summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/25 18:29:35Damien Miller
[auth-rsa.c authfd.c packet.c] needed casts (always will be needed)
2006-03-26oops, rewrapDamien Miller
2006-03-26 - djm@cvs.openbsd.org 2006/03/25 13:17:03Damien Miller
[atomicio.c auth-bsdauth.c auth-chall.c auth-options.c auth-passwd.c] [auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth-skey.c auth.c auth1.c] [auth2-chall.c auth2-hostbased.c auth2-kbdint.c auth2-none.c] [auth2-passwd.c auth2-pubkey.c auth2.c authfd.c authfile.c bufaux.c] [buffer.c canohost.c channels.c cipher-3des1.c cipher-bf1.c] [cipher-ctr.c cipher.c cleanup.c clientloop.c compat.c compress.c] [deattack.c dh.c dispatch.c fatal.c groupaccess.c hostfile.c kex.c] [kexdh.c kexdhc.c kexdhs.c kexgex.c kexgexc.c kexgexs.c key.c log.c] [mac.c match.c md-sha256.c misc.c monitor.c monitor_fdpass.c] [monitor_mm.c monitor_wrap.c msg.c nchan.c packet.c progressmeter.c] [readconf.c readpass.c rsa.c scard.c scp.c servconf.c serverloop.c] [session.c sftp-client.c sftp-common.c sftp-glob.c sftp-server.c] [sftp.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c] [ssh-keysign.c ssh-rsa.c ssh.c sshconnect.c sshconnect1.c] [sshconnect2.c sshd.c sshlogin.c sshpty.c sshtty.c ttymodes.c] [uidswap.c uuencode.c xmalloc.c] Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that Theo nuked - our scripts to sync -portable need them in the files
2006-03-26 - djm@cvs.openbsd.org 2006/03/25 01:30:23Damien Miller
[sftp.c] "abormally" is a perfectly cromulent word, but "abnormally" is better
2006-03-26 - djm@cvs.openbsd.org 2006/03/25 01:13:23Damien Miller
[buffer.c channels.c deattack.c misc.c scp.c session.c sftp-client.c] [sftp-server.c ssh-agent.c ssh-rsa.c xmalloc.c xmalloc.h auth-pam.c] [uidswap.c] change OpenSSH's xrealloc() function from being xrealloc(p, new_size) to xrealloc(p, new_nmemb, new_itemsize). realloc is particularly prone to integer overflows because it is almost always allocating "n * size" bytes, so this is a far safer API; ok deraadt@
2006-03-26 - djm@cvs.openbsd.org 2006/03/25 00:05:41Damien Miller
[auth-bsdauth.c auth-skey.c auth.c auth2-chall.c channels.c] [clientloop.c deattack.c gss-genr.c kex.c key.c misc.c moduli.c] [monitor.c monitor_wrap.c packet.c scard.c sftp-server.c ssh-agent.c] [ssh-keyscan.c ssh.c sshconnect.c sshconnect2.c sshd.c uuencode.c] [xmalloc.c xmalloc.h] introduce xcalloc() and xasprintf() failure-checked allocations functions and use them throughout openssh xcalloc is particularly important because malloc(nmemb * size) is a dangerous idiom (subject to integer overflow) and it is time for it to die feedback and ok deraadt@
2006-03-26 - djm@cvs.openbsd.org 2006/03/22 21:27:15Damien Miller
[deattack.c deattack.h packet.c] remove IV support from the CRC attack detector, OpenSSH has never used it - it only applied to IDEA-CFB, which we don't support. prompted by NetBSD Coverity report via elad AT netbsd.org; feedback markus@ "nuke it" deraadt@
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 21:11:53Damien Miller
[ttymodes.c] spacing
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:48:34Damien Miller
[channels.c fatal.c kex.c packet.c serverloop.c] spacing
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:42:27Damien Miller
[canohost.c match.c ssh.c sshconnect.c] be strict with tolower() casting
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:41:43Damien Miller
[dns.c] cast xstrdup to propert u_char *
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:35:12Damien Miller
[channels.c] x11_fake_data is only ever used as u_char *
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:27:50Damien Miller
[monitor.c] spacing
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:26:55Damien Miller
[channels.c monitor.c session.c session.h ssh-agent.c ssh-keygen.c] [ssh-rsa.c ssh.c sshlogin.c] annoying spacing fixes getting in the way of real diffs
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:17:20Damien Miller
[auth1.c auth2.c sshd.c] sprinkle some ARGSUSED for table driven functions (which sometimes must ignore their args)
2006-03-26rewrapDamien Miller
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:14:02Damien Miller
[channels.c clientloop.c monitor_wrap.c monitor_wrap.h serverloop.c] [ssh.c sshpty.c sshpty.h] sprinkle u_int throughout pty subsystem, ok markus
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 17:17:23Damien Miller
[ssh-rsa.c] in a switch (), break after return or goto is stupid
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 17:13:16Damien Miller
[key.c] djm did a typo
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 17:10:19Damien Miller
[auth.c key.c misc.c packet.c ssh-add.c] in a switch (), break after return or goto is stupid
2006-03-26 - djm@cvs.openbsd.org 2006/03/20 11:38:46Damien Miller
[key.c] (really) last of the Coverity diffs: avoid possible NULL deref in key_free. via elad AT netbsd.org; markus@ ok
2006-03-26 - djm@cvs.openbsd.org 2006/03/20 04:09:44Damien Miller
[monitor.c] memory leaks detected by Coverity via elad AT netbsd.org; deraadt@ ok that should be all of them now
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:59:09Damien Miller
[authfile.c] whoever thought that break after return was a good idea needs to get their head examimed
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:59:30Damien Miller
[ssh.c] spacing
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:59:49Damien Miller
[ssh-keyscan.c] please lint
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:56:41Damien Miller
[clientloop.c progressmeter.c serverloop.c sshd.c] ARGSUSED for signal handlers
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:53:12Damien Miller
[kex.c kex.h monitor.c myproposal.h session.c] spacing
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:52:11Damien Miller
[auth1.c authfd.c channels.c] spacing
2006-03-26id syncDamien Miller
2006-03-26 - dtucker@cvs.openbsd.org 2006/03/19 11:51:52Damien Miller
[servconf.c] Correct strdelim null test; ok djm@
2006-03-26 - djm@cvs.openbsd.org 2006/03/19 07:41:30Damien Miller
[sshconnect2.c] memory leaks detected by Coverity via elad AT netbsd.org; deraadt@ ok
2006-03-26 - djm@cvs.openbsd.org 2006/03/19 02:24:05Damien Miller
[dh.c readconf.c servconf.c] potential NULL pointer dereferences detected by Coverity via elad AT netbsd.org; ok deraadt@
2006-03-26 - djm@cvs.openbsd.org 2006/03/19 02:23:26Damien Miller
[hostfile.c] FILE* leak detected by Coverity via elad AT netbsd.org; ok deraadt@
2006-03-26 - djm@cvs.openbsd.org 2006/03/19 02:22:56Damien Miller
[sftp.c] more memory leaks detected by Coverity via elad AT netbsd.org; deraadt@ ok
2006-03-26 - djm@cvs.openbsd.org 2006/03/19 02:22:32Damien Miller
[serverloop.c] memory leaks detected by Coverity via elad AT netbsd.org; ok deraadt@ dtucker@
2006-03-26 - djm@cvs.openbsd.org 2006/03/17 22:31:11Damien Miller
[authfd.c] unreachanble statement, found by lint
2006-03-26 - djm@cvs.openbsd.org 2006/03/17 22:31:50Damien Miller
[authfd.c] another unreachable found by lint
2006-03-26 - biorn@cvs.openbsd.org 2006/03/16 10:31:45Damien Miller
[scp.c] Try to display errormessage even if remout == -1 ok djm@, markus@
2006-03-26 - OpenBSD CVS SyncDamien Miller
- jakob@cvs.openbsd.org 2006/03/15 08:46:44 [ssh-keygen.c] if no key file are given when printing the DNS host record, use the host key file(s) as default. ok djm@
2006-03-26 [deattack.c deattack.h]Damien Miller
remove IV support from the CRC attack detector, OpenSSH has never used it - it only applied to IDEA-CFB, which we don't support. prompted by NetBSD Coverity report via elad AT netbsd.org; feedback markus@ "nuke it" deraadt@
2006-03-26 - jakob@cvs.openbsd.org 2006/03/22 21:16:24Damien Miller
[ssh.1] simplify SSHFP example; ok jmc@
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:41:43Damien Miller
[dns.c] cast xstrdup to propert u_char *
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:26:55Damien Miller
[session.h] annoying spacing fixes getting in the way of real diffs
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/20 18:14:02Damien Miller
[monitor_wrap.h sshpty.h] sprinkle u_int throughout pty subsystem, ok markus
2006-03-26 - djm@cvs.openbsd.org 2006/03/20 04:08:18Damien Miller
[gss-serv.c] last lot of GSSAPI related leaks detected by Coverity via elad AT netbsd.org; reviewed by simon AT sxw.org.uk; deraadt@ ok
2006-03-26 - djm@cvs.openbsd.org 2006/03/20 04:07:49Damien Miller
[gss-genr.c] more GSSAPI related leaks detected by Coverity via elad AT netbsd.org; reviewed by simon AT sxw.org.uk; deraadt@ ok
2006-03-26 - djm@cvs.openbsd.org 2006/03/20 04:07:22Damien Miller
[auth2-gss.c] GSSAPI related leaks detected by Coverity via elad AT netbsd.org; reviewed by simon AT sxw.org.uk; deraadt@ ok
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:53:12Damien Miller
[kex.h myproposal.h] spacing
2006-03-26 - deraadt@cvs.openbsd.org 2006/03/19 18:51:18Damien Miller
[atomicio.c auth-bsdauth.c auth-chall.c auth-krb5.c auth-options.c] [auth-pam.c auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c] [auth-shadow.c auth-skey.c auth.c auth1.c auth2-chall.c] [auth2-hostbased.c auth2-kbdint.c auth2-none.c auth2-passwd.c] [auth2-pubkey.c auth2.c authfd.c authfile.c bufaux.c buffer.c] [canohost.c channels.c cipher-3des1.c cipher-acss.c cipher-aes.c] [cipher-bf1.c cipher-ctr.c cipher.c cleanup.c clientloop.c compat.c] [compress.c deattack.c dh.c dispatch.c dns.c entropy.c fatal.c] [groupaccess.c hostfile.c includes.h kex.c kexdh.c kexdhc.c] [kexdhs.c kexgex.c kexgexc.c kexgexs.c key.c log.c loginrec.c] [loginrec.h logintest.c mac.c match.c md-sha256.c md5crypt.c misc.c] [monitor.c monitor_fdpass.c monitor_mm.c monitor_wrap.c msg.c] [nchan.c packet.c progressmeter.c readconf.c readpass.c rsa.c] [scard.c scp.c servconf.c serverloop.c session.c sftp-client.c] [sftp-common.c sftp-glob.c sftp-server.c sftp.c ssh-add.c] [ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c ssh-keysign.c] [ssh-rand-helper.c ssh-rsa.c ssh.c sshconnect.c sshconnect1.c] [sshconnect2.c sshd.c sshlogin.c sshpty.c sshtty.c ttymodes.c] [uidswap.c uuencode.c xmalloc.c openbsd-compat/bsd-arc4random.c] [openbsd-compat/bsd-closefrom.c openbsd-compat/bsd-cygwin_util.c] [openbsd-compat/bsd-getpeereid.c openbsd-compat/bsd-misc.c] [openbsd-compat/bsd-nextstep.c openbsd-compat/bsd-snprintf.c] [openbsd-compat/bsd-waitpid.c openbsd-compat/fake-rfc2553.c] RCSID() can die
2006-03-25 - djm@cvs.openbsd.org 2006/03/16 04:24:42Damien Miller
[ssh.1] Add RFC4419 (Diffie-Hellman group exchange KEX) to the list of SSH RFCs that OpenSSH supports