 18 21:48:09 2015 +0000
3408
3409 upstream commit
3410
3411 convert load_hostkeys() (hostkey ordering and
3412 known_host matching) to use the new hostkey_foreach() iterator; ok markus
3413
3414commit c29811cc480a260e42fd88849fc86a80c1e91038
3415Author: djm@openbsd.org <djm@openbsd.org>
3416Date: Sun Jan 18 21:40:23 2015 +0000
3417
3418 upstream commit
3419
3420 introduce hostkeys_foreach() to allow iteration over a
3421 known_hosts file or controlled subset thereof. This will allow us to pull out
3422 some ugly and duplicated code, and will be used to implement hostkey rotation
3423 later.
3424
3425 feedback and ok markus
3426
3427commit f101d8291da01bbbfd6fb8c569cfd0cc61c0d346
3428Author: deraadt@openbsd.org <deraadt@openbsd.org>
3429Date: Sun Jan 18 14:01:00 2015 +0000
3430
3431 upstream commit
3432
3433 string truncation due to sizeof(size) ok djm markus
3434
3435commit 35d6022b55b7969fc10c261cb6aa78cc4a5fcc41
3436Author: djm@openbsd.org <djm@openbsd.org>
3437Date: Sun Jan 18 13:33:34 2015 +0000
3438
3439 upstream commit
3440
3441 avoid trailing ',' in host key algorithms
3442
3443commit 7efb455789a0cb76bdcdee91c6060a3dc8f5c007
3444Author: djm@openbsd.org <djm@openbsd.org>
3445Date: Sun Jan 18 13:22:28 2015 +0000
3446
3447 upstream commit
3448
3449 infer key length correctly when user specified a fully-
3450 qualified key name instead of using the -b bits option; ok markus@
3451
3452commit 83f8ffa6a55ccd0ce9d8a205e3e7439ec18fedf5
3453Author: djm@openbsd.org <djm@openbsd.org>
3454Date: Sat Jan 17 18:53:34 2015 +0000
3455
3456 upstream commit
3457
3458 fix hostkeys on ssh agent; found by unit test I'm about
3459 to commit
3460
3461commit 369d61f17657b814124268f99c033e4dc6e436c1
3462Author: schwarze@openbsd.org <schwarze@openbsd.org>
3463Date: Fri Jan 16 16:20:23 2015 +0000
3464
3465 upstream commit
3466
3467 garbage collect empty .No macros mandoc warns about
3468
3469commit bb8b442d32dbdb8521d610e10d8b248d938bd747
3470Author: djm@openbsd.org <djm@openbsd.org>
3471Date: Fri Jan 16 15:55:07 2015 +0000
3472
3473 upstream commit
3474
3475 regression: incorrect error message on
3476 otherwise-successful ssh-keygen -A. Reported by Dmitry Orlov, via deraadt@
3477
3478commit 9010902954a40b59d0bf3df3ccbc3140a653e2bc
3479Author: djm@openbsd.org <djm@openbsd.org>
3480Date: Fri Jan 16 07:19:48 2015 +0000
3481
3482 upstream commit
3483
3484 when hostname canonicalisation is enabled, try to parse
3485 hostnames as addresses before looking them up for canonicalisation. fixes
3486 bz#2074 and avoids needless DNS lookups in some cases; ok markus
3487
3488commit 2ae4f337b2a5fb2841b6b0053b49496fef844d1c
3489Author: deraadt@openbsd.org <deraadt@openbsd.org>
3490Date: Fri Jan 16 06:40:12 2015 +0000
3491
3492 upstream commit
3493
3494 Replace <sys/param.h> with <limits.h> and other less
3495 dirty headers where possible. Annotate <sys/param.h> lines with their
3496 current reasons. Switch to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1,
3497 LOGIN_NAME_MAX, etc. Change MIN() and MAX() to local definitions of
3498 MINIMUM() and MAXIMUM() where sensible to avoid pulling in the pollution.
3499 These are the files confirmed through binary verification. ok guenther,
3500 millert, doug (helped with the verification protocol)
3501
3502commit 3c4726f4c24118e8f1bb80bf75f1456c76df072c
3503Author: markus@openbsd.org <markus@openbsd.org>
3504Date: Thu Jan 15 21:38:50 2015 +0000
3505
3506 upstream commit
3507
3508 remove xmalloc, switch to sshbuf
3509
3510commit e17ac01f8b763e4b83976b9e521e90a280acc097
3511Author: markus@openbsd.org <markus@openbsd.org>
3512Date: Thu Jan 15 21:37:14 2015 +0000
3513
3514 upstream commit
3515
3516 switch to sshbuf
3517
3518commit ddef9995a1fa6c7a8ff3b38bfe6cf724bebf13d0
3519Author: naddy@openbsd.org <naddy@openbsd.org>
3520Date: Thu Jan 15 18:32:54 2015 +0000
3521
3522 upstream commit
3523
3524 handle UMAC128 initialization like UMAC; ok djm@ markus@
3525
3526commit f14564c1f7792446bca143580aef0e7ac25dcdae
3527Author: djm@openbsd.org <djm@openbsd.org>
3528Date: Thu Jan 15 11:04:36 2015 +0000
3529
3530 upstream commit
3531
3532 fix regression reported by brad@ for passworded keys without
3533 agent present
3534
3535commit 45c0fd70bb2a88061319dfff20cb12ef7b1bc47e
3536Author: Damien Miller <djm@mindrot.org>
3537Date: Thu Jan 15 22:08:23 2015 +1100
3538
3539 make bitmap test compile
3540
3541commit d333f89abf7179021e5c3f28673f469abe032062
3542Author: djm@openbsd.org <djm@openbsd.org>
3543Date: Thu Jan 15 07:36:28 2015 +0000
3544
3545 upstream commit
3546
3547 unit tests for KRL bitmap
3548
3549commit 7613f828f49c55ff356007ae9645038ab6682556
3550Author: markus@openbsd.org <markus@openbsd.org>
3551Date: Wed Jan 14 09:58:21 2015 +0000
3552
3553 upstream commit
3554
3555 re-add comment about full path
3556
3557commit 6c43b48b307c41cd656b415621a644074579a578
3558Author: markus@openbsd.org <markus@openbsd.org>
3559Date: Wed Jan 14 09:54:38 2015 +0000
3560
3561 upstream commit
3562
3563 don't reset to the installed sshd; connect before
3564 reconfigure, too
3565
3566commit 771bb47a1df8b69061f09462e78aa0b66cd594bf
3567Author: djm@openbsd.org <djm@openbsd.org>
3568Date: Tue Jan 13 14:51:51 2015 +0000
3569
3570 upstream commit
3571
3572 implement a SIGINFO handler so we can discern a stuck
3573 fuzz test from a merely glacial one; prompted by and ok markus
3574
3575commit cfaa57962f8536f3cf0fd7daf4d6a55d6f6de45f
3576Author: djm@openbsd.org <djm@openbsd.org>
3577Date: Tue Jan 13 08:23:26 2015 +0000
3578
3579 upstream commit
3580
3581 use $SSH instead of installed ssh to allow override;
3582 spotted by markus@
3583
3584commit 0920553d0aee117a596b03ed5b49b280d34a32c5
3585Author: djm@openbsd.org <djm@openbsd.org>
3586Date: Tue Jan 13 07:49:49 2015 +0000
3587
3588 upstream commit
3589
3590 regress test for PubkeyAcceptedKeyTypes; ok markus@
3591
3592commit 27ca1a5c0095eda151934bca39a77e391f875d17
3593Author: markus@openbsd.org <markus@openbsd.org>
3594Date: Mon Jan 12 20:13:27 2015 +0000
3595
3596 upstream commit
3597
3598 unbreak parsing of pubkey comments; with gerhard; ok
3599 djm/deraadt
3600
3601commit 55358f0b4e0b83bc0df81c5f854c91b11e0bb4dc
3602Author: djm@openbsd.org <djm@openbsd.org>
3603Date: Mon Jan 12 11:46:32 2015 +0000
3604
3605 upstream commit
3606
3607 fatal if soft-PKCS11 library is missing rather (rather
3608 than continue and fail with a more cryptic error)
3609
3610commit c3554cdd2a1a62434b8161017aa76fa09718a003
3611Author: djm@openbsd.org <djm@openbsd.org>
3612Date: Mon Jan 12 11:12:38 2015 +0000
3613
3614 upstream commit
3615
3616 let this test all supporte key types; pointed out/ok
3617 markus@
3618
3619commit 1129dcfc5a3e508635004bcc05a3574cb7687167
3620Author: djm@openbsd.org <djm@openbsd.org>
3621Date: Thu Jan 15 09:40:00 2015 +0000
3622
3623 upstream commit
3624
3625 sync ssh-keysign, ssh-keygen and some dependencies to the
3626 new buffer/key API; mostly mechanical, ok markus@
3627
3628commit e4ebf5586452bf512da662ac277aaf6ecf0efe7c
3629Author: djm@openbsd.org <djm@openbsd.org>
3630Date: Thu Jan 15 07:57:08 2015 +0000
3631
3632 upstream commit
3633
3634 remove commented-out test code now that it has moved to a
3635 proper unit test
3636
3637commit e81cba066c1e9eb70aba0f6e7c0ff220611b370f
3638Author: djm@openbsd.org <djm@openbsd.org>
3639Date: Wed Jan 14 20:54:29 2015 +0000
3640
3641 upstream commit
3642
3643 whitespace
3644
3645commit 141efe49542f7156cdbc2e4cd0a041d8b1aab622
3646Author: djm@openbsd.org <djm@openbsd.org>
3647Date: Wed Jan 14 20:05:27 2015 +0000
3648
3649 upstream commit
3650
3651 move authfd.c and its tentacles to the new buffer/key
3652 API; ok markus@
3653
3654commit 0088c57af302cda278bd26d8c3ae81d5b6f7c289
3655Author: djm@openbsd.org <djm@openbsd.org>
3656Date: Wed Jan 14 19:33:41 2015 +0000
3657
3658 upstream commit
3659
3660 fix small regression: ssh-agent would return a success
3661 message but an empty signature if asked to sign using an unknown key; ok
3662 markus@
3663
3664commit b03ebe2c22b8166e4f64c37737f4278676e3488d
3665Author: Damien Miller <djm@mindrot.org>
3666Date: Thu Jan 15 03:08:58 2015 +1100
3667
3668 more --without-openssl
3669
3670 fix some regressions caused by upstream merges
3671
3672 enable KRLs now that they no longer require BIGNUMs
3673
3674commit bc42cc6fe784f36df225c44c93b74830027cb5a2
3675Author: Damien Miller <djm@mindrot.org>
3676Date: Thu Jan 15 03:08:29 2015 +1100
3677
3678 kludge around tun API mismatch betterer
3679
3680commit c332110291089b624fa0951fbf2d1ee6de525b9f
3681Author: Damien Miller <djm@mindrot.org>
3682Date: Thu Jan 15 02:59:51 2015 +1100
3683
3684 some systems lack SO_REUSEPORT
3685
3686commit 83b9678a62cbdc74eb2031cf1e1e4ffd58e233ae
3687Author: Damien Miller <djm@mindrot.org>
3688Date: Thu Jan 15 02:35:50 2015 +1100
3689
3690 fix merge botch
3691
3692commit 0cdc5a3eb6fb383569a4da2a30705d9b90428d6b
3693Author: Damien Miller <djm@mindrot.org>
3694Date: Thu Jan 15 02:35:33 2015 +1100
3695
3696 unbreak across API change
3697
3698commit 6e2549ac2b5e7f96cbc2d83a6e0784b120444b47
3699Author: Damien Miller <djm@mindrot.org>
3700Date: Thu Jan 15 02:30:18 2015 +1100
3701
3702 need includes.h for portable OpenSSH
3703
3704commit 72ef7c148c42db7d5632a29f137f8b87b579f2d9
3705Author: Damien Miller <djm@mindrot.org>
3706Date: Thu Jan 15 02:21:31 2015 +1100
3707
3708 support --without-openssl at configure time
3709
3710 Disables and removes dependency on OpenSSL. Many features don't
3711 work and the set of crypto options is greatly restricted. This
3712 will only work on system with native arc4random or /dev/urandom.
3713
3714 Considered highly experimental for now.
3715
3716commit 4f38c61c68ae7e3f9ee4b3c38bc86cd39f65ece9
3717Author: Damien Miller <djm@mindrot.org>
3718Date: Thu Jan 15 02:28:00 2015 +1100
3719
3720 add files missed in last commit
3721
3722commit a165bab605f7be55940bb8fae977398e8c96a46d
3723Author: djm@openbsd.org <djm@openbsd.org>
3724Date: Wed Jan 14 15:02:39 2015 +0000
3725
3726 upstream commit
3727
3728 avoid BIGNUM in KRL code by using a simple bitmap;
3729 feedback and ok markus
3730
3731commit 7d845f4a0b7ec97887be204c3760e44de8bf1f32
3732Author: djm@openbsd.org <djm@openbsd.org>
3733Date: Wed Jan 14 13:54:13 2015 +0000
3734
3735 upstream commit
3736
3737 update sftp client and server to new buffer API. pretty
3738 much just mechanical changes; with & ok markus
3739
3740commit 139ca81866ec1b219c717d17061e5e7ad1059e2a
3741Author: markus@openbsd.org <markus@openbsd.org>
3742Date: Wed Jan 14 13:09:09 2015 +0000
3743
3744 upstream commit
3745
3746 switch to sshbuf/sshkey; with & ok djm@
3747
3748commit 81bfbd0bd35683de5d7f2238b985e5f8150a9180
3749Author: Damien Miller <djm@mindrot.org>
3750Date: Wed Jan 14 21:48:18 2015 +1100
3751
3752 support --without-openssl at configure time
3753
3754 Disables and removes dependency on OpenSSL. Many features don't
3755 work and the set of crypto options is greatly restricted. This
3756 will only work on system with native arc4random or /dev/urandom.
3757
3758 Considered highly experimental for now.
3759
3760commit 54924b53af15ccdcbb9f89984512b5efef641a31
3761Author: djm@openbsd.org <djm@openbsd.org>
3762Date: Wed Jan 14 10:46:28 2015 +0000
3763
3764 upstream commit
3765
3766 avoid an warning for the !OPENSSL case
3767
3768commit ae8b463217f7c9b66655bfc3945c050ffdaeb861
3769Author: markus@openbsd.org <markus@openbsd.org>
3770Date: Wed Jan 14 10:30:34 2015 +0000
3771
3772 upstream commit
3773
3774 swith auth-options to new sshbuf/sshkey; ok djm@
3775
3776commit 540e891191b98b89ee90aacf5b14a4a68635e763
3777Author: djm@openbsd.org <djm@openbsd.org>
3778Date: Wed Jan 14 10:29:45 2015 +0000
3779
3780 upstream commit
3781
3782 make non-OpenSSL aes-ctr work on sshd w/ privsep; ok
3783 markus@
3784
3785commit 60c2c4ea5e1ad0ddfe8b2877b78ed5143be79c53
3786Author: markus@openbsd.org <markus@openbsd.org>
3787Date: Wed Jan 14 10:24:42 2015 +0000
3788
3789 upstream commit
3790
3791 remove unneeded includes, sync my copyright across files
3792 & whitespace; ok djm@
3793
3794commit 128343bcdb0b60fc826f2733df8cf979ec1627b4
3795Author: markus@openbsd.org <markus@openbsd.org>
3796Date: Tue Jan 13 19:31:40 2015 +0000
3797
3798 upstream commit
3799
3800 adapt mac.c to ssherr.h return codes (de-fatal) and
3801 simplify dependencies ok djm@
3802
3803commit e7fd952f4ea01f09ceb068721a5431ac2fd416ed
3804Author: djm@openbsd.org <djm@openbsd.org>
3805Date: Tue Jan 13 19:04:35 2015 +0000
3806
3807 upstream commit
3808
3809 sync changes from libopenssh; prepared by markus@ mostly
3810 debug output tweaks, a couple of error return value changes and some other
3811 minor stuff
3812
3813commit 76c0480a85675f03a1376167cb686abed01a3583
3814Author: Damien Miller <djm@mindrot.org>
3815Date: Tue Jan 13 19:38:18 2015 +1100
3816
3817 add --without-ssh1 option to configure
3818
3819 Allows disabling support for SSH protocol 1.
3820
3821commit 1f729f0614d1376c3332fa1edb6a5e5cec7e9e03
3822Author: djm@openbsd.org <djm@openbsd.org>
3823Date: Tue Jan 13 07:39:19 2015 +0000
3824
3825 upstream commit
3826
3827 add sshd_config HostbasedAcceptedKeyTypes and
3828 PubkeyAcceptedKeyTypes options to allow sshd to control what public key types
3829 will be accepted. Currently defaults to all. Feedback & ok markus@
3830
3831commit 816d1538c24209a93ba0560b27c4fda57c3fff65
3832Author: markus@openbsd.org <markus@openbsd.org>
3833Date: Mon Jan 12 20:13:27 2015 +0000
3834
3835 upstream commit
3836
3837 unbreak parsing of pubkey comments; with gerhard; ok
3838 djm/deraadt
3839
3840commit 0097565f849851812df610b7b6b3c4bd414f6c62
3841Author: markus@openbsd.org <markus@openbsd.org>
3842Date: Mon Jan 12 19:22:46 2015 +0000
3843
3844 upstream commit
3845
3846 missing error assigment on sshbuf_put_string()
3847
3848commit a7f49dcb527dd17877fcb8d5c3a9a6f550e0bba5
3849Author: djm@openbsd.org <djm@openbsd.org>
3850Date: Mon Jan 12 15:18:07 2015 +0000
3851
3852 upstream commit
3853
3854 apparently memcpy(x, NULL, 0) is undefined behaviour
3855 according to C99 (cf. sections 7.21.1 and 7.1.4), so check skip memcpy calls
3856 when length==0; ok markus@
3857
3858commit 905fe30fca82f38213763616d0d26eb6790bde33
3859Author: markus@openbsd.org <markus@openbsd.org>
3860Date: Mon Jan 12 14:05:19 2015 +0000
3861
3862 upstream commit
3863
3864 free->sshkey_free; ok djm@
3865
3866commit f067cca2bc20c86b110174c3fef04086a7f57b13
3867Author: markus@openbsd.org <markus@openbsd.org>
3868Date: Mon Jan 12 13:29:27 2015 +0000
3869
3870 upstream commit
3871
3872 allow WITH_OPENSSL w/o WITH_SSH1; ok djm@
3873
3874commit c4bfafcc2a9300d9cfb3c15e75572d3a7d74670d
3875Author: djm@openbsd.org <djm@openbsd.org>
3876Date: Thu Jan 8 13:10:58 2015 +0000
3877
3878 upstream commit
3879
3880 adjust for sshkey_load_file() API change
3881
3882commit e752c6d547036c602b89e9e704851463bd160e32
3883Author: djm@openbsd.org <djm@openbsd.org>
3884Date: Thu Jan 8 13:44:36 2015 +0000
3885
3886 upstream commit
3887
3888 fix ssh_config FingerprintHash evaluation order; from Petr
3889 Lautrbach
3890
3891commit ab24ab847b0fc94c8d5e419feecff0bcb6d6d1bf
3892Author: djm@openbsd.org <djm@openbsd.org>
3893Date: Thu Jan 8 10:15:45 2015 +0000
3894
3895 upstream commit
3896
3897 reorder hostbased key attempts to better match the
3898 default hostkey algorithms order in myproposal.h; ok markus@
3899
3900commit 1195f4cb07ef4b0405c839293c38600b3e9bdb46
3901Author: djm@openbsd.org <djm@openbsd.org>
3902Date: Thu Jan 8 10:14:08 2015 +0000
3903
3904 upstream commit
3905
3906 deprecate key_load_private_pem() and
3907 sshkey_load_private_pem() interfaces. Refactor the generic key loading API to
3908 not require pathnames to be specified (they weren't really used).
3909
3910 Fixes a few other things en passant:
3911
3912 Makes ed25519 keys work for hostbased authentication (ssh-keysign
3913 previously used the PEM-only routines).
3914
3915 Fixes key comment regression bz#2306: key pathnames were being lost as
3916 comment fields.
3917
3918 ok markus@
3919
3920commit febbe09e4e9aff579b0c5cc1623f756862e4757d
3921Author: tedu@openbsd.org <tedu@openbsd.org>
3922Date: Wed Jan 7 18:15:07 2015 +0000
3923
3924 upstream commit
3925
3926 workaround for the Meyer, et al, Bleichenbacher Side
3927 Channel Attack. fake up a bignum key before RSA decryption. discussed/ok djm
3928 markus
3929
3930commit 5191df927db282d3123ca2f34a04d8d96153911a
3931Author: djm@openbsd.org <djm@openbsd.org>
3932Date: Tue Dec 23 22:42:48 2014 +0000
3933
3934 upstream commit
3935
3936 KNF and add a little more debug()
3937
3938commit 8abd80315d3419b20e6938f74d37e2e2b547f0b7
3939Author: jmc@openbsd.org <jmc@openbsd.org>
3940Date: Mon Dec 22 09:26:31 2014 +0000
3941
3942 upstream commit
3943
3944 add fingerprinthash to the options list;
3945
3946commit 296ef0560f60980da01d83b9f0e1a5257826536f
3947Author: jmc@openbsd.org <jmc@openbsd.org>
3948Date: Mon Dec 22 09:24:59 2014 +0000
3949
3950 upstream commit
3951
3952 tweak previous;
3953
3954commit 462082eacbd37778a173afb6b84c6f4d898a18b5
3955Author: Damien Miller <djm@google.com>
3956Date: Tue Dec 30 08:16:11 2014 +1100
3957
3958 avoid uninitialised free of ldns_res
3959
3960 If an invalid rdclass was passed to getrrsetbyname() then
3961 this would execute a free on an uninitialised pointer.
3962 OpenSSH only ever calls this with a fixed and valid rdclass.
3963
3964 Reported by Joshua Rogers
3965
3966commit 01b63498801053f131a0740eb9d13faf35d636c8
3967Author: Damien Miller <djm@google.com>
3968Date: Mon Dec 29 18:10:18 2014 +1100
3969
3970 pull updated OpenBSD BCrypt PBKDF implementation
3971
3972 Includes fix for 1 byte output overflow for large key length
3973 requests (not reachable in OpenSSH).
3974
3975 Pointed out by Joshua Rogers
3976
3977commit c528c1b4af2f06712177b3de9b30705752f7cbcb
3978Author: Damien Miller <djm@google.com>
3979Date: Tue Dec 23 15:26:13 2014 +1100
3980
3981 fix variable name for IPv6 case in construct_utmpx
3982
3983 patch from writeonce AT midipix.org via bz#2296
3984
3985commit 293cac52dcda123244b2e594d15592e5e481c55e
3986Author: Damien Miller <djm@google.com>
3987Date: Mon Dec 22 16:30:42 2014 +1100
3988
3989 include and use OpenBSD netcat in regress/
3990
3991commit 8f6784f0cb56dc4fd00af3e81a10050a5785228d
3992Author: djm@openbsd.org <djm@openbsd.org>
3993Date: Mon Dec 22 09:05:17 2014 +0000
3994
3995 upstream commit
3996
3997 mention ssh -Q feature to list supported { MAC, cipher,
3998 KEX, key } algorithms in more places and include the query string used to
3999 list the relevant information; bz#2288
4000
4001commit 449e11b4d7847079bd0a2daa6e3e7ea03d8ef700
4002Author: jmc@openbsd.org <jmc@openbsd.org>
4003Date: Mon Dec 22 08:24:17 2014 +0000
4004
4005 upstream commit
4006
4007 tweak previous;
4008
4009commit 4bea0ab3290c0b9dd2aa199e932de8e7e18062d6
4010Author: djm@openbsd.org <djm@openbsd.org>
4011Date: Mon Dec 22 08:06:03 2014 +0000
4012
4013 upstream commit
4014
4015 regression test for multiple required pubkey authentication;
4016 ok markus@
4017
4018commit f1c4d8ec52158b6f57834b8cd839605b0a33e7f2
4019Author: djm@openbsd.org <djm@openbsd.org>
4020Date: Mon Dec 22 08:04:23 2014 +0000
4021
4022 upstream commit
4023
4024 correct description of what will happen when a
4025 AuthorizedKeysCommand is specified but AuthorizedKeysCommandUser is not (sshd
4026 will refuse to start)
4027
4028commit 161cf419f412446635013ac49e8c660cadc36080
4029Author: djm@openbsd.org <djm@openbsd.org>
4030Date: Mon Dec 22 07:55:51 2014 +0000
4031
4032 upstream commit
4033
4034 make internal handling of filename arguments of "none"
4035 more consistent with ssh. "none" arguments are now replaced with NULL when
4036 the configuration is finalised.
4037
4038 Simplifies checking later on (just need to test not-NULL rather than
4039 that + strcmp) and cleans up some inconsistencies. ok markus@
4040
4041commit f69b69b8625be447b8826b21d87713874dac25a6
4042Author: djm@openbsd.org <djm@openbsd.org>
4043Date: Mon Dec 22 07:51:30 2014 +0000
4044
4045 upstream commit
4046
4047 remember which public keys have been used for
4048 authentication and refuse to accept previously-used keys.
4049
4050 This allows AuthenticationMethods=publickey,publickey to require
4051 that users authenticate using two _different_ pubkeys.
4052
4053 ok markus@
4054
4055commit 46ac2ed4677968224c4ca825bc98fc68dae183f0
4056Author: djm@openbsd.org <djm@openbsd.org>
4057Date: Mon Dec 22 07:24:11 2014 +0000
4058
4059 upstream commit
4060
4061 fix passing of wildcard forward bind addresses when
4062 connection multiplexing is in use; patch from Sami Hartikainen via bz#2324;
4063 ok dtucker@
4064
4065commit 0d1b241a262e4d0a6bbfdd595489ab1b853c43a1
4066Author: djm@openbsd.org <djm@openbsd.org>
4067Date: Mon Dec 22 06:14:29 2014 +0000
4068
4069 upstream commit
4070
4071 make this slightly easier to diff against portable
4072
4073commit 0715bcdddbf68953964058f17255bf54734b8737
4074Author: Damien Miller <djm@mindrot.org>
4075Date: Mon Dec 22 13:47:07 2014 +1100
4076
4077 add missing regress output file
4078
4079commit 1e30483c8ad2c2f39445d4a4b6ab20c241e40593
4080Author: djm@openbsd.org <djm@openbsd.org>
4081Date: Mon Dec 22 02:15:52 2014 +0000
4082
4083 upstream commit
4084
4085 adjust for new SHA256 key fingerprints and
4086 slightly-different MD5 hex fingerprint format
4087
4088commit 6b40567ed722df98593ad8e6a2d2448fc2b4b151
4089Author: djm@openbsd.org <djm@openbsd.org>
4090Date: Mon Dec 22 01:14:49 2014 +0000
4091
4092 upstream commit
4093
4094 poll changes to netcat (usr.bin/netcat.c r1.125) broke
4095 this test; fix it by ensuring more stdio fds are sent to devnull
4096
4097commit a5375ccb970f49dddf7d0ef63c9b713ede9e7260
4098Author: jmc@openbsd.org <jmc@openbsd.org>
4099Date: Sun Dec 21 23:35:14 2014 +0000
4100
4101 upstream commit
4102
4103 tweak previous;
4104
4105commit b79efde5c3badf5ce4312fe608d8307eade533c5
4106Author: djm@openbsd.org <djm@openbsd.org>
4107Date: Sun Dec 21 23:12:42 2014 +0000
4108
4109 upstream commit
4110
4111 document FingerprintHash here too
4112
4113commit d16bdd8027dd116afa01324bb071a4016cdc1a75
4114Author: Damien Miller <djm@mindrot.org>
4115Date: Mon Dec 22 10:18:09 2014 +1100
4116
4117 missing include for base64 encoding
4118
4119commit 56d1c83cdd1ac76f1c6bd41e01e80dad834f3994
4120Author: djm@openbsd.org <djm@openbsd.org>
4121Date: Sun Dec 21 22:27:55 2014 +0000
4122
4123 upstream commit
4124
4125 Add FingerprintHash option to control algorithm used for
4126 key fingerprints. Default changes from MD5 to SHA256 and format from hex to
4127 base64.
4128
4129 Feedback and ok naddy@ markus@
4130
4131commit 058f839fe15c51be8b3a844a76ab9a8db550be4f
4132Author: djm@openbsd.org <djm@openbsd.org>
4133Date: Thu Dec 18 23:58:04 2014 +0000
4134
4135 upstream commit
4136
4137 don't count partial authentication success as a failure
4138 against MaxAuthTries; ok deraadt@
4139
4140commit c7219f4f54d64d6dde66dbcf7a2699daa782d2a1
4141Author: djm@openbsd.org <djm@openbsd.org>
4142Date: Fri Dec 12 00:02:17 2014 +0000
4143
4144 upstream commit
4145
4146 revert chunk I didn't mean to commit yet; via jmc@
4147
4148commit 7de5991aa3997e2981440f39c1ea01273a0a2c7b
4149Author: Damien Miller <djm@mindrot.org>
4150Date: Thu Dec 18 11:44:06 2014 +1100
4151
4152 upstream libc change
4153
4154 revision 1.2
4155 date: 2014/12/08 03:45:00; author: bcook; state: Exp; lines: +2 -2; commitid: 7zWEBgJJOCZ2hvTV;
4156 avoid left shift overflow in reallocarray.
4157
4158 Some 64-bit platforms (e.g. Windows 64) have a 32-bit long. So, shifting
4159 1UL 32-bits to the left causes an overflow. This replaces the constant 1UL with
4160 (size_t)1 so that we get the correct constant size for the platform.
4161
4162 discussed with tedu@ & deraadt@
4163
4164commit 2048f85a5e6da8bc6e0532efe02ecfd4e63c978c
4165Author: Damien Miller <djm@mindrot.org>
4166Date: Thu Dec 18 10:15:49 2014 +1100
4167
4168 include CFLAGS in gnome askpass targets
4169
4170 from Fedora
4171
4172commit 48b68ce19ca42fa488960028048dec023f7899bb
4173Author: djm@openbsd.org <djm@openbsd.org>
4174Date: Thu Dec 11 08:20:09 2014 +0000
4175
4176 upstream commit
4177
4178 explicitly include sys/param.h in files that use the
4179 howmany() macro; from portable
4180
4181commit d663bea30a294d440fef4398e5cd816317bd4518
4182Author: djm@openbsd.org <djm@openbsd.org>
4183Date: Thu Dec 11 05:25:06 2014 +0000
4184
4185 upstream commit
4186
4187 mention AuthorizedKeysCommandUser must be set for
4188 AuthorizedKeysCommand to be run; bz#2287
4189
4190commit 17bf3d81e00f2abb414a4fd271118cf4913f049f
4191Author: djm@openbsd.org <djm@openbsd.org>
4192Date: Thu Dec 11 05:13:28 2014 +0000
4193
4194 upstream commit
4195
4196 show in debug output which hostkeys are being tried when
4197 attempting hostbased auth; patch from Iain Morgan
4198
4199commit da0277e3717eadf5b15e03379fc29db133487e94
4200Author: djm@openbsd.org <djm@openbsd.org>
4201Date: Thu Dec 11 04:16:14 2014 +0000
4202
4203 upstream commit
4204
4205 Make manual reflect reality: sftp-server's -d option
4206 accepts a "%d" option, not a "%h" one.
4207
4208 bz#2316; reported by Kirk Wolf
4209
4210commit 4cf87f4b81fa9380bce5fcff7b0f8382ae3ad996
4211Author: djm@openbsd.org <djm@openbsd.org>
4212Date: Wed Dec 10 01:24:09 2014 +0000
4213
4214 upstream commit
4215
4216 better error value for invalid signature length
4217
4218commit 4bfad14ca56f8ae04f418997816b4ba84e2cfc3c
4219Author: Darren Tucker <dtucker@zip.com.au>
4220Date: Wed Dec 10 02:12:51 2014 +1100
4221
4222 Resync more with OpenBSD's rijndael.c, in particular "#if 0"-ing out some
4223 unused code. Should fix compile error reported by plautrba at redhat.
4224
4225commit 642652d280499691c8212ec6b79724b50008ce09
4226Author: Darren Tucker <dtucker@zip.com.au>
4227Date: Wed Dec 10 01:32:23 2014 +1100
4228
4229 Add reallocarray to compat library
4230
4231commit 3dfd8d93dfcc69261f5af99df56f3ff598581979
4232Author: djm@openbsd.org <djm@openbsd.org>
4233Date: Thu Dec 4 22:31:50 2014 +0000
4234
4235 upstream commit
4236
4237 add tests for new client RevokedHostKeys option; refactor
4238 to make it a bit more readable
4239
4240commit a31046cad1aed16a0b55171192faa6d02665ccec
4241Author: krw@openbsd.org <krw@openbsd.org>
4242Date: Wed Nov 19 13:35:37 2014 +0000
4243
4244 upstream commit
4245
4246 Nuke yet more obvious #include duplications.
4247
4248 ok deraadt@
4249
4250commit a7c762e5b2c1093542c0bc1df25ccec0b4cf479f
4251Author: djm@openbsd.org <djm@openbsd.org>
4252Date: Thu Dec 4 20:47:36 2014 +0000
4253
4254 upstream commit
4255
4256 key_in_file() wrapper is no longer used
4257
4258commit 5e39a49930d885aac9c76af3129332b6e772cd75
4259Author: djm@openbsd.org <djm@openbsd.org>
4260Date: Thu Dec 4 02:24:32 2014 +0000
4261
4262 upstream commit
4263
4264 add RevokedHostKeys option for the client
4265
4266 Allow textfile or KRL-based revocation of hostkeys.
4267
4268commit 74de254bb92c684cf53461da97f52d5ba34ded80
4269Author: djm@openbsd.org <djm@openbsd.org>
4270Date: Thu Dec 4 01:49:59 2014 +0000
4271
4272 upstream commit
4273
4274 convert KRL code to new buffer API
4275
4276 ok markus@
4277
4278commit db995f2eed5fc432598626fa3e30654503bf7151
4279Author: millert@openbsd.org <millert@openbsd.org>
4280Date: Wed Nov 26 18:34:51 2014 +0000
4281
4282 upstream commit
4283
4284 Prefer setvbuf() to setlinebuf() for portability; ok
4285 deraadt@
4286
4287commit 72bba3d179ced8b425272efe6956a309202a91f3
4288Author: jsg@openbsd.org <jsg@openbsd.org>
4289Date: Mon Nov 24 03:39:22 2014 +0000
4290
4291 upstream commit
4292
4293 Fix crashes in the handling of the sshd config file found
4294 with the afl fuzzer.
4295
4296 ok deraadt@ djm@
4297
4298commit 867f49c666adcfe92bf539d9c37c1accdea08bf6
4299Author: Damien Miller <djm@mindrot.org>
4300Date: Wed Nov 26 13:22:41 2014 +1100
4301
4302 Avoid Cygwin ssh-host-config reading /etc/group
4303
4304 Patch from Corinna Vinschen
4305
4306commit 8b66f36291a721b1ba7c44f24a07fdf39235593e
4307Author: Damien Miller <djm@mindrot.org>
4308Date: Wed Nov 26 13:20:35 2014 +1100
4309
4310 allow custom service name for sshd on Cygwin
4311
4312 Permits the use of multiple sshd running with different service names.
4313
4314 Patch by Florian Friesdorf via Corinna Vinschen
4315
4316commit 08c0eebf55d70a9ae1964399e609288ae3186a0c
4317Author: jmc@openbsd.org <jmc@openbsd.org>
4318Date: Sat Nov 22 19:21:03 2014 +0000
4319
4320 upstream commit
4321
4322 restore word zapped in previous, and remove some useless
4323 "No" macros;
4324
4325commit a1418a0033fba43f061513e992e1cbcc3343e563
4326Author: deraadt@openbsd.org <deraadt@openbsd.org>
4327Date: Sat Nov 22 18:15:41 2014 +0000
4328
4329 upstream commit
4330
4331 /dev/random has created the same effect as /dev/arandom
4332 (and /dev/urandom) for quite some time. Mop up the last few, by using
4333 /dev/random where we actually want it, or not even mentioning arandom where
4334 it is irrelevant.
4335
4336commit b6de5ac9ed421362f479d1ad4fa433d2e25dad5b
4337Author: djm@openbsd.org <djm@openbsd.org>
4338Date: Fri Nov 21 01:00:38 2014 +0000
4339
4340 upstream commit
4341
4342 fix NULL pointer dereference crash on invalid timestamp
4343
4344 found using Michal Zalewski's afl fuzzer
4345
4346commit a1f8110cd5ed818d59b3a2964fab7de76e92c18e
4347Author: mikeb@openbsd.org <mikeb@openbsd.org>
4348Date: Tue Nov 18 22:38:48 2014 +0000
4349
4350 upstream commit
4351
4352 Sync AES code to the one shipped in OpenSSL/LibreSSL.
4353
4354 This includes a commit made by Andy Polyakov <appro at openssl ! org>
4355 to the OpenSSL source tree on Wed, 28 Jun 2006 with the following
4356 message: "Mitigate cache-collision timing attack on last round."
4357
4358 OK naddy, miod, djm
4359
4360commit 335c83d5f35d8620e16b8aa26592d4f836e09ad2
4361Author: krw@openbsd.org <krw@openbsd.org>
4362Date: Tue Nov 18 20:54:28 2014 +0000
4363
4364 upstream commit
4365
4366 Nuke more obvious #include duplications.
4367
4368 ok deraadt@ millert@ tedu@
4369
4370commit 51b64e44121194ae4bf153dee391228dada2abcb
4371Author: djm@openbsd.org <djm@openbsd.org>
4372Date: Mon Nov 17 00:21:40 2014 +0000
4373
4374 upstream commit
4375
4376 fix KRL generation when multiple CAs are in use
4377
4378 We would generate an invalid KRL when revoking certs by serial
4379 number for multiple CA keys due to a section being written out
4380 twice.
4381
4382 Also extend the regress test to catch this case by having it
4383 produce a multi-CA KRL.
4384
4385 Reported by peter AT pean.org
4386
4387commit d2d51003a623e21fb2b25567c4878d915e90aa2a
4388Author: djm@openbsd.org <djm@openbsd.org>
4389Date: Tue Nov 18 01:02:25 2014 +0000
4390
4391 upstream commit
4392
4393 fix NULL pointer dereference crash in key loading
4394
4395 found by Michal Zalewski's AFL fuzzer
4396
4397commit 9f9fad0191028edc43d100d0ded39419b6895fdf
4398Author: djm@openbsd.org <djm@openbsd.org>
4399Date: Mon Nov 17 00:21:40 2014 +0000
4400
4401 upstream commit
4402
4403 fix KRL generation when multiple CAs are in use
4404
4405 We would generate an invalid KRL when revoking certs by serial
4406 number for multiple CA keys due to a section being written out
4407 twice.
4408
4409 Also extend the regress test to catch this case by having it
4410 produce a multi-CA KRL.
4411
4412 Reported by peter AT pean.org
4413
4414commit da8af83d3f7ec00099963e455010e0ed1d7d0140
4415Author: bentley@openbsd.org <bentley@openbsd.org>
4416Date: Sat Nov 15 14:41:03 2014 +0000
4417
4418 upstream commit
4419
4420 Reduce instances of `` '' in manuals.
4421
4422 troff displays these as typographic quotes, but nroff implementations
4423 almost always print them literally, which rarely has the intended effect
4424 with modern fonts, even in stock xterm.
4425
4426 These uses of `` '' can be replaced either with more semantic alternatives
4427 or with Dq, which prints typographic quotes in a UTF-8 locale (but will
4428 automatically fall back to `` '' in an ASCII locale).
4429
4430 improvements and ok schwarze@
4431
4432commit fc302561369483bb755b17f671f70fb894aec01d
4433Author: djm@openbsd.org <djm@openbsd.org>
4434Date: Mon Nov 10 22:25:49 2014 +0000
4435
4436 upstream commit
4437
4438 mux-related manual tweaks
4439
4440 mention ControlPersist=0 is the same as ControlPersist=yes
4441
4442 recommend that ControlPath sockets be placed in a og-w directory
4443
4444commit 0e4cff5f35ed11102fe3783779960ef07e0cd381
4445Author: Damien Miller <djm@google.com>
4446Date: Wed Nov 5 11:01:31 2014 +1100
4447
4448 Prepare scripts for next Cygwin release
4449
4450 Makes the Cygwin-specific ssh-user-config script independent of the
4451 existence of /etc/passwd. The next Cygwin release will allow to
4452 generate passwd and group entries from the Windows account DBs, so the
4453 scripts have to adapt.
4454
4455 from Corinna Vinschen
4456
4457commit 7d0ba5336651731949762eb8877ce9e3b52df436
4458Author: Damien Miller <djm@mindrot.org>
4459Date: Thu Oct 30 10:45:41 2014 +1100
4460
4461 include version number in OpenSSL-too-old error
4462
4463commit 3bcb92e04d9207e9f78d82f7918c6d3422054ce9
4464Author: lteo@openbsd.org <lteo@openbsd.org>
4465Date: Fri Oct 24 02:01:20 2014 +0000
4466
4467 upstream commit
4468
4469 Remove unnecessary include: netinet/in_systm.h is not needed
4470 by these programs.
4471
4472 NB. skipped for portable
4473
4474 ok deraadt@ millert@
4475
4476commit 6fdcaeb99532e28a69f1a1599fbd540bb15b70a0
4477Author: djm@openbsd.org <djm@openbsd.org>
4478Date: Mon Oct 20 03:43:01 2014 +0000
4479
4480 upstream commit
4481
4482 whitespace
4483
4484commit 165bc8786299e261706ed60342985f9de93a7461
4485Author: daniel@openbsd.org <daniel@openbsd.org>
4486Date: Tue Oct 14 03:09:59 2014 +0000
4487
4488 upstream commit
4489
4490 plug a memory leak; from Maxime Villard.
4491
4492 ok djm@
4493
4494commit b1ba15f3885947c245c2dbfaad0a04ba050abea0
4495Author: jmc@openbsd.org <jmc@openbsd.org>
4496Date: Thu Oct 9 06:21:31 2014 +0000
4497
4498 upstream commit
4499
4500 tweak previous;
4501
4502commit 259a02ebdf74ad90b41d116ecf70aa823fa4c6e7
4503Author: djm@openbsd.org <djm@openbsd.org>
4504Date: Mon Oct 13 00:38:35 2014 +0000
4505
4506 upstream commit
4507
4508 whitespace
4509
4510commit 957fbceb0f3166e41b76fdb54075ab3b9cc84cba
4511Author: djm@openbsd.org <djm@openbsd.org>
4512Date: Wed Oct 8 22:20:25 2014 +0000
4513
4514 upstream commit
4515
4516 Tweak config reparsing with host canonicalisation
4517
4518 Make the second pass through the config files always run when
4519 hostname canonicalisation is enabled.
4520
4521 Add a "Match canonical" criteria that allows ssh_config Match
4522 blocks to trigger only in the second config pass.
4523
4524 Add a -G option to ssh that causes it to parse its configuration
4525 and dump the result to stdout, similar to "sshd -T"
4526
4527 Allow ssh_config Port options set in the second config parse
4528 phase to be applied (they were being ignored).
4529
4530 bz#2267 bz#2286; ok markus
4531
4532commit 5c0dafd38bf66feeeb45fa0741a5baf5ad8039ba
4533Author: djm@openbsd.org <djm@openbsd.org>
4534Date: Wed Oct 8 22:15:27 2014 +0000
4535
4536 upstream commit
4537
4538 another -Wpointer-sign from clang
4539
4540commit bb005dc815ebda9af3ae4b39ca101c4da918f835
4541Author: djm@openbsd.org <djm@openbsd.org>
4542Date: Wed Oct 8 22:15:06 2014 +0000
4543
4544 upstream commit
4545
4546 fix a few -Wpointer-sign warnings from clang
4547
4548commit 3cc1fbb4fb0e804bfb873fd363cea91b27fc8188
4549Author: djm@openbsd.org <djm@openbsd.org>
4550Date: Wed Oct 8 21:45:48 2014 +0000
4551
4552 upstream commit
4553
4554 parse cert sections using nested buffers to reduce
4555 copies; ok markus
4556
4557commit 4a45922aebf99164e2fc83d34fe55b11ae1866ef
4558Author: djm@openbsd.org <djm@openbsd.org>
4559Date: Mon Oct 6 00:47:15 2014 +0000
4560
4561 upstream commit
4562
4563 correct options in usage(); from mancha1 AT zoho.com
4564
4565commit 48dffd5bebae6fed0556dc5c36cece0370690618
4566Author: djm@openbsd.org <djm@openbsd.org>
4567Date: Tue Sep 9 09:45:36 2014 +0000
4568
4569 upstream commit
4570
4571 mention permissions on tun(4) devices in PermitTunnel
4572 documentation; bz#2273
4573
4574commit a5883d4eccb94b16c355987f58f86a7dee17a0c2
4575Author: djm@openbsd.org <djm@openbsd.org>
4576Date: Wed Sep 3 18:55:07 2014 +0000
4577
4578 upstream commit
4579
4580 tighten permissions on pty when the "tty" group does
4581 not exist; pointed out by Corinna Vinschen; ok markus
4582
4583commit 180bcb406b58bf30723c01a6b010e48ee626dda8
4584Author: sobrado@openbsd.org <sobrado@openbsd.org>
4585Date: Sat Aug 30 16:32:25 2014 +0000
4586
4587 upstream commit
4588
4589 typo.
4590
4591commit f70b22bcdd52f6bf127047b3584371e6e5d45627
4592Author: sobrado@openbsd.org <sobrado@openbsd.org>
4593Date: Sat Aug 30 15:33:50 2014 +0000
4594
4595 upstream commit
4596
4597 improve capitalization for the Ed25519 public-key
4598 signature system.
4599
4600 ok djm@
4601
4602commit 7df8818409c752cf3f0c3f8044fe9aebed8647bd
4603Author: doug@openbsd.org <doug@openbsd.org>
4604Date: Thu Aug 21 01:08:52 2014 +0000
4605
4606 upstream commit
4607
4608 Free resources on error in mkstemp and fdopen
4609
4610 ok djm@
4611
4612commit 40ba4c9733aaed08304714faeb61529f18da144b
4613Author: deraadt@openbsd.org <deraadt@openbsd.org>
4614Date: Wed Aug 20 01:28:55 2014 +0000
4615
4616 upstream commit
4617
4618 djm how did you make a typo like that...
4619
4620commit 57d378ec9278ba417a726f615daad67d157de666
4621Author: djm@openbsd.org <djm@openbsd.org>
4622Date: Tue Aug 19 23:58:28 2014 +0000
4623
4624 upstream commit
4625
4626 When dumping the server configuration (sshd -T), print
4627 correct KEX, MAC and cipher defaults. Spotted by Iain Morgan
4628
4629commit 7ff880ede5195d0b17e7f1e3b6cfbc4cb6f85240
4630Author: djm@openbsd.org <djm@openbsd.org>
4631Date: Tue Aug 19 23:57:18 2014 +0000
4632
4633 upstream commit
4634
4635 ~-expand lcd paths
4636
4637commit 4460a7ad0c78d4cd67c467f6e9f4254d0404ed59
4638Author: Damien Miller <djm@mindrot.org>
4639Date: Sun Oct 12 12:35:48 2014 +1100
4640
4641 remove duplicated KEX_DH1 entry
4642
4643commit c9b8426a616138d0d762176c94f51aff3faad5ff
4644Author: Damien Miller <djm@mindrot.org>
4645Date: Thu Oct 9 10:34:06 2014 +1100
4646
4647 remove ChangeLog file
4648
4649 Commit logs will be generated from git at release time.
4650
4651commit 81d18ff7c93a04affbf3903e0963859763219aed
4652Author: Damien Miller <djm@google.com>
4653Date: Tue Oct 7 21:24:25 2014 +1100
4654
4655 delete contrib/caldera directory
4656
4657commit 0ec9e87d3638206456968202f05bb5123670607a
4658Author: Damien Miller <djm@google.com>
4659Date: Tue Oct 7 19:57:27 2014 +1100
4660
4661 test commit
4662
4663commit 8fb65a44568701b779f3d77326bceae63412d28d
4664Author: Damien Miller <djm@mindrot.org>
4665Date: Tue Oct 7 09:21:49 2014 +1100
4666
4667 - (djm) Release OpenSSH-6.7
4668
4669commit e8c9f2602c46f6781df5e52e6cd8413dab4602a3
4670Author: Damien Miller <djm@mindrot.org>
4671Date: Fri Oct 3 09:24:56 2014 +1000
4672
4673 - (djm) [sshd_config.5] typo; from Iain Morgan
4674
4675commit 703b98a26706f5083801d11059486d77491342ae
4676Author: Damien Miller <djm@mindrot.org>
4677Date: Wed Oct 1 09:43:07 2014 +1000
4678
4679 - (djm) [openbsd-compat/Makefile.in openbsd-compat/kludge-fd_set.c]
4680 [openbsd-compat/openbsd-compat.h] Kludge around bad glibc
4681 _FORTIFY_SOURCE check that doesn't grok heap-allocated fd_sets;
4682 ok dtucker@
4683
4684commit 0fa0ed061bbfedb0daa705e220748154a84c3413
4685Author: Damien Miller <djm@mindrot.org>
4686Date: Wed Sep 10 08:15:34 2014 +1000
4687
4688 - (djm) [sandbox-seccomp-filter.c] Allow mremap and exit for DietLibc;
4689 patch from Felix von Leitner; ok dtucker
4690
4691commit ad7d23d461c3b7e1dcb15db13aee5f4b94dc1a95
4692Author: Darren Tucker <dtucker@zip.com.au>
4693Date: Tue Sep 9 12:23:10 2014 +1000
4694
4695 20140908
4696 - (dtucker) [INSTALL] Update info about egd. ok djm@
4697
4698commit 2a8699f37cc2515e3bc60e0c677ba060f4d48191
4699Author: Damien Miller <djm@mindrot.org>
4700Date: Thu Sep 4 03:46:05 2014 +1000
4701
4702 - (djm) [openbsd-compat/arc4random.c] Zero seed after keying PRNG
4703
4704commit 44988defb1f5e3afe576d86000365e1f07a1b494
4705Author: Damien Miller <djm@mindrot.org>
4706Date: Wed Sep 3 05:35:32 2014 +1000
4707
4708 - (djm) [contrib/cygwin/ssh-host-config] Fix old code leading to
4709 permissions/ACLs; from Corinna Vinschen
4710
4711commit 23f269562b7537b2f6f5014e50a25e5dcc55a837
4712Author: Damien Miller <djm@mindrot.org>
4713Date: Wed Sep 3 05:33:25 2014 +1000
4714
4715 - (djm) [defines.h sshbuf.c] Move __predict_true|false to defines.h and
4716 conditionalise to avoid duplicate definition.
4717
4718commit 41c8de2c0031cf59e7cf0c06b5bcfbf4852c1fda
4719Author: Damien Miller <djm@mindrot.org>
4720Date: Sat Aug 30 16:23:06 2014 +1000
4721
4722 - (djm) [Makefile.in] Make TEST_SHELL a variable; "good idea" tim@
4723
4724commit d7c81e216a7bd9eed6e239c970d9261bb1651947
4725Author: Damien Miller <djm@mindrot.org>
4726Date: Sat Aug 30 04:18:28 2014 +1000
4727
4728 - (djm) [openbsd-compat/openssl-compat.h] add include guard
4729
4730commit 4687802dda57365b984b897fc3c8e2867ea09b22
4731Author: Damien Miller <djm@mindrot.org>
4732Date: Sat Aug 30 03:29:19 2014 +1000
4733
4734 - (djm) [misc.c] Missing newline between functions
4735
4736commit 51c77e29220dee87c53be2dc47092934acab26fe
4737Author: Damien Miller <djm@mindrot.org>
4738Date: Sat Aug 30 02:30:30 2014 +1000
4739
4740 - (djm) [openbsd-compat/openssl-compat.h] add
4741 OPENSSL_[RD]SA_MAX_MODULUS_BITS defines for OpenSSL that lacks them
4742
4743commit 3d673d103bad35afaec6e7ef73e5277216ce33a3
4744Author: Damien Miller <djm@mindrot.org>
4745Date: Wed Aug 27 06:32:01 2014 +1000
4746
4747 - (djm) [openbsd-compat/explicit_bzero.c] implement explicit_bzero()
4748 using memset_s() where possible; improve fallback to indirect bzero
4749 via a volatile pointer to give it more of a chance to avoid being
4750 optimised away.
4751
4752commit 146218ac11a1eb0dcade6f793d7acdef163b5ddc
4753Author: Damien Miller <djm@mindrot.org>
4754Date: Wed Aug 27 04:11:55 2014 +1000
4755
4756 - (djm) [monitor.c sshd.c] SIGXFSZ needs to be ignored in postauth
4757 monitor, not preauth; bz#2263
4758
4759commit 1b215c098b3b37e38aa4e4c91bb908eee41183b1
4760Author: Damien Miller <djm@mindrot.org>
4761Date: Wed Aug 27 04:04:40 2014 +1000
4762
4763 - (djm) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c]
4764 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
4765 [regress/unittests/sshkey/common.c]
4766 [regress/unittests/sshkey/test_file.c]
4767 [regress/unittests/sshkey/test_fuzz.c]
4768 [regress/unittests/sshkey/test_sshkey.c] Don't include openssl/ec.h
4769 on !ECC OpenSSL systems
4770
4771commit ad013944af0a19e3f612089d0099bb397cf6502d
4772Author: Damien Miller <djm@mindrot.org>
4773Date: Tue Aug 26 09:27:28 2014 +1000
4774
4775 - (djm) [INSTALL] Recommend libcrypto be built -fPIC, mention LibreSSL,
4776 update OpenSSL version requirement.
4777
4778commit ed126de8ee04c66640a0ea2697c4aaf36801f100
4779Author: Damien Miller <djm@mindrot.org>
4780Date: Tue Aug 26 08:37:47 2014 +1000
4781
4782 - (djm) [bufec.c] Skip this file on !ECC OpenSSL
4783
4784commit 9c1dede005746864a4fdb36a7cdf6c51296ca909
4785Author: Damien Miller <djm@mindrot.org>
4786Date: Sun Aug 24 03:01:06 2014 +1000
4787
4788 - (djm) [sftp-server.c] Some systems (e.g. Irix) have prctl() but not
4789 PR_SET_DUMPABLE, so adjust ifdef; reported by Tom Christensen
4790
4791commit d244a5816fd1312a33404b436e4dd83594f1119e
4792Author: Damien Miller <djm@mindrot.org>
4793Date: Sat Aug 23 17:06:49 2014 +1000
4794
4795 - (djm) [configure.ac] We now require a working vsnprintf everywhere (not
4796 just for systems that lack asprintf); check for it always and extend
4797 test to catch more brokenness. Fixes builds on Solaris <= 9
4798
4799commit 4cec036362a358e398e6a2e6d19d8e5780558634
4800Author: Damien Miller <djm@mindrot.org>
4801Date: Sat Aug 23 03:11:09 2014 +1000
4802
4803 - (djm) [sshd.c] Ignore SIGXFSZ in preauth monitor child; can explode on
4804 lastlog writing on platforms with high UIDs; bz#2263
4805
4806commit 394a60f2598d28b670d934b93942a3370b779b39
4807Author: Damien Miller <djm@mindrot.org>
4808Date: Fri Aug 22 18:06:20 2014 +1000
4809
4810 - (djm) [configure.ac] double braces to appease autoconf
4811
4812commit 4d69aeabd6e60afcdc7cca177ca751708ab79a9d
4813Author: Damien Miller <djm@mindrot.org>
4814Date: Fri Aug 22 17:48:27 2014 +1000
4815
4816 - (djm) [openbsd-compat/bsd-snprintf.c] Fix compilation failure (prototype/
4817 definition mismatch) and warning for broken/missing snprintf case.
4818
4819commit 0c11f1ac369d2c0aeb0ab0458a7cd04c72fe5e9e
4820Author: Damien Miller <djm@mindrot.org>
4821Date: Fri Aug 22 17:36:56 2014 +1000
4822
4823 - (djm) [sshbuf-getput-crypto.c] Fix compilation when OpenSSL lacks ECC
4824
4825commit 6d62784b8973340b251fea6b04890f471adf28db
4826Author: Damien Miller <djm@mindrot.org>
4827Date: Fri Aug 22 17:36:19 2014 +1000
4828
4829 - (djm) [configure.ac] include leading zero characters in OpenSSL version
4830 number; fixes test for unsupported versions
4831
4832commit 4f1ff1ed782117f5d5204d4e91156ed5da07cbb7
4833Author: Damien Miller <djm@mindrot.org>
4834Date: Thu Aug 21 15:54:50 2014 +1000
4835
4836 - (djm) [regress/unittests/test_helper/test_helper.c] Fix for systems that
4837 don't set __progname. Diagnosed by Tom Christensen.
4838
4839commit 005a64da0f457410045ef0bfa93c863c2450447d
4840Author: Damien Miller <djm@mindrot.org>
4841Date: Thu Aug 21 10:48:41 2014 +1000
4842
4843 - (djm) [key.h] Fix ifdefs for no-ECC OpenSSL
4844
4845commit aa6598ebb3343c7380e918388e10e8ca5852b613
4846Author: Damien Miller <djm@mindrot.org>
4847Date: Thu Aug 21 10:47:54 2014 +1000
4848
4849 - (djm) [Makefile.in] fix reference to libtest_helper.a in sshkey test too.
4850
4851commit 54703e3cf63f0c80d4157e5ad7dbc2b363ee2c56
4852Author: Damien Miller <djm@mindrot.org>
4853Date: Wed Aug 20 11:10:51 2014 +1000
4854
4855 - (djm) [contrib/cygwin/README] Correct build instructions; from Corinna
4856
4857commit f0935698f0461f24d8d1f1107b476ee5fd4db1cb
4858Author: Damien Miller <djm@mindrot.org>
4859Date: Wed Aug 20 11:06:50 2014 +1000
4860
4861 - (djm) [sshkey.h] Fix compilation when OpenSSL lacks ECC
4862
4863commit c5089ecaec3b2c02f014f4e67518390702a4ba14
4864Author: Damien Miller <djm@mindrot.org>
4865Date: Wed Aug 20 11:06:20 2014 +1000
4866
4867 - (djm) [Makefile.in] refer to libtest_helper.a by explicit path rather than
4868 -L/-l; fixes linking problems on some platforms
4869
4870commit 2195847e503a382f83ee969b0a8bd3dfe0e55c18
4871Author: Damien Miller <djm@mindrot.org>
4872Date: Wed Aug 20 11:05:03 2014 +1000
4873
4874 - (djm) [configure.ac] Check OpenSSL version is supported at configure time;
4875 suggested by Kevin Brott
4876
4877commit a75aca1bbc989aa9f8b1b08489d37855f3d24d1a
4878Author: Damien Miller <djm@mindrot.org>
4879Date: Tue Aug 19 11:36:07 2014 +1000
4880
4881 - (djm) [INSTALL contrib/caldera/openssh.spec contrib/cygwin/README]
4882 [contrib/redhat/openssh.spec contrib/suse/openssh.spec] Remove mentions
4883 of TCP wrappers.
4884
4885commit 3f022b5a9477abceeb1bbeab04b055f3cc7ca8f6
4886Author: Damien Miller <djm@mindrot.org>
4887Date: Tue Aug 19 11:32:34 2014 +1000
4888
4889 - (djm) [ssh-dss.c] Include openssl/dsa.h for DSA_SIG
4890
4891commit 88137902632aceb923990e98cf5dc923bb3ef2f5
4892Author: Damien Miller <djm@mindrot.org>
4893Date: Tue Aug 19 11:28:11 2014 +1000
4894
4895 - (djm) [sshbuf.h] Fix compilation on systems without OPENSSL_HAS_ECC.
4896
4897commit 2f3d1e7fb2eabd3cfbfd8d0f7bdd2f9a1888690b
4898Author: Damien Miller <djm@mindrot.org>
4899Date: Tue Aug 19 11:14:36 2014 +1000
4900
4901 - (djm) [myproposal.h] Make curve25519 KEX dependent on
4902 HAVE_EVP_SHA256 instead of OPENSSL_HAS_ECC.
4903
4904commit d4e7d59d01a6c7f59e8c1f94a83c086e9a33d8aa
4905Author: Damien Miller <djm@mindrot.org>
4906Date: Tue Aug 19 11:14:17 2014 +1000
4907
4908 - (djm) [serverloop.c] Fix syntax error on Cygwin; from Corinna Vinschen
4909
4910commit 9eaeea2cf2b6af5f166cfa9ad3c7a90711a147a9
4911Author: Damien Miller <djm@mindrot.org>
4912Date: Sun Aug 10 11:35:05 2014 +1000
4913
4914 - (djm) [README contrib/caldera/openssh.spec]
4915 [contrib/redhat/openssh.spec contrib/suse/openssh.spec] Update versions
4916
4917commit f8988fbef0c9801d19fa2f8f4f041690412bec37
4918Author: Damien Miller <djm@mindrot.org>
4919Date: Fri Aug 1 13:31:52 2014 +1000
4920
4921 - (djm) [regress/multiplex.sh] Use -d (detach stdin) flag to disassociate
4922 nc from stdin, it's more portable
4923
4924commit 5b3879fd4b7a4e3d43bab8f40addda39bc1169d0
4925Author: Damien Miller <djm@mindrot.org>
4926Date: Fri Aug 1 12:28:31 2014 +1000
4927
4928 - (djm) [regress/multiplex.sh] Instruct nc not to quit as soon as stdin
4929 is closed; avoid regress failures when stdin is /dev/null
4930
4931commit a9c46746d266f8a1b092a72b2150682d1af8ebfc
4932Author: Damien Miller <djm@mindrot.org>
4933Date: Fri Aug 1 12:26:49 2014 +1000
4934
4935 - (djm) [regress/multiplex.sh] Skip test for non-OpenBSD netcat. We need
4936 a better solution, but this will have to do for now.
4937
4938commit 426117b2e965e43f47015942b5be8dd88fe74b88
4939Author: Damien Miller <djm@mindrot.org>
4940Date: Wed Jul 30 12:33:20 2014 +1000
4941
4942 - schwarze@cvs.openbsd.org 2014/07/28 15:40:08
4943 [sftp-server.8 sshd_config.5]
4944 some systems no longer need /dev/log;
4945 issue noticed by jirib;
4946 ok deraadt
4947
4948commit f497794b6962eaf802ab4ac2a7b22ae591cca1d5
4949Author: Damien Miller <djm@mindrot.org>
4950Date: Wed Jul 30 12:32:46 2014 +1000
4951
4952 - dtucker@cvs.openbsd.org 2014/07/25 21:22:03
4953 [ssh-agent.c]
4954 Clear buffer used for handling messages. This prevents keys being
4955 left in memory after they have been expired or deleted in some cases
4956 (but note that ssh-agent is setgid so you would still need root to
4957 access them). Pointed out by Kevin Burns, ok deraadt
4958
4959commit a8a0f65c57c8ecba94d65948e9090da54014dfef
4960Author: Damien Miller <djm@mindrot.org>
4961Date: Wed Jul 30 12:32:28 2014 +1000
4962
4963 - OpenBSD CVS Sync
4964 - millert@cvs.openbsd.org 2014/07/24 22:57:10
4965 [ssh.1]
4966 Mention UNIX-domain socket forwarding too. OK jmc@ deraadt@
4967
4968commit 56b840f2b81e14a2f95c203403633a72566736f8
4969Author: Damien Miller <djm@mindrot.org>
4970Date: Fri Jul 25 08:11:30 2014 +1000
4971
4972 - (djm) [regress/multiplex.sh] restore incorrectly deleted line;
4973 pointed out by Christian Hesse
4974
4975commit dd417b60d5ca220565d1014e92b7f8f43dc081eb
4976Author: Darren Tucker <dtucker@zip.com.au>
4977Date: Wed Jul 23 10:41:21 2014 +1000
4978
4979 - dtucker@cvs.openbsd.org 2014/07/22 23:35:38
4980 [regress/unittests/sshkey/testdata/*]
4981 Regenerate test keys with certs signed with ed25519 instead of ecdsa.
4982 These can be used in -portable on platforms that don't support ECDSA.
4983
4984commit 40e50211896369dba8f64f3b5e5fd58b76f5ac3f
4985Author: Darren Tucker <dtucker@zip.com.au>
4986Date: Wed Jul 23 10:35:45 2014 +1000
4987
4988 - dtucker@cvs.openbsd.org 2014/07/22 23:57:40
4989 [regress/unittests/sshkey/mktestdata.sh]
4990 Add $OpenBSD tag to make syncs easier
4991
4992commit 07e644251e809b1d4c062cf85bd1146a7e3f5a8a
4993Author: Darren Tucker <dtucker@zip.com.au>
4994Date: Wed Jul 23 10:34:26 2014 +1000
4995
4996 - dtucker@cvs.openbsd.org 2014/07/22 23:23:22
4997 [regress/unittests/sshkey/mktestdata.sh]
4998 Sign test certs with ed25519 instead of ecdsa so that they'll work in
4999 -portable on platforms that don't have ECDSA in their OpenSSL. ok djm
5000
5001commit cea099a7c4eaecb01b001e5453bb4e5c25006c22
5002Author: Darren Tucker <dtucker@zip.com.au>
5003Date: Wed Jul 23 10:04:02 2014 +1000
5004
5005 - djm@cvs.openbsd.org 2014/07/22 01:32:12
5006 [regress/multiplex.sh]
5007 change the test for still-open Unix domain sockets to be robust against
5008 nc implementations that produce error messages. from -portable
5009 (Id sync only)
5010
5011commit 31eb78078d349b32ea41952ecc944b3ad6cb0d45
5012Author: Darren Tucker <dtucker@zip.com.au>
5013Date: Wed Jul 23 09:43:42 2014 +1000
5014
5015 - guenther@cvs.openbsd.org 2014/07/22 07:13:42
5016 [umac.c]
5017 Convert from <sys/endian.h> to the shiney new <endian.h>
5018 ok dtucker@, who also confirmed that -portable handles this already
5019 (ID sync only, includes.h pulls in endian.h if available.)
5020
5021commit 820763efef2d19d965602533036c2b4badc9d465
5022Author: Darren Tucker <dtucker@zip.com.au>
5023Date: Wed Jul 23 09:40:46 2014 +1000
5024
5025 - dtucker@cvs.openbsd.org 2014/07/22 01:18:50
5026 [key.c]
5027 Prevent spam from key_load_private_pem during hostbased auth. ok djm@
5028
5029commit c4ee219a66f3190fa96cbd45b4d11015685c6306
5030Author: Darren Tucker <dtucker@zip.com.au>
5031Date: Wed Jul 23 04:27:50 2014 +1000
5032
5033 - (dtucker) [regress/unittests/sshkey/test_{file,fuzz,sshkey}.c] Wrap ecdsa-
5034 specific tests inside OPENSSL_HAS_ECC.
5035
5036commit 04f4824940ea3edd60835416ececbae16438968a
5037Author: Damien Miller <djm@mindrot.org>
5038Date: Tue Jul 22 11:31:47 2014 +1000
5039
5040 - (djm) [regress/multiplex.sh] change the test for still-open Unix
5041 domain sockets to be robust against nc implementations that produce
5042 error messages.
5043
5044commit 5ea4fe00d55453aaa44007330bb4c3181bd9b796
5045Author: Damien Miller <djm@mindrot.org>
5046Date: Tue Jul 22 09:39:19 2014 +1000
5047
5048 - (djm) [regress/multiplex.sh] ssh mux master lost -N somehow;
5049 put it back
5050
5051commit 948a1774a79a85f9deba6d74db95f402dee32c69
5052Author: Darren Tucker <dtucker@zip.com.au>
5053Date: Tue Jul 22 01:07:11 2014 +1000
5054
5055 - (dtucker) [sshkey.c] ifdef out unused variable when compiling without
5056 OPENSSL_HAS_ECC.
5057
5058commit c8f610f6cc57ae129758052439d9baf13699097b
5059Author: Damien Miller <djm@mindrot.org>
5060Date: Mon Jul 21 10:23:27 2014 +1000
5061
5062 - (djm) [regress/multiplex.sh] Not all netcat accept the -N option.
5063
5064commit 0e4e95566cd95c887f69272499b8f3880b3ec0f5
5065Author: Damien Miller <djm@mindrot.org>
5066Date: Mon Jul 21 09:52:54 2014 +1000
5067
5068 - millert@cvs.openbsd.org 2014/07/15 15:54:15
5069 [forwarding.sh multiplex.sh]
5070 Add support for Unix domain socket forwarding. A remote TCP port
5071 may be forwarded to a local Unix domain socket and vice versa or
5072 both ends may be a Unix domain socket. This is a reimplementation
5073 of the streamlocal patches by William Ahern from:
5074 http://www.25thandclement.com/~william/projects/streamlocal.html
5075 OK djm@ markus@
5076
5077commit 93a87ab27ecdc709169fb24411133998f81e2761
5078Author: Darren Tucker <dtucker@zip.com.au>
5079Date: Mon Jul 21 06:30:25 2014 +1000
5080
5081 - (dtucker) [regress/unittests/sshkey/
5082 {common,test_file,test_fuzz,test_sshkey}.c] Wrap stdint.h includes in
5083 ifdefs.
5084
5085commit 5573171352ea23df2dc6d2fe0324d023b7ba697c
5086Author: Darren Tucker <dtucker@zip.com.au>
5087Date: Mon Jul 21 02:24:59 2014 +1000
5088
5089 - (dtucker) [cipher.c openbsd-compat/openssl-compat.h] Restore the bits
5090 needed to build AES CTR mode against OpenSSL 0.9.8f and above. ok djm
5091
5092commit 74e28682711d005026c7c8f15f96aea9d3c8b5a3
5093Author: Tim Rice <tim@multitalents.net>
5094Date: Fri Jul 18 20:00:11 2014 -0700
5095
5096 - (tim) [openbsd-compat/port-uw.c] Include misc.h for fwd_opts, used
5097 in servconf.h.
5098
5099commit d1a0421f8e5e933fee6fb58ee6b9a22c63c8a613
5100Author: Darren Tucker <dtucker@zip.com.au>
5101Date: Sat Jul 19 07:23:55 2014 +1000
5102
5103 - (dtucker) [key.c sshkey.c] Put new ecdsa bits inside ifdef OPENSSL_HAS_ECC.
5104
5105commit f0fe9ea1be62227c130b317769de3d1e736b6dc1
5106Author: Darren Tucker <dtucker@zip.com.au>
5107Date: Sat Jul 19 06:33:12 2014 +1000
5108
5109 - (dtucker) [Makefile.in] Add a t-exec target to run just the executable
5110 tests.
5111
5112commit 450bc1180d4b061434a4b733c5c8814fa30b022b
5113Author: Darren Tucker <dtucker@zip.com.au>
5114Date: Sat Jul 19 06:23:18 2014 +1000
5115
5116 - (dtucker) [auth2-gss.c gss-serv-krb5.c] Include misc.h for fwd_opts, used
5117 in servconf.h.
5118
5119commit ab2ec586baad122ed169285c31927ccf58bc7b28
5120Author: Damien Miller <djm@mindrot.org>
5121Date: Fri Jul 18 15:04:47 2014 +1000
5122
5123 - djm@cvs.openbsd.org 2014/07/18 02:46:01
5124 [ssh-agent.c]
5125 restore umask around listener socket creation (dropped in streamlocal patch
5126 merge)
5127
5128commit 357610d15946381ae90c271837dcdd0cdce7145f
5129Author: Damien Miller <djm@mindrot.org>
5130Date: Fri Jul 18 15:04:10 2014 +1000
5131
5132 - djm@cvs.openbsd.org 2014/07/17 07:22:19
5133 [mux.c ssh.c]
5134 reflect stdio-forward ("ssh -W host:port ...") failures in exit status.
5135 previously we were always returning 0. bz#2255 reported by Brendan
5136 Germain; ok dtucker
5137
5138commit dad9a4a0b7c2b5d78605f8df28718f116524134e
5139Author: Damien Miller <djm@mindrot.org>
5140Date: Fri Jul 18 15:03:49 2014 +1000
5141
5142 - djm@cvs.openbsd.org 2014/07/17 00:12:03
5143 [key.c]
5144 silence "incorrect passphrase" error spam; reported and ok dtucker@
5145
5146commit f42f7684ecbeec6ce50e0310f80b3d6da2aaf533
5147Author: Damien Miller <djm@mindrot.org>
5148Date: Fri Jul 18 15:03:27 2014 +1000
5149
5150 - djm@cvs.openbsd.org 2014/07/17 00:10:18
5151 [mux.c]
5152 preserve errno across syscall
5153
5154commit 1b83320628cb0733e3688b85bfe4d388a7c51909
5155Author: Damien Miller <djm@mindrot.org>
5156Date: Fri Jul 18 15:03:02 2014 +1000
5157
5158 - djm@cvs.openbsd.org 2014/07/17 00:10:56
5159 [sandbox-systrace.c]
5160 ifdef SYS_sendsyslog so this will compile without patching on -stable
5161
5162commit 6d57656331bcd754d912950e4a18ad259d596e61
5163Author: Damien Miller <djm@mindrot.org>
5164Date: Fri Jul 18 15:02:06 2014 +1000
5165
5166 - jmc@cvs.openbsd.org 2014/07/16 14:48:57
5167 [ssh.1]
5168 add the streamlocal* options to ssh's -o list; millert says they're
5169 irrelevant for scp/sftp;
5170
5171 ok markus millert
5172
5173commit 7acefbbcbeab725420ea07397ae35992f505f702
5174Author: Damien Miller <djm@mindrot.org>
5175Date: Fri Jul 18 14:11:24 2014 +1000
5176
5177 - millert@cvs.openbsd.org 2014/07/15 15:54:14
5178 [PROTOCOL auth-options.c auth-passwd.c auth-rh-rsa.c auth-rhosts.c]
5179 [auth-rsa.c auth.c auth1.c auth2-hostbased.c auth2-kbdint.c auth2-none.c]
5180 [auth2-passwd.c auth2-pubkey.c auth2.c canohost.c channels.c channels.h]
5181 [clientloop.c misc.c misc.h monitor.c mux.c packet.c readconf.c]
5182 [readconf.h servconf.c servconf.h serverloop.c session.c ssh-agent.c]
5183 [ssh.c ssh_config.5 sshconnect.c sshconnect1.c sshconnect2.c sshd.c]
5184 [sshd_config.5 sshlogin.c]
5185 Add support for Unix domain socket forwarding. A remote TCP port
5186 may be forwarded to a local Unix domain socket and vice versa or
5187 both ends may be a Unix domain socket. This is a reimplementation
5188 of the streamlocal patches by William Ahern from:
5189 http://www.25thandclement.com/~william/projects/streamlocal.html
5190 OK djm@ markus@
5191
5192commit 6262d760e00714523633bd989d62e273a3dca99a
5193Author: Damien Miller <djm@mindrot.org>
5194Date: Thu Jul 17 09:52:07 2014 +1000
5195
5196 - tedu@cvs.openbsd.org 2014/07/11 13:54:34
5197 [myproposal.h]
5198 by popular demand, add back hamc-sha1 to server proposal for better compat
5199 with many clients still in use. ok deraadt
5200
5201commit 9d69d937b46ecba17f16d923e538ceda7b705c7a
5202Author: Damien Miller <djm@mindrot.org>
5203Date: Thu Jul 17 09:49:37 2014 +1000
5204
5205 - deraadt@cvs.openbsd.org 2014/07/11 08:09:54
5206 [sandbox-systrace.c]
5207 Permit use of SYS_sendsyslog from inside the sandbox. Clock is ticking,
5208 update your kernels and sshd soon.. libc will start using sendsyslog()
5209 in about 4 days.
5210
5211commit f6293a0b4129826fc2e37e4062f96825df43c326
5212Author: Damien Miller <djm@mindrot.org>
5213Date: Thu Jul 17 09:01:25 2014 +1000
5214
5215 - (djm) [digest-openssl.c] Preserve array order when disabling digests.
5216 Reported by Petr Lautrbach.
5217
5218commit 00f9cd230709c04399ef5ff80492d70a55230694
5219Author: Damien Miller <djm@mindrot.org>
5220Date: Tue Jul 15 10:41:38 2014 +1000
5221
5222 - (djm) [configure.ac] Delay checks for arc4random* until after libcrypto
5223 has been located; fixes builds agains libressl-portable
5224
5225commit 1d0df3249c87019556b83306c28d4769375c2edc
5226Author: Damien Miller <djm@mindrot.org>
5227Date: Fri Jul 11 09:19:04 2014 +1000
5228
5229 - OpenBSD CVS Sync
5230 - benno@cvs.openbsd.org 2014/07/09 14:15:56
5231 [ssh-add.c]
5232 fix ssh-add crash while loading more than one key
5233 ok markus@
5234
5235commit 7a57eb3d105aa4ced15fb47001092c58811e6d9d
5236Author: Damien Miller <djm@mindrot.org>
5237Date: Wed Jul 9 13:22:31 2014 +1000
5238
5239 - djm@cvs.openbsd.org 2014/07/07 08:15:26
5240 [multiplex.sh]
5241 remove forced-fatal that I stuck in there to test the new cleanup
5242 logic and forgot to remove...
5243
5244commit 612f965239a30fe536b11ece1834d9f470aeb029
5245Author: Damien Miller <djm@mindrot.org>
5246Date: Wed Jul 9 13:22:03 2014 +1000
5247
5248 - djm@cvs.openbsd.org 2014/07/06 07:42:03
5249 [multiplex.sh test-exec.sh]
5250 add a hook to the cleanup() function to kill $SSH_PID if it is set
5251
5252 use it to kill the mux master started in multiplex.sh (it was being left
5253 around on fatal failures)
5254
5255commit d0bb950485ba121e43a77caf434115ed6417b46f
5256Author: Damien Miller <djm@mindrot.org>
5257Date: Wed Jul 9 13:07:28 2014 +1000
5258
5259 - djm@cvs.openbsd.org 2014/07/09 03:02:15
5260 [key.c]
5261 downgrade more error() to debug() to better match what old authfile.c
5262 did; suppresses spurious errors with hostbased authentication enabled
5263
5264commit 0070776a038655c57f57e70cd05e4c38a5de9d84
5265Author: Damien Miller <djm@mindrot.org>
5266Date: Wed Jul 9 13:07:06 2014 +1000
5267
5268 - djm@cvs.openbsd.org 2014/07/09 01:45:10
5269 [sftp.c]
5270 more useful error message when GLOB_NOSPACE occurs;
5271 bz#2254, patch from Orion Poplawski
5272
5273commit 079bac2a43c74ef7cf56850afbab3b1932534c50
5274Author: Damien Miller <djm@mindrot.org>
5275Date: Wed Jul 9 13:06:25 2014 +1000
5276
5277 - djm@cvs.openbsd.org 2014/07/07 08:19:12
5278 [ssh_config.5]
5279 mention that ProxyCommand is executed using shell "exec" to avoid
5280 a lingering process; bz#1977
5281
5282commit 3a48cc090096cf99b9de592deb5f90e444edebfb
5283Author: Damien Miller <djm@mindrot.org>
5284Date: Sun Jul 6 09:32:49 2014 +1000
5285
5286 - djm@cvs.openbsd.org 2014/07/05 23:11:48
5287 [channels.c]
5288 fix remote-forward cancel regression; ok markus@
5289
5290commit 48bae3a38cb578713e676708164f6e7151cc64fa
5291Author: Damien Miller <djm@mindrot.org>
5292Date: Sun Jul 6 09:27:06 2014 +1000
5293
5294 - djm@cvs.openbsd.org 2014/07/03 23:18:35
5295 [authfile.h]
5296 remove leakmalloc droppings
5297
5298commit 72e6b5c9ed5e72ca3a6ccc3177941b7c487a0826
5299Author: Damien Miller <djm@mindrot.org>
5300Date: Fri Jul 4 09:00:04 2014 +1000
5301
5302 - djm@cvs.openbsd.org 2014/07/03 22:40:43
5303 [servconf.c servconf.h session.c sshd.8 sshd_config.5]
5304 Add a sshd_config PermitUserRC option to control whether ~/.ssh/rc is
5305 executed, mirroring the no-user-rc authorized_keys option;
5306 bz#2160; ok markus@
5307
5308commit 602943d1179a08dfa70af94f62296ea5e3d6ebb8
5309Author: Damien Miller <djm@mindrot.org>
5310Date: Fri Jul 4 08:59:41 2014 +1000
5311
5312 - djm@cvs.openbsd.org 2014/07/03 22:33:41
5313 [channels.c]
5314 allow explicit ::1 and 127.0.0.1 forwarding bind addresses when
5315 GatewayPorts=no; allows client to choose address family;
5316 bz#2222 ok markus@
5317
5318commit 6b37fbb7921d156b31e2c8f39d9e1b6746c34983
5319Author: Damien Miller <djm@mindrot.org>
5320Date: Fri Jul 4 08:59:24 2014 +1000
5321
5322 - djm@cvs.openbsd.org 2014/07/03 22:23:46
5323 [sshconnect.c]
5324 when rekeying, skip file/DNS lookup if it is the same as the key sent
5325 during initial key exchange. bz#2154 patch from Iain Morgan; ok markus@
5326
5327commit d2c3cd5f2e47ee24cf7093ce8e948c2e79dfc3fd
5328Author: Damien Miller <djm@mindrot.org>
5329Date: Fri Jul 4 08:59:01 2014 +1000
5330
5331 - jsing@cvs.openbsd.org 2014/07/03 12:42:16
5332 [cipher-chachapoly.c]
5333 Call chacha_ivsetup() immediately before chacha_encrypt_bytes() - this
5334 makes it easier to verify that chacha_encrypt_bytes() is only called once
5335 per chacha_ivsetup() call.
5336 ok djm@
5337
5338commit 686feb560ec43a06ba04da82b50f3c183c947309
5339Author: Damien Miller <djm@mindrot.org>
5340Date: Thu Jul 3 21:29:38 2014 +1000
5341
5342 - djm@cvs.openbsd.org 2014/07/03 11:16:55
5343 [auth.c auth.h auth1.c auth2.c]
5344 make the "Too many authentication failures" message include the
5345 user, source address, port and protocol in a format similar to the
5346 authentication success / failure messages; bz#2199, ok dtucker
5347
5348commit 0f12341402e18fd9996ec23189b9418d2722453f
5349Author: Damien Miller <djm@mindrot.org>
5350Date: Thu Jul 3 21:28:09 2014 +1000
5351
5352 - jmc@cvs.openbsd.org 2014/07/03 07:45:27
5353 [ssh_config.5]
5354 escape %C since groff thinks it part of an Rs/Re block;
5355
5356commit 9c38643c5cd47a19db2cc28279dcc28abadc22b3
5357Author: Damien Miller <djm@mindrot.org>
5358Date: Thu Jul 3 21:27:46 2014 +1000
5359
5360 - djm@cvs.openbsd.org 2014/07/03 06:39:19
5361 [ssh.c ssh_config.5]
5362 Add a %C escape sequence for LocalCommand and ControlPath that expands
5363 to a unique identifer based on a has of the tuple of (local host,
5364 remote user, hostname, port).
5365
5366 Helps avoid exceeding sockaddr_un's miserly pathname limits for mux
5367 control paths.
5368
5369 bz#2220, based on patch from mancha1 AT zoho.com; ok markus@
5370
5371commit 49d9bfe2b2f3e90cc158a215dffa7675e57e7830
5372Author: Damien Miller <djm@mindrot.org>
5373Date: Thu Jul 3 21:26:42 2014 +1000
5374
5375 - djm@cvs.openbsd.org 2014/07/03 05:38:17
5376 [ssh.1]
5377 document that -g will only work in the multiplexed case if applied to
5378 the mux master
5379
5380commit ef9f13ba4c58057b2166d1f2e790535da402fbe5
5381Author: Damien Miller <djm@mindrot.org>
5382Date: Thu Jul 3 21:26:21 2014 +1000
5383
5384 - djm@cvs.openbsd.org 2014/07/03 05:32:36
5385 [ssh_config.5]
5386 mention '%%' escape sequence in HostName directives and how it may
5387 be used to specify IPv6 link-local addresses
5388
5389commit e6a407789e5432dd2e53336fb73476cc69048c54
5390Author: Damien Miller <djm@mindrot.org>
5391Date: Thu Jul 3 21:25:03 2014 +1000
5392
5393 - djm@cvs.openbsd.org 2014/07/03 04:36:45
5394 [digest.h]
5395 forward-declare struct sshbuf so consumers don't need to include sshbuf.h
5396
5397commit 4a1d3d50f02d0a8a4ef95ea4749293cbfb89f919
5398Author: Damien Miller <djm@mindrot.org>
5399Date: Thu Jul 3 21:24:40 2014 +1000
5400
5401 - djm@cvs.openbsd.org 2014/07/03 03:47:27
5402 [ssh-keygen.c]
5403 When hashing or removing hosts using ssh-keygen, don't choke on
5404 @revoked markers and don't remove @cert-authority markers;
5405 bz#2241, reported by mlindgren AT runelind.net
5406
5407commit e5c0d52ceb575c3db8c313e0b1aa3845943d7ba8
5408Author: Damien Miller <djm@mindrot.org>
5409Date: Thu Jul 3 21:24:19 2014 +1000
5410
5411 - djm@cvs.openbsd.org 2014/07/03 03:34:09
5412 [gss-serv.c session.c ssh-keygen.c]
5413 standardise on NI_MAXHOST for gethostname() string lengths; about
5414 1/2 the cases were using it already. Fixes bz#2239 en passant
5415
5416commit c174a3b7c14e0d178c61219de2aa1110e209950c
5417Author: Damien Miller <djm@mindrot.org>
5418Date: Thu Jul 3 21:23:24 2014 +1000
5419
5420 - djm@cvs.openbsd.org 2014/07/03 03:26:43
5421 [digest-openssl.c]
5422 use EVP_Digest() for one-shot hash instead of creating, updating,
5423 finalising and destroying a context.
5424 bz#2231, based on patch from Timo Teras
5425
5426commit d7ca2cd31ecc4d63a055e2dcc4bf35c13f2db4c5
5427Author: Damien Miller <djm@mindrot.org>
5428Date: Thu Jul 3 21:23:01 2014 +1000
5429
5430 - djm@cvs.openbsd.org 2014/07/03 03:15:01
5431 [ssh-add.c]
5432 make stdout line-buffered; saves partial output getting lost when
5433 ssh-add fatal()s part-way through (e.g. when listing keys from an
5434 agent that supports key types that ssh-add doesn't);
5435 bz#2234, reported by Phil Pennock
5436
5437commit b1e967c8d7c7578dd0c172d85b3046cf54ea42ba
5438Author: Damien Miller <djm@mindrot.org>
5439Date: Thu Jul 3 21:22:40 2014 +1000
5440
5441 - djm@cvs.openbsd.org 2014/07/03 03:11:03
5442 [ssh-agent.c]
5443 Only cleanup agent socket in the main agent process and not in any
5444 subprocesses it may have started (e.g. forked askpass). Fixes
5445 agent sockets being zapped when askpass processes fatal();
5446 bz#2236 patch from Dmitry V. Levin
5447
5448commit 61e28e55c3438d796b02ef878bcd28620d452670
5449Author: Damien Miller <djm@mindrot.org>
5450Date: Thu Jul 3 21:22:22 2014 +1000
5451
5452 - djm@cvs.openbsd.org 2014/07/03 01:45:38
5453 [sshkey.c]
5454 make Ed25519 keys' title fit properly in the randomart border; bz#2247
5455 based on patch from Christian Hesse
5456
5457commit 9eb4cd9a32c32d40d36450b68ed93badc6a94c68
5458Author: Damien Miller <djm@mindrot.org>
5459Date: Thu Jul 3 13:29:50 2014 +1000
5460
5461 - (djm) [monitor_fdpass.c] Use sys/poll.h if poll.h doesn't exist;
5462 bz#2237
5463
5464commit 8da0fa24934501909408327298097b1629b89eaa
5465Author: Damien Miller <djm@mindrot.org>
5466Date: Thu Jul 3 11:54:19 2014 +1000
5467
5468 - (djm) [digest-openssl.c configure.ac] Disable RIPEMD160 if libcrypto
5469 doesn't support it.
5470
5471commit 81309c857dd0dbc0a1245a16d621c490ad48cfbb
5472Author: Damien Miller <djm@mindrot.org>
5473Date: Wed Jul 2 17:45:55 2014 +1000
5474
5475 - (djm) [regress/Makefile] fix execution of sshkey unit/fuzz test
5476
5477commit 82b2482ce68654815ee049b9bf021bb362a35ff2
5478Author: Damien Miller <djm@mindrot.org>
5479Date: Wed Jul 2 17:43:41 2014 +1000
5480
5481 - (djm) [sshkey.c] Conditionalise inclusion of util.h
5482
5483commit dd8b1dd7933eb6f5652641b0cdced34a387f2e80
5484Author: Damien Miller <djm@mindrot.org>
5485Date: Wed Jul 2 17:38:31 2014 +1000
5486
5487 - djm@cvs.openbsd.org 2014/06/24 01:14:17
5488 [Makefile.in regress/Makefile regress/unittests/Makefile]
5489 [regress/unittests/sshkey/Makefile]
5490 [regress/unittests/sshkey/common.c]
5491 [regress/unittests/sshkey/common.h]
5492 [regress/unittests/sshkey/mktestdata.sh]
5493 [regress/unittests/sshkey/test_file.c]
5494 [regress/unittests/sshkey/test_fuzz.c]
5495 [regress/unittests/sshkey/test_sshkey.c]
5496 [regress/unittests/sshkey/tests.c]
5497 [regress/unittests/sshkey/testdata/dsa_1]
5498 [regress/unittests/sshkey/testdata/dsa_1-cert.fp]
5499 [regress/unittests/sshkey/testdata/dsa_1-cert.pub]
5500 [regress/unittests/sshkey/testdata/dsa_1.fp]
5501 [regress/unittests/sshkey/testdata/dsa_1.fp.bb]
5502 [regress/unittests/sshkey/testdata/dsa_1.param.g]
5503 [regress/unittests/sshkey/testdata/dsa_1.param.priv]
5504 [regress/unittests/sshkey/testdata/dsa_1.param.pub]
5505 [regress/unittests/sshkey/testdata/dsa_1.pub]
5506 [regress/unittests/sshkey/testdata/dsa_1_pw]
5507 [regress/unittests/sshkey/testdata/dsa_2]
5508 [regress/unittests/sshkey/testdata/dsa_2.fp]
5509 [regress/unittests/sshkey/testdata/dsa_2.fp.bb]
5510 [regress/unittests/sshkey/testdata/dsa_2.pub]
5511 [regress/unittests/sshkey/testdata/dsa_n]
5512 [regress/unittests/sshkey/testdata/dsa_n_pw]
5513 [regress/unittests/sshkey/testdata/ecdsa_1]
5514 [regress/unittests/sshkey/testdata/ecdsa_1-cert.fp]
5515 [regress/unittests/sshkey/testdata/ecdsa_1-cert.pub]
5516 [regress/unittests/sshkey/testdata/ecdsa_1.fp]
5517 [regress/unittests/sshkey/testdata/ecdsa_1.fp.bb]
5518 [regress/unittests/sshkey/testdata/ecdsa_1.param.curve]
5519 [regress/unittests/sshkey/testdata/ecdsa_1.param.priv]
5520 [regress/unittests/sshkey/testdata/ecdsa_1.param.pub]
5521 [regress/unittests/sshkey/testdata/ecdsa_1.pub]
5522 [regress/unittests/sshkey/testdata/ecdsa_1_pw]
5523 [regress/unittests/sshkey/testdata/ecdsa_2]
5524 [regress/unittests/sshkey/testdata/ecdsa_2.fp]
5525 [regress/unittests/sshkey/testdata/ecdsa_2.fp.bb]
5526 [regress/unittests/sshkey/testdata/ecdsa_2.param.curve]
5527 [regress/unittests/sshkey/testdata/ecdsa_2.param.priv]
5528 [regress/unittests/sshkey/testdata/ecdsa_2.param.pub]
5529 [regress/unittests/sshkey/testdata/ecdsa_2.pub]
5530 [regress/unittests/sshkey/testdata/ecdsa_n]
5531 [regress/unittests/sshkey/testdata/ecdsa_n_pw]
5532 [regress/unittests/sshkey/testdata/ed25519_1]
5533 [regress/unittests/sshkey/testdata/ed25519_1-cert.fp]
5534 [regress/unittests/sshkey/testdata/ed25519_1-cert.pub]
5535 [regress/unittests/sshkey/testdata/ed25519_1.fp]
5536 [regress/unittests/sshkey/testdata/ed25519_1.fp.bb]
5537 [regress/unittests/sshkey/testdata/ed25519_1.pub]
5538 [regress/unittests/sshkey/testdata/ed25519_1_pw]
5539 [regress/unittests/sshkey/testdata/ed25519_2]
5540 [regress/unittests/sshkey/testdata/ed25519_2.fp]
5541 [regress/unittests/sshkey/testdata/ed25519_2.fp.bb]
5542 [regress/unittests/sshkey/testdata/ed25519_2.pub]
5543 [regress/unittests/sshkey/testdata/pw]
5544 [regress/unittests/sshkey/testdata/rsa1_1]
5545 [regress/unittests/sshkey/testdata/rsa1_1.fp]
5546 [regress/unittests/sshkey/testdata/rsa1_1.fp.bb]
5547 [regress/unittests/sshkey/testdata/rsa1_1.param.n]
5548 [regress/unittests/sshkey/testdata/rsa1_1.pub]
5549 [regress/unittests/sshkey/testdata/rsa1_1_pw]
5550 [regress/unittests/sshkey/testdata/rsa1_2]
5551 [regress/unittests/sshkey/testdata/rsa1_2.fp]
5552 [regress/unittests/sshkey/testdata/rsa1_2.fp.bb]
5553 [regress/unittests/sshkey/testdata/rsa1_2.param.n]
5554 [regress/unittests/sshkey/testdata/rsa1_2.pub]
5555 [regress/unittests/sshkey/testdata/rsa_1]
5556 [regress/unittests/sshkey/testdata/rsa_1-cert.fp]
5557 [regress/unittests/sshkey/testdata/rsa_1-cert.pub]
5558 [regress/unittests/sshkey/testdata/rsa_1.fp]
5559 [regress/unittests/sshkey/testdata/rsa_1.fp.bb]
5560 [regress/unittests/sshkey/testdata/rsa_1.param.n]
5561 [regress/unittests/sshkey/testdata/rsa_1.param.p]
5562 [regress/unittests/sshkey/testdata/rsa_1.param.q]
5563 [regress/unittests/sshkey/testdata/rsa_1.pub]
5564 [regress/unittests/sshkey/testdata/rsa_1_pw]
5565 [regress/unittests/sshkey/testdata/rsa_2]
5566 [regress/unittests/sshkey/testdata/rsa_2.fp]
5567 [regress/unittests/sshkey/testdata/rsa_2.fp.bb]
5568 [regress/unittests/sshkey/testdata/rsa_2.param.n]
5569 [regress/unittests/sshkey/testdata/rsa_2.param.p]
5570 [regress/unittests/sshkey/testdata/rsa_2.param.q]
5571 [regress/unittests/sshkey/testdata/rsa_2.pub]
5572 [regress/unittests/sshkey/testdata/rsa_n]
5573 [regress/unittests/sshkey/testdata/rsa_n_pw]
5574 unit and fuzz tests for new key API
5575
5576commit c1dc24b71f087f385b92652b9673f52af64e0428
5577Author: Damien Miller <djm@mindrot.org>
5578Date: Wed Jul 2 17:02:03 2014 +1000
5579
5580 - djm@cvs.openbsd.org 2014/06/24 01:04:43
5581 [regress/krl.sh]
5582 regress test for broken consecutive revoked serial number ranges
5583
5584commit 43d3ed2dd3feca6d0326c7dc82588d2faa115e92
5585Author: Damien Miller <djm@mindrot.org>
5586Date: Wed Jul 2 17:01:08 2014 +1000
5587
5588 - djm@cvs.openbsd.org 2014/05/21 07:04:21
5589 [regress/integrity.sh]
5590 when failing because of unexpected output, show the offending output
5591
5592commit 5a96707ffc8d227c2e7d94fa6b0317f8a152cf4e
5593Author: Damien Miller <djm@mindrot.org>
5594Date: Wed Jul 2 15:38:05 2014 +1000
5595
5596 - djm@cvs.openbsd.org 2014/04/30 05:32:00
5597 [regress/Makefile]
5598 unit tests for new buffer API; including basic fuzz testing
5599 NB. Id sync only.
5600
5601commit 3ff92ba756aee48e4ae3e0aeff7293517b3dd185
5602Author: Damien Miller <djm@mindrot.org>
5603Date: Wed Jul 2 15:33:09 2014 +1000
5604
5605 - djm@cvs.openbsd.org 2014/06/30 12:54:39
5606 [key.c]
5607 suppress spurious error message when loading key with a passphrase;
5608 reported by kettenis@ ok markus@
5609 - djm@cvs.openbsd.org 2014/07/02 04:59:06
5610 [cipher-3des1.c]
5611 fix ssh protocol 1 on the server that regressed with the sshkey change
5612 (sometimes fatal() after auth completed), make file return useful status
5613 codes.
5614 NB. Id sync only for these two. They were bundled into the sshkey merge
5615 above, since it was easier to sync the entire file and then apply
5616 portable-specific changed atop it.
5617
5618commit ec3d0e24a1e46873d80507f5cd8ee6d0d03ac5dc
5619Author: Damien Miller <djm@mindrot.org>
5620Date: Wed Jul 2 15:30:00 2014 +1000
5621
5622 - markus@cvs.openbsd.org 2014/06/27 18:50:39
5623 [ssh-add.c]
5624 fix loading of private keys
5625
5626commit 4b3ed647d5b328cf68e6a8ffbee490d8e0683e82
5627Author: Damien Miller <djm@mindrot.org>
5628Date: Wed Jul 2 15:29:40 2014 +1000
5629
5630 - markus@cvs.openbsd.org 2014/06/27 16:41:56
5631 [channels.c channels.h clientloop.c ssh.c]
5632 fix remote fwding with same listen port but different listen address
5633 with gerhard@, ok djm@
5634
5635commit 9e01ff28664921ce9b6500681333e42fb133b4d0
5636Author: Damien Miller <djm@mindrot.org>
5637Date: Wed Jul 2 15:29:21 2014 +1000
5638
5639 - deraadt@cvs.openbsd.org 2014/06/25 14:16:09
5640 [sshbuf.c]
5641 unblock SIGSEGV before raising it
5642 ok djm
5643
5644commit 1845fe6bda0729e52f4c645137f4fc3070b5438a
5645Author: Damien Miller <djm@mindrot.org>
5646Date: Wed Jul 2 15:29:01 2014 +1000
5647
5648 - djm@cvs.openbsd.org 2014/06/24 02:21:01
5649 [scp.c]
5650 when copying local->remote fails during read, don't send uninitialised
5651 heap to the remote end. Reported by Jann Horn
5652
5653commit 19439e9a2a0ac0b4b3b1210e89695418beb1c883
5654Author: Damien Miller <djm@mindrot.org>
5655Date: Wed Jul 2 15:28:40 2014 +1000
5656
5657 - djm@cvs.openbsd.org 2014/06/24 02:19:48
5658 [ssh.c]
5659 don't fatal() when hostname canonicalisation fails with a
5660 ProxyCommand in use; continue and allow the ProxyCommand to
5661 connect anyway (e.g. to a host with a name outside the DNS
5662 behind a bastion)
5663
5664commit 8668706d0f52654fe64c0ca41a96113aeab8d2b8
5665Author: Damien Miller <djm@mindrot.org>
5666Date: Wed Jul 2 15:28:02 2014 +1000
5667
5668 - djm@cvs.openbsd.org 2014/06/24 01:13:21
5669 [Makefile.in auth-bsdauth.c auth-chall.c auth-options.c auth-rsa.c
5670 [auth2-none.c auth2-pubkey.c authfile.c authfile.h cipher-3des1.c
5671 [cipher-chachapoly.c cipher-chachapoly.h cipher.c cipher.h
5672 [digest-libc.c digest-openssl.c digest.h dns.c entropy.c hmac.h
5673 [hostfile.c key.c key.h krl.c monitor.c packet.c rsa.c rsa.h
5674 [ssh-add.c ssh-agent.c ssh-dss.c ssh-ecdsa.c ssh-ed25519.c
5675 [ssh-keygen.c ssh-pkcs11-client.c ssh-pkcs11-helper.c ssh-pkcs11.c
5676 [ssh-rsa.c sshbuf-misc.c sshbuf.h sshconnect.c sshconnect1.c
5677 [sshconnect2.c sshd.c sshkey.c sshkey.h
5678 [openbsd-compat/openssl-compat.c openbsd-compat/openssl-compat.h]
5679 New key API: refactor key-related functions to be more library-like,
5680 existing API is offered as a set of wrappers.
5681
5682 with and ok markus@
5683
5684 Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew
5685 Dempsky and Ron Bowes for a detailed review a few months ago.
5686
5687 NB. This commit also removes portable OpenSSH support for OpenSSL
5688 <0.9.8e.
5689
5690commit 2cd7929250cf9e9f658d70dcd452f529ba08c942
5691Author: Damien Miller <djm@mindrot.org>
5692Date: Wed Jul 2 12:48:30 2014 +1000
5693
5694 - djm@cvs.openbsd.org 2014/06/24 00:52:02
5695 [krl.c]
5696 fix bug in KRL generation: multiple consecutive revoked certificate
5697 serial number ranges could be serialised to an invalid format.
5698
5699 Readers of a broken KRL caused by this bug will fail closed, so no
5700 should-have-been-revoked key will be accepted.
5701
5702commit 99db840ee8dbbd2b3fbc6c45d0ee2f6a65e96898
5703Author: Damien Miller <djm@mindrot.org>
5704Date: Wed Jul 2 12:48:04 2014 +1000
5705
5706 - naddy@cvs.openbsd.org 2014/06/18 15:42:09
5707 [sshbuf-getput-crypto.c]
5708 The ssh_get_bignum functions must accept the same range of bignums
5709 the corresponding ssh_put_bignum functions create. This fixes the
5710 use of 16384-bit RSA keys (bug reported by Eivind Evensen).
5711 ok djm@
5712
5713commit 84a89161a9629239b64171ef3e22ef6a3e462d51
5714Author: Damien Miller <djm@mindrot.org>
5715Date: Wed Jul 2 12:47:48 2014 +1000
5716
5717 - matthew@cvs.openbsd.org 2014/06/18 02:59:13
5718 [sandbox-systrace.c]
5719 Now that we have a dedicated getentropy(2) system call for
5720 arc4random(3), we can disallow __sysctl(2) in OpenSSH's systrace
5721 sandbox.
5722
5723 ok djm
5724
5725commit 51504ceec627c0ad57b9f75585c7b3d277f326be
5726Author: Damien Miller <djm@mindrot.org>
5727Date: Wed Jul 2 12:47:25 2014 +1000
5728
5729 - deraadt@cvs.openbsd.org 2014/06/13 08:26:29
5730 [sandbox-systrace.c]
5731 permit SYS_getentropy
5732 from matthew
5733
5734commit a261b8df59117f7dc52abb3a34b35a40c2c9fa88
5735Author: Tim Rice <tim@multitalents.net>
5736Date: Wed Jun 18 16:17:28 2014 -0700
5737
5738 - (tim) [openssh/session.c] Work around to get chroot sftp working on UnixWare
5739
5740commit 316fac6f18f87262a315c79bcf68b9f92c9337e4
5741Author: Darren Tucker <dtucker@zip.com.au>
5742Date: Tue Jun 17 23:06:07 2014 +1000
5743
5744 - (dtucker) [entropy.c openbsd-compat/openssl-compat.{c,h}
5745 openbsd-compat/regress/{.cvsignore,Makefile.in,opensslvertest.c}]
5746 Move the OpenSSL header/library version test into its own function and add
5747 tests for it. Fix it to allow fix version upgrades (but not downgrades).
5748 Prompted by chl@ via OpenSMTPD (issue #462) and Debian (bug #748150).
5749 ok djm@ chl@
5750
5751commit af665bb7b092a59104db1e65577851cf35b86e32
5752Author: Darren Tucker <dtucker@zip.com.au>
5753Date: Mon Jun 16 22:50:55 2014 +1000
5754
5755 - (dtucker) [defines.h] Fix undef of _PATH_MAILDIR. From rak at debian via
5756 OpenSMTPD and chl@
5757
5758commit f9696566fb41320820f3b257ab564fa321bb3751
5759Author: Darren Tucker <dtucker@zip.com.au>
5760Date: Fri Jun 13 11:06:04 2014 +1000
5761
5762 - (dtucker) [configure.ac] Remove tcpwrappers support, support has already
5763 been removed from sshd.c.
5764
5765commit 5e2b8894b0b24af4ad0a2f7aa33ebf255df7a8bc
5766Author: Tim Rice <tim@multitalents.net>
5767Date: Wed Jun 11 18:31:10 2014 -0700
5768
5769 - (tim) [regress/unittests/test_helper/test_helper.h] Add includes.h for
5770 u_intXX_t types.
5771
5772commit 985ee2cbc3e43bc65827c3c0d4df3faa99160c37
5773Author: Darren Tucker <dtucker@zip.com.au>
5774Date: Thu Jun 12 05:32:29 2014 +1000
5775
5776 - (dtucker) [regress/unittests/sshbuf/*.c regress/unittests/test_helper/*]
5777 Wrap stdlib.h include an ifdef for platforms that don't have it.
5778
5779commit cf5392c2db2bb1dbef9818511d34056404436109
5780Author: Darren Tucker <dtucker@zip.com.au>
5781Date: Thu Jun 12 05:22:49 2014 +1000
5782
5783 - (dtucker) [defines.h] Add va_copy if we don't already have it, taken from
5784 openbsd-compat/bsd-asprintf.c.
5785
5786commit 58538d795e0b662f2f4e5a7193f1204bbe992ddd
5787Author: Darren Tucker <dtucker@zip.com.au>
5788Date: Wed Jun 11 13:39:24 2014 +1000
5789
5790 - (dtucker) [bufaux.c bufbn.c bufec.c buffer.c] Pull in includes.h for
5791 compat stuff, specifically whether or not OpenSSL has ECC.
5792
5793commit eb012ac581fd0abc16ee86ee3a68cf07c8ce4d08
5794Author: Darren Tucker <dtucker@zip.com.au>
5795Date: Wed Jun 11 13:10:00 2014 +1000
5796
5797 - (dtucker) [openbsd-compat/arc4random.c] Use explicit_bzero instead of an
5798 assigment that might get optimized out. ok djm@
5799
5800commit b9609fd86c623d6d440e630f5f9a63295f7aea20
5801Author: Darren Tucker <dtucker@zip.com.au>
5802Date: Wed Jun 11 08:04:02 2014 +1000
5803
5804 - (dtucker) [sshbuf.h] Only declare ECC functions if building without
5805 OpenSSL or if OpenSSL has ECC.
5806
5807commit a54a040f66944c6e8913df8635a01a2327219be9
5808Author: Darren Tucker <dtucker@zip.com.au>
5809Date: Wed Jun 11 07:58:35 2014 +1000
5810
5811 - dtucker@cvs.openbsd.org 2014/06/10 21:46:11
5812 [sshbuf.h]
5813 Group ECC functions together to make things a little easier in -portable.
5814 "doesn't bother me" deraadt@
5815
5816commit 9f92c53bad04a89067756be8198d4ec2d8a08875
5817Author: Darren Tucker <dtucker@zip.com.au>
5818Date: Wed Jun 11 07:57:58 2014 +1000
5819
5820 - djm@cvs.openbsd.org 2014/06/05 22:17:50
5821 [sshconnect2.c]
5822 fix inverted test that caused PKCS#11 keys that were explicitly listed
5823 not to be preferred. Reported by Dirk-Willem van Gulik
5824
5825commit 15c254a25394f96643da2ad0f674acdc51e89856
5826Author: Darren Tucker <dtucker@zip.com.au>
5827Date: Wed Jun 11 07:38:49 2014 +1000
5828
5829 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] ifdef
5830 ECC variable too.
5831
5832commit d7af0cc5bf273eeed0897a99420bc26841d07d8f
5833Author: Darren Tucker <dtucker@zip.com.au>
5834Date: Wed Jun 11 07:37:25 2014 +1000
5835
5836 - (dtucker) [myprosal.h] Don't include curve25519-sha256@libssh.org in
5837 the proposal if the version of OpenSSL we're using doesn't support ECC.
5838
5839commit 67508ac2563c33d582be181a3e777c65f549d22f
5840Author: Darren Tucker <dtucker@zip.com.au>
5841Date: Wed Jun 11 06:27:16 2014 +1000
5842
5843 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c
5844 regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] Only do NISTP256
5845 curve tests if OpenSSL has them.
5846
5847commit 6482d90a65459a88c18c925368525855832272b3
5848Author: Damien Miller <djm@mindrot.org>
5849Date: Tue May 27 14:34:42 2014 +1000
5850
5851 - (djm) [configure.ac openbsd-compat/bsd-cygwin_util.c]
5852 [openbsd-compat/bsd-cygwin_util.h] On Cygwin, determine privilege
5853 separation user at runtime, since it may need to be a domain account.
5854 Patch from Corinna Vinschen.
5855
5856commit f9eb5e0734f7a7f6e975809eb54684d2a06a7ffc
5857Author: Damien Miller <djm@mindrot.org>
5858Date: Tue May 27 14:31:58 2014 +1000
5859
5860 - (djm) [contrib/cygwin/ssh-host-config] Updated Cygwin ssh-host-config
5861 from Corinna Vinschen, fixing a number of bugs and preparing for
5862 Cygwin 1.7.30.
5863
5864commit eae88744662e6b149f43ef071657727f1a157d95
5865Author: Damien Miller <djm@mindrot.org>
5866Date: Tue May 27 14:27:02 2014 +1000
5867
5868 - (djm) [cipher.c] Fix merge botch.
5869
5870commit 564b5e253c1d95c26a00e8288f0089a2571661c3
5871Author: Damien Miller <djm@mindrot.org>
5872Date: Thu May 22 08:23:59 2014 +1000
5873
5874 - (djm) [Makefile.in] typo in path
5875
5876commit e84d10302aeaf7a1acb05c451f8718143656856a
5877Author: Damien Miller <djm@mindrot.org>
5878Date: Wed May 21 17:13:36 2014 +1000
5879
5880 revert a diff I didn't mean to commit
5881
5882commit 795b86313f1f1aab9691666c4f2d5dae6e4acd50
5883Author: Damien Miller <djm@mindrot.org>
5884Date: Wed May 21 17:12:53 2014 +1000
5885
5886 - (djm) [misc.c] Use CLOCK_BOOTTIME in preference to CLOCK_MONOTONIC
5887 when it is available. It takes into account time spent suspended,
5888 thereby ensuring timeouts (e.g. for expiring agent keys) fire
5889 correctly. bz#2228 reported by John Haxby
5890
5891commit 18912775cb97c0b1e75e838d3c7d4b56648137b5
5892Author: Damien Miller <djm@mindrot.org>
5893Date: Wed May 21 17:06:46 2014 +1000
5894
5895 - (djm) [commit configure.ac defines.h sshpty.c] don't attempt to use
5896 vhangup on Linux. It doens't work for non-root users, and for them
5897 it just messes up the tty settings.
5898
5899commit 7f1c264d3049cd95234e91970ccb5406e1d15b27
5900Author: Damien Miller <djm@mindrot.org>
5901Date: Thu May 15 18:01:52 2014 +1000
5902
5903 - (djm) [sshbuf.c] need __predict_false
5904
5905commit e7429f2be8643e1100380a8a7389d85cc286c8fe
5906Author: Damien Miller <djm@mindrot.org>
5907Date: Thu May 15 18:01:01 2014 +1000
5908
5909 - (djm) [regress/Makefile Makefile.in]
5910 [regress/unittests/sshbuf/test_sshbuf.c
5911 [regress/unittests/sshbuf/test_sshbuf_fixed.c]
5912 [regress/unittests/sshbuf/test_sshbuf_fuzz.c]
5913 [regress/unittests/sshbuf/test_sshbuf_getput_basic.c]
5914 [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c]
5915 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
5916 [regress/unittests/sshbuf/test_sshbuf_misc.c]
5917 [regress/unittests/sshbuf/tests.c]
5918 [regress/unittests/test_helper/fuzz.c]
5919 [regress/unittests/test_helper/test_helper.c]
5920 Hook new unit tests into the build and "make tests"
5921
5922commit def1de086707b0e6b046fe7e115c60aca0227a99
5923Author: Damien Miller <djm@mindrot.org>
5924Date: Thu May 15 15:17:15 2014 +1000
5925
5926 - (djm) [regress/unittests/Makefile]
5927 [regress/unittests/Makefile.inc]
5928 [regress/unittests/sshbuf/Makefile]
5929 [regress/unittests/sshbuf/test_sshbuf.c]
5930 [regress/unittests/sshbuf/test_sshbuf_fixed.c]
5931 [regress/unittests/sshbuf/test_sshbuf_fuzz.c]
5932 [regress/unittests/sshbuf/test_sshbuf_getput_basic.c]
5933 [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c]
5934 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
5935 [regress/unittests/sshbuf/test_sshbuf_misc.c]
5936 [regress/unittests/sshbuf/tests.c]
5937 [regress/unittests/test_helper/Makefile]
5938 [regress/unittests/test_helper/fuzz.c]
5939 [regress/unittests/test_helper/test_helper.c]
5940 [regress/unittests/test_helper/test_helper.h]
5941 Import new unit tests from OpenBSD; not yet hooked up to build.
5942
5943commit 167685756fde8bc213a8df2c8e1848e312db0f46
5944Author: Damien Miller <djm@mindrot.org>
5945Date: Thu May 15 15:08:40 2014 +1000
5946
5947 - logan@cvs.openbsd.org 2014/05/04 10:40:59
5948 [connect-privsep.sh]
5949 Remove the Z flag from the list of malloc options as it
5950 was removed from malloc.c 10 days ago.
5951
5952 OK from miod@
5953
5954commit d0b69fe90466920d69c96069312e24b581771bd7
5955Author: Damien Miller <djm@mindrot.org>
5956Date: Thu May 15 15:08:19 2014 +1000
5957
5958 - dtucker@cvs.openbsd.org 2014/05/03 18:46:14
5959 [proxy-connect.sh]
5960 Add tests for with and without compression, with and without privsep.
5961
5962commit edb1af50441d19fb2dd9ccb4d75bf14473fca584
5963Author: Damien Miller <djm@mindrot.org>
5964Date: Thu May 15 15:07:53 2014 +1000
5965
5966 - djm@cvs.openbsd.org 2014/04/21 22:15:37
5967 [dhgex.sh integrity.sh kextype.sh rekey.sh try-ciphers.sh]
5968 repair regress tests broken by server-side default cipher/kex/mac changes
5969 by ensuring that the option under test is included in the server's
5970 algorithm list
5971
5972commit 54343e95c70994695f8842fb22836321350198d3
5973Author: Damien Miller <djm@mindrot.org>
5974Date: Thu May 15 15:07:33 2014 +1000
5975
5976 - djm@cvs.openbsd.org 2014/03/13 20:44:49
5977 [login-timeout.sh]
5978 this test is a sorry mess of race conditions; add another sleep
5979 to avoid a failure on slow machines (at least until I find a
5980 better way)
5981
5982commit e5b9f0f2ee6e133894307e44e862b66426990733
5983Author: Damien Miller <djm@mindrot.org>
5984Date: Thu May 15 14:58:07 2014 +1000
5985
5986 - (djm) [Makefile.in configure.ac sshbuf-getput-basic.c]
5987 [sshbuf-getput-crypto.c sshbuf.c] compilation and portability fixes
5988
5989commit b9c566788a9ebd6a9d466f47a532124f111f0542
5990Author: Damien Miller <djm@mindrot.org>
5991Date: Thu May 15 14:43:37 2014 +1000
5992
5993 - (djm) [configure.ac] Unconditionally define WITH_OPENSSL until we write
5994 portability glue to support building without libcrypto
5995
5996commit 3dc27178b42234b653a32f7a87292d7994045ee3
5997Author: Damien Miller <djm@mindrot.org>
5998Date: Thu May 15 14:37:59 2014 +1000
5999
6000 - logan@cvs.openbsd.org 2014/05/05 07:02:30
6001 [sftp.c]
6002 Zap extra whitespace.
6003
6004 OK from djm@ and dtucker@
6005
6006commit c31a0cd5b31961f01c5b731f62a6cb9d4f767472
6007Author: Damien Miller <djm@mindrot.org>
6008Date: Thu May 15 14:37:39 2014 +1000
6009
6010 - markus@cvs.openbsd.org 2014/05/03 17:20:34
6011 [monitor.c packet.c packet.h]
6012 unbreak compression, by re-init-ing the compression code in the
6013 post-auth child. the new buffer code is more strict, and requires
6014 buffer_init() while the old code was happy after a bzero();
6015 originally from djm@
6016
6017commit 686c7d9ee6f44b2be4128d7860b6b37adaeba733
6018Author: Damien Miller <djm@mindrot.org>
6019Date: Thu May 15 14:37:03 2014 +1000
6020
6021 - djm@cvs.openbsd.org 2014/05/02 03:27:54
6022 [chacha.h cipher-chachapoly.h digest.h hmac.h kex.h kexc25519.c]
6023 [misc.h poly1305.h ssh-pkcs11.c defines.h]
6024 revert __bounded change; it causes way more problems for portable than
6025 it solves; pointed out by dtucker@
6026
6027commit 294c58a007cfb2f3bddc4fc3217e255857ffb9bf
6028Author: Damien Miller <djm@mindrot.org>
6029Date: Thu May 15 14:35:03 2014 +1000
6030
6031 - naddy@cvs.openbsd.org 2014/04/30 19:07:48
6032 [mac.c myproposal.h umac.c]
6033 UMAC can use our local fallback implementation of AES when OpenSSL isn't
6034 available. Glue code straight from Ted Krovetz's original umac.c.
6035 ok markus@
6036
6037commit 05e82c3b963c33048128baf72a6f6b3a1c10b4c1
6038Author: Damien Miller <djm@mindrot.org>
6039Date: Thu May 15 14:33:43 2014 +1000
6040
6041 - djm@cvs.openbsd.org 2014/04/30 05:29:56
6042 [bufaux.c bufbn.c bufec.c buffer.c buffer.h sshbuf-getput-basic.c]
6043 [sshbuf-getput-crypto.c sshbuf-misc.c sshbuf.c sshbuf.h ssherr.c]
6044 [ssherr.h]
6045 New buffer API; the first installment of the conversion/replacement
6046 of OpenSSH's internals to make them usable as a standalone library.
6047
6048 This includes a set of wrappers to make it compatible with the
6049 existing buffer API so replacement can occur incrementally.
6050
6051 With and ok markus@
6052
6053 Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew
6054 Dempsky and Ron Bowes for a detailed review.
6055
6056commit 380948180f847a26f2d0c85b4dad3dca2ed2fd8b
6057Author: Damien Miller <djm@mindrot.org>
6058Date: Thu May 15 14:25:18 2014 +1000
6059
6060 - dtucker@cvs.openbsd.org 2014/04/29 20:36:51
6061 [sftp.c]
6062 Don't attempt to append a nul quote char to the filename. Should prevent
6063 fatal'ing with "el_insertstr failed" when there's a single quote char
6064 somewhere in the string. bz#2238, ok markus@
6065
6066commit d7fd8bedd4619a2ec7fd02aae4c4e1db4431ad9f
6067Author: Damien Miller <djm@mindrot.org>
6068Date: Thu May 15 14:24:59 2014 +1000
6069
6070 - dtucker@cvs.openbsd.org 2014/04/29 19:58:50
6071 [sftp.c]
6072 Move nulling of variable next to where it's freed. ok markus@
6073
6074commit 1f0311c7c7d10c94ff7f823de9c5b2ed79368b14
6075Author: Damien Miller <djm@mindrot.org>
6076Date: Thu May 15 14:24:09 2014 +1000
6077
6078 - markus@cvs.openbsd.org 2014/04/29 18:01:49
6079 [auth.c authfd.c authfile.c bufaux.c cipher.c cipher.h hostfile.c]
6080 [kex.c key.c mac.c monitor.c monitor_wrap.c myproposal.h packet.c]
6081 [roaming_client.c ssh-agent.c ssh-keygen.c ssh-keyscan.c ssh-keysign.c]
6082 [ssh-pkcs11.h ssh.c sshconnect.c sshconnect2.c sshd.c]
6083 make compiling against OpenSSL optional (make OPENSSL=no);
6084 reduces algorithms to curve25519, aes-ctr, chacha, ed25519;
6085 allows us to explore further options; with and ok djm
6086
6087commit c5893785564498cea73cb60d2cf199490483e080
6088Author: Damien Miller <djm@mindrot.org>
6089Date: Thu May 15 13:48:49 2014 +1000
6090
6091 - djm@cvs.openbsd.org 2014/04/29 13:10:30
6092 [clientloop.c serverloop.c]
6093 bz#1818 - don't send channel success/failre replies on channels that
6094 have sent a close already; analysis and patch from Simon Tatham;
6095 ok markus@
6096
6097commit 633de33b192d808d87537834c316dc8b75fe1880
6098Author: Damien Miller <djm@mindrot.org>
6099Date: Thu May 15 13:48:26 2014 +1000
6100
6101 - djm@cvs.openbsd.org 2014/04/28 03:09:18
6102 [authfile.c bufaux.c buffer.h channels.c krl.c mux.c packet.c packet.h]
6103 [ssh-keygen.c]
6104 buffer_get_string_ptr's return should be const to remind
6105 callers that futzing with it will futz with the actual buffer
6106 contents
6107
6108commit 15271907843e4ae50dcfc83b3594014cf5e9607b
6109Author: Damien Miller <djm@mindrot.org>
6110Date: Thu May 15 13:47:56 2014 +1000
6111
6112 - djm@cvs.openbsd.org 2014/04/23 12:42:34
6113 [readconf.c]
6114 don't record duplicate IdentityFiles
6115
6116commit 798a02568b13a2e46efebd81f08c8f4bb33a6dc7
6117Author: Damien Miller <djm@mindrot.org>
6118Date: Thu May 15 13:47:37 2014 +1000
6119
6120 - jmc@cvs.openbsd.org 2014/04/22 14:16:30
6121 [sftp.1]
6122 zap eol whitespace;
6123
6124commit d875ff78d2b8436807381051de112f0ebf9b9ae1
6125Author: Damien Miller <djm@mindrot.org>
6126Date: Thu May 15 13:47:15 2014 +1000
6127
6128 - logan@cvs.openbsd.org 2014/04/22 12:42:04
6129 [sftp.1]
6130 Document sftp upload resume.
6131 OK from djm@, with feedback from okan@.
6132
6133commit b15cd7bb097fd80dc99520f45290ef775da1ef19
6134Author: Damien Miller <djm@mindrot.org>
6135Date: Thu May 15 13:46:52 2014 +1000
6136
6137 - logan@cvs.openbsd.org 2014/04/22 10:07:12
6138 [sftp.c]
6139 Sort the sftp command list.
6140 OK from djm@
6141
6142commit d8accc0aa72656ba63d50937165c5ae49db1dcd6
6143Author: Damien Miller <djm@mindrot.org>
6144Date: Thu May 15 13:46:25 2014 +1000
6145
6146 - logan@cvs.openbsd.org 2014/04/21 14:36:16
6147 [sftp-client.c sftp-client.h sftp.c]
6148 Implement sftp upload resume support.
6149 OK from djm@, with input from guenther@, mlarkin@ and
6150 okan@
6151
6152commit 16cd3928a87d20c77b13592a74b60b08621d3ce6
6153Author: Damien Miller <djm@mindrot.org>
6154Date: Thu May 15 13:45:58 2014 +1000
6155
6156 - logan@cvs.openbsd.org 2014/04/20 09:24:26
6157 [dns.c dns.h ssh-keygen.c]
6158 Add support for SSHFP DNS records for ED25519 key types.
6159 OK from djm@
6160
6161commit ec0b67eb3b4e12f296ced1fafa01860c374f7eea
6162Author: Damien Miller <djm@mindrot.org>
6163Date: Thu May 15 13:45:26 2014 +1000
6164
6165 - (djm) [rijndael.c rijndael.h] Sync with newly-ressurected versions ine
6166 OpenBSD
6167
6168commit f028460d0b2e5a584355321015cde69bf6fd933e
6169Author: Darren Tucker <dtucker@zip.com.au>
6170Date: Thu May 1 02:24:35 2014 +1000
6171
6172 - (dtucker) [defines.h] Define __GNUC_PREREQ__ macro if we don't already
6173 have it. Only attempt to use __attribute__(__bounded__) for gcc.
6174
6175commit b628cc4c3e4a842bab5e4584d18c2bc5fa4d0edf
6176Author: Damien Miller <djm@mindrot.org>
6177Date: Sun Apr 20 13:33:58 2014 +1000
6178
6179 - djm@cvs.openbsd.org 2014/04/20 02:49:32
6180 [compat.c]
6181 add a canonical 6.6 + curve25519 bignum fix fake version that I can
6182 recommend people use ahead of the openssh-6.7 release
6183
6184commit 888566913933a802f3a329ace123ebcb7154cf78
6185Author: Damien Miller <djm@mindrot.org>
6186Date: Sun Apr 20 13:33:19 2014 +1000
6187
6188 - djm@cvs.openbsd.org 2014/04/20 02:30:25
6189 [misc.c misc.h umac.c]
6190 use get/put_u32 to load values rather than *((UINT32 *)p) that breaks on
6191 strict-alignment architectures; reported by and ok stsp@
6192
6193commit 16f85cbc7e5139950e6a38317e7c8b368beafa5d
6194Author: Damien Miller <djm@mindrot.org>
6195Date: Sun Apr 20 13:29:28 2014 +1000
6196
6197 - tedu@cvs.openbsd.org 2014/04/19 18:42:19
6198 [ssh.1]
6199 delete .xr to hosts.equiv. there's still an unfortunate amount of
6200 documentation referring to rhosts equivalency in here.
6201
6202commit 69cb24b7356ec3f0fc5ff04a68f98f2c55c766f4
6203Author: Damien Miller <djm@mindrot.org>
6204Date: Sun Apr 20 13:29:06 2014 +1000
6205
6206 - tedu@cvs.openbsd.org 2014/04/19 18:15:16
6207 [sshd.8]
6208 remove some really old rsh references
6209
6210commit 84c1e7bca8c4ceaccf4d5557e39a833585a3c77e
6211Author: Damien Miller <djm@mindrot.org>
6212Date: Sun Apr 20 13:27:53 2014 +1000
6213
6214 - tedu@cvs.openbsd.org 2014/04/19 14:53:48
6215 [ssh-keysign.c sshd.c]
6216 Delete futile calls to RAND_seed. ok djm
6217 NB. Id sync only. This only applies to OpenBSD's libcrypto slashathon
6218
6219commit 0e6b67423b8662f9ca4c92750309e144fd637ef1
6220Author: Damien Miller <djm@mindrot.org>
6221Date: Sun Apr 20 13:27:01 2014 +1000
6222
6223 - djm@cvs.openbsd.org 2014/04/19 05:54:59
6224 [compat.c]
6225 missing wildcard; pointed out by naddy@
6226
6227commit 9395b28223334826837c15e8c1bb4dfb3b0d2ca5
6228Author: Damien Miller <djm@mindrot.org>
6229Date: Sun Apr 20 13:25:30 2014 +1000
6230
6231 - djm@cvs.openbsd.org 2014/04/18 23:52:25
6232 [compat.c compat.h sshconnect2.c sshd.c version.h]
6233 OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections
6234 using the curve25519-sha256@libssh.org KEX exchange method to fail
6235 when connecting with something that implements the spec properly.
6236
6237 Disable this KEX method when speaking to one of the affected
6238 versions.
6239
6240 reported by Aris Adamantiadis; ok markus@
6241
6242commit 8c492da58f8ceb85cf5f7066f23e26fb813a963d
6243Author: Damien Miller <djm@mindrot.org>
6244Date: Sun Apr 20 13:25:09 2014 +1000
6245
6246 - djm@cvs.openbsd.org 2014/04/16 23:28:12
6247 [ssh-agent.1]
6248 remove the identity files from this manpage - ssh-agent doesn't deal
6249 with them at all and the same information is duplicated in ssh-add.1
6250 (which does deal with them); prodded by deraadt@
6251
6252commit adbfdbbdccc70c9bd70d81ae096db115445c6e26
6253Author: Damien Miller <djm@mindrot.org>
6254Date: Sun Apr 20 13:24:49 2014 +1000
6255
6256 - djm@cvs.openbsd.org 2014/04/16 23:22:45
6257 [bufaux.c]
6258 skip leading zero bytes in buffer_put_bignum2_from_string();
6259 reported by jan AT mojzis.com; ok markus@
6260
6261commit 75c62728dc87af6805696eeb520b9748faa136c8
6262Author: Damien Miller <djm@mindrot.org>
6263Date: Sun Apr 20 13:24:31 2014 +1000
6264
6265 - djm@cvs.openbsd.org 2014/04/12 04:55:53
6266 [sshd.c]
6267 avoid crash at exit: check that pmonitor!=NULL before dereferencing;
6268 bz#2225, patch from kavi AT juniper.net
6269
6270commit 2a328437fb1b0976f2f4522d8645803d5a5d0967
6271Author: Damien Miller <djm@mindrot.org>
6272Date: Sun Apr 20 13:24:01 2014 +1000
6273
6274 - djm@cvs.openbsd.org 2014/04/01 05:32:57
6275 [packet.c]
6276 demote a debug3 to PACKET_DEBUG; ok markus@
6277
6278commit 7d6a9fb660c808882d064e152d6070ffc3844c3f
6279Author: Damien Miller <djm@mindrot.org>
6280Date: Sun Apr 20 13:23:43 2014 +1000
6281
6282 - djm@cvs.openbsd.org 2014/04/01 03:34:10
6283 [sshconnect.c]
6284 When using VerifyHostKeyDNS with a DNSSEC resolver, down-convert any
6285 certificate keys to plain keys and attempt SSHFP resolution.
6286
6287 Prevents a server from skipping SSHFP lookup and forcing a new-hostkey
6288 dialog by offering only certificate keys.
6289
6290 Reported by mcv21 AT cam.ac.uk
6291
6292commit fcd62c0b66b8415405ed0af29c236329eb88cc0f
6293Author: Damien Miller <djm@mindrot.org>
6294Date: Sun Apr 20 13:23:21 2014 +1000
6295
6296 - djm@cvs.openbsd.org 2014/04/01 02:05:27
6297 [ssh-keysign.c]
6298 include fingerprint of key not found
6299 use arc4random_buf() instead of loop+arc4random()
6300
6301commit 43b156cf72f900f88065b0a1c1ebd09ab733ca46
6302Author: Damien Miller <djm@mindrot.org>
6303Date: Sun Apr 20 13:23:03 2014 +1000
6304
6305 - jmc@cvs.openbsd.org 2014/03/31 13:39:34
6306 [ssh-keygen.1]
6307 the text for the -K option was inserted in the wrong place in -r1.108;
6308 fix From: Matthew Clarke
6309
6310commit c1621c84f2dc1279065ab9fde2aa9327af418900
6311Author: Damien Miller <djm@mindrot.org>
6312Date: Sun Apr 20 13:22:46 2014 +1000
6313
6314 - naddy@cvs.openbsd.org 2014/03/28 05:17:11
6315 [ssh_config.5 sshd_config.5]
6316 sync available and default algorithms, improve algorithm list formatting
6317 help from jmc@ and schwarze@, ok deraadt@
6318
6319commit f2719b7c2b8a3b14d778d8a6d8dc729b5174b054
6320Author: Damien Miller <djm@mindrot.org>
6321Date: Sun Apr 20 13:22:18 2014 +1000
6322
6323 - tedu@cvs.openbsd.org 2014/03/26 19:58:37
6324 [sshd.8 sshd.c]
6325 remove libwrap support. ok deraadt djm mfriedl
6326
6327commit 4f40209aa4060b9c066a2f0d9332ace7b8dfb391
6328Author: Damien Miller <djm@mindrot.org>
6329Date: Sun Apr 20 13:21:22 2014 +1000
6330
6331 - djm@cvs.openbsd.org 2014/03/26 04:55:35
6332 [chacha.h cipher-chachapoly.h digest.h hmac.h kex.h kexc25519.c
6333 [misc.h poly1305.h ssh-pkcs11.c]
6334 use __bounded(...) attribute recently added to sys/cdefs.h instead of
6335 longform __attribute__(__bounded(...));
6336
6337 for brevity and a warning free compilation with llvm/clang
6338
6339commit 9235a030ad1b16903fb495d81544e0f7c7449523
6340Author: Damien Miller <djm@mindrot.org>
6341Date: Sun Apr 20 13:17:20 2014 +1000
6342
6343 Three commits in one (since they touch the same heavily-diverged file
6344 repeatedly):
6345
6346 - markus@cvs.openbsd.org 2014/03/25 09:40:03
6347 [myproposal.h]
6348 trimm default proposals.
6349
6350 This commit removes the weaker pre-SHA2 hashes, the broken ciphers
6351 (arcfour), and the broken modes (CBC) from the default configuration
6352 (the patch only changes the default, all the modes are still available
6353 for the config files).
6354
6355 ok djm@, reminded by tedu@ & naddy@ and discussed with many
6356 - deraadt@cvs.openbsd.org 2014/03/26 17:16:26
6357 [myproposal.h]
6358 The current sharing of myproposal[] between both client and server code
6359 makes the previous diff highly unpallatable. We want to go in that
6360 direction for the server, but not for the client. Sigh.
6361 Brought up by naddy.
6362 - markus@cvs.openbsd.org 2014/03/27 23:01:27
6363 [myproposal.h ssh-keyscan.c sshconnect2.c sshd.c]
6364 disable weak proposals in sshd, but keep them in ssh; ok djm@
6365
6366commit 6e1777f592f15f4559728c78204617537b1ac076
6367Author: Damien Miller <djm@mindrot.org>
6368Date: Sun Apr 20 13:02:58 2014 +1000
6369
6370 - tedu@cvs.openbsd.org 2014/03/19 14:42:44
6371 [scp.1]
6372 there is no need for rcp anymore
6373 ok deraadt millert
6374
6375commit eb1b7c514d2a7b1802ccee8cd50e565a4d419887
6376Author: Damien Miller <djm@mindrot.org>
6377Date: Sun Apr 20 13:02:26 2014 +1000
6378
6379 - tedu@cvs.openbsd.org 2014/03/17 19:44:10
6380 [ssh.1]
6381 old descriptions of des and blowfish are old. maybe ok deraadt
6382
6383commit f0858de6e1324ec730752387074b111b8551081e
6384Author: Damien Miller <djm@mindrot.org>
6385Date: Sun Apr 20 13:01:30 2014 +1000
6386
6387 - deraadt@cvs.openbsd.org 2014/03/15 17:28:26
6388 [ssh-agent.c ssh-keygen.1 ssh-keygen.c]
6389 Improve usage() and documentation towards the standard form.
6390 In particular, this line saves a lot of man page reading time.
6391 usage: ssh-keygen [-q] [-b bits] [-t dsa | ecdsa | ed25519 | rsa | rsa1]
6392 [-N new_passphrase] [-C comment] [-f output_keyfile]
6393 ok schwarze jmc
6394
6395commit 94bfe0fbd6e91a56b5b0ab94ac955d2a67d101aa
6396Author: Damien Miller <djm@mindrot.org>
6397Date: Sun Apr 20 13:00:51 2014 +1000
6398
6399 - naddy@cvs.openbsd.org 2014/03/12 13:06:59
6400 [ssh-keyscan.1]
6401 scan for Ed25519 keys by default too
6402
6403commit 3819519288b2b3928c6882f5883b0f55148f4fc0
6404Author: Damien Miller <djm@mindrot.org>
6405Date: Sun Apr 20 13:00:28 2014 +1000
6406
6407 - djm@cvs.openbsd.org 2014/03/12 04:51:12
6408 [authfile.c]
6409 correct test that kdf name is not "none" or "bcrypt"
6410
6411commit 8f9cd709c7cf0655d414306a0ed28306b33802be
6412Author: Damien Miller <djm@mindrot.org>
6413Date: Sun Apr 20 13:00:11 2014 +1000
6414
6415 - djm@cvs.openbsd.org 2014/03/12 04:50:32
6416 [auth-bsdauth.c ssh-keygen.c]
6417 don't count on things that accept arguments by reference to clear
6418 things for us on error; most things do, but it's unsafe form.
6419
6420commit 1c7ef4be83f6dec84509a312518b9df00ab491d9
6421Author: Damien Miller <djm@mindrot.org>
6422Date: Sun Apr 20 12:59:46 2014 +1000
6423
6424 - djm@cvs.openbsd.org 2014/03/12 04:44:58
6425 [ssh-keyscan.c]
6426 scan for Ed25519 keys by default too
6427
6428commit c10bf4d051c97939b30a1616c0499310057d07da
6429Author: Damien Miller <djm@mindrot.org>
6430Date: Sun Apr 20 12:58:04 2014 +1000
6431
6432 - djm@cvs.openbsd.org 2014/03/03 22:22:30
6433 [session.c]
6434 ignore enviornment variables with embedded '=' or '\0' characters;
6435 spotted by Jann Horn; ok deraadt@
6436 Id sync only - portable already has this.
6437
6438commit c2e49062faccbcd7135c40d1c78c5c329c58fc2e
6439Author: Damien Miller <djm@mindrot.org>
6440Date: Tue Apr 1 14:42:46 2014 +1100
6441
6442 - (djm) Use full release (e.g. 6.5p1) in debug output rather than just
6443 version. From des@des.no
6444
6445commit 14928b7492abec82afa4c2b778fc03f78cd419b6
6446Author: Damien Miller <djm@mindrot.org>
6447Date: Tue Apr 1 14:38:07 2014 +1100
6448
6449 - (djm) On platforms that support it, use prctl() to prevent sftp-server
6450 from accessing /proc/self/{mem,maps}; patch from jann AT thejh.net
6451
6452commit 48abc47e60048461fe9117e108a7e99ea1ac2bb8
6453Author: Damien Miller <djm@mindrot.org>
6454Date: Mon Mar 17 14:45:56 2014 +1100
6455
6456 - (djm) [sandbox-seccomp-filter.c] Soft-fail stat() syscalls. Add XXX to
6457 remind myself to add sandbox violation logging via the log socket.
6458
6459commit 9c36698ca2f554ec221dc7ef29c7a89e97c88705
6460Author: Tim Rice <tim@multitalents.net>
6461Date: Fri Mar 14 12:45:01 2014 -0700
6462
6463 20140314
6464 - (tim) [opensshd.init.in] Add support for ed25519
6465
6466commit 19158b2447e35838d69b2b735fb640d1e86061ea
6467Author: Damien Miller <djm@mindrot.org>
6468Date: Thu Mar 13 13:14:21 2014 +1100
6469
6470 - (djm) Release OpenSSH 6.6
6471
6472commit 8569eba5d7f7348ce3955eeeb399f66f25c52ece
6473Author: Damien Miller <djm@mindrot.org>
6474Date: Tue Mar 4 09:35:17 2014 +1100
6475
6476 - djm@cvs.openbsd.org 2014/03/03 22:22:30
6477 [session.c]
6478 ignore enviornment variables with embedded '=' or '\0' characters;
6479 spotted by Jann Horn; ok deraadt@
6480
6481commit 2476c31b96e89aec7d4e73cb6fbfb9a4290de3a7
6482Author: Damien Miller <djm@mindrot.org>
6483Date: Sun Mar 2 04:01:00 2014 +1100
6484
6485 - (djm) [regress/Makefile] Disable dhgex regress test; it breaks when
6486 no moduli file exists at the expected location.
6487
6488commit c83fdf30e9db865575b2521b1fe46315cf4c70ae
6489Author: Damien Miller <djm@mindrot.org>
6490Date: Fri Feb 28 10:34:03 2014 +1100
6491
6492 - (djm) [regress/host-expand.sh] Add RCS Id
6493
6494commit 834aeac3555e53f7d29a6fcf3db010dfb99681c7
6495Author: Damien Miller <djm@mindrot.org>
6496Date: Fri Feb 28 10:25:16 2014 +1100
6497
6498 - djm@cvs.openbsd.org 2014/02/27 21:21:25
6499 [agent-ptrace.sh agent.sh]
6500 keep return values that are printed in error messages;
6501 from portable
6502 (Id sync only)
6503
6504commit 4f7f1a9a0de24410c30952c7e16d433240422182
6505Author: Damien Miller <djm@mindrot.org>
6506Date: Fri Feb 28 10:24:11 2014 +1100
6507
6508 - djm@cvs.openbsd.org 2014/02/27 20:04:16
6509 [login-timeout.sh]
6510 remove any existing LoginGraceTime from sshd_config before adding
6511 a specific one for the test back in
6512
6513commit d705d987c27f68080c8798eeb5262adbdd6b4ffd
6514Author: Damien Miller <djm@mindrot.org>
6515Date: Fri Feb 28 10:23:26 2014 +1100
6516
6517 - djm@cvs.openbsd.org 2014/01/26 10:49:17
6518 [scp-ssh-wrapper.sh scp.sh]
6519 make sure $SCP is tested on the remote end rather than whichever one
6520 happens to be in $PATH; from portable
6521 (Id sync only)
6522
6523commit 624a3ca376e3955a4b9d936c9e899e241b65d357
6524Author: Damien Miller <djm@mindrot.org>
6525Date: Fri Feb 28 10:22:37 2014 +1100
6526
6527 - djm@cvs.openbsd.org 2014/01/26 10:22:10
6528 [regress/cert-hostkey.sh]
6529 automatically generate revoked keys from listed keys rather than
6530 manually specifying each type; from portable
6531 (Id sync only)
6532
6533commit b84392328425e4b9a71f8bde5fe6a4a4c48d3ec4
6534Author: Damien Miller <djm@mindrot.org>
6535Date: Fri Feb 28 10:21:26 2014 +1100
6536
6537 - dtucker@cvs.openbsd.org 2014/01/25 04:35:32
6538 [regress/Makefile regress/dhgex.sh]
6539 Add a test for DH GEX sizes
6540
6541commit 1e2aa3d90472293ea19008f02336d6d68aa05793
6542Author: Damien Miller <djm@mindrot.org>
6543Date: Fri Feb 28 10:19:51 2014 +1100
6544
6545 - dtucker@cvs.openbsd.org 2014/01/20 00:00:30
6546 [sftp-chroot.sh]
6547 append to rather than truncating the log file
6548
6549commit f483cc16fe7314e24a37aa3a4422b03c013c3213
6550Author: Damien Miller <djm@mindrot.org>
6551Date: Fri Feb 28 10:19:11 2014 +1100
6552
6553 - dtucker@cvs.openbsd.org 2014/01/19 23:43:02
6554 [regress/sftp-chroot.sh]
6555 Don't use -q on sftp as it suppresses logging, instead redirect the
6556 output to the regress logfile.
6557
6558commit 6486f16f1c0ebd6f39286f6ab5e08286d90a994a
6559Author: Damien Miller <djm@mindrot.org>
6560Date: Fri Feb 28 10:03:52 2014 +1100
6561
6562 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
6563 [contrib/suse/openssh.spec] Crank version numbers
6564
6565commit 92cf5adea194140380e6af6ec32751f9ad540794
6566Author: Damien Miller <djm@mindrot.org>
6567Date: Fri Feb 28 10:01:53 2014 +1100
6568
6569 - djm@cvs.openbsd.org 2014/02/27 22:57:40
6570 [version.h]
6571 openssh-6.6
6572
6573commit fc5d6759aba71eb205b296b5f148010ffc828583
6574Author: Damien Miller <djm@mindrot.org>
6575Date: Fri Feb 28 10:01:28 2014 +1100
6576
6577 - djm@cvs.openbsd.org 2014/02/27 22:47:07
6578 [sshd_config.5]
6579 bz#2184 clarify behaviour of a keyword that appears in multiple
6580 matching Match blocks; ok dtucker@
6581
6582commit 172ec7e0af1a5f1d682f6a2dca335c6c186153d5
6583Author: Damien Miller <djm@mindrot.org>
6584Date: Fri Feb 28 10:00:57 2014 +1100
6585
6586 - djm@cvs.openbsd.org 2014/02/27 08:25:09
6587 [bufbn.c]
6588 off by one in range check
6589
6590commit f9a9aaba437c2787e40cf7cc928281950e161678
6591Author: Damien Miller <djm@mindrot.org>
6592Date: Fri Feb 28 10:00:27 2014 +1100
6593
6594 - djm@cvs.openbsd.org 2014/02/27 00:41:49
6595 [bufbn.c]
6596 fix unsigned overflow that could lead to reading a short ssh protocol
6597 1 bignum value; found by Ben Hawkes; ok deraadt@
6598
6599commit fb3423b612713d9cde67c8a75f6f51188d6a3de3
6600Author: Damien Miller <djm@mindrot.org>
6601Date: Thu Feb 27 10:20:07 2014 +1100
6602
6603 - markus@cvs.openbsd.org 2014/02/26 21:53:37
6604 [sshd.c]
6605 ssh_gssapi_prepare_supported_oids needs GSSAPI
6606
6607commit 1348129a34f0f7728c34d86c100a32dcc8d1f922
6608Author: Damien Miller <djm@mindrot.org>
6609Date: Thu Feb 27 10:18:32 2014 +1100
6610
6611 - djm@cvs.openbsd.org 2014/02/26 20:29:29
6612 [channels.c]
6613 don't assume that the socks4 username is \0 terminated;
6614 spotted by Ben Hawkes; ok markus@
6615
6616commit e6a74aeeacd01d885262ff8e50eb28faee8c8039
6617Author: Damien Miller <djm@mindrot.org>
6618Date: Thu Feb 27 10:17:49 2014 +1100
6619
6620 - djm@cvs.openbsd.org 2014/02/26 20:28:44
6621 [auth2-gss.c gss-serv.c ssh-gss.h sshd.c]
6622 bz#2107 - cache OIDs of supported GSSAPI mechanisms before privsep
6623 sandboxing, as running this code in the sandbox can cause violations;
6624 ok markus@
6625
6626commit 08b57c67f3609340ff703fe2782d7058acf2529e
6627Author: Damien Miller <djm@mindrot.org>
6628Date: Thu Feb 27 10:17:13 2014 +1100
6629
6630 - djm@cvs.openbsd.org 2014/02/26 20:18:37
6631 [ssh.c]
6632 bz#2205: avoid early hostname lookups unless canonicalisation is enabled;
6633 ok dtucker@ markus@
6634
6635commit 13f97b2286142fd0b8eab94e4ce84fe124eeb752
6636Author: Damien Miller <djm@mindrot.org>
6637Date: Mon Feb 24 15:57:55 2014 +1100
6638
6639 - djm@cvs.openbsd.org 2014/02/23 20:11:36
6640 [readconf.c readconf.h ssh.c ssh_config.5]
6641 reparse ssh_config and ~/.ssh/config if hostname canonicalisation changes
6642 the hostname. This allows users to write configurations that always
6643 refer to canonical hostnames, e.g.
6644
6645 CanonicalizeHostname yes
6646 CanonicalDomains int.example.org example.org
6647 CanonicalizeFallbackLocal no
6648
6649 Host *.int.example.org
6650 Compression off
6651 Host *.example.org
6652 User djm
6653
6654 ok markus@
6655
6656commit bee3a234f3d1ad4244952bcff1b4b7c525330dc2
6657Author: Damien Miller <djm@mindrot.org>
6658Date: Mon Feb 24 15:57:22 2014 +1100
6659
6660 - djm@cvs.openbsd.org 2014/02/23 20:03:42
6661 [ssh-ed25519.c]
6662 check for unsigned overflow; not reachable in OpenSSH but others might
6663 copy our code...
6664
6665commit 0628780abe61e7e50cba48cdafb1837f49ff23b2
6666Author: Damien Miller <djm@mindrot.org>
6667Date: Mon Feb 24 15:56:45 2014 +1100
6668
6669 - djm@cvs.openbsd.org 2014/02/22 01:32:19
6670 [readconf.c]
6671 when processing Match blocks, skip 'exec' clauses if previous predicates
6672 failed to match; ok markus@
6673
6674commit 0890dc8191bb201eb01c3429feec0300a9d3a930
6675Author: Damien Miller <djm@mindrot.org>
6676Date: Mon Feb 24 15:56:07 2014 +1100
6677
6678 - djm@cvs.openbsd.org 2014/02/15 23:05:36
6679 [channels.c]
6680 avoid spurious "getsockname failed: Bad file descriptor" errors in ssh -W;
6681 bz#2200, debian#738692 via Colin Watson; ok dtucker@
6682
6683commit d3cf67e1117c25d151d0f86396e77ee3a827045a
6684Author: Damien Miller <djm@mindrot.org>
6685Date: Mon Feb 24 15:55:36 2014 +1100
6686
6687 - djm@cvs.openbsd.org 2014/02/07 06:55:54
6688 [cipher.c mac.c]
6689 remove some logging that makes ssh debugging output very verbose;
6690 ok markus
6691
6692commit 03ae081aeaa118361c81ece76eb7cc1aaa2b40c5
6693Author: Tim Rice <tim@multitalents.net>
6694Date: Fri Feb 21 09:09:34 2014 -0800
6695
6696 20140221
6697 - (tim) [configure.ac] Fix cut-and-paste error. Patch from Bryan Drewery.
6698
6699commit 4a20959d2e3c90e9d66897c0b4032c785672d815
6700Author: Darren Tucker <dtucker@zip.com.au>
6701Date: Thu Feb 13 16:38:32 2014 +1100
6702
6703 - (dtucker) [configure.ac openbsd-compat/openssl-compat.{c,h}] Add compat
6704 code for older OpenSSL versions that don't have EVP_MD_CTX_copy_ex.
6705
6706commit d1a7a9c0fd1ac2e3314cceb2891959fd2cd9eabb
6707Author: Damien Miller <djm@mindrot.org>
6708Date: Fri Feb 7 09:24:33 2014 +1100
6709
6710 - djm@cvs.openbsd.org 2014/02/06 22:21:01
6711 [sshconnect.c]
6712 in ssh_create_socket(), only do the getaddrinfo for BindAddress when
6713 BindAddress is actually specified. Fixes regression in 6.5 for
6714 UsePrivilegedPort=yes; patch from Corinna Vinschen
6715
6716commit 6ce35b6cc4ead1bf98abec34cb2e2d6ca0abb15e
6717Author: Damien Miller <djm@mindrot.org>
6718Date: Fri Feb 7 09:24:14 2014 +1100
6719
6720 - naddy@cvs.openbsd.org 2014/02/05 20:13:25
6721 [ssh-keygen.1 ssh-keygen.c]
6722 tweak synopsis: calling ssh-keygen without any arguments is fine; ok jmc@
6723 while here, fix ordering in usage(); requested by jmc@
6724
6725commit 6434cb2cfbbf0a46375d2d22f2ff9927feb5e478
6726Author: Damien Miller <djm@mindrot.org>
6727Date: Thu Feb 6 11:17:50 2014 +1100
6728
6729 - (djm) [sandbox-seccomp-filter.c] Not all Linux architectures define
6730 __NR_shutdown; some go via the socketcall(2) multiplexer.
6731
6732commit 8d36f9ac71eff2e9f5770c0518b73d875f270647
6733Author: Darren Tucker <dtucker@zip.com.au>
6734Date: Thu Feb 6 10:44:13 2014 +1100
6735
6736 - (dtucker) [openbsd-compat/bsd-poll.c] Don't bother checking for non-NULL
6737 before freeing since free(NULL) is a no-op. ok djm.
6738
6739commit a0959da3680b4ce8cf911caf3293a6d90f88eeb7
6740Author: Damien Miller <djm@mindrot.org>
6741Date: Wed Feb 5 10:33:45 2014 +1100
6742
6743 - (djm) [sandbox-capsicum.c] Don't fatal if Capsicum is offered by
6744 headers/libc but not supported by the kernel. Patch from Loganaden
6745 Velvindron @ AfriNIC
6746
6747commit 9c449bc183b256c84d8f740727b0bc54d247b15e
6748Author: Damien Miller <djm@mindrot.org>
6749Date: Tue Feb 4 11:38:28 2014 +1100
6750
6751 - (djm) [regress/setuid-allowed.c] Missing string.h for strerror()
6752
6753commit bf7e0f03be661b6f5b3bfe325135ce19391f9c4d
6754Author: Damien Miller <djm@mindrot.org>
6755Date: Tue Feb 4 11:37:50 2014 +1100
6756
6757 - (djm) [openbsd-compat/Makefile.in] Add missing explicit_bzero.o
6758
6759commit eb6d870a0ea8661299bb2ea8f013d3ace04e2024
6760Author: Damien Miller <djm@mindrot.org>
6761Date: Tue Feb 4 11:26:34 2014 +1100
6762
6763 - djm@cvs.openbsd.org 2014/02/04 00:24:29
6764 [ssh.c]
6765 delay lowercasing of hostname until right before hostname
6766 canonicalisation to unbreak case-sensitive matching of ssh_config;
6767 reported by Ike Devolder; ok markus@
6768
6769commit d56b44d2dfa093883a5c4e91be3f72d99946b170
6770Author: Damien Miller <djm@mindrot.org>
6771Date: Tue Feb 4 11:26:04 2014 +1100
6772
6773 - djm@cvs.openbsd.org 2014/02/04 00:24:29
6774 [ssh.c]
6775 delay lowercasing of hostname until right before hostname
6776 canonicalisation to unbreak case-sensitive matching of ssh_config;
6777 reported by Ike Devolder; ok markus@
6778
6779commit db3c595ea74ea9ccd5aa644d7e1f8dc675710731
6780Author: Damien Miller <djm@mindrot.org>
6781Date: Tue Feb 4 11:25:45 2014 +1100
6782
6783 - djm@cvs.openbsd.org 2014/02/02 03:44:31
6784 [digest-libc.c digest-openssl.c]
6785 convert memset of potentially-private data to explicit_bzero()
6786
6787commit aae07e2e2000dd318418fd7fd4597760904cae32
6788Author: Damien Miller <djm@mindrot.org>
6789Date: Tue Feb 4 11:20:40 2014 +1100
6790
6791 - djm@cvs.openbsd.org 2014/02/03 23:28:00
6792 [ssh-ecdsa.c]
6793 fix memory leak; ECDSA_SIG_new() allocates 'r' and 's' for us, unlike
6794 DSA_SIG_new. Reported by Batz Spear; ok markus@
6795
6796commit a5103f413bde6f31bff85d6e1fd29799c647d765
6797Author: Damien Miller <djm@mindrot.org>
6798Date: Tue Feb 4 11:20:14 2014 +1100
6799
6800 - djm@cvs.openbsd.org 2014/02/02 03:44:32
6801 [auth1.c auth2-chall.c auth2-passwd.c authfile.c bufaux.c bufbn.c]
6802 [buffer.c cipher-3des1.c cipher.c clientloop.c gss-serv.c kex.c]
6803 [kexdhc.c kexdhs.c kexecdhc.c kexgexc.c kexecdhs.c kexgexs.c key.c]
6804 [monitor.c monitor_wrap.c packet.c readpass.c rsa.c serverloop.c]
6805 [ssh-add.c ssh-agent.c ssh-dss.c ssh-ecdsa.c ssh-ed25519.c]
6806 [ssh-keygen.c ssh-rsa.c sshconnect.c sshconnect1.c sshconnect2.c]
6807 [sshd.c]
6808 convert memset of potentially-private data to explicit_bzero()
6809
6810commit 1d2c4564265ee827147af246a16f3777741411ed
6811Author: Damien Miller <djm@mindrot.org>
6812Date: Tue Feb 4 11:18:20 2014 +1100
6813
6814 - tedu@cvs.openbsd.org 2014/01/31 16:39:19
6815 [auth2-chall.c authfd.c authfile.c bufaux.c bufec.c canohost.c]
6816 [channels.c cipher-chachapoly.c clientloop.c configure.ac hostfile.c]
6817 [kexc25519.c krl.c monitor.c sandbox-systrace.c session.c]
6818 [sftp-client.c ssh-keygen.c ssh.c sshconnect2.c sshd.c sshlogin.c]
6819 [openbsd-compat/explicit_bzero.c openbsd-compat/openbsd-compat.h]
6820 replace most bzero with explicit_bzero, except a few that cna be memset
6821 ok djm dtucker
6822
6823commit 3928de067c286683a95fbdbdb5fdb3c78a0e5efd
6824Author: Damien Miller <djm@mindrot.org>
6825Date: Tue Feb 4 11:13:54 2014 +1100
6826
6827 - djm@cvs.openbsd.org 2014/01/30 22:26:14
6828 [sandbox-systrace.c]
6829 allow shutdown(2) syscall in sandbox - it may be called by packet_close()
6830 from portable
6831 (Id sync only; change is already in portable)
6832
6833commit e1e480aee8a9af6cfbe7188667b7b940d6b57f9f
6834Author: Damien Miller <djm@mindrot.org>
6835Date: Tue Feb 4 11:13:17 2014 +1100
6836
6837 - jmc@cvs.openbsd.org 2014/01/29 14:04:51
6838 [sshd_config.5]
6839 document kbdinteractiveauthentication;
6840 requested From: Ross L Richardson
6841
6842 dtucker/markus helped explain its workings;
6843
6844commit 7cc194f70d4a5ec9a82d19422eaf18db4a6624c6
6845Author: Damien Miller <djm@mindrot.org>
6846Date: Tue Feb 4 11:12:56 2014 +1100
6847
6848 - djm@cvs.openbsd.org 2014/01/29 06:18:35
6849 [Makefile.in auth.h auth2-jpake.c auth2.c jpake.c jpake.h monitor.c]
6850 [monitor.h monitor_wrap.c monitor_wrap.h readconf.c readconf.h]
6851 [schnorr.c schnorr.h servconf.c servconf.h ssh2.h sshconnect2.c]
6852 remove experimental, never-enabled JPAKE code; ok markus@
6853
6854commit b0f26544cf6f4feeb1a4f6db09fca834f5c9867d
6855Author: Damien Miller <djm@mindrot.org>
6856Date: Tue Feb 4 11:10:01 2014 +1100
6857
6858 - djm@cvs.openbsd.org 2014/01/29 00:19:26
6859 [sshd.c]
6860 use kill(0, ...) instead of killpg(0, ...); on most operating systems
6861 they are equivalent, but SUSv2 describes the latter as having undefined
6862 behaviour; from portable; ok dtucker
6863 (Id sync only; change is already in portable)
6864
6865commit f8f35bc471500348bb262039fb1fc43175d251b0
6866Author: Damien Miller <djm@mindrot.org>
6867Date: Tue Feb 4 11:09:12 2014 +1100
6868
6869 - jmc@cvs.openbsd.org 2014/01/28 14:13:39
6870 [ssh-keyscan.1]
6871 kill some bad Pa;
6872 From: Jan Stary
6873
6874commit 0ba85d696ae9daf66002c2e4ab0d6bb111e1a787
6875Author: Damien Miller <djm@mindrot.org>
6876Date: Tue Feb 4 11:08:38 2014 +1100
6877
6878 ignore a few more regress droppings
6879
6880commit ec93d15170b7a6ddf63fd654bd0f6a752acc19dd
6881Author: Damien Miller <djm@mindrot.org>
6882Date: Tue Feb 4 11:07:13 2014 +1100
6883
6884 - markus@cvs.openbsd.org 2014/01/27 20:13:46
6885 [digest.c digest-openssl.c digest-libc.c Makefile.in]
6886 rename digest.c to digest-openssl.c and add libc variant; ok djm@
6887
6888commit 4a1c7aa640fb97d3472d51b215b6a0ec0fd025c7
6889Author: Damien Miller <djm@mindrot.org>
6890Date: Tue Feb 4 11:03:36 2014 +1100
6891
6892 - markus@cvs.openbsd.org 2014/01/27 19:18:54
6893 [auth-rsa.c cipher.c ssh-agent.c sshconnect1.c sshd.c]
6894 replace openssl MD5 with our ssh_digest_*; ok djm@
6895
6896commit 4e8d937af79ce4e253f77ec93489d098b25becc3
6897Author: Damien Miller <djm@mindrot.org>
6898Date: Tue Feb 4 11:02:42 2014 +1100
6899
6900 - markus@cvs.openbsd.org 2014/01/27 18:58:14
6901 [Makefile.in digest.c digest.h hostfile.c kex.h mac.c hmac.c hmac.h]
6902 replace openssl HMAC with an implementation based on our ssh_digest_*
6903 ok and feedback djm@
6904
6905commit 69d0d09f76bab5aec86fbf78489169f63bd16475
6906Author: Tim Rice <tim@multitalents.net>
6907Date: Fri Jan 31 14:25:18 2014 -0800
6908
6909 - (tim) [Makefile.in] build regress/setuid-allow.
6910
6911commit 0eeafcd76b972a3d159f3118227c149a4d7817fe
6912Author: Darren Tucker <dtucker@zip.com.au>
6913Date: Fri Jan 31 14:18:51 2014 +1100
6914
6915 - (dtucker) [readconf.c] Include <arpa/inet.h> for the hton macros. Fixes
6916 build with HP-UX's compiler. Patch from Kevin Brott.
6917
6918commit 7e5cec6070673e9f9785ffc749837ada22fbe99f
6919Author: Damien Miller <djm@mindrot.org>
6920Date: Fri Jan 31 09:25:34 2014 +1100
6921
6922 - (djm) [sandbox-seccomp-filter.c sandbox-systrace.c] Allow shutdown(2)
6923 syscall from sandboxes; it may be called by packet_close.
6924
6925commit cdb6c90811caa5df2df856be9b0b16db020fe31d
6926Author: Damien Miller <djm@mindrot.org>
6927Date: Thu Jan 30 12:50:17 2014 +1100
6928
6929 - (djm) Release openssh-6.5p1
6930
6931commit 996ea80b1884b676a901439f1f2681eb6ff68501
6932Author: Damien Miller <djm@mindrot.org>
6933Date: Thu Jan 30 12:49:55 2014 +1100
6934
6935 trim entries prior to openssh-6.0p1
6936
6937commit f5bbd3b657b6340551c8a95f74a70857ff8fac79
6938Author: Damien Miller <djm@mindrot.org>
6939Date: Thu Jan 30 11:26:46 2014 +1100
6940
6941 - (djm) [configure.ac atomicio.c] Kludge around NetBSD offering
6942 different symbols for 'read' when various compiler flags are
6943 in use, causing atomicio.c comparisons against it to break and
6944 read/write operations to hang; ok dtucker
6945
6946commit c2868192ddc4e1420a50389e18c05db20b0b1f32
6947Author: Damien Miller <djm@mindrot.org>
6948Date: Thu Jan 30 10:21:19 2014 +1100
6949
6950 - (djm) [configure.ac] Only check for width-specified integer types
6951 in headers that actually exist. patch from Tom G. Christensen;
6952 ok dtucker@
6953
6954commit c161fc90fc86e2035710570238a9e1ca7a68d2a5
6955Author: Damien Miller <djm@mindrot.org>
6956Date: Wed Jan 29 21:01:33 2014 +1100
6957
6958 - (djm) [configure.ac] Fix broken shell test '==' vs '='; patch from
6959 Tom G. Christensen
6960
6961commit 6f917ad376481995ab7d29fb53b08ec8d507eb9e
6962Author: Tim Rice <tim@multitalents.net>
6963Date: Tue Jan 28 10:26:25 2014 -0800
6964
6965 - (tim) [regress/agent.sh regress/agent-ptrace.sh] Assign $? to a variable
6966 when used as an error message inside an if statement so we display the
6967 correct into. agent.sh patch from Petr Lautrbach.
6968
6969commit ab16ef4152914d44ce6f76e48167d26d22f66a06
6970Author: Damien Miller <djm@mindrot.org>
6971Date: Tue Jan 28 15:08:12 2014 +1100
6972
6973 - (djm) [sshd.c] Use kill(0, ...) instead of killpg(0, ...); the
6974 latter being specified to have undefined behaviour in SUSv3;
6975 ok dtucker
6976
6977commit ab0394905884dc6e58c3721211c6b38fb8fc2ca8
6978Author: Damien Miller <djm@mindrot.org>
6979Date: Tue Jan 28 15:07:10 2014 +1100
6980
6981 - (djm) [configure.ac] Search for inet_ntop in libnsl and libresovl;
6982 ok dtucker
6983
6984commit 4ab20a82d4d4168d62318923f62382f6ef242fcd
6985Author: Darren Tucker <dtucker@zip.com.au>
6986Date: Mon Jan 27 17:35:04 2014 +1100
6987
6988 - (dtucker) [Makefile.in] Remove trailing backslash which some make
6989 implementations (eg older Solaris) do not cope with.
6990
6991commit e7e8b3cfe9f8665faaf0e68b33df5bbb431bd129
6992Author: Darren Tucker <dtucker@zip.com.au>
6993Date: Mon Jan 27 17:32:50 2014 +1100
6994
6995 Welcome to 2014
6996
6997commit 5b447c0aac0dd444251e276f6bb3bbbe1c05331c
6998Author: Damien Miller <djm@mindrot.org>
6999Date: Sun Jan 26 09:46:53 2014 +1100
7000
7001 - (djm) [configure.ac] correct AC_DEFINE for previous.
7002
7003commit 2035b2236d3b1f76c749c642a43e03c85eae76e6
7004Author: Damien Miller <djm@mindrot.org>
7005Date: Sun Jan 26 09:39:53 2014 +1100
7006
7007 - (djm) [configure.ac sandbox-capsicum.c sandbox-rlimit.c] Disable
7008 RLIMIT_NOFILE pseudo-sandbox on FreeBSD. In some configurations,
7009 libc will attempt to open additional file descriptors for crypto
7010 offload and crash if they cannot be opened.
7011
7012commit a92ac7410475fbb00383c7402aa954dc0a75ae19
7013Author: Damien Miller <djm@mindrot.org>
7014Date: Sun Jan 26 09:38:03 2014 +1100
7015
7016 - markus@cvs.openbsd.org 2014/01/25 20:35:37
7017 [kex.c]
7018 dh_need needs to be set to max(seclen, blocksize, ivlen, mac_len)
7019 ok dtucker@, noted by mancha
7020
7021commit 76eea4ab4e658670ca6e76dd1e6d17f262208b57
7022Author: Damien Miller <djm@mindrot.org>
7023Date: Sun Jan 26 09:37:25 2014 +1100
7024
7025 - dtucker@cvs.openbsd.org 2014/01/25 10:12:50
7026 [cipher.c cipher.h kex.c kex.h kexgexc.c]
7027 Add a special case for the DH group size for 3des-cbc, which has an
7028 effective strength much lower than the key size. This causes problems
7029 with some cryptlib implementations, which don't support group sizes larger
7030 than 4k but also don't use the largest group size it does support as
7031 specified in the RFC. Based on a patch from Petr Lautrbach at Redhat,
7032 reduced by me with input from Markus. ok djm@ markus@
7033
7034commit 603b8f47f1cd9ed95a2017447db8e60ca6704594
7035Author: Damien Miller <djm@mindrot.org>
7036Date: Sat Jan 25 13:16:59 2014 +1100
7037
7038 - (djm) [configure.ac] autoconf sets finds to 'yes' not '1', so test
7039 against the correct thing.
7040
7041commit c96d85376d779b6ac61525b5440010d344d2f23f
7042Author: Damien Miller <djm@mindrot.org>
7043Date: Sat Jan 25 13:12:28 2014 +1100
7044
7045 - (djm) [configure.ac] Do not attempt to use capsicum sandbox unless
7046 sys/capability.h exists and cap_rights_limit is in libc. Fixes
7047 build on FreeBSD9x which provides the header but not the libc
7048 support.
7049
7050commit f62ecef9939cb3dbeb10602fd705d4db3976d822
7051Author: Damien Miller <djm@mindrot.org>
7052Date: Sat Jan 25 12:34:38 2014 +1100
7053
7054 - (djm) [configure.ac] Fix detection of capsicum sandbox on FreeBSD
7055
7056commit b0e0f760b861676a3fe5c40133b270713d5321a9
7057Author: Damien Miller <djm@mindrot.org>
7058Date: Fri Jan 24 14:27:04 2014 +1100
7059
7060 - (djm) [Makefile.in regress/scp-ssh-wrapper.sh regress/scp.sh] Make
7061 the scp regress test actually test the built scp rather than the one
7062 in $PATH. ok dtucker@
7063
7064commit 42a092530159637da9cb7f9e1b5f4679e34a85e6
7065Author: Darren Tucker <dtucker@zip.com.au>
7066Date: Thu Jan 23 23:14:39 2014 +1100
7067
7068 - (dtucker) [configure.ac] NetBSD's (and FreeBSD's) strnvis is gratuitously
7069 incompatible with OpenBSD's despite post-dating it by more than a decade.
7070 Declare it as broken, and document FreeBSD's as the same. ok djm@
7071
7072commit 617da33c20cb59f9ea6c99c881d92493371ef7b8
7073Author: Tim Rice <tim@multitalents.net>
7074Date: Wed Jan 22 19:16:10 2014 -0800
7075
7076 - (tim) [session.c] Improve error reporting on set_id().
7077
7078commit 5c2ff5e31f57d303ebb414d84a934c02728fa568
7079Author: Damien Miller <djm@mindrot.org>
7080Date: Wed Jan 22 21:30:12 2014 +1100
7081
7082 - (djm) [configure.ac aclocal.m4] More tests to detect fallout from
7083 platform hardening options: include some long long int arithmatic
7084 to detect missing support functions for -ftrapv in libgcc and
7085 equivalents, actually test linking when -ftrapv is supplied and
7086 set either both -pie/-fPIE or neither. feedback and ok dtucker@
7087
7088commit 852472a54b8a0dc3e53786b313baaa86850a4273
7089Author: Damien Miller <djm@mindrot.org>
7090Date: Wed Jan 22 16:31:18 2014 +1100
7091
7092 - (djm) [configure.ac] Unless specifically requested, only attempt
7093 to build Position Independent Executables on gcc >= 4.x; ok dtucker
7094
7095commit ee87838786cef0194db36ae0675b3e7c4e8ec661
7096Author: Damien Miller <djm@mindrot.org>
7097Date: Wed Jan 22 16:30:15 2014 +1100
7098
7099 - (djm) [openbsd-compat/setproctitle.c] Don't fail to compile if a
7100 platform that is expected to use the reuse-argv style setproctitle
7101 hack surprises us by providing a setproctitle in libc; ok dtucker
7102
7103commit 5c96a154c7940fa67b1f11c421e390dbbc159f27
7104Author: Damien Miller <djm@mindrot.org>
7105Date: Tue Jan 21 13:10:26 2014 +1100
7106
7107 - (djm) [aclocal.m4] Flesh out the code run in the OSSH_CHECK_CFLAG_COMPILE
7108 and OSSH_CHECK_LDFLAG_LINK tests to give them a better chance of
7109 detecting toolchain-related problems; ok dtucker
7110
7111commit 9464ba6fb34bb42eb3501ec3c5143662e75674bf
7112Author: Tim Rice <tim@multitalents.net>
7113Date: Mon Jan 20 17:59:28 2014 -0800
7114
7115 - (tim) [platform.c session.c] Fix bug affecting SVR5 platforms introduced
7116 with sftp chroot support. Move set_id call after chroot.
7117
7118commit a6d573caa14d490e6c42fb991bcb5c6860ec704b
7119Author: Darren Tucker <dtucker@zip.com.au>
7120Date: Tue Jan 21 12:50:46 2014 +1100
7121
7122 - (dtucker) [aclocal.m4] Differentiate between compile-time and link-time
7123 tests in the configure output. ok djm.
7124
7125commit 096118dc73ab14810b3c12785c0b5acb01ad6123
7126Author: Darren Tucker <dtucker@zip.com.au>
7127Date: Tue Jan 21 12:48:51 2014 +1100
7128
7129 - (dtucker) [configure.ac] Make PIE a configure-time option which defaults
7130 to on platforms where it's known to be reliably detected and off elsewhere.
7131 Works around platforms such as FreeBSD 9.1 where it does not interop with
7132 -ftrapv (it seems to work but fails when trying to link ssh). ok djm@
7133
7134commit f9df7f6f477792254eab33cdef71a6d66488cb88
7135Author: Damien Miller <djm@mindrot.org>
7136Date: Mon Jan 20 20:07:15 2014 +1100
7137
7138 - (djm) [regress/cert-hostkey.sh] Fix regress failure on platforms that
7139 skip one or more key types (e.g. RHEL/CentOS 6.5); ok dtucker@
7140
7141commit c74e70eb52ccc0082bd5a70b5798bb01c114d138
7142Author: Darren Tucker <dtucker@zip.com.au>
7143Date: Mon Jan 20 13:18:09 2014 +1100
7144
7145 - (dtucker) [gss-serv-krb5.c] Fall back to krb5_cc_gen_new if the Kerberos
7146 implementation does not have krb5_cc_new_unique, similar to what we do
7147 in auth-krb5.c.
7148
7149commit 3510979e83b6a18ec8773c64c3fa04aa08b2e783
7150Author: Damien Miller <djm@mindrot.org>
7151Date: Mon Jan 20 12:41:53 2014 +1100
7152
7153 - djm@cvs.openbsd.org 2014/01/20 00:08:48
7154 [digest.c]
7155 memleak; found by Loganaden Velvindron @ AfriNIC; ok markus@
7156
7157commit 7eee358d7a6580479bee5cd7e52810ebfd03e5b2
7158Author: Darren Tucker <dtucker@zip.com.au>
7159Date: Sun Jan 19 22:37:02 2014 +1100
7160
7161 - dtucker@cvs.openbsd.org 2014/01/19 11:21:51
7162 [addrmatch.c]
7163 Cast the sizeof to socklen_t so it'll work even if the supplied len is
7164 negative. Suggested by and ok djm, ok deraadt.
7165
7166commit b7e01c09b56ab26e8fac56bbce0fd25e36d12bb0
7167Author: Darren Tucker <dtucker@zip.com.au>
7168Date: Sun Jan 19 22:36:13 2014 +1100
7169
7170 - djm@cvs.openbsd.org 2014/01/19 04:48:08
7171 [ssh_config.5]
7172 fix inverted meaning of 'no' and 'yes' for CanonicalizeFallbackLocal
7173
7174commit 7b1ded04adce42efa25ada7c3a39818d3109b724
7175Author: Darren Tucker <dtucker@zip.com.au>
7176Date: Sun Jan 19 15:30:02 2014 +1100
7177
7178 - dtucker@cvs.openbsd.org 2014/01/19 04:17:29
7179 [canohost.c addrmatch.c]
7180 Cast socklen_t when comparing to size_t and use socklen_t to iterate over
7181 the ip options, both to prevent signed/unsigned comparison warnings.
7182 Patch from vinschen at redhat via portable openssh, begrudging ok deraadt.
7183
7184commit 293ee3c9f0796d99ebb033735f0e315f2e0180bf
7185Author: Darren Tucker <dtucker@zip.com.au>
7186Date: Sun Jan 19 15:28:01 2014 +1100
7187
7188 - dtucker@cvs.openbsd.org 2014/01/18 09:36:26
7189 [session.c]
7190 explicitly define USE_PIPES to 1 to prevent redefinition warnings in
7191 portable on platforms that use pipes for everything. From redhat @
7192 redhat.
7193
7194commit 2aca159d05f9e7880d1d8f1ce49a218840057f53
7195Author: Darren Tucker <dtucker@zip.com.au>
7196Date: Sun Jan 19 15:25:34 2014 +1100
7197
7198 - dtucker@cvs.openbsd.org 2014/01/17 06:23:24
7199 [sftp-server.c]
7200 fix log message statvfs. ok djm
7201
7202commit 841f7da89ae8b367bb502d61c5c41916c6e7ae4c
7203Author: Darren Tucker <dtucker@zip.com.au>
7204Date: Sat Jan 18 22:12:15 2014 +1100
7205
7206 - (dtucker) [sandbox-capsicum.c] Correct some error messages and make the
7207 return value check for cap_enter() consistent with the other uses in
7208 FreeBSD. From by Loganaden Velvindron @ AfriNIC via bz#2140.
7209
7210commit fdce3731660699b2429e93e822f2ccbaccd163ae
7211Author: Darren Tucker <dtucker@zip.com.au>
7212Date: Sat Jan 18 21:12:42 2014 +1100
7213
7214 - (dtucker) [configure.ac] On Cygwin the getopt variables (like optargs,
7215 optind) are defined in getopt.h already. Unfortunately they are defined as
7216 "declspec(dllimport)" for historical reasons, because the GNU linker didn't
7217 allow auto-import on PE/COFF targets way back when. The problem is the
7218 dllexport attributes collide with the definitions in the various source
7219 files in OpenSSH, which obviousy define the variables without
7220 declspec(dllimport). The least intrusive way to get rid of these warnings
7221 is to disable warnings for GCC compiler attributes when building on Cygwin.
7222 Patch from vinschen at redhat.com.
7223
7224commit 1411c9263f46e1ee49d0d302bf7258ebe69ce827
7225Author: Darren Tucker <dtucker@zip.com.au>
7226Date: Sat Jan 18 21:03:59 2014 +1100
7227
7228 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] Add missing function
7229 declarations that stopped being included when we stopped including
7230 <windows.h> from openbsd-compat/bsd-cygwin_util.h. Patch from vinschen at
7231 redhat.com.
7232
7233commit 89c532d843c95a085777c66365067d64d1937eb9
7234Author: Darren Tucker <dtucker@zip.com.au>
7235Date: Sat Jan 18 20:43:49 2014 +1100
7236
7237 - (dtucker) [uidswap.c] Prevent unused variable warnings on Cygwin. Patch
7238 from vinschen at redhat.com
7239
7240commit 355f861022be7b23d3009fae8f3c9f6f7fc685f7
7241Author: Darren Tucker <dtucker@zip.com.au>
7242Date: Sat Jan 18 00:12:38 2014 +1100
7243
7244 - (dtucker) [defines.h] Move our definitions of uintXX_t types down to after
7245 they're defined if we have to define them ourselves. Fixes builds on old
7246 AIX.
7247
7248commit a3357661ee1d5d553294f36e4940e8285c7f1332
7249Author: Darren Tucker <dtucker@zip.com.au>
7250Date: Sat Jan 18 00:03:57 2014 +1100
7251
7252 - (dtucker) [readconf.c] Wrap paths.h inside an ifdef. Allows building on
7253 Solaris.
7254
7255commit 9edcbff46ff01c8d5dee9c1aa843f09e9ad8a80e
7256Author: Darren Tucker <dtucker@zip.com.au>
7257Date: Fri Jan 17 21:54:32 2014 +1100
7258
7259 - (dtucker) [configure.ac] Have --without-toolchain-hardening not turn off
7260 stack-protector since that has a separate flag that's been around a while.
7261
7262commit 6d725687c490d4ba957a1bbc0ba0a2956c09fa69
7263Author: Darren Tucker <dtucker@zip.com.au>
7264Date: Fri Jan 17 19:17:34 2014 +1100
7265
7266 - (dtucker) [configure.ac] Also look in inttypes.h for uintXX_t types.
7267
7268commit 5055699c7f7c7ef21703a443ec73117da392f6ae
7269Author: Darren Tucker <dtucker@zip.com.au>
7270Date: Fri Jan 17 18:48:22 2014 +1100
7271
7272 - (dtucker) [openbsd-compat/bsd-statvfs.h] Only start including headers if we
7273 need them to cut down on the name collisions.
7274
7275commit a5cf1e220def07290260e4125e74f41ac75cf88d
7276Author: Darren Tucker <dtucker@zip.com.au>
7277Date: Fri Jan 17 18:10:58 2014 +1100
7278
7279 - (dtucker) [configure.ac openbsd-compat/bsd-statvfs.c
7280 openbsd-compat/bsd-statvfs.h] Implement enough of statvfs on top of statfs
7281 to be useful (and for the regression tests to pass) on platforms that
7282 have statfs and fstatfs. ok djm@
7283
7284commit 1357d71d7b6d269969520aaa3e84d312ec971d5b
7285Author: Darren Tucker <dtucker@zip.com.au>
7286Date: Fri Jan 17 18:00:40 2014 +1100
7287
7288 - (dtucker) Fix typo in #ifndef.
7289
7290commit d23a91ffb289d3553a58b7a60cec39fba9f0f506
7291Author: Darren Tucker <dtucker@zip.com.au>
7292Date: Fri Jan 17 17:32:30 2014 +1100
7293
7294 - (dtucker) [configure.ac digest.c openbsd-compat/openssl-compat.c
7295 openbsd-compat/openssl-compat.h] Add compatibility layer for older
7296 openssl versions. ok djm@
7297
7298commit 868ea1ea1c1bfdbee5dbad78f81999c5983ecf31
7299Author: Damien Miller <djm@mindrot.org>
7300Date: Fri Jan 17 16:47:04 2014 +1100
7301
7302 - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c]
7303 [sandbox-null.c sandbox-rlimit.c sandbox-seccomp-filter.c]
7304 [sandbox-systrace.c ssh-sandbox.h sshd.c] Support preauth sandboxing
7305 using the Capsicum API introduced in FreeBSD 10. Patch by Dag-Erling
7306 Smorgrav, updated by Loganaden Velvindron @ AfriNIC; ok dtucker@
7307
7308commit a9d186a8b50d18869a10e9203abf71c83ddb1f79
7309Author: Darren Tucker <dtucker@zip.com.au>
7310Date: Fri Jan 17 16:30:49 2014 +1100
7311
7312 - dtucker@cvs.openbsd.org 2014/01/17 05:26:41
7313 [digest.c]
7314 remove unused includes. ok djm@
7315
7316commit 5f1c57a7a7eb39c0e4fee3367712337dbcaef024
7317Author: Darren Tucker <dtucker@zip.com.au>
7318Date: Fri Jan 17 16:29:45 2014 +1100
7319
7320 - djm@cvs.openbsd.org 2014/01/17 00:21:06
7321 [sftp-client.c]
7322 signed/unsigned comparison warning fix; from portable (Id sync only)
7323
7324commit c548722361d89fb12c108528f96b306a26477b18
7325Author: Darren Tucker <dtucker@zip.com.au>
7326Date: Fri Jan 17 15:12:16 2014 +1100
7327
7328 - (dtucker) [configure.ac] Split AC_CHECK_FUNCS for OpenSSL functions into
7329 separate lines and alphabetize for easier diffing of changes.
7330
7331commit acad351a5b1c37de9130c9c1710445cc45a7f6b9
7332Author: Darren Tucker <dtucker@zip.com.au>
7333Date: Fri Jan 17 14:20:05 2014 +1100
7334
7335 - (dtucker) [defines.h] Add typedefs for uintXX_t types for platforms that
7336 don't have them.
7337
7338commit c3ed065ce8417aaa46490836648c173a5010f226
7339Author: Darren Tucker <dtucker@zip.com.au>
7340Date: Fri Jan 17 14:18:45 2014 +1100
7341
7342 - (dtucker) [openbsd-compat/bcrypt_pbkdf.c] Wrap stdlib.h include inside
7343 #ifdef HAVE_STDINT_H.
7344
7345commit f45f78ae437062c7d9506c5f475b7215f486be44
7346Author: Darren Tucker <dtucker@zip.com.au>
7347Date: Fri Jan 17 12:43:43 2014 +1100
7348
7349 - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c] Include
7350 includes.h to pull in all of the compatibility stuff.
7351
7352commit 99df369d0340caac145d57f700d830147ff18b87
7353Author: Darren Tucker <dtucker@zip.com.au>
7354Date: Fri Jan 17 12:42:17 2014 +1100
7355
7356 - (dtucker) [poly1305.c] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
7357
7358commit ac413b62ea1957e80c711acbe0c11b908273fc01
7359Author: Darren Tucker <dtucker@zip.com.au>
7360Date: Fri Jan 17 12:31:33 2014 +1100
7361
7362 - (dtucker) [crypto_api.h] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
7363
7364commit 1c4a011e9c939e74815346a560843e1862c300b8
7365Author: Darren Tucker <dtucker@zip.com.au>
7366Date: Fri Jan 17 12:23:23 2014 +1100
7367
7368 - (dtucker) [loginrec.c] Cast to the types specfied in the format
7369 specification to prevent warnings.
7370
7371commit c3d483f9a8275be1113535a1e0d0e384f605f3c4
7372Author: Damien Miller <djm@mindrot.org>
7373Date: Fri Jan 17 11:20:26 2014 +1100
7374
7375 - (djm) [sftp-client.c] signed/unsigned comparison fix
7376
7377commit fd994379dd972417d0491767f7cd9b5bf23f4975
7378Author: Darren Tucker <dtucker@zip.com.au>
7379Date: Fri Jan 17 09:53:24 2014 +1100
7380
7381 - (dtucker) [aclocal.m4 configure.ac] Add some additional compiler/toolchain
7382 hardening flags including -fstack-protector-strong. These default to on
7383 if the toolchain supports them, but there is a configure-time knob
7384 (--without-hardening) to disable them if necessary. ok djm@
7385
7386commit 366224d21768ee8ec28cfbcc5fbade1b32582d58
7387Author: Damien Miller <djm@mindrot.org>
7388Date: Thu Jan 16 18:51:44 2014 +1100
7389
7390 - (djm) [README] update release notes URL.
7391
7392commit 2ae77e64f8fa82cbf25c9755e8e847709b978b40
7393Author: Damien Miller <djm@mindrot.org>
7394Date: Thu Jan 16 18:51:07 2014 +1100
7395
7396 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
7397 [contrib/suse/openssh.spec] Crank RPM spec version numbers.
7398
7399commit 0fa29e6d777c73a1b4ddd3b996b06ee20022ae8a
7400Author: Damien Miller <djm@mindrot.org>
7401Date: Thu Jan 16 18:42:31 2014 +1100
7402
7403 - djm@cvs.openbsd.org 2014/01/16 07:32:00
7404 [version.h]
7405 openssh-6.5
7406
7407commit 52c371cd6d2598cc73d4e633811b3012119c47e2
7408Author: Damien Miller <djm@mindrot.org>
7409Date: Thu Jan 16 18:42:10 2014 +1100
7410
7411 - djm@cvs.openbsd.org 2014/01/16 07:31:09
7412 [sftp-client.c]
7413 needless and incorrect cast to size_t can break resumption of
7414 large download; patch from tobias@
7415
7416commit 91b580e4bec55118bf96ab3cdbe5a50839e75d0a
7417Author: Damien Miller <djm@mindrot.org>
7418Date: Sun Jan 12 19:21:22 2014 +1100
7419
7420 - djm@cvs.openbsd.org 2014/01/12 08:13:13
7421 [bufaux.c buffer.h kex.c kex.h kexc25519.c kexc25519c.c kexc25519s.c]
7422 [kexdhc.c kexdhs.c kexecdhc.c kexecdhs.c kexgexc.c kexgexs.c]
7423 avoid use of OpenSSL BIGNUM type and functions for KEX with
7424 Curve25519 by adding a buffer_put_bignum2_from_string() that stores
7425 a string using the bignum encoding rules. Will make it easier to
7426 build a reduced-feature OpenSSH without OpenSSL in the future;
7427 ok markus@
7428
7429commit af5d4481f4c7c8c3c746e68b961bb85ef907800e
7430Author: Damien Miller <djm@mindrot.org>
7431Date: Sun Jan 12 19:20:47 2014 +1100
7432
7433 - djm@cvs.openbsd.org 2014/01/10 05:59:19
7434 [sshd_config]
7435 the /etc/ssh/ssh_host_ed25519_key is loaded by default too
7436
7437commit 58cd63bc63038acddfb4051ed14e11179d8f4941
7438Author: Damien Miller <djm@mindrot.org>
7439Date: Fri Jan 10 10:59:24 2014 +1100
7440
7441 - djm@cvs.openbsd.org 2014/01/09 23:26:48
7442 [sshconnect.c sshd.c]
7443 ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient,
7444 deranged and might make some attacks on KEX easier; ok markus@
7445
7446commit b3051d01e505c9c2dc00faab472a0d06fa6b0e65
7447Author: Damien Miller <djm@mindrot.org>
7448Date: Fri Jan 10 10:58:53 2014 +1100
7449
7450 - djm@cvs.openbsd.org 2014/01/09 23:20:00
7451 [digest.c digest.h hostfile.c kex.c kex.h kexc25519.c kexc25519c.c]
7452 [kexc25519s.c kexdh.c kexecdh.c kexecdhc.c kexecdhs.c kexgex.c kexgexc.c]
7453 [kexgexs.c key.c key.h roaming_client.c roaming_common.c schnorr.c]
7454 [schnorr.h ssh-dss.c ssh-ecdsa.c ssh-rsa.c sshconnect2.c]
7455 Introduce digest API and use it to perform all hashing operations
7456 rather than calling OpenSSL EVP_Digest* directly. Will make it easier
7457 to build a reduced-feature OpenSSH without OpenSSL in future;
7458 feedback, ok markus@
7459
7460commit e00e413dd16eb747fb2c15a099971d91c13cf70f
7461Author: Damien Miller <djm@mindrot.org>
7462Date: Fri Jan 10 10:40:45 2014 +1100
7463
7464 - guenther@cvs.openbsd.org 2014/01/09 03:26:00
7465 [sftp-common.c]
7466 When formating the time for "ls -l"-style output, show dates in the future
7467 with the year, and rearrange a comparison to avoid a potentional signed
7468 arithmetic overflow that would give the wrong result.
7469
7470 ok djm@
7471
7472commit 3e49853650448883685cfa32fa382d0ba6d51d48
7473Author: Damien Miller <djm@mindrot.org>
7474Date: Fri Jan 10 10:37:05 2014 +1100
7475
7476 - tedu@cvs.openbsd.org 2014/01/04 17:50:55
7477 [mac.c monitor_mm.c monitor_mm.h xmalloc.c]
7478 use standard types and formats for size_t like variables. ok dtucker
7479
7480commit a9c1e500ef609795cbc662848edb1a1dca279c81
7481Author: Damien Miller <djm@mindrot.org>
7482Date: Wed Jan 8 16:13:12 2014 +1100
7483
7484 - (djm) [regress/.cvsignore] Ignore regress test droppings; ok dtucker@
7485
7486commit 324541e5264e1489ca0babfaf2b39612eb80dfb3
7487Author: Damien Miller <djm@mindrot.org>
7488Date: Tue Dec 31 12:25:40 2013 +1100
7489
7490 - djm@cvs.openbsd.org 2013/12/30 23:52:28
7491 [auth2-hostbased.c auth2-pubkey.c compat.c compat.h ssh-rsa.c]
7492 [sshconnect.c sshconnect2.c sshd.c]
7493 refuse RSA keys from old proprietary clients/servers that use the
7494 obsolete RSA+MD5 signature scheme. it will still be possible to connect
7495 with these clients/servers but only DSA keys will be accepted, and we'll
7496 deprecate them entirely in a future release. ok markus@
7497
7498commit 9f4c8e797ea002a883307ca906f1f1f815010e78
7499Author: Damien Miller <djm@mindrot.org>
7500Date: Sun Dec 29 17:57:46 2013 +1100
7501
7502 - (djm) [regress/Makefile] Add some generated files for cleaning
7503
7504commit 106bf1ca3c7a5fdc34f9fd7a1fe651ca53085bc5
7505Author: Damien Miller <djm@mindrot.org>
7506Date: Sun Dec 29 17:54:03 2013 +1100
7507
7508 - djm@cvs.openbsd.org 2013/12/29 05:57:02
7509 [sshconnect.c]
7510 when showing other hostkeys, don't forget Ed25519 keys
7511
7512commit 0fa47cfb32c239117632cab41e4db7d3e6de5e91
7513Author: Damien Miller <djm@mindrot.org>
7514Date: Sun Dec 29 17:53:39 2013 +1100
7515
7516 - djm@cvs.openbsd.org 2013/12/29 05:42:16
7517 [ssh.c]
7518 don't forget to load Ed25519 certs too
7519
7520commit b9a95490daa04cc307589897f95bfaff324ad2c9
7521Author: Damien Miller <djm@mindrot.org>
7522Date: Sun Dec 29 17:50:15 2013 +1100
7523
7524 - djm@cvs.openbsd.org 2013/12/29 04:35:50
7525 [authfile.c]
7526 don't refuse to load Ed25519 certificates
7527
7528commit f72cdde6e6fabc51d2a62f4e75b8b926d9d7ee89
7529Author: Damien Miller <djm@mindrot.org>
7530Date: Sun Dec 29 17:49:55 2013 +1100
7531
7532 - djm@cvs.openbsd.org 2013/12/29 04:29:25
7533 [authfd.c]
7534 allow deletion of ed25519 keys from the agent
7535
7536commit 29ace1cb68cc378a464c72c0fd67aa5f9acd6b5b
7537Author: Damien Miller <djm@mindrot.org>
7538Date: Sun Dec 29 17:49:31 2013 +1100
7539
7540 - djm@cvs.openbsd.org 2013/12/29 04:20:04
7541 [key.c]
7542 to make sure we don't omit any key types as valid CA keys again,
7543 factor the valid key type check into a key_type_is_valid_ca()
7544 function
7545
7546commit 9de4fcdc5a9cff48d49a3e2f6194d3fb2d7ae34d
7547Author: Damien Miller <djm@mindrot.org>
7548Date: Sun Dec 29 17:49:13 2013 +1100
7549
7550 - djm@cvs.openbsd.org 2013/12/29 02:49:52
7551 [key.c]
7552 correct comment for key_drop_cert()
7553
7554commit 5baeacf8a80f054af40731c6f92435f9164b8e02
7555Author: Damien Miller <djm@mindrot.org>
7556Date: Sun Dec 29 17:48:55 2013 +1100
7557
7558 - djm@cvs.openbsd.org 2013/12/29 02:37:04
7559 [key.c]
7560 correct comment for key_to_certified()
7561
7562commit 83f2fe26cb19330712c952eddbd3c0b621674adc
7563Author: Damien Miller <djm@mindrot.org>
7564Date: Sun Dec 29 17:48:38 2013 +1100
7565
7566 - djm@cvs.openbsd.org 2013/12/29 02:28:10
7567 [key.c]
7568 allow ed25519 keys to appear as certificate authorities
7569
7570commit 06122e9a74bb488b0fe0a8f64e1135de870f9cc0
7571Author: Damien Miller <djm@mindrot.org>
7572Date: Sun Dec 29 17:48:15 2013 +1100
7573
7574 - djm@cvs.openbsd.org 2013/12/27 22:37:18
7575 [ssh-rsa.c]
7576 correct comment
7577
7578commit 3e19295c3a253c8dc8660cf45baad7f45fccb969
7579Author: Damien Miller <djm@mindrot.org>
7580Date: Sun Dec 29 17:47:50 2013 +1100
7581
7582 - djm@cvs.openbsd.org 2013/12/27 22:30:17
7583 [ssh-dss.c ssh-ecdsa.c ssh-rsa.c]
7584 make the original RSA and DSA signing/verification code look more like
7585 the ECDSA/Ed25519 ones: use key_type_plain() when checking the key type
7586 rather than tediously listing all variants, use __func__ for debug/
7587 error messages
7588
7589commit 137977180be6254639e2c90245763e6965f8d815
7590Author: Damien Miller <djm@mindrot.org>
7591Date: Sun Dec 29 17:47:14 2013 +1100
7592
7593 - tedu@cvs.openbsd.org 2013/12/21 07:10:47
7594 [ssh-keygen.1]
7595 small typo
7596
7597commit 339a48fe7ffb3186d22bbaa9efbbc3a053e602fd
7598Author: Damien Miller <djm@mindrot.org>
7599Date: Sun Dec 29 17:46:49 2013 +1100
7600
7601 - djm@cvs.openbsd.org 2013/12/19 22:57:13
7602 [poly1305.c poly1305.h]
7603 use full name for author, with his permission
7604
7605commit 0b36c83148976c7c8268f4f41497359e2fb26251
7606Author: Damien Miller <djm@mindrot.org>
7607Date: Sun Dec 29 17:45:51 2013 +1100
7608
7609 - djm@cvs.openbsd.org 2013/12/19 01:19:41
7610 [ssh-agent.c]
7611 bz#2186: don't crash (NULL deref) when deleting PKCS#11 keys from an agent
7612 that has a mix of normal and PKCS#11 keys; fix from jay AT slushpupie.com;
7613 ok dtucker
7614
7615commit 4def184e9b6c36be6d965a9705632fc4c0c2a8af
7616Author: Damien Miller <djm@mindrot.org>
7617Date: Sun Dec 29 17:45:26 2013 +1100
7618
7619 - djm@cvs.openbsd.org 2013/12/19 01:04:36
7620 [channels.c]
7621 bz#2147: fix multiple remote forwardings with dynamically assigned
7622 listen ports. In the s->c message to open the channel we were sending
7623 zero (the magic number to request a dynamic port) instead of the actual
7624 listen port. The client therefore had no way of discriminating between
7625 them.
7626
7627 Diagnosis and fix by ronf AT timeheart.net
7628
7629commit bf25d114e23a803f8feca8926281b1aaedb6191b
7630Author: Damien Miller <djm@mindrot.org>
7631Date: Sun Dec 29 17:44:56 2013 +1100
7632
7633 - djm@cvs.openbsd.org 2013/12/19 00:27:57
7634 [auth-options.c]
7635 simplify freeing of source-address certificate restriction
7636
7637commit bb3dafe7024a5b4e851252e65ee35d45b965e4a8
7638Author: Damien Miller <djm@mindrot.org>
7639Date: Sun Dec 29 17:44:29 2013 +1100
7640
7641 - dtucker@cvs.openbsd.org 2013/12/19 00:19:12
7642 [serverloop.c]
7643 Cast client_alive_interval to u_int64_t before assinging to
7644 max_time_milliseconds to avoid potential integer overflow in the timeout.
7645 bz#2170, patch from Loganaden Velvindron, ok djm@
7646
7647commit ef275ead3dcadde4db1efe7a0aa02b5e618ed40c
7648Author: Damien Miller <djm@mindrot.org>
7649Date: Sun Dec 29 17:44:07 2013 +1100
7650
7651 - djm@cvs.openbsd.org 2013/12/19 00:10:30
7652 [ssh-add.c]
7653 skip requesting smartcard PIN when removing keys from agent; bz#2187
7654 patch from jay AT slushpupie.com; ok dtucker
7655
7656commit 7d97fd9a1cae778c3eacf16e09f5da3689d616c6
7657Author: Damien Miller <djm@mindrot.org>
7658Date: Sun Dec 29 17:40:18 2013 +1100
7659
7660 - (djm) [loginrec.c] Check for username truncation when looking up lastlog
7661 entries
7662
7663commit 77244afe3b6d013b485e0952eaab89b9db83380f
7664Author: Darren Tucker <dtucker@zip.com.au>
7665Date: Sat Dec 21 17:02:39 2013 +1100
7666
7667 20131221
7668 - (dtucker) [regress/keytype.sh] Actually test ecdsa key types.
7669
7670commit 53f8e784dc431a82d31c9b0e95b144507f9330e9
7671Author: Darren Tucker <dtucker@zip.com.au>
7672Date: Thu Dec 19 11:31:44 2013 +1100
7673
7674 - (dtucker) [auth-pam.c] bz#2163: check return value from pam_get_item().
7675 Patch from Loganaden Velvindron.
7676
7677commit 1fcec9d4f265e38af248c4c845986ca8c174bd68
7678Author: Darren Tucker <dtucker@zip.com.au>
7679Date: Thu Dec 19 11:00:12 2013 +1100
7680
7681 - (dtucker) [configure.ac] bz#2178: Don't try to use BSM on Solaris versions
7682 greater than 11 either rather than just 11. Patch from Tomas Kuthan.
7683
7684commit 6674eb9683afd1ea4eb35670b5e66815543a759e
7685Author: Damien Miller <djm@mindrot.org>
7686Date: Wed Dec 18 17:50:39 2013 +1100
7687
7688 - markus@cvs.openbsd.org 2013/12/17 10:36:38
7689 [crypto_api.h]
7690 I've assempled the header file by cut&pasting from generated headers
7691 and the source files.
7692
7693commit d58a5964426ee014384d67d775d16712e93057f3
7694Author: Damien Miller <djm@mindrot.org>
7695Date: Wed Dec 18 17:50:13 2013 +1100
7696
7697 - djm@cvs.openbsd.org 2013/12/15 21:42:35
7698 [cipher-chachapoly.c]
7699 add some comments and constify a constant
7700
7701commit 059321d19af24d87420de3193f79dfab23556078
7702Author: Damien Miller <djm@mindrot.org>
7703Date: Wed Dec 18 17:49:48 2013 +1100
7704
7705 - pascal@cvs.openbsd.org 2013/12/15 18:17:26
7706 [ssh-add.c]
7707 Make ssh-add also add .ssh/id_ed25519; fixes lie in manual page.
7708 ok markus@
7709
7710commit 155b5a5bf158767f989215479ded2a57f331e1c6
7711Author: Damien Miller <djm@mindrot.org>
7712Date: Wed Dec 18 17:48:32 2013 +1100
7713
7714 - markus@cvs.openbsd.org 2013/12/09 11:08:17
7715 [crypto_api.h]
7716 remove unused defines
7717
7718commit 8a56dc2b6b48b05590810e7f4c3567508410000c
7719Author: Damien Miller <djm@mindrot.org>
7720Date: Wed Dec 18 17:48:11 2013 +1100
7721
7722 - markus@cvs.openbsd.org 2013/12/09 11:03:45
7723 [blocks.c ed25519.c fe25519.c fe25519.h ge25519.c ge25519.h]
7724 [ge25519_base.data hash.c sc25519.c sc25519.h verify.c]
7725 Add Authors for the public domain ed25519/nacl code.
7726 see also http://nacl.cr.yp.to/features.html
7727 All of the NaCl software is in the public domain.
7728 and http://ed25519.cr.yp.to/software.html
7729 The Ed25519 software is in the public domain.
7730
7731commit 6575c3acf31fca117352f31f37b16ae46e664837
7732Author: Damien Miller <djm@mindrot.org>
7733Date: Wed Dec 18 17:47:02 2013 +1100
7734
7735 - dtucker@cvs.openbsd.org 2013/12/08 09:53:27
7736 [sshd_config.5]
7737 Use a literal for the default value of KEXAlgorithms. ok deraadt jmc
7738
7739commit 8ba0ead6985ea14999265136b14ffd5aeec516f9
7740Author: Damien Miller <djm@mindrot.org>
7741Date: Wed Dec 18 17:46:27 2013 +1100
7742
7743 - naddy@cvs.openbsd.org 2013/12/07 11:58:46
7744 [ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8 ssh.1]
7745 [ssh_config.5 sshd.8 sshd_config.5]
7746 add missing mentions of ed25519; ok djm@
7747
7748commit 4f752cf71cf44bf4bc777541156c2bf56daf9ce9
7749Author: Damien Miller <djm@mindrot.org>
7750Date: Wed Dec 18 17:45:35 2013 +1100
7751
7752 - djm@cvs.openbsd.org 2013/12/07 08:08:26
7753 [ssh-keygen.1]
7754 document -a and -o wrt new key format
7755
7756commit 6d6fcd14e23a9053198342bb379815b15e504084
7757Author: Damien Miller <djm@mindrot.org>
7758Date: Sun Dec 8 15:53:28 2013 +1100
7759
7760 - (djm) [Makefile.in regress/Makefile regress/agent-ptrace.sh]
7761 [regress/setuid-allowed.c] Check that ssh-agent is not on a no-setuid
7762 filesystem before running agent-ptrace.sh; ok dtucker
7763
7764commit 7e6e42fb532c7dafd7078ef5e9e2d3e47fcf6752
7765Author: Damien Miller <djm@mindrot.org>
7766Date: Sun Dec 8 08:23:08 2013 +1100
7767
7768 - (djm) [openbsd-compat/bsd-setres_id.c] Missing header; from Corinna
7769 Vinschen
7770
7771commit da3ca351b49d52ae85db2e3998265dc3c6617068
7772Author: Damien Miller <djm@mindrot.org>
7773Date: Sat Dec 7 21:43:46 2013 +1100
7774
7775 - (djm) [Makefile.in] PATHSUBS and keygen bits for Ed25519; from
7776 Loganaden Velvindron @ AfriNIC in bz#2179
7777
7778commit eb401585bb8336cbf81fe4fc58eb9f7cac3ab874
7779Author: Damien Miller <djm@mindrot.org>
7780Date: Sat Dec 7 17:07:15 2013 +1100
7781
7782 - (djm) [regress/cert-hostkey.sh] Fix merge botch
7783
7784commit f54542af3ad07532188b10136ae302314ec69ed6
7785Author: Damien Miller <djm@mindrot.org>
7786Date: Sat Dec 7 16:32:44 2013 +1100
7787
7788 - markus@cvs.openbsd.org 2013/12/06 13:52:46
7789 [regress/Makefile regress/agent.sh regress/cert-hostkey.sh]
7790 [regress/cert-userkey.sh regress/keytype.sh]
7791 test ed25519 support; from djm@
7792
7793commit f104da263de995f66b6861b4f3368264ee483d7f
7794Author: Damien Miller <djm@mindrot.org>
7795Date: Sat Dec 7 12:37:53 2013 +1100
7796
7797 - (djm) [ed25519.c ssh-ed25519.c openbsd-compat/Makefile.in]
7798 [openbsd-compat/bcrypt_pbkdf.c] Make ed25519/new key format compile on
7799 Linux
7800
7801commit 1ff130dac9b7aea0628f4ad30683431fe35e0020
7802Author: Damien Miller <djm@mindrot.org>
7803Date: Sat Dec 7 11:51:51 2013 +1100
7804
7805 - [configure.ac openbsd-compat/Makefile.in openbsd-compat/bcrypt_pbkdf.c]
7806 [openbsd-compat/blf.h openbsd-compat/blowfish.c]
7807 [openbsd-compat/openbsd-compat.h] Start at supporting bcrypt_pbkdf in
7808 portable.
7809
7810commit 4260828a2958ebe8c96f66d8301dac53f4cde556
7811Author: Damien Miller <djm@mindrot.org>
7812Date: Sat Dec 7 11:38:03 2013 +1100
7813
7814 - [authfile.c] Conditionalise inclusion of util.h
7815
7816commit a913442bac8a26fd296a3add51293f8f6f9b3b4c
7817Author: Damien Miller <djm@mindrot.org>
7818Date: Sat Dec 7 11:35:36 2013 +1100
7819
7820 - [Makefile.in] Add ed25519 sources
7821
7822commit ca570a519cb846da61d002c7f46fa92e39c83e45
7823Author: Damien Miller <djm@mindrot.org>
7824Date: Sat Dec 7 11:29:09 2013 +1100
7825
7826 - djm@cvs.openbsd.org 2013/12/07 00:19:15
7827 [key.c]
7828 set k->cert = NULL after freeing it
7829
7830commit 3cccc0e155229a2f2d86b6df40bd4559b4f960ff
7831Author: Damien Miller <djm@mindrot.org>
7832Date: Sat Dec 7 11:27:47 2013 +1100
7833
7834 - [blocks.c ed25519.c fe25519.c fe25519.h ge25519.c ge25519.h]
7835 [ge25519_base.data hash.c sc25519.c sc25519.h verify.c] Fix RCS idents
7836
7837commit a7827c11b3f0380b7e593664bd62013ff9c131db
7838Author: Damien Miller <djm@mindrot.org>
7839Date: Sat Dec 7 11:24:30 2013 +1100
7840
7841 - jmc@cvs.openbsd.org 2013/12/06 15:29:07
7842 [sshd.8]
7843 missing comma;
7844
7845commit 5be9d9e3cbd9c66f24745d25bf2e809c1d158ee0
7846Author: Damien Miller <djm@mindrot.org>
7847Date: Sat Dec 7 11:24:01 2013 +1100
7848
7849 - markus@cvs.openbsd.org 2013/12/06 13:39:49
7850 [authfd.c authfile.c key.c key.h myproposal.h pathnames.h readconf.c]
7851 [servconf.c ssh-agent.c ssh-keygen.c ssh-keyscan.1 ssh-keyscan.c]
7852 [ssh-keysign.c ssh.c ssh_config.5 sshd.8 sshd.c verify.c ssh-ed25519.c]
7853 [sc25519.h sc25519.c hash.c ge25519_base.data ge25519.h ge25519.c]
7854 [fe25519.h fe25519.c ed25519.c crypto_api.h blocks.c]
7855 support ed25519 keys (hostkeys and user identities) using the public
7856 domain ed25519 reference code from SUPERCOP, see
7857 http://ed25519.cr.yp.to/software.html
7858 feedback, help & ok djm@
7859
7860commit bcd00abd8451f36142ae2ee10cc657202149201e
7861Author: Damien Miller <djm@mindrot.org>
7862Date: Sat Dec 7 10:41:55 2013 +1100
7863
7864 - markus@cvs.openbsd.org 2013/12/06 13:34:54
7865 [authfile.c authfile.h cipher.c cipher.h key.c packet.c ssh-agent.c]
7866 [ssh-keygen.c PROTOCOL.key] new private key format, bcrypt as KDF by
7867 default; details in PROTOCOL.key; feedback and lots help from djm;
7868 ok djm@
7869
7870commit f0e9060d236c0e38bec2fa1c6579fb0a2ea6458d
7871Author: Damien Miller <djm@mindrot.org>
7872Date: Sat Dec 7 10:40:26 2013 +1100
7873
7874 - markus@cvs.openbsd.org 2013/12/06 13:30:08
7875 [authfd.c key.c key.h ssh-agent.c]
7876 move private key (de)serialization to key.c; ok djm
7877
7878commit 0f8536da23a6ef26e6495177c0d8a4242b710289
7879Author: Damien Miller <djm@mindrot.org>
7880Date: Sat Dec 7 10:31:37 2013 +1100
7881
7882 - djm@cvs.openbsd.org 2013/12/06 03:40:51
7883 [ssh-keygen.c]
7884 remove duplicated character ('g') in getopt() string;
7885 document the (few) remaining option characters so we don't have to
7886 rummage next time.
7887
7888commit 393920745fd328d3fe07f739a3cf7e1e6db45b60
7889Author: Damien Miller <djm@mindrot.org>
7890Date: Sat Dec 7 10:31:08 2013 +1100
7891
7892 - djm@cvs.openbsd.org 2013/12/05 22:59:45
7893 [sftp-client.c]
7894 fix memory leak in error path in do_readdir(); pointed out by
7895 Loganaden Velvindron @ AfriNIC in bz#2163
7896
7897commit 534b2ccadea5e5e9a8b27226e6faac3ed5552e97
7898Author: Damien Miller <djm@mindrot.org>
7899Date: Thu Dec 5 14:07:27 2013 +1100
7900
7901 - djm@cvs.openbsd.org 2013/12/05 01:16:41
7902 [servconf.c servconf.h]
7903 bz#2161 - fix AuthorizedKeysCommand inside a Match block and
7904 rearrange things so the same error is harder to make next time;
7905 with and ok dtucker@
7906
7907commit 8369c8e61a3408ec6bb75755fad4ffce29b5fdbe
7908Author: Darren Tucker <dtucker@zip.com.au>
7909Date: Thu Dec 5 11:00:16 2013 +1100
7910
7911 - (dtucker) [configure.ac] bz#2173: use pkg-config --libs to include correct
7912 -L location for libedit. Patch from Serge van den Boom.
7913
7914commit 9275df3e0a2a3bc3897f7d664ea86a425c8a092d
7915Author: Damien Miller <djm@mindrot.org>
7916Date: Thu Dec 5 10:26:32 2013 +1100
7917
7918 - djm@cvs.openbsd.org 2013/12/04 04:20:01
7919 [sftp-client.c]
7920 bz#2171: don't leak local_fd on error; from Loganaden Velvindron @
7921 AfriNIC
7922
7923commit 960f6a2b5254e4da082d8aa3700302ed12dc769a
7924Author: Damien Miller <djm@mindrot.org>
7925Date: Thu Dec 5 10:26:14 2013 +1100
7926
7927 - djm@cvs.openbsd.org 2013/12/02 03:13:14
7928 [cipher.c]
7929 correct bzero of chacha20+poly1305 key context. bz#2177 from
7930 Loganaden Velvindron @ AfriNIC
7931
7932 Also make it a memset for consistency with the rest of cipher.c
7933
7934commit f7e8a8796d661c9d6692ab837e1effd4f5ada1c2
7935Author: Damien Miller <djm@mindrot.org>
7936Date: Thu Dec 5 10:25:51 2013 +1100
7937
7938 - djm@cvs.openbsd.org 2013/12/02 03:09:22
7939 [key.c]
7940 make key_to_blob() return a NULL blob on failure; part of
7941 bz#2175 from Loganaden Velvindron @ AfriNIC
7942
7943commit f1e44ea9d9a6d4c1a95a0024132e603bd1778c9c
7944Author: Damien Miller <djm@mindrot.org>
7945Date: Thu Dec 5 10:23:21 2013 +1100
7946
7947 - djm@cvs.openbsd.org 2013/12/02 02:56:17
7948 [ssh-pkcs11-helper.c]
7949 use-after-free; bz#2175 patch from Loganaden Velvindron @ AfriNIC
7950
7951commit 114e540b15d57618f9ebf624264298f80bbd8c77
7952Author: Damien Miller <djm@mindrot.org>
7953Date: Thu Dec 5 10:22:57 2013 +1100
7954
7955 - djm@cvs.openbsd.org 2013/12/02 02:50:27
7956 [PROTOCOL.chacha20poly1305]
7957 typo; from Jon Cave
7958
7959commit e4870c090629e32f2cb649dc16d575eeb693f4a8
7960Author: Damien Miller <djm@mindrot.org>
7961Date: Thu Dec 5 10:22:39 2013 +1100
7962
7963 - djm@cvs.openbsd.org 2013/12/01 23:19:05
7964 [PROTOCOL]
7965 mention curve25519-sha256@libssh.org key exchange algorithm
7966
7967commit 1d2f8804a6d33a4e908b876b2e1266b8260ec76b
7968Author: Damien Miller <djm@mindrot.org>
7969Date: Thu Dec 5 10:22:03 2013 +1100
7970
7971 - deraadt@cvs.openbsd.org 2013/11/26 19:15:09
7972 [pkcs11.h]
7973 cleanup 1 << 31 idioms. Resurrection of this issue pointed out by
7974 Eitan Adler ok markus for ssh, implies same change in kerberosV
7975
7976commit bdb352a54f82df94a548e3874b22f2d6ae90328d
7977Author: Damien Miller <djm@mindrot.org>
7978Date: Thu Dec 5 10:20:52 2013 +1100
7979
7980 - jmc@cvs.openbsd.org 2013/11/26 12:14:54
7981 [ssh.1 ssh.c]
7982 - put -Q in the right place
7983 - Ar was a poor choice for the arguments to -Q. i've chosen an
7984 admittedly equally poor Cm, at least consistent with the rest
7985 of the docs. also no need for multiple instances
7986 - zap a now redundant Nm
7987 - usage() sync
7988
7989commit d937dc084a087090f1cf5395822c3ac958d33759
7990Author: Damien Miller <djm@mindrot.org>
7991Date: Thu Dec 5 10:19:54 2013 +1100
7992
7993 - deraadt@cvs.openbsd.org 2013/11/25 18:04:21
7994 [ssh.1 ssh.c]
7995 improve -Q usage and such. One usage change is that the option is now
7996 case-sensitive
7997 ok dtucker markus djm
7998
7999commit dec0393f7ee8aabc7d9d0fc2c5fddb4bc649112e
8000Author: Damien Miller <djm@mindrot.org>
8001Date: Thu Dec 5 10:18:43 2013 +1100
8002
8003 - jmc@cvs.openbsd.org 2013/11/21 08:05:09
8004 [ssh_config.5 sshd_config.5]
8005 no need for .Pp before displays;
8006
8007commit 8a073cf57940aabf85e49799f89f5d5e9b072c1b
8008Author: Damien Miller <djm@mindrot.org>
8009Date: Thu Nov 21 14:26:18 2013 +1100
8010
8011 - djm@cvs.openbsd.org 2013/11/21 03:18:51
8012 [regress/cipher-speed.sh regress/integrity.sh regress/rekey.sh]
8013 [regress/try-ciphers.sh]
8014 use new "ssh -Q cipher-auth" query to obtain lists of authenticated
8015 encryption ciphers instead of specifying them manually; ensures that
8016 the new chacha20poly1305@openssh.com mode is tested;
8017
8018 ok markus@ and naddy@ as part of the diff to add
8019 chacha20poly1305@openssh.com
8020
8021commit ea61b2179f63d48968dd2c9617621002bb658bfe
8022Author: Damien Miller <djm@mindrot.org>
8023Date: Thu Nov 21 14:25:15 2013 +1100
8024
8025 - djm@cvs.openbsd.org 2013/11/21 03:16:47
8026 [regress/modpipe.c]
8027 use unsigned long long instead of u_int64_t here to avoid warnings
8028 on some systems portable OpenSSH is built on.
8029
8030commit 36aba25b0409d2db6afc84d54bc47a2532d38424
8031Author: Damien Miller <djm@mindrot.org>
8032Date: Thu Nov 21 14:24:42 2013 +1100
8033
8034 - djm@cvs.openbsd.org 2013/11/21 03:15:46
8035 [regress/krl.sh]
8036 add some reminders for additional tests that I'd like to implement
8037
8038commit fa7a20bc289f09b334808d988746bc260a2f60c9
8039Author: Damien Miller <djm@mindrot.org>
8040Date: Thu Nov 21 14:24:08 2013 +1100
8041
8042 - naddy@cvs.openbsd.org 2013/11/18 05:09:32
8043 [regress/forward-control.sh]
8044 bump timeout to 10 seconds to allow slow machines (e.g. Alpha PC164)
8045 to successfully run this; ok djm@
8046 (ID sync only; our timeouts are already longer)
8047
8048commit 0fde8acdad78a4d20cadae974376cc0165f645ee
8049Author: Damien Miller <djm@mindrot.org>
8050Date: Thu Nov 21 14:12:23 2013 +1100
8051
8052 - djm@cvs.openbsd.org 2013/11/21 00:45:44
8053 [Makefile.in PROTOCOL PROTOCOL.chacha20poly1305 authfile.c chacha.c]
8054 [chacha.h cipher-chachapoly.c cipher-chachapoly.h cipher.c cipher.h]
8055 [dh.c myproposal.h packet.c poly1305.c poly1305.h servconf.c ssh.1]
8056 [ssh.c ssh_config.5 sshd_config.5] Add a new protocol 2 transport
8057 cipher "chacha20-poly1305@openssh.com" that combines Daniel
8058 Bernstein's ChaCha20 stream cipher and Poly1305 MAC to build an
8059 authenticated encryption mode.
8060
8061 Inspired by and similar to Adam Langley's proposal for TLS:
8062 http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-03
8063 but differs in layout used for the MAC calculation and the use of a
8064 second ChaCha20 instance to separately encrypt packet lengths.
8065 Details are in the PROTOCOL.chacha20poly1305 file.
8066
8067 Feedback markus@, naddy@; manpage bits Loganden Velvindron @ AfriNIC
8068 ok markus@ naddy@
8069
8070commit fdb2306acdc3eb2bc46b6dfdaaf6005c650af22a
8071Author: Damien Miller <djm@mindrot.org>
8072Date: Thu Nov 21 13:57:15 2013 +1100
8073
8074 - deraadt@cvs.openbsd.org 2013/11/20 20:54:10
8075 [canohost.c clientloop.c match.c readconf.c sftp.c]
8076 unsigned casts for ctype macros where neccessary
8077 ok guenther millert markus
8078
8079commit e00167307e4d3692695441e9bd712f25950cb894
8080Author: Damien Miller <djm@mindrot.org>
8081Date: Thu Nov 21 13:56:49 2013 +1100
8082
8083 - deraadt@cvs.openbsd.org 2013/11/20 20:53:10
8084 [scp.c]
8085 unsigned casts for ctype macros where neccessary
8086 ok guenther millert markus
8087
8088commit 23e00aa6ba9eee0e0c218f2026bf405ad4625832
8089Author: Damien Miller <djm@mindrot.org>
8090Date: Thu Nov 21 13:56:28 2013 +1100
8091
8092 - djm@cvs.openbsd.org 2013/11/20 02:19:01
8093 [sshd.c]
8094 delay closure of in/out fds until after "Bad protocol version
8095 identification..." message, as get_remote_ipaddr/get_remote_port
8096 require them open.
8097
8098commit 867e6934be6521f87f04a5ab86702e2d1b314245
8099Author: Damien Miller <djm@mindrot.org>
8100Date: Thu Nov 21 13:56:06 2013 +1100
8101
8102 - markus@cvs.openbsd.org 2013/11/13 13:48:20
8103 [ssh-pkcs11.c]
8104 add missing braces found by pedro
8105
8106commit 0600c7020f4fe68a780bd7cf21ff541a8d4b568a
8107Author: Damien Miller <djm@mindrot.org>
8108Date: Thu Nov 21 13:55:43 2013 +1100
8109
8110 - dtucker@cvs.openbsd.org 2013/11/08 11:15:19
8111 [bufaux.c bufbn.c buffer.c sftp-client.c sftp-common.c sftp-glob.c]
8112 [uidswap.c] Include stdlib.h for free() as per the man page.
8113
8114commit b6a75b0b93b8faa6f79c3a395ab6c71f3f880b80
8115Author: Darren Tucker <dtucker@zip.com.au>
8116Date: Sun Nov 10 20:25:22 2013 +1100
8117
8118 - (dtucker) [regress/keytype.sh] Populate ECDSA key types to be tested by
8119 querying the ones that are compiled in.
8120
8121commit 2c89430119367eb1bc96ea5ee55de83357e4c926
8122Author: Darren Tucker <dtucker@zip.com.au>
8123Date: Sun Nov 10 12:38:42 2013 +1100
8124
8125 - (dtucker) [key.c] Check for the correct defines for NID_secp521r1.
8126
8127commit dd5264db5f641dbd03186f9e5e83e4b14b3d0003
8128Author: Darren Tucker <dtucker@zip.com.au>
8129Date: Sat Nov 9 22:32:51 2013 +1100
8130
8131 - (dtucker) [configure.ac] Add missing "test".
8132
8133commit 95cb2d4eb08117be061f3ff076adef3e9a5372c3
8134Author: Darren Tucker <dtucker@zip.com.au>
8135Date: Sat Nov 9 22:02:31 2013 +1100
8136
8137 - (dtucker) [configure.ac] Fix brackets in NID_secp521r1 test.
8138
8139commit 37bcef51b3d9d496caecea6394814d2f49a1357f
8140Author: Darren Tucker <dtucker@zip.com.au>
8141Date: Sat Nov 9 18:39:25 2013 +1100
8142
8143 - (dtucker) [configure.ac kex.c key.c myproposal.h] Test for the presence of
8144 NID_X9_62_prime256v1, NID_secp384r1 and NID_secp521r1 and test that the
8145 latter actually works before using it. Fedora (at least) has NID_secp521r1
8146 that doesn't work (see https://bugzilla.redhat.com/show_bug.cgi?id=1021897).
8147
8148commit 6e2fe81f926d995bae4be4a6b5b3c88c1c525187
8149Author: Darren Tucker <dtucker@zip.com.au>
8150Date: Sat Nov 9 16:55:03 2013 +1100
8151
8152 - dtucker@cvs.openbsd.org 2013/11/09 05:41:34
8153 [regress/test-exec.sh regress/rekey.sh]
8154 Use smaller test data files to speed up tests. Grow test datafiles
8155 where necessary for a specific test.
8156
8157commit aff7ef1bb8b7c1eeb1f4812129091c5adbf51848
8158Author: Darren Tucker <dtucker@zip.com.au>
8159Date: Sat Nov 9 00:19:22 2013 +1100
8160
8161 - (dtucker) [contrib/cygwin/ssh-host-config] Simplify host key generation:
8162 rather than testing and generating each key, call ssh-keygen -A.
8163 Patch from vinschen at redhat.com.
8164
8165commit 882abfd3fb3c98cfe70b4fc79224770468b570a5
8166Author: Darren Tucker <dtucker@zip.com.au>
8167Date: Sat Nov 9 00:17:41 2013 +1100
8168
8169 - (dtucker) [Makefile.in configure.ac] Set MALLOC_OPTIONS per platform
8170 and pass in TEST_ENV. Unknown options cause stderr to get polluted
8171 and the stderr-data test to fail.
8172
8173commit 8c333ec23bdf7da917aa20ac6803a2cdd79182c5
8174Author: Darren Tucker <dtucker@zip.com.au>
8175Date: Fri Nov 8 21:12:58 2013 +1100
8176
8177 - (dtucker) [openbsd-compat/bsd-poll.c] Add headers to prevent compile
8178 warnings.
8179
8180commit d94240b2f6b376b6e9de187e4a0cd4b89dfc48cb
8181Author: Darren Tucker <dtucker@zip.com.au>
8182Date: Fri Nov 8 21:10:04 2013 +1100
8183
8184 - (dtucker) [myproposal.h] Conditionally enable CURVE25519_SHA256.
8185
8186commit 1c8ce34909886288a3932dce770deec5449f7bb5
8187Author: Darren Tucker <dtucker@zip.com.au>
8188Date: Fri Nov 8 19:50:32 2013 +1100
8189
8190 - (dtucker) [kex.c] Only enable CURVE25519_SHA256 if we actually have
8191 EVP_sha256.
8192
8193commit ccdb9bec46bcc88549b26a94aa0bae2b9f51031c
8194Author: Darren Tucker <dtucker@zip.com.au>
8195Date: Fri Nov 8 18:54:38 2013 +1100
8196
8197 - (dtucker) [openbsd-compat/openbsd-compat.h] Add null implementation of
8198 arc4random_stir for platforms that have arc4random but don't have
8199 arc4random_stir (right now this is only OpenBSD -current).
8200
8201commit 3420a50169b52cc8d2775d51316f9f866c73398f
8202Author: Damien Miller <djm@mindrot.org>
8203Date: Fri Nov 8 16:48:13 2013 +1100
8204
8205 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
8206 [contrib/suse/openssh.spec] Update version numbers following release.
8207
8208commit 3ac4a234df842fd8c94d9cb0ad198e1fe84b895b
8209Author: Damien Miller <djm@mindrot.org>
8210Date: Fri Nov 8 12:39:49 2013 +1100
8211
8212 - djm@cvs.openbsd.org 2013/11/08 01:38:11
8213 [version.h]
8214 openssh-6.4
8215
8216commit 6c81fee693038de7d4a5559043350391db2a2761
8217Author: Damien Miller <djm@mindrot.org>
8218Date: Fri Nov 8 12:19:55 2013 +1100
8219
8220 - djm@cvs.openbsd.org 2013/11/08 00:39:15
8221 [auth-options.c auth2-chall.c authfd.c channels.c cipher-3des1.c]
8222 [clientloop.c gss-genr.c monitor_mm.c packet.c schnorr.c umac.c]
8223 [sftp-client.c sftp-glob.c]
8224 use calloc for all structure allocations; from markus@
8225
8226commit 690d989008e18af3603a5e03f1276c9bad090370
8227Author: Damien Miller <djm@mindrot.org>
8228Date: Fri Nov 8 12:16:49 2013 +1100
8229
8230 - dtucker@cvs.openbsd.org 2013/11/07 11:58:27
8231 [cipher.c cipher.h kex.c kex.h mac.c mac.h servconf.c ssh.c]
8232 Output the effective values of Ciphers, MACs and KexAlgorithms when
8233 the default has not been overridden. ok markus@
8234
8235commit 08998c5fb9c7c1d248caa73b76e02ca0482e6d85
8236Author: Darren Tucker <dtucker@zip.com.au>
8237Date: Fri Nov 8 12:11:46 2013 +1100
8238
8239 - dtucker@cvs.openbsd.org 2013/11/08 01:06:14
8240 [regress/rekey.sh]
8241 Rekey less frequently during tests to speed them up
8242
8243commit 4bf7e50e533aa956366df7402c132f202e841a48
8244Author: Darren Tucker <dtucker@zip.com.au>
8245Date: Thu Nov 7 22:33:48 2013 +1100
8246
8247 - (dtucker) [Makefile.in configure.ac] Remove TEST_SSH_SHA256 environment
8248 variable. It's no longer used now that we get the supported MACs from
8249 ssh -Q.
8250
8251commit 6e9d6f411288374d1dee4b7debbfa90bc7e73035
8252Author: Darren Tucker <dtucker@zip.com.au>
8253Date: Thu Nov 7 15:32:37 2013 +1100
8254
8255 - dtucker@cvs.openbsd.org 2013/11/07 04:26:56
8256 [regress/kextype.sh]
8257 trailing space
8258
8259commit 74cbc22529f3e5de756e1b7677b7624efb28f62c
8260Author: Darren Tucker <dtucker@zip.com.au>
8261Date: Thu Nov 7 15:26:12 2013 +1100
8262
8263 - dtucker@cvs.openbsd.org 2013/11/07 03:55:41
8264 [regress/kextype.sh]
8265 Use ssh -Q to get kex types instead of a static list.
8266
8267commit a955041c930e63405159ff7d25ef14272f36eab3
8268Author: Darren Tucker <dtucker@zip.com.au>
8269Date: Thu Nov 7 15:21:19 2013 +1100
8270
8271 - dtucker@cvs.openbsd.org 2013/11/07 02:48:38
8272 [regress/integrity.sh regress/cipher-speed.sh regress/try-ciphers.sh]
8273 Use ssh -Q instead of hardcoding lists of ciphers or MACs.
8274
8275commit 06595d639577577bc15d359e037a31eb83563269
8276Author: Darren Tucker <dtucker@zip.com.au>
8277Date: Thu Nov 7 15:08:02 2013 +1100
8278
8279 - dtucker@cvs.openbsd.org 2013/11/07 01:12:51
8280 [regress/rekey.sh]
8281 Factor out the data transfer rekey tests
8282
8283commit 651dc8b2592202dac6b16ee3b82ce5b331be7da3
8284Author: Darren Tucker <dtucker@zip.com.au>
8285Date: Thu Nov 7 15:04:44 2013 +1100
8286
8287 - dtucker@cvs.openbsd.org 2013/11/07 00:12:05
8288 [regress/rekey.sh]
8289 Test rekeying for every Cipher, MAC and KEX, plus test every KEX with
8290 the GCM ciphers.
8291
8292commit 234557762ba1096a867ca6ebdec07efebddb5153
8293Author: Darren Tucker <dtucker@zip.com.au>
8294Date: Thu Nov 7 15:00:51 2013 +1100
8295
8296 - dtucker@cvs.openbsd.org 2013/11/04 12:27:42
8297 [regress/rekey.sh]
8298 Test rekeying with all KexAlgorithms.
8299
8300commit bbfb9b0f386aab0c3e19d11f136199ef1b9ad0ef
8301Author: Darren Tucker <dtucker@zip.com.au>
8302Date: Thu Nov 7 14:56:43 2013 +1100
8303
8304 - markus@cvs.openbsd.org 2013/11/02 22:39:53
8305 [regress/kextype.sh]
8306 add curve25519-sha256@libssh.org
8307
8308commit aa19548a98c0f89283ebd7354abd746ca6bc4fdf
8309Author: Darren Tucker <dtucker@zip.com.au>
8310Date: Thu Nov 7 14:50:09 2013 +1100
8311
8312 - djm@cvs.openbsd.org 2013/10/09 23:44:14
8313 [regress/Makefile] (ID sync only)
8314 regression test for sftp request white/blacklisting and readonly mode.
8315
8316commit c8908aabff252f5da772d4e679479c2b7d18cac1
8317Author: Damien Miller <djm@mindrot.org>
8318Date: Thu Nov 7 13:38:35 2013 +1100
8319
8320 - djm@cvs.openbsd.org 2013/11/06 23:05:59
8321 [ssh-pkcs11.c]
8322 from portable: s/true/true_val/ to avoid name collisions on dump platforms
8323 RCSID sync only
8324
8325commit 49c145c5e89b9d7d48e84328d6347d5ad640b567
8326Author: Damien Miller <djm@mindrot.org>
8327Date: Thu Nov 7 13:35:39 2013 +1100
8328
8329 - markus@cvs.openbsd.org 2013/11/06 16:52:11
8330 [monitor_wrap.c]
8331 fix rekeying for AES-GCM modes; ok deraadt
8332
8333commit 67a8800f290b39fd60e379988c700656ae3f2539
8334Author: Damien Miller <djm@mindrot.org>
8335Date: Thu Nov 7 13:32:51 2013 +1100
8336
8337 - markus@cvs.openbsd.org 2013/11/04 11:51:16
8338 [monitor.c]
8339 fix rekeying for KEX_C25519_SHA256; noted by dtucker@
8340 RCSID sync only; I thought this was a merge botch and fixed it already
8341
8342commit df8b030b15fcec7baf38ec7944f309f9ca8cc9a7
8343Author: Damien Miller <djm@mindrot.org>
8344Date: Thu Nov 7 13:28:16 2013 +1100
8345
8346 - (djm) [configure.ac defines.h] Skip arc4random_stir() calls on platforms
8347 that lack it but have arc4random_uniform()
8348
8349commit a6fd1d3c38a562709374a70fa76423859160aa90
8350Author: Damien Miller <djm@mindrot.org>
8351Date: Thu Nov 7 12:03:26 2013 +1100
8352
8353 - (djm) [regress/modpipe.c regress/rekey.sh] Never intended to commit these
8354
8355commit c98319750b0bbdd0d1794420ec97d65dd9244613
8356Author: Damien Miller <djm@mindrot.org>
8357Date: Thu Nov 7 12:00:23 2013 +1100
8358
8359 - (djm) [Makefile.in monitor.c] Missed chunks of curve25519 KEX diff
8360
8361commit 61c5c2319e84a58210810d39b062c8b8e3321160
8362Author: Damien Miller <djm@mindrot.org>
8363Date: Thu Nov 7 11:34:14 2013 +1100
8364
8365 - (djm) [ssh-pkcs11.c] Bring back "non-constant initialiser" fix (rev 1.5)
8366 that got lost in recent merge.
8367
8368commit 094003f5454a9f5a607674b2739824a7e91835f4
8369Author: Damien Miller <djm@mindrot.org>
8370Date: Mon Nov 4 22:59:27 2013 +1100
8371
8372 - (djm) [kexc25519.c kexc25519c.c kexc25519s.c] Import missed files from
8373 KEX/curve25519 change
8374
8375commit ca67a7eaf8766499ba67801d0be8cdaa550b9a50
8376Author: Damien Miller <djm@mindrot.org>
8377Date: Mon Nov 4 09:05:17 2013 +1100
8378
8379 - djm@cvs.openbsd.org 2013/11/03 10:37:19
8380 [roaming_common.c]
8381 fix a couple of function definitions foo() -> foo(void)
8382 (-Wold-style-definition)
8383
8384commit 0bd8f1519d51af8d4229be81e8f2f4903a1d440b
8385Author: Damien Miller <djm@mindrot.org>
8386Date: Mon Nov 4 08:55:43 2013 +1100
8387
8388 - markus@cvs.openbsd.org 2013/11/02 22:39:19
8389 [ssh_config.5 sshd_config.5]
8390 the default kex is now curve25519-sha256@libssh.org
8391
8392commit 4c3ba0767fbe4a8a2a748df4035aaf86651f6b30
8393Author: Damien Miller <djm@mindrot.org>
8394Date: Mon Nov 4 08:40:13 2013 +1100
8395
8396 - markus@cvs.openbsd.org 2013/11/02 22:34:01
8397 [auth-options.c]
8398 no need to include monitor_wrap.h and ssh-gss.h
8399
8400commit 660621b2106b987b874c2f120218bec249d0f6ba
8401Author: Damien Miller <djm@mindrot.org>
8402Date: Mon Nov 4 08:37:51 2013 +1100
8403
8404 - markus@cvs.openbsd.org 2013/11/02 22:24:24
8405 [kexdhs.c kexecdhs.c]
8406 no need to include ssh-gss.h
8407
8408commit abdca986decfbbc008c895195b85e879ed460ada
8409Author: Damien Miller <djm@mindrot.org>
8410Date: Mon Nov 4 08:30:05 2013 +1100
8411
8412 - markus@cvs.openbsd.org 2013/11/02 22:10:15
8413 [kexdhs.c kexecdhs.c]
8414 no need to include monitor_wrap.h
8415
8416commit 1e1242604eb0fd510fe93f81245c529237ffc513
8417Author: Damien Miller <djm@mindrot.org>
8418Date: Mon Nov 4 08:26:52 2013 +1100
8419
8420 - markus@cvs.openbsd.org 2013/11/02 21:59:15
8421 [kex.c kex.h myproposal.h ssh-keyscan.c sshconnect2.c sshd.c]
8422 use curve25519 for default key exchange (curve25519-sha256@libssh.org);
8423 initial patch from Aris Adamantiadis; ok djm@
8424
8425commit d2252c79191d069372ed6effce7c7a2de93448cd
8426Author: Damien Miller <djm@mindrot.org>
8427Date: Mon Nov 4 07:41:48 2013 +1100
8428
8429 - markus@cvs.openbsd.org 2013/11/02 20:03:54
8430 [ssh-pkcs11.c]
8431 support pkcs#11 tokes that only provide x509 zerts instead of raw pubkeys;
8432 fixes bz#1908; based on patch from Laurent Barbe; ok djm
8433
8434commit 007e3b357e880caa974d5adf9669298ba0751c78
8435Author: Darren Tucker <dtucker@zip.com.au>
8436Date: Sun Nov 3 18:43:55 2013 +1100
8437
8438 - (dtucker) [configure.ac defines.h] Add typedefs for intmax_t and uintmax_t
8439 for platforms that don't have them.
8440
8441commit 710f3747352fb93a63e5b69b12379da37f5b3fa9
8442Author: Darren Tucker <dtucker@zip.com.au>
8443Date: Sun Nov 3 17:20:34 2013 +1100
8444
8445 - (dtucker) [openbsd-compat/setproctitle.c] Handle error case form the 2nd
8446 vsnprintf. From eric at openbsd via chl@.
8447
8448commit d52770452308e5c2e99f4da6edaaa77ef078b610
8449Author: Darren Tucker <dtucker@zip.com.au>
8450Date: Sun Nov 3 16:30:46 2013 +1100
8451
8452 - (dtucker) [openbsd-compat/bsd-misc.c] Include time.h for nanosleep.
8453 From OpenSMTPD where it prevents "implicit declaration" warnings (it's
8454 a no-op in OpenSSH). From chl at openbsd.
8455
8456commit 63857c9340d3482746a5622ffdacc756751f6448
8457Author: Damien Miller <djm@mindrot.org>
8458Date: Wed Oct 30 22:31:06 2013 +1100
8459
8460 - jmc@cvs.openbsd.org 2013/10/29 18:49:32
8461 [sshd_config.5]
8462 pty(4), not pty(7);
8463
8464commit 5ff30c6b68adeee767dd29bf2369763c6a13c0b3
8465Author: Damien Miller <djm@mindrot.org>
8466Date: Wed Oct 30 22:21:50 2013 +1100
8467
8468 - djm@cvs.openbsd.org 2013/10/29 09:48:02
8469 [servconf.c servconf.h session.c sshd_config sshd_config.5]
8470 shd_config PermitTTY to disallow TTY allocation, mirroring the
8471 longstanding no-pty authorized_keys option;
8472 bz#2070, patch from Teran McKinney; ok markus@
8473
8474commit 4a3a9d4bbf8048473f5cc202cd8db7164d5e6b8d
8475Author: Damien Miller <djm@mindrot.org>
8476Date: Wed Oct 30 22:19:47 2013 +1100
8477
8478 - djm@cvs.openbsd.org 2013/10/29 09:42:11
8479 [key.c key.h]
8480 fix potential stack exhaustion caused by nested certificates;
8481 report by Mateusz Kocielski; ok dtucker@ markus@
8482
8483commit 28631ceaa7acd9bc500f924614431542893c6a21
8484Author: Damien Miller <djm@mindrot.org>
8485Date: Sat Oct 26 10:07:56 2013 +1100
8486
8487 - djm@cvs.openbsd.org 2013/10/25 23:04:51
8488 [ssh.c]
8489 fix crash when using ProxyCommand caused by previous commit - was calling
8490 freeaddrinfo(NULL); spotted by sthen@ and Tim Ruehsen, patch by sthen@
8491
8492commit 26506ad29350c5681815745cc90b3952a84cf118
8493Author: Damien Miller <djm@mindrot.org>
8494Date: Sat Oct 26 10:05:46 2013 +1100
8495
8496 - (djm) [ssh-keygen.c ssh-keysign.c sshconnect1.c sshd.c] Remove
8497 unnecessary arc4random_stir() calls. The only ones left are to ensure
8498 that the PRNG gets a different state after fork() for platforms that
8499 have broken the API.
8500
8501commit bd43e8872325e9bbb3319c89da593614709f317c
8502Author: Tim Rice <tim@multitalents.net>
8503Date: Thu Oct 24 12:22:49 2013 -0700
8504
8505 - (tim) [regress/sftp-perm.sh] We need a shell that understands "! somecmd"
8506
8507commit a90c0338083ee0e4064c4bdf61f497293a699be0
8508Author: Damien Miller <djm@mindrot.org>
8509Date: Thu Oct 24 21:03:17 2013 +1100
8510
8511 - djm@cvs.openbsd.org 2013/10/24 08:19:36
8512 [ssh.c]
8513 fix bug introduced in hostname canonicalisation commit: don't try to
8514 resolve hostnames when a ProxyCommand is set unless the user has forced
8515 canonicalisation; spotted by Iain Morgan
8516
8517commit cf31f3863425453ffcda540fbefa9df80088c8d1
8518Author: Damien Miller <djm@mindrot.org>
8519Date: Thu Oct 24 21:02:56 2013 +1100
8520
8521 - dtucker@cvs.openbsd.org 2013/10/24 00:51:48
8522 [readconf.c servconf.c ssh_config.5 sshd_config.5]
8523 Disallow empty Match statements and add "Match all" which matches
8524 everything. ok djm, man page help jmc@
8525
8526commit 4bedd4032a09ce87322ae5ea80f193f109e5c607
8527Author: Damien Miller <djm@mindrot.org>
8528Date: Thu Oct 24 21:02:26 2013 +1100
8529
8530 - dtucker@cvs.openbsd.org 2013/10/24 00:49:49
8531 [moduli.c]
8532 Periodically print progress and, if possible, expected time to completion
8533 when screening moduli for DH groups. ok deraadt djm
8534
8535commit 5ecb41629860687b145be63b8877fabb6bae5eda
8536Author: Damien Miller <djm@mindrot.org>
8537Date: Thu Oct 24 21:02:02 2013 +1100
8538
8539 - djm@cvs.openbsd.org 2013/10/23 23:35:32
8540 [sshd.c]
8541 include local address and port in "Connection from ..." message (only
8542 shown at loglevel>=verbose)
8543
8544commit 03bf2e61ad6ac59a362a1f11b105586cb755c147
8545Author: Damien Miller <djm@mindrot.org>
8546Date: Thu Oct 24 21:01:26 2013 +1100
8547
8548 - dtucker@cvs.openbsd.org 2013/10/23 05:40:58
8549 [servconf.c]
8550 fix comment
8551
8552commit 8f1873191478847773906af961c8984d02a49dd6
8553Author: Damien Miller <djm@mindrot.org>
8554Date: Thu Oct 24 10:53:02 2013 +1100
8555
8556 - (djm) [auth-krb5.c] bz#2032 - use local username in krb5_kuserok check
8557 rather than full client name which may be of form user@REALM;
8558 patch from Miguel Sanders; ok dtucker@
8559
8560commit 5b01b0dcb417eb615df77e7ce1b59319bf04342c
8561Author: Damien Miller <djm@mindrot.org>
8562Date: Wed Oct 23 16:31:31 2013 +1100
8563
8564 - djm@cvs.openbsd.org 2013/10/23 04:16:22
8565 [ssh-keygen.c]
8566 Make code match documentation: relative-specified certificate expiry time
8567 should be relative to current time and not the validity start time.
8568 Reported by Petr Lautrbach; ok deraadt@
8569
8570commit eff5cada589f25793dbe63a76aba9da39837a148
8571Author: Damien Miller <djm@mindrot.org>
8572Date: Wed Oct 23 16:31:10 2013 +1100
8573
8574 - djm@cvs.openbsd.org 2013/10/23 03:05:19
8575 [readconf.c ssh.c]
8576 comment
8577
8578commit 084bcd24e9fe874020e4df4e073e7408e1b17fb7
8579Author: Damien Miller <djm@mindrot.org>
8580Date: Wed Oct 23 16:30:51 2013 +1100
8581
8582 - djm@cvs.openbsd.org 2013/10/23 03:03:07
8583 [readconf.c]
8584 Hostname may have %h sequences that should be expanded prior to Match
8585 evaluation; spotted by Iain Morgan
8586
8587commit 8e5a67f46916def40b2758bb7755350dd2eee843
8588Author: Damien Miller <djm@mindrot.org>
8589Date: Wed Oct 23 16:30:25 2013 +1100
8590
8591 - jmc@cvs.openbsd.org 2013/10/20 18:00:13
8592 [ssh_config.5]
8593 tweak the "exec" description, as worded by djm;
8594
8595commit c0049bd0bca02890cd792babc594771c563f91f2
8596Author: Damien Miller <djm@mindrot.org>
8597Date: Wed Oct 23 16:29:59 2013 +1100
8598
8599 - djm@cvs.openbsd.org 2013/10/20 09:51:26
8600 [scp.1 sftp.1]
8601 add canonicalisation options to -o lists
8602
8603commit 8a04be795fc28514a09e55a54b2e67968f2e1b3a
8604Author: Damien Miller <djm@mindrot.org>
8605Date: Wed Oct 23 16:29:40 2013 +1100
8606
8607 - djm@cvs.openbsd.org 2013/10/20 06:19:28
8608 [readconf.c ssh_config.5]
8609 rename "command" subclause of the recently-added "Match" keyword to
8610 "exec"; it's shorter, clearer in intent and we might want to add the
8611 ability to match against the command being executed at the remote end in
8612 the future.
8613
8614commit 5c86ebdf83b636b6741db4b03569ef4a53b89a58
8615Author: Damien Miller <djm@mindrot.org>
8616Date: Wed Oct 23 16:29:12 2013 +1100
8617
8618 - djm@cvs.openbsd.org 2013/10/20 04:39:28
8619 [ssh_config.5]
8620 document % expansions performed by "Match command ..."
8621
8622commit 4502f88774edc56194707167443f94026d3c7cfa
8623Author: Damien Miller <djm@mindrot.org>
8624Date: Fri Oct 18 10:17:36 2013 +1100
8625
8626 - djm@cvs.openbsd.org 2013/10/17 22:08:04
8627 [sshd.c]
8628 include remote port in bad banner message; bz#2162
8629
8630commit 1edcbf65ebd2febeaf10a836468f35e519eed7ca
8631Author: Damien Miller <djm@mindrot.org>
8632Date: Fri Oct 18 10:17:17 2013 +1100
8633
8634 - jmc@cvs.openbsd.org 2013/10/17 07:35:48
8635 [sftp.1 sftp.c]
8636 tweak previous;
8637
8638commit a176e1823013dd8533a20235b3a5131f0626f46b
8639Author: Damien Miller <djm@mindrot.org>
8640Date: Fri Oct 18 09:05:41 2013 +1100
8641
8642 - djm@cvs.openbsd.org 2013/10/09 23:44:14
8643 [regress/Makefile regress/sftp-perm.sh]
8644 regression test for sftp request white/blacklisting and readonly mode.
8645
8646commit e3ea09494dcfe7ba76536e95765c8328ecfc18fb
8647Author: Damien Miller <djm@mindrot.org>
8648Date: Thu Oct 17 11:57:23 2013 +1100
8649
8650 - djm@cvs.openbsd.org 2013/10/17 00:46:49
8651 [ssh.c]
8652 rearrange check to reduce diff against -portable
8653 (Id sync only)
8654
8655commit f29238e67471a7f1088a99c3c3dbafce76b790cf
8656Author: Damien Miller <djm@mindrot.org>
8657Date: Thu Oct 17 11:48:52 2013 +1100
8658
8659 - djm@cvs.openbsd.org 2013/10/17 00:30:13
8660 [PROTOCOL sftp-client.c sftp-client.h sftp-server.c sftp.1 sftp.c]
8661 fsync@openssh.com protocol extension for sftp-server
8662 client support to allow calling fsync() faster successful transfer
8663 patch mostly by imorgan AT nas.nasa.gov; bz#1798
8664 "fine" markus@ "grumble OK" deraadt@ "doesn't sound bad to me" millert@
8665
8666commit 51682faa599550a69d8120e5e2bdbdc0625ef4be
8667Author: Damien Miller <djm@mindrot.org>
8668Date: Thu Oct 17 11:48:31 2013 +1100
8669
8670 - djm@cvs.openbsd.org 2013/10/16 22:58:01
8671 [ssh.c ssh_config.5]
8672 one I missed in previous: s/isation/ization/
8673
8674commit 3850559be93f1a442ae9ed370e8c389889dd5f72
8675Author: Damien Miller <djm@mindrot.org>
8676Date: Thu Oct 17 11:48:13 2013 +1100
8677
8678 - djm@cvs.openbsd.org 2013/10/16 22:49:39
8679 [readconf.c readconf.h ssh.1 ssh.c ssh_config.5]
8680 s/canonicalise/canonicalize/ for consistency with existing spelling,
8681 e.g. authorized_keys; pointed out by naddy@
8682
8683commit 607af3434b75acc7199a5d99d5a9c11068c01f27
8684Author: Damien Miller <djm@mindrot.org>
8685Date: Thu Oct 17 11:47:51 2013 +1100
8686
8687 - jmc@cvs.openbsd.org 2013/10/16 06:42:25
8688 [ssh_config.5]
8689 tweak previous;
8690
8691commit 0faf747e2f77f0f7083bcd59cbed30c4b5448444
8692Author: Damien Miller <djm@mindrot.org>
8693Date: Thu Oct 17 11:47:23 2013 +1100
8694
8695 - djm@cvs.openbsd.org 2013/10/16 02:31:47
8696 [readconf.c readconf.h roaming_client.c ssh.1 ssh.c ssh_config.5]
8697 [sshconnect.c sshconnect.h]
8698 Implement client-side hostname canonicalisation to allow an explicit
8699 search path of domain suffixes to use to convert unqualified host names
8700 to fully-qualified ones for host key matching.
8701 This is particularly useful for host certificates, which would otherwise
8702 need to list unqualified names alongside fully-qualified ones (and this
8703 causes a number of problems).
8704 "looks fine" markus@
8705
8706commit d77b81f856e078714ec6b0f86f61c20249b7ead4
8707Author: Damien Miller <djm@mindrot.org>
8708Date: Thu Oct 17 11:39:00 2013 +1100
8709
8710 - jmc@cvs.openbsd.org 2013/10/15 14:10:25
8711 [ssh.1 ssh_config.5]
8712 tweak previous;
8713
8714commit dcd39f29ce3308dc74a0ff27a9056205a932ce05
8715Author: Damien Miller <djm@mindrot.org>
8716Date: Thu Oct 17 11:31:40 2013 +1100
8717
8718 - [ssh.c] g/c unused variable.
8719
8720commit 5359a628ce3763408da25d83271a8eddec597a0c
8721Author: Damien Miller <djm@mindrot.org>
8722Date: Tue Oct 15 12:20:37 2013 +1100
8723
8724 - [ssh.c] g/c unused variable.
8725
8726commit 386feab0c4736b054585ee8ee372865d5cde8d69
8727Author: Damien Miller <djm@mindrot.org>
8728Date: Tue Oct 15 12:14:49 2013 +1100
8729
8730 - djm@cvs.openbsd.org 2013/10/14 23:31:01
8731 [ssh.c]
8732 whitespace at EOL; pointed out by markus@
8733
8734commit e9fc72edd6c313b670558cd5219601c38a949b67
8735Author: Damien Miller <djm@mindrot.org>
8736Date: Tue Oct 15 12:14:12 2013 +1100
8737
8738 - djm@cvs.openbsd.org 2013/10/14 23:28:23
8739 [canohost.c misc.c misc.h readconf.c sftp-server.c ssh.c]
8740 refactor client config code a little:
8741 add multistate option partsing to readconf.c, similar to servconf.c's
8742 existing code.
8743 move checking of options that accept "none" as an argument to readconf.c
8744 add a lowercase() function and use it instead of explicit tolower() in
8745 loops
8746 part of a larger diff that was ok markus@
8747
8748commit 194fd904d8597a274b93e075b2047afdf5a175d4
8749Author: Damien Miller <djm@mindrot.org>
8750Date: Tue Oct 15 12:13:05 2013 +1100
8751
8752 - djm@cvs.openbsd.org 2013/10/14 22:22:05
8753 [readconf.c readconf.h ssh-keysign.c ssh.c ssh_config.5]
8754 add a "Match" keyword to ssh_config that allows matching on hostname,
8755 user and result of arbitrary commands. "nice work" markus@
8756
8757commit 71df752de2a04f423b1cd18d961a79f4fbccbcee
8758Author: Damien Miller <djm@mindrot.org>
8759Date: Tue Oct 15 12:12:02 2013 +1100
8760
8761 - djm@cvs.openbsd.org 2013/10/14 21:20:52
8762 [session.c session.h]
8763 Add logging of session starts in a useful format; ok markus@ feedback and
8764 ok dtucker@
8765
8766commit 6efab27109b82820e8d32a5d811adb7bfc354f65
8767Author: Damien Miller <djm@mindrot.org>
8768Date: Tue Oct 15 12:07:05 2013 +1100
8769
8770 - jmc@cvs.openbsd.org 2013/10/14 14:18:56
8771 [sftp-server.8 sftp-server.c]
8772 tweak previous;
8773 ok djm
8774
8775commit 61c7de8a94156f6d7e9718ded9be8c65bb902b66
8776Author: Damien Miller <djm@mindrot.org>
8777Date: Tue Oct 15 12:06:45 2013 +1100
8778
8779 - djm@cvs.openbsd.org 2013/10/11 02:53:45
8780 [sftp-client.h]
8781 obsolete comment
8782
8783commit 2f93d0556e4892208c9b072624caa8cc5ddd839d
8784Author: Damien Miller <djm@mindrot.org>
8785Date: Tue Oct 15 12:06:27 2013 +1100
8786
8787 - djm@cvs.openbsd.org 2013/10/11 02:52:23
8788 [sftp-client.c]
8789 missed one arg reorder
8790
8791commit bda5c8445713ae592d969a5105ed1a65da22bc96
8792Author: Damien Miller <djm@mindrot.org>
8793Date: Tue Oct 15 12:05:58 2013 +1100
8794
8795 - djm@cvs.openbsd.org 2013/10/11 02:45:36
8796 [sftp-client.c]
8797 rename flag arguments to be more clear and consistent.
8798 reorder some internal function arguments to make adding additional flags
8799 easier.
8800 no functional change
8801
8802commit 61ee4d68ca0fcc793a826fc7ec70f3b8ffd12ab6
8803Author: Damien Miller <djm@mindrot.org>
8804Date: Tue Oct 15 11:56:47 2013 +1100
8805
8806 - djm@cvs.openbsd.org 2013/10/10 01:43:03
8807 [sshd.c]
8808 bz#2139: fix re-exec fallback by ensuring that startup_pipe is correctly
8809 updated; ok dtucker@
8810
8811commit 73600e51af9ee734a19767e0c084bbbc5eb5b8da
8812Author: Damien Miller <djm@mindrot.org>
8813Date: Tue Oct 15 11:56:25 2013 +1100
8814
8815 - djm@cvs.openbsd.org 2013/10/10 00:53:25
8816 [sftp-server.c]
8817 add -Q, -P and -p to usage() before jmc@ catches me
8818
8819commit 6eaeebf27d92f39a38c772aa3f20c2250af2dd29
8820Author: Damien Miller <djm@mindrot.org>
8821Date: Tue Oct 15 11:55:57 2013 +1100
8822
8823 - djm@cvs.openbsd.org 2013/10/09 23:42:17
8824 [sftp-server.8 sftp-server.c]
8825 Add ability to whitelist and/or blacklist sftp protocol requests by name.
8826 Refactor dispatch loop and consolidate read-only mode checks.
8827 Make global variables static, since sftp-server is linked into sshd(8).
8828 ok dtucker@
8829
8830commit df62d71e64d29d1054e7a53d1a801075ef70335f
8831Author: Darren Tucker <dtucker@zip.com.au>
8832Date: Thu Oct 10 10:32:39 2013 +1100
8833
8834 - dtucker@cvs.openbsd.org 2013/10/08 11:42:13
8835 [dh.c dh.h]
8836 Increase the size of the Diffie-Hellman groups requested for a each
8837 symmetric key size. New values from NIST Special Publication 800-57 with
8838 the upper limit specified by RFC4419. Pointed out by Peter Backes, ok
8839 djm@.
8840
8841commit e6e52f8c5dc89a6767702e65bb595aaf7bc8991c
8842Author: Darren Tucker <dtucker@zip.com.au>
8843Date: Thu Oct 10 10:28:07 2013 +1100
8844
8845 - djm@cvs.openbsd.org 2013/09/19 01:26:29
8846 [sshconnect.c]
8847 bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from
8848 swp AT swp.pp.ru; ok dtucker@
8849
8850commit 71152bc9911bc34a98810b2398dac20df3fe8de3
8851Author: Darren Tucker <dtucker@zip.com.au>
8852Date: Thu Oct 10 10:27:21 2013 +1100
8853
8854 - djm@cvs.openbsd.org 2013/09/19 01:24:46
8855 [channels.c]
8856 bz#1297 - tell the client (via packet_send_debug) when their preferred
8857 listen address has been overridden by the server's GatewayPorts;
8858 ok dtucker@
8859
8860commit b59aaf3c4f3f449a4b86d8528668bd979be9aa5f
8861Author: Darren Tucker <dtucker@zip.com.au>
8862Date: Thu Oct 10 10:26:21 2013 +1100
8863
8864 - djm@cvs.openbsd.org 2013/09/19 00:49:12
8865 [sftp-client.c]
8866 fix swapped pflag and printflag in sftp upload_dir; from Iain Morgan
8867
8868commit 5d80e4522d6238bdefe9d0c634f0e6d35a241e41
8869Author: Darren Tucker <dtucker@zip.com.au>
8870Date: Thu Oct 10 10:25:09 2013 +1100
8871
8872 - djm@cvs.openbsd.org 2013/09/19 00:24:52
8873 [progressmeter.c]
8874 store the initial file offset so the progress meter doesn't freak out
8875 when resuming sftp transfers. bz#2137; patch from Iain Morgan; ok dtucker@
8876
8877commit ad92df7e5ed26fea85adfb3f95352d6cd8e86344
8878Author: Darren Tucker <dtucker@zip.com.au>
8879Date: Thu Oct 10 10:24:11 2013 +1100
8880
8881 - sthen@cvs.openbsd.org 2013/09/16 11:35:43
8882 [ssh_config]
8883 Remove gssapi config parts from ssh_config, as was already done for
8884 sshd_config. Req by/ok ajacoutot@
8885 ID SYNC ONLY for portable; kerberos/gssapi is still pretty popular
8886
8887commit 720711960b130d36dfdd3d50eb25ef482bdd000e
8888Author: Damien Miller <djm@mindrot.org>
8889Date: Wed Oct 9 10:44:47 2013 +1100
8890
8891 - (djm) [openbsd-compat/Makefile.in openbsd-compat/arc4random.c]
8892 [openbsd-compat/bsd-arc4random.c] Replace old RC4-based arc4random
8893 implementation with recent OpenBSD's ChaCha-based PRNG. ok dtucker@,
8894 tested tim@
8895
8896commit 9159310087a218e28940a592896808b8eb76a039
8897Author: Damien Miller <djm@mindrot.org>
8898Date: Wed Oct 9 10:42:32 2013 +1100
8899
8900 - (djm) [openbsd-compat/arc4random.c openbsd-compat/chacha_private.h] Pull
8901 in OpenBSD implementation of arc4random, shortly to replace the existing
8902 bsd-arc4random.c
8903
8904commit 67f1d557a68d6fa8966a327d7b6dee3408cf0e72
8905Author: Damien Miller <djm@mindrot.org>
8906Date: Wed Oct 9 09:33:08 2013 +1100
8907
8908 correct incorrect years in datestamps; from des
8909
8910commit f2bf36c3eb4d969f85ec8aa342e9aecb61cc8bb1
8911Author: Darren Tucker <dtucker@zip.com.au>
8912Date: Sun Sep 22 19:02:40 2013 +1000
8913
8914 - (dtucker) [platform.c platform.h sshd.c] bz#2156: restore Linux oom_adj
8915 setting when handling SIGHUP to maintain behaviour over retart. Patch
8916 from Matthew Ife.
8917
8918commit e90a06ae570fd259a2f5ced873c7f17390f535a5
8919Author: Darren Tucker <dtucker@zip.com.au>
8920Date: Wed Sep 18 15:09:38 2013 +1000
8921
8922 - (dtucker) [sshd_config] Trailing whitespace; from jstjohn at purdue edu.
8923
8924commit 13840e0103946982cee2a05c40697be7e57dca41
8925Author: Damien Miller <djm@mindrot.org>
8926Date: Sat Sep 14 09:49:43 2013 +1000
8927
8928 - djm@cvs.openbsd.org 2013/09/13 06:54:34
8929 [channels.c]
8930 avoid unaligned access in code that reused a buffer to send a
8931 struct in_addr in a reply; simpler just use use buffer_put_int();
8932 from portable; spotted by and ok dtucker@
8933
8934commit 70182522a47d283513a010338cd028cb80dac2ab
8935Author: Damien Miller <djm@mindrot.org>
8936Date: Sat Sep 14 09:49:19 2013 +1000
8937
8938 - djm@cvs.openbsd.org 2013/09/12 01:41:12
8939 [clientloop.c]
8940 fix connection crash when sending break (~B) on ControlPersist'd session;
8941 ok dtucker@
8942
8943commit ff9d6c2a4171ee32e8fe28fc3b86eb33bd5c845b
8944Author: Damien Miller <djm@mindrot.org>
8945Date: Sat Sep 14 09:48:55 2013 +1000
8946
8947 - sthen@cvs.openbsd.org 2013/09/07 13:53:11
8948 [sshd_config]
8949 Remove commented-out kerberos/gssapi config options from sample config,
8950 kerberos support is currently not enabled in ssh in OpenBSD. Discussed with
8951 various people; ok deraadt@
8952 ID SYNC ONLY for portable; kerberos/gssapi is still pretty popular
8953
8954commit 8bab5e7b5ff6721d926b5ebf05a3a24489889c58
8955Author: Damien Miller <djm@mindrot.org>
8956Date: Sat Sep 14 09:47:00 2013 +1000
8957
8958 - deraadt@cvs.openbsd.org 2013/09/02 22:00:34
8959 [ssh-keygen.c sshconnect1.c sshd.c]
8960 All the instances of arc4random_stir() are bogus, since arc4random()
8961 does this itself, inside itself, and has for a very long time.. Actually,
8962 this was probably reducing the entropy available.
8963 ok djm
8964 ID SYNC ONLY for portable; we don't trust other arc4random implementations
8965 to do this right.
8966
8967commit 61353b3208d548fab863e0e0ac5d2400ee5bb340
8968Author: Damien Miller <djm@mindrot.org>
8969Date: Sat Sep 14 09:45:32 2013 +1000
8970
8971 - djm@cvs.openbsd.org 2013/08/31 00:13:54
8972 [sftp.c]
8973 make ^w match ksh behaviour (delete previous word instead of entire line)
8974
8975commit 660854859cad31d234edb9353fb7ca2780df8128
8976Author: Damien Miller <djm@mindrot.org>
8977Date: Sat Sep 14 09:45:03 2013 +1000
8978
8979 - mikeb@cvs.openbsd.org 2013/08/28 12:34:27
8980 [ssh-keygen.c]
8981 improve batch processing a bit by making use of the quite flag a bit
8982 more often and exit with a non zero code if asked to find a hostname
8983 in a known_hosts file and it wasn't there;
8984 originally from reyk@, ok djm
8985
8986commit 045bda5cb8acf0eb9d71c275ee1247e3154fc9e5
8987Author: Damien Miller <djm@mindrot.org>
8988Date: Sat Sep 14 09:44:37 2013 +1000
8989
8990 - djm@cvs.openbsd.org 2013/08/22 19:02:21
8991 [sshd.c]
8992 Stir PRNG after post-accept fork. The child gets a different PRNG state
8993 anyway via rexec and explicit privsep reseeds, but it's good to be sure.
8994 ok markus@
8995
8996commit ed4af412da60a084891b20412433a27966613fb8
8997Author: Damien Miller <djm@mindrot.org>
8998Date: Sat Sep 14 09:40:51 2013 +1000
8999
9000 add marker for 6.3p1 release at the point of the last included change
9001
9002commit 43968a8e66a0aa1afefb11665bf96f86b113f5d9
9003Author: Damien Miller <djm@mindrot.org>
9004Date: Wed Aug 28 14:00:54 2013 +1000
9005
9006 - (djm) [openbsd-compat/bsd-snprintf.c] #ifdef noytet for intmax_t bits
9007 until we have configure support.
9008
9009commit 04be8b9e53f8388c94b531ebc5d1bd6e10e930d1
9010Author: Damien Miller <djm@mindrot.org>
9011Date: Wed Aug 28 12:49:43 2013 +1000
9012
9013 - (djm) [openbsd-compat/bsd-snprintf.c] teach our local snprintf code the
9014 'j' (intmax_t/uintmax_t) and 'z' (size_t/ssize_t) conversions in case we
9015 start to use them in the future.
9016
9017commit f2f6c315a920a256937e1b6a3702757f3195a592
9018Author: Damien Miller <djm@mindrot.org>
9019Date: Wed Aug 21 02:44:58 2013 +1000
9020
9021 - jmc@cvs.openbsd.org 2013/08/20 06:56:07
9022 [ssh.1 ssh_config.5]
9023 some proxyusefdpass tweaks;
9024
9025commit 1262b6638f7d01ab110fd373dd90d915c882fe1a
9026Author: Damien Miller <djm@mindrot.org>
9027Date: Wed Aug 21 02:44:24 2013 +1000
9028
9029 - djm@cvs.openbsd.org 2013/08/20 00:11:38
9030 [readconf.c readconf.h ssh_config.5 sshconnect.c]
9031 Add a ssh_config ProxyUseFDPass option that supports the use of
9032 ProxyCommands that establish a connection and then pass a connected
9033 file descriptor back to ssh(1). This allows the ProxyCommand to exit
9034 rather than have to shuffle data back and forth and enables ssh to use
9035 getpeername, etc. to obtain address information just like it does with
9036 regular directly-connected sockets. ok markus@
9037
9038commit b7727df37efde4dbe4f5a33b19cbf42022aabf66
9039Author: Damien Miller <djm@mindrot.org>
9040Date: Wed Aug 21 02:43:49 2013 +1000
9041
9042 - jmc@cvs.openbsd.org 2013/08/14 08:39:27
9043 [scp.1 ssh.1]
9044 some Bx/Ox conversion;
9045 From: Jan Stary
9046
9047commit d5d9d7b1fdacf0551de4c747728bd159be40590a
9048Author: Damien Miller <djm@mindrot.org>
9049Date: Wed Aug 21 02:43:27 2013 +1000
9050
9051 - djm@cvs.openbsd.org 2013/08/13 18:33:08
9052 [ssh-keygen.c]
9053 another of the same typo
9054
9055commit d234afb0b3a8de1be78cbeafed5fc86912594c3c
9056Author: Damien Miller <djm@mindrot.org>
9057Date: Wed Aug 21 02:42:58 2013 +1000
9058
9059 - djm@cvs.openbsd.org 2013/08/13 18:32:08
9060 [ssh-keygen.c]
9061 typo in error message; from Stephan Rickauer
9062
9063commit e0ee727b8281a7c2ae20630ce83f6b200b404059
9064Author: Damien Miller <djm@mindrot.org>
9065Date: Wed Aug 21 02:42:35 2013 +1000
9066
9067 - djm@cvs.openbsd.org 2013/08/09 03:56:42
9068 [sftp.c]
9069 enable ctrl-left-arrow and ctrl-right-arrow to move forward/back a word;
9070 matching ksh's relatively recent change.
9071
9072commit fec029f1dc2c338f3fae3fa82aabc988dc07868c
9073Author: Damien Miller <djm@mindrot.org>
9074Date: Wed Aug 21 02:42:12 2013 +1000
9075
9076 - djm@cvs.openbsd.org 2013/08/09 03:39:13
9077 [sftp-client.c]
9078 two problems found by a to-be-committed regress test: 1) msg_id was not
9079 being initialised so was starting at a random value from the heap
9080 (harmless, but confusing). 2) some error conditions were not being
9081 propagated back to the caller
9082
9083commit 036d30743fc914089f9849ca52d615891d47e616
9084Author: Damien Miller <djm@mindrot.org>
9085Date: Wed Aug 21 02:41:46 2013 +1000
9086
9087 - djm@cvs.openbsd.org 2013/08/09 03:37:25
9088 [sftp.c]
9089 do getopt parsing for all sftp commands (with an empty optstring for
9090 commands without arguments) to ensure consistent behaviour
9091
9092commit c7dba12bf95eb1d69711881a153cc286c1987663
9093Author: Damien Miller <djm@mindrot.org>
9094Date: Wed Aug 21 02:41:15 2013 +1000
9095
9096 - djm@cvs.openbsd.org 2013/08/08 05:04:03
9097 [sftp-client.c sftp-client.h sftp.c]
9098 add a "-l" flag for the rename command to force it to use the silly
9099 standard SSH_FXP_RENAME command instead of the POSIX-rename- like
9100 posix-rename@openssh.com extension.
9101
9102 intended for use in regress tests, so no documentation.
9103
9104commit 034f27a0c09e69fe3589045b41f03f6e345b63f5
9105Author: Damien Miller <djm@mindrot.org>
9106Date: Wed Aug 21 02:40:44 2013 +1000
9107
9108 - djm@cvs.openbsd.org 2013/08/08 04:52:04
9109 [sftp.c]
9110 fix two year old regression: symlinking a file would incorrectly
9111 canonicalise the target path. bz#2129 report from delphij AT freebsd.org
9112
9113commit c6895c5c67492144dd28589e5788f783be9152ed
9114Author: Damien Miller <djm@mindrot.org>
9115Date: Wed Aug 21 02:40:21 2013 +1000
9116
9117 - jmc@cvs.openbsd.org 2013/08/07 06:24:51
9118 [sftp.1 sftp.c]
9119 sort -a;
9120
9121commit a6d6c1f38ac9b4a5e1bd4df889e1020a8370ed55
9122Author: Damien Miller <djm@mindrot.org>
9123Date: Wed Aug 21 02:40:01 2013 +1000
9124
9125 - djm@cvs.openbsd.org 2013/08/06 23:06:01
9126 [servconf.c]
9127 add cast to avoid format warning; from portable
9128
9129commit eec840673bce3f69ad269672fba7ed8ff05f154f
9130Author: Damien Miller <djm@mindrot.org>
9131Date: Wed Aug 21 02:39:39 2013 +1000
9132
9133 - djm@cvs.openbsd.org 2013/08/06 23:05:01
9134 [sftp.1]
9135 document top-level -a option (the -a option to 'get' was already
9136 documented)
9137
9138commit 02e878070d0eddad4e11f2c82644b275418eb112
9139Author: Damien Miller <djm@mindrot.org>
9140Date: Wed Aug 21 02:38:51 2013 +1000
9141
9142 - djm@cvs.openbsd.org 2013/08/06 23:03:49
9143 [sftp.c]
9144 fix some whitespace at EOL
9145 make list of commands an enum rather than a long list of defines
9146 add -a to usage()
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-07 21:26:16 +0000