summaryrefslogtreecommitdiff
path: root/ChangeLog
AgeCommit message (Collapse)Author
2007-02-19 - jmc@cvs.openbsd.org 2007/01/12 20:20:41Darren Tucker
[ssh-keygen.1 ssh-keygen.c] more secsh -> rfc 4716 updates; spotted by wiz@netbsd ok markus
2007-02-19 - jmc@cvs.openbsd.org 2007/01/10 13:23:22Darren Tucker
[ssh_config.5] do not use a list for SYNOPSIS; this is actually part of a larger report sent by eric s. raymond and forwarded by brad, but i only read half of it. spotted by brad.
2007-01-29 - (djm) [channels.c serverloop.c] Fix so-called "hang on exit" (bz #52)Damien Miller
when closing a tty session when a background process still holds tty fds open. Great detective work and patch by Marc Aurele La France, slightly tweaked by me; ok dtucker@
2007-01-24 - (dtucker) [openbsd-compat/bsd-snprintf.c] Static declarations for publicDarren Tucker
library interfaces aren't very helpful. Fix up the DOPR_OUTCH macro so it works properly and modify its callers so that they don't pre or post decrement arguments that are conditionally evaluated. While there, put SNPRINTF_CONST back as it prevents build failures in some configurations. ok djm@ (for most of it)
2007-01-22 - (djm) [ssh-rand-helper.8] manpage nits;Damien Miller
from dleonard AT vintela.com (bz#1529)
2007-01-17 - (dtucker) [packet.c] Re-remove in_systm.h since it's already in includes.hDarren Tucker
and multiple including it causes problems on old IRIXes. (It snuck back in during a sync.) Found (again) by Georg Schwarz.
2007-01-14 - (djm) [openbsd-compat/bsd-snprintf.c] Fix integer overflow in returnDamien Miller
value of snprintf replacement, similar to bugs in various libc implementations. This overflow is not exploitable in OpenSSH. While I'm fiddling with it, make it a fair bit faster by inlining the append-char routine; ok dtucker@
2007-01-14typoDarren Tucker
2007-01-14 - (dtucker) [ssh-keygen.c] ac -> argv to match earlier sync.Darren Tucker
2007-01-05 - stevesk@cvs.openbsd.org 2007/01/03 07:22:36Damien Miller
[sftp-server.c] spaces
2007-01-05 - stevesk@cvs.openbsd.org 2007/01/03 04:09:15Damien Miller
[sftp.c] ARGSUSED for lint
2007-01-05 - stevesk@cvs.openbsd.org 2007/01/03 03:01:40Damien Miller
[auth2-chall.c channels.c dns.c sftp.c ssh-keygen.c ssh.c] spaces
2007-01-05 - stevesk@cvs.openbsd.org 2007/01/03 00:53:38Damien Miller
[ssh-keygen.c] remove small dead code; arnaud.lacombe.1@ulaval.ca via Coverity scan
2007-01-05 - jmc@cvs.openbsd.org 2007/01/02 09:57:25Damien Miller
[sshd_config.5] do not use lists for SYNOPSIS; from eric s. raymond via brad
2007-01-05 - dtucker@cvs.openbsd.org 2006/12/14 10:01:14Damien Miller
[servconf.c] Make "PermitOpen all" first-match within a block to match the way other options work. ok markus@ djm@
2007-01-05 - dtucker@cvs.openbsd.org 2006/12/13 08:34:39Damien Miller
[servconf.c] Make PermitOpen work with multiple values like the man pages says. bz #1267 with details from peter at dmtz.com, with & ok djm@
2007-01-05 - djm@cvs.openbsd.org 2006/12/12 03:58:42Damien Miller
[channels.c compat.c compat.h] bz #1019: some ssh.com versions apparently can't cope with the remote port forwarding bind_address being a hostname, so send them an address for cases where they are not explicitly specified (wildcard or localhost bind). reported by daveroth AT acm.org; ok dtucker@ deraadt@
2007-01-05 - markus@cvs.openbsd.org 2006/12/11 21:25:46Damien Miller
[ssh-keygen.1 ssh.1] add rfc 4716 (public key format); ok jmc
2007-01-05 - ray@cvs.openbsd.org 2006/11/23 01:35:11Damien Miller
[misc.c sftp.c] Don't access buf[strlen(buf) - 1] for zero-length strings. ``ok by me'' djm@.
2007-01-05 - (djm) OpenBSD CVS SyncDamien Miller
- deraadt@cvs.openbsd.org 2006/11/14 19:41:04 [ssh-keygen.c] use argc and argv not some made up short form
2006-12-05 - (djm) [bsd-asprintf.c] Better test for bad vsnprintf lengths; ok dtucker@Damien Miller
2006-12-05 - (djm) [auth.c] Fix NULL pointer dereference in fakepw(). Crash wouldDamien Miller
occur if the server did not have the privsep user and an invalid user tried to login and both privsep and krb5 auth are disabled.
2006-11-08 - markus@cvs.openbsd.org 2006/11/07 13:02:07Darren Tucker
[dh.c] BN_hex2bn returns int; from dtucker@
2006-11-07 - (dtucker) Release 4.5p1.Darren Tucker
2006-11-07 - (dtucker) [README contrib/{caldera,redhat,contrib}/openssh.spec] BumpDarren Tucker
versions.
2006-11-07 - markus@cvs.openbsd.org 2006/11/07 10:31:31Darren Tucker
[monitor.c version.h] correctly check for bad signatures in the monitor, otherwise the monitor and the unpriv process can get out of sync. with dtucker@, ok djm@, dtucker@
2006-11-07 - markus@cvs.openbsd.org 2006/11/06 21:25:28Darren Tucker
[auth-rsa.c kexgexc.c kexdhs.c key.c ssh-dss.c sshd.c kexgexs.c ssh-keygen.c bufbn.c moduli.c scard.c kexdhc.c sshconnect1.c dh.c rsa.c] add missing checks for openssl return codes; with & ok djm@
2006-11-07 - (dtucker) [sshd.c] Use privsep_pw if we have it, but only require itDarren Tucker
if we absolutely need it. Pointed out by Corinna, ok djm@
2006-11-05 - markus@cvs.openbsd.org 2006/10/31 16:33:12Damien Miller
[kexdhc.c kexdhs.c kexgexc.c kexgexs.c] check DH_compute_key() for -1 even if it should not happen because of earlier calls to dh_pub_is_valid(); report krahmer at suse.de; ok djm
2006-11-05 - (djm) OpenBSD CVS SyncDamien Miller
- otto@cvs.openbsd.org 2006/10/28 18:08:10 [ssh.1] correct/expand example of usage of -w; ok jmc@ stevesk@
2006-11-01 - (dtucker) [openbsd-compat/port-solaris.c] Bug #1255: Make only hwerrDarren Tucker
events fatal in Solaris process contract support and tell it to signal only processes in the same process group when something happens. Based on information from andrew.benham at thus.net and similar to a patch from Chad Mynhier. ok djm@
2006-10-28- (djm) [auth.c] gc some dead codeDamien Miller
2006-10-23 - (tim) [Makefile.in scard/Makefile.in] Add datarootdir= lines to keepTim Rice
autoconf 2.60 from complaining.
2006-10-24 - djm@cvs.openbsd.org 2006/10/22 02:25:50Damien Miller
[sftp-client.c] cancel progress meter when upload write fails; ok deraadt@
2006-10-24 - markus@cvs.openbsd.org 2006/10/11 12:38:03Damien Miller
[clientloop.c serverloop.c] exit instead of doing a blocking tcp send if we detect a client/server timeout, since the tcp sendqueue might be already full (of alive requests); ok dtucker, report mpf
2006-10-24 - markus@cvs.openbsd.org 2006/10/10 10:12:45Damien Miller
[sshconnect.c] sleep before retrying (not after) since sleep changes errno; fixes pr 5250; rad@twig.com; ok dtucker djm
2006-10-24 - djm@cvs.openbsd.org 2006/10/09 23:36:11Damien Miller
[session.c] xmalloc -> xcalloc that was missed previously, from portable (NB. Id sync only for portable, obviously)
2006-10-24 - djm@cvs.openbsd.org 2006/10/06 02:29:19Damien Miller
[ssh-agent.c ssh-keyscan.c ssh.c] sys/resource.h needs sys/time.h; prompted by brad@ (NB. Id sync only for portable)
2006-10-24 - (djm) OpenBSD CVS SyncDamien Miller
- ray@cvs.openbsd.org 2006/09/30 17:48:22 [sftp.c] Clear errno before calling the strtol functions. From Paul Stoeber <x0001 at x dot de1 dot cc>. OK deraadt@.
2006-10-18 - (dtucker) [sshd.c] Reshuffle storing of pw struct; prevents warningsDarren Tucker
on older versions of OS X. ok djm@
2006-10-18 - ray@cvs.openbsd.org 2006/09/25 04:55:38Darren Tucker
[ssh-keyscan.1 ssh.1] Change "a SSH" to "an SSH". Hurray, I'm not the only one who pronounces "SSH" as "ess-ess-aich". OK jmc@ and stevesk@.
2006-10-16 - (dtucker) [monitor_fdpass.c] Include sys/in.h, required for cmsg macrosDarren Tucker
on older (2.0) Linuxes. Based on patch from thmo-13 at gmx de.
2006-10-06 - (tim) [buildpkg.sh.in] Some systems have really limited nawk (OpenServer).Tim Rice
Allow setting alternate awk in openssh-config.local.
2006-10-07 - (dtucker) [configure.ac] Set put -lselinux into $LIBS while testing forDarren Tucker
SELinux functions so they're detected correctly. Patch from pebenito at gentoo.org.
2006-10-0620061006Tim Rice
- (tim) [buildpkg.sh.in] Use uname -r instead of -v in OS_VER for Solaris. Differentiate between OpenServer 5 and OpenServer 6
2006-10-03 - (tim) [configure.ac] Move CHECK_HEADERS test before platform specificTim Rice
section so additional platform specific CHECK_HEADER tests will work correctly. Fixes "<net/if_tap.h> on FreeBSD" problem report by des AT des.no Feedback and "seems like a good idea" dtucker@
2006-10-01 - (dtucker) [audit-bsm.c] Include errno.h. Pointed out by des at des.no.Darren Tucker
2006-09-29 - (dtucker) [configure.ac] Bug #1239: Fix configure test for OpenSSH engineDarren Tucker
support. Patch from andrew.benham at thus net.
2006-09-28 - (dtucker) [entropy.c] Bug #1238: include signal.h to fix compilation errorDarren Tucker
on Solaris 8 w/out /dev/random or prngd. Patch from rl at math.technion.ac.il.
2006-09-28Marker for 4.4p1 releaseDarren Tucker