summaryrefslogtreecommitdiff
path: root/ChangeLog
diff options
context:
space:
mode:
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog2660
1 files changed, 1862 insertions, 798 deletions
diff --git a/ChangeLog b/ChangeLog
index f66ca4b1e..d48aba33c 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,1865 @@
1commit 4a354fc231174901f2629437c2a6e924a2dd6772
2Author: Damien Miller <djm@mindrot.org>
3Date: Mon Dec 19 15:59:26 2016 +1100
4
5 crank version numbers for release
6
7commit 5f8d0bb8413d4d909cc7aa3c616fb0538224c3c9
8Author: djm@openbsd.org <djm@openbsd.org>
9Date: Mon Dec 19 04:55:51 2016 +0000
10
11 upstream commit
12
13 openssh-7.4
14
15 Upstream-ID: 1ee404adba6bbe10ae9277cbae3a94abe2867b79
16
17commit 3a8213ea0ed843523e34e55ab9c852332bab4c7b
18Author: djm@openbsd.org <djm@openbsd.org>
19Date: Mon Dec 19 04:55:18 2016 +0000
20
21 upstream commit
22
23 remove testcase that depends on exact output and
24 behaviour of snprintf(..., "%s", NULL)
25
26 Upstream-Regress-ID: cab4288531766bd9593cb556613b91a2eeefb56f
27
28commit eae735a82d759054f6ec7b4e887fb7a5692c66d7
29Author: dtucker@openbsd.org <dtucker@openbsd.org>
30Date: Mon Dec 19 03:32:57 2016 +0000
31
32 upstream commit
33
34 Use LOGNAME to get current user and fall back to whoami if
35 not set. Mainly to benefit -portable since some platforms don't have whoami.
36
37 Upstream-Regress-ID: e3a16b7836a3ae24dc8f8a4e43fdf8127a60bdfa
38
39commit 0d2f88428487518eea60602bd593989013831dcf
40Author: dtucker@openbsd.org <dtucker@openbsd.org>
41Date: Fri Dec 16 03:51:19 2016 +0000
42
43 upstream commit
44
45 Add regression test for AllowUsers and DenyUsers. Patch from
46 Zev Weiss <zev at bewilderbeest.net>
47
48 Upstream-Regress-ID: 8f1aac24d52728398871dac14ad26ea38b533fb9
49
50commit 3bc8180a008929f6fe98af4a56fb37d04444b417
51Author: Darren Tucker <dtucker@zip.com.au>
52Date: Fri Dec 16 15:02:24 2016 +1100
53
54 Add missing monitor.h include.
55
56 Fixes warning pointed out by Zev Weiss <zev at bewilderbeest.net>
57
58commit 410681f9015d76cc7b137dd90dac897f673244a0
59Author: djm@openbsd.org <djm@openbsd.org>
60Date: Fri Dec 16 02:48:55 2016 +0000
61
62 upstream commit
63
64 revert to rev1.2; the new bits in this test depend on changes
65 to ssh that aren't yet committed
66
67 Upstream-Regress-ID: 828ffc2c7afcf65d50ff2cf3dfc47a073ad39123
68
69commit 2f2ffa4fbe4b671bbffa0611f15ba44cff64d58e
70Author: dtucker@openbsd.org <dtucker@openbsd.org>
71Date: Fri Dec 16 01:06:27 2016 +0000
72
73 upstream commit
74
75 Move the "stop sshd" code into its own helper function.
76 Patch from Zev Weiss <zev at bewilderbeest.net>, ok djm@
77
78 Upstream-Regress-ID: a113dea77df5bd97fb4633ea31f3d72dbe356329
79
80commit e15e7152331e3976b35475fd4e9c72897ad0f074
81Author: djm@openbsd.org <djm@openbsd.org>
82Date: Fri Dec 16 01:01:07 2016 +0000
83
84 upstream commit
85
86 regression test for certificates along with private key
87 with no public half. bz#2617, mostly from Adam Eijdenberg
88
89 Upstream-Regress-ID: 2e74dc2c726f4dc839609b3ce045466b69f01115
90
91commit 9a70ec085faf6e55db311cd1a329f1a35ad2a500
92Author: dtucker@openbsd.org <dtucker@openbsd.org>
93Date: Thu Dec 15 23:50:37 2016 +0000
94
95 upstream commit
96
97 Use $SUDO to read pidfile in case root's umask is
98 restricted. From portable.
99
100 Upstream-Regress-ID: f6b1c7ffbc5a0dfb7d430adb2883344899174a98
101
102commit fe06b68f824f8f55670442fb31f2c03526dd326c
103Author: dtucker@openbsd.org <dtucker@openbsd.org>
104Date: Thu Dec 15 21:29:05 2016 +0000
105
106 upstream commit
107
108 Add missing braces in DenyUsers code. Patch from zev at
109 bewilderbeest.net, ok deraadt@
110
111 Upstream-ID: d747ace338dcf943b077925f90f85f789714b54e
112
113commit dcc7d74242a574fd5c4afbb4224795b1644321e7
114Author: dtucker@openbsd.org <dtucker@openbsd.org>
115Date: Thu Dec 15 21:20:41 2016 +0000
116
117 upstream commit
118
119 Fix text in error message. Patch from zev at
120 bewilderbeest.net.
121
122 Upstream-ID: deb0486e175e7282f98f9a15035d76c55c84f7f6
123
124commit b737e4d7433577403a31cff6614f6a1b0b5e22f4
125Author: djm@openbsd.org <djm@openbsd.org>
126Date: Wed Dec 14 00:36:34 2016 +0000
127
128 upstream commit
129
130 disable Unix-domain socket forwarding when privsep is
131 disabled
132
133 Upstream-ID: ab61516ae0faadad407857808517efa900a0d6d0
134
135commit 08a1e7014d65c5b59416a0e138c1f73f417496eb
136Author: djm@openbsd.org <djm@openbsd.org>
137Date: Fri Dec 9 03:04:29 2016 +0000
138
139 upstream commit
140
141 log connections dropped in excess of MaxStartups at
142 verbose LogLevel; bz#2613 based on diff from Tomas Kuthan; ok dtucker@
143
144 Upstream-ID: 703ae690dbf9b56620a6018f8a3b2389ce76d92b
145
146commit 10e290ec00964b2bf70faab15a10a5574bb80527
147Author: Darren Tucker <dtucker@zip.com.au>
148Date: Tue Dec 13 13:51:32 2016 +1100
149
150 Get default of TEST_SSH_UTF8 from environment.
151
152commit b9b8ba3f9ed92c6220b58d70d1e6d8aa3eea1104
153Author: Darren Tucker <dtucker@zip.com.au>
154Date: Tue Dec 13 12:56:40 2016 +1100
155
156 Remove commented-out includes.
157
158 These commented-out includes have "Still needed?" comments. Since
159 they've been commented out for ~13 years I assert that they're not.
160
161commit 25275f1c9d5f01a0877d39444e8f90521a598ea0
162Author: Darren Tucker <dtucker@zip.com.au>
163Date: Tue Dec 13 12:54:23 2016 +1100
164
165 Add prototype for strcasestr in compat library.
166
167commit afec07732aa2985142f3e0b9a01eb6391f523dec
168Author: Darren Tucker <dtucker@zip.com.au>
169Date: Tue Dec 13 10:23:03 2016 +1100
170
171 Add strcasestr to compat library.
172
173 Fixes build on (at least) Solaris 10.
174
175commit dda78a03af32e7994f132d923c2046e98b7c56c8
176Author: Damien Miller <djm@mindrot.org>
177Date: Mon Dec 12 13:57:10 2016 +1100
178
179 Force Turkish locales back to C/POSIX; bz#2643
180
181 Turkish locales are unique in their handling of the letters 'i' and
182 'I' (yes, they are different letters) and OpenSSH isn't remotely
183 prepared to deal with that. For now, the best we can do is to force
184 OpenSSH to use the C/POSIX locale and try to preserve the UTF-8
185 encoding if possible.
186
187 ok dtucker@
188
189commit c35995048f41239fc8895aadc3374c5f75180554
190Author: Darren Tucker <dtucker@zip.com.au>
191Date: Fri Dec 9 12:52:02 2016 +1100
192
193 exit is in stdlib.h not unistd.h (that's _exit).
194
195commit d399a8b914aace62418c0cfa20341aa37a192f98
196Author: Darren Tucker <dtucker@zip.com.au>
197Date: Fri Dec 9 12:33:25 2016 +1100
198
199 Include <unistd.h> for exit in utf8 locale test.
200
201commit 47b8c99ab3221188ad3926108dd9d36da3b528ec
202Author: Darren Tucker <dtucker@zip.com.au>
203Date: Thu Dec 8 15:48:34 2016 +1100
204
205 Check for utf8 local support before testing it.
206
207 Check for utf8 local support and if not found, do not attempt to run the
208 utf8 tests. Suggested by djm@
209
210commit 4089fc1885b3a2822204effbb02b74e3da58240d
211Author: Darren Tucker <dtucker@zip.com.au>
212Date: Thu Dec 8 12:57:24 2016 +1100
213
214 Use AC_PATH_TOOL for krb5-config.
215
216 This will use the host-prefixed version when cross compiling; patch from
217 david.michael at coreos.com.
218
219commit b4867e0712c89b93be905220c82f0a15e6865d1e
220Author: djm@openbsd.org <djm@openbsd.org>
221Date: Tue Dec 6 07:48:01 2016 +0000
222
223 upstream commit
224
225 make IdentityFile successfully load and use certificates that
226 have no corresponding bare public key. E.g. just a private id_rsa and
227 certificate id_rsa-cert.pub (and no id_rsa.pub).
228
229 bz#2617 ok dtucker@
230
231 Upstream-ID: c1e9699b8c0e3b63cc4189e6972e3522b6292604
232
233commit c9792783a98881eb7ed295680013ca97a958f8ac
234Author: Damien Miller <djm@mindrot.org>
235Date: Fri Nov 25 14:04:21 2016 +1100
236
237 Add a gnome-ssh-askpass3 target for GTK+3 version
238
239 Based on patch from Colin Watson via bz#2640
240
241commit 7be85ae02b9de0993ce0a1d1e978e11329f6e763
242Author: Damien Miller <djm@mindrot.org>
243Date: Fri Nov 25 14:03:53 2016 +1100
244
245 Make gnome-ssh-askpass2.c GTK+3-friendly
246
247 Patch from Colin Watson via bz#2640
248
249commit b9844a45c7f0162fd1b5465683879793d4cc4aaa
250Author: djm@openbsd.org <djm@openbsd.org>
251Date: Sun Dec 4 23:54:02 2016 +0000
252
253 upstream commit
254
255 Fix public key authentication when multiple
256 authentication is in use. Instead of deleting and re-preparing the entire
257 keys list, just reset the 'used' flags; the keys list is already in a good
258 order (with already- tried keys at the back)
259
260 Analysis and patch from Vincent Brillault on bz#2642; ok dtucker@
261
262 Upstream-ID: 7123f12dc2f3bcaae715853035a97923d7300176
263
264commit f2398eb774075c687b13af5bc22009eb08889abe
265Author: dtucker@openbsd.org <dtucker@openbsd.org>
266Date: Sun Dec 4 22:27:25 2016 +0000
267
268 upstream commit
269
270 Unlink PidFile on SIGHUP and always recreate it when the
271 new sshd starts. Regression tests (and possibly other things) depend on the
272 pidfile being recreated after SIGHUP, and unlinking it means it won't contain
273 a stale pid if sshd fails to restart. ok djm@ markus@
274
275 Upstream-ID: 132dd6dda0c77dd49d2f15b2573b5794f6160870
276
277commit 85aa2efeba51a96bf6834f9accf2935d96150296
278Author: djm@openbsd.org <djm@openbsd.org>
279Date: Wed Nov 30 03:01:33 2016 +0000
280
281 upstream commit
282
283 test new behaviour of cert force-command restriction vs.
284 authorized_key/ principals
285
286 Upstream-Regress-ID: 399efa7469d40c404c0b0a295064ce75d495387c
287
288commit 5d333131cd8519d022389cfd3236280818dae1bc
289Author: jmc@openbsd.org <jmc@openbsd.org>
290Date: Wed Nov 30 06:54:26 2016 +0000
291
292 upstream commit
293
294 tweak previous; while here fix up FILES and AUTHORS;
295
296 Upstream-ID: 93f6e54086145a75df8d8ec7d8689bdadbbac8fa
297
298commit 786d5994da79151180cb14a6cf157ebbba61c0cc
299Author: djm@openbsd.org <djm@openbsd.org>
300Date: Wed Nov 30 03:07:37 2016 +0000
301
302 upstream commit
303
304 add a whitelist of paths from which ssh-agent will load
305 (via ssh-pkcs11-helper) a PKCS#11 module; ok markus@
306
307 Upstream-ID: fe79769469d9cd6d26fe0dc15751b83ef2a06e8f
308
309commit 7844f357cdd90530eec81340847783f1f1da010b
310Author: djm@openbsd.org <djm@openbsd.org>
311Date: Wed Nov 30 03:00:05 2016 +0000
312
313 upstream commit
314
315 Add a sshd_config DisableForwaring option that disables
316 X11, agent, TCP, tunnel and Unix domain socket forwarding, as well as
317 anything else we might implement in the future.
318
319 This, like the 'restrict' authorized_keys flag, is intended to be a
320 simple and future-proof way of restricting an account. Suggested as
321 a complement to 'restrict' by Jann Horn; ok markus@
322
323 Upstream-ID: 203803f66e533a474086b38a59ceb4cf2410fcf7
324
325commit fd6dcef2030d23c43f986d26979f84619c10589d
326Author: djm@openbsd.org <djm@openbsd.org>
327Date: Wed Nov 30 02:57:40 2016 +0000
328
329 upstream commit
330
331 When a forced-command appears in both a certificate and
332 an authorized keys/principals command= restriction, refuse to accept the
333 certificate unless they are identical.
334
335 The previous (documented) behaviour of having the certificate forced-
336 command override the other could be a bit confused and more error-prone.
337
338 Pointed out by Jann Horn of Project Zero; ok dtucker@
339
340 Upstream-ID: 79d811b6eb6bbe1221bf146dde6928f92d2cd05f
341
342commit 7fc4766ac78abae81ee75b22b7550720bfa28a33
343Author: dtucker@openbsd.org <dtucker@openbsd.org>
344Date: Wed Nov 30 00:28:31 2016 +0000
345
346 upstream commit
347
348 On startup, check to see if sshd is already daemonized
349 and if so, skip the call to daemon() and do not rewrite the PidFile. This
350 means that when sshd re-execs itself on SIGHUP the process ID will no longer
351 change. Should address bz#2641. ok djm@ markus@.
352
353 Upstream-ID: 5ea0355580056fb3b25c1fd6364307d9638a37b9
354
355commit c9f880c195c65f1dddcbc4ce9d6bfea7747debcc
356Author: Damien Miller <djm@mindrot.org>
357Date: Wed Nov 30 13:51:49 2016 +1100
358
359 factor out common PRNG reseed before privdrop
360
361 Add a call to RAND_poll() to ensure than more than pid+time gets
362 stirred into child processes states. Prompted by analysis from Jann
363 Horn at Project Zero. ok dtucker@
364
365commit 79e4829ec81dead1b30999e1626eca589319a47f
366Author: dtucker@openbsd.org <dtucker@openbsd.org>
367Date: Fri Nov 25 03:02:01 2016 +0000
368
369 upstream commit
370
371 Allow PuTTY interop tests to run unattended. bz#2639,
372 patch from cjwatson at debian.org.
373
374 Upstream-Regress-ID: 4345253558ac23b2082aebabccd48377433b6fe0
375
376commit 504c3a9a1bf090f6b27260fc3e8ea7d984d163dc
377Author: dtucker@openbsd.org <dtucker@openbsd.org>
378Date: Fri Nov 25 02:56:49 2016 +0000
379
380 upstream commit
381
382 Reverse args to sshd-log-wrapper. Matches change in
383 portable, where it allows sshd do be optionally run under Valgrind.
384
385 Upstream-Regress-ID: b438d1c6726dc5caa2a45153e6103a0393faa906
386
387commit bd13017736ec2f8f9ca498fe109fb0035f322733
388Author: dtucker@openbsd.org <dtucker@openbsd.org>
389Date: Fri Nov 25 02:49:18 2016 +0000
390
391 upstream commit
392
393 Fix typo in trace message; from portable.
394
395 Upstream-Regress-ID: 4c4a2ba0d37faf5fd230a91b4c7edb5699fbd73a
396
397commit 7da751d8b007c7f3e814fd5737c2351440d78b4c
398Author: tb@openbsd.org <tb@openbsd.org>
399Date: Tue Nov 1 13:43:27 2016 +0000
400
401 upstream commit
402
403 Clean up MALLOC_OPTIONS. For the unittests, move
404 MALLOC_OPTIONS and TEST_ENV to unittets/Makefile.inc.
405
406 ok otto
407
408 Upstream-Regress-ID: 890d497e0a38eeddfebb11cc429098d76cf29f12
409
410commit 36f58e68221bced35e06d1cca8d97c48807a8b71
411Author: tb@openbsd.org <tb@openbsd.org>
412Date: Mon Oct 31 23:45:08 2016 +0000
413
414 upstream commit
415
416 Remove the obsolete A and P flags from MALLOC_OPTIONS.
417
418 ok dtucker
419
420 Upstream-Regress-ID: 6cc25024c8174a87e5734a0dc830194be216dd59
421
422commit b0899ee26a6630883c0f2350098b6a35e647f512
423Author: dtucker@openbsd.org <dtucker@openbsd.org>
424Date: Tue Nov 29 03:54:50 2016 +0000
425
426 upstream commit
427
428 Factor out code to disconnect from controlling terminal
429 into its own function. ok djm@
430
431 Upstream-ID: 39fd9e8ebd7222615a837312face5cc7ae962885
432
433commit 54d022026aae4f53fa74cc636e4a032d9689b64d
434Author: djm@openbsd.org <djm@openbsd.org>
435Date: Fri Nov 25 23:24:45 2016 +0000
436
437 upstream commit
438
439 use sshbuf_allocate() to pre-allocate the buffer used for
440 loading keys. This avoids implicit realloc inside the buffer code, which
441 might theoretically leave fragments of the key on the heap. This doesn't
442 appear to happen in practice for normal sized keys, but was observed for
443 novelty oversize ones.
444
445 Pointed out by Jann Horn of Project Zero; ok markus@
446
447 Upstream-ID: d620e1d46a29fdea56aeadeda120879eddc60ab1
448
449commit a9c746088787549bb5b1ae3add7d06a1b6d93d5e
450Author: djm@openbsd.org <djm@openbsd.org>
451Date: Fri Nov 25 23:22:04 2016 +0000
452
453 upstream commit
454
455 split allocation out of sshbuf_reserve() into a separate
456 sshbuf_allocate() function; ok markus@
457
458 Upstream-ID: 11b8a2795afeeb1418d508a2c8095b3355577ec2
459
460commit f0ddedee460486fa0e32fefb2950548009e5026e
461Author: markus@openbsd.org <markus@openbsd.org>
462Date: Wed Nov 23 23:14:15 2016 +0000
463
464 upstream commit
465
466 allow ClientAlive{Interval,CountMax} in Match; ok dtucker,
467 djm
468
469 Upstream-ID: 8beb4c1eadd588f1080b58932281983864979f55
470
471commit 1a6f9d2e2493d445cd9ee496e6e3c2a2f283f66a
472Author: djm@openbsd.org <djm@openbsd.org>
473Date: Tue Nov 8 22:04:34 2016 +0000
474
475 upstream commit
476
477 unbreak DenyUsers; reported by henning@
478
479 Upstream-ID: 1c67d4148f5e953c35acdb62e7c08ae8e33f7cb2
480
481commit 010359b32659f455fddd2bd85fd7cc4d7a3b994a
482Author: djm@openbsd.org <djm@openbsd.org>
483Date: Sun Nov 6 05:46:37 2016 +0000
484
485 upstream commit
486
487 Validate address ranges for AllowUser/DenyUsers at
488 configuration load time and refuse to accept bad ones. It was previously
489 possible to specify invalid CIDR address ranges (e.g. djm@127.1.2.3/55) and
490 these would always match.
491
492 Thanks to Laurence Parry for a detailed bug report. ok markus (for
493 a previous diff version)
494
495 Upstream-ID: 9dfcdd9672b06e65233ea4434c38226680d40bfb
496
497commit efb494e81d1317209256b38b49f4280897c61e69
498Author: djm@openbsd.org <djm@openbsd.org>
499Date: Fri Oct 28 03:33:52 2016 +0000
500
501 upstream commit
502
503 Improve pkcs11_add_provider() logging: demote some
504 excessively verbose error()s to debug()s, include PKCS#11 provider name and
505 slot in log messages where possible. bz#2610, based on patch from Jakub Jelen
506
507 Upstream-ID: 3223ef693cfcbff9079edfc7e89f55bf63e1973d
508
509commit 5ee3fb5affd7646f141749483205ade5fc54adaf
510Author: Darren Tucker <dtucker@zip.com.au>
511Date: Tue Nov 1 08:12:33 2016 +1100
512
513 Use ptrace(PT_DENY_ATTACH, ..) on OS X.
514
515commit 315d2a4e674d0b7115574645cb51f968420ebb34
516Author: Damien Miller <djm@mindrot.org>
517Date: Fri Oct 28 14:34:07 2016 +1100
518
519 Unbreak AES-CTR ciphers on old (~0.9.8) OpenSSL
520
521 ok dtucker@
522
523commit a9ff3950b8e80ff971b4d44bbce96df27aed28af
524Author: Darren Tucker <dtucker@zip.com.au>
525Date: Fri Oct 28 14:26:58 2016 +1100
526
527 Move OPENSSL_NO_RIPEMD160 to compat.
528
529 Move OPENSSL_NO_RIPEMD160 to compat and add ifdefs to mac.c around the
530 ripemd160 MACs.
531
532commit bce58885160e5db2adda3054c3b81fe770f7285a
533Author: Darren Tucker <dtucker@zip.com.au>
534Date: Fri Oct 28 13:52:31 2016 +1100
535
536 Check if RIPEMD160 is disabled in OpenSSL.
537
538commit d924640d4c355d1b5eca1f4cc60146a9975dbbff
539Author: Darren Tucker <dtucker@zip.com.au>
540Date: Fri Oct 28 13:38:19 2016 +1100
541
542 Skip ssh1 specfic ciphers.
543
544 cipher-3des1.c and cipher-bf1.c are specific to sshv1 so don't even try
545 to compile them when Protocol 1 is not enabled.
546
547commit 79d078e7a49caef746516d9710ec369ba45feab6
548Author: jsg@openbsd.org <jsg@openbsd.org>
549Date: Tue Oct 25 04:08:13 2016 +0000
550
551 upstream commit
552
553 Fix logic in add_local_forward() that inverted a test
554 when code was refactored out into bind_permitted(). This broke ssh port
555 forwarding for non-priv ports as a non root user.
556
557 ok dtucker@ 'looks good' deraadt@
558
559 Upstream-ID: ddb8156ca03cc99997de284ce7777536ff9570c9
560
561commit a903e315dee483e555c8a3a02c2946937f9b4e5d
562Author: dtucker@openbsd.org <dtucker@openbsd.org>
563Date: Mon Oct 24 01:09:17 2016 +0000
564
565 upstream commit
566
567 Remove dead breaks, found via opencoverage.net. ok
568 deraadt@
569
570 Upstream-ID: ad9cc655829d67fad219762810770787ba913069
571
572commit b4e96b4c9bea4182846e4942ba2048e6d708ee54
573Author: Darren Tucker <dtucker@zip.com.au>
574Date: Wed Oct 26 08:43:25 2016 +1100
575
576 Use !=NULL instead of >0 for getdefaultproj.
577
578 getdefaultproj() returns a pointer so test it for NULL inequality
579 instead of >0. Fixes compiler warning and is more correct. Patch from
580 David Binderman.
581
582commit 1c4ef0b808d3d38232aeeb1cebb7e9a43def42c5
583Author: dtucker@openbsd.org <dtucker@openbsd.org>
584Date: Sun Oct 23 22:04:05 2016 +0000
585
586 upstream commit
587
588 Factor out "can bind to low ports" check into its own function. This will
589 make it easier for Portable to support platforms with permissions models
590 other than uid==0 (eg bz#2625). ok djm@, "doesn't offend me too much"
591 deraadt@.
592
593 Upstream-ID: 86213df4183e92b8f189a6d2dac858c994bfface
594
595commit 0b9ee623d57e5de7e83e66fd61a7ba9a5be98894
596Author: dtucker@openbsd.org <dtucker@openbsd.org>
597Date: Wed Oct 19 23:21:56 2016 +0000
598
599 upstream commit
600
601 When tearing down ControlMaster connecctions, don't
602 pollute stderr when LogLevel=quiet. Patch from Tim Kuijsten via tech@.
603
604 Upstream-ID: d9b3a68b2a7c2f2fc7f74678e29a4618d55ceced
605
606commit 09e6a7d8354224933febc08ddcbc2010f542284e
607Author: Darren Tucker <dtucker@zip.com.au>
608Date: Mon Oct 24 09:06:18 2016 +1100
609
610 Wrap stdint.h include in ifdef.
611
612commit 08d9e9516e587b25127545c029e5464b2e7f2919
613Author: Darren Tucker <dtucker@zip.com.au>
614Date: Fri Oct 21 09:46:46 2016 +1100
615
616 Fix formatting.
617
618commit 461f50e7ab8751d3a55e9158c44c13031db7ba1d
619Author: Darren Tucker <dtucker@zip.com.au>
620Date: Fri Oct 21 06:55:58 2016 +1100
621
622 Update links to https.
623
624 www.openssh.com now supports https and ftp.openbsd.org no longer
625 supports ftp. Make all links to these https.
626
627commit dd4e7212a6141f37742de97795e79db51e4427ad
628Author: Darren Tucker <dtucker@zip.com.au>
629Date: Fri Oct 21 06:48:46 2016 +1100
630
631 Update host key generation examples.
632
633 Remove ssh1 host key generation, add ssh-keygen -A
634
635commit 6d49ae82634c67e9a4d4af882bee20b40bb8c639
636Author: Darren Tucker <dtucker@zip.com.au>
637Date: Fri Oct 21 05:22:55 2016 +1100
638
639 Update links.
640
641 Make links to openssh.com HTTPS now that it's supported, point release
642 notes link to the HTML release notes page, and update a couple of other
643 links and bits of text.
644
645commit fe0d1ca6ace06376625084b004ee533f2c2ea9d6
646Author: Darren Tucker <dtucker@zip.com.au>
647Date: Thu Oct 20 03:42:09 2016 +1100
648
649 Remote channels .orig and .rej files.
650
651 These files were incorrectly added during an OpenBSD sync.
652
653commit 246aa842a4ad368d8ce030495e657ef3a0e1f95c
654Author: dtucker@openbsd.org <dtucker@openbsd.org>
655Date: Tue Oct 18 17:32:54 2016 +0000
656
657 upstream commit
658
659 Remove channel_input_port_forward_request(); the only caller
660 was the recently-removed SSH1 server code so it's now dead code. ok markus@
661
662 Upstream-ID: 05453983230a1f439562535fec2818f63f297af9
663
664commit 2c6697c443d2c9c908260eed73eb9143223e3ec9
665Author: millert@openbsd.org <millert@openbsd.org>
666Date: Tue Oct 18 12:41:22 2016 +0000
667
668 upstream commit
669
670 Install a signal handler for tty-generated signals and
671 wait for the ssh child to suspend before suspending sftp. This lets ssh
672 restore the terminal mode as needed when it is suspended at the password
673 prompt. OK dtucker@
674
675 Upstream-ID: a31c1f42aa3e2985dcc91e46e6a17bd22e372d69
676
677commit fd2a8f1033fa2316fff719fd5176968277560158
678Author: jmc@openbsd.org <jmc@openbsd.org>
679Date: Sat Oct 15 19:56:25 2016 +0000
680
681 upstream commit
682
683 various formatting fixes, specifically removing Dq;
684
685 Upstream-ID: 81e85df2b8e474f5f93d66e61d9a4419ce87347c
686
687commit 8f866d8a57b9a2dc5dd04504e27f593b551618e3
688Author: Darren Tucker <dtucker@zip.com.au>
689Date: Wed Oct 19 03:26:09 2016 +1100
690
691 Import readpassphrase.c rev 1.26.
692
693 Author: miller@openbsd.org:
694 Avoid generate SIGTTOU when restoring the terminal mode. If we get
695 SIGTTOU it means the process is not in the foreground process group
696 which, in most cases, means that the shell has taken control of the tty.
697 Requiring the user the fg the process in this case doesn't make sense
698 and can result in both SIGTSTP and SIGTTOU being sent which can lead to
699 the process being suspended again immediately after being brought into
700 the foreground.
701
702commit f901440cc844062c9bab0183d133f7ccc58ac3a5
703Author: Darren Tucker <dtucker@zip.com.au>
704Date: Wed Oct 19 03:23:16 2016 +1100
705
706 Import readpassphrase.c rev 1.25.
707
708 Wrap <readpassphrase.h> so internal calls go direct and
709 readpassphrase is weak.
710
711 (DEF_WEAK is a no-op in portable.)
712
713commit 032147b69527e5448a511049b2d43dbcae582624
714Author: Darren Tucker <dtucker@zip.com.au>
715Date: Sat Oct 15 05:51:12 2016 +1100
716
717 Move DEF_WEAK into defines.h.
718
719 As well pull in more recent changes from OpenBSD these will start to
720 arrive so put it where the definition is shared.
721
722commit e0259a82ddd950cfb109ddee86fcebbc09c6bd04
723Author: Darren Tucker <dtucker@zip.com.au>
724Date: Sat Oct 15 04:34:46 2016 +1100
725
726 Remove do_pam_set_tty which is dead code.
727
728 The callers of do_pam_set_tty were removed in 2008, so this is now dead
729 code. bz#2604, pointed out by jjelen at redhat.com.
730
731commit ca04de83f210959ad2ed870a30ba1732c3ae00e3
732Author: Damien Miller <djm@mindrot.org>
733Date: Thu Oct 13 18:53:43 2016 +1100
734
735 unbreak principals-command test
736
737 Undo inconsistetly updated variable name.
738
739commit 1723ec92eb485ce06b4cbf49712d21975d873909
740Author: djm@openbsd.org <djm@openbsd.org>
741Date: Tue Oct 11 21:49:54 2016 +0000
742
743 upstream commit
744
745 fix the KEX fuzzer - the previous method of obtaining the
746 packet contents was broken. This now uses the new per-packet input hook, so
747 it sees exact post-decrypt packets and doesn't have to pass packet integrity
748 checks. ok markus@
749
750 Upstream-Regress-ID: 402fb6ffabd97de590e8e57b25788949dce8d2fd
751
752commit 09f997893f109799cddbfce6d7e67f787045cbb2
753Author: natano@openbsd.org <natano@openbsd.org>
754Date: Thu Oct 6 09:31:38 2016 +0000
755
756 upstream commit
757
758 Move USER out of the way to unbreak the BUILDUSER
759 mechanism. ok tb
760
761 Upstream-Regress-ID: 74ab9687417dd071d62316eaadd20ddad1d5af3c
762
763commit 3049a012c482a7016f674db168f23fd524edce27
764Author: bluhm@openbsd.org <bluhm@openbsd.org>
765Date: Fri Sep 30 11:55:20 2016 +0000
766
767 upstream commit
768
769 In ssh tests set REGRESS_FAIL_EARLY with ?= so that the
770 environment can change it. OK djm@
771
772 Upstream-Regress-ID: 77bcb50e47b68c7209c7f0a5a020d73761e5143b
773
774commit 39af7b444db28c1cb01b7ea468a4f574a44f375b
775Author: djm@openbsd.org <djm@openbsd.org>
776Date: Tue Oct 11 21:47:45 2016 +0000
777
778 upstream commit
779
780 Add a per-packet input hook that is called with the
781 decrypted packet contents. This will be used for fuzzing; ok markus@
782
783 Upstream-ID: a3221cee6b1725dd4ae1dd2c13841b4784cb75dc
784
785commit ec165c392ca54317dbe3064a8c200de6531e89ad
786Author: markus@openbsd.org <markus@openbsd.org>
787Date: Mon Oct 10 19:28:48 2016 +0000
788
789 upstream commit
790
791 Unregister the KEXINIT handler after message has been
792 received. Otherwise an unauthenticated peer can repeat the KEXINIT and cause
793 allocation of up to 128MB -- until the connection is closed. Reported by
794 shilei-c at 360.cn
795
796 Upstream-ID: 43649ae12a27ef94290db16d1a98294588b75c05
797
798commit 29d40319392e6e19deeca9d45468aa1119846e50
799Author: Darren Tucker <dtucker@zip.com.au>
800Date: Thu Oct 13 04:07:20 2016 +1100
801
802 Import rev 1.24 from OpenBSD.
803
804 revision 1.24
805 date: 2013/11/24 23:51:29; author: deraadt; state: Exp; lines: +4 -4;
806 most obvious unsigned char casts for ctype
807 ok jca krw ingo
808
809commit 12069e56221de207ed666c2449dedb431a2a7ca2
810Author: Darren Tucker <dtucker@zip.com.au>
811Date: Thu Oct 13 04:04:44 2016 +1100
812
813 Import rev 1.23 from OpenBSD. Fixes bz#2619.
814
815 revision 1.23
816 date: 2010/05/14 13:30:34; author: millert; state: Exp; lines: +41 -39;
817 Defer installing signal handlers until echo is disabled so that we
818 get suspended normally when not the foreground process. Fix potential
819 infinite loop when restoring terminal settings if process is in the
820 background when restore occurs. OK miod@
821
822commit 7508d83eff89af069760b4cc587305588a64e415
823Author: Darren Tucker <dtucker@zip.com.au>
824Date: Thu Oct 13 03:53:51 2016 +1100
825
826 If we don't have TCSASOFT, define it to zero.
827
828 This makes it a no-op when we use it below, which allows us to re-sync
829 those lines with the upstream and make future updates easier.
830
831commit aae4dbd4c058d3b1fe1eb5c4e6ddf35827271377
832Author: jmc@openbsd.org <jmc@openbsd.org>
833Date: Fri Oct 7 14:41:52 2016 +0000
834
835 upstream commit
836
837 tidy up the formatting in this file. more specifically,
838 replace .Dq, which looks appalling, with .Cm, where appropriate;
839
840 Upstream-ID: ff8e90aa0343d9bb56f40a535e148607973cc738
841
842commit a571dbcc7b7b25371174569b13df5159bc4c6c7a
843Author: djm@openbsd.org <djm@openbsd.org>
844Date: Tue Oct 4 21:34:40 2016 +0000
845
846 upstream commit
847
848 add a comment about implicitly-expected checks to
849 sshkey_ec_validate_public()
850
851 Upstream-ID: 74a7f71c28f7c13a50f89fc78e7863b9cd61713f
852
853commit 2f78a2a698f4222f8e05cad57ac6e0c3d1faff00
854Author: djm@openbsd.org <djm@openbsd.org>
855Date: Fri Sep 30 20:24:46 2016 +0000
856
857 upstream commit
858
859 fix some -Wpointer-sign warnings in the new mux proxy; ok
860 markus@
861
862 Upstream-ID: b1ba7b3769fbc6b7f526792a215b0197f5e55dfd
863
864commit ca71c36645fc26fcd739a8cfdc702cec85607761
865Author: bluhm@openbsd.org <bluhm@openbsd.org>
866Date: Wed Sep 28 20:09:52 2016 +0000
867
868 upstream commit
869
870 Add a makefile rule to create the ssh library when
871 regress needs it. This allows to run the ssh regression tests without doing
872 a "make build" before. Discussed with dtucker@ and djm@; OK djm@
873
874 Upstream-Regress-ID: ce489bd53afcd471225a125b4b94565d4717c025
875
876commit ce44c970f913d2a047903dba8670554ac42fc479
877Author: bluhm@openbsd.org <bluhm@openbsd.org>
878Date: Mon Sep 26 21:34:38 2016 +0000
879
880 upstream commit
881
882 Allow to run ssh regression tests as root. If the user
883 is already root, the test should not expect that SUDO is set. If ssh needs
884 another user, use sudo or doas to switch from root if necessary. OK dtucker@
885
886 Upstream-Regress-ID: b464e55185ac4303529e3e6927db41683aaeace2
887
888commit 8d0578478586e283e751ca51e7b0690631da139a
889Author: markus@openbsd.org <markus@openbsd.org>
890Date: Fri Sep 30 09:19:13 2016 +0000
891
892 upstream commit
893
894 ssh proxy mux mode (-O proxy; idea from Simon Tatham): - mux
895 client speaks the ssh-packet protocol directly over unix-domain socket. - mux
896 server acts as a proxy, translates channel IDs and relays to the server. - no
897 filedescriptor passing necessary. - combined with unix-domain forwarding it's
898 even possible to run mux client and server on different machines. feedback
899 & ok djm@
900
901 Upstream-ID: 666a2fb79f58e5c50e246265fb2b9251e505c25b
902
903commit b7689155f3f5c4999846c07a852b1c7a43b09cec
904Author: djm@openbsd.org <djm@openbsd.org>
905Date: Wed Sep 28 21:44:52 2016 +0000
906
907 upstream commit
908
909 put back some pre-auth zlib bits that I shouldn't have
910 removed - they are still used by the client. Spotted by naddy@
911
912 Upstream-ID: 80919468056031037d56a1f5b261c164a6f90dc2
913
914commit 4577adead6a7d600c8e764619d99477a08192c8f
915Author: djm@openbsd.org <djm@openbsd.org>
916Date: Wed Sep 28 20:32:42 2016 +0000
917
918 upstream commit
919
920 restore pre-auth compression support in the client -- the
921 previous commit was intended to remove it from the server only.
922
923 remove a few server-side pre-auth compression bits that escaped
924
925 adjust wording of Compression directive in sshd_config(5)
926
927 pointed out by naddy@ ok markus@
928
929 Upstream-ID: d23696ed72a228dacd4839dd9f2dec424ba2016b
930
931commit 80d1c963b4dc84ffd11d09617b39c4bffda08956
932Author: jmc@openbsd.org <jmc@openbsd.org>
933Date: Wed Sep 28 17:59:22 2016 +0000
934
935 upstream commit
936
937 use a separate TOKENS section, as we've done for
938 sshd_config(5); help/ok djm
939
940 Upstream-ID: 640e32b5e4838e4363738cdec955084b3579481d
941
942commit 1cfd5c06efb121e58e8b6671548fda77ef4b4455
943Author: Damien Miller <djm@mindrot.org>
944Date: Thu Sep 29 03:19:23 2016 +1000
945
946 Remove portability support for mmap
947
948 We no longer need to wrap/replace mmap for portability now that
949 pre-auth compression has been removed from OpenSSH.
950
951commit 0082fba4efdd492f765ed4c53f0d0fbd3bdbdf7f
952Author: djm@openbsd.org <djm@openbsd.org>
953Date: Wed Sep 28 16:33:06 2016 +0000
954
955 upstream commit
956
957 Remove support for pre-authentication compression. Doing
958 compression early in the protocol probably seemed reasonable in the 1990s,
959 but today it's clearly a bad idea in terms of both cryptography (cf. multiple
960 compression oracle attacks in TLS) and attack surface.
961
962 Moreover, to support it across privilege-separation zlib needed
963 the assistance of a complex shared-memory manager that made the
964 required attack surface considerably larger.
965
966 Prompted by Guido Vranken pointing out a compiler-elided security
967 check in the shared memory manager found by Stack
968 (http://css.csail.mit.edu/stack/); ok deraadt@ markus@
969
970 NB. pre-auth authentication has been disabled by default in sshd
971 for >10 years.
972
973 Upstream-ID: 32af9771788d45a0779693b41d06ec199d849caf
974
975commit 27c3a9c2aede2184856b5de1e6eca414bb751c38
976Author: djm@openbsd.org <djm@openbsd.org>
977Date: Mon Sep 26 21:16:11 2016 +0000
978
979 upstream commit
980
981 Avoid a theoretical signed integer overflow should
982 BN_num_bytes() ever violate its manpage and return a negative value. Improve
983 order of tests to avoid confusing increasingly pedantic compilers.
984
985 Reported by Guido Vranken from stack (css.csail.mit.edu/stack)
986 unstable optimisation analyser output. ok deraadt@
987
988 Upstream-ID: f8508c830c86d8f36c113985e52bf8eedae23505
989
990commit 8663e51c80c6aa3d750c6d3bcff6ee05091922be
991Author: Damien Miller <djm@mindrot.org>
992Date: Wed Sep 28 07:40:33 2016 +1000
993
994 fix mdoc2man.awk formatting for top-level lists
995
996 Reported by Glenn Golden
997 Diagnosis and fix from Ingo Schwarze
998
999commit b97739dc21570209ed9d4e7beee0c669ed23b097
1000Author: djm@openbsd.org <djm@openbsd.org>
1001Date: Thu Sep 22 21:15:41 2016 +0000
1002
1003 upstream commit
1004
1005 missing bit from previous commit
1006
1007 Upstream-ID: 438d5ed6338b28b46e822eb13eee448aca31df37
1008
1009commit de6a175a99d22444e10d19ad3fffef39bc3ee3bb
1010Author: jmc@openbsd.org <jmc@openbsd.org>
1011Date: Thu Sep 22 19:19:01 2016 +0000
1012
1013 upstream commit
1014
1015 organise the token stuff into a separate section; ok
1016 markus for an earlier version of the diff ok/tweaks djm
1017
1018 Upstream-ID: 81a6daa506a4a5af985fce7cf9e59699156527c8
1019
1020commit 16277fc45ffc95e4ffc3d45971ff8320b974de2b
1021Author: djm@openbsd.org <djm@openbsd.org>
1022Date: Thu Sep 22 17:55:13 2016 +0000
1023
1024 upstream commit
1025
1026 mention curve25519-sha256 KEX
1027
1028 Upstream-ID: 33ae1f433ce4795ffa6203761fbdf86e0d7ffbaf
1029
1030commit 0493766d5676c7ca358824ea8d3c90f6047953df
1031Author: djm@openbsd.org <djm@openbsd.org>
1032Date: Thu Sep 22 17:52:53 2016 +0000
1033
1034 upstream commit
1035
1036 support plain curve25519-sha256 KEX algorithm now that it
1037 is approaching standardisation (same algorithm is currently supported as
1038 curve25519-sha256@libssh.org)
1039
1040 Upstream-ID: 5e2b6db2e72667048cf426da43c0ee3fc777baa2
1041
1042commit f31c654b30a6f02ce0b8ea8ab81791b675489628
1043Author: dtucker@openbsd.org <dtucker@openbsd.org>
1044Date: Thu Sep 22 02:29:57 2016 +0000
1045
1046 upstream commit
1047
1048 If ssh receives a PACKET_DISCONNECT during userauth it
1049 will cause ssh_dispatch_run(DISPATCH_BLOCK, ...) to return without the
1050 session being authenticated. Check for this and exit if necessary. ok djm@
1051
1052 Upstream-ID: b3afe126c0839d2eae6cddd41ff2ba317eda0903
1053
1054commit 1622649b7a829fc8dc313042a43a974f0f3e8a99
1055Author: djm@openbsd.org <djm@openbsd.org>
1056Date: Wed Sep 21 19:53:12 2016 +0000
1057
1058 upstream commit
1059
1060 correctly return errors from kex_send_ext_info(). Fix from
1061 Sami Farin via https://github.com/openssh/openssh-portable/pull/50
1062
1063 Upstream-ID: c85999af28aaecbf92cfa2283381df81e839b42c
1064
1065commit f83a0cfe16c7a73627b46a9a94e40087d60f32fb
1066Author: djm@openbsd.org <djm@openbsd.org>
1067Date: Wed Sep 21 17:44:20 2016 +0000
1068
1069 upstream commit
1070
1071 cast uint64_t for printf
1072
1073 Upstream-ID: 76d23e89419ccbd2320f92792a6d878211666ac1
1074
1075commit 5f63ab474f58834feca4f35c498be03b7dd38a16
1076Author: djm@openbsd.org <djm@openbsd.org>
1077Date: Wed Sep 21 17:03:54 2016 +0000
1078
1079 upstream commit
1080
1081 disable tests for affirmative negated match after backout of
1082 match change
1083
1084 Upstream-Regress-ID: acebb8e5042f03d66d86a50405c46c4de0badcfd
1085
1086commit a5ad3a9db5a48f350f257a67b62fafd719ecb7e0
1087Author: djm@openbsd.org <djm@openbsd.org>
1088Date: Wed Sep 21 16:55:42 2016 +0000
1089
1090 upstream commit
1091
1092 Revert two recent changes to negated address matching. The
1093 new behaviour offers unintuitive surprises. We'll find a better way to deal
1094 with single negated matches.
1095
1096 match.c 1.31:
1097 > fix matching for pattern lists that contain a single negated match,
1098 > e.g. "Host !example"
1099 >
1100 > report and patch from Robin Becker. bz#1918 ok dtucker@
1101
1102 addrmatch.c 1.11:
1103 > fix negated address matching where the address list consists of a
1104 > single negated match, e.g. "Match addr !192.20.0.1"
1105 >
1106 > Report and patch from Jakub Jelen. bz#2397 ok dtucker@
1107
1108 Upstream-ID: ec96c770f0f5b9a54e5e72fda25387545e9c80c6
1109
1110commit 119b7a2ca0ef2bf3f81897ae10301b8ca8cba844
1111Author: djm@openbsd.org <djm@openbsd.org>
1112Date: Wed Sep 21 01:35:12 2016 +0000
1113
1114 upstream commit
1115
1116 test all the AuthorizedPrincipalsCommand % expansions
1117
1118 Upstream-Regress-ID: 0a79a84dfaa59f958e46b474c3db780b454d30e3
1119
1120commit bfa9d969ab6235d4938ce069d4db7e5825c56a19
1121Author: djm@openbsd.org <djm@openbsd.org>
1122Date: Wed Sep 21 01:34:45 2016 +0000
1123
1124 upstream commit
1125
1126 add a way for principals command to get see key ID and serial
1127 too
1128
1129 Upstream-ID: 0d30978bdcf7e8eaeee4eea1b030eb2eb1823fcb
1130
1131commit 920585b826af1c639e4ed78b2eba01fd2337b127
1132Author: djm@openbsd.org <djm@openbsd.org>
1133Date: Fri Sep 16 06:09:31 2016 +0000
1134
1135 upstream commit
1136
1137 add a note on kexfuzz' limitations
1138
1139 Upstream-Regress-ID: 03804d4a0dbc5163e1a285a4c8cc0a76a4e864ec
1140
1141commit 0445ff184080b196e12321998b4ce80b0f33f8d1
1142Author: djm@openbsd.org <djm@openbsd.org>
1143Date: Fri Sep 16 01:01:41 2016 +0000
1144
1145 upstream commit
1146
1147 fix for newer modp DH groups
1148 (diffie-hellman-group14-sha256 etc)
1149
1150 Upstream-Regress-ID: fe942c669959462b507516ae1634fde0725f1c68
1151
1152commit 28652bca29046f62c7045e933e6b931de1d16737
1153Author: markus@openbsd.org <markus@openbsd.org>
1154Date: Mon Sep 19 19:02:19 2016 +0000
1155
1156 upstream commit
1157
1158 move inbound NEWKEYS handling to kex layer; otherwise
1159 early NEWKEYS causes NULL deref; found by Robert Swiecki/honggfuzz; fixed
1160 with & ok djm@
1161
1162 Upstream-ID: 9a68b882892e9f51dc7bfa9f5a423858af358b2f
1163
1164commit 492710894acfcc2f173d14d1d45bd2e688df605d
1165Author: natano@openbsd.org <natano@openbsd.org>
1166Date: Mon Sep 19 07:52:42 2016 +0000
1167
1168 upstream commit
1169
1170 Replace two more arc4random() loops with
1171 arc4random_buf().
1172
1173 tweaks and ok dtucker
1174 ok deraadt
1175
1176 Upstream-ID: 738d3229130ccc7eac975c190276ca6fcf0208e4
1177
1178commit 1036356324fecc13099ac6e986b549f6219327d7
1179Author: tedu@openbsd.org <tedu@openbsd.org>
1180Date: Sat Sep 17 18:00:27 2016 +0000
1181
1182 upstream commit
1183
1184 replace two arc4random loops with arc4random_buf ok
1185 deraadt natano
1186
1187 Upstream-ID: e18ede972d1737df54b49f011fa4f3917a403f48
1188
1189commit 00df97ff68a49a756d4b977cd02283690f5dfa34
1190Author: djm@openbsd.org <djm@openbsd.org>
1191Date: Wed Sep 14 20:11:26 2016 +0000
1192
1193 upstream commit
1194
1195 take fingerprint of correct key for
1196 AuthorizedPrincipalsCommand
1197
1198 Upstream-ID: 553581a549cd6a3e73ce9f57559a325cc2cb1f38
1199
1200commit e7907c1cb938b96dd33d27c2fea72c4e08c6b2f6
1201Author: djm@openbsd.org <djm@openbsd.org>
1202Date: Wed Sep 14 05:42:25 2016 +0000
1203
1204 upstream commit
1205
1206 add %-escapes to AuthorizedPrincipalsCommand to match those
1207 supported for AuthorizedKeysCommand (key, key type, fingerprint, etc) and a
1208 few more to provide access to the certificate's CA key; 'looks ok' dtucker@
1209
1210 Upstream-ID: 6b00fd446dbebe67f4e4e146d2e492d650ae04eb
1211
1212commit 2b939c272a81c4d0c47badeedbcb2ba7c128ccda
1213Author: dtucker@openbsd.org <dtucker@openbsd.org>
1214Date: Wed Sep 14 00:45:31 2016 +0000
1215
1216 upstream commit
1217
1218 Improve test coverage of ssh-keygen -T a bit.
1219
1220 Upstream-Regress-ID: 8851668c721bcc2b400600cfc5a87644cc024e72
1221
1222commit 44d82fc83be6c5ccd70881c2dac1a73e5050398b
1223Author: dtucker@openbsd.org <dtucker@openbsd.org>
1224Date: Mon Sep 12 02:25:46 2016 +0000
1225
1226 upstream commit
1227
1228 Add testcase for ssh-keygen -j, -J and -K options for
1229 moduli screening. Does not currently test generation as that is extremely
1230 slow.
1231
1232 Upstream-Regress-ID: 9de6ce801377ed3ce0a63a1413f1cd5fd3c2d062
1233
1234commit 44e5f756d286bc3a1a5272ea484ee276ba3ac5c2
1235Author: djm@openbsd.org <djm@openbsd.org>
1236Date: Tue Aug 23 08:17:04 2016 +0000
1237
1238 upstream commit
1239
1240 add tests for addr_match_list()
1241
1242 Upstream-Regress-ID: fae2d1fef84687ece584738a924c7bf969616c8e
1243
1244commit 445e218878035b59c704c18406e8aeaff4c8aa25
1245Author: djm@openbsd.org <djm@openbsd.org>
1246Date: Mon Sep 12 23:39:34 2016 +0000
1247
1248 upstream commit
1249
1250 handle certs in rsa_hash_alg_from_ident(), saving an
1251 unnecessary special case elsewhere.
1252
1253 Upstream-ID: 901cb081c59d6d2698b57901c427f3f6dc7397d4
1254
1255commit 130f5df4fa37cace8c079dccb690e5cafbf00751
1256Author: djm@openbsd.org <djm@openbsd.org>
1257Date: Mon Sep 12 23:31:27 2016 +0000
1258
1259 upstream commit
1260
1261 list all supported signature algorithms in the
1262 server-sig-algs Reported by mb AT smartftp.com in bz#2547 and (independantly)
1263 Ron Frederick; ok markus@
1264
1265 Upstream-ID: ddf702d721f54646b11ef2cee6d916666cb685cd
1266
1267commit 8f750ccfc07acb8aa98be5a5dd935033a6468cfd
1268Author: Darren Tucker <dtucker@zip.com.au>
1269Date: Mon Sep 12 14:43:58 2016 +1000
1270
1271 Remove no-op brackets to resync with upstream.
1272
1273commit 7050896e7395866278c19c2ff080c26152619d1d
1274Author: Darren Tucker <dtucker@zip.com.au>
1275Date: Mon Sep 12 13:57:28 2016 +1000
1276
1277 Resync ssh-keygen -W error message with upstream.
1278
1279commit 43cceff82cc20413cce58ba3375e19684e62cec4
1280Author: Darren Tucker <dtucker@zip.com.au>
1281Date: Mon Sep 12 13:55:37 2016 +1000
1282
1283 Move ssh-keygen -W handling code to match upstream
1284
1285commit af48d541360b1d7737b35740a4b1ca34e1652cd9
1286Author: Darren Tucker <dtucker@zip.com.au>
1287Date: Mon Sep 12 13:52:17 2016 +1000
1288
1289 Move ssh-keygen -T handling code to match upstream.
1290
1291commit d8c3cfbb018825c6c86547165ddaf11924901c49
1292Author: Darren Tucker <dtucker@zip.com.au>
1293Date: Mon Sep 12 13:30:50 2016 +1000
1294
1295 Move -M handling code to match upstream.
1296
1297commit 7b63cf6dbbfa841c003de57d1061acbf2ff22364
1298Author: dtucker@openbsd.org <dtucker@openbsd.org>
1299Date: Mon Sep 12 03:29:16 2016 +0000
1300
1301 upstream commit
1302
1303 Spaces->tabs.
1304
1305 Upstream-ID: f4829dfc3f36318273f6082b379ac562eead70b7
1306
1307commit 11e5e644536821ceb3bb4dd8487fbf0588522887
1308Author: dtucker@openbsd.org <dtucker@openbsd.org>
1309Date: Mon Sep 12 03:25:20 2016 +0000
1310
1311 upstream commit
1312
1313 Style whitespace fix. Also happens to remove a no-op
1314 diff with portable.
1315
1316 Upstream-ID: 45d90f9a62ad56340913a433a9453eb30ceb8bf3
1317
1318commit 9136ec134c97a8aff2917760c03134f52945ff3c
1319Author: deraadt@openbsd.org <deraadt@openbsd.org>
1320Date: Mon Sep 12 01:22:38 2016 +0000
1321
1322 upstream commit
1323
1324 Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then
1325 use those definitions rather than pulling <sys/param.h> and unknown namespace
1326 pollution. ok djm markus dtucker
1327
1328 Upstream-ID: 712cafa816c9f012a61628b66b9fbd5687223fb8
1329
1330commit f219fc8f03caca7ac82a38ed74bbd6432a1195e7
1331Author: jmc@openbsd.org <jmc@openbsd.org>
1332Date: Wed Sep 7 18:39:24 2016 +0000
1333
1334 upstream commit
1335
1336 sort; from matthew martin
1337
1338 Upstream-ID: 73cec7f7ecc82d37a4adffad7745e4684de67ce7
1339
1340commit 06ce56b05def9460aecc7cdb40e861a346214793
1341Author: markus@openbsd.org <markus@openbsd.org>
1342Date: Tue Sep 6 09:22:56 2016 +0000
1343
1344 upstream commit
1345
1346 ssh_set_newkeys: print correct block counters on
1347 rekeying; ok djm@
1348
1349 Upstream-ID: 32bb7a9cb9919ff5bab28d50ecef3a2b2045dd1e
1350
1351commit e5e8d9114ac6837a038f4952994ca95a97fafe8d
1352Author: markus@openbsd.org <markus@openbsd.org>
1353Date: Tue Sep 6 09:14:05 2016 +0000
1354
1355 upstream commit
1356
1357 update ext_info_c every time we receive a kexinit msg;
1358 fixes sending of ext_info if privsep is disabled; report Aris Adamantiadis &
1359 Mancha; ok djm@
1360
1361 Upstream-ID: 2ceaa1076e19dbd3542254b4fb8e42d608f28856
1362
1363commit da95318dbedbaa1335323dba370975c2f251afd8
1364Author: djm@openbsd.org <djm@openbsd.org>
1365Date: Mon Sep 5 14:02:42 2016 +0000
1366
1367 upstream commit
1368
1369 remove 3des-cbc from the client's default proposal;
1370 64-bit block ciphers are not safe in 2016 and we don't want to wait until
1371 attacks like sweet32 are extended to SSH.
1372
1373 As 3des-cbc was the only mandatory cipher in the SSH RFCs, this may
1374 cause problems connecting to older devices using the defaults, but
1375 it's highly likely that such devices already need explicit
1376 configuration for KEX and hostkeys anyway.
1377
1378 ok deraadt, markus, dtucker
1379
1380 Upstream-ID: a505dfe65c6733af0f751b64cbc4bb7e0761bc2f
1381
1382commit b33ad6d997d36edfea65e243cd12ccd01f413549
1383Author: djm@openbsd.org <djm@openbsd.org>
1384Date: Mon Sep 5 13:57:31 2016 +0000
1385
1386 upstream commit
1387
1388 enforce expected request flow for GSSAPI calls; thanks to
1389 Jakub Jelen for testing; ok markus@
1390
1391 Upstream-ID: d4bc0e70e1be403735d3d9d7e176309b1fd626b9
1392
1393commit 0bb2980260fb24e5e0b51adac471395781b66261
1394Author: Darren Tucker <dtucker@zip.com.au>
1395Date: Mon Sep 12 11:07:00 2016 +1000
1396
1397 Restore ssh-keygen's -J and -j option handling.
1398
1399 These were incorrectly removed in the 1d9a2e28 sync commit.
1400
1401commit 775f8a23f2353f5869003c57a213d14b28e0736e
1402Author: Damien Miller <djm@mindrot.org>
1403Date: Wed Aug 31 10:48:07 2016 +1000
1404
1405 tighten PAM monitor calls
1406
1407 only allow kbd-interactive ones when that authentication method is
1408 enabled. Prompted by Solar Designer
1409
1410commit 7fd0ea8a1db4bcfb3d8cd9df149e5d571ebea1f4
1411Author: djm@openbsd.org <djm@openbsd.org>
1412Date: Tue Aug 30 07:50:21 2016 +0000
1413
1414 upstream commit
1415
1416 restrict monitor auth calls to be allowed only when their
1417 respective authentication methods are enabled in the configuration.
1418
1419 prompted by Solar Designer; ok markus dtucker
1420
1421 Upstream-ID: 6eb3f89332b3546d41d6dbf5a8e6ff920142b553
1422
1423commit b38b95f5bcc52278feb839afda2987933f68ff96
1424Author: Damien Miller <djm@mindrot.org>
1425Date: Mon Aug 29 11:47:07 2016 +1000
1426
1427 Tighten monitor state-machine flow for PAM calls
1428
1429 (attack surface reduction)
1430
1431commit dc664d1bd0fc91b24406a3e9575b81c285b8342b
1432Author: djm@openbsd.org <djm@openbsd.org>
1433Date: Sun Aug 28 22:28:12 2016 +0000
1434
1435 upstream commit
1436
1437 fix uninitialised optlen in getsockopt() call; harmless
1438 on Unix/BSD but potentially crashy on Cygwin. Reported by James Slepicka ok
1439 deraadt@
1440
1441 Upstream-ID: 1987ccee508ba5b18f016c85100d7ac3f70ff965
1442
1443commit 5bcc1e2769f7d6927d41daf0719a9446ceab8dd7
1444Author: guenther@openbsd.org <guenther@openbsd.org>
1445Date: Sat Aug 27 04:05:12 2016 +0000
1446
1447 upstream commit
1448
1449 Pull in <sys/time.h> for struct timeval
1450
1451 ok deraadt@
1452
1453 Upstream-ID: ae34525485a173bccd61ac8eefeb91c57e3b7df6
1454
1455commit fa4a4c96b19127dc2fd4e92f20d99c0c7f34b538
1456Author: guenther@openbsd.org <guenther@openbsd.org>
1457Date: Sat Aug 27 04:04:56 2016 +0000
1458
1459 upstream commit
1460
1461 Pull in <stdlib.h> for NULL
1462
1463 ok deraadt@
1464
1465 Upstream-ID: 7baa6a0f1e049bb3682522b4b95a26c866bfc043
1466
1467commit ae363d74ccc1451185c0c8bd4631e28c67c7fd36
1468Author: djm@openbsd.org <djm@openbsd.org>
1469Date: Thu Aug 25 23:57:54 2016 +0000
1470
1471 upstream commit
1472
1473 add a sIgnore opcode that silently ignores options and
1474 use it to suppress noisy deprecation warnings for the Protocol directive.
1475
1476 req henning, ok markus
1477
1478 Upstream-ID: 9fe040aca3d6ff393f6f7e60045cdd821dc4cbe0
1479
1480commit a94c60306643ae904add6e8ed219e4be3494255c
1481Author: djm@openbsd.org <djm@openbsd.org>
1482Date: Thu Aug 25 23:56:51 2016 +0000
1483
1484 upstream commit
1485
1486 remove superfluous NOTREACHED comment
1487
1488 Upstream-ID: a7485c1f1be618e8c9e38fd9be46c13b2d03b90c
1489
1490commit fc041c47144ce28cf71353124a8a5d183cd6a251
1491Author: otto@openbsd.org <otto@openbsd.org>
1492Date: Tue Aug 23 16:21:45 2016 +0000
1493
1494 upstream commit
1495
1496 fix previous, a condition was modified incorrectly; ok
1497 markus@ deraadt@
1498
1499 Upstream-ID: c443e339768e7ed396dff3bb55f693e7d3641453
1500
1501commit 23555eb13a9b0550371a16dcf8beaab7a5806a64
1502Author: djm@openbsd.org <djm@openbsd.org>
1503Date: Tue Aug 23 08:17:42 2016 +0000
1504
1505 upstream commit
1506
1507 downgrade an error() to a debug2() to match similar cases
1508 in addr_match_list()
1509
1510 Upstream-ID: 07c3d53e357214153d9d08f234411e0d1a3d6f5c
1511
1512commit a39627134f6d90e7009eeb14e9582ecbc7a99192
1513Author: djm@openbsd.org <djm@openbsd.org>
1514Date: Tue Aug 23 06:36:23 2016 +0000
1515
1516 upstream commit
1517
1518 remove Protocol directive from client/server configs that
1519 causes spammy deprecation warnings
1520
1521 hardcode SSH_PROTOCOLS=2, since that's all we support on the server
1522 now (the client still may support both, so it could get confused)
1523
1524 Upstream-Regress-ID: c16662c631af51633f9fd06aca552a70535de181
1525
1526commit 6ee4f1c01ee31e65245881d49d4bccf014956066
1527Author: Damien Miller <djm@mindrot.org>
1528Date: Tue Aug 23 16:33:48 2016 +1000
1529
1530 hook match and utf8 unittests up to Makefile
1531
1532commit 114efe2bc0dd2842d997940a833f115e6fc04854
1533Author: djm@openbsd.org <djm@openbsd.org>
1534Date: Fri Aug 19 06:44:13 2016 +0000
1535
1536 upstream commit
1537
1538 add tests for matching functions
1539
1540 Upstream-Regress-ID: 0869d4f5c5d627c583c6a929d69c17d5dd65882c
1541
1542commit 857568d2ac81c14bcfd625b27536c1e28c992b3c
1543Author: Damien Miller <djm@mindrot.org>
1544Date: Tue Aug 23 14:32:37 2016 +1000
1545
1546 removing UseLogin bits from configure.ac
1547
1548commit cc182d01cef8ca35a1d25ea9bf4e2ff72e588208
1549Author: djm@openbsd.org <djm@openbsd.org>
1550Date: Tue Aug 23 03:24:10 2016 +0000
1551
1552 upstream commit
1553
1554 fix negated address matching where the address list
1555 consists of a single negated match, e.g. "Match addr !192.20.0.1"
1556
1557 Report and patch from Jakub Jelen. bz#2397 ok dtucker@
1558
1559 Upstream-ID: 01dcac3f3e6ca47518cf293e31c73597a4bb40d8
1560
1561commit 4067ec8a4c64ccf16250c35ff577b4422767da64
1562Author: djm@openbsd.org <djm@openbsd.org>
1563Date: Tue Aug 23 03:22:49 2016 +0000
1564
1565 upstream commit
1566
1567 fix matching for pattern lists that contain a single
1568 negated match, e.g. "Host !example"
1569
1570 report and patch from Robin Becker. bz#1918 ok dtucker@
1571
1572 Upstream-ID: 05a0cb323ea4bc20e98db099b42c067bfb9ea1ea
1573
1574commit 83b581862a1dbb06fc859959f829dde2654aef3c
1575Author: djm@openbsd.org <djm@openbsd.org>
1576Date: Fri Aug 19 03:18:06 2016 +0000
1577
1578 upstream commit
1579
1580 remove UseLogin option and support for having /bin/login
1581 manage login sessions; ok deraadt markus dtucker
1582
1583 Upstream-ID: bea7213fbf158efab7e602d9d844fba4837d2712
1584
1585commit ffe6549c2f7a999cc5264b873a60322e91862581
1586Author: naddy@openbsd.org <naddy@openbsd.org>
1587Date: Mon Aug 15 12:32:04 2016 +0000
1588
1589 upstream commit
1590
1591 Catch up with the SSH1 code removal and delete all
1592 mention of protocol 1 particularities, key files and formats, command line
1593 options, and configuration keywords from the server documentation and
1594 examples. ok jmc@
1595
1596 Upstream-ID: 850328854675b4b6a0d4a90f0b4a9dd9ca4e905f
1597
1598commit c38ea634893a1975dbbec798fb968c9488013f4a
1599Author: naddy@openbsd.org <naddy@openbsd.org>
1600Date: Mon Aug 15 12:27:56 2016 +0000
1601
1602 upstream commit
1603
1604 Remove more SSH1 server code: * Drop sshd's -k option. *
1605 Retire configuration keywords that only apply to protocol 1, as well as the
1606 "protocol" keyword. * Remove some related vestiges of protocol 1 support.
1607
1608 ok markus@
1609
1610 Upstream-ID: 9402f82886de917779db12f8ee3f03d4decc244d
1611
1612commit 33ba55d9e358c07f069e579bfab80eccaaad52cb
1613Author: Darren Tucker <dtucker@zip.com.au>
1614Date: Wed Aug 17 16:26:04 2016 +1000
1615
1616 Only check for prctl once.
1617
1618commit 976ba8a8fd66a969bf658280c1e5adf694cc2fc6
1619Author: Darren Tucker <dtucker@zip.com.au>
1620Date: Wed Aug 17 15:33:10 2016 +1000
1621
1622 Fix typo.
1623
1624commit 9abf84c25ff4448891edcde60533a6e7b2870de1
1625Author: Darren Tucker <dtucker@zip.com.au>
1626Date: Wed Aug 17 14:25:43 2016 +1000
1627
1628 Correct LDFLAGS for clang example.
1629
1630 --with-ldflags isn't used until after the -ftrapv test, so mention
1631 LDFLAGS instead for now.
1632
1633commit 1e8013a17ff11e3c6bd0012fb1fc8d5f1330eb21
1634Author: Darren Tucker <dtucker@zip.com.au>
1635Date: Wed Aug 17 14:08:42 2016 +1000
1636
1637 Remove obsolete CVS $Id from source files.
1638
1639 Since -portable switched to git the CVS $Id tags are no longer being
1640 updated and are becoming increasingly misleading. Remove them.
1641
1642commit adab758242121181700e48b4f6c60d6b660411fe
1643Author: Darren Tucker <dtucker@zip.com.au>
1644Date: Wed Aug 17 13:40:58 2016 +1000
1645
1646 Remove now-obsolete CVS $Id tags from text files.
1647
1648 Since -portable switched to git, the CVS $Id tags are no longer being
1649 updated and are becoming increasingly misleading. Remove them.
1650
1651commit 560c0068541315002ec4c1c00a560bbd30f2d671
1652Author: Darren Tucker <dtucker@zip.com.au>
1653Date: Wed Aug 17 13:38:30 2016 +1000
1654
1655 Add a section for compiler specifics.
1656
1657 Add a section for compiler specifics and document the runtime requirements
1658 for clang's integer sanitization.
1659
1660commit a8fc0f42e1eda2fa3393d1ea5e61322d5e07a9cd
1661Author: Darren Tucker <dtucker@zip.com.au>
1662Date: Wed Aug 17 13:35:43 2016 +1000
1663
1664 Test multiplying two long long ints.
1665
1666 When using clang with -ftrapv or -sanitize=integer the tests would pass
1667 but linking would fail with "undefined reference to __mulodi4".
1668 Explicitly test for this before enabling -trapv.
1669
1670commit a1cc637e7e11778eb727559634a6ef1c19c619f6
1671Author: Damien Miller <djm@mindrot.org>
1672Date: Tue Aug 16 14:47:34 2016 +1000
1673
1674 add a --with-login-program configure argument
1675
1676 Saves messing around with LOGIN_PROGRAM env var, which come
1677 packaging environments make hard to do during configure phase.
1678
1679commit 8bd81e1596ab1bab355146cb65e82fb96ade3b23
1680Author: Damien Miller <djm@mindrot.org>
1681Date: Tue Aug 16 13:30:56 2016 +1000
1682
1683 add --with-pam-service to specify PAM service name
1684
1685 Saves messing around with CFLAGS to do it.
1686
1687commit 74433a19bb6f4cef607680fa4d1d7d81ca3826aa
1688Author: Damien Miller <djm@mindrot.org>
1689Date: Tue Aug 16 13:28:23 2016 +1000
1690
1691 fix false positives when compiled with msan
1692
1693 Our explicit_bzero successfully confused clang -fsanitize-memory
1694 in to thinking that memset is never called to initialise memory.
1695 Ensure that it is called in a way that the compiler recognises.
1696
1697commit 6cb6dcffe1a2204ba9006de20f73255c268fcb6b
1698Author: markus@openbsd.org <markus@openbsd.org>
1699Date: Sat Aug 13 17:47:40 2016 +0000
1700
1701 upstream commit
1702
1703 remove ssh1 server code; ok djm@
1704
1705 Upstream-ID: c24c0c32c49b91740d5a94ae914fb1898ea5f534
1706
1707commit 42d47adc5ad1187f22c726cbc52e71d6b1767ca2
1708Author: jca@openbsd.org <jca@openbsd.org>
1709Date: Fri Aug 12 19:19:04 2016 +0000
1710
1711 upstream commit
1712
1713 Use 2001:db8::/32, the official IPv6 subnet for
1714 configuration examples.
1715
1716 This makes the IPv6 example consistent with IPv4, and removes a dubious
1717 mention of a 6bone subnet.
1718
1719 ok sthen@ millert@
1720
1721 Upstream-ID: b027f3d0e0073419a132fd1bf002e8089b233634
1722
1723commit b61f53c0c3b43c28e013d3b3696d64d1c0204821
1724Author: dtucker@openbsd.org <dtucker@openbsd.org>
1725Date: Thu Aug 11 01:42:11 2016 +0000
1726
1727 upstream commit
1728
1729 Update moduli file.
1730
1731 Upstream-ID: 6da9a37f74aef9f9cc639004345ad893cad582d8
1732
1733commit f217d9bd42d306f69f56335231036b44502d8191
1734Author: Darren Tucker <dtucker@zip.com.au>
1735Date: Thu Aug 11 11:42:48 2016 +1000
1736
1737 Import updated moduli.
1738
1739commit 67dca60fbb4923b7a11c1645b90a5ca57c03d8be
1740Author: dtucker@openbsd.org <dtucker@openbsd.org>
1741Date: Mon Aug 8 22:40:57 2016 +0000
1742
1743 upstream commit
1744
1745 Improve error message for overlong ControlPath. ok markus@
1746 djm@
1747
1748 Upstream-ID: aed374e2e88dd3eb41390003e5303d0089861eb5
1749
1750commit 4706c1d8c15cd5565b59512853c2da9bd4ca26c9
1751Author: djm@openbsd.org <djm@openbsd.org>
1752Date: Wed Aug 3 05:41:57 2016 +0000
1753
1754 upstream commit
1755
1756 small refactor of cipher.c: make ciphercontext opaque to
1757 callers feedback and ok markus@
1758
1759 Upstream-ID: 094849f8be68c3bdad2c0f3dee551ecf7be87f6f
1760
1761commit e600348a7afd6325cc5cd783cb424065cbc20434
1762Author: dtucker@openbsd.org <dtucker@openbsd.org>
1763Date: Wed Aug 3 04:23:55 2016 +0000
1764
1765 upstream commit
1766
1767 Fix bug introduced in rev 1.467 which causes
1768 "buffer_get_bignum_ret: incomplete message" errors when built with WITH_SSH1
1769 and run such that no Protocol 1 ephemeral host key is generated (eg "Protocol
1770 2", no SSH1 host key supplied). Reported by rainer.laatsch at t-online.de,
1771 ok deraadt@
1772
1773 Upstream-ID: aa6b132da5c325523aed7989cc5a320497c919dc
1774
1775commit d7e7348e72f9b203189e3fffb75605afecba4fda
1776Author: djm@openbsd.org <djm@openbsd.org>
1777Date: Wed Jul 27 23:18:12 2016 +0000
1778
1779 upstream commit
1780
1781 better bounds check on iovcnt (we only ever use fixed,
1782 positive values)
1783
1784 Upstream-ID: 9baa6eb5cd6e30c9dc7398e5fe853721a3a5bdee
1785
1786commit 5faa52d295f764562ed6dd75c4a4ce9134ae71e3
1787Author: Darren Tucker <dtucker@zip.com.au>
1788Date: Tue Aug 2 15:22:40 2016 +1000
1789
1790 Use tabs consistently inside "case $host".
1791
1792commit 20e5e8ba9c5d868d897896190542213a60fffbd2
1793Author: Darren Tucker <dtucker@zip.com.au>
1794Date: Tue Aug 2 12:16:34 2016 +1000
1795
1796 Explicitly test for broken strnvis.
1797
1798 NetBSD added an strnvis and unfortunately made it incompatible with the
1799 existing one in OpenBSD and Linux's libbsd (the former having existed
1800 for over ten years). Despite this incompatibility being reported during
1801 development (see http://gnats.netbsd.org/44977) they still shipped it.
1802 Even more unfortunately FreeBSD and later MacOS picked up this incompatible
1803 implementation. Try to detect this mess, and assume the only safe option
1804 if we're cross compiling.
1805
1806 OpenBSD 2.9 (2001): strnvis(char *dst, const char *src, size_t dlen, int flag);
1807 NetBSD 6.0 (2012): strnvis(char *dst, size_t dlen, const char *src, int flag);
1808
1809 ok djm@
1810
1811commit b0b48beab1b74100b61ecbadb9140c9ab4c2ea8c
1812Author: Damien Miller <djm@mindrot.org>
1813Date: Tue Aug 2 11:06:23 2016 +1000
1814
1815 update recommended autoconf version
1816
1817commit 23902e31dfd18c6d7bb41ccd73de3b5358a377da
1818Author: Damien Miller <djm@mindrot.org>
1819Date: Tue Aug 2 10:48:04 2016 +1000
1820
1821 update config.guess and config.sub to current
1822
1823 upstream commit 562f3512b3911ba0c77a7f68214881d1f241f46e
1824
1825commit dd1031b78b83083615b68d7163c44f4408635be2
1826Author: Darren Tucker <dtucker@zip.com.au>
1827Date: Tue Aug 2 10:01:52 2016 +1000
1828
1829 Replace spaces with tabs.
1830
1831 Mechanically replace spaces with tabs in compat files not synced with
1832 OpenBSD.
1833
1834commit c20dccb5614c5714f4155dda01bcdebf97cfae7e
1835Author: Darren Tucker <dtucker@zip.com.au>
1836Date: Tue Aug 2 09:44:25 2016 +1000
1837
1838 Strip trailing whitespace.
1839
1840 Mechanically strip trailing whitespace on files not synced with OpenBSD
1841 (or in the case of bsd-snprint.c, rsync).
1842
1843commit 30f9bd1c0963c23bfba8468dfd26aa17609ba42f
1844Author: Darren Tucker <dtucker@zip.com.au>
1845Date: Tue Aug 2 09:06:27 2016 +1000
1846
1847 Repair $OpenBSD markers.
1848
1849commit 9715d4ad4b53877ec23dc8681dd7a405de9419a6
1850Author: Darren Tucker <dtucker@zip.com.au>
1851Date: Tue Aug 2 09:02:42 2016 +1000
1852
1853 Repair $OpenBSD marker.
1854
1855commit cf3e0be7f5828a5e5f6c296a607d20be2f07d60c
1856Author: Tim Rice <tim@multitalents.net>
1857Date: Mon Aug 1 14:31:52 2016 -0700
1858
1859 modified: configure.ac opensshd.init.in
1860 Skip generating missing RSA1 key on startup unless ssh1 support is enabled.
1861 Spotted by Jean-Pierre Radley
1862
1commit 99522ba7ec6963a05c04a156bf20e3ba3605987c 1863commit 99522ba7ec6963a05c04a156bf20e3ba3605987c
2Author: Damien Miller <djm@mindrot.org> 1864Author: Damien Miller <djm@mindrot.org>
3Date: Thu Jul 28 08:54:27 2016 +1000 1865Date: Thu Jul 28 08:54:27 2016 +1000
@@ -8402,801 +10264,3 @@ Date: Thu Dec 18 23:58:04 2014 +0000
8402 10264
8403 don't count partial authentication success as a failure 10265 don't count partial authentication success as a failure
8404 against MaxAuthTries; ok deraadt@ 10266 against MaxAuthTries; ok deraadt@
8405
8406commit c7219f4f54d64d6dde66dbcf7a2699daa782d2a1
8407Author: djm@openbsd.org <djm@openbsd.org>
8408Date: Fri Dec 12 00:02:17 2014 +0000
8409
8410 upstream commit
8411
8412 revert chunk I didn't mean to commit yet; via jmc@
8413
8414commit 7de5991aa3997e2981440f39c1ea01273a0a2c7b
8415Author: Damien Miller <djm@mindrot.org>
8416Date: Thu Dec 18 11:44:06 2014 +1100
8417
8418 upstream libc change
8419
8420 revision 1.2
8421 date: 2014/12/08 03:45:00; author: bcook; state: Exp; lines: +2 -2; commitid: 7zWEBgJJOCZ2hvTV;
8422 avoid left shift overflow in reallocarray.
8423
8424 Some 64-bit platforms (e.g. Windows 64) have a 32-bit long. So, shifting
8425 1UL 32-bits to the left causes an overflow. This replaces the constant 1UL with
8426 (size_t)1 so that we get the correct constant size for the platform.
8427
8428 discussed with tedu@ & deraadt@
8429
8430commit 2048f85a5e6da8bc6e0532efe02ecfd4e63c978c
8431Author: Damien Miller <djm@mindrot.org>
8432Date: Thu Dec 18 10:15:49 2014 +1100
8433
8434 include CFLAGS in gnome askpass targets
8435
8436 from Fedora
8437
8438commit 48b68ce19ca42fa488960028048dec023f7899bb
8439Author: djm@openbsd.org <djm@openbsd.org>
8440Date: Thu Dec 11 08:20:09 2014 +0000
8441
8442 upstream commit
8443
8444 explicitly include sys/param.h in files that use the
8445 howmany() macro; from portable
8446
8447commit d663bea30a294d440fef4398e5cd816317bd4518
8448Author: djm@openbsd.org <djm@openbsd.org>
8449Date: Thu Dec 11 05:25:06 2014 +0000
8450
8451 upstream commit
8452
8453 mention AuthorizedKeysCommandUser must be set for
8454 AuthorizedKeysCommand to be run; bz#2287
8455
8456commit 17bf3d81e00f2abb414a4fd271118cf4913f049f
8457Author: djm@openbsd.org <djm@openbsd.org>
8458Date: Thu Dec 11 05:13:28 2014 +0000
8459
8460 upstream commit
8461
8462 show in debug output which hostkeys are being tried when
8463 attempting hostbased auth; patch from Iain Morgan
8464
8465commit da0277e3717eadf5b15e03379fc29db133487e94
8466Author: djm@openbsd.org <djm@openbsd.org>
8467Date: Thu Dec 11 04:16:14 2014 +0000
8468
8469 upstream commit
8470
8471 Make manual reflect reality: sftp-server's -d option
8472 accepts a "%d" option, not a "%h" one.
8473
8474 bz#2316; reported by Kirk Wolf
8475
8476commit 4cf87f4b81fa9380bce5fcff7b0f8382ae3ad996
8477Author: djm@openbsd.org <djm@openbsd.org>
8478Date: Wed Dec 10 01:24:09 2014 +0000
8479
8480 upstream commit
8481
8482 better error value for invalid signature length
8483
8484commit 4bfad14ca56f8ae04f418997816b4ba84e2cfc3c
8485Author: Darren Tucker <dtucker@zip.com.au>
8486Date: Wed Dec 10 02:12:51 2014 +1100
8487
8488 Resync more with OpenBSD's rijndael.c, in particular "#if 0"-ing out some
8489 unused code. Should fix compile error reported by plautrba at redhat.
8490
8491commit 642652d280499691c8212ec6b79724b50008ce09
8492Author: Darren Tucker <dtucker@zip.com.au>
8493Date: Wed Dec 10 01:32:23 2014 +1100
8494
8495 Add reallocarray to compat library
8496
8497commit 3dfd8d93dfcc69261f5af99df56f3ff598581979
8498Author: djm@openbsd.org <djm@openbsd.org>
8499Date: Thu Dec 4 22:31:50 2014 +0000
8500
8501 upstream commit
8502
8503 add tests for new client RevokedHostKeys option; refactor
8504 to make it a bit more readable
8505
8506commit a31046cad1aed16a0b55171192faa6d02665ccec
8507Author: krw@openbsd.org <krw@openbsd.org>
8508Date: Wed Nov 19 13:35:37 2014 +0000
8509
8510 upstream commit
8511
8512 Nuke yet more obvious #include duplications.
8513
8514 ok deraadt@
8515
8516commit a7c762e5b2c1093542c0bc1df25ccec0b4cf479f
8517Author: djm@openbsd.org <djm@openbsd.org>
8518Date: Thu Dec 4 20:47:36 2014 +0000
8519
8520 upstream commit
8521
8522 key_in_file() wrapper is no longer used
8523
8524commit 5e39a49930d885aac9c76af3129332b6e772cd75
8525Author: djm@openbsd.org <djm@openbsd.org>
8526Date: Thu Dec 4 02:24:32 2014 +0000
8527
8528 upstream commit
8529
8530 add RevokedHostKeys option for the client
8531
8532 Allow textfile or KRL-based revocation of hostkeys.
8533
8534commit 74de254bb92c684cf53461da97f52d5ba34ded80
8535Author: djm@openbsd.org <djm@openbsd.org>
8536Date: Thu Dec 4 01:49:59 2014 +0000
8537
8538 upstream commit
8539
8540 convert KRL code to new buffer API
8541
8542 ok markus@
8543
8544commit db995f2eed5fc432598626fa3e30654503bf7151
8545Author: millert@openbsd.org <millert@openbsd.org>
8546Date: Wed Nov 26 18:34:51 2014 +0000
8547
8548 upstream commit
8549
8550 Prefer setvbuf() to setlinebuf() for portability; ok
8551 deraadt@
8552
8553commit 72bba3d179ced8b425272efe6956a309202a91f3
8554Author: jsg@openbsd.org <jsg@openbsd.org>
8555Date: Mon Nov 24 03:39:22 2014 +0000
8556
8557 upstream commit
8558
8559 Fix crashes in the handling of the sshd config file found
8560 with the afl fuzzer.
8561
8562 ok deraadt@ djm@
8563
8564commit 867f49c666adcfe92bf539d9c37c1accdea08bf6
8565Author: Damien Miller <djm@mindrot.org>
8566Date: Wed Nov 26 13:22:41 2014 +1100
8567
8568 Avoid Cygwin ssh-host-config reading /etc/group
8569
8570 Patch from Corinna Vinschen
8571
8572commit 8b66f36291a721b1ba7c44f24a07fdf39235593e
8573Author: Damien Miller <djm@mindrot.org>
8574Date: Wed Nov 26 13:20:35 2014 +1100
8575
8576 allow custom service name for sshd on Cygwin
8577
8578 Permits the use of multiple sshd running with different service names.
8579
8580 Patch by Florian Friesdorf via Corinna Vinschen
8581
8582commit 08c0eebf55d70a9ae1964399e609288ae3186a0c
8583Author: jmc@openbsd.org <jmc@openbsd.org>
8584Date: Sat Nov 22 19:21:03 2014 +0000
8585
8586 upstream commit
8587
8588 restore word zapped in previous, and remove some useless
8589 "No" macros;
8590
8591commit a1418a0033fba43f061513e992e1cbcc3343e563
8592Author: deraadt@openbsd.org <deraadt@openbsd.org>
8593Date: Sat Nov 22 18:15:41 2014 +0000
8594
8595 upstream commit
8596
8597 /dev/random has created the same effect as /dev/arandom
8598 (and /dev/urandom) for quite some time. Mop up the last few, by using
8599 /dev/random where we actually want it, or not even mentioning arandom where
8600 it is irrelevant.
8601
8602commit b6de5ac9ed421362f479d1ad4fa433d2e25dad5b
8603Author: djm@openbsd.org <djm@openbsd.org>
8604Date: Fri Nov 21 01:00:38 2014 +0000
8605
8606 upstream commit
8607
8608 fix NULL pointer dereference crash on invalid timestamp
8609
8610 found using Michal Zalewski's afl fuzzer
8611
8612commit a1f8110cd5ed818d59b3a2964fab7de76e92c18e
8613Author: mikeb@openbsd.org <mikeb@openbsd.org>
8614Date: Tue Nov 18 22:38:48 2014 +0000
8615
8616 upstream commit
8617
8618 Sync AES code to the one shipped in OpenSSL/LibreSSL.
8619
8620 This includes a commit made by Andy Polyakov <appro at openssl ! org>
8621 to the OpenSSL source tree on Wed, 28 Jun 2006 with the following
8622 message: "Mitigate cache-collision timing attack on last round."
8623
8624 OK naddy, miod, djm
8625
8626commit 335c83d5f35d8620e16b8aa26592d4f836e09ad2
8627Author: krw@openbsd.org <krw@openbsd.org>
8628Date: Tue Nov 18 20:54:28 2014 +0000
8629
8630 upstream commit
8631
8632 Nuke more obvious #include duplications.
8633
8634 ok deraadt@ millert@ tedu@
8635
8636commit 51b64e44121194ae4bf153dee391228dada2abcb
8637Author: djm@openbsd.org <djm@openbsd.org>
8638Date: Mon Nov 17 00:21:40 2014 +0000
8639
8640 upstream commit
8641
8642 fix KRL generation when multiple CAs are in use
8643
8644 We would generate an invalid KRL when revoking certs by serial
8645 number for multiple CA keys due to a section being written out
8646 twice.
8647
8648 Also extend the regress test to catch this case by having it
8649 produce a multi-CA KRL.
8650
8651 Reported by peter AT pean.org
8652
8653commit d2d51003a623e21fb2b25567c4878d915e90aa2a
8654Author: djm@openbsd.org <djm@openbsd.org>
8655Date: Tue Nov 18 01:02:25 2014 +0000
8656
8657 upstream commit
8658
8659 fix NULL pointer dereference crash in key loading
8660
8661 found by Michal Zalewski's AFL fuzzer
8662
8663commit 9f9fad0191028edc43d100d0ded39419b6895fdf
8664Author: djm@openbsd.org <djm@openbsd.org>
8665Date: Mon Nov 17 00:21:40 2014 +0000
8666
8667 upstream commit
8668
8669 fix KRL generation when multiple CAs are in use
8670
8671 We would generate an invalid KRL when revoking certs by serial
8672 number for multiple CA keys due to a section being written out
8673 twice.
8674
8675 Also extend the regress test to catch this case by having it
8676 produce a multi-CA KRL.
8677
8678 Reported by peter AT pean.org
8679
8680commit da8af83d3f7ec00099963e455010e0ed1d7d0140
8681Author: bentley@openbsd.org <bentley@openbsd.org>
8682Date: Sat Nov 15 14:41:03 2014 +0000
8683
8684 upstream commit
8685
8686 Reduce instances of `` '' in manuals.
8687
8688 troff displays these as typographic quotes, but nroff implementations
8689 almost always print them literally, which rarely has the intended effect
8690 with modern fonts, even in stock xterm.
8691
8692 These uses of `` '' can be replaced either with more semantic alternatives
8693 or with Dq, which prints typographic quotes in a UTF-8 locale (but will
8694 automatically fall back to `` '' in an ASCII locale).
8695
8696 improvements and ok schwarze@
8697
8698commit fc302561369483bb755b17f671f70fb894aec01d
8699Author: djm@openbsd.org <djm@openbsd.org>
8700Date: Mon Nov 10 22:25:49 2014 +0000
8701
8702 upstream commit
8703
8704 mux-related manual tweaks
8705
8706 mention ControlPersist=0 is the same as ControlPersist=yes
8707
8708 recommend that ControlPath sockets be placed in a og-w directory
8709
8710commit 0e4cff5f35ed11102fe3783779960ef07e0cd381
8711Author: Damien Miller <djm@google.com>
8712Date: Wed Nov 5 11:01:31 2014 +1100
8713
8714 Prepare scripts for next Cygwin release
8715
8716 Makes the Cygwin-specific ssh-user-config script independent of the
8717 existence of /etc/passwd. The next Cygwin release will allow to
8718 generate passwd and group entries from the Windows account DBs, so the
8719 scripts have to adapt.
8720
8721 from Corinna Vinschen
8722
8723commit 7d0ba5336651731949762eb8877ce9e3b52df436
8724Author: Damien Miller <djm@mindrot.org>
8725Date: Thu Oct 30 10:45:41 2014 +1100
8726
8727 include version number in OpenSSL-too-old error
8728
8729commit 3bcb92e04d9207e9f78d82f7918c6d3422054ce9
8730Author: lteo@openbsd.org <lteo@openbsd.org>
8731Date: Fri Oct 24 02:01:20 2014 +0000
8732
8733 upstream commit
8734
8735 Remove unnecessary include: netinet/in_systm.h is not needed
8736 by these programs.
8737
8738 NB. skipped for portable
8739
8740 ok deraadt@ millert@
8741
8742commit 6fdcaeb99532e28a69f1a1599fbd540bb15b70a0
8743Author: djm@openbsd.org <djm@openbsd.org>
8744Date: Mon Oct 20 03:43:01 2014 +0000
8745
8746 upstream commit
8747
8748 whitespace
8749
8750commit 165bc8786299e261706ed60342985f9de93a7461
8751Author: daniel@openbsd.org <daniel@openbsd.org>
8752Date: Tue Oct 14 03:09:59 2014 +0000
8753
8754 upstream commit
8755
8756 plug a memory leak; from Maxime Villard.
8757
8758 ok djm@
8759
8760commit b1ba15f3885947c245c2dbfaad0a04ba050abea0
8761Author: jmc@openbsd.org <jmc@openbsd.org>
8762Date: Thu Oct 9 06:21:31 2014 +0000
8763
8764 upstream commit
8765
8766 tweak previous;
8767
8768commit 259a02ebdf74ad90b41d116ecf70aa823fa4c6e7
8769Author: djm@openbsd.org <djm@openbsd.org>
8770Date: Mon Oct 13 00:38:35 2014 +0000
8771
8772 upstream commit
8773
8774 whitespace
8775
8776commit 957fbceb0f3166e41b76fdb54075ab3b9cc84cba
8777Author: djm@openbsd.org <djm@openbsd.org>
8778Date: Wed Oct 8 22:20:25 2014 +0000
8779
8780 upstream commit
8781
8782 Tweak config reparsing with host canonicalisation
8783
8784 Make the second pass through the config files always run when
8785 hostname canonicalisation is enabled.
8786
8787 Add a "Match canonical" criteria that allows ssh_config Match
8788 blocks to trigger only in the second config pass.
8789
8790 Add a -G option to ssh that causes it to parse its configuration
8791 and dump the result to stdout, similar to "sshd -T"
8792
8793 Allow ssh_config Port options set in the second config parse
8794 phase to be applied (they were being ignored).
8795
8796 bz#2267 bz#2286; ok markus
8797
8798commit 5c0dafd38bf66feeeb45fa0741a5baf5ad8039ba
8799Author: djm@openbsd.org <djm@openbsd.org>
8800Date: Wed Oct 8 22:15:27 2014 +0000
8801
8802 upstream commit
8803
8804 another -Wpointer-sign from clang
8805
8806commit bb005dc815ebda9af3ae4b39ca101c4da918f835
8807Author: djm@openbsd.org <djm@openbsd.org>
8808Date: Wed Oct 8 22:15:06 2014 +0000
8809
8810 upstream commit
8811
8812 fix a few -Wpointer-sign warnings from clang
8813
8814commit 3cc1fbb4fb0e804bfb873fd363cea91b27fc8188
8815Author: djm@openbsd.org <djm@openbsd.org>
8816Date: Wed Oct 8 21:45:48 2014 +0000
8817
8818 upstream commit
8819
8820 parse cert sections using nested buffers to reduce
8821 copies; ok markus
8822
8823commit 4a45922aebf99164e2fc83d34fe55b11ae1866ef
8824Author: djm@openbsd.org <djm@openbsd.org>
8825Date: Mon Oct 6 00:47:15 2014 +0000
8826
8827 upstream commit
8828
8829 correct options in usage(); from mancha1 AT zoho.com
8830
8831commit 48dffd5bebae6fed0556dc5c36cece0370690618
8832Author: djm@openbsd.org <djm@openbsd.org>
8833Date: Tue Sep 9 09:45:36 2014 +0000
8834
8835 upstream commit
8836
8837 mention permissions on tun(4) devices in PermitTunnel
8838 documentation; bz#2273
8839
8840commit a5883d4eccb94b16c355987f58f86a7dee17a0c2
8841Author: djm@openbsd.org <djm@openbsd.org>
8842Date: Wed Sep 3 18:55:07 2014 +0000
8843
8844 upstream commit
8845
8846 tighten permissions on pty when the "tty" group does
8847 not exist; pointed out by Corinna Vinschen; ok markus
8848
8849commit 180bcb406b58bf30723c01a6b010e48ee626dda8
8850Author: sobrado@openbsd.org <sobrado@openbsd.org>
8851Date: Sat Aug 30 16:32:25 2014 +0000
8852
8853 upstream commit
8854
8855 typo.
8856
8857commit f70b22bcdd52f6bf127047b3584371e6e5d45627
8858Author: sobrado@openbsd.org <sobrado@openbsd.org>
8859Date: Sat Aug 30 15:33:50 2014 +0000
8860
8861 upstream commit
8862
8863 improve capitalization for the Ed25519 public-key
8864 signature system.
8865
8866 ok djm@
8867
8868commit 7df8818409c752cf3f0c3f8044fe9aebed8647bd
8869Author: doug@openbsd.org <doug@openbsd.org>
8870Date: Thu Aug 21 01:08:52 2014 +0000
8871
8872 upstream commit
8873
8874 Free resources on error in mkstemp and fdopen
8875
8876 ok djm@
8877
8878commit 40ba4c9733aaed08304714faeb61529f18da144b
8879Author: deraadt@openbsd.org <deraadt@openbsd.org>
8880Date: Wed Aug 20 01:28:55 2014 +0000
8881
8882 upstream commit
8883
8884 djm how did you make a typo like that...
8885
8886commit 57d378ec9278ba417a726f615daad67d157de666
8887Author: djm@openbsd.org <djm@openbsd.org>
8888Date: Tue Aug 19 23:58:28 2014 +0000
8889
8890 upstream commit
8891
8892 When dumping the server configuration (sshd -T), print
8893 correct KEX, MAC and cipher defaults. Spotted by Iain Morgan
8894
8895commit 7ff880ede5195d0b17e7f1e3b6cfbc4cb6f85240
8896Author: djm@openbsd.org <djm@openbsd.org>
8897Date: Tue Aug 19 23:57:18 2014 +0000
8898
8899 upstream commit
8900
8901 ~-expand lcd paths
8902
8903commit 4460a7ad0c78d4cd67c467f6e9f4254d0404ed59
8904Author: Damien Miller <djm@mindrot.org>
8905Date: Sun Oct 12 12:35:48 2014 +1100
8906
8907 remove duplicated KEX_DH1 entry
8908
8909commit c9b8426a616138d0d762176c94f51aff3faad5ff
8910Author: Damien Miller <djm@mindrot.org>
8911Date: Thu Oct 9 10:34:06 2014 +1100
8912
8913 remove ChangeLog file
8914
8915 Commit logs will be generated from git at release time.
8916
8917commit 81d18ff7c93a04affbf3903e0963859763219aed
8918Author: Damien Miller <djm@google.com>
8919Date: Tue Oct 7 21:24:25 2014 +1100
8920
8921 delete contrib/caldera directory
8922
8923commit 0ec9e87d3638206456968202f05bb5123670607a
8924Author: Damien Miller <djm@google.com>
8925Date: Tue Oct 7 19:57:27 2014 +1100
8926
8927 test commit
8928
8929commit 8fb65a44568701b779f3d77326bceae63412d28d
8930Author: Damien Miller <djm@mindrot.org>
8931Date: Tue Oct 7 09:21:49 2014 +1100
8932
8933 - (djm) Release OpenSSH-6.7
8934
8935commit e8c9f2602c46f6781df5e52e6cd8413dab4602a3
8936Author: Damien Miller <djm@mindrot.org>
8937Date: Fri Oct 3 09:24:56 2014 +1000
8938
8939 - (djm) [sshd_config.5] typo; from Iain Morgan
8940
8941commit 703b98a26706f5083801d11059486d77491342ae
8942Author: Damien Miller <djm@mindrot.org>
8943Date: Wed Oct 1 09:43:07 2014 +1000
8944
8945 - (djm) [openbsd-compat/Makefile.in openbsd-compat/kludge-fd_set.c]
8946 [openbsd-compat/openbsd-compat.h] Kludge around bad glibc
8947 _FORTIFY_SOURCE check that doesn't grok heap-allocated fd_sets;
8948 ok dtucker@
8949
8950commit 0fa0ed061bbfedb0daa705e220748154a84c3413
8951Author: Damien Miller <djm@mindrot.org>
8952Date: Wed Sep 10 08:15:34 2014 +1000
8953
8954 - (djm) [sandbox-seccomp-filter.c] Allow mremap and exit for DietLibc;
8955 patch from Felix von Leitner; ok dtucker
8956
8957commit ad7d23d461c3b7e1dcb15db13aee5f4b94dc1a95
8958Author: Darren Tucker <dtucker@zip.com.au>
8959Date: Tue Sep 9 12:23:10 2014 +1000
8960
8961 20140908
8962 - (dtucker) [INSTALL] Update info about egd. ok djm@
8963
8964commit 2a8699f37cc2515e3bc60e0c677ba060f4d48191
8965Author: Damien Miller <djm@mindrot.org>
8966Date: Thu Sep 4 03:46:05 2014 +1000
8967
8968 - (djm) [openbsd-compat/arc4random.c] Zero seed after keying PRNG
8969
8970commit 44988defb1f5e3afe576d86000365e1f07a1b494
8971Author: Damien Miller <djm@mindrot.org>
8972Date: Wed Sep 3 05:35:32 2014 +1000
8973
8974 - (djm) [contrib/cygwin/ssh-host-config] Fix old code leading to
8975 permissions/ACLs; from Corinna Vinschen
8976
8977commit 23f269562b7537b2f6f5014e50a25e5dcc55a837
8978Author: Damien Miller <djm@mindrot.org>
8979Date: Wed Sep 3 05:33:25 2014 +1000
8980
8981 - (djm) [defines.h sshbuf.c] Move __predict_true|false to defines.h and
8982 conditionalise to avoid duplicate definition.
8983
8984commit 41c8de2c0031cf59e7cf0c06b5bcfbf4852c1fda
8985Author: Damien Miller <djm@mindrot.org>
8986Date: Sat Aug 30 16:23:06 2014 +1000
8987
8988 - (djm) [Makefile.in] Make TEST_SHELL a variable; "good idea" tim@
8989
8990commit d7c81e216a7bd9eed6e239c970d9261bb1651947
8991Author: Damien Miller <djm@mindrot.org>
8992Date: Sat Aug 30 04:18:28 2014 +1000
8993
8994 - (djm) [openbsd-compat/openssl-compat.h] add include guard
8995
8996commit 4687802dda57365b984b897fc3c8e2867ea09b22
8997Author: Damien Miller <djm@mindrot.org>
8998Date: Sat Aug 30 03:29:19 2014 +1000
8999
9000 - (djm) [misc.c] Missing newline between functions
9001
9002commit 51c77e29220dee87c53be2dc47092934acab26fe
9003Author: Damien Miller <djm@mindrot.org>
9004Date: Sat Aug 30 02:30:30 2014 +1000
9005
9006 - (djm) [openbsd-compat/openssl-compat.h] add
9007 OPENSSL_[RD]SA_MAX_MODULUS_BITS defines for OpenSSL that lacks them
9008
9009commit 3d673d103bad35afaec6e7ef73e5277216ce33a3
9010Author: Damien Miller <djm@mindrot.org>
9011Date: Wed Aug 27 06:32:01 2014 +1000
9012
9013 - (djm) [openbsd-compat/explicit_bzero.c] implement explicit_bzero()
9014 using memset_s() where possible; improve fallback to indirect bzero
9015 via a volatile pointer to give it more of a chance to avoid being
9016 optimised away.
9017
9018commit 146218ac11a1eb0dcade6f793d7acdef163b5ddc
9019Author: Damien Miller <djm@mindrot.org>
9020Date: Wed Aug 27 04:11:55 2014 +1000
9021
9022 - (djm) [monitor.c sshd.c] SIGXFSZ needs to be ignored in postauth
9023 monitor, not preauth; bz#2263
9024
9025commit 1b215c098b3b37e38aa4e4c91bb908eee41183b1
9026Author: Damien Miller <djm@mindrot.org>
9027Date: Wed Aug 27 04:04:40 2014 +1000
9028
9029 - (djm) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c]
9030 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c]
9031 [regress/unittests/sshkey/common.c]
9032 [regress/unittests/sshkey/test_file.c]
9033 [regress/unittests/sshkey/test_fuzz.c]
9034 [regress/unittests/sshkey/test_sshkey.c] Don't include openssl/ec.h
9035 on !ECC OpenSSL systems
9036
9037commit ad013944af0a19e3f612089d0099bb397cf6502d
9038Author: Damien Miller <djm@mindrot.org>
9039Date: Tue Aug 26 09:27:28 2014 +1000
9040
9041 - (djm) [INSTALL] Recommend libcrypto be built -fPIC, mention LibreSSL,
9042 update OpenSSL version requirement.
9043
9044commit ed126de8ee04c66640a0ea2697c4aaf36801f100
9045Author: Damien Miller <djm@mindrot.org>
9046Date: Tue Aug 26 08:37:47 2014 +1000
9047
9048 - (djm) [bufec.c] Skip this file on !ECC OpenSSL
9049
9050commit 9c1dede005746864a4fdb36a7cdf6c51296ca909
9051Author: Damien Miller <djm@mindrot.org>
9052Date: Sun Aug 24 03:01:06 2014 +1000
9053
9054 - (djm) [sftp-server.c] Some systems (e.g. Irix) have prctl() but not
9055 PR_SET_DUMPABLE, so adjust ifdef; reported by Tom Christensen
9056
9057commit d244a5816fd1312a33404b436e4dd83594f1119e
9058Author: Damien Miller <djm@mindrot.org>
9059Date: Sat Aug 23 17:06:49 2014 +1000
9060
9061 - (djm) [configure.ac] We now require a working vsnprintf everywhere (not
9062 just for systems that lack asprintf); check for it always and extend
9063 test to catch more brokenness. Fixes builds on Solaris <= 9
9064
9065commit 4cec036362a358e398e6a2e6d19d8e5780558634
9066Author: Damien Miller <djm@mindrot.org>
9067Date: Sat Aug 23 03:11:09 2014 +1000
9068
9069 - (djm) [sshd.c] Ignore SIGXFSZ in preauth monitor child; can explode on
9070 lastlog writing on platforms with high UIDs; bz#2263
9071
9072commit 394a60f2598d28b670d934b93942a3370b779b39
9073Author: Damien Miller <djm@mindrot.org>
9074Date: Fri Aug 22 18:06:20 2014 +1000
9075
9076 - (djm) [configure.ac] double braces to appease autoconf
9077
9078commit 4d69aeabd6e60afcdc7cca177ca751708ab79a9d
9079Author: Damien Miller <djm@mindrot.org>
9080Date: Fri Aug 22 17:48:27 2014 +1000
9081
9082 - (djm) [openbsd-compat/bsd-snprintf.c] Fix compilation failure (prototype/
9083 definition mismatch) and warning for broken/missing snprintf case.
9084
9085commit 0c11f1ac369d2c0aeb0ab0458a7cd04c72fe5e9e
9086Author: Damien Miller <djm@mindrot.org>
9087Date: Fri Aug 22 17:36:56 2014 +1000
9088
9089 - (djm) [sshbuf-getput-crypto.c] Fix compilation when OpenSSL lacks ECC
9090
9091commit 6d62784b8973340b251fea6b04890f471adf28db
9092Author: Damien Miller <djm@mindrot.org>
9093Date: Fri Aug 22 17:36:19 2014 +1000
9094
9095 - (djm) [configure.ac] include leading zero characters in OpenSSL version
9096 number; fixes test for unsupported versions
9097
9098commit 4f1ff1ed782117f5d5204d4e91156ed5da07cbb7
9099Author: Damien Miller <djm@mindrot.org>
9100Date: Thu Aug 21 15:54:50 2014 +1000
9101
9102 - (djm) [regress/unittests/test_helper/test_helper.c] Fix for systems that
9103 don't set __progname. Diagnosed by Tom Christensen.
9104
9105commit 005a64da0f457410045ef0bfa93c863c2450447d
9106Author: Damien Miller <djm@mindrot.org>
9107Date: Thu Aug 21 10:48:41 2014 +1000
9108
9109 - (djm) [key.h] Fix ifdefs for no-ECC OpenSSL
9110
9111commit aa6598ebb3343c7380e918388e10e8ca5852b613
9112Author: Damien Miller <djm@mindrot.org>
9113Date: Thu Aug 21 10:47:54 2014 +1000
9114
9115 - (djm) [Makefile.in] fix reference to libtest_helper.a in sshkey test too.
9116
9117commit 54703e3cf63f0c80d4157e5ad7dbc2b363ee2c56
9118Author: Damien Miller <djm@mindrot.org>
9119Date: Wed Aug 20 11:10:51 2014 +1000
9120
9121 - (djm) [contrib/cygwin/README] Correct build instructions; from Corinna
9122
9123commit f0935698f0461f24d8d1f1107b476ee5fd4db1cb
9124Author: Damien Miller <djm@mindrot.org>
9125Date: Wed Aug 20 11:06:50 2014 +1000
9126
9127 - (djm) [sshkey.h] Fix compilation when OpenSSL lacks ECC
9128
9129commit c5089ecaec3b2c02f014f4e67518390702a4ba14
9130Author: Damien Miller <djm@mindrot.org>
9131Date: Wed Aug 20 11:06:20 2014 +1000
9132
9133 - (djm) [Makefile.in] refer to libtest_helper.a by explicit path rather than
9134 -L/-l; fixes linking problems on some platforms
9135
9136commit 2195847e503a382f83ee969b0a8bd3dfe0e55c18
9137Author: Damien Miller <djm@mindrot.org>
9138Date: Wed Aug 20 11:05:03 2014 +1000
9139
9140 - (djm) [configure.ac] Check OpenSSL version is supported at configure time;
9141 suggested by Kevin Brott
9142
9143commit a75aca1bbc989aa9f8b1b08489d37855f3d24d1a
9144Author: Damien Miller <djm@mindrot.org>
9145Date: Tue Aug 19 11:36:07 2014 +1000
9146
9147 - (djm) [INSTALL contrib/caldera/openssh.spec contrib/cygwin/README]
9148 [contrib/redhat/openssh.spec contrib/suse/openssh.spec] Remove mentions
9149 of TCP wrappers.
9150
9151commit 3f022b5a9477abceeb1bbeab04b055f3cc7ca8f6
9152Author: Damien Miller <djm@mindrot.org>
9153Date: Tue Aug 19 11:32:34 2014 +1000
9154
9155 - (djm) [ssh-dss.c] Include openssl/dsa.h for DSA_SIG
9156
9157commit 88137902632aceb923990e98cf5dc923bb3ef2f5
9158Author: Damien Miller <djm@mindrot.org>
9159Date: Tue Aug 19 11:28:11 2014 +1000
9160
9161 - (djm) [sshbuf.h] Fix compilation on systems without OPENSSL_HAS_ECC.
9162
9163commit 2f3d1e7fb2eabd3cfbfd8d0f7bdd2f9a1888690b
9164Author: Damien Miller <djm@mindrot.org>
9165Date: Tue Aug 19 11:14:36 2014 +1000
9166
9167 - (djm) [myproposal.h] Make curve25519 KEX dependent on
9168 HAVE_EVP_SHA256 instead of OPENSSL_HAS_ECC.
9169
9170commit d4e7d59d01a6c7f59e8c1f94a83c086e9a33d8aa
9171Author: Damien Miller <djm@mindrot.org>
9172Date: Tue Aug 19 11:14:17 2014 +1000
9173
9174 - (djm) [serverloop.c] Fix syntax error on Cygwin; from Corinna Vinschen
9175
9176commit 9eaeea2cf2b6af5f166cfa9ad3c7a90711a147a9
9177Author: Damien Miller <djm@mindrot.org>
9178Date: Sun Aug 10 11:35:05 2014 +1000
9179
9180 - (djm) [README contrib/caldera/openssh.spec]
9181 [contrib/redhat/openssh.spec contrib/suse/openssh.spec] Update versions
9182
9183commit f8988fbef0c9801d19fa2f8f4f041690412bec37
9184Author: Damien Miller <djm@mindrot.org>
9185Date: Fri Aug 1 13:31:52 2014 +1000
9186
9187 - (djm) [regress/multiplex.sh] Use -d (detach stdin) flag to disassociate
9188 nc from stdin, it's more portable
9189
9190commit 5b3879fd4b7a4e3d43bab8f40addda39bc1169d0
9191Author: Damien Miller <djm@mindrot.org>
9192Date: Fri Aug 1 12:28:31 2014 +1000
9193
9194 - (djm) [regress/multiplex.sh] Instruct nc not to quit as soon as stdin
9195 is closed; avoid regress failures when stdin is /dev/null
9196
9197commit a9c46746d266f8a1b092a72b2150682d1af8ebfc
9198Author: Damien Miller <djm@mindrot.org>
9199Date: Fri Aug 1 12:26:49 2014 +1000
9200
9201 - (djm) [regress/multiplex.sh] Skip test for non-OpenBSD netcat. We need
9202 a better solution, but this will have to do for now.