summaryrefslogtreecommitdiff
path: root/ChangeLog
diff options
context:
space:
mode:
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog3200
1 files changed, 2246 insertions, 954 deletions
diff --git a/ChangeLog b/ChangeLog
index 35a1a76b1..b01bb5642 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,22 +1,1895 @@
1commit c88ac102f0eb89f2eaa314cb2e2e0ca3c890c443 1commit 72b061d4ba0f909501c595d709ea76e06b01e5c9
2Author: Darren Tucker <dtucker@zip.com.au>
3Date: Fri Feb 26 14:40:04 2016 +1100
4
5 Add a note about using xlc on AIX.
6
7commit fd4e4f2416baa2e6565ea49d52aade296bad3e28
8Author: Darren Tucker <dtucker@zip.com.au>
9Date: Wed Feb 24 10:44:25 2016 +1100
10
11 Skip PrintLastLog in config dump mode.
12
13 When DISABLE_LASTLOG is set, do not try to include PrintLastLog in the
14 config dump since it'll be reported as UNKNOWN.
15
16commit 99135c764fa250801da5ec3b8d06cbd0111caae8
17Author: Damien Miller <djm@mindrot.org>
18Date: Tue Feb 23 20:17:23 2016 +1100
19
20 update spec/README versions ahead of release
21
22commit b86a334aaaa4d1e643eb1fd71f718573d6d948b5
23Author: Damien Miller <djm@mindrot.org>
24Date: Tue Feb 23 20:16:53 2016 +1100
25
26 put back portable patchlevel to p1
27
28commit 555dd35ff176847e3c6bd068ba2e8db4022eb24f
29Author: djm@openbsd.org <djm@openbsd.org>
30Date: Tue Feb 23 09:14:34 2016 +0000
31
32 upstream commit
33
34 openssh-7.2
35
36 Upstream-ID: 9db776b26014147fc907ece8460ef2bcb0f11e78
37
38commit 1acc058d0a7913838c830ed998a1a1fb5b7864bf
39Author: Damien Miller <djm@mindrot.org>
40Date: Tue Feb 23 16:12:13 2016 +1100
41
42 Disable tests where fs perms are incorrect
43
44 Some tests have strict requirements on the filesystem permissions
45 for certain files and directories. This adds a regress/check-perm
46 tool that copies the relevant logic from sshd to exactly test
47 the paths in question. This lets us skip tests when the local
48 filesystem doesn't conform to our expectations rather than
49 continuing and failing the test run.
50
51 ok dtucker@
52
53commit 39f303b1f36d934d8410b05625f25c7bcb75db4d
54Author: Damien Miller <djm@mindrot.org>
55Date: Tue Feb 23 12:56:59 2016 +1100
56
57 fix sandbox on OSX Lion
58
59 sshd was failing with:
60
61 ssh_sandbox_child: sandbox_init: dlopen(/usr/lib/libsandbox.1.dylib, 261):cw
62 image not found [preauth]
63
64 caused by chroot before sandboxing. Avoid by explicitly linking libsandbox
65 to sshd. Spotted by Darren.
66
67commit 0d1451a32c7436e6d3d482351e776bc5e7824ce4
68Author: djm@openbsd.org <djm@openbsd.org>
69Date: Tue Feb 23 01:34:14 2016 +0000
70
71 upstream commit
72
73 fix spurious error message when incorrect passphrase
74 entered for keys; reported by espie@ ok deraadt@
75
76 Upstream-ID: 58b2e46e63ed6912ed1ee780bd3bd8560f9a5899
77
78commit 09d87d79741beb85768b5e788d7dfdf4bc3543dc
79Author: sobrado@openbsd.org <sobrado@openbsd.org>
80Date: Sat Feb 20 23:06:23 2016 +0000
81
82 upstream commit
83
84 set ssh(1) protocol version to 2 only.
85
86 ok djm@
87
88 Upstream-ID: e168daf9d27d7e392e3c9923826bd8e87b2b3a10
89
90commit 9262e07826ba5eebf8423f7ac9e47ec488c47869
91Author: sobrado@openbsd.org <sobrado@openbsd.org>
92Date: Sat Feb 20 23:02:39 2016 +0000
93
94 upstream commit
95
96 add missing ~/.ssh/id_ecdsa and ~/.ssh/id_ed25519 to
97 IdentityFile.
98
99 ok djm@
100
101 Upstream-ID: 6ce99466312e4ae7708017c3665e3edb976f70cf
102
103commit c12f0fdce8f985fca8d71829fd64c5b89dc777f5
104Author: sobrado@openbsd.org <sobrado@openbsd.org>
105Date: Sat Feb 20 23:01:46 2016 +0000
106
107 upstream commit
108
109 AddressFamily defaults to any.
110
111 ok djm@
112
113 Upstream-ID: 0d94aa06a4b889bf57a7f631c45ba36d24c13e0c
114
115commit 907091acb188b1057d50c2158f74c3ecf1c2302b
116Author: Darren Tucker <dtucker@zip.com.au>
117Date: Fri Feb 19 09:05:39 2016 +1100
118
119 Make Solaris privs code build on older systems.
120
121 Not all systems with Solaris privs have priv_basicset so factor that
122 out and provide backward compatibility code. Similarly, not all have
123 PRIV_NET_ACCESS so wrap that in #ifdef. Based on code from
124 alex at cooperi.net and djm@ with help from carson at taltos.org and
125 wieland at purdue.edu.
126
127commit 292a8dee14e5e67dcd1b49ba5c7b9023e8420d59
128Author: djm@openbsd.org <djm@openbsd.org>
129Date: Wed Feb 17 22:20:14 2016 +0000
130
131 upstream commit
132
133 rekey refactor broke SSH1; spotted by Tom G. Christensen
134
135 Upstream-ID: 43f0d57928cc077c949af0bfa71ef574dcb58243
136
137commit 3a13cb543df9919aec2fc6b75f3dd3802facaeca
138Author: djm@openbsd.org <djm@openbsd.org>
139Date: Wed Feb 17 08:57:34 2016 +0000
140
141 upstream commit
142
143 rsa-sha2-512,rsa-sha2-256 cannot be selected explicitly
144 in *KeyTypes options yet. Remove them from the lists of algorithms for now.
145 committing on behalf of markus@ ok djm@
146
147 Upstream-ID: c6e8820eb8e610ac21551832c0c89684a9a51bb7
148
149commit a685ae8d1c24fb7c712c55a4f3280ee76f5f1e4b
150Author: jmc@openbsd.org <jmc@openbsd.org>
151Date: Wed Feb 17 07:38:19 2016 +0000
152
153 upstream commit
154
155 since these pages now clearly tell folks to avoid v1,
156 normalise the docs from a v2 perspective (i.e. stop pointing out which bits
157 are v2 only);
158
159 ok/tweaks djm ok markus
160
161 Upstream-ID: eb474f8c36fb6a532dc05c282f7965e38dcfa129
162
163commit c5c3f3279a0e4044b8de71b70d3570d692d0f29d
164Author: djm@openbsd.org <djm@openbsd.org>
165Date: Wed Feb 17 05:29:04 2016 +0000
166
167 upstream commit
168
169 make sandboxed privilege separation the default, not just
170 for new installs; "absolutely" deraadt@
171
172 Upstream-ID: 5221ef3b927d2df044e9aa3f5db74ae91743f69b
173
174commit eb3f7337a651aa01d5dec019025e6cdc124ed081
175Author: jmc@openbsd.org <jmc@openbsd.org>
176Date: Tue Feb 16 07:47:54 2016 +0000
177
178 upstream commit
179
180 no need to state that protocol 2 is the default twice;
181
182 Upstream-ID: b1e4c36b0c2e12e338e5b66e2978f2ac953b95eb
183
184commit e7901efa9b24e5b0c7e74f2c5520d47eead4d005
185Author: djm@openbsd.org <djm@openbsd.org>
186Date: Tue Feb 16 05:11:04 2016 +0000
187
188 upstream commit
189
190 Replace list of ciphers and MACs adjacent to -1/-2 flag
191 descriptions in ssh(1) with a strong recommendation not to use protocol 1.
192 Add a similar warning to the Protocol option descriptions in ssh_config(5)
193 and sshd_config(5);
194
195 prompted by and ok mmcc@
196
197 Upstream-ID: 961f99e5437d50e636feca023978950a232ead5e
198
199commit 5a0fcb77287342e2fc2ba1cee79b6af108973dc2
200Author: djm@openbsd.org <djm@openbsd.org>
201Date: Tue Feb 16 03:37:48 2016 +0000
202
203 upstream commit
204
205 add a "Close session" log entry (at loglevel=verbose) to
206 correspond to the existing "Starting session" one. Also include the session
207 id number to make multiplexed sessions more apparent.
208
209 feedback and ok dtucker@
210
211 Upstream-ID: e72d2ac080e02774376325136e532cb24c2e617c
212
213commit 624fd395b559820705171f460dd33d67743d13d6
214Author: djm@openbsd.org <djm@openbsd.org>
215Date: Wed Feb 17 02:24:17 2016 +0000
216
217 upstream commit
218
219 include bad $SSH_CONNECTION in failure output
220
221 Upstream-Regress-ID: b22d72edfde78c403aaec2b9c9753ef633cc0529
222
223commit 60d860e54b4f199e5e89963b1c086981309753cb
224Author: Darren Tucker <dtucker@zip.com.au>
225Date: Wed Feb 17 13:37:09 2016 +1100
226
227 Rollback addition of va_start.
228
229 va_start was added in 0f754e29dd3760fc0b172c1220f18b753fb0957e, however
230 it has the wrong number of args and it's not usable in non-variadic
231 functions anyway so it breaks things (for example Solaris 2.6 as
232 reported by Tom G. Christensen).i ok djm@
233
234commit 2fee909c3cee2472a98b26eb82696297b81e0d38
235Author: Darren Tucker <dtucker@zip.com.au>
236Date: Wed Feb 17 09:48:15 2016 +1100
237
238 Look for gethostbyname in libresolv and libnsl.
239
240 Should fix build problem on Solaris 2.6 reported by Tom G. Christensen.
241
242commit 5ac712d81a84396aab441a272ec429af5b738302
243Author: Damien Miller <djm@mindrot.org>
244Date: Tue Feb 16 10:45:02 2016 +1100
245
246 make existing ssh_malloc_init only for __OpenBSD__
247
248commit 24c9bded569d9f2449ded73f92fb6d12db7a9eec
249Author: djm@openbsd.org <djm@openbsd.org>
250Date: Mon Feb 15 23:32:37 2016 +0000
251
252 upstream commit
253
254 memleak of algorithm name in mm_answer_sign; reported by
255 Jakub Jelen
256
257 Upstream-ID: ccd742cd25952240ebd23d7d4d6b605862584d08
258
259commit ffb1e7e896139a42ceb78676f637658f44612411
260Author: dtucker@openbsd.org <dtucker@openbsd.org>
261Date: Mon Feb 15 09:47:49 2016 +0000
262
263 upstream commit
264
265 Add a function to enable security-related malloc_options.
266 With and ok deraadt@, something similar has been in the snaps for a while.
267
268 Upstream-ID: 43a95523b832b7f3b943d2908662191110c380ed
269
270commit ef39e8c0497ff0564990a4f9e8b7338b3ba3507c
271Author: Damien Miller <djm@mindrot.org>
272Date: Tue Feb 16 10:34:39 2016 +1100
273
274 sync ssh-copy-id with upstream 783ef08b0a75
275
276commit d2d772f55b19bb0e8d03c2fe1b9bb176d9779efd
277Author: djm@openbsd.org <djm@openbsd.org>
278Date: Fri Feb 12 00:20:30 2016 +0000
279
280 upstream commit
281
282 avoid fatal() for PKCS11 tokens that present empty key IDs
283 bz#1773, ok markus@
284
285 Upstream-ID: 044a764fee526f2c4a9d530bd10695422d01fc54
286
287commit e4c918a6c721410792b287c9fd21356a1bed5805
288Author: djm@openbsd.org <djm@openbsd.org>
289Date: Thu Feb 11 02:56:32 2016 +0000
290
291 upstream commit
292
293 sync crypto algorithm lists in ssh_config(5) and
294 sshd_config(5) with current reality. bz#2527
295
296 Upstream-ID: d7fd1b6c1ed848d866236bcb1d7049d2bb9b2ff6
297
298commit e30cabfa4ab456a30b3224f7f545f1bdfc4a2517
299Author: djm@openbsd.org <djm@openbsd.org>
300Date: Thu Feb 11 02:21:34 2016 +0000
301
302 upstream commit
303
304 fix regression in openssh-6.8 sftp client: existing
305 destination directories would incorrectly terminate recursive uploads;
306 bz#2528
307
308 Upstream-ID: 3306be469f41f26758e3d447987ac6d662623e18
309
310commit 714e367226ded4dc3897078be48b961637350b05
311Author: djm@openbsd.org <djm@openbsd.org>
312Date: Tue Feb 9 05:30:04 2016 +0000
313
314 upstream commit
315
316 turn off more old crypto in the client: hmac-md5, ripemd,
317 truncated HMACs, RC4, blowfish. ok markus@ dtucker@
318
319 Upstream-ID: 96aa11c2c082be45267a690c12f1d2aae6acd46e
320
321commit 5a622844ff7f78dcb75e223399f9ef0977e8d0a3
322Author: djm@openbsd.org <djm@openbsd.org>
323Date: Mon Feb 8 23:40:12 2016 +0000
324
325 upstream commit
326
327 don't attempt to percent_expand() already-canonicalised
328 addresses, avoiding unnecessary failures when attempting to connect to scoped
329 IPv6 addresses (that naturally contain '%' characters)
330
331 Upstream-ID: f24569cffa1a7cbde5f08dc739a72f4d78aa5c6a
332
333commit 19bcf2ea2d17413f2d9730dd2a19575ff86b9b6a
334Author: djm@openbsd.org <djm@openbsd.org>
335Date: Mon Feb 8 10:57:07 2016 +0000
336
337 upstream commit
338
339 refactor activation of rekeying
340
341 This makes automatic rekeying internal to the packet code (previously
342 the server and client loops needed to assist). In doing to it makes
343 application of rekey limits more accurate by accounting for packets
344 about to be sent as well as packets queued during rekeying events
345 themselves.
346
347 Based on a patch from dtucker@ which was in turn based on a patch
348 Aleksander Adamowski in bz#2521; ok markus@
349
350 Upstream-ID: a441227fd64f9739850ca97b4cf794202860fcd8
351
352commit 603ba41179e4b53951c7b90ee95b6ef3faa3f15d
353Author: naddy@openbsd.org <naddy@openbsd.org>
354Date: Fri Feb 5 13:28:19 2016 +0000
355
356 upstream commit
357
358 Only check errno if read() has returned an error. EOF is
359 not an error. This fixes a problem where the mux master would sporadically
360 fail to notice that the client had exited. ok mikeb@ djm@
361
362 Upstream-ID: 3c2dadc21fac6ef64665688aac8a75fffd57ae53
363
364commit 56d7dac790693ce420d225119283bc355cff9185
365Author: jsg@openbsd.org <jsg@openbsd.org>
366Date: Fri Feb 5 04:31:21 2016 +0000
367
368 upstream commit
369
370 avoid an uninitialised value when NumberOfPasswordPrompts
371 is 0 ok markus@ djm@
372
373 Upstream-ID: 11b068d83c2865343aeb46acf1e9eec00f829b6b
374
375commit deae7d52d59c5019c528f977360d87fdda15d20b
376Author: djm@openbsd.org <djm@openbsd.org>
377Date: Fri Feb 5 03:07:06 2016 +0000
378
379 upstream commit
380
381 mention internal DH-GEX fallback groups; bz#2302
382
383 Upstream-ID: e7b395fcca3122cd825515f45a2e41c9a157e09e
384
385commit cac3b6665f884d46192c0dc98a64112e8b11a766
386Author: djm@openbsd.org <djm@openbsd.org>
387Date: Fri Feb 5 02:37:56 2016 +0000
388
389 upstream commit
390
391 better description for MaxSessions; bz#2531
392
393 Upstream-ID: e2c0d74ee185cd1a3e9d4ca1f1b939b745b354da
394
395commit 5ef4b0fdcc7a239577a754829b50022b91ab4712
396Author: Damien Miller <djm@mindrot.org>
397Date: Wed Jan 27 17:45:56 2016 +1100
398
399 avoid FreeBSD RCS Id in comment
400
401 Change old $FreeBSD version string in comment so it doesn't
402 become an RCS ident downstream; requested by des AT des.no
403
404commit 696d12683c90d20a0a9c5f4275fc916b7011fb04
405Author: djm@openbsd.org <djm@openbsd.org>
406Date: Thu Feb 4 23:43:48 2016 +0000
407
408 upstream commit
409
410 printf argument casts to avoid warnings on strict
411 compilers
412
413 Upstream-ID: 7b9f6712cef01865ad29070262d366cf13587c9c
414
415commit 5658ef2501e785fbbdf5de2dc33b1ff7a4dca73a
416Author: millert@openbsd.org <millert@openbsd.org>
417Date: Mon Feb 1 21:18:17 2016 +0000
418
419 upstream commit
420
421 Avoid ugly "DISPLAY "(null)" invalid; disabling X11
422 forwarding" message when DISPLAY is not set. This could also result in a
423 crash on systems with a printf that doesn't handle NULL. OK djm@
424
425 Upstream-ID: 20ee0cfbda678a247264c20ed75362042b90b412
426
427commit 537f88ec7bcf40bd444ac5584c707c5588c55c43
428Author: dtucker@openbsd.org <dtucker@openbsd.org>
429Date: Fri Jan 29 05:18:15 2016 +0000
430
431 upstream commit
432
433 Add regression test for RekeyLimit parsing of >32bit values
434 (4G and 8G).
435
436 Upstream-Regress-ID: 548390350c62747b6234f522a99c319eee401328
437
438commit 4c6cb8330460f94e6c7ae28a364236d4188156a3
439Author: dtucker@openbsd.org <dtucker@openbsd.org>
440Date: Fri Jan 29 23:04:46 2016 +0000
441
442 upstream commit
443
444 Remove leftover roaming dead code. ok djm markus.
445
446 Upstream-ID: 13d1f9c8b65a5109756bcfd3b74df949d53615be
447
448commit 28136471809806d6246ef41e4341467a39fe2f91
449Author: djm@openbsd.org <djm@openbsd.org>
450Date: Fri Jan 29 05:46:01 2016 +0000
451
452 upstream commit
453
454 include packet type of non-data packets in debug3 output;
455 ok markus dtucker
456
457 Upstream-ID: 034eaf639acc96459b9c5ce782db9fcd8bd02d41
458
459commit 6fd6e28daccafaa35f02741036abe64534c361a1
460Author: dtucker@openbsd.org <dtucker@openbsd.org>
461Date: Fri Jan 29 03:31:03 2016 +0000
462
463 upstream commit
464
465 Revert "account for packets buffered but not yet
466 processed" change as it breaks for very small RekeyLimit values due to
467 continuous rekeying. ok djm@
468
469 Upstream-ID: 7e03f636cb45ab60db18850236ccf19079182a19
470
471commit 921ff00b0ac429666fb361d2d6cb1c8fff0006cb
472Author: dtucker@openbsd.org <dtucker@openbsd.org>
473Date: Fri Jan 29 02:54:45 2016 +0000
474
475 upstream commit
476
477 Allow RekeyLimits in excess of 4G up to 2**63 bits
478 (limited by the return type of scan_scaled). Part of bz#2521, ok djm.
479
480 Upstream-ID: 13bea82be566b9704821b1ea05bf7804335c7979
481
482commit c0060a65296f01d4634f274eee184c0e93ba0f23
483Author: dtucker@openbsd.org <dtucker@openbsd.org>
484Date: Fri Jan 29 02:42:46 2016 +0000
485
486 upstream commit
487
488 Account for packets buffered but not yet processed when
489 computing whether or not it is time to perform rekeying. bz#2521, based
490 loosely on a patch from olo at fb.com, ok djm@
491
492 Upstream-ID: 67e268b547f990ed220f3cb70a5624d9bda12b8c
493
494commit 44cf930e670488c85c9efeb373fa5f4b455692ac
495Author: djm@openbsd.org <djm@openbsd.org>
496Date: Wed Jan 27 06:44:58 2016 +0000
497
498 upstream commit
499
500 change old $FreeBSD version string in comment so it doesn't
501 become an RCS ident downstream; requested by des AT des.no
502
503 Upstream-ID: 8ca558c01f184e596b45e4fc8885534b2c864722
504
505commit ebacd377769ac07d1bf3c75169644336056b7060
506Author: djm@openbsd.org <djm@openbsd.org>
507Date: Wed Jan 27 00:53:12 2016 +0000
508
509 upstream commit
510
511 make the debug messages a bit more useful here
512
513 Upstream-ID: 478ccd4e897e0af8486b294aa63aa3f90ab78d64
514
515commit 458abc2934e82034c5c281336d8dc0f910aecad3
516Author: jsg@openbsd.org <jsg@openbsd.org>
517Date: Sat Jan 23 05:31:35 2016 +0000
518
519 upstream commit
520
521 Zero a stack buffer with explicit_bzero() instead of
522 memset() when returning from client_loop() for consistency with
523 buffer_free()/sshbuf_free().
524
525 ok dtucker@ deraadt@ djm@
526
527 Upstream-ID: bc9975b2095339811c3b954694d7d15ea5c58f66
528
529commit 65a3c0dacbc7dbb75ddb6a70ebe22d8de084d0b0
530Author: dtucker@openbsd.org <dtucker@openbsd.org>
531Date: Wed Jan 20 09:22:39 2016 +0000
532
533 upstream commit
534
535 Include sys/time.h for gettimeofday. From sortie at
536 maxsi.org.
537
538 Upstream-ID: 6ed0c33b836d9de0a664cd091e86523ecaa2fb3b
539
540commit fc77ccdc2ce6d5d06628b8da5048a6a5f6ffca5a
541Author: markus@openbsd.org <markus@openbsd.org>
542Date: Thu Jan 14 22:56:56 2016 +0000
543
544 upstream commit
545
546 fd leaks; report Qualys Security Advisory team; ok
547 deraadt@
548
549 Upstream-ID: 4ec0f12b9d8fa202293c9effa115464185aa071d
550
551commit a306863831c57ec5fad918687cc5d289ee8e2635
552Author: markus@openbsd.org <markus@openbsd.org>
553Date: Thu Jan 14 16:17:39 2016 +0000
554
555 upstream commit
556
557 remove roaming support; ok djm@
558
559 Upstream-ID: 2cab8f4b197bc95776fb1c8dc2859dad0c64dc56
560
561commit 6ef49e83e30688504552ac10875feabd5521565f
562Author: deraadt@openbsd.org <deraadt@openbsd.org>
563Date: Thu Jan 14 14:34:34 2016 +0000
564
565 upstream commit
566
567 Disable experimental client-side roaming support. Server
568 side was disabled/gutted for years already, but this aspect was surprisingly
569 forgotten. Thanks for report from Qualys
570
571 Upstream-ID: 2328004b58f431a554d4c1bf67f5407eae3389df
572
573commit 8d7b523b96d3be180572d9d338cedaafc0570f60
2Author: Damien Miller <djm@mindrot.org> 574Author: Damien Miller <djm@mindrot.org>
3Date: Thu Jan 14 11:08:19 2016 +1100 575Date: Thu Jan 14 11:08:19 2016 +1100
4 576
5 bump version numbers 577 bump version numbers
6 578
7commit 302bc21e6fadacb04b665868cd69b625ef69df90 579commit 8c3d512a1fac8b9c83b4d0c9c3f2376290bd84ca
8Author: Damien Miller <djm@mindrot.org> 580Author: Damien Miller <djm@mindrot.org>
9Date: Thu Jan 14 11:04:04 2016 +1100 581Date: Thu Jan 14 11:04:04 2016 +1100
10 582
11 openssh-7.1p2 583 openssh-7.1p2
12 584
13commit 6b33763242c063e4e0593877e835eeb1fd1b60aa 585commit e6c85f8889c5c9eb04796fdb76d2807636b9eef5
14Author: Damien Miller <djm@mindrot.org> 586Author: Damien Miller <djm@mindrot.org>
15Date: Thu Jan 14 11:02:58 2016 +1100 587Date: Fri Jan 15 01:30:36 2016 +1100
16 588
17 forcibly disable roaming support in the client 589 forcibly disable roaming support in the client
18 590
19commit 34d364f0d2e1e30a444009f0e04299bb7c94ba13 591commit ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c
592Author: djm@openbsd.org <djm@openbsd.org>
593Date: Wed Jan 13 23:04:47 2016 +0000
594
595 upstream commit
596
597 eliminate fallback from untrusted X11 forwarding to trusted
598 forwarding when the X server disables the SECURITY extension; Reported by
599 Thomas Hoger; ok deraadt@
600
601 Upstream-ID: f76195bd2064615a63ef9674a0e4096b0713f938
602
603commit 9a728cc918fad67c8a9a71201088b1e150340ba4
604Author: djm@openbsd.org <djm@openbsd.org>
605Date: Tue Jan 12 23:42:54 2016 +0000
606
607 upstream commit
608
609 use explicit_bzero() more liberally in the buffer code; ok
610 deraadt
611
612 Upstream-ID: 0ece37069fd66bc6e4f55eb1321f93df372b65bf
613
614commit 4626cbaf78767fc8e9c86dd04785386c59ae0839
615Author: Damien Miller <djm@mindrot.org>
616Date: Fri Jan 8 14:24:56 2016 +1100
617
618 Support Illumos/Solaris fine-grained privileges
619
620 Includes a pre-auth privsep sandbox and several pledge()
621 emulations. bz#2511, patch by Alex Wilson.
622
623 ok dtucker@
624
625commit 422d1b3ee977ff4c724b597fb2e437d38fc8de9d
626Author: djm@openbsd.org <djm@openbsd.org>
627Date: Thu Dec 31 00:33:52 2015 +0000
628
629 upstream commit
630
631 fix three bugs in KRL code related to (unused) signature
632 support: verification length was being incorrectly calculated, multiple
633 signatures were being incorrectly processed and a NULL dereference that
634 occurred when signatures were verified. Reported by Carl Jackson
635
636 Upstream-ID: e705e97ad3ccce84291eaa651708dd1b9692576b
637
638commit 6074c84bf95d00f29cc7d5d3cd3798737851aa1a
639Author: djm@openbsd.org <djm@openbsd.org>
640Date: Wed Dec 30 23:46:14 2015 +0000
641
642 upstream commit
643
644 unused prototype
645
646 Upstream-ID: f3eef4389d53ed6c0d5c77dcdcca3060c745da97
647
648commit 6213f0e180e54122bb1ba928e11c784e2b4e5380
649Author: guenther@openbsd.org <guenther@openbsd.org>
650Date: Sat Dec 26 20:51:35 2015 +0000
651
652 upstream commit
653
654 Use pread/pwrite instead separate lseek+read/write for
655 lastlog. Cast to off_t before multiplication to avoid truncation on ILP32
656
657 ok kettenis@ mmcc@
658
659 Upstream-ID: fc40092568cd195719ddf1a00aa0742340d616cf
660
661commit d7d2bc95045a43dd56ea696cc1d030ac9d77e81f
662Author: semarie@openbsd.org <semarie@openbsd.org>
663Date: Sat Dec 26 07:46:03 2015 +0000
664
665 upstream commit
666
667 adjust pledge promises for ControlMaster: when using
668 "ask" or "autoask", the process will use ssh-askpass for asking confirmation.
669
670 problem found by halex@
671
672 ok halex@
673
674 Upstream-ID: 38a58b30ae3eef85051c74d3c247216ec0735f80
675
676commit 271df8185d9689b3fb0523f58514481b858f6843
677Author: djm@openbsd.org <djm@openbsd.org>
678Date: Sun Dec 13 22:42:23 2015 +0000
679
680 upstream commit
681
682 unbreak connections with peers that set
683 first_kex_follows; fix from Matt Johnston va bz#2515
684
685 Upstream-ID: decc88ec4fc7515594fdb42b04aa03189a44184b
686
687commit 43849a47c5f8687699eafbcb5604f6b9c395179f
688Author: doug@openbsd.org <doug@openbsd.org>
689Date: Fri Dec 11 17:41:37 2015 +0000
690
691 upstream commit
692
693 Add "id" to ssh-agent pledge for subprocess support.
694
695 Found the hard way by Jan Johansson when using ssh-agent with X. Also,
696 rearranged proc/exec and retval to match other pledge calls in the tree.
697
698 ok djm@
699
700 Upstream-ID: 914255f6850e5e7fa830a2de6c38605333b584db
701
702commit 52d7078421844b2f88329f5be3de370b0a938636
703Author: mmcc@openbsd.org <mmcc@openbsd.org>
704Date: Fri Dec 11 04:21:11 2015 +0000
705
706 upstream commit
707
708 Remove NULL-checks before sshbuf_free().
709
710 ok djm@
711
712 Upstream-ID: 5ebed00ed5f9f03b119a345085e8774565466917
713
714commit a4b9e0f4e4a6980a0eb8072f76ea611cab5b77e7
715Author: djm@openbsd.org <djm@openbsd.org>
716Date: Fri Dec 11 03:24:25 2015 +0000
717
718 upstream commit
719
720 include remote port number in a few more messages; makes
721 tying log messages together into a session a bit easier; bz#2503 ok dtucker@
722
723 Upstream-ID: 9300dc354015f7a7368d94a8ff4a4266a69d237e
724
725commit 6091c362e89079397e68744ae30df121b0a72c07
726Author: djm@openbsd.org <djm@openbsd.org>
727Date: Fri Dec 11 03:20:09 2015 +0000
728
729 upstream commit
730
731 don't try to load SSHv1 private key when compiled without
732 SSHv1 support. From Iain Morgan bz#2505
733
734 Upstream-ID: 8b8e7b02a448cf5e5635979df2d83028f58868a7
735
736commit cce6a36bb95e81fa8bfb46daf22eabcf13afc352
737Author: djm@openbsd.org <djm@openbsd.org>
738Date: Fri Dec 11 03:19:09 2015 +0000
739
740 upstream commit
741
742 use SSH_MAX_PUBKEY_BYTES consistently as buffer size when
743 reading key files. Increase it to match the size of the buffers already being
744 used.
745
746 Upstream-ID: 1b60586b484b55a947d99a0b32bd25e0ced56fae
747
748commit 89540b6de025b80404a0cb8418c06377f3f98848
749Author: mmcc@openbsd.org <mmcc@openbsd.org>
750Date: Fri Dec 11 02:31:47 2015 +0000
751
752 upstream commit
753
754 Remove NULL-checks before sshkey_free().
755
756 ok djm@
757
758 Upstream-ID: 3e35afe8a25e021216696b5d6cde7f5d2e5e3f52
759
760commit 79394ed6d74572c2d2643d73937dad33727fc240
761Author: dtucker@openbsd.org <dtucker@openbsd.org>
762Date: Fri Dec 11 02:29:03 2015 +0000
763
764 upstream commit
765
766 fflush stdout so that output is seen even when running in
767 debug mode when output may otherwise not be flushed. Patch from dustin at
768 null-ptr.net.
769
770 Upstream-ID: b0c6b4cd2cdb01d7e9eefbffdc522e35b5bc4acc
771
772commit ee607cccb6636eb543282ba90e0677b0604d8b7a
773Author: Darren Tucker <dtucker@zip.com.au>
774Date: Tue Dec 15 15:23:49 2015 +1100
775
776 Increase robustness of redhat/openssh.spec
777
778 - remove configure --with-rsh, because this option isn't supported anymore
779 - replace last occurrence of BuildPreReq by BuildRequires
780 - update grep statement to query the krb5 include directory
781
782 Patch from CarstenGrohmann via github, ok djm.
783
784commit b5fa0cd73555b991a543145603658d7088ec6b60
785Author: Darren Tucker <dtucker@zip.com.au>
786Date: Tue Dec 15 15:10:32 2015 +1100
787
788 Allow --without-ssl-engine with --without-openssl
789
790 Patch from Mike Frysinger via github.
791
792commit c1d7e546f6029024f3257cc25c92f2bddf163125
793Author: Darren Tucker <dtucker@zip.com.au>
794Date: Tue Dec 15 14:27:09 2015 +1100
795
796 Include openssl crypto.h for SSLeay.
797
798 Patch from doughdemon via github.
799
800commit c6f5f01651526e88c00d988ce59d71f481ebac62
801Author: Darren Tucker <dtucker@zip.com.au>
802Date: Tue Dec 15 13:59:12 2015 +1100
803
804 Add sys/time.h for gettimeofday.
805
806 Should allow it it compile with MUSL libc. Based on patch from
807 doughdemon via github.
808
809commit 39736be06c7498ef57d6970f2d85cf066ae57c82
810Author: djm@openbsd.org <djm@openbsd.org>
811Date: Fri Dec 11 02:20:28 2015 +0000
812
813 upstream commit
814
815 correct error messages; from Tomas Kuthan bz#2507
816
817 Upstream-ID: 7454a0affeab772398052954c79300aa82077093
818
819commit 94141b7ade24afceeb6762a3f99e09e47a6c42b6
820Author: mmcc@openbsd.org <mmcc@openbsd.org>
821Date: Fri Dec 11 00:20:04 2015 +0000
822
823 upstream commit
824
825 Pass (char *)NULL rather than (char *)0 to execl and
826 execlp.
827
828 ok dtucker@
829
830 Upstream-ID: 56c955106cbddba86c3dd9bbf786ac0d1b361492
831
832commit d59ce08811bf94111c2f442184cf7d1257ffae24
833Author: mmcc@openbsd.org <mmcc@openbsd.org>
834Date: Thu Dec 10 17:08:40 2015 +0000
835
836 upstream commit
837
838 Remove NULL-checks before free().
839
840 ok dtucker@
841
842 Upstream-ID: e3d3cb1ce900179906af36517b5eea0fb15e6ef8
843
844commit 8e56dd46cb37879c73bce2d6032cf5e7f82d5a71
845Author: mmcc@openbsd.org <mmcc@openbsd.org>
846Date: Thu Dec 10 07:01:35 2015 +0000
847
848 upstream commit
849
850 Fix a couple "the the" typos. ok dtucker@
851
852 Upstream-ID: ec364c5af32031f013001fd28d1bd3dfacfe9a72
853
854commit 6262a0522ddc2c0f2e9358dcb68d59b46e9c533e
855Author: markus@openbsd.org <markus@openbsd.org>
856Date: Mon Dec 7 20:04:09 2015 +0000
857
858 upstream commit
859
860 stricter encoding type checks for ssh-rsa; ok djm@
861
862 Upstream-ID: 8cca7c787599a5e8391e184d0b4f36fdc3665650
863
864commit d86a3ba7af160c13496102aed861ae48a4297072
865Author: Damien Miller <djm@mindrot.org>
866Date: Wed Dec 9 09:18:45 2015 +1100
867
868 Don't set IPV6_V6ONLY on OpenBSD
869
870 It isn't necessary and runs afoul of pledge(2) restrictions.
871
872commit da98c11d03d819a15429d8fff9688acd7505439f
873Author: djm@openbsd.org <djm@openbsd.org>
874Date: Mon Dec 7 02:20:46 2015 +0000
875
876 upstream commit
877
878 basic unit tests for rsa-sha2-* signature types
879
880 Upstream-Regress-ID: 7dc4b9db809d578ff104d591b4d86560c3598d3c
881
882commit 3da893fdec9936dd2c23739cdb3c0c9d4c59fca0
883Author: markus@openbsd.org <markus@openbsd.org>
884Date: Sat Dec 5 20:53:21 2015 +0000
885
886 upstream commit
887
888 prefer rsa-sha2-512 over -256 for hostkeys, too; noticed
889 by naddy@
890
891 Upstream-ID: 685f55f7ec566a8caca587750672723a0faf3ffe
892
893commit 8b56e59714d87181505e4678f0d6d39955caf10e
894Author: tobias@openbsd.org <tobias@openbsd.org>
895Date: Fri Dec 4 21:51:06 2015 +0000
896
897 upstream commit
898
899 Properly handle invalid %-format by calling fatal.
900
901 ok deraadt, djm
902
903 Upstream-ID: 5692bce7d9f6eaa9c488cb93d3b55e758bef1eac
904
905commit 76c9fbbe35aabc1db977fb78e827644345e9442e
906Author: markus@openbsd.org <markus@openbsd.org>
907Date: Fri Dec 4 16:41:28 2015 +0000
908
909 upstream commit
910
911 implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures
912 (user and host auth) based on draft-rsa-dsa-sha2-256-03.txt and
913 draft-ssh-ext-info-04.txt; with & ok djm@
914
915 Upstream-ID: cf82ce532b2733e5c4b34bb7b7c94835632db309
916
917commit 6064a8b8295cb5a17b5ebcfade53053377714f40
918Author: djm@openbsd.org <djm@openbsd.org>
919Date: Fri Dec 4 00:24:55 2015 +0000
920
921 upstream commit
922
923 clean up agent_fd handling; properly initialise it to -1
924 and make tests consistent
925
926 ok markus@
927
928 Upstream-ID: ac9554323d5065745caf17b5e37cb0f0d4825707
929
930commit b91926a97620f3e51761c271ba57aa5db790f48d
931Author: semarie@openbsd.org <semarie@openbsd.org>
932Date: Thu Dec 3 17:00:18 2015 +0000
933
934 upstream commit
935
936 pledges ssh client: - mux client: which is used when
937 ControlMaster is in use. will end with "stdio proc tty" (proc is to
938 permit sending SIGWINCH to mux master on window resize)
939
940 - client loop: several levels of pledging depending of your used options
941
942 ok deraadt@
943
944 Upstream-ID: 21676155a700e51f2ce911e33538e92a2cd1d94b
945
946commit bcce47466bbc974636f588b5e4a9a18ae386f64a
947Author: doug@openbsd.org <doug@openbsd.org>
948Date: Wed Dec 2 08:30:50 2015 +0000
949
950 upstream commit
951
952 Add "cpath" to the ssh-agent pledge so the cleanup
953 handler can unlink().
954
955 ok djm@
956
957 Upstream-ID: 9e632991d48241d56db645602d381253a3d8c29d
958
959commit a90d001543f46716b6590c6dcc681d5f5322f8cf
960Author: djm@openbsd.org <djm@openbsd.org>
961Date: Wed Dec 2 08:00:58 2015 +0000
962
963 upstream commit
964
965 ssh-agent pledge needs proc for askpass; spotted by todd@
966
967 Upstream-ID: 349aa261b29cc0e7de47ef56167769c432630b2a
968
969commit d952162b3c158a8f23220587bb6c8fcda75da551
970Author: djm@openbsd.org <djm@openbsd.org>
971Date: Tue Dec 1 23:29:24 2015 +0000
972
973 upstream commit
974
975 basic pledge() for ssh-agent, more refinement needed
976
977 Upstream-ID: 5b5b03c88162fce549e45e1b6dd833f20bbb5e13
978
979commit f0191d7c8e76e30551084b79341886d9bb38e453
980Author: Damien Miller <djm@mindrot.org>
981Date: Mon Nov 30 10:53:25 2015 +1100
982
983 Revert "stub for pledge(2) for systems that lack it"
984
985 This reverts commit 14c887c8393adde2d9fd437d498be30f8c98535c.
986
987 dtucker beat me to it :/
988
989commit 6283cc72eb0e49a3470d30e07ca99a1ba9e89676
990Author: Damien Miller <djm@mindrot.org>
991Date: Mon Nov 30 10:37:03 2015 +1100
992
993 revert 7d4c7513: bring back S/Key prototypes
994
995 (but leave RCSID changes)
996
997commit 14c887c8393adde2d9fd437d498be30f8c98535c
998Author: Damien Miller <djm@mindrot.org>
999Date: Mon Nov 30 09:45:29 2015 +1100
1000
1001 stub for pledge(2) for systems that lack it
1002
1003commit 452c0b6af5d14c37553e30059bf74456012493f3
1004Author: djm@openbsd.org <djm@openbsd.org>
1005Date: Sun Nov 29 22:18:37 2015 +0000
1006
1007 upstream commit
1008
1009 pledge, better fatal() messages; feedback deraadt@
1010
1011 Upstream-ID: 3e00f6ccfe2b9a7a2d1dbba5409586180801488f
1012
1013commit 6da413c085dba37127687b2617a415602505729b
1014Author: deraadt@openbsd.org <deraadt@openbsd.org>
1015Date: Sat Nov 28 06:50:52 2015 +0000
1016
1017 upstream commit
1018
1019 do not leak temp file if there is no known_hosts file
1020 from craig leres, ok djm
1021
1022 Upstream-ID: c820497fd5574844c782e79405c55860f170e426
1023
1024commit 3ddd15e1b63a4d4f06c8ab16fbdd8a5a61764f16
1025Author: Darren Tucker <dtucker@zip.com.au>
1026Date: Mon Nov 30 07:23:53 2015 +1100
1027
1028 Add a null implementation of pledge.
1029
1030 Fixes builds on almost everything.
1031
1032commit b1d6b3971ef256a08692efc409fc9ada719111cc
1033Author: djm@openbsd.org <djm@openbsd.org>
1034Date: Sat Nov 28 06:41:03 2015 +0000
1035
1036 upstream commit
1037
1038 don't include port number in tcpip-forward replies for
1039 requests that don't allocate a port; bz#2509 diagnosed by Ron Frederick ok
1040 markus
1041
1042 Upstream-ID: 77efad818addb61ec638b5a2362f1554e21a970a
1043
1044commit 9080bd0b9cf10d0f13b1f642f20cb84285cb8d65
1045Author: deraadt@openbsd.org <deraadt@openbsd.org>
1046Date: Fri Nov 27 00:49:31 2015 +0000
1047
1048 upstream commit
1049
1050 pledge "stdio rpath wpath cpath fattr tty proc exec"
1051 except for the -p option (which sadly has insane semantics...) ok semarie
1052 dtucker
1053
1054 Upstream-ID: 8854bbd58279abe00f6c33f8094bdc02c8c65059
1055
1056commit 4d90625b229cf6b3551d81550a9861897509a65f
1057Author: halex@openbsd.org <halex@openbsd.org>
1058Date: Fri Nov 20 23:04:01 2015 +0000
1059
1060 upstream commit
1061
1062 allow comment change for all supported formats
1063
1064 ok djm@
1065
1066 Upstream-ID: 5fc477cf2f119b2d44aa9c683af16cb00bb3744b
1067
1068commit 8ca915fc761519dd1f7766a550ec597a81db5646
1069Author: djm@openbsd.org <djm@openbsd.org>
1070Date: Fri Nov 20 01:45:29 2015 +0000
1071
1072 upstream commit
1073
1074 add cast to make -Werror clean
1075
1076 Upstream-ID: 288db4f8f810bd475be01320c198250a04ff064d
1077
1078commit ac9473580dcd401f8281305af98635cdaae9bf96
1079Author: Damien Miller <djm@mindrot.org>
1080Date: Fri Nov 20 12:35:41 2015 +1100
1081
1082 fix multiple authentication using S/Key w/ privsep
1083
1084 bz#2502, patch from Kevin Korb and feandil_
1085
1086commit 88b6fcdeb87a2fb76767854d9eb15006662dca57
1087Author: djm@openbsd.org <djm@openbsd.org>
1088Date: Thu Nov 19 08:23:27 2015 +0000
1089
1090 upstream commit
1091
1092 ban ConnectionAttempts=0, it makes no sense and would cause
1093 ssh_connect_direct() to print an uninitialised stack variable; bz#2500
1094 reported by dvw AT phas.ubc.ca
1095
1096 Upstream-ID: 32b5134c608270583a90b93a07b3feb3cbd5f7d5
1097
1098commit 964ab3ee7a8f96bdbc963d5b5a91933d6045ebe7
1099Author: djm@openbsd.org <djm@openbsd.org>
1100Date: Thu Nov 19 01:12:32 2015 +0000
1101
1102 upstream commit
1103
1104 trailing whitespace
1105
1106 Upstream-ID: 31fe0ad7c4d08e87f1d69c79372f5e3c5cd79051
1107
1108commit f96516d052dbe38561f6b92b0e4365d8e24bb686
1109Author: djm@openbsd.org <djm@openbsd.org>
1110Date: Thu Nov 19 01:09:38 2015 +0000
1111
1112 upstream commit
1113
1114 print host certificate contents at debug level
1115
1116 Upstream-ID: 39354cdd8a2b32b308fd03f98645f877f540f00d
1117
1118commit 499cf36fecd6040e30e2912dd25655bc574739a7
1119Author: djm@openbsd.org <djm@openbsd.org>
1120Date: Thu Nov 19 01:08:55 2015 +0000
1121
1122 upstream commit
1123
1124 move the certificate validity formatting code to
1125 sshkey.[ch]
1126
1127 Upstream-ID: f05f7c78fab20d02ff1d5ceeda533ef52e8fe523
1128
1129commit bcb7bc77bbb1535d1008c7714085556f3065d99d
1130Author: djm@openbsd.org <djm@openbsd.org>
1131Date: Wed Nov 18 08:37:28 2015 +0000
1132
1133 upstream commit
1134
1135 fix "ssh-keygen -l" of private key, broken in support for
1136 multiple plain keys on stdin
1137
1138 Upstream-ID: 6b3132d2c62d03d0bad6f2bcd7e2d8b7dab5cd9d
1139
1140commit 259adb6179e23195c8f6913635ea71040d1ccd63
1141Author: millert@openbsd.org <millert@openbsd.org>
1142Date: Mon Nov 16 23:47:52 2015 +0000
1143
1144 upstream commit
1145
1146 Replace remaining calls to index(3) with strchr(3). OK
1147 jca@ krw@
1148
1149 Upstream-ID: 33837d767a0cf1db1489b96055f9e330bc0bab6d
1150
1151commit c56a255162c2166884539c0a1f7511575325b477
1152Author: djm@openbsd.org <djm@openbsd.org>
1153Date: Mon Nov 16 22:53:07 2015 +0000
1154
1155 upstream commit
1156
1157 Allow fingerprinting from standard input "ssh-keygen -lf
1158 -"
1159
1160 Support fingerprinting multiple plain keys in a file and authorized_keys
1161 files too (bz#1319)
1162
1163 ok markus@
1164
1165 Upstream-ID: 903f8b4502929d6ccf53509e4e07eae084574b77
1166
1167commit 5b4010d9b923cf1b46c9c7b1887c013c2967e204
1168Author: djm@openbsd.org <djm@openbsd.org>
1169Date: Mon Nov 16 22:51:05 2015 +0000
1170
1171 upstream commit
1172
1173 always call privsep_preauth_child() regardless of whether
1174 sshd was started by root; it does important priming before sandboxing and
1175 failing to call it could result in sandbox violations later; ok markus@
1176
1177 Upstream-ID: c8a6d0d56c42f3faab38460dc917ca0d1705d383
1178
1179commit 3a9f84b58b0534bbb485f1eeab75665e2d03371f
1180Author: djm@openbsd.org <djm@openbsd.org>
1181Date: Mon Nov 16 22:50:01 2015 +0000
1182
1183 upstream commit
1184
1185 improve sshkey_read() semantics; only update *cpp when a
1186 key is successfully read; ok markus@
1187
1188 Upstream-ID: f371e78e8f4fab366cf69a42bdecedaed5d1b089
1189
1190commit db6f8dc5dd5655b59368efd074994d4568bc3556
1191Author: logan@openbsd.org <logan@openbsd.org>
1192Date: Mon Nov 16 06:13:04 2015 +0000
1193
1194 upstream commit
1195
1196 1) Use xcalloc() instead of xmalloc() to check for
1197 potential overflow. (Feedback from both mmcc@ and djm@) 2) move set_size
1198 just before the for loop. (suggested by djm@)
1199
1200 OK djm@
1201
1202 Upstream-ID: 013534c308187284756c3141f11d2c0f33c47213
1203
1204commit 383f10fb84a0fee3c01f9d97594f3e22aa3cd5e0
1205Author: djm@openbsd.org <djm@openbsd.org>
1206Date: Mon Nov 16 00:30:02 2015 +0000
1207
1208 upstream commit
1209
1210 Add a new authorized_keys option "restrict" that
1211 includes all current and future key restrictions (no-*-forwarding, etc). Also
1212 add permissive versions of the existing restrictions, e.g. "no-pty" -> "pty".
1213 This simplifies the task of setting up restricted keys and ensures they are
1214 maximally-restricted, regardless of any permissions we might implement in the
1215 future.
1216
1217 Example:
1218
1219 restrict,pty,command="nethack" ssh-ed25519 AAAAC3NzaC1lZDI1...
1220
1221 Idea from Jann Horn; ok markus@
1222
1223 Upstream-ID: 04ceb9d448e46e67e13887a7ae5ea45b4f1719d0
1224
1225commit e41a071f7bda6af1fb3f081bed0151235fa61f15
1226Author: jmc@openbsd.org <jmc@openbsd.org>
1227Date: Sun Nov 15 23:58:04 2015 +0000
1228
1229 upstream commit
1230
1231 correct section number for ssh-agent;
1232
1233 Upstream-ID: 44be72fd8bcc167635c49b357b1beea8d5674bd6
1234
1235commit 1a11670286acddcc19f5eff0966c380831fc4638
1236Author: jmc@openbsd.org <jmc@openbsd.org>
1237Date: Sun Nov 15 23:54:15 2015 +0000
1238
1239 upstream commit
1240
1241 do not confuse mandoc by presenting "Dd";
1242
1243 Upstream-ID: 1470fce171c47b60bbc7ecd0fc717a442c2cfe65
1244
1245commit f361df474c49a097bfcf16d1b7b5c36fcd844b4b
1246Author: jcs@openbsd.org <jcs@openbsd.org>
1247Date: Sun Nov 15 22:26:49 2015 +0000
1248
1249 upstream commit
1250
1251 Add an AddKeysToAgent client option which can be set to
1252 'yes', 'no', 'ask', or 'confirm', and defaults to 'no'. When enabled, a
1253 private key that is used during authentication will be added to ssh-agent if
1254 it is running (with confirmation enabled if set to 'confirm').
1255
1256 Initial version from Joachim Schipper many years ago.
1257
1258 ok markus@
1259
1260 Upstream-ID: a680db2248e8064ec55f8be72d539458c987d5f4
1261
1262commit d87063d9baf5479b6e813d47dfb694a97df6f6f5
1263Author: djm@openbsd.org <djm@openbsd.org>
1264Date: Fri Nov 13 04:39:35 2015 +0000
1265
1266 upstream commit
1267
1268 send SSH2_MSG_UNIMPLEMENTED replies to unexpected
1269 messages during KEX; bz#2949, ok dtucker@
1270
1271 Upstream-ID: 2b3abdff344d53c8d505f45c83a7b12e84935786
1272
1273commit 9fd04681a1e9b0af21e08ff82eb674cf0a499bfc
1274Author: djm@openbsd.org <djm@openbsd.org>
1275Date: Fri Nov 13 04:38:06 2015 +0000
1276
1277 upstream commit
1278
1279 Support "none" as an argument for sshd_config
1280 ForceCommand and ChrootDirectory. Useful inside Match blocks to override a
1281 global default. bz#2486 ok dtucker@
1282
1283 Upstream-ID: 7ef478d6592bc7db5c7376fc33b4443e63dccfa5
1284
1285commit 94bc0b72c29e511cbbc5772190d43282e5acfdfe
1286Author: djm@openbsd.org <djm@openbsd.org>
1287Date: Fri Nov 13 04:34:15 2015 +0000
1288
1289 upstream commit
1290
1291 support multiple certificates (one per line) and
1292 reading from standard input (using "-f -") for "ssh-keygen -L"; ok dtucker@
1293
1294 Upstream-ID: ecbadeeef3926e5be6281689b7250a32a80e88db
1295
1296commit b6b9108f5b561c83612cb97ece4134eb59fde071
1297Author: djm@openbsd.org <djm@openbsd.org>
1298Date: Fri Nov 13 02:57:46 2015 +0000
1299
1300 upstream commit
1301
1302 list a couple more options usable in Match blocks;
1303 bz#2489
1304
1305 Upstream-ID: e4d03f39d254db4c0cc54101921bb89fbda19879
1306
1307commit a7994b3f5a5a5a33b52b0a6065d08e888f0a99fb
1308Author: djm@openbsd.org <djm@openbsd.org>
1309Date: Wed Nov 11 04:56:39 2015 +0000
1310
1311 upstream commit
1312
1313 improve PEEK/POKE macros: better casts, don't multiply
1314 evaluate arguments; ok deraadt@
1315
1316 Upstream-ID: 9a1889e19647615ededbbabab89064843ba92d3e
1317
1318commit 7d4c7513a7f209cb303a608ac6e46b3f1dfc11ec
1319Author: djm@openbsd.org <djm@openbsd.org>
1320Date: Wed Nov 11 01:48:01 2015 +0000
1321
1322 upstream commit
1323
1324 remove prototypes for long-gone s/key support; ok
1325 dtucker@
1326
1327 Upstream-ID: db5bed3c57118af986490ab23d399df807359a79
1328
1329commit 07889c75926c040b8e095949c724e66af26441cb
1330Author: Damien Miller <djm@mindrot.org>
1331Date: Sat Nov 14 18:44:49 2015 +1100
1332
1333 read back from libcrypto RAND when privdropping
1334
1335 makes certain libcrypto implementations cache a /dev/urandom fd
1336 in preparation of sandboxing. Based on patch by Greg Hartman.
1337
1338commit 1560596f44c01bb0cef977816410950ed17b8ecd
1339Author: Darren Tucker <dtucker@zip.com.au>
1340Date: Tue Nov 10 11:14:47 2015 +1100
1341
1342 Fix compiler warnings in the openssl header check.
1343
1344 Noted by Austin English.
1345
1346commit e72a8575ffe1d8adff42c9abe9ca36938acc036b
1347Author: jmc@openbsd.org <jmc@openbsd.org>
1348Date: Sun Nov 8 23:24:03 2015 +0000
1349
1350 upstream commit
1351
1352 -c before -H, in SYNOPSIS and usage();
1353
1354 Upstream-ID: 25e8c58a69e1f37fcd54ac2cd1699370acb5e404
1355
1356commit 3a424cdd21db08c7b0ded902f97b8f02af5aa485
1357Author: djm@openbsd.org <djm@openbsd.org>
1358Date: Sun Nov 8 22:30:20 2015 +0000
1359
1360 upstream commit
1361
1362 Add "ssh-keyscan -c ..." flag to allow fetching
1363 certificates instead of plain keys; ok markus@
1364
1365 Upstream-ID: 0947e2177dba92339eced9e49d3c5bf7dda69f82
1366
1367commit 69fead5d7cdaa73bdece9fcba80f8e8e70b90346
1368Author: jmc@openbsd.org <jmc@openbsd.org>
1369Date: Sun Nov 8 22:08:38 2015 +0000
1370
1371 upstream commit
1372
1373 remove slogin links; ok deraadt markus djm
1374
1375 Upstream-ID: 39ba08548acde4c54f2d4520c202c2a863a3c730
1376
1377commit 2fecfd486bdba9f51b3a789277bb0733ca36e1c0
1378Author: djm@openbsd.org <djm@openbsd.org>
1379Date: Sun Nov 8 21:59:11 2015 +0000
1380
1381 upstream commit
1382
1383 fix OOB read in packet code caused by missing return
1384 statement found by Ben Hawkes; ok markus@ deraadt@
1385
1386 Upstream-ID: a3e3a85434ebfa0690d4879091959591f30efc62
1387
1388commit 5e288923a303ca672b686908320bc5368ebec6e6
1389Author: mmcc@openbsd.org <mmcc@openbsd.org>
1390Date: Fri Nov 6 00:31:41 2015 +0000
1391
1392 upstream commit
1393
1394 1. rlogin and rsh are long gone 2. protocol version isn't
1395 of core relevance here, and v1 is going away
1396
1397 ok markus@, deraadt@
1398
1399 Upstream-ID: 8b46bc94cf1ca7c8c1a75b1c958b2bb38d7579c8
1400
1401commit 8b29008bbe97f33381d9b4b93fcfa304168d0286
1402Author: jmc@openbsd.org <jmc@openbsd.org>
1403Date: Thu Nov 5 09:48:05 2015 +0000
1404
1405 upstream commit
1406
1407 "commandline" -> "command line", since there are so few
1408 examples of the former in the pages, so many of the latter, and in some of
1409 these pages we had multiple spellings;
1410
1411 prompted by tj
1412
1413 Upstream-ID: 78459d59bff74223f8139d9001ccd56fc4310659
1414
1415commit 996b24cebf20077fbe5db07b3a2c20c2d9db736e
1416Author: Darren Tucker <dtucker@zip.com.au>
1417Date: Thu Oct 29 20:57:34 2015 +1100
1418
1419 (re)wrap SYS_sendsyslog in ifdef.
1420
1421 Replace ifdef that went missing in commit
1422 c61b42f2678f21f05653ac2d3d241b48ab5d59ac. Fixes build on older
1423 OpenBSDs.
1424
1425commit b67e2e76fcf1ae7c802eb27ca927e16c91a513ff
1426Author: djm@openbsd.org <djm@openbsd.org>
1427Date: Thu Oct 29 08:05:17 2015 +0000
1428
1429 upstream commit
1430
1431 regress test for "PubkeyAcceptedKeyTypes +..." inside a
1432 Match block
1433
1434 Upstream-Regress-ID: 246c37ed64a2e5704d4c158ccdca1ff700e10647
1435
1436commit abd9dbc3c0d8c8c7561347cfa22166156e78c077
1437Author: dtucker@openbsd.org <dtucker@openbsd.org>
1438Date: Mon Oct 26 02:50:58 2015 +0000
1439
1440 upstream commit
1441
1442 Fix typo certopt->certopts in shell variable. This would
1443 cause the test to hang at a host key prompt if you have an A or CNAME for
1444 "proxy" in your local domain.
1445
1446 Upstream-Regress-ID: 6ea03bcd39443a83c89e2c5606392ceb9585836a
1447
1448commit ed08510d38aef930a061ae30d10f2a9cf233bafa
1449Author: djm@openbsd.org <djm@openbsd.org>
1450Date: Thu Oct 29 08:05:01 2015 +0000
1451
1452 upstream commit
1453
1454 Fix "PubkeyAcceptedKeyTypes +..." inside a Match block;
1455 ok dtucker@
1456
1457 Upstream-ID: 853662c4036730b966aab77684390c47b9738c69
1458
1459commit a4aef3ed29071719b2af82fdf1ac3c2514f82bc5
1460Author: djm@openbsd.org <djm@openbsd.org>
1461Date: Tue Oct 27 08:54:52 2015 +0000
1462
1463 upstream commit
1464
1465 fix execv arguments in a way less likely to cause grief
1466 for -portable; ok dtucker@
1467
1468 Upstream-ID: 5902bf0ea0371f39f1300698dc3b8e4105fc0fc5
1469
1470commit 63d188175accea83305e89fafa011136ff3d96ad
1471Author: djm@openbsd.org <djm@openbsd.org>
1472Date: Tue Oct 27 01:44:45 2015 +0000
1473
1474 upstream commit
1475
1476 log certificate serial in verbose() messages to match the
1477 main auth success/fail message; ok dtucker@
1478
1479 Upstream-ID: dfc48b417c320b97c36ff351d303c142f2186288
1480
1481commit 2aaba0cfd560ecfe92aa50c00750e6143842cf1f
1482Author: djm@openbsd.org <djm@openbsd.org>
1483Date: Tue Oct 27 00:49:53 2015 +0000
1484
1485 upstream commit
1486
1487 avoid de-const warning & shrink; ok dtucker@
1488
1489 Upstream-ID: 69a85ef94832378952a22c172009cbf52aaa11db
1490
1491commit 03239c18312b9bab7d1c3b03062c61e8bbc1ca6e
1492Author: dtucker@openbsd.org <dtucker@openbsd.org>
1493Date: Sun Oct 25 23:42:00 2015 +0000
1494
1495 upstream commit
1496
1497 Expand tildes in filenames passed to -i before checking
1498 whether or not the identity file exists. This means that if the shell
1499 doesn't do the expansion (eg because the option and filename were given as a
1500 single argument) then we'll still add the key. bz#2481, ok markus@
1501
1502 Upstream-ID: db1757178a14ac519e9a3e1a2dbd21113cb3bfc6
1503
1504commit 97e184e508dd33c37860c732c0eca3fc57698b40
1505Author: dtucker@openbsd.org <dtucker@openbsd.org>
1506Date: Sun Oct 25 23:14:03 2015 +0000
1507
1508 upstream commit
1509
1510 Do not prepend "exec" to the shell command run by "Match
1511 exec" in a config file. It's an unnecessary optimization from repurposed
1512 ProxyCommand code and prevents some things working with some shells.
1513 bz#2471, pointed out by res at qoxp.net. ok markus@
1514
1515 Upstream-ID: a1ead25ae336bfa15fb58d8c6b5589f85b4c33a3
1516
1517commit 8db134e7f457bcb069ec72bc4ee722e2af557c69
1518Author: Darren Tucker <dtucker@zip.com.au>
1519Date: Thu Oct 29 10:48:23 2015 +1100
1520
1521 Prevent name collisions with system glob (bz#2463)
1522
1523 Move glob.h from includes.h to the only caller (sftp) and override the
1524 names for the symbols. This prevents name collisions with the system glob
1525 in the case where something other than ssh uses it (eg kerberos). With
1526 jjelen at redhat.com, ok djm@
1527
1528commit 86c10dbbef6a5800d2431a66cf7f41a954bb62b5
1529Author: dtucker@openbsd.org <dtucker@openbsd.org>
1530Date: Fri Oct 23 02:22:01 2015 +0000
1531
1532 upstream commit
1533
1534 Update expected group sizes to match recent code changes.
1535
1536 Upstream-Regress-ID: 0004f0ea93428969fe75bcfff0d521c553977794
1537
1538commit 9ada37d36003a77902e90a3214981e417457cf13
1539Author: djm@openbsd.org <djm@openbsd.org>
1540Date: Sat Oct 24 22:56:19 2015 +0000
1541
1542 upstream commit
1543
1544 fix keyscan output for multiple hosts/addrs on one line
1545 when host hashing or a non standard port is in use; bz#2479 ok dtucker@
1546
1547 Upstream-ID: 5321dabfaeceba343da3c8a8b5754c6f4a0a307b
1548
1549commit 44fc7cd7dcef6c52c6b7e9ff830dfa32879bd319
1550Author: djm@openbsd.org <djm@openbsd.org>
1551Date: Sat Oct 24 22:52:22 2015 +0000
1552
1553 upstream commit
1554
1555 skip "Could not chdir to home directory" message when
1556 chrooted
1557
1558 patch from Christian Hesse in bz#2485 ok dtucker@
1559
1560 Upstream-ID: 86783c1953da426dff5b03b03ce46e699d9e5431
1561
1562commit a820a8618ec44735dabc688fab96fba38ad66bb2
1563Author: sthen@openbsd.org <sthen@openbsd.org>
1564Date: Sat Oct 24 08:34:09 2015 +0000
1565
1566 upstream commit
1567
1568 Handle the split of tun(4) "link0" into tap(4) in ssh
1569 tun-forwarding. Adapted from portable (using separate devices for this is the
1570 normal case in most OS). ok djm@
1571
1572 Upstream-ID: 90facf4c59ce73d6741db1bc926e578ef465cd39
1573
1574commit 66d2e229baa9fe57b868c373b05f7ff3bb20055b
1575Author: gsoares@openbsd.org <gsoares@openbsd.org>
1576Date: Wed Oct 21 11:33:03 2015 +0000
1577
1578 upstream commit
1579
1580 fix memory leak in error path ok djm@
1581
1582 Upstream-ID: dd2f402b0a0029b755df029fc7f0679e1365ce35
1583
1584commit 7d6c0362039ceacdc1366b5df29ad5d2693c13e5
1585Author: mmcc@openbsd.org <mmcc@openbsd.org>
1586Date: Tue Oct 20 23:24:25 2015 +0000
1587
1588 upstream commit
1589
1590 Compare pointers to NULL rather than 0.
1591
1592 ok djm@
1593
1594 Upstream-ID: 21616cfea27eda65a06e772cc887530b9a1a27f8
1595
1596commit f98a09cacff7baad8748c9aa217afd155a4d493f
1597Author: mmcc@openbsd.org <mmcc@openbsd.org>
1598Date: Tue Oct 20 03:36:35 2015 +0000
1599
1600 upstream commit
1601
1602 Replace a function-local allocation with stack memory.
1603
1604 ok djm@
1605
1606 Upstream-ID: c09fbbab637053a2ab9f33ca142b4e20a4c5a17e
1607
1608commit ac908c1eeacccfa85659594d92428659320fd57e
1609Author: Damien Miller <djm@mindrot.org>
1610Date: Thu Oct 22 09:35:24 2015 +1100
1611
1612 turn off PrintLastLog when --disable-lastlog
1613
1614 bz#2278 from Brent Paulson
1615
1616commit b56deb847f4a0115a8bf488bf6ee8524658162fd
1617Author: djm@openbsd.org <djm@openbsd.org>
1618Date: Fri Oct 16 22:32:22 2015 +0000
1619
1620 upstream commit
1621
1622 increase the minimum modulus that we will send or accept in
1623 diffie-hellman-group-exchange to 2048 bits; ok markus@
1624
1625 Upstream-ID: 06dce7a24c17b999a0f5fadfe95de1ed6a1a9b6a
1626
1627commit 5ee0063f024bf5b3f3ffb275b8cd20055d62b4b9
1628Author: djm@openbsd.org <djm@openbsd.org>
1629Date: Fri Oct 16 18:40:49 2015 +0000
1630
1631 upstream commit
1632
1633 better handle anchored FQDNs (e.g. 'cvs.openbsd.org.') in
1634 hostname canonicalisation - treat them as already canonical and remove the
1635 trailing '.' before matching ssh_config; ok markus@
1636
1637 Upstream-ID: f7619652e074ac3febe8363f19622aa4853b679a
1638
1639commit e92c499a75477ecfe94dd7b4aed89f20b1fac5a7
1640Author: mmcc@openbsd.org <mmcc@openbsd.org>
1641Date: Fri Oct 16 17:07:24 2015 +0000
1642
1643 upstream commit
1644
1645 0 -> NULL when comparing with a char*.
1646
1647 ok dtucker@, djm@.
1648
1649 Upstream-ID: a928e9c21c0a9020727d99738ff64027c1272300
1650
1651commit b1d38a3cc6fe349feb8d16a5f520ef12d1de7cb2
1652Author: djm@openbsd.org <djm@openbsd.org>
1653Date: Thu Oct 15 23:51:40 2015 +0000
1654
1655 upstream commit
1656
1657 fix some signed/unsigned integer type mismatches in
1658 format strings; reported by Nicholas Lemonias
1659
1660 Upstream-ID: 78cd55420a0eef68c4095bdfddd1af84afe5f95c
1661
1662commit 1a2663a15d356bb188196b6414b4c50dc12fd42b
1663Author: djm@openbsd.org <djm@openbsd.org>
1664Date: Thu Oct 15 23:08:23 2015 +0000
1665
1666 upstream commit
1667
1668 argument to sshkey_from_private() and sshkey_demote()
1669 can't be NULL
1670
1671 Upstream-ID: 0111245b1641d387977a9b38da15916820a5fd1f
1672
1673commit 0f754e29dd3760fc0b172c1220f18b753fb0957e
1674Author: Damien Miller <djm@mindrot.org>
1675Date: Fri Oct 16 10:53:14 2015 +1100
1676
1677 need va_copy before va_start
1678
1679 reported by Nicholas Lemonias
1680
1681commit eb6c50d82aa1f0d3fc95f5630ea69761e918bfcd
1682Author: Damien Miller <djm@mindrot.org>
1683Date: Thu Oct 15 15:48:28 2015 -0700
1684
1685 fix compilation on systems without SYMLOOP_MAX
1686
1687commit fafe1d84a210fb3dae7744f268059cc583db8c12
1688Author: Damien Miller <djm@mindrot.org>
1689Date: Wed Oct 14 09:22:15 2015 -0700
1690
1691 s/SANDBOX_TAME/SANDBOX_PLEDGE/g
1692
1693commit 8f22911027ff6c17d7226d232ccd20727f389310
1694Author: Damien Miller <djm@mindrot.org>
1695Date: Wed Oct 14 08:28:19 2015 +1100
1696
1697 upstream commit
1698
1699 revision 1.20
1700 date: 2015/10/13 20:55:37; author: millert; state: Exp; lines: +2 -2; commitid: X39sl5ay1czgFIgp;
1701 In rev 1.15 the sizeof argument was fixed in a strlcat() call but
1702 the truncation check immediately following it was not updated to
1703 match. Not an issue in practice since the buffers are the same
1704 size. OK deraadt@
1705
1706commit 23fa695bb735f54f04d46123662609edb6c76767
1707Author: Damien Miller <djm@mindrot.org>
1708Date: Wed Oct 14 08:27:51 2015 +1100
1709
1710 upstream commit
1711
1712 revision 1.19
1713 date: 2015/01/16 16:48:51; author: deraadt; state: Exp; lines: +3 -3; commitid: 0DYulI8hhujBHMcR;
1714 Move to the <limits.h> universe.
1715 review by millert, binary checking process with doug, concept with guenther
1716
1717commit c71be375a69af00c2d0a0c24d8752bec12d8fd1b
1718Author: Damien Miller <djm@mindrot.org>
1719Date: Wed Oct 14 08:27:08 2015 +1100
1720
1721 upstream commit
1722
1723 revision 1.18
1724 date: 2014/10/19 03:56:28; author: doug; state: Exp; lines: +9 -9; commitid: U6QxmtbXrGoc02S5;
1725 Revert last commit due to changed semantics found by make release.
1726
1727commit c39ad23b06e9aecc3ff788e92f787a08472905b1
1728Author: Damien Miller <djm@mindrot.org>
1729Date: Wed Oct 14 08:26:24 2015 +1100
1730
1731 upstream commit
1732
1733 revision 1.17
1734 date: 2014/10/18 20:43:52; author: doug; state: Exp; lines: +10 -10; commitid: I74hI1tVZtsspKEt;
1735 Better POSIX compliance in realpath(3).
1736
1737 millert@ made changes to realpath.c based on FreeBSD's version. I merged
1738 Todd's changes into dl_realpath.c.
1739
1740 ok millert@, guenther@
1741
1742commit e929a43f957dbd1254aca2aaf85c8c00cbfc25f4
1743Author: Damien Miller <djm@mindrot.org>
1744Date: Wed Oct 14 08:25:55 2015 +1100
1745
1746 upstream commit
1747
1748 revision 1.16
1749 date: 2013/04/05 12:59:54; author: kurt; state: Exp; lines: +3 -1;
1750 - Add comments regarding copies of these files also in libexec/ld.so
1751 okay guenther@
1752
1753commit 5225db68e58a1048cb17f0e36e0d33bc4a8fc410
1754Author: Damien Miller <djm@mindrot.org>
1755Date: Wed Oct 14 08:25:32 2015 +1100
1756
1757 upstream commit
1758
1759 revision 1.15
1760 date: 2012/09/13 15:39:05; author: deraadt; state: Exp; lines: +2 -2;
1761 specify the bounds of the dst to strlcat (both values were static and
1762 equal, but it is more correct)
1763 from Michal Mazurek
1764
1765commit 7365fe5b4859de2305e40ea132da3823830fa710
1766Author: Damien Miller <djm@mindrot.org>
1767Date: Wed Oct 14 08:25:09 2015 +1100
1768
1769 upstream commit
1770
1771 revision 1.14
1772 date: 2011/07/24 21:03:00; author: miod; state: Exp; lines: +35 -13;
1773 Recent Single Unix will malloc memory if the second argument of realpath()
1774 is NULL, and third-party software is starting to rely upon this.
1775 Adapted from FreeBSD via Jona Joachim (jaj ; hcl-club , .lu), with minor
1776 tweaks from nicm@ and yours truly.
1777
1778commit e679c09cd1951f963793aa3d9748d1c3fdcf808f
1779Author: djm@openbsd.org <djm@openbsd.org>
1780Date: Tue Oct 13 16:15:21 2015 +0000
1781
1782 upstream commit
1783
1784 apply PubkeyAcceptedKeyTypes filtering earlier, so all
1785 skipped keys are noted before pubkey authentication starts. ok dtucker@
1786
1787 Upstream-ID: ba4f52f54268a421a2a5f98bb375403f4cb044b8
1788
1789commit 179c353f564ec7ada64b87730b25fb41107babd7
1790Author: djm@openbsd.org <djm@openbsd.org>
1791Date: Tue Oct 13 00:21:27 2015 +0000
1792
1793 upstream commit
1794
1795 free the correct IV length, don't assume it's always the
1796 cipher blocksize; ok dtucker@
1797
1798 Upstream-ID: c260d9e5ec73628d9ff4b067fbb060eff5a7d298
1799
1800commit 2539dce2a049a8f6bb0d44cac51f07ad48e691d3
1801Author: deraadt@openbsd.org <deraadt@openbsd.org>
1802Date: Fri Oct 9 01:37:08 2015 +0000
1803
1804 upstream commit
1805
1806 Change all tame callers to namechange to pledge(2).
1807
1808 Upstream-ID: 17e654fc27ceaf523c60f4ffd9ec7ae4e7efc7f2
1809
1810commit 9846a2f4067383bb76b4e31a9d2303e0a9c13a73
1811Author: Damien Miller <djm@mindrot.org>
1812Date: Thu Oct 8 04:30:48 2015 +1100
1813
1814 hook tame(2) sandbox up to build
1815
1816 OpenBSD only for now
1817
1818commit 0c46bbe68b70bdf0d6d20588e5847e71f3739fe6
1819Author: djm@openbsd.org <djm@openbsd.org>
1820Date: Wed Oct 7 15:59:12 2015 +0000
1821
1822 upstream commit
1823
1824 include PubkeyAcceptedKeyTypes in ssh -G config dump
1825
1826 Upstream-ID: 6c097ce6ffebf6fe393fb7988b5d152a5d6b36bb
1827
1828commit bdcb73fb7641b1cf73c0065d1a0dd57b1e8b778e
1829Author: sobrado@openbsd.org <sobrado@openbsd.org>
1830Date: Wed Oct 7 14:45:30 2015 +0000
1831
1832 upstream commit
1833
1834 UsePrivilegeSeparation defaults to sandbox now.
1835
1836 ok djm@
1837
1838 Upstream-ID: bff136c38bcae89df82e044d2f42de21e1ad914f
1839
1840commit 2905d6f99c837bb699b6ebc61711b19acd030709
1841Author: djm@openbsd.org <djm@openbsd.org>
1842Date: Wed Oct 7 00:54:06 2015 +0000
1843
1844 upstream commit
1845
1846 don't try to change tun device flags if they are already
1847 what we need; makes it possible to use tun/tap networking as non- root user
1848 if device permissions and interface flags are pre-established; based on patch
1849 by Ossi Herrala
1850
1851 Upstream-ID: 89099ac4634cd477b066865acf54cb230780fd21
1852
1853commit 0dc74512bdb105b048883f07de538b37e5e024d4
1854Author: Damien Miller <djm@mindrot.org>
1855Date: Mon Oct 5 18:33:05 2015 -0700
1856
1857 unbreak merge botch
1858
1859commit fdd020e86439afa7f537e2429d29d4b744c94331
1860Author: djm@openbsd.org <djm@openbsd.org>
1861Date: Tue Oct 6 01:20:59 2015 +0000
1862
1863 upstream commit
1864
1865 adapt to recent sshkey_parse_private_fileblob() API
1866 change
1867
1868 Upstream-Regress-ID: 5c0d818da511e33e0abf6a92a31bd7163b7ad988
1869
1870commit 21ae8ee3b630b0925f973db647a1b9aa5fcdd4c5
1871Author: djm@openbsd.org <djm@openbsd.org>
1872Date: Thu Sep 24 07:15:39 2015 +0000
1873
1874 upstream commit
1875
1876 fix command-line option to match what was actually
1877 committed
1878
1879 Upstream-Regress-ID: 3e8c24a2044e8afd37e7ce17b69002ca817ac699
1880
1881commit e14ac43b75e68f1ffbd3e1a5e44143c8ae578dcd
1882Author: djm@openbsd.org <djm@openbsd.org>
1883Date: Thu Sep 24 06:16:53 2015 +0000
1884
1885 upstream commit
1886
1887 regress test for CertificateFile; patch from Meghana Bhat
1888 via bz#2436
1889
1890 Upstream-Regress-ID: e7a6e980cbe0f8081ba2e83de40d06c17be8bd25
1891
1892commit 905b054ed24e0d5b4ef226ebf2c8bfc02ae6d4ad
20Author: djm@openbsd.org <djm@openbsd.org> 1893Author: djm@openbsd.org <djm@openbsd.org>
21Date: Mon Oct 5 17:11:21 2015 +0000 1894Date: Mon Oct 5 17:11:21 2015 +0000
22 1895
@@ -26,7 +1899,129 @@ Date: Mon Oct 5 17:11:21 2015 +0000
26 1899
27 Upstream-ID: 17f19545685c33327db2efdc357c1c9225ff00d0 1900 Upstream-ID: 17f19545685c33327db2efdc357c1c9225ff00d0
28 1901
29commit 8f5b93026797b9f7fba90d0c717570421ccebbd3 1902commit b007159a0acdbcf65814b3ee05dbe2cf4ea46011
1903Author: deraadt@openbsd.org <deraadt@openbsd.org>
1904Date: Fri Oct 2 15:52:55 2015 +0000
1905
1906 upstream commit
1907
1908 fix email
1909
1910 Upstream-ID: 72150f2d54b94de14ebef1ea054ef974281bf834
1911
1912commit b19e1b4ab11884c4f62aee9f8ab53127a4732658
1913Author: deraadt@openbsd.org <deraadt@openbsd.org>
1914Date: Fri Oct 2 01:39:52 2015 +0000
1915
1916 upstream commit
1917
1918 a sandbox using tame ok djm
1919
1920 Upstream-ID: 4ca24e47895e72f5daaa02f3e3d3e5ca2d820fa3
1921
1922commit c61b42f2678f21f05653ac2d3d241b48ab5d59ac
1923Author: deraadt@openbsd.org <deraadt@openbsd.org>
1924Date: Fri Oct 2 01:39:26 2015 +0000
1925
1926 upstream commit
1927
1928 re-order system calls in order of risk, ok i'll be
1929 honest, ordered this way they look like tame... ok djm
1930
1931 Upstream-ID: 42a1e6d251fd8be13c8262bee026059ae6328813
1932
1933commit c5f7c0843cb6e6074a93c8ac34e49ce33a6f5546
1934Author: jmc@openbsd.org <jmc@openbsd.org>
1935Date: Fri Sep 25 18:19:54 2015 +0000
1936
1937 upstream commit
1938
1939 some certificatefile tweaks; ok djm
1940
1941 Upstream-ID: 0e5a7852c28c05fc193419cc7e50e64c1c535af0
1942
1943commit 4e44a79a07d4b88b6a4e5e8c1bed5f58c841b1b8
1944Author: djm@openbsd.org <djm@openbsd.org>
1945Date: Thu Sep 24 06:15:11 2015 +0000
1946
1947 upstream commit
1948
1949 add ssh_config CertificateFile option to explicitly list
1950 a certificate; patch from Meghana Bhat on bz#2436; ok markus@
1951
1952 Upstream-ID: 58648ec53c510b41c1f46d8fe293aadc87229ab8
1953
1954commit e3cbb06ade83c72b640a53728d362bbefa0008e2
1955Author: sobrado@openbsd.org <sobrado@openbsd.org>
1956Date: Tue Sep 22 08:33:23 2015 +0000
1957
1958 upstream commit
1959
1960 fix two typos.
1961
1962 Upstream-ID: 424402c0d8863a11b51749bacd7f8d932083b709
1963
1964commit 8408218c1ca88cb17d15278174a24a94a6f65fe1
1965Author: djm@openbsd.org <djm@openbsd.org>
1966Date: Mon Sep 21 04:31:00 2015 +0000
1967
1968 upstream commit
1969
1970 fix possible hang on closed output; bz#2469 reported by Tomas
1971 Kuthan ok markus@
1972
1973 Upstream-ID: f7afd41810f8540f524284f1be6b970859f94fe3
1974
1975commit 0097248f90a00865082e8c146b905a6555cc146f
1976Author: djm@openbsd.org <djm@openbsd.org>
1977Date: Fri Sep 11 04:55:01 2015 +0000
1978
1979 upstream commit
1980
1981 skip if running as root; many systems (inc OpenBSD) allow
1982 root to ptrace arbitrary processes
1983
1984 Upstream-Regress-ID: be2b925df89360dff36f972951fa0fa793769038
1985
1986commit 9c06c814aff925e11a5cc592c06929c258a014f6
1987Author: djm@openbsd.org <djm@openbsd.org>
1988Date: Fri Sep 11 03:44:21 2015 +0000
1989
1990 upstream commit
1991
1992 try all supported key types here; bz#2455 reported by
1993 Jakub Jelen
1994
1995 Upstream-Regress-ID: 188cb7d9031cdbac3a0fa58b428b8fa2b2482bba
1996
1997commit 3c019a936b43f3e2773f3edbde7c114d73caaa4c
1998Author: tim@openbsd.org <tim@openbsd.org>
1999Date: Sun Sep 13 14:39:16 2015 +0000
2000
2001 upstream commit
2002
2003 - Fix error message: passphrase needs to be at least 5
2004 characters, not 4. - Remove unused function argument. - Remove two
2005 unnecessary variables.
2006
2007 OK djm@
2008
2009 Upstream-ID: 13010c05bfa8b523da1c0dc19e81dd180662bc30
2010
2011commit 2681cdb6e0de7c1af549dac37a9531af202b4434
2012Author: tim@openbsd.org <tim@openbsd.org>
2013Date: Sun Sep 13 13:48:19 2015 +0000
2014
2015 upstream commit
2016
2017 When adding keys to the agent, don't ignore the comment
2018 of keys for which the user is prompted for a passphrase.
2019
2020 Tweak and OK djm@
2021
2022 Upstream-ID: dc737c620a5a8d282cc4f66e3b9b624e9abefbec
2023
2024commit 14692f7b8251cdda847e648a82735eef8a4d2a33
30Author: guenther@openbsd.org <guenther@openbsd.org> 2025Author: guenther@openbsd.org <guenther@openbsd.org>
31Date: Fri Sep 11 08:50:04 2015 +0000 2026Date: Fri Sep 11 08:50:04 2015 +0000
32 2027
@@ -39,47 +2034,272 @@ Date: Fri Sep 11 08:50:04 2015 +0000
39 2034
40 Upstream-ID: 2e3337db046c3fe70c7369ee31515ac73ec00f50 2035 Upstream-ID: 2e3337db046c3fe70c7369ee31515ac73ec00f50
41 2036
42commit d77148e3a3ef6c29b26ec74331455394581aa257 2037commit 846f6fa4cfa8483a9195971dbdd162220f199d85
2038Author: jmc@openbsd.org <jmc@openbsd.org>
2039Date: Fri Sep 11 06:55:46 2015 +0000
2040
2041 upstream commit
2042
2043 sync -Q in usage() to SYNOPSIS; since it's drastically
2044 shorter, i've reformatted the block to sync with the man (80 cols) and saved
2045 a line;
2046
2047 Upstream-ID: 86e2c65c3989a0777a6258a77e589b9f6f354abd
2048
2049commit 95923e0520a8647417ee6dcdff44694703dfeef0
2050Author: jmc@openbsd.org <jmc@openbsd.org>
2051Date: Fri Sep 11 06:51:39 2015 +0000
2052
2053 upstream commit
2054
2055 tweak previous;
2056
2057 Upstream-ID: f29b3cfcfd9aa31fa140c393e7bd48c1c74139d6
2058
2059commit 86ac462f833b05d8ed9de9c50ccb295d7faa79ff
2060Author: dtucker@openbsd.org <dtucker@openbsd.org>
2061Date: Fri Sep 11 05:27:02 2015 +0000
2062
2063 upstream commit
2064
2065 Update usage to match man page.
2066
2067 Upstream-ID: 9e85aefaecfb6aaf34c7cfd0700cd21783a35675
2068
2069commit 674b3b68c1d36b2562324927cd03857b565e05e8
43Author: djm@openbsd.org <djm@openbsd.org> 2070Author: djm@openbsd.org <djm@openbsd.org>
44Date: Sun Nov 8 21:59:11 2015 +0000 2071Date: Fri Sep 11 03:47:28 2015 +0000
45 2072
46 upstream commit 2073 upstream commit
47 2074
48 fix OOB read in packet code caused by missing return 2075 expand %i in ControlPath to UID; bz#2449
49 statement found by Ben Hawkes; ok markus@ deraadt@
50 2076
51 Upstream-ID: a3e3a85434ebfa0690d4879091959591f30efc62 2077 patch from Christian Hesse w/ feedback from dtucker@
2078
2079 Upstream-ID: 2ba8d303e555a84e2f2165ab4b324b41e80ab925
2080
2081commit c0f55db7ee00c8202b05cb4b9ad4ce72cc45df41
2082Author: djm@openbsd.org <djm@openbsd.org>
2083Date: Fri Sep 11 03:42:32 2015 +0000
2084
2085 upstream commit
2086
2087 mention -Q key-plain and -Q key-cert; bz#2455 pointed out
2088 by Jakub Jelen
2089
2090 Upstream-ID: c8f1f8169332e4fa73ac96b0043e3b84e01d4896
2091
2092commit cfffbdb10fdf0f02d3f4232232eef7ec3876c383
2093Author: Darren Tucker <dtucker@zip.com.au>
2094Date: Mon Sep 14 16:24:21 2015 +1000
2095
2096 Use ssh-keygen -A when generating host keys.
2097
2098 Use ssh-keygen -A instead of per-keytype invocations when generating host
2099 keys. Add tests when doing host-key-force since we can't use ssh-keygen -A
2100 since it can't specify alternate locations. bz#2459, ok djm@
2101
2102commit 366bada1e9e124654aac55b72b6ccf878755b0dc
2103Author: Darren Tucker <dtucker@zip.com.au>
2104Date: Fri Sep 11 13:29:22 2015 +1000
2105
2106 Correct default value for --with-ssh1.
2107
2108 bz#2457, from konto-mindrot.org at walimnieto.com.
2109
2110commit 2bca8a43e7dd9b04d7070824ffebb823c72587b2
2111Author: djm@openbsd.org <djm@openbsd.org>
2112Date: Fri Sep 11 03:13:36 2015 +0000
2113
2114 upstream commit
2115
2116 more clarity on what AuthorizedKeysFile=none does; based
2117 on diff by Thiebaud Weksteen
2118
2119 Upstream-ID: 78ab87f069080f0cc3bc353bb04eddd9e8ad3704
2120
2121commit 61942ea4a01e6db4fdf37ad61de81312ffe310e9
2122Author: djm@openbsd.org <djm@openbsd.org>
2123Date: Wed Sep 9 00:52:44 2015 +0000
2124
2125 upstream commit
2126
2127 openssh_RSA_verify return type is int, so don't make it
2128 size_t within the function itself with only negative numbers or zero assigned
2129 to it. bz#2460
2130
2131 Upstream-ID: b6e794b0c7fc4f9f329509263c8668d35f83ea55
2132
2133commit 4f7cc2f8cc861a21e6dbd7f6c25652afb38b9b96
2134Author: dtucker@openbsd.org <dtucker@openbsd.org>
2135Date: Fri Sep 4 08:21:47 2015 +0000
2136
2137 upstream commit
2138
2139 Plug minor memory leaks when options are used more than
2140 once. bz#2182, patch from Tiago Cunha, ok deraadt djm
2141
2142 Upstream-ID: 5b84d0401e27fe1614c10997010cc55933adb48e
2143
2144commit 7ad8b287c8453a3e61dbc0d34d467632b8b06fc8
2145Author: Darren Tucker <dtucker@zip.com.au>
2146Date: Fri Sep 11 13:11:02 2015 +1000
2147
2148 Force resolution of _res for correct detection.
2149
2150 bz#2259, from sconeu at yahoo.com.
52 2151
53commit 076d849e17ab12603627f87b301e2dca71bae518 2152commit 26ad18247213ff72b4438abe7fc660c958810fa2
54Author: Damien Miller <djm@mindrot.org> 2153Author: Damien Miller <djm@mindrot.org>
55Date: Sat Nov 14 18:44:49 2015 +1100 2154Date: Thu Sep 10 10:57:41 2015 +1000
56 2155
57 read back from libcrypto RAND when privdropping 2156 allow getrandom syscall; from Felix von Leitner
2157
2158commit 5245bc1e6b129a10a928f73f11c3aa32656c44b4
2159Author: jmc@openbsd.org <jmc@openbsd.org>
2160Date: Fri Sep 4 06:40:45 2015 +0000
2161
2162 upstream commit
58 2163
59 makes certain libcrypto implementations cache a /dev/urandom fd 2164 full stop belongs outside the brackets, not inside;
60 in preparation of sandboxing. Based on patch by Greg Hartman. 2165
2166 Upstream-ID: 99d098287767799ac33d2442a05b5053fa5a551a
61 2167
62commit f72adc0150011a28f177617a8456e1f83733099d 2168commit a85768a9321d74b41219eeb3c9be9f1702cbf6a5
63Author: djm@openbsd.org <djm@openbsd.org> 2169Author: djm@openbsd.org <djm@openbsd.org>
64Date: Sun Dec 13 22:42:23 2015 +0000 2170Date: Fri Sep 4 04:56:09 2015 +0000
65 2171
66 upstream commit 2172 upstream commit
67 2173
68 unbreak connections with peers that set 2174 add a debug2() right before DNS resolution; it's a place
69 first_kex_follows; fix from Matt Johnston va bz#2515 2175 where ssh could previously silently hang for a while. bz#2433
70 2176
71 Upstream-ID: decc88ec4fc7515594fdb42b04aa03189a44184b 2177 Upstream-ID: 52a1a3e0748db66518e7598352c427145692a6a0
72 2178
73commit 04bd8d019ccd906cac1a2b362517b8505f3759e6 2179commit 46152af8d27aa34d5d26ed1c371dc8aa142d4730
74Author: djm@openbsd.org <djm@openbsd.org> 2180Author: djm@openbsd.org <djm@openbsd.org>
75Date: Tue Jan 12 23:42:54 2016 +0000 2181Date: Fri Sep 4 04:55:24 2015 +0000
76 2182
77 upstream commit 2183 upstream commit
78 2184
79 use explicit_bzero() more liberally in the buffer code; ok 2185 correct function name in error messages
80 deraadt
81 2186
82 Upstream-ID: 0ece37069fd66bc6e4f55eb1321f93df372b65bf 2187 Upstream-ID: 92fb2798617ad9561370897f4ab60adef2ff4c0e
2188
2189commit a954cdb799a4d83c2d40fbf3e7b9f187fbfd72fc
2190Author: djm@openbsd.org <djm@openbsd.org>
2191Date: Fri Sep 4 04:47:50 2015 +0000
2192
2193 upstream commit
2194
2195 better document ExitOnForwardFailure; bz#2444, ok
2196 dtucker@
2197
2198 Upstream-ID: a126209b5a6d9cb3117ac7ab5bc63d284538bfc2
2199
2200commit f54d8ac2474b6fc3afa081cf759b48a6c89d3319
2201Author: djm@openbsd.org <djm@openbsd.org>
2202Date: Fri Sep 4 04:44:08 2015 +0000
2203
2204 upstream commit
2205
2206 don't record hostbased authentication hostkeys as user
2207 keys in test for multiple authentication with the same key
2208
2209 Upstream-ID: 26b368fa2cff481f47f37e01b8da1ae5b57b1adc
2210
2211commit ac3451dd65f27ecf85dc045c46d49e2bbcb8dddd
2212Author: djm@openbsd.org <djm@openbsd.org>
2213Date: Fri Sep 4 03:57:38 2015 +0000
2214
2215 upstream commit
2216
2217 remove extra newline in nethack-mode hostkey; from
2218 Christian Hesse bz#2686
2219
2220 Upstream-ID: 4f56368b1cc47baeea0531912186f66007fd5b92
2221
2222commit 9e3ed9ebb1a7e47c155c28399ddf09b306ea05df
2223Author: djm@openbsd.org <djm@openbsd.org>
2224Date: Fri Sep 4 04:23:10 2015 +0000
2225
2226 upstream commit
2227
2228 trim junk from end of file; bz#2455 from Jakub Jelen
2229
2230 Upstream-Regress-ID: a4e64e8931e40d23874b047074444eff919cdfe6
2231
2232commit f3a3ea180afff080bab82087ee0b60db9fd84f6c
2233Author: jsg@openbsd.org <jsg@openbsd.org>
2234Date: Wed Sep 2 07:51:12 2015 +0000
2235
2236 upstream commit
2237
2238 Fix occurrences of "r = func() != 0" which result in the
2239 wrong error codes being returned due to != having higher precedence than =.
2240
2241 ok deraadt@ markus@
2242
2243 Upstream-ID: 5fc35c9fc0319cc6fca243632662d2f06b5fd840
2244
2245commit f498a98cf83feeb7ea01c15cd1c98b3111361f3a
2246Author: Damien Miller <djm@mindrot.org>
2247Date: Thu Sep 3 09:11:22 2015 +1000
2248
2249 don't check for yp_match; ok tim@
2250
2251commit 9690b78b7848b0b376980a61d51b1613e187ddb5
2252Author: djm@openbsd.org <djm@openbsd.org>
2253Date: Fri Aug 21 23:57:48 2015 +0000
2254
2255 upstream commit
2256
2257 Improve printing of KEX offers and decisions
2258
2259 The debug output now labels the client and server offers and the
2260 negotiated options. ok markus@
2261
2262 Upstream-ID: 8db921b3f92a4565271b1c1fbce6e7f508e1a2cb
2263
2264commit 60a92470e21340e1a3fc10f9c7140d8e1519dc55
2265Author: djm@openbsd.org <djm@openbsd.org>
2266Date: Fri Aug 21 23:53:08 2015 +0000
2267
2268 upstream commit
2269
2270 Fix printing (ssh -G ...) of HostKeyAlgorithms=+...
2271 Reported by Bryan Drewery
2272
2273 Upstream-ID: 19ad20c41bd5971e006289b6f9af829dd46c1293
2274
2275commit 6310f60fffca2d1e464168e7d1f7e3b6b0268897
2276Author: djm@openbsd.org <djm@openbsd.org>
2277Date: Fri Aug 21 23:52:30 2015 +0000
2278
2279 upstream commit
2280
2281 Fix expansion of HostkeyAlgorithms=+...
2282
2283 Reported by Bryan Drewery
2284
2285 Upstream-ID: 70ca1deea39d758ba36d36428ae832e28566f78d
2286
2287commit e774e5ea56237fd626a8161f9005023dff3e76c9
2288Author: deraadt@openbsd.org <deraadt@openbsd.org>
2289Date: Fri Aug 21 23:29:31 2015 +0000
2290
2291 upstream commit
2292
2293 Improve size == 0, count == 0 checking in mm_zalloc,
2294 which is "array" like. Discussed with tedu, millert, otto.... and ok djm
2295
2296 Upstream-ID: 899b021be43b913fad3eca1aef44efe710c53e29
2297
2298commit 189de02d9ad6f3645417c0ddf359b923aae5f926
2299Author: Damien Miller <djm@mindrot.org>
2300Date: Fri Aug 21 15:45:02 2015 +1000
2301
2302 expose POLLHUP and POLLNVAL for netcat.c
83 2303
84commit e91346dc2bbf460246df2ab591b7613908c1b0ad 2304commit e91346dc2bbf460246df2ab591b7613908c1b0ad
85Author: Damien Miller <djm@mindrot.org> 2305Author: Damien Miller <djm@mindrot.org>
@@ -6685,931 +8905,3 @@ Date: Sun Mar 2 04:01:00 2014 +1100
6685 8905
6686 - (djm) [regress/Makefile] Disable dhgex regress test; it breaks when 8906 - (djm) [regress/Makefile] Disable dhgex regress test; it breaks when
6687 no moduli file exists at the expected location. 8907 no moduli file exists at the expected location.
6688
6689commit c83fdf30e9db865575b2521b1fe46315cf4c70ae
6690Author: Damien Miller <djm@mindrot.org>
6691Date: Fri Feb 28 10:34:03 2014 +1100
6692
6693 - (djm) [regress/host-expand.sh] Add RCS Id
6694
6695commit 834aeac3555e53f7d29a6fcf3db010dfb99681c7
6696Author: Damien Miller <djm@mindrot.org>
6697Date: Fri Feb 28 10:25:16 2014 +1100
6698
6699 - djm@cvs.openbsd.org 2014/02/27 21:21:25
6700 [agent-ptrace.sh agent.sh]
6701 keep return values that are printed in error messages;
6702 from portable
6703 (Id sync only)
6704
6705commit 4f7f1a9a0de24410c30952c7e16d433240422182
6706Author: Damien Miller <djm@mindrot.org>
6707Date: Fri Feb 28 10:24:11 2014 +1100
6708
6709 - djm@cvs.openbsd.org 2014/02/27 20:04:16
6710 [login-timeout.sh]
6711 remove any existing LoginGraceTime from sshd_config before adding
6712 a specific one for the test back in
6713
6714commit d705d987c27f68080c8798eeb5262adbdd6b4ffd
6715Author: Damien Miller <djm@mindrot.org>
6716Date: Fri Feb 28 10:23:26 2014 +1100
6717
6718 - djm@cvs.openbsd.org 2014/01/26 10:49:17
6719 [scp-ssh-wrapper.sh scp.sh]
6720 make sure $SCP is tested on the remote end rather than whichever one
6721 happens to be in $PATH; from portable
6722 (Id sync only)
6723
6724commit 624a3ca376e3955a4b9d936c9e899e241b65d357
6725Author: Damien Miller <djm@mindrot.org>
6726Date: Fri Feb 28 10:22:37 2014 +1100
6727
6728 - djm@cvs.openbsd.org 2014/01/26 10:22:10
6729 [regress/cert-hostkey.sh]
6730 automatically generate revoked keys from listed keys rather than
6731 manually specifying each type; from portable
6732 (Id sync only)
6733
6734commit b84392328425e4b9a71f8bde5fe6a4a4c48d3ec4
6735Author: Damien Miller <djm@mindrot.org>
6736Date: Fri Feb 28 10:21:26 2014 +1100
6737
6738 - dtucker@cvs.openbsd.org 2014/01/25 04:35:32
6739 [regress/Makefile regress/dhgex.sh]
6740 Add a test for DH GEX sizes
6741
6742commit 1e2aa3d90472293ea19008f02336d6d68aa05793
6743Author: Damien Miller <djm@mindrot.org>
6744Date: Fri Feb 28 10:19:51 2014 +1100
6745
6746 - dtucker@cvs.openbsd.org 2014/01/20 00:00:30
6747 [sftp-chroot.sh]
6748 append to rather than truncating the log file
6749
6750commit f483cc16fe7314e24a37aa3a4422b03c013c3213
6751Author: Damien Miller <djm@mindrot.org>
6752Date: Fri Feb 28 10:19:11 2014 +1100
6753
6754 - dtucker@cvs.openbsd.org 2014/01/19 23:43:02
6755 [regress/sftp-chroot.sh]
6756 Don't use -q on sftp as it suppresses logging, instead redirect the
6757 output to the regress logfile.
6758
6759commit 6486f16f1c0ebd6f39286f6ab5e08286d90a994a
6760Author: Damien Miller <djm@mindrot.org>
6761Date: Fri Feb 28 10:03:52 2014 +1100
6762
6763 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
6764 [contrib/suse/openssh.spec] Crank version numbers
6765
6766commit 92cf5adea194140380e6af6ec32751f9ad540794
6767Author: Damien Miller <djm@mindrot.org>
6768Date: Fri Feb 28 10:01:53 2014 +1100
6769
6770 - djm@cvs.openbsd.org 2014/02/27 22:57:40
6771 [version.h]
6772 openssh-6.6
6773
6774commit fc5d6759aba71eb205b296b5f148010ffc828583
6775Author: Damien Miller <djm@mindrot.org>
6776Date: Fri Feb 28 10:01:28 2014 +1100
6777
6778 - djm@cvs.openbsd.org 2014/02/27 22:47:07
6779 [sshd_config.5]
6780 bz#2184 clarify behaviour of a keyword that appears in multiple
6781 matching Match blocks; ok dtucker@
6782
6783commit 172ec7e0af1a5f1d682f6a2dca335c6c186153d5
6784Author: Damien Miller <djm@mindrot.org>
6785Date: Fri Feb 28 10:00:57 2014 +1100
6786
6787 - djm@cvs.openbsd.org 2014/02/27 08:25:09
6788 [bufbn.c]
6789 off by one in range check
6790
6791commit f9a9aaba437c2787e40cf7cc928281950e161678
6792Author: Damien Miller <djm@mindrot.org>
6793Date: Fri Feb 28 10:00:27 2014 +1100
6794
6795 - djm@cvs.openbsd.org 2014/02/27 00:41:49
6796 [bufbn.c]
6797 fix unsigned overflow that could lead to reading a short ssh protocol
6798 1 bignum value; found by Ben Hawkes; ok deraadt@
6799
6800commit fb3423b612713d9cde67c8a75f6f51188d6a3de3
6801Author: Damien Miller <djm@mindrot.org>
6802Date: Thu Feb 27 10:20:07 2014 +1100
6803
6804 - markus@cvs.openbsd.org 2014/02/26 21:53:37
6805 [sshd.c]
6806 ssh_gssapi_prepare_supported_oids needs GSSAPI
6807
6808commit 1348129a34f0f7728c34d86c100a32dcc8d1f922
6809Author: Damien Miller <djm@mindrot.org>
6810Date: Thu Feb 27 10:18:32 2014 +1100
6811
6812 - djm@cvs.openbsd.org 2014/02/26 20:29:29
6813 [channels.c]
6814 don't assume that the socks4 username is \0 terminated;
6815 spotted by Ben Hawkes; ok markus@
6816
6817commit e6a74aeeacd01d885262ff8e50eb28faee8c8039
6818Author: Damien Miller <djm@mindrot.org>
6819Date: Thu Feb 27 10:17:49 2014 +1100
6820
6821 - djm@cvs.openbsd.org 2014/02/26 20:28:44
6822 [auth2-gss.c gss-serv.c ssh-gss.h sshd.c]
6823 bz#2107 - cache OIDs of supported GSSAPI mechanisms before privsep
6824 sandboxing, as running this code in the sandbox can cause violations;
6825 ok markus@
6826
6827commit 08b57c67f3609340ff703fe2782d7058acf2529e
6828Author: Damien Miller <djm@mindrot.org>
6829Date: Thu Feb 27 10:17:13 2014 +1100
6830
6831 - djm@cvs.openbsd.org 2014/02/26 20:18:37
6832 [ssh.c]
6833 bz#2205: avoid early hostname lookups unless canonicalisation is enabled;
6834 ok dtucker@ markus@
6835
6836commit 13f97b2286142fd0b8eab94e4ce84fe124eeb752
6837Author: Damien Miller <djm@mindrot.org>
6838Date: Mon Feb 24 15:57:55 2014 +1100
6839
6840 - djm@cvs.openbsd.org 2014/02/23 20:11:36
6841 [readconf.c readconf.h ssh.c ssh_config.5]
6842 reparse ssh_config and ~/.ssh/config if hostname canonicalisation changes
6843 the hostname. This allows users to write configurations that always
6844 refer to canonical hostnames, e.g.
6845
6846 CanonicalizeHostname yes
6847 CanonicalDomains int.example.org example.org
6848 CanonicalizeFallbackLocal no
6849
6850 Host *.int.example.org
6851 Compression off
6852 Host *.example.org
6853 User djm
6854
6855 ok markus@
6856
6857commit bee3a234f3d1ad4244952bcff1b4b7c525330dc2
6858Author: Damien Miller <djm@mindrot.org>
6859Date: Mon Feb 24 15:57:22 2014 +1100
6860
6861 - djm@cvs.openbsd.org 2014/02/23 20:03:42
6862 [ssh-ed25519.c]
6863 check for unsigned overflow; not reachable in OpenSSH but others might
6864 copy our code...
6865
6866commit 0628780abe61e7e50cba48cdafb1837f49ff23b2
6867Author: Damien Miller <djm@mindrot.org>
6868Date: Mon Feb 24 15:56:45 2014 +1100
6869
6870 - djm@cvs.openbsd.org 2014/02/22 01:32:19
6871 [readconf.c]
6872 when processing Match blocks, skip 'exec' clauses if previous predicates
6873 failed to match; ok markus@
6874
6875commit 0890dc8191bb201eb01c3429feec0300a9d3a930
6876Author: Damien Miller <djm@mindrot.org>
6877Date: Mon Feb 24 15:56:07 2014 +1100
6878
6879 - djm@cvs.openbsd.org 2014/02/15 23:05:36
6880 [channels.c]
6881 avoid spurious "getsockname failed: Bad file descriptor" errors in ssh -W;
6882 bz#2200, debian#738692 via Colin Watson; ok dtucker@
6883
6884commit d3cf67e1117c25d151d0f86396e77ee3a827045a
6885Author: Damien Miller <djm@mindrot.org>
6886Date: Mon Feb 24 15:55:36 2014 +1100
6887
6888 - djm@cvs.openbsd.org 2014/02/07 06:55:54
6889 [cipher.c mac.c]
6890 remove some logging that makes ssh debugging output very verbose;
6891 ok markus
6892
6893commit 03ae081aeaa118361c81ece76eb7cc1aaa2b40c5
6894Author: Tim Rice <tim@multitalents.net>
6895Date: Fri Feb 21 09:09:34 2014 -0800
6896
6897 20140221
6898 - (tim) [configure.ac] Fix cut-and-paste error. Patch from Bryan Drewery.
6899
6900commit 4a20959d2e3c90e9d66897c0b4032c785672d815
6901Author: Darren Tucker <dtucker@zip.com.au>
6902Date: Thu Feb 13 16:38:32 2014 +1100
6903
6904 - (dtucker) [configure.ac openbsd-compat/openssl-compat.{c,h}] Add compat
6905 code for older OpenSSL versions that don't have EVP_MD_CTX_copy_ex.
6906
6907commit d1a7a9c0fd1ac2e3314cceb2891959fd2cd9eabb
6908Author: Damien Miller <djm@mindrot.org>
6909Date: Fri Feb 7 09:24:33 2014 +1100
6910
6911 - djm@cvs.openbsd.org 2014/02/06 22:21:01
6912 [sshconnect.c]
6913 in ssh_create_socket(), only do the getaddrinfo for BindAddress when
6914 BindAddress is actually specified. Fixes regression in 6.5 for
6915 UsePrivilegedPort=yes; patch from Corinna Vinschen
6916
6917commit 6ce35b6cc4ead1bf98abec34cb2e2d6ca0abb15e
6918Author: Damien Miller <djm@mindrot.org>
6919Date: Fri Feb 7 09:24:14 2014 +1100
6920
6921 - naddy@cvs.openbsd.org 2014/02/05 20:13:25
6922 [ssh-keygen.1 ssh-keygen.c]
6923 tweak synopsis: calling ssh-keygen without any arguments is fine; ok jmc@
6924 while here, fix ordering in usage(); requested by jmc@
6925
6926commit 6434cb2cfbbf0a46375d2d22f2ff9927feb5e478
6927Author: Damien Miller <djm@mindrot.org>
6928Date: Thu Feb 6 11:17:50 2014 +1100
6929
6930 - (djm) [sandbox-seccomp-filter.c] Not all Linux architectures define
6931 __NR_shutdown; some go via the socketcall(2) multiplexer.
6932
6933commit 8d36f9ac71eff2e9f5770c0518b73d875f270647
6934Author: Darren Tucker <dtucker@zip.com.au>
6935Date: Thu Feb 6 10:44:13 2014 +1100
6936
6937 - (dtucker) [openbsd-compat/bsd-poll.c] Don't bother checking for non-NULL
6938 before freeing since free(NULL) is a no-op. ok djm.
6939
6940commit a0959da3680b4ce8cf911caf3293a6d90f88eeb7
6941Author: Damien Miller <djm@mindrot.org>
6942Date: Wed Feb 5 10:33:45 2014 +1100
6943
6944 - (djm) [sandbox-capsicum.c] Don't fatal if Capsicum is offered by
6945 headers/libc but not supported by the kernel. Patch from Loganaden
6946 Velvindron @ AfriNIC
6947
6948commit 9c449bc183b256c84d8f740727b0bc54d247b15e
6949Author: Damien Miller <djm@mindrot.org>
6950Date: Tue Feb 4 11:38:28 2014 +1100
6951
6952 - (djm) [regress/setuid-allowed.c] Missing string.h for strerror()
6953
6954commit bf7e0f03be661b6f5b3bfe325135ce19391f9c4d
6955Author: Damien Miller <djm@mindrot.org>
6956Date: Tue Feb 4 11:37:50 2014 +1100
6957
6958 - (djm) [openbsd-compat/Makefile.in] Add missing explicit_bzero.o
6959
6960commit eb6d870a0ea8661299bb2ea8f013d3ace04e2024
6961Author: Damien Miller <djm@mindrot.org>
6962Date: Tue Feb 4 11:26:34 2014 +1100
6963
6964 - djm@cvs.openbsd.org 2014/02/04 00:24:29
6965 [ssh.c]
6966 delay lowercasing of hostname until right before hostname
6967 canonicalisation to unbreak case-sensitive matching of ssh_config;
6968 reported by Ike Devolder; ok markus@
6969
6970commit d56b44d2dfa093883a5c4e91be3f72d99946b170
6971Author: Damien Miller <djm@mindrot.org>
6972Date: Tue Feb 4 11:26:04 2014 +1100
6973
6974 - djm@cvs.openbsd.org 2014/02/04 00:24:29
6975 [ssh.c]
6976 delay lowercasing of hostname until right before hostname
6977 canonicalisation to unbreak case-sensitive matching of ssh_config;
6978 reported by Ike Devolder; ok markus@
6979
6980commit db3c595ea74ea9ccd5aa644d7e1f8dc675710731
6981Author: Damien Miller <djm@mindrot.org>
6982Date: Tue Feb 4 11:25:45 2014 +1100
6983
6984 - djm@cvs.openbsd.org 2014/02/02 03:44:31
6985 [digest-libc.c digest-openssl.c]
6986 convert memset of potentially-private data to explicit_bzero()
6987
6988commit aae07e2e2000dd318418fd7fd4597760904cae32
6989Author: Damien Miller <djm@mindrot.org>
6990Date: Tue Feb 4 11:20:40 2014 +1100
6991
6992 - djm@cvs.openbsd.org 2014/02/03 23:28:00
6993 [ssh-ecdsa.c]
6994 fix memory leak; ECDSA_SIG_new() allocates 'r' and 's' for us, unlike
6995 DSA_SIG_new. Reported by Batz Spear; ok markus@
6996
6997commit a5103f413bde6f31bff85d6e1fd29799c647d765
6998Author: Damien Miller <djm@mindrot.org>
6999Date: Tue Feb 4 11:20:14 2014 +1100
7000
7001 - djm@cvs.openbsd.org 2014/02/02 03:44:32
7002 [auth1.c auth2-chall.c auth2-passwd.c authfile.c bufaux.c bufbn.c]
7003 [buffer.c cipher-3des1.c cipher.c clientloop.c gss-serv.c kex.c]
7004 [kexdhc.c kexdhs.c kexecdhc.c kexgexc.c kexecdhs.c kexgexs.c key.c]
7005 [monitor.c monitor_wrap.c packet.c readpass.c rsa.c serverloop.c]
7006 [ssh-add.c ssh-agent.c ssh-dss.c ssh-ecdsa.c ssh-ed25519.c]
7007 [ssh-keygen.c ssh-rsa.c sshconnect.c sshconnect1.c sshconnect2.c]
7008 [sshd.c]
7009 convert memset of potentially-private data to explicit_bzero()
7010
7011commit 1d2c4564265ee827147af246a16f3777741411ed
7012Author: Damien Miller <djm@mindrot.org>
7013Date: Tue Feb 4 11:18:20 2014 +1100
7014
7015 - tedu@cvs.openbsd.org 2014/01/31 16:39:19
7016 [auth2-chall.c authfd.c authfile.c bufaux.c bufec.c canohost.c]
7017 [channels.c cipher-chachapoly.c clientloop.c configure.ac hostfile.c]
7018 [kexc25519.c krl.c monitor.c sandbox-systrace.c session.c]
7019 [sftp-client.c ssh-keygen.c ssh.c sshconnect2.c sshd.c sshlogin.c]
7020 [openbsd-compat/explicit_bzero.c openbsd-compat/openbsd-compat.h]
7021 replace most bzero with explicit_bzero, except a few that cna be memset
7022 ok djm dtucker
7023
7024commit 3928de067c286683a95fbdbdb5fdb3c78a0e5efd
7025Author: Damien Miller <djm@mindrot.org>
7026Date: Tue Feb 4 11:13:54 2014 +1100
7027
7028 - djm@cvs.openbsd.org 2014/01/30 22:26:14
7029 [sandbox-systrace.c]
7030 allow shutdown(2) syscall in sandbox - it may be called by packet_close()
7031 from portable
7032 (Id sync only; change is already in portable)
7033
7034commit e1e480aee8a9af6cfbe7188667b7b940d6b57f9f
7035Author: Damien Miller <djm@mindrot.org>
7036Date: Tue Feb 4 11:13:17 2014 +1100
7037
7038 - jmc@cvs.openbsd.org 2014/01/29 14:04:51
7039 [sshd_config.5]
7040 document kbdinteractiveauthentication;
7041 requested From: Ross L Richardson
7042
7043 dtucker/markus helped explain its workings;
7044
7045commit 7cc194f70d4a5ec9a82d19422eaf18db4a6624c6
7046Author: Damien Miller <djm@mindrot.org>
7047Date: Tue Feb 4 11:12:56 2014 +1100
7048
7049 - djm@cvs.openbsd.org 2014/01/29 06:18:35
7050 [Makefile.in auth.h auth2-jpake.c auth2.c jpake.c jpake.h monitor.c]
7051 [monitor.h monitor_wrap.c monitor_wrap.h readconf.c readconf.h]
7052 [schnorr.c schnorr.h servconf.c servconf.h ssh2.h sshconnect2.c]
7053 remove experimental, never-enabled JPAKE code; ok markus@
7054
7055commit b0f26544cf6f4feeb1a4f6db09fca834f5c9867d
7056Author: Damien Miller <djm@mindrot.org>
7057Date: Tue Feb 4 11:10:01 2014 +1100
7058
7059 - djm@cvs.openbsd.org 2014/01/29 00:19:26
7060 [sshd.c]
7061 use kill(0, ...) instead of killpg(0, ...); on most operating systems
7062 they are equivalent, but SUSv2 describes the latter as having undefined
7063 behaviour; from portable; ok dtucker
7064 (Id sync only; change is already in portable)
7065
7066commit f8f35bc471500348bb262039fb1fc43175d251b0
7067Author: Damien Miller <djm@mindrot.org>
7068Date: Tue Feb 4 11:09:12 2014 +1100
7069
7070 - jmc@cvs.openbsd.org 2014/01/28 14:13:39
7071 [ssh-keyscan.1]
7072 kill some bad Pa;
7073 From: Jan Stary
7074
7075commit 0ba85d696ae9daf66002c2e4ab0d6bb111e1a787
7076Author: Damien Miller <djm@mindrot.org>
7077Date: Tue Feb 4 11:08:38 2014 +1100
7078
7079 ignore a few more regress droppings
7080
7081commit ec93d15170b7a6ddf63fd654bd0f6a752acc19dd
7082Author: Damien Miller <djm@mindrot.org>
7083Date: Tue Feb 4 11:07:13 2014 +1100
7084
7085 - markus@cvs.openbsd.org 2014/01/27 20:13:46
7086 [digest.c digest-openssl.c digest-libc.c Makefile.in]
7087 rename digest.c to digest-openssl.c and add libc variant; ok djm@
7088
7089commit 4a1c7aa640fb97d3472d51b215b6a0ec0fd025c7
7090Author: Damien Miller <djm@mindrot.org>
7091Date: Tue Feb 4 11:03:36 2014 +1100
7092
7093 - markus@cvs.openbsd.org 2014/01/27 19:18:54
7094 [auth-rsa.c cipher.c ssh-agent.c sshconnect1.c sshd.c]
7095 replace openssl MD5 with our ssh_digest_*; ok djm@
7096
7097commit 4e8d937af79ce4e253f77ec93489d098b25becc3
7098Author: Damien Miller <djm@mindrot.org>
7099Date: Tue Feb 4 11:02:42 2014 +1100
7100
7101 - markus@cvs.openbsd.org 2014/01/27 18:58:14
7102 [Makefile.in digest.c digest.h hostfile.c kex.h mac.c hmac.c hmac.h]
7103 replace openssl HMAC with an implementation based on our ssh_digest_*
7104 ok and feedback djm@
7105
7106commit 69d0d09f76bab5aec86fbf78489169f63bd16475
7107Author: Tim Rice <tim@multitalents.net>
7108Date: Fri Jan 31 14:25:18 2014 -0800
7109
7110 - (tim) [Makefile.in] build regress/setuid-allow.
7111
7112commit 0eeafcd76b972a3d159f3118227c149a4d7817fe
7113Author: Darren Tucker <dtucker@zip.com.au>
7114Date: Fri Jan 31 14:18:51 2014 +1100
7115
7116 - (dtucker) [readconf.c] Include <arpa/inet.h> for the hton macros. Fixes
7117 build with HP-UX's compiler. Patch from Kevin Brott.
7118
7119commit 7e5cec6070673e9f9785ffc749837ada22fbe99f
7120Author: Damien Miller <djm@mindrot.org>
7121Date: Fri Jan 31 09:25:34 2014 +1100
7122
7123 - (djm) [sandbox-seccomp-filter.c sandbox-systrace.c] Allow shutdown(2)
7124 syscall from sandboxes; it may be called by packet_close.
7125
7126commit cdb6c90811caa5df2df856be9b0b16db020fe31d
7127Author: Damien Miller <djm@mindrot.org>
7128Date: Thu Jan 30 12:50:17 2014 +1100
7129
7130 - (djm) Release openssh-6.5p1
7131
7132commit 996ea80b1884b676a901439f1f2681eb6ff68501
7133Author: Damien Miller <djm@mindrot.org>
7134Date: Thu Jan 30 12:49:55 2014 +1100
7135
7136 trim entries prior to openssh-6.0p1
7137
7138commit f5bbd3b657b6340551c8a95f74a70857ff8fac79
7139Author: Damien Miller <djm@mindrot.org>
7140Date: Thu Jan 30 11:26:46 2014 +1100
7141
7142 - (djm) [configure.ac atomicio.c] Kludge around NetBSD offering
7143 different symbols for 'read' when various compiler flags are
7144 in use, causing atomicio.c comparisons against it to break and
7145 read/write operations to hang; ok dtucker
7146
7147commit c2868192ddc4e1420a50389e18c05db20b0b1f32
7148Author: Damien Miller <djm@mindrot.org>
7149Date: Thu Jan 30 10:21:19 2014 +1100
7150
7151 - (djm) [configure.ac] Only check for width-specified integer types
7152 in headers that actually exist. patch from Tom G. Christensen;
7153 ok dtucker@
7154
7155commit c161fc90fc86e2035710570238a9e1ca7a68d2a5
7156Author: Damien Miller <djm@mindrot.org>
7157Date: Wed Jan 29 21:01:33 2014 +1100
7158
7159 - (djm) [configure.ac] Fix broken shell test '==' vs '='; patch from
7160 Tom G. Christensen
7161
7162commit 6f917ad376481995ab7d29fb53b08ec8d507eb9e
7163Author: Tim Rice <tim@multitalents.net>
7164Date: Tue Jan 28 10:26:25 2014 -0800
7165
7166 - (tim) [regress/agent.sh regress/agent-ptrace.sh] Assign $? to a variable
7167 when used as an error message inside an if statement so we display the
7168 correct into. agent.sh patch from Petr Lautrbach.
7169
7170commit ab16ef4152914d44ce6f76e48167d26d22f66a06
7171Author: Damien Miller <djm@mindrot.org>
7172Date: Tue Jan 28 15:08:12 2014 +1100
7173
7174 - (djm) [sshd.c] Use kill(0, ...) instead of killpg(0, ...); the
7175 latter being specified to have undefined behaviour in SUSv3;
7176 ok dtucker
7177
7178commit ab0394905884dc6e58c3721211c6b38fb8fc2ca8
7179Author: Damien Miller <djm@mindrot.org>
7180Date: Tue Jan 28 15:07:10 2014 +1100
7181
7182 - (djm) [configure.ac] Search for inet_ntop in libnsl and libresovl;
7183 ok dtucker
7184
7185commit 4ab20a82d4d4168d62318923f62382f6ef242fcd
7186Author: Darren Tucker <dtucker@zip.com.au>
7187Date: Mon Jan 27 17:35:04 2014 +1100
7188
7189 - (dtucker) [Makefile.in] Remove trailing backslash which some make
7190 implementations (eg older Solaris) do not cope with.
7191
7192commit e7e8b3cfe9f8665faaf0e68b33df5bbb431bd129
7193Author: Darren Tucker <dtucker@zip.com.au>
7194Date: Mon Jan 27 17:32:50 2014 +1100
7195
7196 Welcome to 2014
7197
7198commit 5b447c0aac0dd444251e276f6bb3bbbe1c05331c
7199Author: Damien Miller <djm@mindrot.org>
7200Date: Sun Jan 26 09:46:53 2014 +1100
7201
7202 - (djm) [configure.ac] correct AC_DEFINE for previous.
7203
7204commit 2035b2236d3b1f76c749c642a43e03c85eae76e6
7205Author: Damien Miller <djm@mindrot.org>
7206Date: Sun Jan 26 09:39:53 2014 +1100
7207
7208 - (djm) [configure.ac sandbox-capsicum.c sandbox-rlimit.c] Disable
7209 RLIMIT_NOFILE pseudo-sandbox on FreeBSD. In some configurations,
7210 libc will attempt to open additional file descriptors for crypto
7211 offload and crash if they cannot be opened.
7212
7213commit a92ac7410475fbb00383c7402aa954dc0a75ae19
7214Author: Damien Miller <djm@mindrot.org>
7215Date: Sun Jan 26 09:38:03 2014 +1100
7216
7217 - markus@cvs.openbsd.org 2014/01/25 20:35:37
7218 [kex.c]
7219 dh_need needs to be set to max(seclen, blocksize, ivlen, mac_len)
7220 ok dtucker@, noted by mancha
7221
7222commit 76eea4ab4e658670ca6e76dd1e6d17f262208b57
7223Author: Damien Miller <djm@mindrot.org>
7224Date: Sun Jan 26 09:37:25 2014 +1100
7225
7226 - dtucker@cvs.openbsd.org 2014/01/25 10:12:50
7227 [cipher.c cipher.h kex.c kex.h kexgexc.c]
7228 Add a special case for the DH group size for 3des-cbc, which has an
7229 effective strength much lower than the key size. This causes problems
7230 with some cryptlib implementations, which don't support group sizes larger
7231 than 4k but also don't use the largest group size it does support as
7232 specified in the RFC. Based on a patch from Petr Lautrbach at Redhat,
7233 reduced by me with input from Markus. ok djm@ markus@
7234
7235commit 603b8f47f1cd9ed95a2017447db8e60ca6704594
7236Author: Damien Miller <djm@mindrot.org>
7237Date: Sat Jan 25 13:16:59 2014 +1100
7238
7239 - (djm) [configure.ac] autoconf sets finds to 'yes' not '1', so test
7240 against the correct thing.
7241
7242commit c96d85376d779b6ac61525b5440010d344d2f23f
7243Author: Damien Miller <djm@mindrot.org>
7244Date: Sat Jan 25 13:12:28 2014 +1100
7245
7246 - (djm) [configure.ac] Do not attempt to use capsicum sandbox unless
7247 sys/capability.h exists and cap_rights_limit is in libc. Fixes
7248 build on FreeBSD9x which provides the header but not the libc
7249 support.
7250
7251commit f62ecef9939cb3dbeb10602fd705d4db3976d822
7252Author: Damien Miller <djm@mindrot.org>
7253Date: Sat Jan 25 12:34:38 2014 +1100
7254
7255 - (djm) [configure.ac] Fix detection of capsicum sandbox on FreeBSD
7256
7257commit b0e0f760b861676a3fe5c40133b270713d5321a9
7258Author: Damien Miller <djm@mindrot.org>
7259Date: Fri Jan 24 14:27:04 2014 +1100
7260
7261 - (djm) [Makefile.in regress/scp-ssh-wrapper.sh regress/scp.sh] Make
7262 the scp regress test actually test the built scp rather than the one
7263 in $PATH. ok dtucker@
7264
7265commit 42a092530159637da9cb7f9e1b5f4679e34a85e6
7266Author: Darren Tucker <dtucker@zip.com.au>
7267Date: Thu Jan 23 23:14:39 2014 +1100
7268
7269 - (dtucker) [configure.ac] NetBSD's (and FreeBSD's) strnvis is gratuitously
7270 incompatible with OpenBSD's despite post-dating it by more than a decade.
7271 Declare it as broken, and document FreeBSD's as the same. ok djm@
7272
7273commit 617da33c20cb59f9ea6c99c881d92493371ef7b8
7274Author: Tim Rice <tim@multitalents.net>
7275Date: Wed Jan 22 19:16:10 2014 -0800
7276
7277 - (tim) [session.c] Improve error reporting on set_id().
7278
7279commit 5c2ff5e31f57d303ebb414d84a934c02728fa568
7280Author: Damien Miller <djm@mindrot.org>
7281Date: Wed Jan 22 21:30:12 2014 +1100
7282
7283 - (djm) [configure.ac aclocal.m4] More tests to detect fallout from
7284 platform hardening options: include some long long int arithmatic
7285 to detect missing support functions for -ftrapv in libgcc and
7286 equivalents, actually test linking when -ftrapv is supplied and
7287 set either both -pie/-fPIE or neither. feedback and ok dtucker@
7288
7289commit 852472a54b8a0dc3e53786b313baaa86850a4273
7290Author: Damien Miller <djm@mindrot.org>
7291Date: Wed Jan 22 16:31:18 2014 +1100
7292
7293 - (djm) [configure.ac] Unless specifically requested, only attempt
7294 to build Position Independent Executables on gcc >= 4.x; ok dtucker
7295
7296commit ee87838786cef0194db36ae0675b3e7c4e8ec661
7297Author: Damien Miller <djm@mindrot.org>
7298Date: Wed Jan 22 16:30:15 2014 +1100
7299
7300 - (djm) [openbsd-compat/setproctitle.c] Don't fail to compile if a
7301 platform that is expected to use the reuse-argv style setproctitle
7302 hack surprises us by providing a setproctitle in libc; ok dtucker
7303
7304commit 5c96a154c7940fa67b1f11c421e390dbbc159f27
7305Author: Damien Miller <djm@mindrot.org>
7306Date: Tue Jan 21 13:10:26 2014 +1100
7307
7308 - (djm) [aclocal.m4] Flesh out the code run in the OSSH_CHECK_CFLAG_COMPILE
7309 and OSSH_CHECK_LDFLAG_LINK tests to give them a better chance of
7310 detecting toolchain-related problems; ok dtucker
7311
7312commit 9464ba6fb34bb42eb3501ec3c5143662e75674bf
7313Author: Tim Rice <tim@multitalents.net>
7314Date: Mon Jan 20 17:59:28 2014 -0800
7315
7316 - (tim) [platform.c session.c] Fix bug affecting SVR5 platforms introduced
7317 with sftp chroot support. Move set_id call after chroot.
7318
7319commit a6d573caa14d490e6c42fb991bcb5c6860ec704b
7320Author: Darren Tucker <dtucker@zip.com.au>
7321Date: Tue Jan 21 12:50:46 2014 +1100
7322
7323 - (dtucker) [aclocal.m4] Differentiate between compile-time and link-time
7324 tests in the configure output. ok djm.
7325
7326commit 096118dc73ab14810b3c12785c0b5acb01ad6123
7327Author: Darren Tucker <dtucker@zip.com.au>
7328Date: Tue Jan 21 12:48:51 2014 +1100
7329
7330 - (dtucker) [configure.ac] Make PIE a configure-time option which defaults
7331 to on platforms where it's known to be reliably detected and off elsewhere.
7332 Works around platforms such as FreeBSD 9.1 where it does not interop with
7333 -ftrapv (it seems to work but fails when trying to link ssh). ok djm@
7334
7335commit f9df7f6f477792254eab33cdef71a6d66488cb88
7336Author: Damien Miller <djm@mindrot.org>
7337Date: Mon Jan 20 20:07:15 2014 +1100
7338
7339 - (djm) [regress/cert-hostkey.sh] Fix regress failure on platforms that
7340 skip one or more key types (e.g. RHEL/CentOS 6.5); ok dtucker@
7341
7342commit c74e70eb52ccc0082bd5a70b5798bb01c114d138
7343Author: Darren Tucker <dtucker@zip.com.au>
7344Date: Mon Jan 20 13:18:09 2014 +1100
7345
7346 - (dtucker) [gss-serv-krb5.c] Fall back to krb5_cc_gen_new if the Kerberos
7347 implementation does not have krb5_cc_new_unique, similar to what we do
7348 in auth-krb5.c.
7349
7350commit 3510979e83b6a18ec8773c64c3fa04aa08b2e783
7351Author: Damien Miller <djm@mindrot.org>
7352Date: Mon Jan 20 12:41:53 2014 +1100
7353
7354 - djm@cvs.openbsd.org 2014/01/20 00:08:48
7355 [digest.c]
7356 memleak; found by Loganaden Velvindron @ AfriNIC; ok markus@
7357
7358commit 7eee358d7a6580479bee5cd7e52810ebfd03e5b2
7359Author: Darren Tucker <dtucker@zip.com.au>
7360Date: Sun Jan 19 22:37:02 2014 +1100
7361
7362 - dtucker@cvs.openbsd.org 2014/01/19 11:21:51
7363 [addrmatch.c]
7364 Cast the sizeof to socklen_t so it'll work even if the supplied len is
7365 negative. Suggested by and ok djm, ok deraadt.
7366
7367commit b7e01c09b56ab26e8fac56bbce0fd25e36d12bb0
7368Author: Darren Tucker <dtucker@zip.com.au>
7369Date: Sun Jan 19 22:36:13 2014 +1100
7370
7371 - djm@cvs.openbsd.org 2014/01/19 04:48:08
7372 [ssh_config.5]
7373 fix inverted meaning of 'no' and 'yes' for CanonicalizeFallbackLocal
7374
7375commit 7b1ded04adce42efa25ada7c3a39818d3109b724
7376Author: Darren Tucker <dtucker@zip.com.au>
7377Date: Sun Jan 19 15:30:02 2014 +1100
7378
7379 - dtucker@cvs.openbsd.org 2014/01/19 04:17:29
7380 [canohost.c addrmatch.c]
7381 Cast socklen_t when comparing to size_t and use socklen_t to iterate over
7382 the ip options, both to prevent signed/unsigned comparison warnings.
7383 Patch from vinschen at redhat via portable openssh, begrudging ok deraadt.
7384
7385commit 293ee3c9f0796d99ebb033735f0e315f2e0180bf
7386Author: Darren Tucker <dtucker@zip.com.au>
7387Date: Sun Jan 19 15:28:01 2014 +1100
7388
7389 - dtucker@cvs.openbsd.org 2014/01/18 09:36:26
7390 [session.c]
7391 explicitly define USE_PIPES to 1 to prevent redefinition warnings in
7392 portable on platforms that use pipes for everything. From redhat @
7393 redhat.
7394
7395commit 2aca159d05f9e7880d1d8f1ce49a218840057f53
7396Author: Darren Tucker <dtucker@zip.com.au>
7397Date: Sun Jan 19 15:25:34 2014 +1100
7398
7399 - dtucker@cvs.openbsd.org 2014/01/17 06:23:24
7400 [sftp-server.c]
7401 fix log message statvfs. ok djm
7402
7403commit 841f7da89ae8b367bb502d61c5c41916c6e7ae4c
7404Author: Darren Tucker <dtucker@zip.com.au>
7405Date: Sat Jan 18 22:12:15 2014 +1100
7406
7407 - (dtucker) [sandbox-capsicum.c] Correct some error messages and make the
7408 return value check for cap_enter() consistent with the other uses in
7409 FreeBSD. From by Loganaden Velvindron @ AfriNIC via bz#2140.
7410
7411commit fdce3731660699b2429e93e822f2ccbaccd163ae
7412Author: Darren Tucker <dtucker@zip.com.au>
7413Date: Sat Jan 18 21:12:42 2014 +1100
7414
7415 - (dtucker) [configure.ac] On Cygwin the getopt variables (like optargs,
7416 optind) are defined in getopt.h already. Unfortunately they are defined as
7417 "declspec(dllimport)" for historical reasons, because the GNU linker didn't
7418 allow auto-import on PE/COFF targets way back when. The problem is the
7419 dllexport attributes collide with the definitions in the various source
7420 files in OpenSSH, which obviousy define the variables without
7421 declspec(dllimport). The least intrusive way to get rid of these warnings
7422 is to disable warnings for GCC compiler attributes when building on Cygwin.
7423 Patch from vinschen at redhat.com.
7424
7425commit 1411c9263f46e1ee49d0d302bf7258ebe69ce827
7426Author: Darren Tucker <dtucker@zip.com.au>
7427Date: Sat Jan 18 21:03:59 2014 +1100
7428
7429 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] Add missing function
7430 declarations that stopped being included when we stopped including
7431 <windows.h> from openbsd-compat/bsd-cygwin_util.h. Patch from vinschen at
7432 redhat.com.
7433
7434commit 89c532d843c95a085777c66365067d64d1937eb9
7435Author: Darren Tucker <dtucker@zip.com.au>
7436Date: Sat Jan 18 20:43:49 2014 +1100
7437
7438 - (dtucker) [uidswap.c] Prevent unused variable warnings on Cygwin. Patch
7439 from vinschen at redhat.com
7440
7441commit 355f861022be7b23d3009fae8f3c9f6f7fc685f7
7442Author: Darren Tucker <dtucker@zip.com.au>
7443Date: Sat Jan 18 00:12:38 2014 +1100
7444
7445 - (dtucker) [defines.h] Move our definitions of uintXX_t types down to after
7446 they're defined if we have to define them ourselves. Fixes builds on old
7447 AIX.
7448
7449commit a3357661ee1d5d553294f36e4940e8285c7f1332
7450Author: Darren Tucker <dtucker@zip.com.au>
7451Date: Sat Jan 18 00:03:57 2014 +1100
7452
7453 - (dtucker) [readconf.c] Wrap paths.h inside an ifdef. Allows building on
7454 Solaris.
7455
7456commit 9edcbff46ff01c8d5dee9c1aa843f09e9ad8a80e
7457Author: Darren Tucker <dtucker@zip.com.au>
7458Date: Fri Jan 17 21:54:32 2014 +1100
7459
7460 - (dtucker) [configure.ac] Have --without-toolchain-hardening not turn off
7461 stack-protector since that has a separate flag that's been around a while.
7462
7463commit 6d725687c490d4ba957a1bbc0ba0a2956c09fa69
7464Author: Darren Tucker <dtucker@zip.com.au>
7465Date: Fri Jan 17 19:17:34 2014 +1100
7466
7467 - (dtucker) [configure.ac] Also look in inttypes.h for uintXX_t types.
7468
7469commit 5055699c7f7c7ef21703a443ec73117da392f6ae
7470Author: Darren Tucker <dtucker@zip.com.au>
7471Date: Fri Jan 17 18:48:22 2014 +1100
7472
7473 - (dtucker) [openbsd-compat/bsd-statvfs.h] Only start including headers if we
7474 need them to cut down on the name collisions.
7475
7476commit a5cf1e220def07290260e4125e74f41ac75cf88d
7477Author: Darren Tucker <dtucker@zip.com.au>
7478Date: Fri Jan 17 18:10:58 2014 +1100
7479
7480 - (dtucker) [configure.ac openbsd-compat/bsd-statvfs.c
7481 openbsd-compat/bsd-statvfs.h] Implement enough of statvfs on top of statfs
7482 to be useful (and for the regression tests to pass) on platforms that
7483 have statfs and fstatfs. ok djm@
7484
7485commit 1357d71d7b6d269969520aaa3e84d312ec971d5b
7486Author: Darren Tucker <dtucker@zip.com.au>
7487Date: Fri Jan 17 18:00:40 2014 +1100
7488
7489 - (dtucker) Fix typo in #ifndef.
7490
7491commit d23a91ffb289d3553a58b7a60cec39fba9f0f506
7492Author: Darren Tucker <dtucker@zip.com.au>
7493Date: Fri Jan 17 17:32:30 2014 +1100
7494
7495 - (dtucker) [configure.ac digest.c openbsd-compat/openssl-compat.c
7496 openbsd-compat/openssl-compat.h] Add compatibility layer for older
7497 openssl versions. ok djm@
7498
7499commit 868ea1ea1c1bfdbee5dbad78f81999c5983ecf31
7500Author: Damien Miller <djm@mindrot.org>
7501Date: Fri Jan 17 16:47:04 2014 +1100
7502
7503 - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c]
7504 [sandbox-null.c sandbox-rlimit.c sandbox-seccomp-filter.c]
7505 [sandbox-systrace.c ssh-sandbox.h sshd.c] Support preauth sandboxing
7506 using the Capsicum API introduced in FreeBSD 10. Patch by Dag-Erling
7507 Smorgrav, updated by Loganaden Velvindron @ AfriNIC; ok dtucker@
7508
7509commit a9d186a8b50d18869a10e9203abf71c83ddb1f79
7510Author: Darren Tucker <dtucker@zip.com.au>
7511Date: Fri Jan 17 16:30:49 2014 +1100
7512
7513 - dtucker@cvs.openbsd.org 2014/01/17 05:26:41
7514 [digest.c]
7515 remove unused includes. ok djm@
7516
7517commit 5f1c57a7a7eb39c0e4fee3367712337dbcaef024
7518Author: Darren Tucker <dtucker@zip.com.au>
7519Date: Fri Jan 17 16:29:45 2014 +1100
7520
7521 - djm@cvs.openbsd.org 2014/01/17 00:21:06
7522 [sftp-client.c]
7523 signed/unsigned comparison warning fix; from portable (Id sync only)
7524
7525commit c548722361d89fb12c108528f96b306a26477b18
7526Author: Darren Tucker <dtucker@zip.com.au>
7527Date: Fri Jan 17 15:12:16 2014 +1100
7528
7529 - (dtucker) [configure.ac] Split AC_CHECK_FUNCS for OpenSSL functions into
7530 separate lines and alphabetize for easier diffing of changes.
7531
7532commit acad351a5b1c37de9130c9c1710445cc45a7f6b9
7533Author: Darren Tucker <dtucker@zip.com.au>
7534Date: Fri Jan 17 14:20:05 2014 +1100
7535
7536 - (dtucker) [defines.h] Add typedefs for uintXX_t types for platforms that
7537 don't have them.
7538
7539commit c3ed065ce8417aaa46490836648c173a5010f226
7540Author: Darren Tucker <dtucker@zip.com.au>
7541Date: Fri Jan 17 14:18:45 2014 +1100
7542
7543 - (dtucker) [openbsd-compat/bcrypt_pbkdf.c] Wrap stdlib.h include inside
7544 #ifdef HAVE_STDINT_H.
7545
7546commit f45f78ae437062c7d9506c5f475b7215f486be44
7547Author: Darren Tucker <dtucker@zip.com.au>
7548Date: Fri Jan 17 12:43:43 2014 +1100
7549
7550 - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c] Include
7551 includes.h to pull in all of the compatibility stuff.
7552
7553commit 99df369d0340caac145d57f700d830147ff18b87
7554Author: Darren Tucker <dtucker@zip.com.au>
7555Date: Fri Jan 17 12:42:17 2014 +1100
7556
7557 - (dtucker) [poly1305.c] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
7558
7559commit ac413b62ea1957e80c711acbe0c11b908273fc01
7560Author: Darren Tucker <dtucker@zip.com.au>
7561Date: Fri Jan 17 12:31:33 2014 +1100
7562
7563 - (dtucker) [crypto_api.h] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
7564
7565commit 1c4a011e9c939e74815346a560843e1862c300b8
7566Author: Darren Tucker <dtucker@zip.com.au>
7567Date: Fri Jan 17 12:23:23 2014 +1100
7568
7569 - (dtucker) [loginrec.c] Cast to the types specfied in the format
7570 specification to prevent warnings.
7571
7572commit c3d483f9a8275be1113535a1e0d0e384f605f3c4
7573Author: Damien Miller <djm@mindrot.org>
7574Date: Fri Jan 17 11:20:26 2014 +1100
7575
7576 - (djm) [sftp-client.c] signed/unsigned comparison fix
7577
7578commit fd994379dd972417d0491767f7cd9b5bf23f4975
7579Author: Darren Tucker <dtucker@zip.com.au>
7580Date: Fri Jan 17 09:53:24 2014 +1100
7581
7582 - (dtucker) [aclocal.m4 configure.ac] Add some additional compiler/toolchain
7583 hardening flags including -fstack-protector-strong. These default to on
7584 if the toolchain supports them, but there is a configure-time knob
7585 (--without-hardening) to disable them if necessary. ok djm@
7586
7587commit 366224d21768ee8ec28cfbcc5fbade1b32582d58
7588Author: Damien Miller <djm@mindrot.org>
7589Date: Thu Jan 16 18:51:44 2014 +1100
7590
7591 - (djm) [README] update release notes URL.
7592
7593commit 2ae77e64f8fa82cbf25c9755e8e847709b978b40
7594Author: Damien Miller <djm@mindrot.org>
7595Date: Thu Jan 16 18:51:07 2014 +1100
7596
7597 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
7598 [contrib/suse/openssh.spec] Crank RPM spec version numbers.
7599
7600commit 0fa29e6d777c73a1b4ddd3b996b06ee20022ae8a
7601Author: Damien Miller <djm@mindrot.org>
7602Date: Thu Jan 16 18:42:31 2014 +1100
7603
7604 - djm@cvs.openbsd.org 2014/01/16 07:32:00
7605 [version.h]
7606 openssh-6.5
7607
7608commit 52c371cd6d2598cc73d4e633811b3012119c47e2
7609Author: Damien Miller <djm@mindrot.org>
7610Date: Thu Jan 16 18:42:10 2014 +1100
7611
7612 - djm@cvs.openbsd.org 2014/01/16 07:31:09
7613 [sftp-client.c]
7614 needless and incorrect cast to size_t can break resumption of
7615 large download; patch from tobias@