summaryrefslogtreecommitdiff
path: root/ChangeLog
AgeCommit message (Collapse)Author
2008-09-06 - (dtucker) [config.guess config.sub] Update to latest versions fromDarren Tucker
http://git.savannah.gnu.org/gitweb/ (2008-04-14 and 2008-06-16 respectively).
2008-08-30 - (dtucker) [openbsd-compat/bsd-poll.c] correctly check for number of FDsDarren Tucker
larger than FD_SETSIZE (OpenSSH only ever uses poll with one fd). Patch from Nicholas Marriott.
2008-07-23 - (djm) [servconf.c] Print UsePAM option in config test mode (when itDamien Miller
has been compiled in); report from nix-corp AT esperi.org.uk ok dtucker@
2008-07-23 - djm@cvs.openbsd.org 2008/07/23 07:36:55Damien Miller
[servconf.c] do not try to print options that have been compile-time disabled in config test mode (sshd -T); report from nix-corp AT esperi.org.uk ok dtucker@
2008-07-21 - (djm) Release OpenSSH-5.1Damien Miller
2008-07-21 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]Damien Miller
[contrib/suse/openssh.spec] Update version number in README and RPM specs
2008-07-21 - djm@cvs.openbsd.org 2008/07/21 08:19:07Damien Miller
[version.h] openssh-5.1
2008-07-21 - jmc@cvs.openbsd.org 2008/07/18 22:51:01Damien Miller
[sftp-server.8] no need for .Pp before or after .Sh;
2008-07-17 - (djm) [sshconnect2.c] vis.h isn't available everywhereDamien Miller
2008-07-17 - (dtucker) [openbsd-compat/bsd-cygwin_util.c] Remove long-unneeded compatDarren Tucker
code, replace with equivalent cygwin library call. Patch from vinschen at redhat.comi, ok djm@.
2008-07-17 - djm@cvs.openbsd.org 2008/07/17 08:51:07Damien Miller
[auth2-hostbased.c] strip trailing '.' from hostname when HostbasedUsesNameFromPacketOnly=yes report and patch from res AT qoxp.net (bz#1200); ok markus@
2008-07-17 - djm@cvs.openbsd.org 2008/07/17 08:48:00Damien Miller
[sshconnect2.c] strnvis preauth banner; pointed out by mpf@ ok markus@
2008-07-16 - djm@cvs.openbsd.org 2008/07/16 11:52:19Damien Miller
[channels.c] this loop index should be automatic, not static
2008-07-16 - djm@cvs.openbsd.org 2008/07/16 11:51:14Damien Miller
[clientloop.c] rename variable first_gc -> last_gc (since it is actually the last in the list).
2008-07-16 - djm@cvs.openbsd.org 2008/07/15 02:23:14Damien Miller
[sftp.1] number of pipelined requests is now 64; prodded by Iain.Morgan AT nasa.gov
2008-07-14 - (djm) [openbsd-compat/fake-rfc2553.c openbsd-compat/fake-rfc2553.h]Damien Miller
return EAI_FAMILY when trying to lookup unsupported address family; from vinschen AT redhat.com
2008-07-14 - (djm) [contrib/cygwin/Makefile contrib/cygwin/ssh-host-config]Damien Miller
[contrib/cygwin/ssh-user-config contrib/cygwin/sshd-inetd] Revamped and simplified Cygwin ssh-host-config script that uses unified csih configuration tool. Requires recent Cygwin. Patch from vinschen AT redhat.com
2008-07-14 - djm@cvs.openbsd.org 2008/07/14 01:55:56Damien Miller
[sftp-server.8] mention requirement for /dev/log inside chroot when using sftp-server with ChrootDirectory
2008-07-14 - (djm) [umac.c] Rename variable s/buffer_ptr/bufp/ to avoid clash;Damien Miller
reported by cristian.ionescu-idbohrn AT axis.com
2008-07-14 - (djm) [openbsd-compat/rresvport.c] Add unistd.h for missing close()Damien Miller
prototype; reported by cristian.ionescu-idbohrn AT axis.com
2008-07-14 - (djm) [openbsd-compat/bindresvport.c] Rename variables s/sin/in/ toDamien Miller
avoid clash with sin(3) function; reported by cristian.ionescu-idbohrn AT axis.com
2008-07-14 - djm@cvs.openbsd.org 2008/07/13 22:16:03Damien Miller
[sftp.c] increase number of piplelined requests so they properly fill the (recently increased) channel window. prompted by rapier AT psc.edu; ok markus@
2008-07-14 - djm@cvs.openbsd.org 2008/07/13 22:13:07Damien Miller
[channels.c] use struct sockaddr_storage instead of struct sockaddr for accept(2) address argument. from visibilis AT yahoo.com in bz#1485; ok markus@
2008-07-14 - sthen@cvs.openbsd.org 2008/07/13 21:22:52Damien Miller
[ssh-keygen.c] Change "ssh-keygen -F [host] -l" to not display random art unless -v is also specified, making it consistent with the manual and other uses of -l. ok grunk@
2008-07-12 - djm@cvs.openbsd.org 2008/07/12 05:33:41Damien Miller
[scp.1] better description for -i flag: s/RSA authentication/public key authentication/
2008-07-12 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2008/07/12 04:52:50 [channels.c] unbreak; move clearing of cctx struct to before first use reported by dkrause@
2008-07-11 - markus@cvs.openbsd.org 2008/07/10 18:08:11Damien Miller
[clientloop.c monitor.c monitor_wrap.c packet.c packet.h sshd.c] sync v1 and v2 traffic accounting; add it to sshd, too; ok djm@, dtucker@
2008-07-11 - markus@cvs.openbsd.org 2008/07/10 18:05:58Damien Miller
[channels.c] missing bzero; from mickey; ok djm@
2008-07-11 - stevesk@cvs.openbsd.org 2008/07/07 23:32:51Damien Miller
[key.c] /*NOTREACHED*/ for lint warning: warning: function key_equal falls off bottom without returning value ok djm@
2008-07-11 - stevesk@cvs.openbsd.org 2008/07/07 00:31:41Damien Miller
[ttymodes.c] we don't need arg after the debug3() was removed. from lint. ok djm@
2008-07-09 - (djm) [configure.ac] Add -Wformat-security to CFLAGS for gcc 3.x and 4.xDamien Miller
2008-07-09 - (djm) [auth.c] Missing unistd.h for close()Damien Miller
2008-07-09 - (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAMDamien Miller
account check failure path. The vulnerable format buffer is supplied from PAM and should not contain attacker-supplied data.
2008-07-09 - (djm) [Makefile.in] Print "all tests passed" when all regress tests passDamien Miller
2008-07-05 - djm@cvs.openbsd.org 2008/07/05 05:16:01Damien Miller
[PROTOCOL] grammar
2008-07-05 - (djm) [configure.ac] unbreak: remove extra closing braceDamien Miller
2008-07-05 - (djm) [Makefile.in] Pass though pass to conch for interop testsDamien Miller
2008-07-05 - djm@cvs.openbsd.org 2008/07/04 23:30:16Damien Miller
[auth1.c auth2.c] Make protocol 1 MaxAuthTries logic match protocol 2's. Do not treat the first protocol 2 authentication attempt as a failure IFF it is for method "none". Makes MaxAuthTries' user-visible behaviour identical for protocol 1 vs 2. ok dtucker@
2008-07-05 - OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2008/07/04 23:08:25 [packet.c] handle EINTR in packet_write_poll()l ok dtucker@
2008-07-05 - (djm) [atomicio.c configure.ac] Disable poll() fallback in atomiciov forDamien Miller
Tru64. readv doesn't seem to be a comparable object there. bz#1386, patch from dtucker@ ok me
2008-07-05 - (djm) [auth.c] Fixed test for locked account on HP/UX with shadowedDamien Miller
passwords disabled. bz#1083 report & patch from senthilkumar_sen AT hotpop.com, w/ dtucker@
2008-07-04 - (djm) [atomicio.c channels.c clientloop.c defines.h includes.h]Damien Miller
[packet.c scp.c serverloop.c sftp-client.c ssh-agent.c ssh-keyscan.c] [sshd.c] Explicitly handle EWOULDBLOCK wherever we handle EAGAIN, on some platforms (HP nonstop) it is a distinct errno; bz#1467 reported by sconeu AT yahoo.com; ok dtucker@
2008-07-04 - djm@cvs.openbsd.org 2008/06/30 10:43:03Darren Tucker
[regress/conch-ciphers.sh] explicitly disable conch options that could interfere with the test
2008-07-04 - djm@cvs.openbsd.org 2008/06/30 10:31:11Darren Tucker
[putty-transfer.sh putty-kex.sh putty-ciphers.sh] remove "set -e" left over from debugging
2008-07-04 - djm@cvs.openbsd.org 2008/06/30 08:07:34Darren Tucker
[key-options.sh] shell portability: use "=" instead of "==" in test(1) expressions, double-quote string with backslash escaped /
2008-07-04 - (dtucker) [sftp-server.c] Bug #1447: fall back to racy rename if linkDarren Tucker
returns EXDEV. Patch from Mike Garrison, ok djm@
2008-07-04 - dtucker@cvs.openbsd.org 2008/07/04 03:47:02Darren Tucker
[monitor.c] Make debug a little clearer. ok djm@
2008-07-04 - djm@cvs.openbsd.org 2008/07/04 03:44:59Darren Tucker
[servconf.c groupaccess.h groupaccess.c] support negation of groups in "Match group" block (bz#1315); ok dtucker@
2008-07-04 - otto@cvs.openbsd.org 2008/07/03 21:46:58Darren Tucker
[auth2-pubkey.c] avoid nasty double free; ok dtucker@ djm@
2008-07-04 - djm@cvs.openbsd.org 2008/07/02 13:47:39Darren Tucker
[ssh.1 ssh.c] When forking after authentication ("ssh -f") with ExitOnForwardFailure enabled, delay the fork until after replies for any -R forwards have been seen. Allows for robust detection of -R forward failure when using -f (similar to bz#92); ok dtucker@