Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-03-23 | upstream commit | djm@openbsd.org | |
for ssh-keygen -A, don't try (and fail) to generate ssh v.1 keys when compiled without SSH1 support RSA/DSA/ECDSA keys when compiled without OpenSSL based on patch by Mike Frysinger; bz#2369 | |||
2015-03-23 | upstream commit | djm@openbsd.org | |
KRL support doesn't need OpenSSL anymore, remove #ifdefs from around call | |||
2015-03-23 | upstream commit | djm@openbsd.org | |
#if 0 some more arrays used only for decrypting (we don't use since we only need encrypt for AES-CTR) | |||
2015-03-23 | upstream commit | jsg@openbsd.org | |
add back the changes from rev 1.206, djm reverted this by mistake in rev 1.207 | |||
2015-03-20 | remove error() accidentally inserted for debugging | Damien Miller | |
pointed out by Christian Hesse | |||
2015-03-16 | portability fix: Solaris systems may not have a grep that understands -q | Tim Rice | |
2015-03-11 | fix compile with clang | Damien Miller | |
2015-03-11 | make unit tests work for !OPENSSH_HAS_ECC | Damien Miller | |
2015-03-09 | upstream commit | djm@openbsd.org | |
unbreak for w/SSH1 (default) case; ok markus@ deraadt@ | |||
2015-03-05 | unbreak hostkeys test for w/ SSH1 case | Damien Miller | |
2015-03-06 | upstream commit | djm@openbsd.org | |
fix sshkey_certify() return value for unsupported key types; ok markus@ deraadt@ | |||
2015-03-04 | update version numbers to match version.h | Damien Miller | |
2015-03-05 | upstream commit | djm@openbsd.org | |
make these work with !SSH1; ok markus@ deraadt@ | |||
2015-03-05 | upstream commit | djm@openbsd.org | |
make ssh-add -D work with !SSH1 agent | |||
2015-03-04 | netcat needs poll.h portability goop | Damien Miller | |
2015-03-05 | upstream commit | markus@openbsd.org | |
make it possible to run tests w/o ssh1 support; ok djm@ | |||
2015-03-05 | upstream commit | djm@openbsd.org | |
crank; ok markus, deraadt | |||
2015-03-03 | more --without-ssh1 fixes | Damien Miller | |
2015-03-03 | fix merge both that broke --without-ssh1 compile | Damien Miller | |
2015-03-04 | upstream commit | djm@openbsd.org | |
add SSH1 Makefile knob to make it easier to build without SSH1 support; ok markus@ | |||
2015-03-04 | upstream commit | djm@openbsd.org | |
expand __unused to full __attribute__ for better portability | |||
2015-03-04 | avoid warning | Damien Miller | |
2015-03-04 | Revert "define __unused to nothing if not already defined" | Damien Miller | |
This reverts commit 1598419e38afbaa8aa5df8dd6b0af98301e2c908. Some system headers have objects named __unused | |||
2015-03-04 | check for crypt and DES_crypt in openssl block | Damien Miller | |
fixes builds on systems that use DES_crypt; based on patch from Roumen Petrov | |||
2015-03-04 | define __unused to nothing if not already defined | Damien Miller | |
fixes builds on BSD/OS | |||
2015-03-04 | upstream commit | djm@openbsd.org | |
reorder logic for better portability; patch from Roumen Petrov | |||
2015-03-04 | upstream commit | djm@openbsd.org | |
Allow "ssh -Q protocol-version" to list supported SSH protocol versions. Useful for detecting builds without SSH v.1 support; idea and ok markus@ | |||
2015-03-03 | upstream commit | millert@openbsd.org | |
Make sure we only call getnameinfo() for AF_INET or AF_INET6 sockets. getpeername() of a Unix domain socket may return without error on some systems without actually setting ss_family so getnameinfo() was getting called with ss_family set to AF_UNSPEC. OK djm@ | |||
2015-02-28 | portability fixes for regress/netcat.c | Damien Miller | |
Mostly avoiding "err(1, NULL)" | |||
2015-02-28 | twiddle another test for portability | Damien Miller | |
from Tom G. Christensen | |||
2015-02-27 | twiddle test for portability | Damien Miller | |
2015-02-26 | make regress/netcat.c fd passing (more) portable | Damien Miller | |
2015-02-26 | create OBJ/valgrind-out before running unittests | Damien Miller | |
2015-02-26 | valgrind support | Damien Miller | |
2015-02-27 | upstream commit | djm@openbsd.org | |
don't printf NULL key comments; reported by Tom Christensen | |||
2015-02-26 | upstream commit | djm@openbsd.org | |
zero cmsgbuf before use; we initialise the bits we use but valgrind still spams warning on it | |||
2015-02-26 | upstream commit | djm@openbsd.org | |
fix small memory leak when UpdateHostkeys=no | |||
2015-02-25 | Revert "Work around finicky USL linker so netcat will build." | Tim Rice | |
This reverts commit d1db656021d0cd8c001a6692f772f1de29b67c8b. No longer needed with commit 678e473e2af2e4802f24dd913985864d9ead7fb3 | |||
2015-02-26 | upstream commit | djm@openbsd.org | |
don't leak validity of user in "too many authentication failures" disconnect message; reported by Sebastian Reitenbach | |||
2015-02-26 | upstream commit | naddy@openbsd.org | |
add -v (show ASCII art) to -l's synopsis; ok djm@ | |||
2015-02-26 | Remove dependency on xmalloc. | Darren Tucker | |
Remove ssh_get_progname's dependency on xmalloc, which should reduce link order problems. ok djm@ | |||
2015-02-25 | Restrict ECDSA and ECDH tests. | Darren Tucker | |
ifdef out some more ECDSA and ECDH tests when built against an OpenSSL that does not have eliptic curve functionality. | |||
2015-02-25 | Move definition of _NSIG. | Darren Tucker | |
_NSIG is only unsed in one file, so move it there prevent redefinition warnings reported by Kevin Brott. | |||
2015-02-25 | Add includes.h for compatibility stuff. | Darren Tucker | |
2015-02-24 | include netdb.h to look for MAXHOSTNAMELEN; ok tim | Damien Miller | |
2015-02-24 | Work around finicky USL linker so netcat will build. | Tim Rice | |
2015-02-24 | include includes.h to avoid build failure on AIX | Damien Miller | |
2015-02-24 | Original portability patch from djm@ for platforms missing err.h. | Tim Rice | |
Fix name space clash on Solaris 10. Still more to do for Solaris 10 to deal with msghdr structure differences. ok djm@ | |||
2015-02-23 | cleaner way fix dispatch.h portion of commit | Tim Rice | |
a88dd1da119052870bb2654c1a32c51971eade16 (some systems have sig_atomic_t in signal.h, some in sys/signal.h) Sounds good to me djm@ | |||
2015-02-23 | portability fix: if we can't dind a better define for HOST_NAME_MAX, use 255 | Tim Rice | |