Damien Miller | 9a66155 | 2013-07-18 16:09:04 +1000 | [diff] [blame] | 1 | 20130718 |
| 2 | - (djm) OpenBSD CVS Sync |
| 3 | - dtucker@cvs.openbsd.org 2013/06/10 19:19:44 |
| 4 | [readconf.c] |
| 5 | revert 1.203 while we investigate crashes reported by okan@ |
Damien Miller | 044bd2a | 2013-07-18 16:09:25 +1000 | [diff] [blame] | 6 | - guenther@cvs.openbsd.org 2013/06/17 04:48:42 |
| 7 | [scp.c] |
| 8 | Handle time_t values as long long's when formatting them and when |
| 9 | parsing them from remote servers. |
| 10 | Improve error checking in parsing of 'T' lines. |
| 11 | ok dtucker@ deraadt@ |
Damien Miller | 3071070 | 2013-07-18 16:09:44 +1000 | [diff] [blame] | 12 | - markus@cvs.openbsd.org 2013/06/20 19:15:06 |
| 13 | [krl.c] |
| 14 | don't leak the rdata blob on errors; ok djm@ |
Damien Miller | 20bdcd7 | 2013-07-18 16:10:09 +1000 | [diff] [blame] | 15 | - djm@cvs.openbsd.org 2013/06/21 00:34:49 |
| 16 | [auth-rsa.c auth.h auth2-hostbased.c auth2-pubkey.c monitor.c] |
| 17 | for hostbased authentication, print the client host and user on |
| 18 | the auth success/failure line; bz#2064, ok dtucker@ |
Damien Miller | 7f2b438 | 2013-07-18 16:10:29 +1000 | [diff] [blame] | 19 | - djm@cvs.openbsd.org 2013/06/21 00:37:49 |
| 20 | [ssh_config.5] |
| 21 | explicitly mention that IdentitiesOnly can be used with IdentityFile |
| 22 | to control which keys are offered from an agent. |
Damien Miller | bbeb1da | 2013-07-18 16:10:49 +1000 | [diff] [blame] | 23 | - djm@cvs.openbsd.org 2013/06/21 05:42:32 |
| 24 | [dh.c] |
| 25 | sprinkle in some error() to explain moduli(5) parse failures |
Damien Miller | 8158441 | 2013-07-18 16:11:07 +1000 | [diff] [blame] | 26 | - djm@cvs.openbsd.org 2013/06/21 05:43:10 |
| 27 | [scp.c] |
| 28 | make this -Wsign-compare clean after time_t conversion |
Damien Miller | bc35d92 | 2013-07-18 16:11:25 +1000 | [diff] [blame] | 29 | - djm@cvs.openbsd.org 2013/06/22 06:31:57 |
| 30 | [scp.c] |
| 31 | improved time_t overflow check suggested by guenther@ |
Damien Miller | fecfd11 | 2013-07-18 16:11:50 +1000 | [diff] [blame] | 32 | - jmc@cvs.openbsd.org 2013/06/27 14:05:37 |
| 33 | [ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5] |
| 34 | do not use Sx for sections outwith the man page - ingo informs me that |
| 35 | stuff like html will render with broken links; |
| 36 | issue reported by Eric S. Raymond, via djm |
Damien Miller | 0d02c3e | 2013-07-18 16:12:06 +1000 | [diff] [blame] | 37 | - markus@cvs.openbsd.org 2013/07/02 12:31:43 |
| 38 | [dh.c] |
| 39 | remove extra whitespace |
Damien Miller | ce98654 | 2013-07-18 16:12:44 +1000 | [diff] [blame^] | 40 | - djm@cvs.openbsd.org 2013/07/12 00:19:59 |
| 41 | [auth-options.c auth-rsa.c bufaux.c buffer.h channels.c hostfile.c] |
| 42 | [hostfile.h mux.c packet.c packet.h roaming_common.c serverloop.c] |
| 43 | fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@ |
Damien Miller | 9a66155 | 2013-07-18 16:09:04 +1000 | [diff] [blame] | 44 | |
Darren Tucker | b7482cf | 2013-07-02 20:06:46 +1000 | [diff] [blame] | 45 | 20130702 |
| 46 | - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config |
| 47 | contrib/cygwin/ssh-user-config] Modernizes and improve readability of |
| 48 | the Cygwin README file (which hasn't been updated for ages), drop |
| 49 | unsupported OSes from the ssh-host-config help text, and drop an |
| 50 | unneeded option from ssh-user-config. Patch from vinschen at redhat com. |
| 51 | |
Damien Miller | 3618709 | 2013-06-10 13:07:11 +1000 | [diff] [blame] | 52 | 20130610 |
| 53 | - (djm) OpenBSD CVS Sync |
| 54 | - dtucker@cvs.openbsd.org 2013/06/07 15:37:52 |
| 55 | [channels.c channels.h clientloop.c] |
| 56 | Add an "ABANDONED" channel state and use for mux sessions that are |
| 57 | disconnected via the ~. escape sequence. Channels in this state will |
| 58 | be able to close if the server responds, but do not count as active channels. |
| 59 | This means that if you ~. all of the mux clients when using ControlPersist |
| 60 | on a broken network, the backgrounded mux master will exit when the |
| 61 | Control Persist time expires rather than hanging around indefinitely. |
| 62 | bz#1917, also reported and tested by tedu@. ok djm@ markus@. |
Darren Tucker | 6d8bd57 | 2013-06-11 11:26:10 +1000 | [diff] [blame] | 63 | - (dtucker) [Makefile.in configure.ac fixalgorithms] Remove unsupported |
| 64 | algorithms (Ciphers, MACs and HostKeyAlgorithms) from man pages. |
Darren Tucker | 97b62f4 | 2013-06-11 11:47:24 +1000 | [diff] [blame] | 65 | - (dtucker) [myproposal.h] Do not advertise AES GSM ciphers if we don't have |
| 66 | the required OpenSSL support. Patch from naddy at freebsd. |
Darren Tucker | b8ae92d | 2013-06-11 12:10:02 +1000 | [diff] [blame] | 67 | - (dtucker) [myproposal.h] Make the conditional algorithm support consistent |
| 68 | and add some comments so it's clear what goes where. |
Damien Miller | 3618709 | 2013-06-10 13:07:11 +1000 | [diff] [blame] | 69 | |
Darren Tucker | 2ea9eb7 | 2013-06-05 15:04:00 +1000 | [diff] [blame] | 70 | 20130605 |
Darren Tucker | b4e0094 | 2013-06-05 22:48:44 +1000 | [diff] [blame] | 71 | - (dtucker) [myproposal.h] Enable sha256 kex methods based on the presence of |
| 72 | the necessary functions, not from the openssl version. |
| 73 | - (dtucker) [contrib/ssh-copy-id] bz#2117: Use portable operator in test. |
| 74 | Patch from cjwatson at debian. |
Darren Tucker | 2a22873 | 2013-06-06 01:59:13 +1000 | [diff] [blame] | 75 | - (dtucker) [regress/forwarding.sh] For (as yet unknown) reason, the |
| 76 | forwarding test is extremely slow copying data on some machines so switch |
| 77 | back to copying the much smaller ls binary until we can figure out why |
| 78 | this is. |
Darren Tucker | dc62edb | 2013-06-06 05:12:35 +1000 | [diff] [blame] | 79 | - (dtucker) [Makefile.in] append $CFLAGS to compiler options when building |
| 80 | modpipe in case there's anything in there we need. |
Darren Tucker | 5d12b8f | 2013-06-06 08:09:10 +1000 | [diff] [blame] | 81 | - (dtucker) OpenBSD CVS Sync |
| 82 | - dtucker@cvs.openbsd.org 2013/06/02 21:01:51 |
| 83 | [channels.h] |
| 84 | typo in comment |
Darren Tucker | ea8342c | 2013-06-06 08:11:40 +1000 | [diff] [blame] | 85 | - dtucker@cvs.openbsd.org 2013/06/02 23:36:29 |
| 86 | [clientloop.h clientloop.c mux.c] |
| 87 | No need for the mux cleanup callback to be visible so restore it to static |
| 88 | and call it through the detach_user function pointer. ok djm@ |
Darren Tucker | 4ac66af | 2013-06-06 08:12:37 +1000 | [diff] [blame] | 89 | - dtucker@cvs.openbsd.org 2013/06/03 00:03:18 |
| 90 | [mac.c] |
| 91 | force the MAC output to be 64-bit aligned so umac won't see unaligned |
| 92 | accesses on strict-alignment architectures. bz#2101, patch from |
| 93 | tomas.kuthan at oracle.com, ok djm@ |
Darren Tucker | 194454d | 2013-06-06 08:16:04 +1000 | [diff] [blame] | 94 | - dtucker@cvs.openbsd.org 2013/06/04 19:12:23 |
| 95 | [scp.c] |
| 96 | use MAXPATHLEN for buffer size instead of fixed value. ok markus |
Darren Tucker | ea64721 | 2013-06-06 08:19:09 +1000 | [diff] [blame] | 97 | - dtucker@cvs.openbsd.org 2013/06/04 20:42:36 |
| 98 | [sftp.c] |
| 99 | Make sftp's libedit interface marginally multibyte aware by building up |
| 100 | the quoted string by character instead of by byte. Prevents failures |
| 101 | when linked against a libedit built with wide character support (bz#1990). |
| 102 | "looks ok" djm |
Darren Tucker | 746e906 | 2013-06-06 08:20:13 +1000 | [diff] [blame] | 103 | - dtucker@cvs.openbsd.org 2013/06/05 02:07:29 |
| 104 | [mux.c] |
| 105 | fix leaks in mux error paths, from Zhenbo Xu, found by Melton. bz#1967, |
| 106 | ok djm |
Darren Tucker | 0cca17f | 2013-06-06 08:21:14 +1000 | [diff] [blame] | 107 | - dtucker@cvs.openbsd.org 2013/06/05 02:27:50 |
| 108 | [sshd.c] |
| 109 | When running sshd -D, close stderr unless we have explicitly requesting |
| 110 | logging to stderr. From james.hunt at ubuntu.com via bz#1976, djm's patch |
| 111 | so, err, ok dtucker. |
Darren Tucker | e52a260 | 2013-06-06 08:22:05 +1000 | [diff] [blame] | 112 | - dtucker@cvs.openbsd.org 2013/06/05 12:52:38 |
| 113 | [sshconnect2.c] |
| 114 | Fix memory leaks found by Zhenbo Xu and the Melton tool. bz#1967, ok djm |
Darren Tucker | 408eaf3 | 2013-06-06 08:22:46 +1000 | [diff] [blame] | 115 | - dtucker@cvs.openbsd.org 2013/06/05 22:00:28 |
| 116 | [readconf.c] |
| 117 | plug another memleak. bz#1967, from Zhenbo Xu, detected by Melton, ok djm |
Darren Tucker | ae133d4 | 2013-06-06 08:30:20 +1000 | [diff] [blame] | 118 | - (dtucker) [configure.ac sftp.c openbsd-compat/openbsd-compat.h] Cater for |
| 119 | platforms that don't have multibyte character support (specifically, |
| 120 | mblen). |
Darren Tucker | 2ea9eb7 | 2013-06-05 15:04:00 +1000 | [diff] [blame] | 121 | |
Tim Rice | 86211d1 | 2013-06-01 18:38:23 -0700 | [diff] [blame] | 122 | 20130602 |
| 123 | - (tim) [Makefile.in] Make Solaris, UnixWare, & OpenServer linkers happy |
| 124 | linking regress/modpipe. |
Darren Tucker | 00e1abb | 2013-06-02 23:46:24 +1000 | [diff] [blame] | 125 | - (dtucker) OpenBSD CVS Sync |
| 126 | - dtucker@cvs.openbsd.org 2013/06/02 13:33:05 |
| 127 | [progressmeter.c] |
| 128 | Add misc.h for monotime prototype. (ID sync only). |
Darren Tucker | 073f795 | 2013-06-02 23:47:11 +1000 | [diff] [blame] | 129 | - dtucker@cvs.openbsd.org 2013/06/02 13:35:58 |
| 130 | [ssh-agent.c] |
| 131 | Make parent_alive_interval time_t to avoid signed/unsigned comparison |
Darren Tucker | ef4901c | 2013-06-03 01:59:13 +1000 | [diff] [blame] | 132 | - (dtucker) [configure.ac] sys/un.h needs sys/socket.h on some platforms |
Darren Tucker | 898ac93 | 2013-06-03 02:03:25 +1000 | [diff] [blame] | 133 | to prevent noise from configure. Patch from Nathan Osman. (bz#2114). |
| 134 | - (dtucker) [configure.ac] bz#2111: don't try to use lastlog on Android. |
| 135 | Patch from Nathan Osman. |
Tim Rice | 5ab9b63 | 2013-06-02 14:05:48 -0700 | [diff] [blame] | 136 | - (tim) [configure.ac regress/Makefile] With rev 1.47 of test-exec.sh we |
| 137 | need a shell that can handle "[ file1 -nt file2 ]". Rather than keep |
| 138 | dealing with shell portability issues in regression tests, we let |
| 139 | configure find us a capable shell on those platforms with an old /bin/sh. |
Tim Rice | 01ec0af | 2013-06-02 14:31:27 -0700 | [diff] [blame] | 140 | - (tim) [aclocal.m4] Enhance OSSH_CHECK_CFLAG_COMPILE to check stderr. |
| 141 | feedback and ok dtucker |
Tim Rice | 3f3064c | 2013-06-02 15:13:09 -0700 | [diff] [blame] | 142 | - (tim) [regress/sftp-chroot.sh] skip if no sudo. ok dtucker |
Darren Tucker | 0b43ffe | 2013-06-03 09:30:44 +1000 | [diff] [blame] | 143 | - (dtucker) [configure.ac] Some platforms need sys/types.h before sys/un.h. |
Darren Tucker | 16cac19 | 2013-06-04 12:55:24 +1000 | [diff] [blame] | 144 | - (dtucker) [configure.ac] Some other platforms need sys/types.h before |
| 145 | sys/socket.h. |
Tim Rice | 86211d1 | 2013-06-01 18:38:23 -0700 | [diff] [blame] | 146 | |
Darren Tucker | c0c3373 | 2013-06-02 06:28:03 +1000 | [diff] [blame] | 147 | 20130601 |
| 148 | - (dtucker) [configure.ac openbsd-compat/xcrypt.c] bz#2112: fall back to |
Darren Tucker | 65cf740 | 2013-06-02 09:11:19 +1000 | [diff] [blame] | 149 | using openssl's DES_crypt function on platorms that don't have a native |
Darren Tucker | c0c3373 | 2013-06-02 06:28:03 +1000 | [diff] [blame] | 150 | one, eg Android. Based on a patch from Nathan Osman. |
Darren Tucker | c7aad00 | 2013-06-02 07:18:47 +1000 | [diff] [blame] | 151 | - (dtucker) [configure.ac defines.h] Test for fd_mask, howmany and NFDBITS |
| 152 | rather than trying to enumerate the plaforms that don't have them. |
| 153 | Based on a patch from Nathan Osman, with help from tim@. |
Darren Tucker | a627d42 | 2013-06-02 07:31:17 +1000 | [diff] [blame] | 154 | - (dtucker) OpenBSD CVS Sync |
| 155 | - djm@cvs.openbsd.org 2013/05/17 00:13:13 |
| 156 | [xmalloc.h cipher.c sftp-glob.c ssh-keyscan.c ssh.c sftp-common.c |
| 157 | ssh-ecdsa.c auth2-chall.c compat.c readconf.c kexgexs.c monitor.c |
| 158 | gss-genr.c cipher-3des1.c kex.c monitor_wrap.c ssh-pkcs11-client.c |
| 159 | auth-options.c rsa.c auth2-pubkey.c sftp.c hostfile.c auth2.c |
| 160 | servconf.c auth.c authfile.c xmalloc.c uuencode.c sftp-client.c |
| 161 | auth2-gss.c sftp-server.c bufaux.c mac.c session.c jpake.c kexgexc.c |
| 162 | sshconnect.c auth-chall.c auth2-passwd.c sshconnect1.c buffer.c |
| 163 | kexecdhs.c kexdhs.c ssh-rsa.c auth1.c ssh-pkcs11.c auth2-kbdint.c |
| 164 | kexdhc.c sshd.c umac.c ssh-dss.c auth2-jpake.c bufbn.c clientloop.c |
| 165 | monitor_mm.c scp.c roaming_client.c serverloop.c key.c auth-rsa.c |
| 166 | ssh-pkcs11-helper.c ssh-keysign.c ssh-keygen.c match.c channels.c |
| 167 | sshconnect2.c addrmatch.c mux.c canohost.c kexecdhc.c schnorr.c |
| 168 | ssh-add.c misc.c auth2-hostbased.c ssh-agent.c bufec.c groupaccess.c |
| 169 | dns.c packet.c readpass.c authfd.c moduli.c] |
| 170 | bye, bye xfree(); ok markus@ |
Darren Tucker | 74836ae | 2013-06-02 07:32:00 +1000 | [diff] [blame] | 171 | - djm@cvs.openbsd.org 2013/05/19 02:38:28 |
| 172 | [auth2-pubkey.c] |
| 173 | fix failure to recognise cert-authority keys if a key of a different type |
| 174 | appeared in authorized_keys before it; ok markus@ |
Darren Tucker | 0acca37 | 2013-06-02 07:41:51 +1000 | [diff] [blame] | 175 | - djm@cvs.openbsd.org 2013/05/19 02:42:42 |
| 176 | [auth.h auth.c key.c monitor.c auth-rsa.c auth2.c auth1.c key.h] |
| 177 | Standardise logging of supplemental information during userauth. Keys |
| 178 | and ruser is now logged in the auth success/failure message alongside |
| 179 | the local username, remote host/port and protocol in use. Certificates |
| 180 | contents and CA are logged too. |
| 181 | Pushing all logging onto a single line simplifies log analysis as it is |
| 182 | no longer necessary to relate information scattered across multiple log |
| 183 | entries. "I like it" markus@ |
Darren Tucker | 5511925 | 2013-06-02 07:43:59 +1000 | [diff] [blame] | 184 | - dtucker@cvs.openbsd.org 2013/05/31 12:28:10 |
| 185 | [ssh-agent.c] |
| 186 | Use time_t where appropriate. ok djm |
Darren Tucker | b759c9c | 2013-06-02 07:46:16 +1000 | [diff] [blame] | 187 | - dtucker@cvs.openbsd.org 2013/06/01 13:15:52 |
| 188 | [ssh-agent.c clientloop.c misc.h packet.c progressmeter.c misc.c |
| 189 | channels.c sandbox-systrace.c] |
| 190 | Use clock_gettime(CLOCK_MONOTONIC ...) for ssh timers so that things like |
| 191 | keepalives and rekeying will work properly over clock steps. Suggested by |
| 192 | markus@, "looks good" djm@. |
Darren Tucker | 3750fce | 2013-06-02 07:52:21 +1000 | [diff] [blame] | 193 | - dtucker@cvs.openbsd.org 2013/06/01 20:59:25 |
| 194 | [scp.c sftp-client.c] |
| 195 | Replace S_IWRITE, which isn't standardized, with S_IWUSR, which is. Patch |
| 196 | from Nathan Osman via bz#2085. ok deraadt. |
Darren Tucker | c9a1991 | 2013-06-02 08:37:05 +1000 | [diff] [blame] | 197 | - dtucker@cvs.openbsd.org 2013/06/01 22:34:50 |
| 198 | [sftp-client.c] |
| 199 | Update progressmeter when data is acked, not when it's sent. bz#2108, from |
| 200 | Debian via Colin Watson, ok djm@ |
Darren Tucker | f60845f | 2013-06-02 08:07:31 +1000 | [diff] [blame] | 201 | - (dtucker) [M auth-chall.c auth-krb5.c auth-pam.c cipher-aes.c cipher-ctr.c |
| 202 | groupaccess.c loginrec.c monitor.c monitor_wrap.c session.c sshd.c |
| 203 | sshlogin.c uidswap.c openbsd-compat/bsd-cygwin_util.c |
| 204 | openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/port-aix.c |
| 205 | openbsd-compat/port-linux.c] Replace portable-specific instances of xfree |
| 206 | with the equivalent calls to free. |
Darren Tucker | a710891 | 2013-06-02 08:18:31 +1000 | [diff] [blame] | 207 | - (dtucker) [configure.ac misc.c] Look for clock_gettime in librt and fall |
| 208 | back to time(NULL) if we can't find it anywhere. |
Darren Tucker | e9887d1 | 2013-06-02 09:17:09 +1000 | [diff] [blame] | 209 | - (dtucker) [sandbox-seccomp-filter.c] Allow clock_gettimeofday. |
Darren Tucker | c0c3373 | 2013-06-02 06:28:03 +1000 | [diff] [blame] | 210 | |
| 211 | 20130529 |
Darren Tucker | efdf534 | 2013-05-30 08:29:08 +1000 | [diff] [blame] | 212 | - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] bz#2087: Add a null |
| 213 | implementation of endgrent for platforms that don't have it (eg Android). |
| 214 | Loosely based on a patch from Nathan Osman, ok djm |
Darren Tucker | c0c3373 | 2013-06-02 06:28:03 +1000 | [diff] [blame] | 215 | |
Darren Tucker | 712de4d | 2013-05-17 09:07:12 +1000 | [diff] [blame] | 216 | 20130517 |
| 217 | - (dtucker) OpenBSD CVS Sync |
| 218 | - djm@cvs.openbsd.org 2013/03/07 00:20:34 |
| 219 | [regress/proxy-connect.sh] |
| 220 | repeat test with a style appended to the username |
Darren Tucker | 7c8b1e7 | 2013-05-17 09:10:20 +1000 | [diff] [blame] | 221 | - dtucker@cvs.openbsd.org 2013/03/23 11:09:43 |
Darren Tucker | 7512902 | 2013-05-17 09:19:10 +1000 | [diff] [blame] | 222 | [regress/test-exec.sh] |
Darren Tucker | 7c8b1e7 | 2013-05-17 09:10:20 +1000 | [diff] [blame] | 223 | Only regenerate host keys if they don't exist or if ssh-keygen has changed |
| 224 | since they were. Reduces test runtime by 5-30% depending on machine |
| 225 | speed. |
Darren Tucker | 7512902 | 2013-05-17 09:19:10 +1000 | [diff] [blame] | 226 | - dtucker@cvs.openbsd.org 2013/04/06 06:00:22 |
| 227 | [regress/rekey.sh regress/test-exec.sh regress/integrity.sh |
| 228 | regress/multiplex.sh Makefile regress/cfgmatch.sh] |
| 229 | Split the regress log into 3 parts: the debug output from ssh, the debug |
| 230 | log from sshd and the output from the client command (ssh, scp or sftp). |
| 231 | Somewhat functional now, will become more useful when ssh/sshd -E is added. |
Darren Tucker | dfea3bc | 2013-05-17 09:31:39 +1000 | [diff] [blame] | 232 | - dtucker@cvs.openbsd.org 2013/04/07 02:16:03 |
| 233 | [regress/Makefile regress/rekey.sh regress/integrity.sh |
| 234 | regress/sshd-log-wrapper.sh regress/forwarding.sh regress/test-exec.sh] |
| 235 | use -E option for ssh and sshd to write debuging logs to ssh{,d}.log and |
| 236 | save the output from any failing tests. If a test fails the debug output |
| 237 | from ssh and sshd for the failing tests (and only the failing tests) should |
| 238 | be available in failed-ssh{,d}.log. |
Darren Tucker | f3568fc | 2013-05-17 09:35:26 +1000 | [diff] [blame] | 239 | - djm@cvs.openbsd.org 2013/04/18 02:46:12 |
Darren Tucker | 40aaff7 | 2013-05-17 09:36:20 +1000 | [diff] [blame] | 240 | [regress/Makefile regress/sftp-chroot.sh] |
Darren Tucker | f3568fc | 2013-05-17 09:35:26 +1000 | [diff] [blame] | 241 | test sshd ChrootDirectory+internal-sftp; feedback & ok dtucker@ |
Darren Tucker | 40aaff7 | 2013-05-17 09:36:20 +1000 | [diff] [blame] | 242 | - dtucker@cvs.openbsd.org 2013/04/22 07:23:08 |
Darren Tucker | a4df65b | 2013-05-17 09:37:31 +1000 | [diff] [blame] | 243 | [regress/multiplex.sh] |
Darren Tucker | 40aaff7 | 2013-05-17 09:36:20 +1000 | [diff] [blame] | 244 | Write mux master logs to regress.log instead of ssh.log to keep separate |
Darren Tucker | 5e95173 | 2013-05-17 09:41:33 +1000 | [diff] [blame] | 245 | - djm@cvs.openbsd.org 2013/05/10 03:46:14 |
Darren Tucker | c31c872 | 2013-05-17 09:43:33 +1000 | [diff] [blame] | 246 | [regress/modpipe.c] |
Darren Tucker | 5e95173 | 2013-05-17 09:41:33 +1000 | [diff] [blame] | 247 | sync some portability changes from portable OpenSSH (id sync only) |
Darren Tucker | a8a62fc | 2013-05-17 09:42:34 +1000 | [diff] [blame] | 248 | - dtucker@cvs.openbsd.org 2013/05/16 02:10:35 |
Darren Tucker | c31c872 | 2013-05-17 09:43:33 +1000 | [diff] [blame] | 249 | [regress/rekey.sh] |
Darren Tucker | a8a62fc | 2013-05-17 09:42:34 +1000 | [diff] [blame] | 250 | Add test for time-based rekeying |
Darren Tucker | c31c872 | 2013-05-17 09:43:33 +1000 | [diff] [blame] | 251 | - dtucker@cvs.openbsd.org 2013/05/16 03:33:30 |
| 252 | [regress/rekey.sh] |
| 253 | test rekeying when there's no data being transferred |
Darren Tucker | 14490fe | 2013-05-17 09:44:20 +1000 | [diff] [blame] | 254 | - dtucker@cvs.openbsd.org 2013/05/16 04:26:10 |
| 255 | [regress/rekey.sh] |
| 256 | add server-side rekey test |
Darren Tucker | 982b0cb | 2013-05-17 09:45:12 +1000 | [diff] [blame] | 257 | - dtucker@cvs.openbsd.org 2013/05/16 05:48:31 |
| 258 | [regress/rekey.sh] |
| 259 | add tests for RekeyLimit parsing |
Darren Tucker | 56347ef | 2013-05-17 13:28:36 +1000 | [diff] [blame] | 260 | - dtucker@cvs.openbsd.org 2013/05/17 00:37:40 |
| 261 | [regress/agent.sh regress/keytype.sh regress/cfgmatch.sh |
| 262 | regress/forcecommand.sh regress/proto-version.sh regress/test-exec.sh |
| 263 | regress/cipher-speed.sh regress/cert-hostkey.sh regress/cert-userkey.sh |
| 264 | regress/ssh-com.sh] |
| 265 | replace 'echo -n' with 'printf' since it's more portable |
| 266 | also remove "echon" hack. |
Darren Tucker | b8b96b0 | 2013-05-17 14:46:20 +1000 | [diff] [blame] | 267 | - dtucker@cvs.openbsd.org 2013/05/17 01:16:09 |
| 268 | [regress/agent-timeout.sh] |
| 269 | Pull back some portability changes from -portable: |
| 270 | - TIMEOUT is a read-only variable in some shells |
| 271 | - not all greps have -q so redirect to /dev/null instead. |
| 272 | (ID sync only) |
Darren Tucker | 34035be | 2013-05-17 14:47:51 +1000 | [diff] [blame] | 273 | - dtucker@cvs.openbsd.org 2013/05/17 01:32:11 |
| 274 | [regress/integrity.sh] |
| 275 | don't print output from ssh before getting it (it's available in ssh.log) |
Darren Tucker | 59d928d | 2013-05-17 15:32:29 +1000 | [diff] [blame] | 276 | - dtucker@cvs.openbsd.org 2013/05/17 04:29:14 |
| 277 | [regress/sftp.sh regress/putty-ciphers.sh regress/cipher-speed.sh |
| 278 | regress/test-exec.sh regress/sftp-batch.sh regress/dynamic-forward.sh |
| 279 | regress/putty-transfer.sh regress/conch-ciphers.sh regress/sftp-cmds.sh |
| 280 | regress/scp.sh regress/ssh-com-sftp.sh regress/rekey.sh |
| 281 | regress/putty-kex.sh regress/stderr-data.sh regress/stderr-after-eof.sh |
| 282 | regress/sftp-badcmds.sh regress/reexec.sh regress/ssh-com-client.sh |
| 283 | regress/sftp-chroot.sh regress/forwarding.sh regress/transfer.sh |
| 284 | regress/multiplex.sh] |
| 285 | Move the setting of DATA and COPY into test-exec.sh |
Darren Tucker | dd66917 | 2013-05-17 20:39:57 +1000 | [diff] [blame] | 286 | - dtucker@cvs.openbsd.org 2013/05/17 10:16:26 |
| 287 | [regress/try-ciphers.sh] |
| 288 | use expr for math to keep diffs vs portable down |
| 289 | (id sync only) |
Darren Tucker | 05b5e51 | 2013-05-17 20:41:07 +1000 | [diff] [blame] | 290 | - dtucker@cvs.openbsd.org 2013/05/17 10:23:52 |
| 291 | [regress/login-timeout.sh regress/reexec.sh regress/test-exec.sh] |
| 292 | Use SUDO when cat'ing pid files and running the sshd log wrapper so that |
| 293 | it works with a restrictive umask and the pid files are not world readable. |
| 294 | Changes from -portable. (id sync only) |
Darren Tucker | 1466bd2 | 2013-05-17 20:42:05 +1000 | [diff] [blame] | 295 | - dtucker@cvs.openbsd.org 2013/05/17 10:24:48 |
Darren Tucker | 438f60e | 2013-05-17 20:43:13 +1000 | [diff] [blame] | 296 | [regress/localcommand.sh] |
Darren Tucker | 1466bd2 | 2013-05-17 20:42:05 +1000 | [diff] [blame] | 297 | use backticks for portability. (id sync only) |
Darren Tucker | 438f60e | 2013-05-17 20:43:13 +1000 | [diff] [blame] | 298 | - dtucker@cvs.openbsd.org 2013/05/17 10:26:26 |
| 299 | [regress/sftp-badcmds.sh] |
| 300 | remove unused BATCH variable. (id sync only) |
Darren Tucker | 98989eb | 2013-05-17 20:44:09 +1000 | [diff] [blame] | 301 | - dtucker@cvs.openbsd.org 2013/05/17 10:28:11 |
| 302 | [regress/sftp.sh] |
| 303 | only compare copied data if sftp succeeds. from portable (id sync only) |
Darren Tucker | 00478d3 | 2013-05-17 20:45:06 +1000 | [diff] [blame] | 304 | - dtucker@cvs.openbsd.org 2013/05/17 10:30:07 |
| 305 | [regress/test-exec.sh] |
| 306 | wait a bit longer for startup and use case for absolute path. |
| 307 | from portable (id sync only) |
Darren Tucker | 62ee222 | 2013-05-17 20:46:00 +1000 | [diff] [blame] | 308 | - dtucker@cvs.openbsd.org 2013/05/17 10:33:09 |
| 309 | [regress/agent-getpeereid.sh] |
| 310 | don't redirect stdout from sudo. from portable (id sync only) |
Darren Tucker | 0a404b0 | 2013-05-17 20:47:29 +1000 | [diff] [blame] | 311 | - dtucker@cvs.openbsd.org 2013/05/17 10:34:30 |
| 312 | [regress/portnum.sh] |
| 313 | use a more portable negated if structure. from portable (id sync only) |
Darren Tucker | 9b42d32 | 2013-05-17 20:48:59 +1000 | [diff] [blame] | 314 | - dtucker@cvs.openbsd.org 2013/05/17 10:35:43 |
| 315 | [regress/scp.sh] |
| 316 | use a file extention that's not special on some platforms. from portable |
| 317 | (id sync only) |
Darren Tucker | 6e1e60c | 2013-05-17 11:23:41 +1000 | [diff] [blame] | 318 | - (dtucker) [regress/bsd.regress.mk] Remove unused file. We've never used it |
| 319 | in portable and it's long gone in openbsd. |
Darren Tucker | 91af05c | 2013-05-17 13:16:59 +1000 | [diff] [blame] | 320 | - (dtucker) [regress/integrity.sh]. Force fixed Diffie-Hellman key exchange |
| 321 | methods. When the openssl version doesn't support ECDH then next one on |
| 322 | the list is DH group exchange, but that causes a bit more traffic which can |
| 323 | mean that the tests flip bits in the initial exchange rather than the MACed |
| 324 | traffic and we get different errors to what the tests look for. |
Darren Tucker | 8654dd2 | 2013-05-17 16:03:48 +1000 | [diff] [blame] | 325 | - (dtucker) [openbsd-compat/getopt.h] Remove unneeded bits. |
Darren Tucker | 7f19323 | 2013-05-17 19:02:28 +1000 | [diff] [blame] | 326 | - (dtucker) [regress/cfgmatch.sh] Resync config file setup with openbsd. |
Darren Tucker | 96457a5 | 2013-05-17 19:03:38 +1000 | [diff] [blame] | 327 | - (dtucker) [regress/agent-getpeereid.sh] Resync spaces with openbsd. |
Darren Tucker | 5f1a89a | 2013-05-17 19:17:58 +1000 | [diff] [blame] | 328 | - (dtucker) [regress/integrity.sh regress/krl.sh regress/test-exec.sh] |
| 329 | Move the jot helper function to portable-specific part of test-exec.sh. |
Darren Tucker | 6f66981 | 2013-05-17 19:28:51 +1000 | [diff] [blame] | 330 | - (dtucker) [regress/test-exec.sh] Move the portable-specific functions |
| 331 | together and add a couple of missing lines from openbsd. |
Darren Tucker | f8d5b34 | 2013-05-17 19:53:25 +1000 | [diff] [blame] | 332 | - (dtucker) [regress/stderr-after-eof.sh regress/test-exec.sh] Move the md5 |
| 333 | helper function to the portable part of test-exec.sh. |
Darren Tucker | 9cc8ff7 | 2013-05-17 20:01:52 +1000 | [diff] [blame] | 334 | - (dtucker) [regress/runtests.sh] Remove obsolete test driver script. |
Darren Tucker | 044f32f | 2013-05-17 20:12:57 +1000 | [diff] [blame] | 335 | - (dtucker) [regress/cfgmatch.sh] Remove unneeded sleep renderd obsolete by |
| 336 | rev 1.6 which calls wait. |
Darren Tucker | 712de4d | 2013-05-17 09:07:12 +1000 | [diff] [blame] | 337 | |
Damien Miller | 6aa3eac | 2013-05-16 11:10:17 +1000 | [diff] [blame] | 338 | 20130516 |
| 339 | - (djm) [contrib/ssh-copy-id] Fix bug that could cause "rm *" to be |
| 340 | executed if mktemp failed; bz#2105 ok dtucker@ |
Darren Tucker | 2ca51bf | 2013-05-16 20:22:46 +1000 | [diff] [blame] | 341 | - (dtucker) OpenBSD CVS Sync |
| 342 | - tedu@cvs.openbsd.org 2013/04/23 17:49:45 |
| 343 | [misc.c] |
| 344 | use xasprintf instead of a series of strlcats and strdup. ok djm |
Darren Tucker | 026d9db | 2013-05-16 20:23:52 +1000 | [diff] [blame] | 345 | - tedu@cvs.openbsd.org 2013/04/24 16:01:46 |
| 346 | [misc.c] |
| 347 | remove extra parens noticed by nicm |
Darren Tucker | 5d8b702 | 2013-05-16 20:24:23 +1000 | [diff] [blame] | 348 | - dtucker@cvs.openbsd.org 2013/05/06 07:35:12 |
| 349 | [sftp-server.8] |
| 350 | Reference the version of the sftp draft we actually implement. ok djm@ |
Darren Tucker | 54da6be | 2013-05-16 20:25:04 +1000 | [diff] [blame] | 351 | - djm@cvs.openbsd.org 2013/05/10 03:40:07 |
| 352 | [sshconnect2.c] |
| 353 | fix bzero(ptr_to_struct, sizeof(ptr_to_struct)); bz#2100 from |
Darren Tucker | 7e831ed | 2013-05-16 20:25:40 +1000 | [diff] [blame] | 354 | Colin Watson |
Darren Tucker | caf0010 | 2013-05-16 20:26:18 +1000 | [diff] [blame] | 355 | - djm@cvs.openbsd.org 2013/05/10 04:08:01 |
| 356 | [key.c] |
| 357 | memleak in cert_free(), wasn't actually freeing the struct; |
| 358 | bz#2096 from shm AT digitalsun.pl |
Darren Tucker | 64c6fce | 2013-05-16 20:27:14 +1000 | [diff] [blame] | 359 | - dtucker@cvs.openbsd.org 2013/05/10 10:13:50 |
| 360 | [ssh-pkcs11-helper.c] |
| 361 | remove unused extern optarg. ok markus@ |
Darren Tucker | c53c2af | 2013-05-16 20:28:16 +1000 | [diff] [blame] | 362 | - dtucker@cvs.openbsd.org 2013/05/16 02:00:34 |
| 363 | [ssh_config sshconnect2.c packet.c readconf.h readconf.c clientloop.c |
| 364 | ssh_config.5 packet.h] |
| 365 | Add an optional second argument to RekeyLimit in the client to allow |
| 366 | rekeying based on elapsed time in addition to amount of traffic. |
| 367 | with djm@ jmc@, ok djm |
Darren Tucker | 5f96f3b | 2013-05-16 20:29:28 +1000 | [diff] [blame] | 368 | - dtucker@cvs.openbsd.org 2013/05/16 04:09:14 |
| 369 | [sshd_config.5 servconf.c servconf.h packet.c serverloop.c monitor.c sshd_config |
| 370 | sshd.c] Add RekeyLimit to sshd with the same syntax as the client allowing |
| 371 | rekeying based on traffic volume or time. ok djm@, help & ok jmc@ for the man |
| 372 | page. |
Darren Tucker | 0763698 | 2013-05-16 20:30:03 +1000 | [diff] [blame] | 373 | - djm@cvs.openbsd.org 2013/05/16 04:27:50 |
| 374 | [ssh_config.5 readconf.h readconf.c] |
| 375 | add the ability to ignore specific unrecognised ssh_config options; |
| 376 | bz#866; ok markus@ |
Darren Tucker | 63e0df2 | 2013-05-16 20:30:31 +1000 | [diff] [blame] | 377 | - jmc@cvs.openbsd.org 2013/05/16 06:28:45 |
| 378 | [ssh_config.5] |
| 379 | put IgnoreUnknown in the right place; |
Darren Tucker | 64d2294 | 2013-05-16 20:31:29 +1000 | [diff] [blame] | 380 | - jmc@cvs.openbsd.org 2013/05/16 06:30:06 |
| 381 | [sshd_config.5] |
| 382 | oops! avoid Xr to self; |
Darren Tucker | dbee308 | 2013-05-16 20:32:29 +1000 | [diff] [blame] | 383 | - dtucker@cvs.openbsd.org 2013/05/16 09:08:41 |
| 384 | [log.c scp.c sshd.c serverloop.c schnorr.c sftp.c] |
| 385 | Fix some "unused result" warnings found via clang and -portable. |
| 386 | ok markus@ |
Darren Tucker | b7ee852 | 2013-05-16 20:33:10 +1000 | [diff] [blame] | 387 | - dtucker@cvs.openbsd.org 2013/05/16 09:12:31 |
| 388 | [readconf.c servconf.c] |
| 389 | switch RekeyLimit traffic volume parsing to scan_scaled. ok djm@ |
Darren Tucker | 9113d0c | 2013-05-16 20:48:14 +1000 | [diff] [blame] | 390 | - dtucker@cvs.openbsd.org 2013/05/16 10:43:34 |
| 391 | [servconf.c readconf.c] |
| 392 | remove now-unused variables |
Darren Tucker | 09c0f03 | 2013-05-16 20:48:57 +1000 | [diff] [blame] | 393 | - dtucker@cvs.openbsd.org 2013/05/16 10:44:06 |
| 394 | [servconf.c] |
| 395 | remove another now-unused variable |
Darren Tucker | e194ba4 | 2013-05-16 20:47:31 +1000 | [diff] [blame] | 396 | - (dtucker) [configure.ac readconf.c servconf.c |
| 397 | openbsd-compat/openbsd-compat.h] Add compat bits for scan_scaled. |
Damien Miller | 6aa3eac | 2013-05-16 11:10:17 +1000 | [diff] [blame] | 398 | |
Darren Tucker | abbc7a7 | 2013-05-10 13:54:23 +1000 | [diff] [blame] | 399 | 20130510 |
| 400 | - (dtucker) [configure.ac] Enable -Wsizeof-pointer-memaccess if the compiler |
| 401 | supports it. Mentioned by Colin Watson in bz#2100, ok djm. |
Darren Tucker | 35b2fe9 | 2013-05-10 15:35:26 +1000 | [diff] [blame] | 402 | - (dtucker) [openbsd-compat/getopt.c] Factor out portibility changes to |
| 403 | getopt.c. Preprocessed source is identical other than line numbers. |
Darren Tucker | 3933202 | 2013-05-10 15:38:11 +1000 | [diff] [blame] | 404 | - (dtucker) [openbsd-compat/getopt_long.c] Import from OpenBSD. No |
| 405 | portability changes yet. |
Darren Tucker | ccfdfce | 2013-05-10 16:28:55 +1000 | [diff] [blame] | 406 | - (dtucker) [openbsd-compat/Makefile.in openbsd-compat/getopt.c |
| 407 | openbsd-compat/getopt_long.c regress/modpipe.c] Remove getopt.c, add |
| 408 | portability code to getopt_long.c and switch over Makefile and the ugly |
| 409 | hack in modpipe.c. Fixes bz#1448. |
Darren Tucker | 0abfb55 | 2013-05-10 18:08:49 +1000 | [diff] [blame] | 410 | - (dtucker) [openbsd-compat/getopt.h openbsd-compat/getopt_long.c |
| 411 | openbsd-compat/openbsd-compat.h] pull in getopt.h from openbsd and plumb |
| 412 | in to use it when we're using our own getopt. |
Darren Tucker | a75d247 | 2013-05-10 18:11:55 +1000 | [diff] [blame] | 413 | - (dtucker) [kex.c] Only include sha256 and ECC key exchange methods when the |
| 414 | underlying libraries support them. |
Darren Tucker | c54e3e0 | 2013-05-10 18:53:14 +1000 | [diff] [blame] | 415 | - (dtucker) [configure.ac] Add -Werror to the -Qunused-arguments test so |
| 416 | we don't get a warning on compilers that *don't* support it. Add |
| 417 | -Wno-unknown-warning-option. Move both to the start of the list for |
| 418 | maximum noise suppression. Tested with gcc 4.6.3, gcc 2.95.4 and clang 2.9. |
Darren Tucker | abbc7a7 | 2013-05-10 13:54:23 +1000 | [diff] [blame] | 419 | |
Damien Miller | 6332da2 | 2013-04-23 14:25:52 +1000 | [diff] [blame] | 420 | 20130423 |
| 421 | - (djm) [auth.c configure.ac misc.c monitor.c monitor_wrap.c] Support |
| 422 | platforms, such as Android, that lack struct passwd.pw_gecos. Report |
| 423 | and initial patch from Nathan Osman bz#2086; feedback tim@ ok dtucker@ |
Damien Miller | 62e9c4f | 2013-04-23 15:15:49 +1000 | [diff] [blame] | 424 | - (djm) OpenBSD CVS Sync |
| 425 | - markus@cvs.openbsd.org 2013/03/05 20:16:09 |
| 426 | [sshconnect2.c] |
| 427 | reset pubkey order on partial success; ok djm@ |
Damien Miller | 998cc56 | 2013-04-23 15:16:43 +1000 | [diff] [blame] | 428 | - djm@cvs.openbsd.org 2013/03/06 23:35:23 |
| 429 | [session.c] |
| 430 | fatal() when ChrootDirectory specified by running without root privileges; |
| 431 | ok markus@ |
Damien Miller | 5cbec4c | 2013-04-23 15:17:12 +1000 | [diff] [blame] | 432 | - djm@cvs.openbsd.org 2013/03/06 23:36:53 |
| 433 | [readconf.c] |
| 434 | g/c unused variable (-Wunused) |
Damien Miller | 4ce189d | 2013-04-23 15:17:52 +1000 | [diff] [blame] | 435 | - djm@cvs.openbsd.org 2013/03/07 00:19:59 |
| 436 | [auth2-pubkey.c monitor.c] |
| 437 | reconstruct the original username that was sent by the client, which may |
| 438 | have included a style (e.g. "root:skey") when checking public key |
| 439 | signatures. Fixes public key and hostbased auth when the client specified |
| 440 | a style; ok markus@ |
Damien Miller | 91a55f2 | 2013-04-23 15:18:10 +1000 | [diff] [blame] | 441 | - markus@cvs.openbsd.org 2013/03/07 19:27:25 |
| 442 | [auth.h auth2-chall.c auth2.c monitor.c sshd_config.5] |
| 443 | add submethod support to AuthenticationMethods; ok and freedback djm@ |
Damien Miller | 508b6c3 | 2013-04-23 15:18:28 +1000 | [diff] [blame] | 444 | - djm@cvs.openbsd.org 2013/03/08 06:32:58 |
| 445 | [ssh.c] |
| 446 | allow "ssh -f none ..." ok markus@ |
Damien Miller | d677ad1 | 2013-04-23 15:18:51 +1000 | [diff] [blame] | 447 | - djm@cvs.openbsd.org 2013/04/05 00:14:00 |
| 448 | [auth2-gss.c krl.c sshconnect2.c] |
| 449 | hush some {unused, printf type} warnings |
Damien Miller | 9f12b5d | 2013-04-23 15:19:11 +1000 | [diff] [blame] | 450 | - djm@cvs.openbsd.org 2013/04/05 00:31:49 |
| 451 | [pathnames.h] |
| 452 | use the existing _PATH_SSH_USER_RC define to construct the other |
| 453 | pathnames; bz#2077, ok dtucker@ (no binary change) |
Damien Miller | 172859c | 2013-04-23 15:19:27 +1000 | [diff] [blame] | 454 | - djm@cvs.openbsd.org 2013/04/05 00:58:51 |
| 455 | [mux.c] |
| 456 | cleanup mux-created channels that are in SSH_CHANNEL_OPENING state too |
| 457 | (in addition to ones already in OPEN); bz#2079, ok dtucker@ |
Damien Miller | 37f1c08 | 2013-04-23 15:20:43 +1000 | [diff] [blame] | 458 | - markus@cvs.openbsd.org 2013/04/06 16:07:00 |
| 459 | [channels.c sshd.c] |
| 460 | handle ECONNABORTED for accept(); ok deraadt some time ago... |
Damien Miller | 03d4d7e | 2013-04-23 15:21:06 +1000 | [diff] [blame] | 461 | - dtucker@cvs.openbsd.org 2013/04/07 02:10:33 |
| 462 | [log.c log.h ssh.1 ssh.c sshd.8 sshd.c] |
| 463 | Add -E option to ssh and sshd to append debugging logs to a specified file |
| 464 | instead of stderr or syslog. ok markus@, man page help jmc@ |
Damien Miller | 6901032 | 2013-04-23 15:21:24 +1000 | [diff] [blame] | 465 | - dtucker@cvs.openbsd.org 2013/04/07 09:40:27 |
| 466 | [sshd.8] |
| 467 | clarify -e text. suggested by & ok jmc@ |
Damien Miller | d5edefd | 2013-04-23 15:21:39 +1000 | [diff] [blame] | 468 | - djm@cvs.openbsd.org 2013/04/11 02:27:50 |
| 469 | [packet.c] |
| 470 | quiet disconnect notifications on the server from error() back to logit() |
| 471 | if it is a normal client closure; bz#2057 ok+feedback dtucker@ |
Damien Miller | f1a02ae | 2013-04-23 15:22:13 +1000 | [diff] [blame] | 472 | - dtucker@cvs.openbsd.org 2013/04/17 09:04:09 |
| 473 | [session.c] |
| 474 | revert rev 1.262; it fails because uid is already set here. ok djm@ |
Damien Miller | 9303e65 | 2013-04-23 15:22:40 +1000 | [diff] [blame] | 475 | - djm@cvs.openbsd.org 2013/04/18 02:16:07 |
| 476 | [sftp.c] |
| 477 | make "sftp -q" do what it says on the sticker: hush everything but errors; |
Damien Miller | 467b00c | 2013-04-23 15:23:07 +1000 | [diff] [blame] | 478 | ok dtucker@ |
| 479 | - djm@cvs.openbsd.org 2013/04/19 01:00:10 |
| 480 | [sshd_config.5] |
| 481 | document the requirment that the AuthorizedKeysCommand be owned by root; |
| 482 | ok dtucker@ markus@ |
Damien Miller | 0d6771b | 2013-04-23 15:23:24 +1000 | [diff] [blame] | 483 | - djm@cvs.openbsd.org 2013/04/19 01:01:00 |
| 484 | [ssh-keygen.c] |
| 485 | fix some memory leaks; bz#2088 ok dtucker@ |
Damien Miller | a56086b | 2013-04-23 15:24:18 +1000 | [diff] [blame] | 486 | - djm@cvs.openbsd.org 2013/04/19 01:03:01 |
| 487 | [session.c] |
| 488 | reintroduce 1.262 without the connection-killing bug: |
| 489 | fatal() when ChrootDirectory specified by running without root privileges; |
| 490 | ok markus@ |
Damien Miller | ea11119 | 2013-04-23 19:24:32 +1000 | [diff] [blame] | 491 | - djm@cvs.openbsd.org 2013/04/19 01:06:50 |
| 492 | [authfile.c cipher.c cipher.h kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c] |
| 493 | [key.c key.h mac.c mac.h packet.c ssh.1 ssh.c] |
| 494 | add the ability to query supported ciphers, MACs, key type and KEX |
| 495 | algorithms to ssh. Includes some refactoring of KEX and key type handling |
| 496 | to be table-driven; ok markus@ |
Damien Miller | 34bd20a | 2013-04-23 19:25:00 +1000 | [diff] [blame] | 497 | - djm@cvs.openbsd.org 2013/04/19 11:10:18 |
| 498 | [ssh.c] |
| 499 | add -Q to usage; reminded by jmc@ |
Damien Miller | f8b894e | 2013-04-23 19:25:29 +1000 | [diff] [blame] | 500 | - djm@cvs.openbsd.org 2013/04/19 12:07:08 |
| 501 | [kex.c] |
| 502 | remove duplicated list entry pointed out by naddy@ |
Damien Miller | bc02f16 | 2013-04-23 19:25:49 +1000 | [diff] [blame] | 503 | - dtucker@cvs.openbsd.org 2013/04/22 01:17:18 |
| 504 | [mux.c] |
| 505 | typo in debug output: evitval->exitval |
Damien Miller | 6332da2 | 2013-04-23 14:25:52 +1000 | [diff] [blame] | 506 | |
Damien Miller | bc68f24 | 2013-04-18 11:26:25 +1000 | [diff] [blame] | 507 | 20130418 |
| 508 | - (djm) [config.guess config.sub] Update to last versions before they switch |
| 509 | to GPL3. ok dtucker@ |
Darren Tucker | ce1c957 | 2013-04-18 21:36:19 +1000 | [diff] [blame] | 510 | - (dtucker) [configure.ac] Use -Qunused-arguments to suppress warnings from |
| 511 | unused argument warnings (in particular, -fno-builtin-memset) from clang. |
Damien Miller | bc68f24 | 2013-04-18 11:26:25 +1000 | [diff] [blame] | 512 | |
Darren Tucker | 1910478 | 2013-04-05 11:13:08 +1100 | [diff] [blame] | 513 | 20130404 |
| 514 | - (dtucker) OpenBSD CVS Sync |
| 515 | - dtucker@cvs.openbsd.org 2013/02/17 23:16:57 |
| 516 | [readconf.c ssh.c readconf.h sshconnect2.c] |
| 517 | Keep track of which IndentityFile options were manually supplied and which |
| 518 | were default options, and don't warn if the latter are missing. |
| 519 | ok markus@ |
Darren Tucker | f3c3814 | 2013-04-05 11:16:52 +1100 | [diff] [blame] | 520 | - dtucker@cvs.openbsd.org 2013/02/19 02:12:47 |
| 521 | [krl.c] |
| 522 | Remove bogus include. ok djm |
Darren Tucker | aefa368 | 2013-04-05 11:18:35 +1100 | [diff] [blame] | 523 | - dtucker@cvs.openbsd.org 2013/02/22 04:45:09 |
| 524 | [ssh.c readconf.c readconf.h] |
| 525 | Don't complain if IdentityFiles specified in system-wide configs are |
| 526 | missing. ok djm, deraadt. |
Darren Tucker | 5d1d954 | 2013-04-05 11:20:00 +1100 | [diff] [blame] | 527 | - markus@cvs.openbsd.org 2013/02/22 19:13:56 |
| 528 | [sshconnect.c] |
| 529 | support ProxyCommand=- (stdin/out already point to the proxy); ok djm@ |
Darren Tucker | 15fd19c | 2013-04-05 11:22:26 +1100 | [diff] [blame] | 530 | - djm@cvs.openbsd.org 2013/02/22 22:09:01 |
| 531 | [ssh.c] |
| 532 | Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier |
| 533 | version) |
Darren Tucker | 1910478 | 2013-04-05 11:13:08 +1100 | [diff] [blame] | 534 | |
Darren Tucker | c9627cd | 2013-04-01 12:40:48 +1100 | [diff] [blame] | 535 | 20130401 |
| 536 | - (dtucker) [openbsd-compat/bsd-cygwin_util.{c,h}] Don't include windows.h |
| 537 | to avoid conflicting definitions of __int64, adding the required bits. |
| 538 | Patch from Corinna Vinschen. |
| 539 | |
Tim Rice | 75db01d | 2013-03-22 10:14:32 -0700 | [diff] [blame] | 540 | 20120323 |
| 541 | - (tim) [Makefile.in] remove some duplication introduced in 20130220 commit. |
| 542 | |
Damien Miller | 83efe7c | 2013-03-22 10:17:36 +1100 | [diff] [blame] | 543 | 20120322 |
| 544 | - (djm) [contrib/ssh-copy-id contrib/ssh-copy-id.1] Updated to Phil |
| 545 | Hands' greatly revised version. |
Damien Miller | eed8dc2 | 2013-03-22 10:25:22 +1100 | [diff] [blame] | 546 | - (djm) Release 6.2p1 |
Darren Tucker | c8a0f27 | 2013-03-22 12:49:14 +1100 | [diff] [blame] | 547 | - (dtucker) [configure.ac] Add stdlib.h to zlib check for exit() prototype. |
Darren Tucker | 221b4b2 | 2013-03-22 12:51:09 +1100 | [diff] [blame] | 548 | - (dtucker) [includes.h] Check if _GNU_SOURCE is already defined before |
| 549 | defining it again. Prevents warnings if someone, eg, sets it in CFLAGS. |
Damien Miller | 83efe7c | 2013-03-22 10:17:36 +1100 | [diff] [blame] | 550 | |
Damien Miller | 63b4bcd | 2013-03-20 12:55:14 +1100 | [diff] [blame] | 551 | 20120318 |
| 552 | - (djm) [configure.ac log.c scp.c sshconnect2.c openbsd-compat/vis.c] |
| 553 | [openbsd-compat/vis.h] FreeBSD's strnvis isn't compatible with OpenBSD's |
| 554 | so mark it as broken. Patch from des AT des.no |
| 555 | |
Tim Rice | aa86c39 | 2013-03-16 20:55:46 -0700 | [diff] [blame] | 556 | 20120317 |
| 557 | - (tim) [configure.ac] OpenServer 5 wants lastlog even though it has none |
| 558 | of the bits the configure test looks for. |
| 559 | |
Damien Miller | a2438bb | 2013-03-15 10:23:07 +1100 | [diff] [blame] | 560 | 20120316 |
| 561 | - (djm) [configure.ac] Disable utmp, wtmp and/or lastlog if the platform |
| 562 | is unable to successfully compile them. Based on patch from des AT |
| 563 | des.no |
Damien Miller | f4db77d | 2013-03-15 10:34:25 +1100 | [diff] [blame] | 564 | - (djm) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h] |
| 565 | Add a usleep replacement for platforms that lack it; ok dtucker |
Damien Miller | 5852840 | 2013-03-15 11:22:37 +1100 | [diff] [blame] | 566 | - (djm) [session.c] FreeBSD needs setusercontext(..., LOGIN_SETUMASK) to |
| 567 | occur after UID switch; patch from John Marshall via des AT des.no; |
| 568 | ok dtucker@ |
Damien Miller | a2438bb | 2013-03-15 10:23:07 +1100 | [diff] [blame] | 569 | |
Darren Tucker | fe10a28 | 2013-03-12 11:19:40 +1100 | [diff] [blame] | 570 | 20120312 |
| 571 | - (dtucker) [regress/Makefile regress/cipher-speed.sh regress/test-exec.sh] |
| 572 | Improve portability of cipher-speed test, based mostly on a patch from |
| 573 | Iain Morgan. |
Darren Tucker | aa97d13 | 2013-03-12 11:31:05 +1100 | [diff] [blame] | 574 | - (dtucker) [auth.c configure.ac platform.c platform.h] Accept uid 2 ("bin") |
| 575 | in addition to root as an owner of system directories on AIX and HP-UX. |
| 576 | ok djm@ |
Darren Tucker | fe10a28 | 2013-03-12 11:19:40 +1100 | [diff] [blame] | 577 | |
Darren Tucker | b3cd503 | 2013-03-07 12:33:35 +1100 | [diff] [blame] | 578 | 20130307 |
| 579 | - (dtucker) [INSTALL] Bump documented autoconf version to what we're |
| 580 | currently using. |
Darren Tucker | 4d1a0fe | 2013-03-07 20:14:34 +1100 | [diff] [blame] | 581 | - (dtucker) [defines.h] Remove SIZEOF_CHAR bits since the test for it |
Darren Tucker | 9243ef0 | 2013-03-07 20:06:13 +1100 | [diff] [blame] | 582 | was removed in configure.ac rev 1.481 as it was redundant. |
Tim Rice | 2b6ea47 | 2013-03-07 07:37:13 -0800 | [diff] [blame] | 583 | - (tim) [Makefile.in] Add another missing $(EXEEXT) I should have seen 3 days |
| 584 | ago. |
Damien Miller | e4f4347 | 2013-03-08 12:14:22 +1100 | [diff] [blame] | 585 | - (djm) [configure.ac] Add a timeout to the select/rlimit test to give it a |
| 586 | chance to complete on broken systems; ok dtucker@ |
Darren Tucker | b3cd503 | 2013-03-07 12:33:35 +1100 | [diff] [blame] | 587 | |
Darren Tucker | 834a0d6 | 2013-03-06 14:06:48 +1100 | [diff] [blame] | 588 | 20130306 |
| 589 | - (dtucker) [regress/forward-control.sh] Wait longer for the forwarding |
| 590 | connection to start so that the test works on slower machines. |
Darren Tucker | ff008de | 2013-03-06 17:48:48 +1100 | [diff] [blame] | 591 | - (dtucker) [configure.ac] test that we can set number of file descriptors |
| 592 | to zero with setrlimit before enabling the rlimit sandbox. This affects |
| 593 | (at least) HPUX 11.11. |
Darren Tucker | 834a0d6 | 2013-03-06 14:06:48 +1100 | [diff] [blame] | 594 | |
Damien Miller | 43e5e60 | 2013-03-05 09:49:00 +1100 | [diff] [blame] | 595 | 20130305 |
| 596 | - (djm) [regress/modpipe.c] Compilation fix for AIX and parsing fix for |
| 597 | HP/UX. Spotted by Kevin Brott |
Darren Tucker | 5f0e54c | 2013-03-05 19:57:39 +1100 | [diff] [blame] | 598 | - (dtucker) [configure.ac] use "=" for shell test and not "==". Spotted by |
Darren Tucker | fef9f7c | 2013-03-05 20:02:24 +1100 | [diff] [blame] | 599 | Amit Kulkarni and Kevin Brott. |
Darren Tucker | 29c7151 | 2013-03-05 21:50:09 +1100 | [diff] [blame] | 600 | - (dtucker) [Makefile.in] Remove trailing "\" on PATHS, which caused obscure |
| 601 | build breakage on (at least) HP-UX 11.11. Found by Amit Kulkarni and Kevin |
| 602 | Brott. |
Tim Rice | ff8bda8 | 2013-03-05 14:23:58 -0800 | [diff] [blame] | 603 | - (tim) [Makefile.in] Add missing $(EXEEXT). Found by Roumen Petrov. |
Damien Miller | 43e5e60 | 2013-03-05 09:49:00 +1100 | [diff] [blame] | 604 | |
Damien Miller | c0cc7ce | 2013-02-27 10:48:18 +1100 | [diff] [blame] | 605 | 20130227 |
| 606 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 607 | [contrib/suse/openssh.spec] Crank version numbers |
Tim Rice | a514bc0 | 2013-02-26 19:35:26 -0800 | [diff] [blame] | 608 | - (tim) [regress/forward-control.sh] use sh in case login shell is csh. |
Tim Rice | f9e2060 | 2013-02-26 20:27:29 -0800 | [diff] [blame] | 609 | - (tim) [regress/integrity.sh] shell portability fix. |
Tim Rice | ada7e17 | 2013-02-26 21:49:09 -0800 | [diff] [blame] | 610 | - (tim) [regress/integrity.sh] keep old solaris awk from hanging. |
Tim Rice | 21f591b | 2013-02-26 22:48:31 -0800 | [diff] [blame] | 611 | - (tim) [regress/krl.sh] keep old solaris awk from hanging. |
Damien Miller | c0cc7ce | 2013-02-27 10:48:18 +1100 | [diff] [blame] | 612 | |
Damien Miller | 1e657d5 | 2013-02-26 18:58:06 +1100 | [diff] [blame] | 613 | 20130226 |
| 614 | - OpenBSD CVS Sync |
| 615 | - djm@cvs.openbsd.org 2013/02/20 08:27:50 |
| 616 | [integrity.sh] |
| 617 | Add an option to modpipe that warns if the modification offset it not |
| 618 | reached in it's stream and turn it on for t-integrity. This should catch |
| 619 | cases where the session is not fuzzed for being too short (cf. my last |
| 620 | "oops" commit) |
Damien Miller | 6c21bb8 | 2013-02-26 19:41:30 +1100 | [diff] [blame] | 621 | - (djm) [regress/integrity.sh] Run sshd via $SUDO; fixes tinderbox breakage |
| 622 | for UsePAM=yes configuration |
Damien Miller | 1e657d5 | 2013-02-26 18:58:06 +1100 | [diff] [blame] | 623 | |
Darren Tucker | 03978c6 | 2013-02-25 11:24:44 +1100 | [diff] [blame] | 624 | 20130225 |
| 625 | - (dtucker) [configure.ac ssh-gss.h] bz#2073: additional #includes needed |
| 626 | to use Solaris native GSS libs. Patch from Pierre Ossman. |
| 627 | |
Darren Tucker | a423fef | 2013-02-25 10:32:27 +1100 | [diff] [blame] | 628 | 20130223 |
Damien Miller | b87f6b7 | 2013-02-23 09:12:23 +1100 | [diff] [blame] | 629 | - (djm) [configure.ac includes.h loginrec.c mux.c sftp.c] Prefer |
| 630 | bsd/libutil.h to libutil.h to avoid deprecation warnings on Ubuntu. |
| 631 | ok tim |
| 632 | |
Darren Tucker | a423fef | 2013-02-25 10:32:27 +1100 | [diff] [blame] | 633 | 20130222 |
Darren Tucker | 964de18 | 2013-02-22 10:39:59 +1100 | [diff] [blame] | 634 | - (dtucker) [Makefile.in configure.ac] bz#2072: don't link krb5 libs to |
Darren Tucker | a2b5a4c | 2013-02-22 10:43:15 +1100 | [diff] [blame] | 635 | ssh(1) since they're not needed. Patch from Pierre Ossman, ok djm. |
| 636 | - (dtucker) [configure.ac] bz#2073: look for Solaris' differently-named |
| 637 | libgss too. Patch from Pierre Ossman, ok djm. |
Damien Miller | 91f40d8 | 2013-02-22 11:37:00 +1100 | [diff] [blame] | 638 | - (djm) [configure.ac sandbox-seccomp-filter.c] Support for Linux |
| 639 | seccomp-bpf sandbox on ARM. Patch from shawnlandden AT gmail.com; |
| 640 | ok dtucker |
Darren Tucker | 964de18 | 2013-02-22 10:39:59 +1100 | [diff] [blame] | 641 | |
Tim Rice | 0ec7423 | 2013-02-20 21:37:55 -0800 | [diff] [blame] | 642 | 20130221 |
| 643 | - (tim) [regress/forward-control.sh] shell portability fix. |
| 644 | |
Tim Rice | c08b3ef | 2013-02-19 11:53:29 -0800 | [diff] [blame] | 645 | 20130220 |
| 646 | - (tim) [regress/cipher-speed.sh regress/try-ciphers.sh] shell portability fix. |
Tim Rice | c31db8c | 2013-02-19 19:01:51 -0800 | [diff] [blame] | 647 | - (tim) [krl.c Makefile.in regress/Makefile regress/modpipe.c] remove unneeded |
| 648 | err.h include from krl.c. Additional portability fixes for modpipe. OK djm |
Damien Miller | 283e575 | 2013-02-20 21:13:27 +1100 | [diff] [blame] | 649 | - OpenBSD CVS Sync |
| 650 | - djm@cvs.openbsd.org 2013/02/20 08:27:50 |
| 651 | [regress/integrity.sh regress/modpipe.c] |
| 652 | Add an option to modpipe that warns if the modification offset it not |
| 653 | reached in it's stream and turn it on for t-integrity. This should catch |
| 654 | cases where the session is not fuzzed for being too short (cf. my last |
| 655 | "oops" commit) |
Damien Miller | 5acc6be | 2013-02-20 21:16:07 +1100 | [diff] [blame] | 656 | - djm@cvs.openbsd.org 2013/02/20 08:29:27 |
| 657 | [regress/modpipe.c] |
| 658 | s/Id/OpenBSD/ in RCS tag |
Tim Rice | c08b3ef | 2013-02-19 11:53:29 -0800 | [diff] [blame] | 659 | |
Damien Miller | 0dc3bc9 | 2013-02-19 09:28:32 +1100 | [diff] [blame] | 660 | 20130219 |
| 661 | - OpenBSD CVS Sync |
| 662 | - djm@cvs.openbsd.org 2013/02/18 22:26:47 |
| 663 | [integrity.sh] |
| 664 | crank the offset yet again; it was still fuzzing KEX one of Darren's |
| 665 | portable test hosts at 2800 |
Damien Miller | b3764e1 | 2013-02-19 13:15:01 +1100 | [diff] [blame] | 666 | - djm@cvs.openbsd.org 2013/02/19 02:14:09 |
| 667 | [integrity.sh] |
| 668 | oops, forgot to increase the output of the ssh command to ensure that |
| 669 | we actually reach $offset |
Damien Miller | dae85cc | 2013-02-19 14:27:44 +1100 | [diff] [blame] | 670 | - (djm) [regress/integrity.sh] Skip SHA2-based MACs on configurations that |
| 671 | lack support for SHA2. |
Tim Rice | c31db8c | 2013-02-19 19:01:51 -0800 | [diff] [blame] | 672 | - (djm) [regress/modpipe.c] Add local err, and errx functions for platforms |
| 673 | that do not have them. |
Damien Miller | 0dc3bc9 | 2013-02-19 09:28:32 +1100 | [diff] [blame] | 674 | |
Damien Miller | 33d5256 | 2013-02-18 10:18:05 +1100 | [diff] [blame] | 675 | 20130217 |
| 676 | - OpenBSD CVS Sync |
| 677 | - djm@cvs.openbsd.org 2013/02/17 23:16:55 |
| 678 | [integrity.sh] |
| 679 | make the ssh command generates some output to ensure that there are at |
| 680 | least offset+tries bytes in the stream. |
| 681 | |
Damien Miller | 5d7b956 | 2013-02-16 17:32:31 +1100 | [diff] [blame] | 682 | 20130216 |
| 683 | - OpenBSD CVS Sync |
| 684 | - djm@cvs.openbsd.org 2013/02/16 06:08:45 |
| 685 | [integrity.sh] |
| 686 | make sure the fuzz offset is actually past the end of KEX for all KEX |
| 687 | types. diffie-hellman-group-exchange-sha256 requires an offset around |
| 688 | 2700. Noticed via test failures in portable OpenSSH on platforms that |
| 689 | lack ECC and this the more byte-frugal ECDH KEX algorithms. |
| 690 | |
Damien Miller | 91edc1c | 2013-02-15 10:23:44 +1100 | [diff] [blame] | 691 | 20130215 |
| 692 | - (djm) [contrib/suse/rc.sshd] Use SSHD_BIN consistently; bz#2056 from |
| 693 | Iain Morgan |
Darren Tucker | 3c4a24c | 2013-02-15 11:41:35 +1100 | [diff] [blame] | 694 | - (dtucker) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h] |
| 695 | Use getpgrp() if we don't have getpgid() (old BSDs, maybe others). |
Darren Tucker | 8e6fb78 | 2013-02-15 12:13:01 +1100 | [diff] [blame] | 696 | - (dtucker) [configure.ac openbsd-compat/Makefile.in openbsd-compat/strtoull.c |
| 697 | openbsd-compat/openbsd-compat.h] Add strtoull to compat library for |
| 698 | platforms that don't have it. |
Darren Tucker | f32db83 | 2013-02-15 12:20:41 +1100 | [diff] [blame] | 699 | - (dtucker) [openbsd-compat/openbsd-compat.h] Add prototype for strtoul, |
| 700 | group strto* function prototypes together. |
Darren Tucker | 2991d28 | 2013-02-15 14:55:38 +1100 | [diff] [blame] | 701 | - (dtucker) [openbsd-compat/bsd-misc.c] Handle the case where setpgrp() takes |
| 702 | an argument. Pointed out by djm. |
Damien Miller | 4018dc0 | 2013-02-15 10:28:55 +1100 | [diff] [blame] | 703 | - (djm) OpenBSD CVS Sync |
| 704 | - djm@cvs.openbsd.org 2013/02/14 21:35:59 |
| 705 | [auth2-pubkey.c] |
| 706 | Correct error message that had a typo and was logging the wrong thing; |
| 707 | patch from Petr Lautrbach |
Damien Miller | 5ceddc3 | 2013-02-15 12:18:32 +1100 | [diff] [blame] | 708 | - dtucker@cvs.openbsd.org 2013/02/15 00:21:01 |
| 709 | [sshconnect2.c] |
| 710 | Warn more loudly if an IdentityFile provided by the user cannot be read. |
| 711 | bz #1981, ok djm@ |
Damien Miller | 91edc1c | 2013-02-15 10:23:44 +1100 | [diff] [blame] | 712 | |
Damien Miller | 2653f5c | 2013-02-14 10:14:51 +1100 | [diff] [blame] | 713 | 20130214 |
| 714 | - (djm) [regress/krl.sh] Don't use ecdsa keys in environment that lack ECC. |
Damien Miller | 6d77d6e | 2013-02-14 10:31:03 +1100 | [diff] [blame] | 715 | - (djm) [regress/krl.sh] typo; found by Iain Morgan |
Damien Miller | 57f9218 | 2013-02-14 10:32:33 +1100 | [diff] [blame] | 716 | - (djm) [regress/integrity.sh] Start fuzzing from offset 2500 (instead |
| 717 | of 2300) to avoid clobbering the end of (non-MAC'd) KEX. Verified by |
| 718 | Iain Morgan |
Damien Miller | 2653f5c | 2013-02-14 10:14:51 +1100 | [diff] [blame] | 719 | |
Damien Miller | ea07846 | 2013-02-12 10:54:37 +1100 | [diff] [blame] | 720 | 20130212 |
| 721 | - (djm) OpenBSD CVS Sync |
| 722 | - djm@cvs.openbsd.org 2013/01/24 21:45:37 |
| 723 | [krl.c] |
| 724 | fix handling of (unused) KRL signatures; skip string in correct buffer |
Damien Miller | 6045f5d | 2013-02-12 10:54:54 +1100 | [diff] [blame] | 725 | - djm@cvs.openbsd.org 2013/01/24 22:08:56 |
| 726 | [krl.c] |
| 727 | skip serial lookup when cert's serial number is zero |
Damien Miller | 377d9a4 | 2013-02-12 10:55:16 +1100 | [diff] [blame] | 728 | - krw@cvs.openbsd.org 2013/01/25 05:00:27 |
| 729 | [krl.c] |
| 730 | Revert last. Breaks due to likely typo. Let djm@ fix later. |
| 731 | ok djm@ via dlg@ |
Damien Miller | 60565bc | 2013-02-12 10:56:42 +1100 | [diff] [blame] | 732 | - djm@cvs.openbsd.org 2013/01/25 10:22:19 |
| 733 | [krl.c] |
| 734 | redo last commit without the vi-vomit that snuck in: |
| 735 | skip serial lookup when cert's serial number is zero |
| 736 | (now with 100% better comment) |
Damien Miller | f0a8ded | 2013-02-12 11:00:34 +1100 | [diff] [blame] | 737 | - djm@cvs.openbsd.org 2013/01/26 06:11:05 |
| 738 | [Makefile.in acss.c acss.h cipher-acss.c cipher.c] |
| 739 | [openbsd-compat/openssl-compat.h] |
| 740 | remove ACSS, now that it is gone from libcrypto too |
Damien Miller | 0cd2f8e | 2013-02-12 11:01:39 +1100 | [diff] [blame] | 741 | - djm@cvs.openbsd.org 2013/01/27 10:06:12 |
| 742 | [krl.c] |
| 743 | actually use the xrealloc() return value; spotted by xi.wang AT gmail.com |
Damien Miller | 1f583df | 2013-02-12 11:02:08 +1100 | [diff] [blame] | 744 | - dtucker@cvs.openbsd.org 2013/02/06 00:20:42 |
| 745 | [servconf.c sshd_config sshd_config.5] |
| 746 | Change default of MaxStartups to 10:30:100 to start doing random early |
| 747 | drop at 10 connections up to 100 connections. This will make it harder |
| 748 | to DoS as CPUs have come a long way since the original value was set |
| 749 | back in 2000. Prompted by nion at debian org, ok markus@ |
Damien Miller | 18de913 | 2013-02-12 11:02:27 +1100 | [diff] [blame] | 750 | - dtucker@cvs.openbsd.org 2013/02/06 00:22:21 |
| 751 | [auth.c] |
| 752 | Fix comment, from jfree.e1 at gmail |
Damien Miller | d6d9fa0 | 2013-02-12 11:02:46 +1100 | [diff] [blame] | 753 | - djm@cvs.openbsd.org 2013/02/08 00:41:12 |
| 754 | [sftp.c] |
| 755 | fix NULL deref when built without libedit and control characters |
| 756 | entered as command; debugging and patch from Iain Morgan an |
| 757 | Loganaden Velvindron in bz#1956 |
Damien Miller | fd05154 | 2013-02-12 11:03:10 +1100 | [diff] [blame] | 758 | - markus@cvs.openbsd.org 2013/02/10 21:19:34 |
| 759 | [version.h] |
| 760 | openssh 6.2 |
Damien Miller | 78d2271 | 2013-02-12 11:03:36 +1100 | [diff] [blame] | 761 | - djm@cvs.openbsd.org 2013/02/10 23:32:10 |
| 762 | [ssh-keygen.c] |
| 763 | append to moduli file when screening candidates rather than overwriting. |
| 764 | allows resumption of interrupted screen; patch from Christophe Garault |
| 765 | in bz#1957; ok dtucker@ |
Damien Miller | 894926e | 2013-02-12 11:03:58 +1100 | [diff] [blame] | 766 | - djm@cvs.openbsd.org 2013/02/10 23:35:24 |
| 767 | [packet.c] |
| 768 | record "Received disconnect" messages at ERROR rather than INFO priority, |
| 769 | since they are abnormal and result in a non-zero ssh exit status; patch |
| 770 | from Iain Morgan in bz#2057; ok dtucker@ |
Damien Miller | 22e8a1e | 2013-02-12 11:04:48 +1100 | [diff] [blame] | 771 | - dtucker@cvs.openbsd.org 2013/02/11 21:21:58 |
| 772 | [sshd.c] |
| 773 | Add openssl version to debug output similar to the client. ok markus@ |
Damien Miller | 58e2c5b | 2013-02-12 11:16:57 +1100 | [diff] [blame] | 774 | - djm@cvs.openbsd.org 2013/02/11 23:58:51 |
| 775 | [regress/try-ciphers.sh] |
| 776 | remove acss here too |
Damien Miller | 2f20de5 | 2013-02-12 11:31:38 +1100 | [diff] [blame] | 777 | - (djm) [regress/try-ciphers.sh] clean up CVS merge botch |
Damien Miller | ea07846 | 2013-02-12 10:54:37 +1100 | [diff] [blame] | 778 | |
Damien Miller | b6f73b3 | 2013-02-11 10:39:12 +1100 | [diff] [blame] | 779 | 20130211 |
| 780 | - (djm) [configure.ac openbsd-compat/openssl-compat.h] Repair build on old |
| 781 | libcrypto that lacks EVP_CIPHER_CTX_ctrl |
| 782 | |
Damien Miller | e7f50e1 | 2013-02-08 10:49:37 +1100 | [diff] [blame] | 783 | 20130208 |
| 784 | - (djm) [contrib/redhat/sshd.init] treat RETVAL as an integer; |
| 785 | patch from Iain Morgan in bz#2059 |
Darren Tucker | 951b53b | 2013-02-08 11:50:09 +1100 | [diff] [blame] | 786 | - (dtucker) [configure.ac openbsd-compat/sys-tree.h] Test if compiler allows |
| 787 | __attribute__ on return values and work around if necessary. ok djm@ |
Damien Miller | e7f50e1 | 2013-02-08 10:49:37 +1100 | [diff] [blame] | 788 | |
| 789 | 20130207 |
Damien Miller | 5c3bbd7 | 2013-02-07 10:11:05 +1100 | [diff] [blame] | 790 | - (djm) [configure.ac] Don't probe seccomp capability of running kernel |
| 791 | at configure time; the seccomp sandbox will fall back to rlimit at |
| 792 | runtime anyway. Patch from plautrba AT redhat.com in bz#2011 |
| 793 | |
Damien Miller | da5cc5d | 2013-01-20 22:31:29 +1100 | [diff] [blame] | 794 | 20130120 |
| 795 | - (djm) [cipher-aes.c cipher-ctr.c openbsd-compat/openssl-compat.h] |
| 796 | Move prototypes for replacement ciphers to openssl-compat.h; fix EVP |
| 797 | prototypes for openssl-1.0.0-fips. |
Damien Miller | ac5542b | 2013-01-20 22:33:02 +1100 | [diff] [blame] | 798 | - (djm) OpenBSD CVS Sync |
| 799 | - jmc@cvs.openbsd.org 2013/01/18 07:57:47 |
| 800 | [ssh-keygen.1] |
| 801 | tweak previous; |
Damien Miller | 3d6d68b | 2013-01-20 22:33:23 +1100 | [diff] [blame] | 802 | - jmc@cvs.openbsd.org 2013/01/18 07:59:46 |
| 803 | [ssh-keygen.c] |
| 804 | -u before -V in usage(); |
Damien Miller | 72abeb7 | 2013-01-20 22:33:44 +1100 | [diff] [blame] | 805 | - jmc@cvs.openbsd.org 2013/01/18 08:00:49 |
| 806 | [sshd_config.5] |
| 807 | tweak previous; |
Damien Miller | 072fdcd | 2013-01-20 22:34:04 +1100 | [diff] [blame] | 808 | - jmc@cvs.openbsd.org 2013/01/18 08:39:04 |
| 809 | [ssh-keygen.1] |
| 810 | add -Q to the options list; ok djm |
Damien Miller | 881a7a2 | 2013-01-20 22:34:46 +1100 | [diff] [blame] | 811 | - jmc@cvs.openbsd.org 2013/01/18 21:48:43 |
| 812 | [ssh-keygen.1] |
| 813 | command-line (adj.) -> command line (n.); |
Damien Miller | a0a7ee8 | 2013-01-20 22:35:06 +1100 | [diff] [blame] | 814 | - jmc@cvs.openbsd.org 2013/01/19 07:13:25 |
| 815 | [ssh-keygen.1] |
| 816 | fix some formatting; ok djm |
Damien Miller | a7522d9 | 2013-01-20 22:35:31 +1100 | [diff] [blame] | 817 | - markus@cvs.openbsd.org 2013/01/19 12:34:55 |
| 818 | [krl.c] |
| 819 | RB_INSERT does not remove existing elments; ok djm@ |
Damien Miller | d60b210 | 2013-01-20 22:49:58 +1100 | [diff] [blame] | 820 | - (djm) [openbsd-compat/sys-tree.h] Sync with OpenBSD. krl.c needs newer |
| 821 | version. |
Damien Miller | dc75d1f | 2013-01-20 22:58:51 +1100 | [diff] [blame] | 822 | - (djm) [regress/krl.sh] replacement for jot; most platforms lack it |
Damien Miller | da5cc5d | 2013-01-20 22:31:29 +1100 | [diff] [blame] | 823 | |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 824 | 20130118 |
| 825 | - (djm) OpenBSD CVS Sync |
| 826 | - djm@cvs.openbsd.org 2013/01/17 23:00:01 |
| 827 | [auth.c key.c key.h ssh-keygen.1 ssh-keygen.c sshd_config.5] |
| 828 | [krl.c krl.h PROTOCOL.krl] |
| 829 | add support for Key Revocation Lists (KRLs). These are a compact way to |
| 830 | represent lists of revoked keys and certificates, taking as little as |
| 831 | a single bit of incremental cost to revoke a certificate by serial number. |
| 832 | KRLs are loaded via the existing RevokedKeys sshd_config option. |
| 833 | feedback and ok markus@ |
Damien Miller | ebafebd | 2013-01-18 11:51:56 +1100 | [diff] [blame] | 834 | - djm@cvs.openbsd.org 2013/01/18 00:45:29 |
| 835 | [regress/Makefile regress/cert-userkey.sh regress/krl.sh] |
| 836 | Tests for Key Revocation Lists (KRLs) |
Damien Miller | 13f5f76 | 2013-01-18 15:32:03 +1100 | [diff] [blame] | 837 | - djm@cvs.openbsd.org 2013/01/18 03:00:32 |
| 838 | [krl.c] |
| 839 | fix KRL generation bug for list sections |
Damien Miller | f3747bf | 2013-01-18 11:44:04 +1100 | [diff] [blame] | 840 | |
Damien Miller | b26699b | 2013-01-17 14:31:57 +1100 | [diff] [blame] | 841 | 20130117 |
| 842 | - (djm) [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh] |
| 843 | check for GCM support before testing GCM ciphers. |
| 844 | |
Damien Miller | c20eb8b | 2013-01-12 22:41:26 +1100 | [diff] [blame] | 845 | 20130112 |
| 846 | - (djm) OpenBSD CVS Sync |
| 847 | - djm@cvs.openbsd.org 2013/01/12 11:22:04 |
| 848 | [cipher.c] |
| 849 | improve error message for integrity failure in AES-GCM modes; ok markus@ |
Damien Miller | 846dc7f | 2013-01-12 22:46:26 +1100 | [diff] [blame] | 850 | - djm@cvs.openbsd.org 2013/01/12 11:23:53 |
| 851 | [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh] |
| 852 | test AES-GCM modes; feedback markus@ |
Damien Miller | efa1c95 | 2013-01-12 23:10:47 +1100 | [diff] [blame] | 853 | - (djm) [regress/integrity.sh] repair botched merge |
Damien Miller | c20eb8b | 2013-01-12 22:41:26 +1100 | [diff] [blame] | 854 | |
Damien Miller | 4e14a58 | 2013-01-09 15:54:48 +1100 | [diff] [blame] | 855 | 20130109 |
| 856 | - (djm) OpenBSD CVS Sync |
| 857 | - dtucker@cvs.openbsd.org 2012/12/14 05:26:43 |
| 858 | [auth.c] |
| 859 | use correct string in error message; from rustybsd at gmx.fr |
Damien Miller | 73298f4 | 2013-01-09 15:55:50 +1100 | [diff] [blame] | 860 | - djm@cvs.openbsd.org 2013/01/02 00:32:07 |
| 861 | [clientloop.c mux.c] |
| 862 | channel_setup_local_fwd_listener() returns 0 on failure, not -ve |
| 863 | bz#2055 reported by mathieu.lacage AT gmail.com |
Damien Miller | 697485d | 2013-01-09 15:56:13 +1100 | [diff] [blame] | 864 | - djm@cvs.openbsd.org 2013/01/02 00:33:49 |
| 865 | [PROTOCOL.agent] |
| 866 | correct format description for SSH_AGENTC_ADD_RSA_ID_CONSTRAINED |
| 867 | bz#2051 from david AT lechnology.com |
Damien Miller | 4413844 | 2013-01-09 15:56:45 +1100 | [diff] [blame] | 868 | - djm@cvs.openbsd.org 2013/01/03 05:49:36 |
| 869 | [servconf.h] |
| 870 | add a couple of ServerOptions members that should be copied to the privsep |
| 871 | child (for consistency, in this case they happen only to be accessed in |
| 872 | the monitor); ok dtucker@ |
Damien Miller | 3739c8f | 2013-01-09 15:57:16 +1100 | [diff] [blame] | 873 | - djm@cvs.openbsd.org 2013/01/03 12:49:01 |
| 874 | [PROTOCOL] |
| 875 | fix description of MAC calculation for EtM modes; ok markus@ |
Damien Miller | 502ab0e | 2013-01-09 15:57:36 +1100 | [diff] [blame] | 876 | - djm@cvs.openbsd.org 2013/01/03 12:54:49 |
| 877 | [sftp-server.8 sftp-server.c] |
| 878 | allow specification of an alternate start directory for sftp-server(8) |
| 879 | "I like this" markus@ |
Damien Miller | ec77c95 | 2013-01-09 15:58:00 +1100 | [diff] [blame] | 880 | - djm@cvs.openbsd.org 2013/01/03 23:22:58 |
| 881 | [ssh-keygen.c] |
| 882 | allow fingerprinting of keys hosted in PKCS#11 tokens: ssh-keygen -lD ... |
| 883 | ok markus@ |
Damien Miller | aa7ad30 | 2013-01-09 15:58:21 +1100 | [diff] [blame] | 884 | - jmc@cvs.openbsd.org 2013/01/04 19:26:38 |
| 885 | [sftp-server.8 sftp-server.c] |
| 886 | sftp-server.8: add argument name to -d |
| 887 | sftp-server.c: add -d to usage() |
| 888 | ok djm |
Damien Miller | 1d75abf | 2013-01-09 16:12:19 +1100 | [diff] [blame] | 889 | - markus@cvs.openbsd.org 2013/01/08 18:49:04 |
| 890 | [PROTOCOL authfile.c cipher.c cipher.h kex.c kex.h monitor_wrap.c] |
| 891 | [myproposal.h packet.c ssh_config.5 sshd_config.5] |
| 892 | support AES-GCM as defined in RFC 5647 (but with simpler KEX handling) |
| 893 | ok and feedback djm@ |
Damien Miller | 1422c08 | 2013-01-09 16:44:54 +1100 | [diff] [blame] | 894 | - djm@cvs.openbsd.org 2013/01/09 05:40:17 |
| 895 | [ssh-keygen.c] |
| 896 | correctly initialise fingerprint type for fingerprinting PKCS#11 keys |
Damien Miller | d522c68 | 2013-01-09 16:42:47 +1100 | [diff] [blame] | 897 | - (djm) [cipher.c configure.ac openbsd-compat/openssl-compat.h] |
| 898 | Fix merge botch, automatically detect AES-GCM in OpenSSL, move a little |
| 899 | cipher compat code to openssl-compat.h |
Damien Miller | 4e14a58 | 2013-01-09 15:54:48 +1100 | [diff] [blame] | 900 | |
Darren Tucker | 0fc7729 | 2012-12-17 15:59:42 +1100 | [diff] [blame] | 901 | 20121217 |
| 902 | - (dtucker) [Makefile.in] Add some scaffolding so that the new regress |
| 903 | tests will work with VPATH directories. |
| 904 | |
Damien Miller | 8c05da3 | 2012-12-13 07:18:59 +1100 | [diff] [blame] | 905 | 20121213 |
| 906 | - (djm) OpenBSD CVS Sync |
| 907 | - markus@cvs.openbsd.org 2012/12/12 16:45:52 |
| 908 | [packet.c] |
| 909 | reset incoming_packet buffer for each new packet in EtM-case, too; |
| 910 | this happens if packets are parsed only parially (e.g. ignore |
| 911 | messages sent when su/sudo turn off echo); noted by sthen/millert |
Damien Miller | 25a02b0 | 2012-12-13 08:18:56 +1100 | [diff] [blame] | 912 | - naddy@cvs.openbsd.org 2012/12/12 16:46:10 |
| 913 | [cipher.c] |
| 914 | use OpenSSL's EVP_aes_{128,192,256}_ctr() API and remove our hand-rolled |
| 915 | counter mode code; ok djm@ |
| 916 | - (djm) [configure.ac cipher-ctr.c] Adapt EVP AES CTR change to retain our |
| 917 | compat code for older OpenSSL |
Damien Miller | 13cbff1 | 2012-12-13 08:25:07 +1100 | [diff] [blame] | 918 | - (djm) [cipher.c] Fix missing prototype for compat code |
Damien Miller | 8c05da3 | 2012-12-13 07:18:59 +1100 | [diff] [blame] | 919 | |
Damien Miller | 6a1937e | 2012-12-12 10:44:38 +1100 | [diff] [blame] | 920 | 20121212 |
| 921 | - (djm) OpenBSD CVS Sync |
| 922 | - markus@cvs.openbsd.org 2012/12/11 22:16:21 |
| 923 | [monitor.c] |
| 924 | drain the log messages after receiving the keystate from the unpriv |
| 925 | child. otherwise it might block while sending. ok djm@ |
Damien Miller | af43a7a | 2012-12-12 10:46:31 +1100 | [diff] [blame] | 926 | - markus@cvs.openbsd.org 2012/12/11 22:31:18 |
| 927 | [PROTOCOL authfile.c cipher.c cipher.h kex.h mac.c myproposal.h] |
| 928 | [packet.c ssh_config.5 sshd_config.5] |
| 929 | add encrypt-then-mac (EtM) modes to openssh by defining new mac algorithms |
| 930 | that change the packet format and compute the MAC over the encrypted |
| 931 | message (including the packet size) instead of the plaintext data; |
| 932 | these EtM modes are considered more secure and used by default. |
| 933 | feedback and ok djm@ |
Damien Miller | 74f13bd | 2012-12-12 10:46:53 +1100 | [diff] [blame] | 934 | - sthen@cvs.openbsd.org 2012/12/11 22:51:45 |
| 935 | [mac.c] |
| 936 | fix typo, s/tem/etm in hmac-ripemd160-tem. ok markus@ |
Damien Miller | 1a45b63 | 2012-12-12 10:52:07 +1100 | [diff] [blame] | 937 | - markus@cvs.openbsd.org 2012/12/11 22:32:56 |
| 938 | [regress/try-ciphers.sh] |
| 939 | add etm modes |
Damien Miller | 1fb593a | 2012-12-12 10:54:37 +1100 | [diff] [blame] | 940 | - markus@cvs.openbsd.org 2012/12/11 22:42:11 |
| 941 | [regress/Makefile regress/modpipe.c regress/integrity.sh] |
| 942 | test the integrity of the packets; with djm@ |
Damien Miller | ec7ce9a | 2012-12-12 10:55:32 +1100 | [diff] [blame] | 943 | - markus@cvs.openbsd.org 2012/12/11 23:12:13 |
| 944 | [try-ciphers.sh] |
| 945 | add hmac-ripemd160-etm@openssh.com |
Damien Miller | 37834af | 2012-12-12 11:00:37 +1100 | [diff] [blame] | 946 | - (djm) [mac.c] fix merge botch |
Damien Miller | 37461d7 | 2012-12-12 12:37:32 +1100 | [diff] [blame] | 947 | - (djm) [regress/Makefile regress/integrity.sh] Make the integrity.sh test |
| 948 | work on platforms without 'jot' |
| 949 | - (djm) [regress/integrity.sh] Fix awk quoting, packet length skip |
Damien Miller | faabeb6 | 2012-12-12 12:51:54 +1100 | [diff] [blame] | 950 | - (djm) [regress/Makefile] fix t-exec rule |
Damien Miller | 6a1937e | 2012-12-12 10:44:38 +1100 | [diff] [blame] | 951 | |
Darren Tucker | 3dfb877 | 2012-12-07 13:03:10 +1100 | [diff] [blame] | 952 | 20121207 |
| 953 | - (dtucker) OpenBSD CVS Sync |
| 954 | - dtucker@cvs.openbsd.org 2012/12/06 06:06:54 |
| 955 | [regress/keys-command.sh] |
| 956 | Fix some problems with the keys-command test: |
| 957 | - use string comparison rather than numeric comparison |
| 958 | - check for existing KEY_COMMAND file and don't clobber if it exists |
| 959 | - clean up KEY_COMMAND file if we do create it. |
| 960 | - check that KEY_COMMAND is executable (which it won't be if eg /var/run |
| 961 | is mounted noexec). |
| 962 | ok djm. |
Darren Tucker | f9333d5 | 2012-12-07 13:06:13 +1100 | [diff] [blame] | 963 | - jmc@cvs.openbsd.org 2012/12/03 08:33:03 |
| 964 | [ssh-add.1 sshd_config.5] |
| 965 | tweak previous; |
Darren Tucker | 8a96522 | 2012-12-07 13:07:02 +1100 | [diff] [blame] | 966 | - markus@cvs.openbsd.org 2012/12/05 15:42:52 |
| 967 | [ssh-add.c] |
| 968 | prevent double-free of comment; ok djm@ |
Darren Tucker | 3e1027c | 2012-12-07 13:07:46 +1100 | [diff] [blame] | 969 | - dtucker@cvs.openbsd.org 2012/12/07 01:51:35 |
| 970 | [serverloop.c] |
| 971 | Cast signal to int for logging. A no-op on openbsd (they're always ints) |
| 972 | but will prevent warnings in portable. ok djm@ |
Darren Tucker | 3dfb877 | 2012-12-07 13:03:10 +1100 | [diff] [blame] | 973 | |
Tim Rice | 96ce9a1 | 2012-12-04 07:50:03 -0800 | [diff] [blame] | 974 | 20121205 |
| 975 | - (tim) [defines.h] Some platforms are missing ULLONG_MAX. Feedback djm@. |
| 976 | |
Damien Miller | cf6ef13 | 2012-12-03 09:37:56 +1100 | [diff] [blame] | 977 | 20121203 |
| 978 | - (djm) [openbsd-compat/sys-queue.h] Sync with OpenBSD to get |
| 979 | TAILQ_FOREACH_SAFE needed for upcoming changes. |
Damien Miller | cb6b68b | 2012-12-03 09:49:52 +1100 | [diff] [blame] | 980 | - (djm) OpenBSD CVS Sync |
| 981 | - djm@cvs.openbsd.org 2012/12/02 20:26:11 |
| 982 | [ssh_config.5 sshconnect2.c] |
| 983 | Make IdentitiesOnly apply to keys obtained from a PKCS11Provider. |
| 984 | This allows control of which keys are offered from tokens using |
| 985 | IdentityFile. ok markus@ |
Damien Miller | 33a8136 | 2012-12-03 09:50:24 +1100 | [diff] [blame] | 986 | - djm@cvs.openbsd.org 2012/12/02 20:42:15 |
| 987 | [ssh-add.1 ssh-add.c] |
| 988 | make deleting explicit keys "ssh-add -d" symmetric with adding keys - |
| 989 | try to delete the corresponding certificate too and respect the -k option |
| 990 | to allow deleting of the key only; feedback and ok markus@ |
Damien Miller | aa5b3f8 | 2012-12-03 09:50:54 +1100 | [diff] [blame] | 991 | - djm@cvs.openbsd.org 2012/12/02 20:46:11 |
| 992 | [auth-options.c channels.c servconf.c servconf.h serverloop.c session.c] |
| 993 | [sshd_config.5] |
| 994 | make AllowTcpForwarding accept "local" and "remote" in addition to its |
| 995 | current "yes"/"no" to allow the server to specify whether just local or |
| 996 | remote TCP forwarding is enabled. ok markus@ |
Damien Miller | fa51d8b | 2012-12-03 10:08:25 +1100 | [diff] [blame] | 997 | - dtucker@cvs.openbsd.org 2012/10/05 02:20:48 |
| 998 | [regress/cipher-speed.sh regress/try-ciphers.sh] |
| 999 | Add umac-128@openssh.com to the list of MACs to be tested |
Damien Miller | 6618e92 | 2012-12-03 10:09:04 +1100 | [diff] [blame] | 1000 | - djm@cvs.openbsd.org 2012/10/19 05:10:42 |
| 1001 | [regress/cert-userkey.sh] |
| 1002 | include a serial number when generating certs |
Damien Miller | 771c43c | 2012-12-03 10:12:13 +1100 | [diff] [blame] | 1003 | - djm@cvs.openbsd.org 2012/11/22 22:49:30 |
| 1004 | [regress/Makefile regress/keys-command.sh] |
| 1005 | regress for AuthorizedKeysCommand; hints from markus@ |
Damien Miller | 999bd2d | 2012-12-03 10:13:39 +1100 | [diff] [blame] | 1006 | - djm@cvs.openbsd.org 2012/12/02 20:47:48 |
| 1007 | [Makefile regress/forward-control.sh] |
| 1008 | regress for AllowTcpForwarding local/remote; ok markus@ |
Damien Miller | 55aca02 | 2012-12-03 11:25:30 +1100 | [diff] [blame] | 1009 | - djm@cvs.openbsd.org 2012/12/03 00:14:06 |
| 1010 | [auth2-chall.c ssh-keygen.c] |
| 1011 | Fix compilation with -Wall -Werror (trivial type fixes) |
Damien Miller | 03af12e | 2012-12-03 11:55:53 +1100 | [diff] [blame] | 1012 | - (djm) [configure.ac] Turn on -g for gcc compilers. Helps pre-installation |
| 1013 | debugging. ok dtucker@ |
Damien Miller | 8b48982 | 2012-12-03 12:35:55 +1100 | [diff] [blame] | 1014 | - (djm) [configure.ac] Revert previous. configure.ac already does this |
| 1015 | for us. |
Damien Miller | cf6ef13 | 2012-12-03 09:37:56 +1100 | [diff] [blame] | 1016 | |
Damien Miller | 1e85469 | 2012-11-14 19:04:02 +1100 | [diff] [blame] | 1017 | 20121114 |
| 1018 | - (djm) OpenBSD CVS Sync |
| 1019 | - djm@cvs.openbsd.org 2012/11/14 02:24:27 |
| 1020 | [auth2-pubkey.c] |
| 1021 | fix username passed to helper program |
| 1022 | prepare stdio fds before closefrom() |
| 1023 | spotted by landry@ |
Damien Miller | 6f3b362 | 2012-11-14 19:04:33 +1100 | [diff] [blame] | 1024 | - djm@cvs.openbsd.org 2012/11/14 02:32:15 |
| 1025 | [ssh-keygen.c] |
| 1026 | allow the full range of unsigned serial numbers; 'fine' deraadt@ |
Damien Miller | 15b05cf | 2012-12-03 09:53:20 +1100 | [diff] [blame] | 1027 | - djm@cvs.openbsd.org 2012/12/02 20:34:10 |
| 1028 | [auth.c auth.h auth1.c auth2-chall.c auth2-gss.c auth2-jpake.c auth2.c] |
| 1029 | [monitor.c monitor.h] |
| 1030 | Fixes logging of partial authentication when privsep is enabled |
| 1031 | Previously, we recorded "Failed xxx" since we reset authenticated before |
| 1032 | calling auth_log() in auth2.c. This adds an explcit "Partial" state. |
| 1033 | |
| 1034 | Add a "submethod" to auth_log() to report which submethod is used |
| 1035 | for keyboard-interactive. |
| 1036 | |
| 1037 | Fix multiple authentication when one of the methods is |
| 1038 | keyboard-interactive. |
| 1039 | |
| 1040 | ok markus@ |
Damien Miller | d27a026 | 2012-12-03 10:06:37 +1100 | [diff] [blame] | 1041 | - dtucker@cvs.openbsd.org 2012/10/05 02:05:30 |
| 1042 | [regress/multiplex.sh] |
| 1043 | Use 'kill -0' to test for the presence of a pid since it's more portable |
Damien Miller | 1e85469 | 2012-11-14 19:04:02 +1100 | [diff] [blame] | 1044 | |
Damien Miller | d5c3d4c | 2012-11-07 08:35:38 +1100 | [diff] [blame] | 1045 | 20121107 |
| 1046 | - (djm) OpenBSD CVS Sync |
| 1047 | - eric@cvs.openbsd.org 2011/11/28 08:46:27 |
| 1048 | [moduli.5] |
| 1049 | fix formula |
| 1050 | ok djm@ |
Damien Miller | 0120c41 | 2012-11-07 08:36:00 +1100 | [diff] [blame] | 1051 | - jmc@cvs.openbsd.org 2012/09/26 17:34:38 |
| 1052 | [moduli.5] |
| 1053 | last stage of rfc changes, using consistent Rs/Re blocks, and moving the |
| 1054 | references into a STANDARDS section; |
Damien Miller | d5c3d4c | 2012-11-07 08:35:38 +1100 | [diff] [blame] | 1055 | |
Darren Tucker | f96ff18 | 2012-11-05 17:04:37 +1100 | [diff] [blame] | 1056 | 20121105 |
| 1057 | - (dtucker) [uidswap.c openbsd-compat/Makefile.in |
| 1058 | openbsd-compat/bsd-setres_id.c openbsd-compat/bsd-setres_id.h |
| 1059 | openbsd-compat/openbsd-compat.h] Move the fallback code for setting uids |
| 1060 | and gids from uidswap.c to the compat library, which allows it to work with |
| 1061 | the new setresuid calls in auth2-pubkey. with tim@, ok djm@ |
Darren Tucker | 737f7af | 2012-11-05 17:07:43 +1100 | [diff] [blame] | 1062 | - (dtucker) [auth2-pubkey.c] wrap paths.h in an ifdef for platforms that |
| 1063 | don't have it. Spotted by tim@. |
Darren Tucker | f96ff18 | 2012-11-05 17:04:37 +1100 | [diff] [blame] | 1064 | |
Damien Miller | f33580e | 2012-11-04 22:22:52 +1100 | [diff] [blame] | 1065 | 20121104 |
| 1066 | - (djm) OpenBSD CVS Sync |
| 1067 | - jmc@cvs.openbsd.org 2012/10/31 08:04:50 |
| 1068 | [sshd_config.5] |
| 1069 | tweak previous; |
Damien Miller | d0d1099 | 2012-11-04 22:23:14 +1100 | [diff] [blame] | 1070 | - djm@cvs.openbsd.org 2012/11/04 10:38:43 |
| 1071 | [auth2-pubkey.c sshd.c sshd_config.5] |
| 1072 | Remove default of AuthorizedCommandUser. Administrators are now expected |
| 1073 | to explicitly specify a user. feedback and ok markus@ |
Damien Miller | a6e3f01 | 2012-11-04 23:21:40 +1100 | [diff] [blame] | 1074 | - djm@cvs.openbsd.org 2012/11/04 11:09:15 |
| 1075 | [auth.h auth1.c auth2.c monitor.c servconf.c servconf.h sshd.c] |
| 1076 | [sshd_config.5] |
| 1077 | Support multiple required authentication via an AuthenticationMethods |
| 1078 | option. This option lists one or more comma-separated lists of |
| 1079 | authentication method names. Successful completion of all the methods in |
| 1080 | any list is required for authentication to complete; |
| 1081 | feedback and ok markus@ |
Damien Miller | f33580e | 2012-11-04 22:22:52 +1100 | [diff] [blame] | 1082 | |
Damien Miller | 07daed5 | 2012-10-31 08:57:55 +1100 | [diff] [blame] | 1083 | 20121030 |
| 1084 | - (djm) OpenBSD CVS Sync |
| 1085 | - markus@cvs.openbsd.org 2012/10/05 12:34:39 |
| 1086 | [sftp.c] |
| 1087 | fix signed vs unsigned warning; feedback & ok: djm@ |
Damien Miller | 09d3e12 | 2012-10-31 08:58:58 +1100 | [diff] [blame] | 1088 | - djm@cvs.openbsd.org 2012/10/30 21:29:55 |
| 1089 | [auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h] |
| 1090 | [sshd.c sshd_config sshd_config.5] |
| 1091 | new sshd_config option AuthorizedKeysCommand to support fetching |
| 1092 | authorized_keys from a command in addition to (or instead of) from |
| 1093 | the filesystem. The command is run as the target server user unless |
| 1094 | another specified via a new AuthorizedKeysCommandUser option. |
| 1095 | |
| 1096 | patch originally by jchadima AT redhat.com, reworked by me; feedback |
| 1097 | and ok markus@ |
Damien Miller | 07daed5 | 2012-10-31 08:57:55 +1100 | [diff] [blame] | 1098 | |
Tim Rice | c0e5cbe | 2012-10-18 21:38:58 -0700 | [diff] [blame] | 1099 | 20121019 |
| 1100 | - (tim) [buildpkg.sh.in] Double up on some backslashes so they end up in |
| 1101 | the generated file as intended. |
| 1102 | |
Darren Tucker | 0af2405 | 2012-10-05 10:41:25 +1000 | [diff] [blame] | 1103 | 20121005 |
| 1104 | - (dtucker) OpenBSD CVS Sync |
| 1105 | - djm@cvs.openbsd.org 2012/09/17 09:54:44 |
| 1106 | [sftp.c] |
| 1107 | an XXX for later |
Darren Tucker | 302889a | 2012-10-05 10:42:53 +1000 | [diff] [blame] | 1108 | - markus@cvs.openbsd.org 2012/09/17 13:04:11 |
| 1109 | [packet.c] |
| 1110 | clear old keys on rekeing; ok djm |
Darren Tucker | 063018d | 2012-10-05 10:43:58 +1000 | [diff] [blame] | 1111 | - dtucker@cvs.openbsd.org 2012/09/18 10:36:12 |
| 1112 | [sftp.c] |
| 1113 | Add bounds check on sftp tab-completion. Part of a patch from from |
| 1114 | Jean-Marc Robert via tech@, ok djm |
Darren Tucker | 191fcc6 | 2012-10-05 10:45:01 +1000 | [diff] [blame] | 1115 | - dtucker@cvs.openbsd.org 2012/09/21 10:53:07 |
| 1116 | [sftp.c] |
| 1117 | Fix improper handling of absolute paths when PWD is part of the completed |
| 1118 | path. Patch from Jean-Marc Robert via tech@, ok djm. |
Darren Tucker | 17146d3 | 2012-10-05 10:46:16 +1000 | [diff] [blame] | 1119 | - dtucker@cvs.openbsd.org 2012/09/21 10:55:04 |
| 1120 | [sftp.c] |
| 1121 | Fix handling of filenames containing escaped globbing characters and |
| 1122 | escape "#" and "*". Patch from Jean-Marc Robert via tech@, ok djm. |
Darren Tucker | 628a3fd | 2012-10-05 10:50:15 +1000 | [diff] [blame] | 1123 | - jmc@cvs.openbsd.org 2012/09/26 16:12:13 |
| 1124 | [ssh.1] |
| 1125 | last stage of rfc changes, using consistent Rs/Re blocks, and moving the |
| 1126 | references into a STANDARDS section; |
Darren Tucker | 3a7c041 | 2012-10-05 10:51:59 +1000 | [diff] [blame] | 1127 | - naddy@cvs.openbsd.org 2012/10/01 13:59:51 |
| 1128 | [monitor_wrap.c] |
| 1129 | pasto; ok djm@ |
Darren Tucker | 0dc283b | 2012-10-05 10:52:51 +1000 | [diff] [blame] | 1130 | - djm@cvs.openbsd.org 2012/10/02 07:07:45 |
| 1131 | [ssh-keygen.c] |
| 1132 | fix -z option, broken in revision 1.215 |
Darren Tucker | 427e409 | 2012-10-05 11:02:39 +1000 | [diff] [blame] | 1133 | - markus@cvs.openbsd.org 2012/10/04 13:21:50 |
| 1134 | [myproposal.h ssh_config.5 umac.h sshd_config.5 ssh.1 sshd.8 mac.c] |
| 1135 | add umac128 variant; ok djm@ at n2k12 |
Darren Tucker | 189e5ba | 2012-10-05 11:41:52 +1000 | [diff] [blame] | 1136 | - dtucker@cvs.openbsd.org 2012/09/06 04:11:07 |
| 1137 | [regress/try-ciphers.sh] |
| 1138 | Restore missing space. (Id sync only). |
Darren Tucker | 6fc5aa8 | 2012-10-05 11:43:57 +1000 | [diff] [blame] | 1139 | - dtucker@cvs.openbsd.org 2012/09/09 11:51:25 |
| 1140 | [regress/multiplex.sh] |
| 1141 | Add test for ssh -Ostop |
Darren Tucker | 9b2c036 | 2012-10-05 11:45:39 +1000 | [diff] [blame] | 1142 | - dtucker@cvs.openbsd.org 2012/09/10 00:49:21 |
| 1143 | [regress/multiplex.sh] |
| 1144 | Log -O cmd output to the log file and make logging consistent with the |
| 1145 | other tests. Test clean shutdown of an existing channel when testing |
| 1146 | "stop". |
Darren Tucker | ee4ad77 | 2012-10-05 12:04:10 +1000 | [diff] [blame] | 1147 | - dtucker@cvs.openbsd.org 2012/09/10 01:51:19 |
| 1148 | [regress/multiplex.sh] |
| 1149 | use -Ocheck and waiting for completions by PID to make multiplexing test |
| 1150 | less racy and (hopefully) more reliable on slow hardware. |
Darren Tucker | 992faad | 2012-10-05 11:38:24 +1000 | [diff] [blame] | 1151 | - [Makefile umac.c] Add special-case target to build umac128.o. |
Darren Tucker | 50ce447 | 2012-10-05 12:11:33 +1000 | [diff] [blame] | 1152 | - [umac.c] Enforce allowed umac output sizes. From djm@. |
Darren Tucker | cc8e9ff | 2012-10-05 15:41:06 +1000 | [diff] [blame] | 1153 | - [Makefile.in] "Using $< in a non-suffix rule context is a GNUmake idiom". |
Darren Tucker | 0af2405 | 2012-10-05 10:41:25 +1000 | [diff] [blame] | 1154 | |
Darren Tucker | bb6cc07 | 2012-09-17 13:25:06 +1000 | [diff] [blame] | 1155 | 20120917 |
| 1156 | - (dtucker) OpenBSD CVS Sync |
| 1157 | - dtucker@cvs.openbsd.org 2012/09/13 23:37:36 |
| 1158 | [servconf.c] |
| 1159 | Fix comment line length |
Darren Tucker | 26b9e3b | 2012-09-17 13:25:44 +1000 | [diff] [blame] | 1160 | - markus@cvs.openbsd.org 2012/09/14 16:51:34 |
| 1161 | [sshconnect.c] |
| 1162 | remove unused variable |
Darren Tucker | bb6cc07 | 2012-09-17 13:25:06 +1000 | [diff] [blame] | 1163 | |
Darren Tucker | 92a39cf | 2012-09-07 11:20:20 +1000 | [diff] [blame] | 1164 | 20120907 |
| 1165 | - (dtucker) OpenBSD CVS Sync |
| 1166 | - dtucker@cvs.openbsd.org 2012/09/06 09:50:13 |
| 1167 | [clientloop.c] |
| 1168 | Make the escape command help (~?) context sensitive so that only commands |
| 1169 | that will work in the current session are shown. ok markus@ |
Darren Tucker | 83d0af6 | 2012-09-07 11:21:03 +1000 | [diff] [blame] | 1170 | - jmc@cvs.openbsd.org 2012/09/06 13:57:42 |
| 1171 | [ssh.1] |
| 1172 | missing letter in previous; |
Darren Tucker | f111d40 | 2012-09-07 11:21:42 +1000 | [diff] [blame] | 1173 | - dtucker@cvs.openbsd.org 2012/09/07 00:30:19 |
| 1174 | [clientloop.c] |
| 1175 | Print '^Z' instead of a raw ^Z when the sequence is not supported. ok djm@ |
Darren Tucker | ca0d0fd | 2012-09-07 11:22:24 +1000 | [diff] [blame] | 1176 | - dtucker@cvs.openbsd.org 2012/09/07 01:10:21 |
| 1177 | [clientloop.c] |
| 1178 | Merge escape help text for ~v and ~V; ok djm@ |
Darren Tucker | 48bf4b0 | 2012-09-07 16:38:53 +1000 | [diff] [blame] | 1179 | - dtucker@cvs.openbsd.org 2012/09/07 06:34:21 |
| 1180 | [clientloop.c] |
| 1181 | when muxmaster is run with -N, make it shut down gracefully when a client |
| 1182 | sends it "-O stop" rather than hanging around (bz#1985). ok djm@ |
Darren Tucker | 92a39cf | 2012-09-07 11:20:20 +1000 | [diff] [blame] | 1183 | |
Darren Tucker | 3ee50c5 | 2012-09-06 21:18:11 +1000 | [diff] [blame] | 1184 | 20120906 |
| 1185 | - (dtucker) OpenBSD CVS Sync |
| 1186 | - jmc@cvs.openbsd.org 2012/08/15 18:25:50 |
| 1187 | [ssh-keygen.1] |
| 1188 | a little more info on certificate validity; |
| 1189 | requested by Ross L Richardson, and provided by djm |
Darren Tucker | 66cb0e0 | 2012-09-06 21:19:05 +1000 | [diff] [blame] | 1190 | - dtucker@cvs.openbsd.org 2012/08/17 00:45:45 |
| 1191 | [clientloop.c clientloop.h mux.c] |
| 1192 | Force a clean shutdown of ControlMaster client sessions when the ~. escape |
| 1193 | sequence is used. This means that ~. should now work in mux clients even |
| 1194 | if the server is no longer responding. Found by tedu, ok djm. |
Darren Tucker | ae608bd | 2012-09-06 21:19:51 +1000 | [diff] [blame] | 1195 | - djm@cvs.openbsd.org 2012/08/17 01:22:56 |
| 1196 | [kex.c] |
| 1197 | add some comments about better handling first-KEX-follows notifications |
| 1198 | from the server. Nothing uses these right now. No binary change |
Darren Tucker | f09a8a6 | 2012-09-06 21:20:39 +1000 | [diff] [blame] | 1199 | - djm@cvs.openbsd.org 2012/08/17 01:25:58 |
| 1200 | [ssh-keygen.c] |
| 1201 | print details of which host lines were deleted when using |
| 1202 | "ssh-keygen -R host"; ok markus@ |
Darren Tucker | 00c1518 | 2012-09-06 21:21:56 +1000 | [diff] [blame] | 1203 | - djm@cvs.openbsd.org 2012/08/17 01:30:00 |
| 1204 | [compat.c sshconnect.c] |
| 1205 | Send client banner immediately, rather than waiting for the server to |
| 1206 | move first for SSH protocol 2 connections (the default). Patch based on |
| 1207 | one in bz#1999 by tls AT panix.com, feedback dtucker@ ok markus@ |
Darren Tucker | 50a48d0 | 2012-09-06 21:25:37 +1000 | [diff] [blame] | 1208 | - dtucker@cvs.openbsd.org 2012/09/06 04:37:39 |
| 1209 | [clientloop.c log.c ssh.1 log.h] |
| 1210 | Add ~v and ~V escape sequences to raise and lower the logging level |
| 1211 | respectively. Man page help from jmc, ok deraadt jmc |
Darren Tucker | 3ee50c5 | 2012-09-06 21:18:11 +1000 | [diff] [blame] | 1212 | |
Darren Tucker | 23e4b80 | 2012-08-30 10:42:47 +1000 | [diff] [blame] | 1213 | 20120830 |
| 1214 | - (dtucker) [moduli] Import new moduli file. |
| 1215 | |
Darren Tucker | 3185418 | 2012-08-28 19:57:19 +1000 | [diff] [blame] | 1216 | 20120828 |
Damien Miller | 4eb0a53 | 2012-08-29 10:26:20 +1000 | [diff] [blame] | 1217 | - (djm) Release openssh-6.1 |
| 1218 | |
| 1219 | 20120828 |
Darren Tucker | 3185418 | 2012-08-28 19:57:19 +1000 | [diff] [blame] | 1220 | - (dtucker) [openbsd-compat/bsd-cygwin_util.h] define WIN32_LEAN_AND_MEAN |
| 1221 | for compatibility with future mingw-w64 headers. Patch from vinschen at |
| 1222 | redhat com. |
| 1223 | |
Damien Miller | 39a9d2c | 2012-08-22 21:57:13 +1000 | [diff] [blame] | 1224 | 20120822 |
| 1225 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 1226 | [contrib/suse/openssh.spec] Update version numbers |
| 1227 | |
Damien Miller | 709a1e9 | 2012-07-31 12:20:43 +1000 | [diff] [blame] | 1228 | 20120731 |
| 1229 | - (djm) OpenBSD CVS Sync |
| 1230 | - jmc@cvs.openbsd.org 2012/07/06 06:38:03 |
| 1231 | [ssh-keygen.c] |
| 1232 | missing full stop in usage(); |
Damien Miller | 5a5c2b9 | 2012-07-31 12:21:34 +1000 | [diff] [blame] | 1233 | - djm@cvs.openbsd.org 2012/07/10 02:19:15 |
| 1234 | [servconf.c servconf.h sshd.c sshd_config] |
| 1235 | Turn on systrace sandboxing of pre-auth sshd by default for new installs |
| 1236 | by shipping a config that overrides the current UsePrivilegeSeparation=yes |
| 1237 | default. Make it easier to flip the default in the future by adding too. |
Damien Miller | 1cce103 | 2012-07-31 12:22:18 +1000 | [diff] [blame] | 1238 | prodded markus@ feedback dtucker@ "get it in" deraadt@ |
Damien Miller | 46cb75a | 2012-07-31 12:22:37 +1000 | [diff] [blame] | 1239 | - dtucker@cvs.openbsd.org 2012/07/13 01:35:21 |
| 1240 | [servconf.c] |
| 1241 | handle long comments in config files better. bz#2025, ok markus |
Damien Miller | 38fe662 | 2012-07-31 12:23:16 +1000 | [diff] [blame] | 1242 | - markus@cvs.openbsd.org 2012/07/22 18:19:21 |
| 1243 | [version.h] |
| 1244 | openssh 6.1 |
Damien Miller | 709a1e9 | 2012-07-31 12:20:43 +1000 | [diff] [blame] | 1245 | |
Darren Tucker | d809a4b | 2012-07-20 10:42:06 +1000 | [diff] [blame] | 1246 | 20120720 |
| 1247 | - (dtucker) Import regened moduli file. |
| 1248 | |
Damien Miller | a0433a7 | 2012-07-06 10:27:10 +1000 | [diff] [blame] | 1249 | 20120706 |
| 1250 | - (djm) [sandbox-seccomp-filter.c] fallback to rlimit if seccomp filter is |
| 1251 | not available. Allows use of sshd compiled on host with a filter-capable |
| 1252 | kernel on hosts that lack the support. bz#2011 ok dtucker@ |
Damien Miller | 77eab7b | 2012-07-06 11:49:28 +1000 | [diff] [blame] | 1253 | - (djm) [configure.ac] Recursively expand $(bindir) to ensure it has no |
| 1254 | unexpanded $(prefix) embedded. bz#2007 patch from nix-corp AT |
| 1255 | esperi.org.uk; ok dtucker@ |
Damien Miller | dfceafe | 2012-07-06 13:44:19 +1000 | [diff] [blame] | 1256 | - (djm) OpenBSD CVS Sync |
| 1257 | - dtucker@cvs.openbsd.org 2012/07/06 00:41:59 |
| 1258 | [moduli.c ssh-keygen.1 ssh-keygen.c] |
| 1259 | Add options to specify starting line number and number of lines to process |
| 1260 | when screening moduli candidates. This allows processing of different |
| 1261 | parts of a candidate moduli file in parallel. man page help jmc@, ok djm@ |
Damien Miller | ab523b0 | 2012-07-06 13:44:43 +1000 | [diff] [blame] | 1262 | - djm@cvs.openbsd.org 2012/07/06 01:37:21 |
| 1263 | [mux.c] |
| 1264 | fix memory leak of passed-in environment variables and connection |
| 1265 | context when new session message is malformed; bz#2003 from Bert.Wesarg |
| 1266 | AT googlemail.com |
Damien Miller | fff9f09 | 2012-07-06 13:45:01 +1000 | [diff] [blame] | 1267 | - djm@cvs.openbsd.org 2012/07/06 01:47:38 |
| 1268 | [ssh.c] |
| 1269 | move setting of tty_flag to after config parsing so RequestTTY options |
| 1270 | are correctly picked up. bz#1995 patch from przemoc AT gmail.com; |
| 1271 | ok dtucker@ |
Damien Miller | a0433a7 | 2012-07-06 10:27:10 +1000 | [diff] [blame] | 1272 | |
Darren Tucker | 34f702a | 2012-07-04 08:50:09 +1000 | [diff] [blame] | 1273 | 20120704 |
| 1274 | - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] Add setlinebuf for |
| 1275 | platforms that don't have it. "looks good" tim@ |
| 1276 | |
Darren Tucker | 60395f9 | 2012-07-03 14:31:18 +1000 | [diff] [blame] | 1277 | 20120703 |
| 1278 | - (dtucker) [configure.ac] Detect platforms that can't use select(2) with |
| 1279 | setrlimit(RLIMIT_NOFILE, rl_zero) and disable the rlimit sandbox on those. |
Darren Tucker | d545a4b | 2012-07-03 22:48:31 +1000 | [diff] [blame] | 1280 | - (dtucker) [configure.ac sandbox-rlimit.c] Test whether or not |
| 1281 | setrlimit(RLIMIT_FSIZE, rl_zero) and skip it if it's not supported. Its |
| 1282 | benefit is minor, so it's not worth disabling the sandbox if it doesn't |
| 1283 | work. |
Darren Tucker | 60395f9 | 2012-07-03 14:31:18 +1000 | [diff] [blame] | 1284 | |
Darren Tucker | ecbf14a | 2012-07-02 18:53:37 +1000 | [diff] [blame] | 1285 | 20120702 |
| 1286 | - (dtucker) OpenBSD CVS Sync |
| 1287 | - naddy@cvs.openbsd.org 2012/06/29 13:57:25 |
| 1288 | [ssh_config.5 sshd_config.5] |
| 1289 | match the documented MAC order of preference to the actual one; |
| 1290 | ok dtucker@ |
Darren Tucker | 3b4b2d3 | 2012-07-02 18:54:31 +1000 | [diff] [blame] | 1291 | - markus@cvs.openbsd.org 2012/06/30 14:35:09 |
| 1292 | [sandbox-systrace.c sshd.c] |
| 1293 | fix a during the load of the sandbox policies (child can still make |
| 1294 | the read-syscall and wait forever for systrace-answers) by replacing |
| 1295 | the read/write synchronisation with SIGSTOP/SIGCONT; |
| 1296 | report and help hshoexer@; ok djm@, dtucker@ |
Darren Tucker | 7b30501 | 2012-07-02 18:55:09 +1000 | [diff] [blame] | 1297 | - dtucker@cvs.openbsd.org 2012/07/02 08:50:03 |
| 1298 | [ssh.c] |
| 1299 | set interactive ToS for forwarded X11 sessions. ok djm@ |
Darren Tucker | 4908d44 | 2012-07-02 22:15:38 +1000 | [diff] [blame] | 1300 | - dtucker@cvs.openbsd.org 2012/07/02 12:13:26 |
| 1301 | [ssh-pkcs11-helper.c sftp-client.c] |
| 1302 | fix a couple of "assigned but not used" warnings. ok markus@ |
Darren Tucker | 369ceed | 2012-07-03 00:53:18 +1000 | [diff] [blame] | 1303 | - dtucker@cvs.openbsd.org 2012/07/02 14:37:06 |
| 1304 | [regress/connect-privsep.sh] |
| 1305 | remove exit from end of test since it prevents reporting failure |
Darren Tucker | ec1e15d | 2012-07-03 01:06:49 +1000 | [diff] [blame] | 1306 | - (dtucker) [regress/reexec.sh regress/sftp-cmds.sh regress/test-exec.sh] |
| 1307 | Move cygwin detection to test-exec and use to skip reexec test on cygwin. |
Darren Tucker | 6ea5dc6 | 2012-07-03 01:11:28 +1000 | [diff] [blame] | 1308 | - (dtucker) [regress/test-exec.sh] Correct uname for cygwin/w2k. |
Darren Tucker | ecbf14a | 2012-07-02 18:53:37 +1000 | [diff] [blame] | 1309 | |
Damien Miller | 97f43bb | 2012-06-30 08:32:29 +1000 | [diff] [blame] | 1310 | 20120629 |
| 1311 | - OpenBSD CVS Sync |
| 1312 | - dtucker@cvs.openbsd.org 2012/06/21 00:16:07 |
| 1313 | [addrmatch.c] |
| 1314 | fix strlcpy truncation check. from carsten at debian org, ok markus |
Damien Miller | 5f58a87 | 2012-06-30 08:33:17 +1000 | [diff] [blame] | 1315 | - dtucker@cvs.openbsd.org 2012/06/22 12:30:26 |
| 1316 | [monitor.c sshconnect2.c] |
| 1317 | remove dead code following 'for (;;)' loops. |
| 1318 | From Steve.McClellan at radisys com, ok markus@ |
Damien Miller | ea85829 | 2012-06-30 08:33:32 +1000 | [diff] [blame] | 1319 | - dtucker@cvs.openbsd.org 2012/06/22 14:36:33 |
| 1320 | [sftp.c] |
| 1321 | Remove unused variable leftover from tab-completion changes. |
| 1322 | From Steve.McClellan at radisys com, ok markus@ |
Damien Miller | 560de92 | 2012-06-30 08:33:53 +1000 | [diff] [blame] | 1323 | - dtucker@cvs.openbsd.org 2012/06/26 11:02:30 |
| 1324 | [sandbox-systrace.c] |
| 1325 | Add mquery to the list of allowed syscalls for "UsePrivilegeSeparation |
| 1326 | sandbox" since malloc now uses it. From johnw.mail at gmail com. |
Damien Miller | db4f8e8 | 2012-06-30 08:34:59 +1000 | [diff] [blame] | 1327 | - dtucker@cvs.openbsd.org 2012/06/28 05:07:45 |
| 1328 | [mac.c myproposal.h ssh_config.5 sshd_config.5] |
| 1329 | Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed |
| 1330 | from draft6 of the spec and will not be in the RFC when published. Patch |
| 1331 | from mdb at juniper net via bz#2023, ok markus. |
Damien Miller | ee3c196 | 2012-06-30 08:35:59 +1000 | [diff] [blame] | 1332 | - naddy@cvs.openbsd.org 2012/06/29 13:57:25 |
| 1333 | [ssh_config.5 sshd_config.5] |
| 1334 | match the documented MAC order of preference to the actual one; ok dtucker@ |
Darren Tucker | 3013903 | 2012-06-30 15:01:22 +1000 | [diff] [blame] | 1335 | - dtucker@cvs.openbsd.org 2012/05/13 01:42:32 |
| 1336 | [regress/addrmatch.sh] |
| 1337 | Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests |
| 1338 | to match. Feedback and ok djm@ markus@. |
Darren Tucker | 4430a86 | 2012-06-30 15:03:28 +1000 | [diff] [blame] | 1339 | - djm@cvs.openbsd.org 2012/06/01 00:47:35 |
Darren Tucker | 2920bc1 | 2012-06-30 15:06:28 +1000 | [diff] [blame] | 1340 | [regress/multiplex.sh regress/forwarding.sh] |
Darren Tucker | 4430a86 | 2012-06-30 15:03:28 +1000 | [diff] [blame] | 1341 | append to rather than truncate test log; bz#2013 from openssh AT |
| 1342 | roumenpetrov.info |
Darren Tucker | ff32d7c | 2012-06-30 15:04:13 +1000 | [diff] [blame] | 1343 | - djm@cvs.openbsd.org 2012/06/01 00:52:52 |
Darren Tucker | 2920bc1 | 2012-06-30 15:06:28 +1000 | [diff] [blame] | 1344 | [regress/sftp-cmds.sh] |
Darren Tucker | ff32d7c | 2012-06-30 15:04:13 +1000 | [diff] [blame] | 1345 | don't delete .* on cleanup due to unintended env expansion; pointed out in |
| 1346 | bz#2014 by openssh AT roumenpetrov.info |
Darren Tucker | 2920bc1 | 2012-06-30 15:06:28 +1000 | [diff] [blame] | 1347 | - dtucker@cvs.openbsd.org 2012/06/26 12:06:59 |
| 1348 | [regress/connect-privsep.sh] |
| 1349 | test sandbox with every malloc option |
Darren Tucker | a08c207 | 2012-06-30 15:08:53 +1000 | [diff] [blame] | 1350 | - dtucker@cvs.openbsd.org 2012/06/28 05:07:45 |
| 1351 | [regress/try-ciphers.sh regress/cipher-speed.sh] |
| 1352 | Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed |
| 1353 | from draft6 of the spec and will not be in the RFC when published. Patch |
| 1354 | from mdb at juniper net via bz#2023, ok markus. |
Darren Tucker | 3886f95 | 2012-06-30 19:47:01 +1000 | [diff] [blame] | 1355 | - (dtucker) [myproposal.h] Remove trailing backslash to fix compile error. |
Darren Tucker | 14a9d25 | 2012-06-30 20:05:02 +1000 | [diff] [blame] | 1356 | - (dtucker) [key.c] ifdef out sha256 key types on platforms that don't have |
| 1357 | the required functions in libcrypto. |
Damien Miller | 97f43bb | 2012-06-30 08:32:29 +1000 | [diff] [blame] | 1358 | |
Darren Tucker | 8908da7 | 2012-06-28 15:21:32 +1000 | [diff] [blame] | 1359 | 20120628 |
| 1360 | - (dtucker) [openbsd-compat/getrrsetbyname-ldns.c] bz #2022: prevent null |
| 1361 | pointer deref in the client when built with LDNS and using DNSSEC with a |
| 1362 | CNAME. Patch from gregdlg+mr at hochet info. |
| 1363 | |
Darren Tucker | 62dcd63 | 2012-06-22 22:02:42 +1000 | [diff] [blame] | 1364 | 20120622 |
| 1365 | - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as |
| 1366 | can logon as a service. Patch from vinschen at redhat com. |
| 1367 | |
Damien Miller | efc6fc9 | 2012-06-20 21:44:56 +1000 | [diff] [blame] | 1368 | 20120620 |
| 1369 | - (djm) OpenBSD CVS Sync |
| 1370 | - djm@cvs.openbsd.org 2011/12/02 00:41:56 |
| 1371 | [mux.c] |
| 1372 | fix bz#1948: ssh -f doesn't fork for multiplexed connection. |
| 1373 | ok dtucker@ |
Damien Miller | 140df63 | 2012-06-20 21:46:57 +1000 | [diff] [blame] | 1374 | - djm@cvs.openbsd.org 2011/12/04 23:16:12 |
| 1375 | [mux.c] |
| 1376 | revert: |
| 1377 | > revision 1.32 |
| 1378 | > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1 |
| 1379 | > fix bz#1948: ssh -f doesn't fork for multiplexed connection. |
| 1380 | > ok dtucker@ |
| 1381 | it interacts badly with ControlPersist |
Damien Miller | ac58ce8 | 2012-06-20 21:50:47 +1000 | [diff] [blame] | 1382 | - djm@cvs.openbsd.org 2012/01/07 21:11:36 |
| 1383 | [mux.c] |
| 1384 | fix double-free in new session handler |
| 1385 | NB. Id sync only |
Damien Miller | 3bde12a | 2012-06-20 21:51:11 +1000 | [diff] [blame] | 1386 | - djm@cvs.openbsd.org 2012/05/23 03:28:28 |
| 1387 | [dns.c dns.h key.c key.h ssh-keygen.c] |
| 1388 | add support for RFC6594 SSHFP DNS records for ECDSA key types. |
| 1389 | patch from bugzilla-m67 AT nulld.me in bz#1978; ok + tweak markus@ |
Darren Tucker | 86dc9b4 | 2012-09-07 18:08:23 +1000 | [diff] [blame] | 1390 | (Original authors Ondřej Surý, Ondřej Caletka and Daniel Black) |
Damien Miller | 7f12157 | 2012-06-20 21:51:29 +1000 | [diff] [blame] | 1391 | - djm@cvs.openbsd.org 2012/06/01 00:49:35 |
| 1392 | [PROTOCOL.mux] |
| 1393 | correct types of port numbers (integers, not strings); bz#2004 from |
| 1394 | bert.wesarg AT googlemail.com |
Damien Miller | 2e7decf | 2012-06-20 21:52:00 +1000 | [diff] [blame] | 1395 | - djm@cvs.openbsd.org 2012/06/01 01:01:22 |
| 1396 | [mux.c] |
| 1397 | fix memory leak when mux socket creation fails; bz#2002 from bert.wesarg |
| 1398 | AT googlemail.com |
Damien Miller | 276dcfd | 2012-06-20 21:52:18 +1000 | [diff] [blame] | 1399 | - dtucker@cvs.openbsd.org 2012/06/18 11:43:53 |
| 1400 | [jpake.c] |
| 1401 | correct sizeof usage. patch from saw at online.de, ok deraadt |
Damien Miller | 7192433 | 2012-06-20 21:52:38 +1000 | [diff] [blame] | 1402 | - dtucker@cvs.openbsd.org 2012/06/18 11:49:58 |
| 1403 | [ssh_config.5] |
| 1404 | RSA instead of DSA twice. From Steve.McClellan at radisys com |
Damien Miller | b9902cf | 2012-06-20 21:52:58 +1000 | [diff] [blame] | 1405 | - dtucker@cvs.openbsd.org 2012/06/18 12:07:07 |
| 1406 | [ssh.1 sshd.8] |
| 1407 | Remove mention of 'three' key files since there are now four. From |
| 1408 | Steve.McClellan at radisys com. |
Damien Miller | 36378c6 | 2012-06-20 21:53:25 +1000 | [diff] [blame] | 1409 | - dtucker@cvs.openbsd.org 2012/06/18 12:17:18 |
| 1410 | [ssh.1] |
| 1411 | Clarify description of -W. Noted by Steve.McClellan at radisys com, |
| 1412 | ok jmc |
Damien Miller | c24da77 | 2012-06-20 21:53:58 +1000 | [diff] [blame] | 1413 | - markus@cvs.openbsd.org 2012/06/19 18:25:28 |
| 1414 | [servconf.c servconf.h sshd_config.5] |
| 1415 | sshd_config: extend Match to allow AcceptEnv and {Allow,Deny}{Users,Groups} |
| 1416 | this allows 'Match LocalPort 1022' combined with 'AllowUser bauer' |
| 1417 | ok djm@ (back in March) |
Damien Miller | f826850 | 2012-06-20 21:54:15 +1000 | [diff] [blame] | 1418 | - jmc@cvs.openbsd.org 2012/06/19 21:35:54 |
| 1419 | [sshd_config.5] |
| 1420 | tweak previous; ok markus |
Damien Miller | 6c6da33 | 2012-06-20 22:31:26 +1000 | [diff] [blame] | 1421 | - djm@cvs.openbsd.org 2012/06/20 04:42:58 |
| 1422 | [clientloop.c serverloop.c] |
| 1423 | initialise accept() backoff timer to avoid EINVAL from select(2) in |
| 1424 | rekeying |
Damien Miller | efc6fc9 | 2012-06-20 21:44:56 +1000 | [diff] [blame] | 1425 | |
Darren Tucker | d0494fd | 2012-05-19 14:25:39 +1000 | [diff] [blame] | 1426 | 20120519 |
| 1427 | - (dtucker) [configure.ac] bz#2010: fix non-portable shell construct. Patch |
| 1428 | from cjwatson at debian org. |
Darren Tucker | 5935389 | 2012-05-19 15:24:37 +1000 | [diff] [blame] | 1429 | - (dtucker) [configure.ac contrib/Makefile] bz#1996: use AC_PATH_TOOL to find |
| 1430 | pkg-config so it does the right thing when cross-compiling. Patch from |
| 1431 | cjwatson at debian org. |
Darren Tucker | fbcf827 | 2012-05-19 19:37:01 +1000 | [diff] [blame] | 1432 | - (dtucker) OpenBSD CVS Sync |
| 1433 | - dtucker@cvs.openbsd.org 2012/05/13 01:42:32 |
| 1434 | [servconf.h servconf.c sshd.8 sshd.c auth.c sshd_config.5] |
| 1435 | Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests |
| 1436 | to match. Feedback and ok djm@ markus@. |
Darren Tucker | ba9ea32 | 2012-05-19 19:37:33 +1000 | [diff] [blame] | 1437 | - dtucker@cvs.openbsd.org 2012/05/19 06:30:30 |
| 1438 | [sshd_config.5] |
| 1439 | Document PermitOpen none. bz#2001, patch from Loganaden Velvindron |
Darren Tucker | d0494fd | 2012-05-19 14:25:39 +1000 | [diff] [blame] | 1440 | |
Darren Tucker | e1a3ddf | 2012-05-04 11:05:45 +1000 | [diff] [blame] | 1441 | 20120504 |
| 1442 | - (dtucker) [configure.ac] Include <sys/param.h> rather than <sys/types.h> |
| 1443 | to fix building on some plaforms. Fom bowman at math utah edu and |
| 1444 | des at des no. |
| 1445 | |
Darren Tucker | d0d3fff | 2012-04-27 10:55:39 +1000 | [diff] [blame] | 1446 | 20120427 |
| 1447 | - (dtucker) [regress/addrmatch.sh] skip tests when running on a non-ipv6 |
| 1448 | platform rather than exiting early, so that we still clean up and return |
| 1449 | success or failure to test-exec.sh |
| 1450 | |
Damien Miller | 7584cb1 | 2012-04-26 09:51:26 +1000 | [diff] [blame] | 1451 | 20120426 |
| 1452 | - (djm) [auth-passwd.c] Handle crypt() returning NULL; from Paul Wouters |
| 1453 | via Niels |
Damien Miller | 025bfd1 | 2012-04-26 09:52:15 +1000 | [diff] [blame] | 1454 | - (djm) [auth-krb5.c] Save errno across calls that might modify it; |
| 1455 | ok dtucker@ |
Damien Miller | 7584cb1 | 2012-04-26 09:51:26 +1000 | [diff] [blame] | 1456 | |
Damien Miller | ba77e1f | 2012-04-23 18:21:05 +1000 | [diff] [blame] | 1457 | 20120423 |
| 1458 | - OpenBSD CVS Sync |
| 1459 | - djm@cvs.openbsd.org 2012/04/23 08:18:17 |
| 1460 | [channels.c] |
| 1461 | fix function proto/source mismatch |
| 1462 | |
Damien Miller | a563cce | 2012-04-22 11:07:28 +1000 | [diff] [blame] | 1463 | 20120422 |
| 1464 | - OpenBSD CVS Sync |
| 1465 | - djm@cvs.openbsd.org 2012/02/29 11:21:26 |
| 1466 | [ssh-keygen.c] |
| 1467 | allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@ |
Damien Miller | 29cd188 | 2012-04-22 11:08:10 +1000 | [diff] [blame] | 1468 | - guenther@cvs.openbsd.org 2012/03/15 03:10:27 |
| 1469 | [session.c] |
| 1470 | root should always be excluded from the test for /etc/nologin instead |
| 1471 | of having it always enforced even when marked as ignorenologin. This |
| 1472 | regressed when the logic was incompletely flipped around in rev 1.251 |
| 1473 | ok halex@ millert@ |
Damien Miller | 48348fc | 2012-04-22 11:08:30 +1000 | [diff] [blame] | 1474 | - djm@cvs.openbsd.org 2012/03/28 07:23:22 |
| 1475 | [PROTOCOL.certkeys] |
| 1476 | explain certificate extensions/crit split rationale. Mention requirement |
| 1477 | that each appear at most once per cert. |
Damien Miller | c608148 | 2012-04-22 11:18:53 +1000 | [diff] [blame] | 1478 | - dtucker@cvs.openbsd.org 2012/03/29 23:54:36 |
| 1479 | [channels.c channels.h servconf.c] |
| 1480 | Add PermitOpen none option based on patch from Loganaden Velvindron |
| 1481 | (bz #1949). ok djm@ |
Damien Miller | a650875 | 2012-04-22 11:21:10 +1000 | [diff] [blame] | 1482 | - djm@cvs.openbsd.org 2012/04/11 13:16:19 |
| 1483 | [channels.c channels.h clientloop.c serverloop.c] |
| 1484 | don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a |
| 1485 | while; ok deraadt@ markus@ |
Damien Miller | 9fed161 | 2012-04-22 11:21:43 +1000 | [diff] [blame] | 1486 | - djm@cvs.openbsd.org 2012/04/11 13:17:54 |
| 1487 | [auth.c] |
| 1488 | Support "none" as an argument for AuthorizedPrincipalsFile to indicate |
| 1489 | no file should be read. |
Damien Miller | a116d13 | 2012-04-22 11:23:46 +1000 | [diff] [blame] | 1490 | - djm@cvs.openbsd.org 2012/04/11 13:26:40 |
| 1491 | [sshd.c] |
| 1492 | don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a |
| 1493 | while; ok deraadt@ markus@ |
Damien Miller | 839f743 | 2012-04-22 11:24:21 +1000 | [diff] [blame] | 1494 | - djm@cvs.openbsd.org 2012/04/11 13:34:17 |
| 1495 | [ssh-keyscan.1 ssh-keyscan.c] |
| 1496 | now that sshd defaults to offering ECDSA keys, ssh-keyscan should also |
| 1497 | look for them by default; bz#1971 |
Damien Miller | 2352881 | 2012-04-22 11:24:43 +1000 | [diff] [blame] | 1498 | - djm@cvs.openbsd.org 2012/04/12 02:42:32 |
| 1499 | [servconf.c servconf.h sshd.c sshd_config sshd_config.5] |
| 1500 | VersionAddendum option to allow server operators to append some arbitrary |
| 1501 | text to the SSH-... banner; ok deraadt@ "don't care" markus@ |
Damien Miller | 8fef9eb | 2012-04-22 11:25:10 +1000 | [diff] [blame] | 1502 | - djm@cvs.openbsd.org 2012/04/12 02:43:55 |
| 1503 | [sshd_config sshd_config.5] |
| 1504 | mention AuthorizedPrincipalsFile=none default |
Damien Miller | 4922315 | 2012-04-22 11:25:47 +1000 | [diff] [blame] | 1505 | - djm@cvs.openbsd.org 2012/04/20 03:24:23 |
| 1506 | [sftp.c] |
| 1507 | setlinebuf(3) is more readable than setvbuf(.., _IOLBF, ...) |
Damien Miller | 70b2d55 | 2012-04-22 11:26:10 +1000 | [diff] [blame] | 1508 | - jmc@cvs.openbsd.org 2012/04/20 16:26:22 |
| 1509 | [ssh.1] |
| 1510 | use "brackets" instead of "braces", for consistency; |
Damien Miller | a563cce | 2012-04-22 11:07:28 +1000 | [diff] [blame] | 1511 | |
Damien Miller | 8beb320 | 2012-04-20 10:58:34 +1000 | [diff] [blame] | 1512 | 20120420 |
| 1513 | - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 1514 | [contrib/suse/openssh.spec] Update for release 6.0 |
Damien Miller | bf23041 | 2012-04-20 14:11:04 +1000 | [diff] [blame] | 1515 | - (djm) [README] Update URL to release notes. |
Damien Miller | d5dacb4 | 2012-04-20 15:01:01 +1000 | [diff] [blame] | 1516 | - (djm) Release openssh-6.0 |
Damien Miller | 8beb320 | 2012-04-20 10:58:34 +1000 | [diff] [blame] | 1517 | |
Damien Miller | 398c0ff | 2012-04-19 21:46:35 +1000 | [diff] [blame] | 1518 | 20120419 |
| 1519 | - (djm) [configure.ac] Fix compilation error on FreeBSD, whose libutil |
| 1520 | contains openpty() but not login() |
| 1521 | |
Damien Miller | e0956e3 | 2012-04-04 11:27:54 +1000 | [diff] [blame] | 1522 | 20120404 |
| 1523 | - (djm) [Makefile.in configure.ac sandbox-seccomp-filter.c] Add sandbox |
| 1524 | mode for Linux's new seccomp filter; patch from Will Drewry; feedback |
| 1525 | and ok dtucker@ |
| 1526 | |
Darren Tucker | 67ccc86 | 2012-03-30 10:19:56 +1100 | [diff] [blame] | 1527 | 20120330 |
| 1528 | - (dtucker) [contrib/redhat/openssh.spec] Bug #1992: remove now-gone WARNING |
| 1529 | file from spec file. From crighter at nuclioss com. |
Damien Miller | 4d55734 | 2012-03-30 11:34:27 +1100 | [diff] [blame] | 1530 | - (djm) [entropy.c] bz#1991: relax OpenSSL version test to allow running |
| 1531 | openssh binaries on a newer fix release than they were compiled on. |
| 1532 | with and ok dtucker@ |
Damien Miller | ce1ec9d | 2012-03-30 14:07:05 +1100 | [diff] [blame] | 1533 | - (djm) [openbsd-compat/bsd-cygwin_util.h] #undef _WIN32 to avoid incorrect |
| 1534 | assumptions when building on Cygwin; patch from Corinna Vinschen |
Darren Tucker | 67ccc86 | 2012-03-30 10:19:56 +1100 | [diff] [blame] | 1535 | |
Damien Miller | 7bf7b88 | 2012-03-09 10:25:16 +1100 | [diff] [blame] | 1536 | 20120309 |
| 1537 | - (djm) [openbsd-compat/port-linux.c] bz#1960: fix crash on SELinux |
| 1538 | systems where sshd is run in te wrong context. Patch from Sven |
| 1539 | Vermeulen; ok dtucker@ |
Damien Miller | 54c38d2 | 2012-03-09 10:28:07 +1100 | [diff] [blame] | 1540 | - (djm) [packet.c] bz#1963: Fix IPQoS not being set on non-mapped v4-in-v6 |
| 1541 | addressed connections. ok dtucker@ |
Damien Miller | 7bf7b88 | 2012-03-09 10:25:16 +1100 | [diff] [blame] | 1542 | |
Darren Tucker | 93a2d41 | 2012-02-24 10:40:41 +1100 | [diff] [blame] | 1543 | 20120224 |
| 1544 | - (dtucker) [audit-bsm.c configure.ac] bug #1968: enable workarounds for BSM |
| 1545 | audit breakage in Solaris 11. Patch from Magnus Johansson. |
| 1546 | |
Tim Rice | e3609c9 | 2012-02-14 10:03:30 -0800 | [diff] [blame] | 1547 | 20120215 |
| 1548 | - (tim) [openbsd-compat/bsd-misc.h sshd.c] Fix conflicting return type for |
| 1549 | unsetenv due to rev 1.14 change to setenv.c. Cast unsetenv to void in sshd.c |
| 1550 | ok dtucker@ |
Tim Rice | f79b5d3 | 2012-02-14 20:13:05 -0800 | [diff] [blame] | 1551 | - (tim) [defines.h] move chunk introduced in 1.125 before MAXPATHLEN so |
| 1552 | it actually works. |
Tim Rice | a3f297d | 2012-02-14 23:01:42 -0800 | [diff] [blame] | 1553 | - (tim) [regress/keytype.sh] stderr redirection needs to be inside back quote |
| 1554 | to work. Spotted by Angel Gonzalez |
Tim Rice | e3609c9 | 2012-02-14 10:03:30 -0800 | [diff] [blame] | 1555 | |
Damien Miller | 7b7901c | 2012-02-14 06:38:36 +1100 | [diff] [blame] | 1556 | 20120214 |
| 1557 | - (djm) [openbsd-compat/bsd-cygwin_util.c] Add PROGRAMFILES to list of |
| 1558 | preserved Cygwin environment variables; from Corinna Vinschen |
| 1559 | |
Damien Miller | a2876db | 2012-02-11 08:16:06 +1100 | [diff] [blame] | 1560 | 20120211 |
| 1561 | - (djm) OpenBSD CVS Sync |
| 1562 | - djm@cvs.openbsd.org 2012/01/05 00:16:56 |
| 1563 | [monitor.c] |
| 1564 | memleak on error path |
Damien Miller | 2ec0342 | 2012-02-11 08:16:28 +1100 | [diff] [blame] | 1565 | - djm@cvs.openbsd.org 2012/01/07 21:11:36 |
| 1566 | [mux.c] |
| 1567 | fix double-free in new session handler |
Damien Miller | 83ba8e6 | 2012-02-11 08:17:27 +1100 | [diff] [blame] | 1568 | - miod@cvs.openbsd.org 2012/01/08 13:17:11 |
| 1569 | [ssh-ecdsa.c] |
| 1570 | Fix memory leak in ssh_ecdsa_verify(); from Loganaden Velvindron, |
| 1571 | ok markus@ |
Damien Miller | fb12c6d | 2012-02-11 08:17:52 +1100 | [diff] [blame] | 1572 | - miod@cvs.openbsd.org 2012/01/16 20:34:09 |
| 1573 | [ssh-pkcs11-client.c] |
| 1574 | Fix a memory leak in pkcs11_rsa_private_encrypt(), reported by Jan Klemkow. |
| 1575 | While there, be sure to buffer_clear() between send_msg() and recv_msg(). |
| 1576 | ok markus@ |
Damien Miller | 8d60be5 | 2012-02-11 08:18:17 +1100 | [diff] [blame] | 1577 | - dtucker@cvs.openbsd.org 2012/01/18 21:46:43 |
| 1578 | [clientloop.c] |
| 1579 | Ensure that $DISPLAY contains only valid characters before using it to |
| 1580 | extract xauth data so that it can't be used to play local shell |
| 1581 | metacharacter games. Report from r00t_ati at ihteam.net, ok markus. |
Damien Miller | 1de2cfe | 2012-02-11 08:18:43 +1100 | [diff] [blame] | 1582 | - markus@cvs.openbsd.org 2012/01/25 19:26:43 |
| 1583 | [packet.c] |
| 1584 | do not permit SSH2_MSG_SERVICE_REQUEST/ACCEPT during rekeying; |
| 1585 | ok dtucker@, djm@ |
Damien Miller | 5d00770 | 2012-02-11 08:19:02 +1100 | [diff] [blame] | 1586 | - markus@cvs.openbsd.org 2012/01/25 19:36:31 |
| 1587 | [authfile.c] |
| 1588 | memleak in key_load_file(); from Jan Klemkow |
Damien Miller | 72de982 | 2012-02-11 08:19:21 +1100 | [diff] [blame] | 1589 | - markus@cvs.openbsd.org 2012/01/25 19:40:09 |
| 1590 | [packet.c packet.h] |
| 1591 | packet_read_poll() is not used anymore. |
Damien Miller | db85455 | 2012-02-11 08:19:44 +1100 | [diff] [blame] | 1592 | - markus@cvs.openbsd.org 2012/02/09 20:00:18 |
| 1593 | [version.h] |
| 1594 | move from 6.0-beta to 6.0 |
Damien Miller | a2876db | 2012-02-11 08:16:06 +1100 | [diff] [blame] | 1595 | |
Damien Miller | b56e493 | 2012-02-06 07:41:27 +1100 | [diff] [blame] | 1596 | 20120206 |
| 1597 | - (djm) [ssh-keygen.c] Don't fail in do_gen_all_hostkeys on platforms |
| 1598 | that don't support ECC. Patch from Phil Oleson |
Darren Tucker | e9b3ad7 | 2012-01-17 14:03:34 +1100 | [diff] [blame] | 1599 | |
Damien Miller | 5360dff | 2011-12-19 10:51:11 +1100 | [diff] [blame] | 1600 | 20111219 |
| 1601 | - OpenBSD CVS Sync |
| 1602 | - djm@cvs.openbsd.org 2011/12/02 00:41:56 |
| 1603 | [mux.c] |
| 1604 | fix bz#1948: ssh -f doesn't fork for multiplexed connection. |
| 1605 | ok dtucker@ |
Damien Miller | d0e582c | 2011-12-19 10:51:39 +1100 | [diff] [blame] | 1606 | - djm@cvs.openbsd.org 2011/12/02 00:43:57 |
| 1607 | [mac.c] |
| 1608 | fix bz#1934: newer OpenSSL versions will require HMAC_CTX_Init before |
| 1609 | HMAC_init (this change in policy seems insane to me) |
| 1610 | ok dtucker@ |
Damien Miller | 913ddff | 2011-12-19 10:52:21 +1100 | [diff] [blame] | 1611 | - djm@cvs.openbsd.org 2011/12/04 23:16:12 |
| 1612 | [mux.c] |
| 1613 | revert: |
| 1614 | > revision 1.32 |
| 1615 | > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1 |
| 1616 | > fix bz#1948: ssh -f doesn't fork for multiplexed connection. |
| 1617 | > ok dtucker@ |
| 1618 | it interacts badly with ControlPersist |
Damien Miller | 8ed4de8 | 2011-12-19 10:52:50 +1100 | [diff] [blame] | 1619 | - djm@cvs.openbsd.org 2011/12/07 05:44:38 |
| 1620 | [auth2.c dh.c packet.c roaming.h roaming_client.c roaming_common.c] |
| 1621 | fix some harmless and/or unreachable int overflows; |
| 1622 | reported Xi Wang, ok markus@ |
Damien Miller | 5360dff | 2011-12-19 10:51:11 +1100 | [diff] [blame] | 1623 | |
Damien Miller | 47d8115 | 2011-11-25 13:53:48 +1100 | [diff] [blame] | 1624 | 20111125 |
| 1625 | - OpenBSD CVS Sync |
| 1626 | - oga@cvs.openbsd.org 2011/11/16 12:24:28 |
| 1627 | [sftp.c] |
| 1628 | Don't leak list in complete_cmd_parse if there are no commands found. |
| 1629 | Discovered when I was ``borrowing'' this code for something else. |
| 1630 | ok djm@ |
| 1631 | |
Darren Tucker | 4a725ef | 2011-11-21 16:38:48 +1100 | [diff] [blame] | 1632 | 20111121 |
| 1633 | - (dtucker) [configure.ac] Set _FORTIFY_SOURCE. ok djm@ |
| 1634 | |
Darren Tucker | 45c66d7 | 2011-11-04 10:50:40 +1100 | [diff] [blame] | 1635 | 20111104 |
| 1636 | - (dtucker) OpenBSD CVS Sync |
| 1637 | - djm@cvs.openbsd.org 2011/10/18 05:15:28 |
| 1638 | [ssh.c] |
| 1639 | ssh(1): skip attempting to create ~/.ssh when -F is passed; ok markus@ |
Darren Tucker | e68cf84 | 2011-11-04 10:51:51 +1100 | [diff] [blame] | 1640 | - djm@cvs.openbsd.org 2011/10/18 23:37:42 |
| 1641 | [ssh-add.c] |
| 1642 | add -k to usage(); reminded by jmc@ |
Darren Tucker | 9ee09cf | 2011-11-04 10:52:43 +1100 | [diff] [blame] | 1643 | - djm@cvs.openbsd.org 2011/10/19 00:06:10 |
| 1644 | [moduli.c] |
| 1645 | s/tmpfile/tmp/ to make this -Wshadow clean |
Darren Tucker | 8a05795 | 2011-11-04 10:53:31 +1100 | [diff] [blame] | 1646 | - djm@cvs.openbsd.org 2011/10/19 10:39:48 |
| 1647 | [umac.c] |
| 1648 | typo in comment; patch from Michael W. Bombardieri |
Darren Tucker | 2d6665d | 2011-11-04 10:54:22 +1100 | [diff] [blame] | 1649 | - djm@cvs.openbsd.org 2011/10/24 02:10:46 |
| 1650 | [ssh.c] |
| 1651 | bz#1943: unbreak stdio forwarding when ControlPersist is in user - ssh |
| 1652 | was incorrectly requesting the forward in both the control master and |
| 1653 | slave. skip requesting it in the master to fix. ok markus@ |
Darren Tucker | 9c5d553 | 2011-11-04 10:55:24 +1100 | [diff] [blame] | 1654 | - djm@cvs.openbsd.org 2011/10/24 02:13:13 |
| 1655 | [session.c] |
| 1656 | bz#1859: send tty break to pty master instead of (probably already |
| 1657 | closed) slave side; "looks good" markus@ |
Darren Tucker | be4032b | 2011-11-04 11:16:06 +1100 | [diff] [blame] | 1658 | - dtucker@cvs.openbsd.org 011/11/04 00:09:39 |
| 1659 | [moduli] |
| 1660 | regenerated moduli file; ok deraadt |
Darren Tucker | aa3cbd1 | 2011-11-04 11:25:24 +1100 | [diff] [blame] | 1661 | - (dtucker) [INSTALL LICENCE configure.ac openbsd-compat/Makefile.in |
| 1662 | openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/getrrsetbyname.c] |
| 1663 | bz 1320: Add optional support for LDNS, a BSD licensed DNS resolver library |
| 1664 | which supports DNSSEC. Patch from Simon Vallet (svallet at genoscope cns fr) |
| 1665 | with some rework from myself and djm. ok djm. |
Darren Tucker | 45c66d7 | 2011-11-04 10:50:40 +1100 | [diff] [blame] | 1666 | |
Darren Tucker | 9f157ab | 2011-10-25 09:37:57 +1100 | [diff] [blame] | 1667 | 20111025 |
| 1668 | - (dtucker) [contrib/cygwin/Makefile] Continue if installing a doc file |
| 1669 | fails. Patch from Corinna Vinschen. |
| 1670 | |
Damien Miller | d3e6990 | 2011-10-18 16:04:57 +1100 | [diff] [blame] | 1671 | 20111018 |
| 1672 | - (djm) OpenBSD CVS Sync |
| 1673 | - djm@cvs.openbsd.org 2011/10/04 14:17:32 |
| 1674 | [sftp-glob.c] |
| 1675 | silence error spam for "ls */foo" in directory with files; bz#1683 |
Damien Miller | 390d056 | 2011-10-18 16:05:19 +1100 | [diff] [blame] | 1676 | - dtucker@cvs.openbsd.org 2011/10/16 11:02:46 |
| 1677 | [moduli.c ssh-keygen.1 ssh-keygen.c] |
| 1678 | Add optional checkpoints for moduli screening. feedback & ok deraadt |
Damien Miller | 927d82b | 2011-10-18 16:05:38 +1100 | [diff] [blame] | 1679 | - jmc@cvs.openbsd.org 2011/10/16 15:02:41 |
| 1680 | [ssh-keygen.c] |
| 1681 | put -K in the right place (usage()); |
Damien Miller | 91f3eae | 2011-10-18 16:05:55 +1100 | [diff] [blame] | 1682 | - stsp@cvs.openbsd.org 2011/10/16 15:51:39 |
| 1683 | [moduli.c] |
| 1684 | add missing includes to unbreak tree; fix from rpointel |
Damien Miller | c51a5ab | 2011-10-18 16:06:14 +1100 | [diff] [blame] | 1685 | - djm@cvs.openbsd.org 2011/10/18 04:58:26 |
| 1686 | [auth-options.c key.c] |
| 1687 | remove explict search for \0 in packet strings, this job is now done |
| 1688 | implicitly by buffer_get_cstring; ok markus |
Damien Miller | 8f4279e | 2011-10-18 16:06:33 +1100 | [diff] [blame] | 1689 | - djm@cvs.openbsd.org 2011/10/18 05:00:48 |
| 1690 | [ssh-add.1 ssh-add.c] |
| 1691 | new "ssh-add -k" option to load plain keys (skipping certificates); |
| 1692 | "looks ok" markus@ |
Damien Miller | d3e6990 | 2011-10-18 16:04:57 +1100 | [diff] [blame] | 1693 | |
| 1694 | 20111001 |
Darren Tucker | 036876c | 2011-10-01 18:46:12 +1000 | [diff] [blame] | 1695 | - (dtucker) [openbsd-compat/mktemp.c] Fix compiler warning. ok djm |
Darren Tucker | 1338b9e | 2011-10-02 18:57:35 +1100 | [diff] [blame] | 1696 | - (dtucker) OpenBSD CVS Sync |
| 1697 | - dtucker@cvs.openbsd.org 2011/09/23 00:22:04 |
| 1698 | [channels.c auth-options.c servconf.c channels.h sshd.8] |
| 1699 | Add wildcard support to PermitOpen, allowing things like "PermitOpen |
| 1700 | localhost:*". bz #1857, ok djm markus. |
Darren Tucker | 68afb8c | 2011-10-02 18:59:03 +1100 | [diff] [blame] | 1701 | - markus@cvs.openbsd.org 2011/09/23 07:45:05 |
| 1702 | [mux.c readconf.h channels.h compat.h compat.c ssh.c readconf.c channels.c |
| 1703 | version.h] |
| 1704 | unbreak remote portforwarding with dynamic allocated listen ports: |
| 1705 | 1) send the actual listen port in the open message (instead of 0). |
| 1706 | this allows multiple forwardings with a dynamic listen port |
| 1707 | 2) update the matching permit-open entry, so we can identify where |
| 1708 | to connect to |
| 1709 | report: den at skbkontur.ru and P. Szczygielski |
| 1710 | feedback and ok djm@ |
Darren Tucker | af1a60e | 2011-10-02 18:59:59 +1100 | [diff] [blame] | 1711 | - djm@cvs.openbsd.org 2011/09/25 05:44:47 |
| 1712 | [auth2-pubkey.c] |
| 1713 | improve the AuthorizedPrincipalsFile debug log message to include |
| 1714 | file and line number |
Darren Tucker | 95125e5 | 2011-10-02 19:09:07 +1100 | [diff] [blame] | 1715 | - dtucker@cvs.openbsd.org 2011/09/30 00:47:37 |
| 1716 | [sshd.c] |
| 1717 | don't attempt privsep cleanup when not using privsep; ok markus@ |
Darren Tucker | 2e13560 | 2011-10-02 19:10:13 +1100 | [diff] [blame] | 1718 | - djm@cvs.openbsd.org 2011/09/30 21:22:49 |
| 1719 | [sshd.c] |
| 1720 | fix inverted test that caused logspam; spotted by henning@ |
Darren Tucker | 036876c | 2011-10-01 18:46:12 +1000 | [diff] [blame] | 1721 | |
Damien Miller | 5ffe1c4 | 2011-09-29 11:11:51 +1000 | [diff] [blame] | 1722 | 20110929 |
| 1723 | - (djm) [configure.ac defines.h] No need to detect sizeof(char); patch |
| 1724 | from des AT des.no |
Darren Tucker | b54f50e | 2011-09-29 23:17:18 +1000 | [diff] [blame] | 1725 | - (dtucker) [configure.ac openbsd-compat/Makefile.in |
| 1726 | openbsd-compat/strnlen.c] Add strnlen to the compat library. |
Damien Miller | 5ffe1c4 | 2011-09-29 11:11:51 +1000 | [diff] [blame] | 1727 | |
Damien Miller | add1e20 | 2011-09-23 10:38:01 +1000 | [diff] [blame] | 1728 | 20110923 |
Damien Miller | acdf3fb | 2011-09-23 10:40:50 +1000 | [diff] [blame] | 1729 | - (djm) [openbsd-compat/getcwd.c] Remove OpenBSD rcsid marker since we no |
| 1730 | longer want to sync this file (OpenBSD uses a __getcwd syscall now, we |
| 1731 | want this longhand version) |
Damien Miller | cd92790 | 2011-09-23 10:44:03 +1000 | [diff] [blame] | 1732 | - (djm) [openbsd-compat/getgrouplist.c] Remove OpenBSD rcsid marker: the |
| 1733 | upstream version is YPified and we don't want this |
Damien Miller | 4888671 | 2011-09-23 10:56:29 +1000 | [diff] [blame] | 1734 | - (djm) [openbsd-compat/mktemp.c] forklift upgrade to -current version. |
| 1735 | The file was totally rewritten between what we had in tree and -current. |
Damien Miller | 64efe96 | 2011-09-23 11:13:00 +1000 | [diff] [blame] | 1736 | - (djm) [openbsd-compat/sha2.c openbsd-compat/sha2.h] Remove OpenBSD rcsid |
| 1737 | marker. The upstream API has changed (function and structure names) |
| 1738 | enough to put it out of sync with other providers of this interface. |
Damien Miller | d1a7458 | 2011-09-23 11:26:34 +1000 | [diff] [blame] | 1739 | - (djm) [openbsd-compat/setenv.c] Forklift upgrade, including inclusion |
| 1740 | of static __findenv() function from upstream setenv.c |
Damien Miller | add1e20 | 2011-09-23 10:38:01 +1000 | [diff] [blame] | 1741 | - OpenBSD CVS Sync |
| 1742 | - millert@cvs.openbsd.org 2006/05/05 15:27:38 |
Damien Miller | acdf3fb | 2011-09-23 10:40:50 +1000 | [diff] [blame] | 1743 | [openbsd-compat/strlcpy.c] |
Damien Miller | add1e20 | 2011-09-23 10:38:01 +1000 | [diff] [blame] | 1744 | Convert do {} while loop -> while {} for clarity. No binary change |
| 1745 | on most architectures. From Oliver Smith. OK deraadt@ and henning@ |
Damien Miller | 834e820 | 2011-09-23 10:42:02 +1000 | [diff] [blame] | 1746 | - tobias@cvs.openbsd.org 2007/10/21 11:09:30 |
Damien Miller | 3e6fe87 | 2011-09-23 11:16:09 +1000 | [diff] [blame] | 1747 | [openbsd-compat/mktemp.c] |
Damien Miller | 834e820 | 2011-09-23 10:42:02 +1000 | [diff] [blame] | 1748 | Comment fix about time consumption of _gettemp. |
| 1749 | FreeBSD did this in revision 1.20. |
| 1750 | OK deraadt@, krw@ |
Damien Miller | dc0e09b | 2011-09-23 10:46:48 +1000 | [diff] [blame] | 1751 | - deraadt@cvs.openbsd.org 2008/07/22 21:47:45 |
Damien Miller | 3e6fe87 | 2011-09-23 11:16:09 +1000 | [diff] [blame] | 1752 | [openbsd-compat/mktemp.c] |
Damien Miller | dc0e09b | 2011-09-23 10:46:48 +1000 | [diff] [blame] | 1753 | use arc4random_uniform(); ok djm millert |
Damien Miller | 3a359b3 | 2011-09-23 10:47:29 +1000 | [diff] [blame] | 1754 | - millert@cvs.openbsd.org 2008/08/21 16:54:44 |
Damien Miller | 3e6fe87 | 2011-09-23 11:16:09 +1000 | [diff] [blame] | 1755 | [openbsd-compat/mktemp.c] |
Damien Miller | 3a359b3 | 2011-09-23 10:47:29 +1000 | [diff] [blame] | 1756 | Remove useless code, the kernel will set errno appropriately if an |
| 1757 | element in the path does not exist. OK deraadt@ pvalchev@ |
Damien Miller | 3e6fe87 | 2011-09-23 11:16:09 +1000 | [diff] [blame] | 1758 | - otto@cvs.openbsd.org 2008/12/09 19:38:38 |
| 1759 | [openbsd-compat/inet_ntop.c] |
| 1760 | fix inet_ntop(3) prototype; ok millert@ libc to be bumbed very soon |
Damien Miller | add1e20 | 2011-09-23 10:38:01 +1000 | [diff] [blame] | 1761 | |
Damien Miller | e01a627 | 2011-09-22 21:20:21 +1000 | [diff] [blame] | 1762 | 20110922 |
| 1763 | - OpenBSD CVS Sync |
| 1764 | - pyr@cvs.openbsd.org 2011/05/12 07:15:10 |
| 1765 | [openbsd-compat/glob.c] |
| 1766 | When the max number of items for a directory has reached GLOB_LIMIT_READDIR |
| 1767 | an error is returned but closedir() is not called. |
| 1768 | spotted and fix provided by Frank Denis obsd-tech@pureftpd.org |
| 1769 | ok otto@, millert@ |
Damien Miller | c4bf7dd | 2011-09-22 21:21:48 +1000 | [diff] [blame] | 1770 | - stsp@cvs.openbsd.org 2011/09/20 10:18:46 |
| 1771 | [glob.c] |
| 1772 | In glob(3), limit recursion during matching attempts. Similar to |
| 1773 | fnmatch fix. Also collapse consecutive '*' (from NetBSD). |
| 1774 | ok miod deraadt |
Damien Miller | e128a50 | 2011-09-22 21:22:21 +1000 | [diff] [blame] | 1775 | - djm@cvs.openbsd.org 2011/09/22 06:27:29 |
| 1776 | [glob.c] |
| 1777 | fix GLOB_KEEPSTAT without GLOB_NOSORT; the implicit sort was being |
| 1778 | applied only to the gl_pathv vector and not the corresponding gl_statv |
| 1779 | array. reported in OpenSSH bz#1935; feedback and okay matthew@ |
Damien Miller | efad727 | 2011-09-22 21:33:53 +1000 | [diff] [blame] | 1780 | - djm@cvs.openbsd.org 2011/08/26 01:45:15 |
| 1781 | [ssh.1] |
| 1782 | Add some missing ssh_config(5) options that can be used in ssh(1)'s |
| 1783 | -o argument. Patch from duclare AT guu.fi |
Damien Miller | e577772 | 2011-09-22 21:34:15 +1000 | [diff] [blame] | 1784 | - djm@cvs.openbsd.org 2011/09/05 05:56:13 |
| 1785 | [scp.1 sftp.1] |
| 1786 | mention ControlPersist and KbdInteractiveAuthentication in the -o |
| 1787 | verbiage in these pages too (prompted by jmc@) |
Damien Miller | 2918e03 | 2011-09-22 21:34:35 +1000 | [diff] [blame] | 1788 | - djm@cvs.openbsd.org 2011/09/05 05:59:08 |
| 1789 | [misc.c] |
| 1790 | fix typo in IPQoS parsing: there is no "AF14" class, but there is |
| 1791 | an "AF21" class. Spotted by giesen AT snickers.org; ok markus stevesk |
Damien Miller | e029673 | 2011-09-22 21:34:56 +1000 | [diff] [blame] | 1792 | - jmc@cvs.openbsd.org 2011/09/05 07:01:44 |
| 1793 | [scp.1] |
| 1794 | knock out a useless Ns; |
Damien Miller | 6232a16 | 2011-09-22 21:36:00 +1000 | [diff] [blame] | 1795 | - deraadt@cvs.openbsd.org 2011/09/07 02:18:31 |
| 1796 | [ssh-keygen.1] |
| 1797 | typo (they vs the) found by Lawrence Teo |
Damien Miller | f6e758c | 2011-09-22 21:37:13 +1000 | [diff] [blame] | 1798 | - djm@cvs.openbsd.org 2011/09/09 00:43:00 |
| 1799 | [ssh_config.5 sshd_config.5] |
| 1800 | fix typo in IPQoS parsing: there is no "AF14" class, but there is |
| 1801 | an "AF21" class. Spotted by giesen AT snickers.org; ok markus stevesk |
Damien Miller | 4cb855b | 2011-09-22 21:37:38 +1000 | [diff] [blame] | 1802 | - djm@cvs.openbsd.org 2011/09/09 00:44:07 |
| 1803 | [PROTOCOL.mux] |
| 1804 | MUX_C_CLOSE_FWD includes forward type in message (though it isn't |
| 1805 | implemented anyway) |
Damien Miller | 0603d98 | 2011-09-22 21:38:00 +1000 | [diff] [blame] | 1806 | - djm@cvs.openbsd.org 2011/09/09 22:37:01 |
| 1807 | [scp.c] |
| 1808 | suppress adding '--' to remote commandlines when the first argument |
| 1809 | does not start with '-'. saves breakage on some difficult-to-upgrade |
| 1810 | embedded/router platforms; feedback & ok dtucker ok markus |
Damien Miller | 9ee2c60 | 2011-09-22 21:38:30 +1000 | [diff] [blame] | 1811 | - djm@cvs.openbsd.org 2011/09/09 22:38:21 |
| 1812 | [sshd.c] |
| 1813 | kill the preauth privsep child on fatal errors in the monitor; |
| 1814 | ok markus@ |
Damien Miller | f6dff7c | 2011-09-22 21:38:52 +1000 | [diff] [blame] | 1815 | - djm@cvs.openbsd.org 2011/09/09 22:46:44 |
| 1816 | [channels.c channels.h clientloop.h mux.c ssh.c] |
| 1817 | support for cancelling local and remote port forwards via the multiplex |
| 1818 | socket. Use ssh -O cancel -L xx:xx:xx -R yy:yy:yy user@host" to request |
| 1819 | the cancellation of the specified forwardings; ok markus@ |
Damien Miller | ff77364 | 2011-09-22 21:39:48 +1000 | [diff] [blame] | 1820 | - markus@cvs.openbsd.org 2011/09/10 22:26:34 |
| 1821 | [channels.c channels.h clientloop.c ssh.1] |
| 1822 | support cancellation of local/dynamic forwardings from ~C commandline; |
| 1823 | ok & feedback djm@ |
Damien Miller | 1bcbd0a | 2011-09-22 21:40:45 +1000 | [diff] [blame] | 1824 | - okan@cvs.openbsd.org 2011/09/11 06:59:05 |
| 1825 | [ssh.1] |
| 1826 | document new -O cancel command; ok djm@ |
Damien Miller | 3decdba | 2011-09-22 21:41:05 +1000 | [diff] [blame] | 1827 | - markus@cvs.openbsd.org 2011/09/11 16:07:26 |
| 1828 | [sftp-client.c] |
| 1829 | fix leaks in do_hardlink() and do_readlink(); bz#1921 |
| 1830 | from Loganaden Velvindron |
Damien Miller | 57c38ac | 2011-09-22 21:42:45 +1000 | [diff] [blame] | 1831 | - markus@cvs.openbsd.org 2011/09/12 08:46:15 |
| 1832 | [sftp-client.c] |
| 1833 | fix leak in do_lsreaddir(); ok djm |
Damien Miller | d7be70d | 2011-09-22 21:43:06 +1000 | [diff] [blame] | 1834 | - djm@cvs.openbsd.org 2011/09/22 06:29:03 |
| 1835 | [sftp.c] |
| 1836 | don't let remote_glob() implicitly sort its results in do_globbed_ls() - |
| 1837 | in all likelihood, they will be resorted anyway |
Damien Miller | e01a627 | 2011-09-22 21:20:21 +1000 | [diff] [blame] | 1838 | |
Darren Tucker | e8a82c5 | 2011-09-09 11:29:40 +1000 | [diff] [blame] | 1839 | 20110909 |
| 1840 | - (dtucker) [entropy.h] Bug #1932: remove old definition of init_rng. From |
| 1841 | Colin Watson. |
| 1842 | |
Damien Miller | fb9d817 | 2011-09-07 09:11:53 +1000 | [diff] [blame] | 1843 | 20110906 |
| 1844 | - (djm) [README version.h] Correct version |
Damien Miller | 022ee24 | 2011-09-07 09:15:02 +1000 | [diff] [blame] | 1845 | - (djm) [contrib/redhat/openssh.spec] Correct restorcon => restorecon |
| 1846 | - (djm) Respin OpenSSH-5.9p1 release |
Damien Miller | fb9d817 | 2011-09-07 09:11:53 +1000 | [diff] [blame] | 1847 | |
Damien Miller | 86dcd3e | 2011-09-05 10:29:04 +1000 | [diff] [blame] | 1848 | 20110905 |
| 1849 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 1850 | [contrib/suse/openssh.spec] Update version numbers. |
| 1851 | |
Damien Miller | 6efd94f | 2011-09-04 19:04:16 +1000 | [diff] [blame] | 1852 | 20110904 |
| 1853 | - (djm) [regress/connect-privsep.sh regress/test-exec.sh] demote fatal |
| 1854 | regress errors for the sandbox to warnings. ok tim dtucker |
Darren Tucker | 0dd24e0 | 2011-09-04 19:59:26 +1000 | [diff] [blame] | 1855 | - (dtucker) [ssh-keygen.c ssh-pkcs11.c] Bug #1929: add null implementations |
Damien Miller | 86dcd3e | 2011-09-05 10:29:04 +1000 | [diff] [blame] | 1856 | ofsh-pkcs11.cpkcs_init and pkcs_terminate for building without dlopen |
| 1857 | support. |
Damien Miller | 6efd94f | 2011-09-04 19:04:16 +1000 | [diff] [blame] | 1858 | |
Damien Miller | 58ac11a | 2011-08-29 16:09:52 +1000 | [diff] [blame] | 1859 | 20110829 |
| 1860 | - (djm) [openbsd-compat/port-linux.c] Suppress logging when attempting |
| 1861 | to switch SELinux context away from unconfined_t, based on patch from |
| 1862 | Jan Chadima; bz#1919 ok dtucker@ |
| 1863 | |
Darren Tucker | 4438354 | 2011-08-28 04:50:16 +1000 | [diff] [blame] | 1864 | 20110827 |
| 1865 | - (dtucker) [auth-skey.c] Add log.h to fix build --with-skey. |
| 1866 | |
Tim Rice | a6e6061 | 2011-08-17 21:48:22 -0700 | [diff] [blame] | 1867 | 20110818 |
| 1868 | - (tim) [configure.ac] Typo in error message spotted by Andy Tsouladze |
| 1869 | |
Tim Rice | a122682 | 2011-08-16 17:29:01 -0700 | [diff] [blame] | 1870 | 20110817 |
| 1871 | - (tim) [mac.c myproposal.h] Wrap SHA256 and SHA512 in ifdefs for |
| 1872 | OpenSSL 0.9.7. ok djm |
Damien Miller | 9c08312 | 2011-08-17 11:31:07 +1000 | [diff] [blame] | 1873 | - (djm) [ openbsd-compat/bsd-cygwin_util.c openbsd-compat/bsd-cygwin_util.h] |
| 1874 | binary_pipe is no longer required on Cygwin; patch from Corinna Vinschen |
Damien Miller | 1a91c0f | 2011-08-17 11:59:25 +1000 | [diff] [blame] | 1875 | - (djm) [configure.ac] error out if the host lacks the necessary bits for |
| 1876 | an explicitly requested sandbox type |
Damien Miller | 44a6c93 | 2011-08-17 12:01:44 +1000 | [diff] [blame] | 1877 | - (djm) [contrib/ssh-copy-id] Missing backlslash; spotted by |
| 1878 | bisson AT archlinux.org |
Damien Miller | 9231c8b | 2011-08-17 12:08:15 +1000 | [diff] [blame] | 1879 | - (djm) OpenBSD CVS Sync |
| 1880 | - dtucker@cvs.openbsd.org 2011/06/03 05:35:10 |
| 1881 | [regress/cfgmatch.sh] |
| 1882 | use OBJ to find test configs, patch from Tim Rice |
Damien Miller | faf4d80 | 2011-08-17 12:09:19 +1000 | [diff] [blame] | 1883 | - markus@cvs.openbsd.org 2011/06/30 22:44:43 |
| 1884 | [regress/connect-privsep.sh] |
| 1885 | test with sandbox enabled; ok djm@ |
Damien Miller | 062fa30 | 2011-08-17 12:10:02 +1000 | [diff] [blame] | 1886 | - djm@cvs.openbsd.org 2011/08/02 01:23:41 |
| 1887 | [regress/cipher-speed.sh regress/try-ciphers.sh] |
| 1888 | add SHA256/SHA512 based HMAC modes |
Damien Miller | 2df1bec | 2011-08-17 12:25:46 +1000 | [diff] [blame] | 1889 | - (djm) [regress/cipher-speed.sh regress/try-ciphers.sh] disable HMAC-SHA2 |
| 1890 | MAC tests for platforms that hack EVP_SHA2 support |
Tim Rice | a122682 | 2011-08-16 17:29:01 -0700 | [diff] [blame] | 1891 | |
Darren Tucker | 4d47ec9 | 2011-08-12 10:12:53 +1000 | [diff] [blame] | 1892 | 20110812 |
| 1893 | - (dtucker) [openbsd-compat/port-linux.c] Bug 1924: Improve selinux context |
| 1894 | change error by reporting old and new context names Patch from |
| 1895 | jchadima at redhat. |
Damien Miller | 2db9977 | 2011-08-12 11:02:35 +1000 | [diff] [blame] | 1896 | - (djm) [contrib/redhat/openssh.spec contrib/redhat/sshd.init] |
| 1897 | [contrib/suse/openssh.spec contrib/suse/rc.sshd] Updated RHEL and SLES |
Damien Miller | d1eb1dd | 2011-08-12 11:22:47 +1000 | [diff] [blame] | 1898 | init scrips from imorgan AT nas.nasa.gov; bz#1920 |
| 1899 | - (djm) [contrib/ssh-copy-id] Fix failure for cases where the path to the |
| 1900 | identify file contained whitespace. bz#1828 patch from gwenael.lambrouin |
| 1901 | AT gmail.com; ok dtucker@ |
Darren Tucker | 4d47ec9 | 2011-08-12 10:12:53 +1000 | [diff] [blame] | 1902 | |
Darren Tucker | 578451d | 2011-08-07 23:09:20 +1000 | [diff] [blame] | 1903 | 20110807 |
| 1904 | - (dtucker) OpenBSD CVS Sync |
| 1905 | - jmc@cvs.openbsd.org 2008/06/26 06:59:39 |
| 1906 | [moduli.5] |
| 1907 | tweak previous; |
Darren Tucker | f279474 | 2011-08-07 23:10:11 +1000 | [diff] [blame] | 1908 | - sobrado@cvs.openbsd.org 2009/10/28 08:56:54 |
| 1909 | [moduli.5] |
| 1910 | "Diffie-Hellman" is the usual spelling for the cryptographic protocol |
| 1911 | first published by Whitfield Diffie and Martin Hellman in 1976. |
| 1912 | ok jmc@ |
Darren Tucker | 91e6b57 | 2011-08-07 23:10:56 +1000 | [diff] [blame] | 1913 | - jmc@cvs.openbsd.org 2010/10/14 20:41:28 |
| 1914 | [moduli.5] |
| 1915 | probabalistic -> probabilistic; from naddy |
Darren Tucker | ddccfb4 | 2011-08-07 23:12:26 +1000 | [diff] [blame] | 1916 | - dtucker@cvs.openbsd.org 2011/08/07 12:55:30 |
| 1917 | [sftp.1] |
| 1918 | typo, fix from Laurent Gautrot |
Darren Tucker | 578451d | 2011-08-07 23:09:20 +1000 | [diff] [blame] | 1919 | |
Damien Miller | 7741ce8 | 2011-08-06 06:15:15 +1000 | [diff] [blame] | 1920 | 20110805 |
| 1921 | - OpenBSD CVS Sync |
| 1922 | - djm@cvs.openbsd.org 2011/06/23 23:35:42 |
| 1923 | [monitor.c] |
| 1924 | ignore EINTR errors from poll() |
Damien Miller | 6ea5e44 | 2011-08-06 06:16:00 +1000 | [diff] [blame] | 1925 | - tedu@cvs.openbsd.org 2011/07/06 18:09:21 |
| 1926 | [authfd.c] |
| 1927 | bzero the agent address. the kernel was for a while very cranky about |
| 1928 | these things. evne though that's fixed, always good to initialize |
| 1929 | memory. ok deraadt djm |
Damien Miller | 35e4819 | 2011-08-06 06:16:23 +1000 | [diff] [blame] | 1930 | - djm@cvs.openbsd.org 2011/07/29 14:42:45 |
| 1931 | [sandbox-systrace.c] |
| 1932 | fail open(2) with EPERM rather than SIGKILLing the whole process. libc |
| 1933 | will call open() to do strerror() when NLS is enabled; |
| 1934 | feedback and ok markus@ |
Damien Miller | adb467f | 2011-08-06 06:16:46 +1000 | [diff] [blame] | 1935 | - markus@cvs.openbsd.org 2011/08/01 19:18:15 |
| 1936 | [gss-serv.c] |
| 1937 | prevent post-auth resource exhaustion (int overflow leading to 4GB malloc); |
| 1938 | report Adam Zabrock; ok djm@, deraadt@ |
Damien Miller | 20bd453 | 2011-08-06 06:17:30 +1000 | [diff] [blame] | 1939 | - djm@cvs.openbsd.org 2011/08/02 01:22:11 |
| 1940 | [mac.c myproposal.h ssh.1 ssh_config.5 sshd.8 sshd_config.5] |
| 1941 | Add new SHA256 and SHA512 based HMAC modes from |
| 1942 | http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt |
| 1943 | Patch from mdb AT juniper.net; feedback and ok markus@ |
Damien Miller | c471860 | 2011-08-06 06:17:48 +1000 | [diff] [blame] | 1944 | - djm@cvs.openbsd.org 2011/08/02 23:13:01 |
| 1945 | [version.h] |
| 1946 | crank now, release later |
Damien Miller | 765f8c4 | 2011-08-06 06:18:16 +1000 | [diff] [blame] | 1947 | - djm@cvs.openbsd.org 2011/08/02 23:15:03 |
| 1948 | [ssh.c] |
| 1949 | typo in comment |
Damien Miller | 7741ce8 | 2011-08-06 06:15:15 +1000 | [diff] [blame] | 1950 | |
Damien Miller | cd5e52e | 2011-06-27 07:18:18 +1000 | [diff] [blame] | 1951 | 20110624 |
| 1952 | - (djm) [configure.ac Makefile.in sandbox-darwin.c] Add a sandbox for |
| 1953 | Darwin/OS X using sandbox_init() + setrlimit(); feedback and testing |
| 1954 | markus@ |
| 1955 | |
Damien Miller | 82c5587 | 2011-06-23 08:20:30 +1000 | [diff] [blame] | 1956 | 20110623 |
| 1957 | - OpenBSD CVS Sync |
| 1958 | - djm@cvs.openbsd.org 2011/06/22 21:47:28 |
| 1959 | [servconf.c] |
| 1960 | reuse the multistate option arrays to pretty-print options for "sshd -T" |
Damien Miller | 69ff1df | 2011-06-23 08:30:03 +1000 | [diff] [blame] | 1961 | - djm@cvs.openbsd.org 2011/06/22 21:57:01 |
| 1962 | [servconf.c servconf.h sshd.c sshd_config.5] |
| 1963 | [configure.ac Makefile.in] |
| 1964 | introduce sandboxing of the pre-auth privsep child using systrace(4). |
| 1965 | |
| 1966 | This introduces a new "UsePrivilegeSeparation=sandbox" option for |
| 1967 | sshd_config that applies mandatory restrictions on the syscalls the |
| 1968 | privsep child can perform. This prevents a compromised privsep child |
| 1969 | from being used to attack other hosts (by opening sockets and proxying) |
| 1970 | or probing local kernel attack surface. |
| 1971 | |
| 1972 | The sandbox is implemented using systrace(4) in unsupervised "fast-path" |
| 1973 | mode, where a list of permitted syscalls is supplied. Any syscall not |
| 1974 | on the list results in SIGKILL being sent to the privsep child. Note |
| 1975 | that this requires a kernel with the new SYSTR_POLICY_KILL option. |
| 1976 | |
| 1977 | UsePrivilegeSeparation=sandbox will become the default in the future |
| 1978 | so please start testing it now. |
| 1979 | |
| 1980 | feedback dtucker@; ok markus@ |
Damien Miller | 6d7b437 | 2011-06-23 08:31:57 +1000 | [diff] [blame] | 1981 | - djm@cvs.openbsd.org 2011/06/22 22:08:42 |
| 1982 | [channels.c channels.h clientloop.c clientloop.h mux.c ssh.c] |
| 1983 | hook up a channel confirm callback to warn the user then requested X11 |
| 1984 | forwarding was refused by the server; ok markus@ |
Damien Miller | dcbd41e | 2011-06-23 19:45:51 +1000 | [diff] [blame] | 1985 | - djm@cvs.openbsd.org 2011/06/23 09:34:13 |
| 1986 | [sshd.c ssh-sandbox.h sandbox.h sandbox-rlimit.c sandbox-systrace.c] |
| 1987 | [sandbox-null.c] |
| 1988 | rename sandbox.h => ssh-sandbox.h to make things easier for portable |
Damien Miller | 80b62e3 | 2011-06-23 19:03:18 +1000 | [diff] [blame] | 1989 | - (djm) [sandbox-null.c] Dummy sandbox for platforms that don't support |
| 1990 | setrlimit(2) |
Damien Miller | 82c5587 | 2011-06-23 08:20:30 +1000 | [diff] [blame] | 1991 | |
Damien Miller | 6029e07 | 2011-06-20 14:22:49 +1000 | [diff] [blame] | 1992 | 20110620 |
| 1993 | - OpenBSD CVS Sync |
| 1994 | - djm@cvs.openbsd.org 2011/06/04 00:10:26 |
| 1995 | [ssh_config.5] |
| 1996 | explain IdentifyFile's semantics a little better, prompted by bz#1898 |
| 1997 | ok dtucker jmc |
Damien Miller | e7ac2bd | 2011-06-20 14:23:25 +1000 | [diff] [blame] | 1998 | - markus@cvs.openbsd.org 2011/06/14 22:49:18 |
| 1999 | [authfile.c] |
| 2000 | make sure key_parse_public/private_rsa1() no longer consumes its input |
| 2001 | buffer. fixes ssh-add for passphrase-protected ssh1-keys; |
| 2002 | noted by naddy@; ok djm@ |
Damien Miller | 8f0bf23 | 2011-06-20 14:42:23 +1000 | [diff] [blame] | 2003 | - djm@cvs.openbsd.org 2011/06/17 21:44:31 |
| 2004 | [log.c log.h monitor.c monitor.h monitor_wrap.c monitor_wrap.h sshd.c] |
| 2005 | make the pre-auth privsep slave log via a socketpair shared with the |
| 2006 | monitor rather than /var/empty/dev/log; ok dtucker@ deraadt@ markus@ |
Damien Miller | f145a5b | 2011-06-20 14:42:51 +1000 | [diff] [blame] | 2007 | - djm@cvs.openbsd.org 2011/06/17 21:46:16 |
| 2008 | [sftp-server.c] |
| 2009 | the protocol version should be unsigned; bz#1913 reported by mb AT |
| 2010 | smartftp.com |
Damien Miller | 3332212 | 2011-06-20 14:43:11 +1000 | [diff] [blame] | 2011 | - djm@cvs.openbsd.org 2011/06/17 21:47:35 |
| 2012 | [servconf.c] |
| 2013 | factor out multi-choice option parsing into a parse_multistate label |
| 2014 | and some support structures; ok dtucker@ |
Damien Miller | 4ac99c3 | 2011-06-20 14:43:31 +1000 | [diff] [blame] | 2015 | - djm@cvs.openbsd.org 2011/06/17 21:57:25 |
| 2016 | [clientloop.c] |
| 2017 | setproctitle for a mux master that has been gracefully stopped; |
| 2018 | bz#1911 from Bert.Wesarg AT googlemail.com |
Damien Miller | 6029e07 | 2011-06-20 14:22:49 +1000 | [diff] [blame] | 2019 | |
Darren Tucker | c412c15 | 2011-06-03 10:35:23 +1000 | [diff] [blame] | 2020 | 20110603 |
| 2021 | - (dtucker) [README version.h contrib/caldera/openssh.spec |
| 2022 | contrib/redhat/openssh.spec contrib/suse/openssh.spec] Pull the version |
| 2023 | bumps from the 5.8p2 branch into HEAD. ok djm. |
Tim Rice | 90f42b0 | 2011-06-02 18:17:49 -0700 | [diff] [blame] | 2024 | - (tim) [configure.ac defines.h] Run test program to detect system mail |
| 2025 | directory. Add --with-maildir option to override. Fixed OpenServer 6 |
| 2026 | getting it wrong. Fixed many systems having MAIL=/var/mail//username |
| 2027 | ok dtucker |
Darren Tucker | c3c7227 | 2011-06-03 11:20:06 +1000 | [diff] [blame] | 2028 | - (dtucker) [monitor.c] Remove the !HAVE_SOCKETPAIR case. We use socketpair |
| 2029 | unconditionally in other places and the survey data we have does not show |
| 2030 | any systems that use it. "nuke it" djm@ |
Damien Miller | c09182f | 2011-06-03 12:11:38 +1000 | [diff] [blame] | 2031 | - (djm) [configure.ac] enable setproctitle emulation for OS X |
| 2032 | - (djm) OpenBSD CVS Sync |
Damien Miller | ea2c1a4 | 2011-06-03 12:10:22 +1000 | [diff] [blame] | 2033 | - djm@cvs.openbsd.org 2011/06/03 00:54:38 |
| 2034 | [ssh.c] |
| 2035 | bz#1883 - setproctitle() to identify mux master; patch from Bert.Wesarg |
| 2036 | AT googlemail.com; ok dtucker@ |
| 2037 | NB. includes additional portability code to enable setproctitle emulation |
| 2038 | on platforms that don't support it. |
Darren Tucker | 3e78a51 | 2011-06-03 14:14:16 +1000 | [diff] [blame] | 2039 | - dtucker@cvs.openbsd.org 2011/06/03 01:37:40 |
| 2040 | [ssh-agent.c] |
| 2041 | Check current parent process ID against saved one to determine if the parent |
| 2042 | has exited, rather than attempting to send a zero signal, since the latter |
| 2043 | won't work if the parent has changed privs. bz#1905, patch from Daniel Kahn |
| 2044 | Gillmor, ok djm@ |
Darren Tucker | 260c8fb | 2011-06-03 14:17:27 +1000 | [diff] [blame] | 2045 | - dtucker@cvs.openbsd.org 2011/05/31 02:01:58 |
| 2046 | [regress/dynamic-forward.sh] |
| 2047 | back out revs 1.6 and 1.5 since it's not reliable |
Darren Tucker | 75e035c | 2011-06-03 14:18:17 +1000 | [diff] [blame] | 2048 | - dtucker@cvs.openbsd.org 2011/05/31 02:03:34 |
| 2049 | [regress/dynamic-forward.sh] |
| 2050 | work around startup and teardown races; caught by deraadt |
Darren Tucker | bf4d05a | 2011-06-03 14:19:02 +1000 | [diff] [blame] | 2051 | - dtucker@cvs.openbsd.org 2011/06/03 00:29:52 |
| 2052 | [regress/dynamic-forward.sh] |
| 2053 | Retry establishing the port forwarding after a small delay, should make |
| 2054 | the tests less flaky when the previous test is slow to shut down and free |
| 2055 | up the port. |
Tim Rice | bc48157 | 2011-06-02 22:26:19 -0700 | [diff] [blame] | 2056 | - (tim) [regress/cfgmatch.sh] Build/test out of tree fix. |
Darren Tucker | c412c15 | 2011-06-03 10:35:23 +1000 | [diff] [blame] | 2057 | |
Damien Miller | d8478b6 | 2011-05-29 21:39:36 +1000 | [diff] [blame] | 2058 | 20110529 |
| 2059 | - (djm) OpenBSD CVS Sync |
| 2060 | - djm@cvs.openbsd.org 2011/05/23 03:30:07 |
| 2061 | [auth-rsa.c auth.c auth.h auth2-pubkey.c monitor.c monitor_wrap.c] |
| 2062 | [pathnames.h servconf.c servconf.h sshd.8 sshd_config sshd_config.5] |
| 2063 | allow AuthorizedKeysFile to specify multiple files, separated by spaces. |
| 2064 | Bring back authorized_keys2 as a default search path (to avoid breaking |
| 2065 | existing users of this file), but override this in sshd_config so it will |
| 2066 | be no longer used on fresh installs. Maybe in 2015 we can remove it |
| 2067 | entierly :) |
| 2068 | |
| 2069 | feedback and ok markus@ dtucker@ |
Damien Miller | 1dd66e5 | 2011-05-29 21:40:42 +1000 | [diff] [blame] | 2070 | - djm@cvs.openbsd.org 2011/05/23 03:33:38 |
| 2071 | [auth.c] |
| 2072 | make secure_filename() spam debug logs less |
Damien Miller | 201f425 | 2011-05-29 21:41:03 +1000 | [diff] [blame] | 2073 | - djm@cvs.openbsd.org 2011/05/23 03:52:55 |
| 2074 | [sshconnect.c] |
| 2075 | remove extra newline |
Damien Miller | b9132fc | 2011-05-29 21:41:40 +1000 | [diff] [blame] | 2076 | - jmc@cvs.openbsd.org 2011/05/23 07:10:21 |
| 2077 | [sshd.8 sshd_config.5] |
| 2078 | tweak previous; ok djm |
Damien Miller | 04bb56e | 2011-05-29 21:42:08 +1000 | [diff] [blame] | 2079 | - djm@cvs.openbsd.org 2011/05/23 07:24:57 |
| 2080 | [authfile.c] |
| 2081 | read in key comments for v.2 keys (though note that these are not |
| 2082 | passed over the agent protocol); bz#439, based on patch from binder |
| 2083 | AT arago.de; ok markus@ |
Damien Miller | 295ee63 | 2011-05-29 21:42:31 +1000 | [diff] [blame] | 2084 | - djm@cvs.openbsd.org 2011/05/24 07:15:47 |
| 2085 | [readconf.c readconf.h ssh.c ssh_config.5 sshconnect.c sshconnect2.c] |
| 2086 | Remove undocumented legacy options UserKnownHostsFile2 and |
| 2087 | GlobalKnownHostsFile2 by making UserKnownHostsFile/GlobalKnownHostsFile |
| 2088 | accept multiple paths per line and making their defaults include |
| 2089 | known_hosts2; ok markus |
Damien Miller | 8cb3587 | 2011-05-29 21:59:10 +1000 | [diff] [blame] | 2090 | - djm@cvs.openbsd.org 2011/05/23 03:31:31 |
| 2091 | [regress/cfgmatch.sh] |
| 2092 | include testing of multiple/overridden AuthorizedKeysFiles |
| 2093 | refactor to simply daemon start/stop and get rid of racy constructs |
Damien Miller | d8478b6 | 2011-05-29 21:39:36 +1000 | [diff] [blame] | 2094 | |
Damien Miller | 14684a1 | 2011-05-20 11:23:07 +1000 | [diff] [blame] | 2095 | 20110520 |
| 2096 | - (djm) [session.c] call setexeccon() before executing passwd for pw |
| 2097 | changes; bz#1891 reported by jchadima AT redhat.com; ok dtucker@ |
Damien Miller | 989bb7f | 2011-05-20 18:56:30 +1000 | [diff] [blame] | 2098 | - (djm) [aclocal.m4 configure.ac] since gcc-4.x ignores all -Wno-options |
| 2099 | options, we should corresponding -W-option when trying to determine |
| 2100 | whether it is accepted. Also includes a warning fix on the program |
| 2101 | fragment uses (bad main() return type). |
| 2102 | bz#1900 and bz#1901 reported by g.esp AT free.fr; ok dtucker@ |
Damien Miller | ec2eaa3 | 2011-05-20 18:57:14 +1000 | [diff] [blame] | 2103 | - (djm) [servconf.c] remove leftover droppings of AuthorizedKeysFile2 |
Damien Miller | 814ace0 | 2011-05-20 19:02:47 +1000 | [diff] [blame] | 2104 | - OpenBSD CVS Sync |
| 2105 | - djm@cvs.openbsd.org 2011/05/15 08:09:01 |
| 2106 | [authfd.c monitor.c serverloop.c] |
| 2107 | use FD_CLOEXEC consistently; patch from zion AT x96.org |
Damien Miller | 8f639fe | 2011-05-20 19:03:08 +1000 | [diff] [blame] | 2108 | - djm@cvs.openbsd.org 2011/05/17 07:13:31 |
| 2109 | [key.c] |
| 2110 | fatal() if asked to generate a legacy ECDSA cert (these don't exist) |
| 2111 | and fix the regress test that was trying to generate them :) |
Damien Miller | 5d74e58 | 2011-05-20 19:03:31 +1000 | [diff] [blame] | 2112 | - djm@cvs.openbsd.org 2011/05/20 00:55:02 |
| 2113 | [servconf.c] |
| 2114 | the options TrustedUserCAKeys, RevokedKeysFile, AuthorizedKeysFile |
| 2115 | and AuthorizedPrincipalsFile were not being correctly applied in |
| 2116 | Match blocks, despite being overridable there; ok dtucker@ |
Damien Miller | c241190 | 2011-05-20 19:03:49 +1000 | [diff] [blame] | 2117 | - dtucker@cvs.openbsd.org 2011/05/20 02:00:19 |
| 2118 | [servconf.c] |
| 2119 | Add comment documenting what should be after the preauth check. ok djm |
Damien Miller | f2e407e | 2011-05-20 19:04:14 +1000 | [diff] [blame] | 2120 | - djm@cvs.openbsd.org 2011/05/20 03:25:45 |
| 2121 | [monitor.c monitor_wrap.c servconf.c servconf.h] |
| 2122 | use a macro to define which string options to copy between configs |
| 2123 | for Match. This avoids problems caused by forgetting to keep three |
| 2124 | code locations in perfect sync and ordering |
| 2125 | |
| 2126 | "this is at once beautiful and horrible" + ok dtucker@ |
Damien Miller | f67188f | 2011-05-20 19:06:48 +1000 | [diff] [blame] | 2127 | - djm@cvs.openbsd.org 2011/05/17 07:13:31 |
| 2128 | [regress/cert-userkey.sh] |
| 2129 | fatal() if asked to generate a legacy ECDSA cert (these don't exist) |
| 2130 | and fix the regress test that was trying to generate them :) |
Damien Miller | 3045b45 | 2011-05-20 19:07:45 +1000 | [diff] [blame] | 2131 | - djm@cvs.openbsd.org 2011/05/20 02:43:36 |
| 2132 | [cert-hostkey.sh] |
| 2133 | another attempt to generate a v00 ECDSA key that broke the test |
| 2134 | ID sync only - portable already had this somehow |
Damien Miller | 7b9451f | 2011-05-20 19:08:11 +1000 | [diff] [blame] | 2135 | - dtucker@cvs.openbsd.org 2011/05/20 05:19:50 |
| 2136 | [dynamic-forward.sh] |
| 2137 | Prevent races in dynamic forwarding test; ok djm |
Damien Miller | acacced | 2011-05-20 19:08:40 +1000 | [diff] [blame] | 2138 | - dtucker@cvs.openbsd.org 2011/05/20 06:32:30 |
| 2139 | [dynamic-forward.sh] |
| 2140 | fix dumb error in dynamic-forward test |
Damien Miller | 14684a1 | 2011-05-20 11:23:07 +1000 | [diff] [blame] | 2141 | |
Damien Miller | 60432d8 | 2011-05-15 08:34:46 +1000 | [diff] [blame] | 2142 | 20110515 |
| 2143 | - (djm) OpenBSD CVS Sync |
| 2144 | - djm@cvs.openbsd.org 2011/05/05 05:12:08 |
| 2145 | [mux.c] |
| 2146 | gracefully fall back when ControlPath is too large for a |
| 2147 | sockaddr_un. ok markus@ as part of a larger diff |
Damien Miller | fd53abd | 2011-05-15 08:36:02 +1000 | [diff] [blame] | 2148 | - dtucker@cvs.openbsd.org 2011/05/06 01:03:35 |
| 2149 | [sshd_config] |
| 2150 | clarify language about overriding defaults. bz#1892, from Petr Cerny |
Damien Miller | 58a77e2 | 2011-05-15 08:36:29 +1000 | [diff] [blame] | 2151 | - djm@cvs.openbsd.org 2011/05/06 01:09:53 |
| 2152 | [sftp.1] |
| 2153 | mention that IPv6 addresses must be enclosed in square brackets; |
| 2154 | bz#1845 |
Damien Miller | 78c40c3 | 2011-05-15 08:36:59 +1000 | [diff] [blame] | 2155 | - djm@cvs.openbsd.org 2011/05/06 02:05:41 |
| 2156 | [sshconnect2.c] |
| 2157 | fix memory leak; bz#1849 ok dtucker@ |
Damien Miller | d2ac5d7 | 2011-05-15 08:43:13 +1000 | [diff] [blame] | 2158 | - djm@cvs.openbsd.org 2011/05/06 21:14:05 |
| 2159 | [packet.c packet.h] |
| 2160 | set traffic class for IPv6 traffic as we do for IPv4 TOS; |
| 2161 | patch from lionel AT mamane.lu via Colin Watson in bz#1855; |
| 2162 | ok markus@ |
Damien Miller | dfc85fa | 2011-05-15 08:44:02 +1000 | [diff] [blame] | 2163 | - djm@cvs.openbsd.org 2011/05/06 21:18:02 |
| 2164 | [ssh.c ssh_config.5] |
| 2165 | add a %L expansion (short-form of the local host name) for ControlPath; |
| 2166 | sync some more expansions with LocalCommand; ok markus@ |
Damien Miller | fe92421 | 2011-05-15 08:44:45 +1000 | [diff] [blame] | 2167 | - djm@cvs.openbsd.org 2011/05/06 21:31:38 |
| 2168 | [readconf.c ssh_config.5] |
| 2169 | support negated Host matching, e.g. |
| 2170 | |
| 2171 | Host *.example.org !c.example.org |
| 2172 | User mekmitasdigoat |
| 2173 | |
| 2174 | Will match "a.example.org", "b.example.org", but not "c.example.org" |
| 2175 | ok markus@ |
Damien Miller | 21771e2 | 2011-05-15 08:45:50 +1000 | [diff] [blame] | 2176 | - djm@cvs.openbsd.org 2011/05/06 21:34:32 |
| 2177 | [clientloop.c mux.c readconf.c readconf.h ssh.c ssh_config.5] |
| 2178 | Add a RequestTTY ssh_config option to allow configuration-based |
| 2179 | control over tty allocation (like -t/-T); ok markus@ |
Damien Miller | a6bbbe4 | 2011-05-15 08:46:29 +1000 | [diff] [blame] | 2180 | - djm@cvs.openbsd.org 2011/05/06 21:38:58 |
| 2181 | [ssh.c] |
| 2182 | fix dropping from previous diff |
Damien Miller | c067f62 | 2011-05-15 08:46:54 +1000 | [diff] [blame] | 2183 | - djm@cvs.openbsd.org 2011/05/06 22:20:10 |
| 2184 | [PROTOCOL.mux] |
| 2185 | fix numbering; from bert.wesarg AT googlemail.com |
Damien Miller | 486dd2e | 2011-05-15 08:47:18 +1000 | [diff] [blame] | 2186 | - jmc@cvs.openbsd.org 2011/05/07 23:19:39 |
| 2187 | [ssh_config.5] |
| 2188 | - tweak previous |
| 2189 | - come consistency fixes |
| 2190 | ok djm |
Damien Miller | f4b32aa | 2011-05-15 08:47:43 +1000 | [diff] [blame] | 2191 | - jmc@cvs.openbsd.org 2011/05/07 23:20:25 |
| 2192 | [ssh.1] |
| 2193 | +.It RequestTTY |
Damien Miller | 555f3b8 | 2011-05-15 08:48:05 +1000 | [diff] [blame] | 2194 | - djm@cvs.openbsd.org 2011/05/08 12:52:01 |
| 2195 | [PROTOCOL.mux clientloop.c clientloop.h mux.c] |
| 2196 | improve our behaviour when TTY allocation fails: if we are in |
| 2197 | RequestTTY=auto mode (the default), then do not treat at TTY |
| 2198 | allocation error as fatal but rather just restore the local TTY |
| 2199 | to cooked mode and continue. This is more graceful on devices that |
| 2200 | never allocate TTYs. |
| 2201 | |
| 2202 | If RequestTTY is set to "yes" or "force", then failure to allocate |
| 2203 | a TTY is fatal. |
| 2204 | |
| 2205 | ok markus@ |
Damien Miller | 3219824 | 2011-05-15 08:50:32 +1000 | [diff] [blame] | 2206 | - djm@cvs.openbsd.org 2011/05/10 05:46:46 |
| 2207 | [authfile.c] |
| 2208 | despam debug() logs by detecting that we are trying to load a private key |
| 2209 | in key_try_load_public() and returning early; ok markus@ |
Damien Miller | 7c1b2c4 | 2011-05-15 08:51:05 +1000 | [diff] [blame] | 2210 | - djm@cvs.openbsd.org 2011/05/11 04:47:06 |
| 2211 | [auth.c auth.h auth2-pubkey.c pathnames.h servconf.c servconf.h] |
| 2212 | remove support for authorized_keys2; it is a relic from the early days |
| 2213 | of protocol v.2 support and has been undocumented for many years; |
| 2214 | ok markus@ |
Damien Miller | 9d276b8 | 2011-05-15 08:51:43 +1000 | [diff] [blame] | 2215 | - djm@cvs.openbsd.org 2011/05/13 00:05:36 |
| 2216 | [authfile.c] |
| 2217 | warn on unexpected key type in key_parse_private_type() |
Damien Miller | 23f425b | 2011-05-15 08:58:15 +1000 | [diff] [blame] | 2218 | - (djm) [packet.c] unbreak portability #endif |
Damien Miller | 60432d8 | 2011-05-15 08:34:46 +1000 | [diff] [blame] | 2219 | |
Darren Tucker | d6548fe | 2011-05-10 11:13:36 +1000 | [diff] [blame] | 2220 | 20110510 |
| 2221 | - (dtucker) [openbsd-compat/openssl-compat.{c,h}] Bug #1882: fix |
| 2222 | --with-ssl-engine which was broken with the change from deprecated |
| 2223 | SSLeay_add_all_algorithms(). ok djm |
| 2224 | |
Darren Tucker | 343f75f | 2011-05-06 10:43:50 +1000 | [diff] [blame] | 2225 | 20110506 |
| 2226 | - (dtucker) [openbsd-compat/regress/closefromtest.c] Bug #1875: add prototype |
| 2227 | for closefrom() in test code. Report from Dan Wallis via Gentoo. |
| 2228 | |
Damien Miller | 68790fe | 2011-05-05 11:19:13 +1000 | [diff] [blame] | 2229 | 20110505 |
| 2230 | - (djm) [defines.h] Move up include of netinet/ip.h for IPTOS |
| 2231 | definitions. From des AT des.no |
Damien Miller | f22019b | 2011-05-05 13:48:37 +1000 | [diff] [blame] | 2232 | - (djm) [Makefile.in WARNING.RNG aclocal.m4 buildpkg.sh.in configure.ac] |
| 2233 | [entropy.c ssh-add.c ssh-agent.c ssh-keygen.c ssh-keyscan.c] |
| 2234 | [ssh-keysign.c ssh-pkcs11-helper.c ssh-rand-helper.8 ssh-rand-helper.c] |
| 2235 | [ssh.c ssh_prng_cmds.in sshd.c contrib/aix/buildbff.sh] |
| 2236 | [regress/README.regress] Remove ssh-rand-helper and all its |
| 2237 | tentacles. PRNGd seeding has been rolled into entropy.c directly. |
| 2238 | Thanks to tim@ for testing on affected platforms. |
Damien Miller | 3fcdfd5 | 2011-05-05 14:04:11 +1000 | [diff] [blame] | 2239 | - OpenBSD CVS Sync |
| 2240 | - djm@cvs.openbsd.org 2011/03/10 02:52:57 |
Damien Miller | b2da7d1 | 2011-05-05 14:04:50 +1000 | [diff] [blame] | 2241 | [auth2-gss.c auth2.c auth.h] |
Damien Miller | 3fcdfd5 | 2011-05-05 14:04:11 +1000 | [diff] [blame] | 2242 | allow GSSAPI authentication to detect when a server-side failure causes |
| 2243 | authentication failure and don't count such failures against MaxAuthTries; |
| 2244 | bz#1244 from simon AT sxw.org.uk; ok markus@ before lock |
Damien Miller | c5219e7 | 2011-05-05 14:05:12 +1000 | [diff] [blame] | 2245 | - okan@cvs.openbsd.org 2011/03/15 10:36:02 |
| 2246 | [ssh-keyscan.c] |
| 2247 | use timerclear macro |
| 2248 | ok djm@ |
Damien Miller | 58f1baf | 2011-05-05 14:06:15 +1000 | [diff] [blame] | 2249 | - stevesk@cvs.openbsd.org 2011/03/23 15:16:22 |
| 2250 | [ssh-keygen.1 ssh-keygen.c] |
| 2251 | Add -A option. For each of the key types (rsa1, rsa, dsa and ecdsa) |
| 2252 | for which host keys do not exist, generate the host keys with the |
| 2253 | default key file path, an empty passphrase, default bits for the key |
| 2254 | type, and default comment. This will be used by /etc/rc to generate |
| 2255 | new host keys. Idea from deraadt. |
| 2256 | ok deraadt |
Damien Miller | 4a4d161 | 2011-05-05 14:06:39 +1000 | [diff] [blame] | 2257 | - stevesk@cvs.openbsd.org 2011/03/23 16:24:56 |
| 2258 | [ssh-keygen.1] |
| 2259 | -q not used in /etc/rc now so remove statement. |
Damien Miller | 1114319 | 2011-05-05 14:13:25 +1000 | [diff] [blame] | 2260 | - stevesk@cvs.openbsd.org 2011/03/23 16:50:04 |
| 2261 | [ssh-keygen.c] |
| 2262 | remove -d, documentation removed >10 years ago; ok markus |
Damien Miller | 3ca1eb3 | 2011-05-05 14:13:50 +1000 | [diff] [blame] | 2263 | - jmc@cvs.openbsd.org 2011/03/24 15:29:30 |
| 2264 | [ssh-keygen.1] |
| 2265 | zap trailing whitespace; |
Damien Miller | 044f4a6 | 2011-05-05 14:14:08 +1000 | [diff] [blame] | 2266 | - stevesk@cvs.openbsd.org 2011/03/24 22:14:54 |
| 2267 | [ssh-keygen.c] |
| 2268 | use strcasecmp() for "clear" cert permission option also; ok djm |
Damien Miller | 9147586 | 2011-05-05 14:14:34 +1000 | [diff] [blame] | 2269 | - stevesk@cvs.openbsd.org 2011/03/29 18:54:17 |
| 2270 | [misc.c misc.h servconf.c] |
| 2271 | print ipqos friendly string for sshd -T; ok markus |
| 2272 | # sshd -Tf sshd_config|grep ipqos |
| 2273 | ipqos lowdelay throughput |
Damien Miller | 884b63a | 2011-05-05 14:14:52 +1000 | [diff] [blame] | 2274 | - djm@cvs.openbsd.org 2011/04/12 04:23:50 |
| 2275 | [ssh-keygen.c] |
| 2276 | fix -Wshadow |
Damien Miller | 26b57ce | 2011-05-05 14:15:09 +1000 | [diff] [blame] | 2277 | - djm@cvs.openbsd.org 2011/04/12 05:32:49 |
| 2278 | [sshd.c] |
| 2279 | exit with 0 status on SIGTERM; bz#1879 |
Damien Miller | 085c90f | 2011-05-05 14:15:33 +1000 | [diff] [blame] | 2280 | - djm@cvs.openbsd.org 2011/04/13 04:02:48 |
| 2281 | [ssh-keygen.1] |
| 2282 | improve wording; bz#1861 |
Damien Miller | ad21032 | 2011-05-05 14:15:54 +1000 | [diff] [blame] | 2283 | - djm@cvs.openbsd.org 2011/04/13 04:09:37 |
| 2284 | [ssh-keygen.1] |
| 2285 | mention valid -b sizes for ECDSA keys; bz#1862 |
Damien Miller | 6c3eec7 | 2011-05-05 14:16:22 +1000 | [diff] [blame] | 2286 | - djm@cvs.openbsd.org 2011/04/17 22:42:42 |
| 2287 | [PROTOCOL.mux clientloop.c clientloop.h mux.c ssh.1 ssh.c] |
| 2288 | allow graceful shutdown of multiplexing: request that a mux server |
| 2289 | removes its listener socket and refuse future multiplexing requests; |
| 2290 | ok markus@ |
Damien Miller | 8cb1cda | 2011-05-05 14:16:56 +1000 | [diff] [blame] | 2291 | - djm@cvs.openbsd.org 2011/04/18 00:46:05 |
| 2292 | [ssh-keygen.c] |
| 2293 | certificate options are supposed to be packed in lexical order of |
| 2294 | option name (though we don't actually enforce this at present). |
| 2295 | Move one up that was out of sequence |
Damien Miller | 2ce12ef | 2011-05-05 14:17:18 +1000 | [diff] [blame] | 2296 | - djm@cvs.openbsd.org 2011/05/04 21:15:29 |
| 2297 | [authfile.c authfile.h ssh-add.c] |
| 2298 | allow "ssh-add - < key"; feedback and ok markus@ |
Tim Rice | 19d8181 | 2011-05-04 21:44:25 -0700 | [diff] [blame] | 2299 | - (tim) [configure.ac] Add AC_LANG_SOURCE to OPENSSH_CHECK_CFLAG_COMPILE |
| 2300 | so autoreconf 2.68 is happy. |
Tim Rice | 9abb697 | 2011-05-04 23:06:59 -0700 | [diff] [blame] | 2301 | - (tim) [defines.h] Deal with platforms that do not have S_IFSOCK ok djm@ |
Damien Miller | 68790fe | 2011-05-05 11:19:13 +1000 | [diff] [blame] | 2302 | |
Darren Tucker | e541aaa | 2011-02-21 21:41:29 +1100 | [diff] [blame] | 2303 | 20110221 |
| 2304 | - (dtucker) [contrib/cygwin/ssh-host-config] From Corinna: revamp of the |
| 2305 | Cygwin-specific service installer script ssh-host-config. The actual |
| 2306 | functionality is the same, the revisited version is just more |
| 2307 | exact when it comes to check for problems which disallow to run |
| 2308 | certain aspects of the script. So, part of this script and the also |
| 2309 | rearranged service helper script library "csih" is to check if all |
| 2310 | the tools required to run the script are available on the system. |
| 2311 | The new script also is more thorough to inform the user why the |
| 2312 | script failed. Patch from vinschen at redhat com. |
| 2313 | |
Damien Miller | 0588beb | 2011-02-18 09:18:45 +1100 | [diff] [blame] | 2314 | 20110218 |
| 2315 | - OpenBSD CVS Sync |
| 2316 | - djm@cvs.openbsd.org 2011/02/16 00:31:14 |
| 2317 | [ssh-keysign.c] |
| 2318 | make hostbased auth with ECDSA keys work correctly. Based on patch |
| 2319 | by harvey.eneman AT oracle.com in bz#1858; ok markus@ (pre-lock) |
| 2320 | |
Darren Tucker | 3b9617e | 2011-02-06 13:24:35 +1100 | [diff] [blame] | 2321 | 20110206 |
| 2322 | - (dtucker) [openbsd-compat/port-linux.c] Bug #1851: fix syntax error in |
| 2323 | selinux code. Patch from Leonardo Chiquitto |
Darren Tucker | ea676a6 | 2011-02-06 13:31:23 +1100 | [diff] [blame] | 2324 | - (dtucker) [contrib/cygwin/ssh-{host,user}-config] Add ECDSA key |
| 2325 | generation and simplify. Patch from Corinna Vinschen. |
Darren Tucker | 3b9617e | 2011-02-06 13:24:35 +1100 | [diff] [blame] | 2326 | |
Damien Miller | b407dd8 | 2011-02-04 11:46:39 +1100 | [diff] [blame] | 2327 | 20110204 |
| 2328 | - OpenBSD CVS Sync |
| 2329 | - djm@cvs.openbsd.org 2011/01/31 21:42:15 |
| 2330 | [PROTOCOL.mux] |
| 2331 | cut'n'pasto; from bert.wesarg AT googlemail.com |
Damien Miller | 0a5f012 | 2011-02-04 11:47:01 +1100 | [diff] [blame] | 2332 | - djm@cvs.openbsd.org 2011/02/04 00:44:21 |
| 2333 | [key.c] |
| 2334 | fix uninitialised nonce variable; reported by Mateusz Kocielski |
Damien Miller | a698127 | 2011-02-04 11:47:20 +1100 | [diff] [blame] | 2335 | - djm@cvs.openbsd.org 2011/02/04 00:44:43 |
| 2336 | [version.h] |
| 2337 | openssh-5.8 |
Damien Miller | 0d30b09 | 2011-02-04 12:43:36 +1100 | [diff] [blame] | 2338 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 2339 | [contrib/suse/openssh.spec] update versions in docs and spec files. |
| 2340 | - Release OpenSSH 5.8p1 |
Damien Miller | b407dd8 | 2011-02-04 11:46:39 +1100 | [diff] [blame] | 2341 | |
Damien Miller | d4a5504 | 2011-01-28 10:30:18 +1100 | [diff] [blame] | 2342 | 20110128 |
| 2343 | - (djm) [openbsd-compat/port-linux.c] Check whether SELinux is enabled |
| 2344 | before attempting setfscreatecon(). Check whether matchpathcon() |
| 2345 | succeeded before using its result. Patch from cjwatson AT debian.org; |
| 2346 | bz#1851 |
| 2347 | |
Tim Rice | d069c48 | 2011-01-26 12:32:12 -0800 | [diff] [blame] | 2348 | 20110127 |
| 2349 | - (tim) [config.guess config.sub] Sync with upstream. |
Tim Rice | 648f876 | 2011-01-26 12:38:57 -0800 | [diff] [blame] | 2350 | - (tim) [configure.ac] Consistent M4 quoting throughout, updated obsolete |
| 2351 | AC_TRY_COMPILE with AC_COMPILE_IFELSE, updated obsolete AC_TRY_LINK with |
| 2352 | AC_LINK_IFELSE, updated obsolete AC_TRY_RUN with AC_RUN_IFELSE, misc white |
| 2353 | space changes for consistency/readability. Makes autoconf 2.68 happy. |
| 2354 | "Nice work" djm |
Tim Rice | d069c48 | 2011-01-26 12:32:12 -0800 | [diff] [blame] | 2355 | |
Damien Miller | 71adf12 | 2011-01-25 12:16:15 +1100 | [diff] [blame] | 2356 | 20110125 |
| 2357 | - (djm) [configure.ac Makefile.in ssh.c openbsd-compat/port-linux.c |
| 2358 | openbsd-compat/port-linux.h] Move SELinux-specific code from ssh.c to |
| 2359 | port-linux.c to avoid compilation errors. Add -lselinux to ssh when |
| 2360 | building with SELinux support to avoid linking failure; report from |
| 2361 | amk AT spamfence.net; ok dtucker |
| 2362 | |
Darren Tucker | 7924137 | 2011-01-22 09:37:01 +1100 | [diff] [blame] | 2363 | 20110122 |
| 2364 | - (dtucker) [configure.ac openbsd-compat/openssl-compat.{c,h}] Add |
| 2365 | RSA_get_default_method() for the benefit of openssl versions that don't |
| 2366 | have it (at least openssl-engine-0.9.6b). Found and tested by Kevin Brott, |
| 2367 | ok djm@. |
Damien Miller | ad4b1ad | 2011-01-22 20:21:33 +1100 | [diff] [blame] | 2368 | - OpenBSD CVS Sync |
| 2369 | - djm@cvs.openbsd.org 2011/01/22 09:18:53 |
| 2370 | [version.h] |
| 2371 | crank to OpenSSH-5.7 |
Damien Miller | 966accc | 2011-01-22 20:23:10 +1100 | [diff] [blame] | 2372 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 2373 | [contrib/suse/openssh.spec] update versions in docs and spec files. |
Damien Miller | 6f8f04b | 2011-01-22 20:25:11 +1100 | [diff] [blame] | 2374 | - (djm) Release 5.7p1 |
Darren Tucker | 7924137 | 2011-01-22 09:37:01 +1100 | [diff] [blame] | 2375 | |
Tim Rice | 15e1b4d | 2011-01-18 20:47:04 -0800 | [diff] [blame] | 2376 | 20110119 |
| 2377 | - (tim) [contrib/caldera/openssh.spec] Use CFLAGS from Makefile instead |
| 2378 | of RPM so build completes. Signatures were changed to .asc since 4.1p1. |
Damien Miller | e323ebc | 2011-01-19 23:12:27 +1100 | [diff] [blame] | 2379 | - (djm) [configure.ac] Disable ECC on OpenSSL <0.9.8g. Releases prior to |
| 2380 | 0.9.8 lacked it, and 0.9.8a through 0.9.8d have proven buggy in pre- |
| 2381 | release testing (random crashes and failure to load ECC keys). |
| 2382 | ok dtucker@ |
Tim Rice | 15e1b4d | 2011-01-18 20:47:04 -0800 | [diff] [blame] | 2383 | |
Damien Miller | 369c0e8 | 2011-01-17 10:51:40 +1100 | [diff] [blame] | 2384 | 20110117 |
| 2385 | - (djm) [regress/Makefile] use $TEST_SSH_KEYGEN instead of the one in |
| 2386 | $PATH, fix cleanup of droppings; reported by openssh AT |
| 2387 | roumenpetrov.info; ok dtucker@ |
Damien Miller | fd3669e | 2011-01-17 11:20:18 +1100 | [diff] [blame] | 2388 | - (djm) [regress/agent-ptrace.sh] Fix false failure on OS X by adding |
| 2389 | its unique snowflake of a gdb error to the ones we look for. |
Damien Miller | 1ccbfa8 | 2011-01-17 11:52:40 +1100 | [diff] [blame] | 2390 | - (djm) [regress/agent-getpeereid.sh] leave stdout attached when running |
| 2391 | ssh-add to avoid $SUDO failures on Linux |
Darren Tucker | 0c93adc | 2011-01-17 11:55:59 +1100 | [diff] [blame] | 2392 | - (dtucker) [openbsd-compat/port-linux.c] Bug #1838: Add support for the new |
| 2393 | Linux OOM-killer magic values that changed in 2.6.36 kernels, with fallback |
| 2394 | to the old values. Feedback from vapier at gentoo org and djm, ok djm. |
Damien Miller | 5849778 | 2011-01-17 16:17:09 +1100 | [diff] [blame] | 2395 | - (djm) [configure.ac regress/agent-getpeereid.sh regress/multiplex.sh] |
| 2396 | [regress/sftp-glob.sh regress/test-exec.sh] Rework how feature tests are |
| 2397 | disabled on platforms that do not support them; add a "config_defined()" |
| 2398 | shell function that greps for defines in config.h and use them to decide |
| 2399 | on feature tests. |
| 2400 | Convert a couple of existing grep's over config.h to use the new function |
| 2401 | Add a define "FILESYSTEM_NO_BACKSLASH" for filesystem that can't represent |
| 2402 | backslash characters in filenames, enable it for Cygwin and use it to turn |
| 2403 | of tests for quotes backslashes in sftp-glob.sh. |
| 2404 | based on discussion with vinschen AT redhat.com and dtucker@; ok dtucker@ |
Tim Rice | 6dfcd34 | 2011-01-16 22:53:56 -0800 | [diff] [blame] | 2405 | - (tim) [regress/agent-getpeereid.sh] shell portability fix. |
Darren Tucker | 263d43d | 2011-01-17 18:50:22 +1100 | [diff] [blame] | 2406 | - (dtucker) [openbsd-compat/port-linux.c] Fix minor bug caught by -Werror on |
| 2407 | the tinderbox. |
Darren Tucker | ea52a82 | 2011-01-17 21:15:27 +1100 | [diff] [blame] | 2408 | - (dtucker) [LICENCE Makefile.in audit-bsm.c audit-linux.c audit.c audit.h |
| 2409 | configure.ac defines.h loginrec.c] Bug #1402: add linux audit subsystem |
| 2410 | support, based on patches from Tomas Mraz and jchadima at redhat. |
Damien Miller | 369c0e8 | 2011-01-17 10:51:40 +1100 | [diff] [blame] | 2411 | |
Darren Tucker | 50c61f8 | 2011-01-16 18:28:09 +1100 | [diff] [blame] | 2412 | 20110116 |
| 2413 | - (dtucker) [Makefile.in configure.ac regress/kextype.sh] Skip sha256-based |
| 2414 | on configurations that don't have it. |
Damien Miller | 4791f9d | 2011-01-16 23:16:53 +1100 | [diff] [blame] | 2415 | - OpenBSD CVS Sync |
| 2416 | - djm@cvs.openbsd.org 2011/01/16 11:50:05 |
| 2417 | [clientloop.c] |
| 2418 | Use atomicio when flushing protocol 1 std{out,err} buffers at |
| 2419 | session close. This was a latent bug exposed by setting a SIGCHLD |
| 2420 | handler and spotted by kevin.brott AT gmail.com; ok dtucker@ |
Damien Miller | 6fb6fd5 | 2011-01-16 23:17:45 +1100 | [diff] [blame] | 2421 | - djm@cvs.openbsd.org 2011/01/16 11:50:36 |
| 2422 | [sshconnect.c] |
| 2423 | reset the SIGPIPE handler when forking to execute child processes; |
| 2424 | ok dtucker@ |
Damien Miller | cfd6e4f | 2011-01-16 23:18:33 +1100 | [diff] [blame] | 2425 | - djm@cvs.openbsd.org 2011/01/16 12:05:59 |
| 2426 | [clientloop.c] |
| 2427 | a couple more tweaks to the post-close protocol 1 stderr/stdout flush: |
| 2428 | now that we use atomicio(), convert them from while loops to if statements |
| 2429 | add test and cast to compile cleanly with -Wsigned |
Darren Tucker | 50c61f8 | 2011-01-16 18:28:09 +1100 | [diff] [blame] | 2430 | |
Darren Tucker | 08f8388 | 2011-01-16 18:24:04 +1100 | [diff] [blame] | 2431 | 20110114 |
Damien Miller | 445c9a5 | 2011-01-14 12:01:29 +1100 | [diff] [blame] | 2432 | - OpenBSD CVS Sync |
| 2433 | - djm@cvs.openbsd.org 2011/01/13 21:54:53 |
| 2434 | [mux.c] |
| 2435 | correct error messages; patch from bert.wesarg AT googlemail.com |
Damien Miller | 42747df | 2011-01-14 12:01:50 +1100 | [diff] [blame] | 2436 | - djm@cvs.openbsd.org 2011/01/13 21:55:25 |
| 2437 | [PROTOCOL.mux] |
| 2438 | correct protocol names and add a couple of missing protocol number |
| 2439 | defines; patch from bert.wesarg AT googlemail.com |
Damien Miller | e9b4048 | 2011-01-14 14:47:37 +1100 | [diff] [blame] | 2440 | - (djm) [Makefile.in] Use shell test to disable ecdsa key generating in |
| 2441 | host-key-force target rather than a substitution that is replaced with a |
| 2442 | comment so that the Makefile.in is still a syntactically valid Makefile |
| 2443 | (useful to run the distprep target) |
Tim Rice | 02d99da | 2011-01-13 22:20:27 -0800 | [diff] [blame] | 2444 | - (tim) [regress/cert-hostkey.sh] Typo. Missing $ on variable name. |
Tim Rice | c5c346b | 2011-01-13 22:36:14 -0800 | [diff] [blame] | 2445 | - (tim) [regress/cert-hostkey.sh] Add missing TEST_SSH_ECC guard around some |
| 2446 | ecdsa bits. |
Damien Miller | 445c9a5 | 2011-01-14 12:01:29 +1100 | [diff] [blame] | 2447 | |
Darren Tucker | 08f8388 | 2011-01-16 18:24:04 +1100 | [diff] [blame] | 2448 | 20110113 |
Damien Miller | 1708cb7 | 2011-01-13 12:21:34 +1100 | [diff] [blame] | 2449 | - (djm) [misc.c] include time.h for nanosleep() prototype |
Tim Rice | cce927c | 2011-01-12 19:06:31 -0800 | [diff] [blame] | 2450 | - (tim) [Makefile.in] test the ECC bits if we have the capability. ok djm |
Tim Rice | 9b87a5c | 2011-01-12 22:35:43 -0800 | [diff] [blame] | 2451 | - (tim) [Makefile.in configure.ac opensshd.init.in] Add support for generating |
| 2452 | ecdsa keys. ok djm. |
Damien Miller | ff22df5 | 2011-01-13 21:05:27 +1100 | [diff] [blame] | 2453 | - (djm) [entropy.c] cast OPENSSL_VERSION_NUMBER to u_long to avoid |
| 2454 | gcc warning on platforms where it defaults to int |
Damien Miller | cbaf8e6 | 2011-01-13 21:08:27 +1100 | [diff] [blame] | 2455 | - (djm) [regress/Makefile] add a few more generated files to the clean |
| 2456 | target |
Damien Miller | 9b16086 | 2011-01-13 22:00:20 +1100 | [diff] [blame] | 2457 | - (djm) [myproposal.h] Fix reversed OPENSSL_VERSION_NUMBER test and bad |
| 2458 | #define that was causing diffie-hellman-group-exchange-sha256 to be |
| 2459 | incorrectly disabled |
Damien Miller | 5278806 | 2011-01-13 22:05:14 +1100 | [diff] [blame] | 2460 | - (djm) [regress/kextype.sh] Testing diffie-hellman-group-exchange-sha256 |
| 2461 | should not depend on ECC support |
Damien Miller | 1708cb7 | 2011-01-13 12:21:34 +1100 | [diff] [blame] | 2462 | |
Darren Tucker | 08f8388 | 2011-01-16 18:24:04 +1100 | [diff] [blame] | 2463 | 20110112 |
Damien Miller | b66e917 | 2011-01-12 13:30:18 +1100 | [diff] [blame] | 2464 | - OpenBSD CVS Sync |
| 2465 | - nicm@cvs.openbsd.org 2010/10/08 21:48:42 |
| 2466 | [openbsd-compat/glob.c] |
| 2467 | Extend GLOB_LIMIT to cover readdir and stat and bump the malloc limit |
| 2468 | from ARG_MAX to 64K. |
| 2469 | Fixes glob-using programs (notably ftp) able to be triggered to hit |
| 2470 | resource limits. |
| 2471 | Idea from a similar NetBSD change, original problem reported by jasper@. |
| 2472 | ok millert tedu jasper |
Damien Miller | 4927aaf | 2011-01-12 13:32:03 +1100 | [diff] [blame] | 2473 | - djm@cvs.openbsd.org 2011/01/12 01:53:14 |
| 2474 | avoid some integer overflows mostly with GLOB_APPEND and GLOB_DOOFFS |
| 2475 | and sanity check arguments (these will be unnecessary when we switch |
| 2476 | struct glob members from being type into to size_t in the future); |
| 2477 | "looks ok" tedu@ feedback guenther@ |
Damien Miller | 945aa0c | 2011-01-12 13:34:02 +1100 | [diff] [blame] | 2478 | - (djm) [configure.ac] Turn on -Wno-unused-result for gcc >= 4.4 to avoid |
| 2479 | silly warnings on write() calls we don't care succeed or not. |
Damien Miller | 134d02a | 2011-01-12 16:00:37 +1100 | [diff] [blame] | 2480 | - (djm) [configure.ac] Fix broken test for gcc >= 4.4 with per-compiler |
| 2481 | flag tests that don't depend on gcc version at all; suggested by and |
| 2482 | ok dtucker@ |
Damien Miller | b66e917 | 2011-01-12 13:30:18 +1100 | [diff] [blame] | 2483 | |
Tim Rice | 076a3b9 | 2011-01-10 12:56:26 -0800 | [diff] [blame] | 2484 | 20110111 |
| 2485 | - (tim) [regress/host-expand.sh] Fix for building outside of read only |
| 2486 | source tree. |
Damien Miller | 81ad4b1 | 2011-01-11 17:02:23 +1100 | [diff] [blame] | 2487 | - (djm) [platform.c] Some missing includes that show up under -Werror |
Damien Miller | b73b6fd | 2011-01-11 17:18:56 +1100 | [diff] [blame] | 2488 | - OpenBSD CVS Sync |
| 2489 | - djm@cvs.openbsd.org 2011/01/08 10:51:51 |
| 2490 | [clientloop.c] |
| 2491 | use host and not options.hostname, as the latter may have unescaped |
| 2492 | substitution characters |
Damien Miller | a256c8d | 2011-01-11 17:20:05 +1100 | [diff] [blame] | 2493 | - djm@cvs.openbsd.org 2011/01/11 06:06:09 |
| 2494 | [sshlogin.c] |
| 2495 | fd leak on error paths; from zinovik@ |
| 2496 | NB. Id sync only; we use loginrec.c that was also audited and fixed |
| 2497 | recently |
Damien Miller | 821de0a | 2011-01-11 17:20:29 +1100 | [diff] [blame] | 2498 | - djm@cvs.openbsd.org 2011/01/11 06:13:10 |
| 2499 | [clientloop.c ssh-keygen.c sshd.c] |
| 2500 | some unsigned long long casts that make things a bit easier for |
| 2501 | portable without resorting to dropping PRIu64 formats everywhere |
Tim Rice | 076a3b9 | 2011-01-10 12:56:26 -0800 | [diff] [blame] | 2502 | |
Damien Miller | e63b7f2 | 2011-01-09 09:19:50 +1100 | [diff] [blame] | 2503 | 20110109 |
| 2504 | - (djm) [Makefile.in] list ssh_host_ecdsa key in PATHSUBS; spotted by |
| 2505 | openssh AT roumenpetrov.info |
| 2506 | |
Damien Miller | 996384d | 2011-01-08 21:58:20 +1100 | [diff] [blame] | 2507 | 20110108 |
| 2508 | - (djm) [regress/keytype.sh] s/echo -n/echon/ to repair failing regress |
| 2509 | test on OSX and others. Reported by imorgan AT nas.nasa.gov |
| 2510 | |
Damien Miller | 322125b | 2011-01-07 09:50:08 +1100 | [diff] [blame] | 2511 | 20110107 |
| 2512 | - (djm) [regress/cert-hostkey.sh regress/cert-userkey.sh] fix shell test |
| 2513 | for no-ECC case. Patch from cristian.ionescu-idbohrn AT axis.com |
Damien Miller | 83f8a40 | 2011-01-07 09:51:17 +1100 | [diff] [blame] | 2514 | - djm@cvs.openbsd.org 2011/01/06 22:23:53 |
| 2515 | [ssh.c] |
| 2516 | unbreak %n expansion in LocalCommand; patch from bert.wesarg AT |
| 2517 | googlemail.com; ok markus@ |
Damien Miller | 64abf31 | 2011-01-07 09:51:52 +1100 | [diff] [blame] | 2518 | - djm@cvs.openbsd.org 2011/01/06 22:23:02 |
| 2519 | [clientloop.c] |
| 2520 | when exiting due to ServerAliveTimeout, mention the hostname that caused |
| 2521 | it (useful with backgrounded controlmaster) |
Damien Miller | 7d06b00 | 2011-01-07 09:54:20 +1100 | [diff] [blame] | 2522 | - djm@cvs.openbsd.org 2011/01/06 22:46:21 |
| 2523 | [regress/Makefile regress/host-expand.sh] |
| 2524 | regress test for LocalCommand %n expansion from bert.wesarg AT |
| 2525 | googlemail.com; ok markus@ |
Damien Miller | ed3a8eb | 2011-01-07 10:02:52 +1100 | [diff] [blame] | 2526 | - djm@cvs.openbsd.org 2011/01/06 23:01:35 |
| 2527 | [sshconnect.c] |
| 2528 | reset SIGCHLD handler to SIG_DFL when execuring LocalCommand; |
| 2529 | ok markus@ |
Damien Miller | 322125b | 2011-01-07 09:50:08 +1100 | [diff] [blame] | 2530 | |
Damien Miller | f121143 | 2011-01-06 22:40:30 +1100 | [diff] [blame] | 2531 | 20110106 |
| 2532 | - (djm) OpenBSD CVS Sync |
| 2533 | - markus@cvs.openbsd.org 2010/12/08 22:46:03 |
| 2534 | [scp.1 scp.c] |
| 2535 | add a new -3 option to scp: Copies between two remote hosts are |
| 2536 | transferred through the local host. Without this option the data |
| 2537 | is copied directly between the two remote hosts. ok djm@ (bugzilla #1837) |
Damien Miller | 907998d | 2011-01-06 22:41:21 +1100 | [diff] [blame] | 2538 | - jmc@cvs.openbsd.org 2010/12/09 14:13:33 |
| 2539 | [scp.1 scp.c] |
| 2540 | scp.1: grammer fix |
| 2541 | scp.c: add -3 to usage() |
Damien Miller | 05c8997 | 2011-01-06 22:42:04 +1100 | [diff] [blame] | 2542 | - markus@cvs.openbsd.org 2010/12/14 11:59:06 |
| 2543 | [sshconnect.c] |
| 2544 | don't mention key type in key-changed-warning, since we also print |
| 2545 | this warning if a new key type appears. ok djm@ |
Damien Miller | 106079c | 2011-01-06 22:43:44 +1100 | [diff] [blame] | 2546 | - djm@cvs.openbsd.org 2010/12/15 00:49:27 |
| 2547 | [readpass.c] |
| 2548 | fix ControlMaster=ask regression |
| 2549 | reset SIGCHLD handler before fork (and restore it after) so we don't miss |
| 2550 | the the askpass child's exit status. Correct test for exit status/signal to |
| 2551 | account for waitpid() failure; with claudio@ ok claudio@ markus@ |
Damien Miller | de53fd0 | 2011-01-06 22:44:18 +1100 | [diff] [blame] | 2552 | - djm@cvs.openbsd.org 2010/12/24 21:41:48 |
| 2553 | [auth-options.c] |
| 2554 | don't send the actual forced command in a debug message; ok markus deraadt |
Damien Miller | 8ad960b | 2011-01-06 22:44:44 +1100 | [diff] [blame] | 2555 | - otto@cvs.openbsd.org 2011/01/04 20:44:13 |
| 2556 | [ssh-keyscan.c] |
| 2557 | handle ecdsa-sha2 with various key lengths; hint and ok djm@ |
Damien Miller | f121143 | 2011-01-06 22:40:30 +1100 | [diff] [blame] | 2558 | |
Damien Miller | 30a69e7 | 2011-01-04 08:16:27 +1100 | [diff] [blame] | 2559 | 20110104 |
| 2560 | - (djm) [configure.ac Makefile.in] Use mandoc as preferred manpage |
| 2561 | formatter if it is present, followed by nroff and groff respectively. |
| 2562 | Fixes distprep target on OpenBSD (which has bumped groff/nroff to ports |
| 2563 | in favour of mandoc). feedback and ok tim |
| 2564 | |
| 2565 | 20110103 |
Damien Miller | d197fd6 | 2011-01-03 14:48:14 +1100 | [diff] [blame] | 2566 | - (djm) [Makefile.in] revert local hack I didn't intend to commit |
| 2567 | |
| 2568 | 20110102 |
Damien Miller | 4a06f92 | 2011-01-02 21:43:59 +1100 | [diff] [blame] | 2569 | - (djm) [loginrec.c] Fix some fd leaks on error paths. ok dtucker |
Damien Miller | 41bccf7 | 2011-01-02 21:53:07 +1100 | [diff] [blame] | 2570 | - (djm) [configure.ac] Check whether libdes is needed when building |
| 2571 | with Heimdal krb5 support. On OpenBSD this library no longer exists, |
| 2572 | so linking it unconditionally causes a build failure; ok dtucker |
Damien Miller | 4a06f92 | 2011-01-02 21:43:59 +1100 | [diff] [blame] | 2573 | |
Damien Miller | 928362d | 2010-12-26 14:26:45 +1100 | [diff] [blame] | 2574 | 20101226 |
| 2575 | - (dtucker) OpenBSD CVS Sync |
| 2576 | - djm@cvs.openbsd.org 2010/12/08 04:02:47 |
| 2577 | [ssh_config.5 sshd_config.5] |
| 2578 | explain that IPQoS arguments are separated by whitespace; iirc requested |
| 2579 | by jmc@ a while back |
| 2580 | |
Darren Tucker | 37bb756 | 2010-12-05 08:46:05 +1100 | [diff] [blame] | 2581 | 20101205 |
| 2582 | - (dtucker) openbsd-compat/openssl-compat.c] remove sleep leftover from |
| 2583 | debugging. Spotted by djm. |
Darren Tucker | 7336b90 | 2010-12-05 09:00:30 +1100 | [diff] [blame] | 2584 | - (dtucker) OpenBSD CVS Sync |
| 2585 | - djm@cvs.openbsd.org 2010/12/03 23:49:26 |
| 2586 | [schnorr.c] |
| 2587 | check that g^x^q === 1 mod p; recommended by JPAKE author Feng Hao |
| 2588 | (this code is still disabled, but apprently people are treating it as |
| 2589 | a reference implementation) |
Darren Tucker | adab6f1 | 2010-12-05 09:01:47 +1100 | [diff] [blame] | 2590 | - djm@cvs.openbsd.org 2010/12/03 23:55:27 |
| 2591 | [auth-rsa.c] |
| 2592 | move check for revoked keys to run earlier (in auth_rsa_key_allowed) |
| 2593 | bz#1829; patch from ldv AT altlinux.org; ok markus@ |
Darren Tucker | af1f909 | 2010-12-05 09:02:47 +1100 | [diff] [blame] | 2594 | - djm@cvs.openbsd.org 2010/12/04 00:18:01 |
| 2595 | [sftp-server.c sftp.1 sftp-client.h sftp.c PROTOCOL sftp-client.c] |
| 2596 | add a protocol extension to support a hard link operation. It is |
| 2597 | available through the "ln" command in the client. The old "ln" |
| 2598 | behaviour of creating a symlink is available using its "-s" option |
| 2599 | or through the preexisting "symlink" command; based on a patch from |
| 2600 | miklos AT szeredi.hu in bz#1555; ok markus@ |
Darren Tucker | 094f1e9 | 2010-12-05 09:03:31 +1100 | [diff] [blame] | 2601 | - djm@cvs.openbsd.org 2010/12/04 13:31:37 |
| 2602 | [hostfile.c] |
| 2603 | fix fd leak; spotted and ok dtucker |
Darren Tucker | 4288c53 | 2010-12-05 09:45:50 +1100 | [diff] [blame] | 2604 | - djm@cvs.openbsd.org 2010/12/04 00:21:19 |
| 2605 | [regress/sftp-cmds.sh] |
| 2606 | adjust for hard-link support |
Darren Tucker | 7e1a5a4 | 2010-12-05 09:29:31 +1100 | [diff] [blame] | 2607 | - (dtucker) [regress/Makefile] Id sync. |
Darren Tucker | 37bb756 | 2010-12-05 08:46:05 +1100 | [diff] [blame] | 2608 | |
Damien Miller | d89745b | 2010-12-03 10:50:26 +1100 | [diff] [blame] | 2609 | 20101204 |
| 2610 | - (djm) [openbsd-compat/bindresvport.c] Use arc4random_uniform(range) |
| 2611 | instead of (arc4random() % range) |
Darren Tucker | ebdef76 | 2010-12-04 23:20:50 +1100 | [diff] [blame] | 2612 | - (dtucker) [configure.ac moduli.c openbsd-compat/openssl-compat.{c,h}] Add |
| 2613 | shims for the new, non-deprecated OpenSSL key generation functions for |
| 2614 | platforms that don't have the new interfaces. |
Damien Miller | d89745b | 2010-12-03 10:50:26 +1100 | [diff] [blame] | 2615 | |
Damien Miller | 188ea81 | 2010-12-01 11:50:14 +1100 | [diff] [blame] | 2616 | 20101201 |
| 2617 | - OpenBSD CVS Sync |
| 2618 | - deraadt@cvs.openbsd.org 2010/11/20 05:12:38 |
| 2619 | [auth2-pubkey.c] |
| 2620 | clean up cases of ;; |
Damien Miller | 2cd6293 | 2010-12-01 11:50:35 +1100 | [diff] [blame] | 2621 | - djm@cvs.openbsd.org 2010/11/21 01:01:13 |
| 2622 | [clientloop.c misc.c misc.h ssh-agent.1 ssh-agent.c] |
| 2623 | honour $TMPDIR for client xauth and ssh-agent temporary directories; |
| 2624 | feedback and ok markus@ |
Damien Miller | a232792 | 2010-12-01 12:01:21 +1100 | [diff] [blame] | 2625 | - djm@cvs.openbsd.org 2010/11/21 10:57:07 |
| 2626 | [authfile.c] |
| 2627 | Refactor internals of private key loading and saving to work on memory |
| 2628 | buffers rather than directly on files. This will make a few things |
| 2629 | easier to do in the future; ok markus@ |
Damien Miller | 6a740e7 | 2010-12-01 12:01:51 +1100 | [diff] [blame] | 2630 | - djm@cvs.openbsd.org 2010/11/23 02:35:50 |
| 2631 | [auth.c] |
| 2632 | use strict_modes already passed as function argument over referencing |
| 2633 | global options.strict_modes |
Damien Miller | d0fdd68 | 2010-12-01 12:02:14 +1100 | [diff] [blame] | 2634 | - djm@cvs.openbsd.org 2010/11/23 23:57:24 |
| 2635 | [clientloop.c] |
| 2636 | avoid NULL deref on receiving a channel request on an unknown or invalid |
| 2637 | channel; report bz#1842 from jchadima AT redhat.com; ok dtucker@ |
Damien Miller | b7f827a | 2010-12-01 12:02:35 +1100 | [diff] [blame] | 2638 | - djm@cvs.openbsd.org 2010/11/24 01:24:14 |
| 2639 | [channels.c] |
| 2640 | remove a debug() that pollutes stderr on client connecting to a server |
| 2641 | in debug mode (channel_close_fds is called transitively from the session |
| 2642 | code post-fork); bz#1719, ok dtucker |
Damien Miller | f80c3de | 2010-12-01 12:02:59 +1100 | [diff] [blame] | 2643 | - djm@cvs.openbsd.org 2010/11/25 04:10:09 |
| 2644 | [session.c] |
| 2645 | replace close() loop for fds 3->64 with closefrom(); |
| 2646 | ok markus deraadt dtucker |
Damien Miller | 87dc0a4 | 2010-12-01 12:03:19 +1100 | [diff] [blame] | 2647 | - djm@cvs.openbsd.org 2010/11/26 05:52:49 |
| 2648 | [scp.c] |
| 2649 | Pass through ssh command-line flags and options when doing remote-remote |
| 2650 | transfers, e.g. to enable agent forwarding which is particularly useful |
| 2651 | in this case; bz#1837 ok dtucker@ |
Damien Miller | 03c0e53 | 2010-12-01 12:03:39 +1100 | [diff] [blame] | 2652 | - markus@cvs.openbsd.org 2010/11/29 18:57:04 |
| 2653 | [authfile.c] |
| 2654 | correctly load comment for encrypted rsa1 keys; |
| 2655 | report/fix Joachim Schipper; ok djm@ |
Damien Miller | d925dcd | 2010-12-01 12:21:51 +1100 | [diff] [blame] | 2656 | - djm@cvs.openbsd.org 2010/11/29 23:45:51 |
| 2657 | [auth.c hostfile.c hostfile.h ssh.c ssh_config.5 sshconnect.c] |
| 2658 | [sshconnect.h sshconnect2.c] |
| 2659 | automatically order the hostkeys requested by the client based on |
| 2660 | which hostkeys are already recorded in known_hosts. This avoids |
| 2661 | hostkey warnings when connecting to servers with new ECDSA keys |
| 2662 | that are preferred by default; with markus@ |
Damien Miller | 188ea81 | 2010-12-01 11:50:14 +1100 | [diff] [blame] | 2663 | |
Darren Tucker | d995712 | 2010-11-24 10:09:13 +1100 | [diff] [blame] | 2664 | 20101124 |
| 2665 | - (dtucker) [platform.c session.c] Move the getluid call out of session.c and |
| 2666 | into the platform-specific code Only affects SCO, tested by and ok tim@. |
Damien Miller | 88e341e | 2010-11-24 10:36:15 +1100 | [diff] [blame] | 2667 | - (djm) [loginrec.c] Relax permission requirement on btmp logs to allow |
| 2668 | group read/write. ok dtucker@ |
Darren Tucker | 4b6cbf7 | 2010-11-24 10:46:37 +1100 | [diff] [blame] | 2669 | - (dtucker) [packet.c] Remove redundant local declaration of "int tos". |
Damien Miller | 73de86a | 2010-11-24 10:50:04 +1100 | [diff] [blame] | 2670 | - (djm) [defines.h] Add IP DSCP defines |
Darren Tucker | d995712 | 2010-11-24 10:09:13 +1100 | [diff] [blame] | 2671 | |
Darren Tucker | 9e0ff7a | 2010-11-22 17:59:00 +1100 | [diff] [blame] | 2672 | 20101122 |
| 2673 | - (dtucker) Bug #1840: fix warning when configuring --with-ssl-engine, patch |
| 2674 | from vapier at gentoo org. |
| 2675 | |
Damien Miller | 7a221a1 | 2010-11-20 15:14:29 +1100 | [diff] [blame] | 2676 | 20101120 |
| 2677 | - OpenBSD CVS Sync |
| 2678 | - djm@cvs.openbsd.org 2010/11/05 02:46:47 |
| 2679 | [packet.c] |
| 2680 | whitespace KNF |
Damien Miller | 4499f4c | 2010-11-20 15:15:49 +1100 | [diff] [blame] | 2681 | - djm@cvs.openbsd.org 2010/11/10 01:33:07 |
| 2682 | [kexdhc.c kexdhs.c kexgexc.c kexgexs.c key.c moduli.c] |
| 2683 | use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED. |
| 2684 | these have been around for years by this time. ok markus |
Damien Miller | 0dac6fb | 2010-11-20 15:19:38 +1100 | [diff] [blame] | 2685 | - djm@cvs.openbsd.org 2010/11/13 23:27:51 |
| 2686 | [clientloop.c misc.c misc.h packet.c packet.h readconf.c readconf.h] |
| 2687 | [servconf.c servconf.h session.c ssh.c ssh_config.5 sshd_config.5] |
| 2688 | allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead of |
| 2689 | hardcoding lowdelay/throughput. |
| 2690 | |
| 2691 | bz#1733 patch from philipp AT redfish-solutions.com; ok markus@ deraadt@ |
Damien Miller | 8e1ea4e | 2010-11-20 15:20:10 +1100 | [diff] [blame] | 2692 | - jmc@cvs.openbsd.org 2010/11/15 07:40:14 |
| 2693 | [ssh_config.5] |
| 2694 | libary -> library; |
Damien Miller | 0a18473 | 2010-11-20 15:21:03 +1100 | [diff] [blame] | 2695 | - jmc@cvs.openbsd.org 2010/11/18 15:01:00 |
| 2696 | [scp.1 sftp.1 ssh.1 sshd_config.5] |
| 2697 | add IPQoS to the various -o lists, and zap some trailing whitespace; |
Damien Miller | 7a221a1 | 2010-11-20 15:14:29 +1100 | [diff] [blame] | 2698 | |
Damien Miller | dd190dd | 2010-11-11 14:17:02 +1100 | [diff] [blame] | 2699 | 20101111 |
| 2700 | - (djm) [servconf.c ssh-add.c ssh-keygen.c] don't look for ECDSA keys on |
| 2701 | platforms that don't support ECC. Fixes some spurious warnings reported |
| 2702 | by tim@ |
| 2703 | |
Tim Rice | e426f5e | 2010-11-08 09:15:14 -0800 | [diff] [blame] | 2704 | 20101109 |
| 2705 | - (tim) [regress/kextype.sh] Not all platforms have time in /usr/bin. |
| 2706 | Feedback from dtucker@ |
Tim Rice | c7a8af0 | 2010-11-08 14:26:23 -0800 | [diff] [blame] | 2707 | - (tim) [configure.ac openbsd-compat/bsd-misc.h openbsd-compat/bsd-misc.c] Add |
| 2708 | support for platforms missing isblank(). ok djm@ |
Tim Rice | e426f5e | 2010-11-08 09:15:14 -0800 | [diff] [blame] | 2709 | |
Tim Rice | 522262f | 2010-11-07 13:00:27 -0800 | [diff] [blame] | 2710 | 20101108 |
| 2711 | - (tim) [regress/Makefile] Fixes to allow building/testing outside source |
| 2712 | tree. |
Tim Rice | c10aeaa | 2010-11-07 13:03:11 -0800 | [diff] [blame] | 2713 | - (tim) [regress/kextype.sh] Shell portability fix. |
Tim Rice | 522262f | 2010-11-07 13:00:27 -0800 | [diff] [blame] | 2714 | |
Darren Tucker | d1ece6e | 2010-11-07 18:05:54 +1100 | [diff] [blame] | 2715 | 20101107 |
| 2716 | - (dtucker) [platform.c] includes.h instead of defines.h so that we get |
| 2717 | the correct typedefs. |
| 2718 | |
Damien Miller | 3a0e9f6 | 2010-11-05 10:16:34 +1100 | [diff] [blame] | 2719 | 20101105 |
Damien Miller | 34ee420 | 2010-11-05 10:52:37 +1100 | [diff] [blame] | 2720 | - (djm) [loginrec.c loginrec.h] Use correct uid_t/pid_t types instead of |
| 2721 | int. Should fix bz#1817 cleanly; ok dtucker@ |
Damien Miller | 3a0e9f6 | 2010-11-05 10:16:34 +1100 | [diff] [blame] | 2722 | - OpenBSD CVS Sync |
| 2723 | - djm@cvs.openbsd.org 2010/09/22 12:26:05 |
| 2724 | [regress/Makefile regress/kextype.sh] |
| 2725 | regress test for each of the key exchange algorithms that we support |
Damien Miller | b472a90 | 2010-11-05 10:19:49 +1100 | [diff] [blame] | 2726 | - djm@cvs.openbsd.org 2010/10/28 11:22:09 |
| 2727 | [authfile.c key.c key.h ssh-keygen.c] |
| 2728 | fix a possible NULL deref on loading a corrupt ECDH key |
| 2729 | |
| 2730 | store ECDH group information in private keys files as "named groups" |
| 2731 | rather than as a set of explicit group parameters (by setting |
| 2732 | the OPENSSL_EC_NAMED_CURVE flag). This makes for shorter key files and |
| 2733 | retrieves the group's OpenSSL NID that we need for various things. |
Damien Miller | 55fa565 | 2010-11-05 10:20:14 +1100 | [diff] [blame] | 2734 | - jmc@cvs.openbsd.org 2010/10/28 18:33:28 |
| 2735 | [scp.1 ssh-add.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5] |
| 2736 | knock out some "-*- nroff -*-" lines; |
Damien Miller | 0733121 | 2010-11-05 10:20:31 +1100 | [diff] [blame] | 2737 | - djm@cvs.openbsd.org 2010/11/04 02:45:34 |
| 2738 | [sftp-server.c] |
| 2739 | umask should be parsed as octal. reported by candland AT xmission.com; |
| 2740 | ok markus@ |
Darren Tucker | 9752835 | 2010-11-05 12:03:05 +1100 | [diff] [blame] | 2741 | - (dtucker) [configure.ac platform.{c,h} session.c |
| 2742 | openbsd-compat/port-solaris.{c,h}] Bug #1824: Add Solaris Project support. |
| 2743 | Patch from cory.erickson at csu mnscu edu with a bit of rework from me. |
| 2744 | ok djm@ |
Darren Tucker | 920612e | 2010-11-05 12:36:15 +1100 | [diff] [blame] | 2745 | - (dtucker) [platform.c platform.h session.c] Add a platform hook to run |
| 2746 | after the user's groups are established and move the selinux calls into it. |
Darren Tucker | 4db3807 | 2010-11-05 12:41:13 +1100 | [diff] [blame] | 2747 | - (dtucker) [platform.c session.c] Move the AIX setpcred+chroot hack into |
| 2748 | platform.c |
Darren Tucker | 44a97be | 2010-11-05 12:45:18 +1100 | [diff] [blame] | 2749 | - (dtucker) [platform.c session.c] Move the BSDI setpgrp into platform.c. |
Darren Tucker | fd4d8aa | 2010-11-05 12:50:41 +1100 | [diff] [blame] | 2750 | - (dtucker) [platform.c] Only call setpgrp on BSDI if running as root to |
| 2751 | retain previous behavior. |
Darren Tucker | 728d837 | 2010-11-05 13:00:05 +1100 | [diff] [blame] | 2752 | - (dtucker) [platform.c session.c] Move the PAM credential establishment for |
| 2753 | the LOGIN_CAP case into platform.c. |
Darren Tucker | 7a8afe3 | 2010-11-05 13:07:24 +1100 | [diff] [blame] | 2754 | - (dtucker) platform.c session.c] Move the USE_LIBIAF fragment into |
| 2755 | platform.c |
Darren Tucker | 0b2ee64 | 2010-11-05 13:29:25 +1100 | [diff] [blame] | 2756 | - (dtucker) [platform.c session.c] Move aix_usrinfo frament into platform.c. |
| 2757 | - (dtucker) [platform.c session.c] Move irix setusercontext fragment into |
| 2758 | platform.c. |
Darren Tucker | cc12418 | 2010-11-05 13:32:52 +1100 | [diff] [blame] | 2759 | - (dtucker) [platform.c session.c] Move PAM credential establishment for the |
| 2760 | non-LOGIN_CAP case into platform.c. |
Darren Tucker | b12fe27 | 2010-11-05 14:47:01 +1100 | [diff] [blame] | 2761 | - (dtucker) [platform.c platform.h session.c] Move the Cygwin special-case |
| 2762 | check into platform.c |
Darren Tucker | b69e033 | 2010-11-05 18:19:15 +1100 | [diff] [blame] | 2763 | - (dtucker) [regress/keytype.sh] Import new test. |
Darren Tucker | eab5f0d | 2010-11-05 18:23:38 +1100 | [diff] [blame] | 2764 | - (dtucker) [Makefile configure.ac regress/Makefile regress/keytype.sh] |
| 2765 | Import recent changes to regress/Makefile, pass a flag to enable ECC tests |
| 2766 | from configure through to regress/Makefile and use it in the tests. |
Darren Tucker | 345178d | 2010-11-05 18:35:52 +1100 | [diff] [blame] | 2767 | - (dtucker) [regress/kextype.sh] Add missing "test". |
Darren Tucker | f619d1c | 2010-11-05 18:41:50 +1100 | [diff] [blame] | 2768 | - (dtucker) [regress/kextype.sh] Make sha256 test depend on ECC. This is not |
| 2769 | strictly correct since while ECC requires sha256 the reverse is not true |
| 2770 | however it does prevent spurious test failures. |
Darren Tucker | 9283d8c | 2010-11-05 18:56:08 +1100 | [diff] [blame] | 2771 | - (dtucker) [platform.c] Need servconf.h and extern options. |
Damien Miller | 3a0e9f6 | 2010-11-05 10:16:34 +1100 | [diff] [blame] | 2772 | |
Tim Rice | bdd3e67 | 2010-10-24 18:35:55 -0700 | [diff] [blame] | 2773 | 20101025 |
| 2774 | - (tim) [openbsd-compat/glob.h] Remove sys/cdefs.h include that came with |
| 2775 | 1.12 to unbreak Solaris build. |
| 2776 | ok djm@ |
Darren Tucker | 54b1f31 | 2010-10-25 16:54:28 +1100 | [diff] [blame] | 2777 | - (dtucker) [defines.h] Use SIZE_T_MAX for SIZE_MAX for platforms that have a |
| 2778 | native one. |
Tim Rice | bdd3e67 | 2010-10-24 18:35:55 -0700 | [diff] [blame] | 2779 | |
Darren Tucker | a539393 | 2010-10-24 10:47:30 +1100 | [diff] [blame] | 2780 | 20101024 |
| 2781 | - (dtucker) [includes.h] Add missing ifdef GLOB_HAS_GL_STATV to fix build. |
Darren Tucker | bfd9b1b | 2010-10-24 11:19:26 +1100 | [diff] [blame] | 2782 | - (dtucker) [regress/cert-hostkey.sh] Disable ECC-based tests on platforms |
| 2783 | which don't have ECC support in libcrypto. |
Darren Tucker | d633fef | 2010-10-24 11:33:07 +1100 | [diff] [blame] | 2784 | - (dtucker) [regress/cert-userkey.sh] Disable ECC-based tests on platforms |
| 2785 | which don't have ECC support in libcrypto. |
Darren Tucker | 7bc236d | 2010-10-24 11:58:43 +1100 | [diff] [blame] | 2786 | - (dtucker) [defines.h] Add SIZE_MAX for the benefit of platforms that don't |
| 2787 | have it. |
Darren Tucker | d78739a | 2010-10-24 10:56:32 +1100 | [diff] [blame] | 2788 | - (dtucker) OpenBSD CVS Sync |
| 2789 | - sthen@cvs.openbsd.org 2010/10/23 22:06:12 |
| 2790 | [sftp.c] |
| 2791 | escape '[' in filename tab-completion; fix a type while there. |
| 2792 | ok djm@ |
Darren Tucker | a539393 | 2010-10-24 10:47:30 +1100 | [diff] [blame] | 2793 | |
Damien Miller | 68512c0 | 2010-10-21 15:21:11 +1100 | [diff] [blame] | 2794 | 20101021 |
| 2795 | - OpenBSD CVS Sync |
| 2796 | - dtucker@cvs.openbsd.org 2010/10/12 02:22:24 |
| 2797 | [mux.c] |
| 2798 | Typo in confirmation message. bz#1827, patch from imorgan at |
| 2799 | nas nasa gov |
Damien Miller | 6fd2d7d | 2010-10-21 15:27:14 +1100 | [diff] [blame] | 2800 | - djm@cvs.openbsd.org 2010/08/31 12:24:09 |
| 2801 | [regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 2802 | tests for ECDSA certificates |
Damien Miller | 68512c0 | 2010-10-21 15:21:11 +1100 | [diff] [blame] | 2803 | |
Damien Miller | 1f78980 | 2010-10-11 22:35:22 +1100 | [diff] [blame] | 2804 | 20101011 |
Damien Miller | 47e57bf | 2010-10-12 13:28:12 +1100 | [diff] [blame] | 2805 | - (djm) [canohost.c] Zero a4 instead of addr to better match type. |
| 2806 | bz#1825, reported by foo AT mailinator.com |
Damien Miller | 9c0c31d | 2010-10-12 13:30:44 +1100 | [diff] [blame] | 2807 | - (djm) [sshconnect.c] Need signal.h for prototype for kill(2) |
Damien Miller | 47e57bf | 2010-10-12 13:28:12 +1100 | [diff] [blame] | 2808 | |
| 2809 | 20101011 |
Damien Miller | 1f78980 | 2010-10-11 22:35:22 +1100 | [diff] [blame] | 2810 | - (djm) [configure.ac] Use = instead of == in shell tests. Patch from |
| 2811 | dr AT vasco.com |
| 2812 | |
Damien Miller | aa18063 | 2010-10-07 21:25:27 +1100 | [diff] [blame] | 2813 | 20101007 |
Damien Miller | 9a3d0dc | 2010-10-07 22:06:42 +1100 | [diff] [blame] | 2814 | - (djm) [ssh-agent.c] Fix type for curve name. |
Damien Miller | aa18063 | 2010-10-07 21:25:27 +1100 | [diff] [blame] | 2815 | - (djm) OpenBSD CVS Sync |
| 2816 | - matthew@cvs.openbsd.org 2010/09/24 13:33:00 |
| 2817 | [misc.c misc.h configure.ac openbsd-compat/openbsd-compat.h] |
| 2818 | [openbsd-compat/timingsafe_bcmp.c] |
| 2819 | Add timingsafe_bcmp(3) to libc, mention that it's already in the |
| 2820 | kernel in kern(9), and remove it from OpenSSH. |
| 2821 | ok deraadt@, djm@ |
| 2822 | NB. re-added under openbsd-compat/ for portable OpenSSH |
Damien Miller | a6e121a | 2010-10-07 21:39:17 +1100 | [diff] [blame] | 2823 | - djm@cvs.openbsd.org 2010/09/25 09:30:16 |
| 2824 | [sftp.c configure.ac openbsd-compat/glob.c openbsd-compat/glob.h] |
| 2825 | make use of new glob(3) GLOB_KEEPSTAT extension to save extra server |
| 2826 | rountrips to fetch per-file stat(2) information. |
| 2827 | NB. update openbsd-compat/ glob(3) implementation from OpenBSD libc to |
| 2828 | match. |
Damien Miller | 68e2e56 | 2010-10-07 21:39:55 +1100 | [diff] [blame] | 2829 | - djm@cvs.openbsd.org 2010/09/26 22:26:33 |
| 2830 | [sftp.c] |
| 2831 | when performing an "ls" in columnated (short) mode, only call |
| 2832 | ioctl(TIOCGWINSZ) once to get the window width instead of per- |
| 2833 | filename |
Damien Miller | c54b02c | 2010-10-07 21:40:17 +1100 | [diff] [blame] | 2834 | - djm@cvs.openbsd.org 2010/09/30 11:04:51 |
| 2835 | [servconf.c] |
| 2836 | prevent free() of string in .rodata when overriding AuthorizedKeys in |
| 2837 | a Match block; patch from rein AT basefarm.no |
Damien Miller | 9a3d0dc | 2010-10-07 22:06:42 +1100 | [diff] [blame] | 2838 | - djm@cvs.openbsd.org 2010/10/01 23:05:32 |
| 2839 | [cipher-3des1.c cipher-bf1.c cipher-ctr.c openbsd-compat/openssl-compat.h] |
| 2840 | adapt to API changes in openssl-1.0.0a |
| 2841 | NB. contains compat code to select correct API for older OpenSSL |
Damien Miller | 38d9a96 | 2010-10-07 22:07:11 +1100 | [diff] [blame] | 2842 | - djm@cvs.openbsd.org 2010/10/05 05:13:18 |
| 2843 | [sftp.c sshconnect.c] |
| 2844 | use default shell /bin/sh if $SHELL is ""; ok markus@ |
Damien Miller | a41ccca | 2010-10-07 22:07:32 +1100 | [diff] [blame] | 2845 | - djm@cvs.openbsd.org 2010/10/06 06:39:28 |
| 2846 | [clientloop.c ssh.c sshconnect.c sshconnect.h] |
| 2847 | kill proxy command on fatal() (we already kill it on clean exit); |
| 2848 | ok markus@ |
Damien Miller | 45fcdaa | 2010-10-07 22:07:58 +1100 | [diff] [blame] | 2849 | - djm@cvs.openbsd.org 2010/10/06 21:10:21 |
| 2850 | [sshconnect.c] |
| 2851 | swapped args to kill(2) |
Damien Miller | 37f4f18 | 2010-10-07 22:10:38 +1100 | [diff] [blame] | 2852 | - (djm) [openbsd-compat/glob.c] restore ARG_MAX compat code. |
Damien Miller | 80e9953 | 2010-10-07 22:12:08 +1100 | [diff] [blame] | 2853 | - (djm) [cipher-acss.c] Add missing header. |
Damien Miller | 88b844f | 2010-10-07 22:19:23 +1100 | [diff] [blame] | 2854 | - (djm) [openbsd-compat/Makefile.in] Actually link timingsafe_bcmp |
Damien Miller | aa18063 | 2010-10-07 21:25:27 +1100 | [diff] [blame] | 2855 | |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 2856 | 20100924 |
| 2857 | - (djm) OpenBSD CVS Sync |
| 2858 | - naddy@cvs.openbsd.org 2010/09/10 15:19:29 |
| 2859 | [ssh-keygen.1] |
| 2860 | * mention ECDSA in more places |
| 2861 | * less repetition in FILES section |
| 2862 | * SSHv1 keys are still encrypted with 3DES |
| 2863 | help and ok jmc@ |
Damien Miller | 1ca9469 | 2010-09-24 22:01:22 +1000 | [diff] [blame] | 2864 | - djm@cvs.openbsd.org 2010/09/11 21:44:20 |
| 2865 | [ssh.1] |
| 2866 | mention RFC 5656 for ECC stuff |
Damien Miller | 881adf7 | 2010-09-24 22:01:54 +1000 | [diff] [blame] | 2867 | - jmc@cvs.openbsd.org 2010/09/19 21:30:05 |
| 2868 | [sftp.1] |
| 2869 | more wacky macro fixing; |
Damien Miller | 857b02e | 2010-09-24 22:02:56 +1000 | [diff] [blame] | 2870 | - djm@cvs.openbsd.org 2010/09/20 04:41:47 |
| 2871 | [ssh.c] |
| 2872 | install a SIGCHLD handler to reap expiried child process; ok markus@ |
Damien Miller | f7540cd | 2010-09-24 22:03:24 +1000 | [diff] [blame] | 2873 | - djm@cvs.openbsd.org 2010/09/20 04:50:53 |
| 2874 | [jpake.c schnorr.c] |
| 2875 | check that received values are smaller than the group size in the |
| 2876 | disabled and unfinished J-PAKE code. |
| 2877 | avoids catastrophic security failure found by Sebastien Martini |
Damien Miller | 18e1cab | 2010-09-24 22:07:17 +1000 | [diff] [blame] | 2878 | - djm@cvs.openbsd.org 2010/09/20 04:54:07 |
| 2879 | [jpake.c] |
| 2880 | missing #include |
Damien Miller | 603134e | 2010-09-24 22:07:55 +1000 | [diff] [blame] | 2881 | - djm@cvs.openbsd.org 2010/09/20 07:19:27 |
| 2882 | [mux.c] |
| 2883 | "atomically" create the listening mux socket by binding it on a temorary |
| 2884 | name and then linking it into position after listen() has succeeded. |
| 2885 | this allows the mux clients to determine that the server socket is |
| 2886 | either ready or stale without races. stale server sockets are now |
| 2887 | automatically removed |
| 2888 | ok deraadt |
Damien Miller | d5f62bf | 2010-09-24 22:11:14 +1000 | [diff] [blame] | 2889 | - djm@cvs.openbsd.org 2010/09/22 05:01:30 |
| 2890 | [kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c readconf.c readconf.h] |
| 2891 | [servconf.c servconf.h ssh_config.5 sshconnect2.c sshd.c sshd_config.5] |
| 2892 | add a KexAlgorithms knob to the client and server configuration to allow |
| 2893 | selection of which key exchange methods are used by ssh(1) and sshd(8) |
| 2894 | and their order of preference. |
| 2895 | ok markus@ |
Damien Miller | 7fe2b1f | 2010-09-24 22:11:53 +1000 | [diff] [blame] | 2896 | - jmc@cvs.openbsd.org 2010/09/22 08:30:08 |
| 2897 | [ssh.1 ssh_config.5] |
| 2898 | ssh.1: add kexalgorithms to the -o list |
| 2899 | ssh_config.5: format the kexalgorithms in a more consistent |
| 2900 | (prettier!) way |
| 2901 | ok djm |
Damien Miller | 65e42f8 | 2010-09-24 22:15:11 +1000 | [diff] [blame] | 2902 | - djm@cvs.openbsd.org 2010/09/22 22:58:51 |
| 2903 | [atomicio.c atomicio.h misc.c misc.h scp.c sftp-client.c] |
| 2904 | [sftp-client.h sftp.1 sftp.c] |
| 2905 | add an option per-read/write callback to atomicio |
| 2906 | |
| 2907 | factor out bandwidth limiting code from scp(1) into a generic bandwidth |
| 2908 | limiter that can be attached using the atomicio callback mechanism |
| 2909 | |
| 2910 | add a bandwidth limit option to sftp(1) using the above |
| 2911 | "very nice" markus@ |
Damien Miller | 56883e1 | 2010-09-24 22:15:39 +1000 | [diff] [blame] | 2912 | - jmc@cvs.openbsd.org 2010/09/23 13:34:43 |
| 2913 | [sftp.c] |
| 2914 | add [-l limit] to usage(); |
Damien Miller | 2beb32f | 2010-09-24 22:16:03 +1000 | [diff] [blame] | 2915 | - jmc@cvs.openbsd.org 2010/09/23 13:36:46 |
| 2916 | [scp.1 sftp.1] |
| 2917 | add KexAlgorithms to the -o list; |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 2918 | |
Damien Miller | 4314c2b | 2010-09-10 11:12:09 +1000 | [diff] [blame] | 2919 | 20100910 |
Darren Tucker | 50e3bab | 2010-09-10 10:30:25 +1000 | [diff] [blame] | 2920 | - (dtucker) [openbsd-compat/port-linux.c] Check is_selinux_enabled for exact |
| 2921 | return code since it can apparently return -1 under some conditions. From |
| 2922 | openssh bugs werbittewas de, ok djm@ |
Damien Miller | 4314c2b | 2010-09-10 11:12:09 +1000 | [diff] [blame] | 2923 | - OpenBSD CVS Sync |
| 2924 | - djm@cvs.openbsd.org 2010/08/31 12:33:38 |
| 2925 | [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c] |
| 2926 | reintroduce commit from tedu@, which I pulled out for release |
| 2927 | engineering: |
| 2928 | OpenSSL_add_all_algorithms is the name of the function we have a |
| 2929 | man page for, so use that. ok djm |
Damien Miller | de735ea | 2010-09-10 11:12:38 +1000 | [diff] [blame] | 2930 | - jmc@cvs.openbsd.org 2010/08/31 17:40:54 |
| 2931 | [ssh-agent.1] |
| 2932 | fix some macro abuse; |
Damien Miller | d442790 | 2010-09-10 11:15:10 +1000 | [diff] [blame] | 2933 | - jmc@cvs.openbsd.org 2010/08/31 21:14:58 |
| 2934 | [ssh.1] |
| 2935 | small text tweak to accommodate previous; |
Damien Miller | e13cadf | 2010-09-10 11:15:33 +1000 | [diff] [blame] | 2936 | - naddy@cvs.openbsd.org 2010/09/01 15:21:35 |
| 2937 | [servconf.c] |
| 2938 | pick up ECDSA host key by default; ok djm@ |
Damien Miller | 390f153 | 2010-09-10 11:17:54 +1000 | [diff] [blame] | 2939 | - markus@cvs.openbsd.org 2010/09/02 16:07:25 |
Damien Miller | 5773794 | 2010-09-10 11:16:37 +1000 | [diff] [blame] | 2940 | [ssh-keygen.c] |
| 2941 | permit -b 256, 384 or 521 as key size for ECDSA; ok djm@ |
Damien Miller | 390f153 | 2010-09-10 11:17:54 +1000 | [diff] [blame] | 2942 | - markus@cvs.openbsd.org 2010/09/02 16:08:39 |
Damien Miller | 5929c52 | 2010-09-10 11:17:02 +1000 | [diff] [blame] | 2943 | [ssh.c] |
| 2944 | unbreak ControlPersist=yes for ControlMaster=yes; ok djm@ |
Damien Miller | 6e9f680 | 2010-09-10 11:17:38 +1000 | [diff] [blame] | 2945 | - naddy@cvs.openbsd.org 2010/09/02 17:21:50 |
| 2946 | [ssh-keygen.c] |
| 2947 | Switch ECDSA default key size to 256 bits, which according to RFC5656 |
| 2948 | should still be better than our current RSA-2048 default. |
| 2949 | ok djm@, markus@ |
Damien Miller | 390f153 | 2010-09-10 11:17:54 +1000 | [diff] [blame] | 2950 | - jmc@cvs.openbsd.org 2010/09/03 11:09:29 |
| 2951 | [scp.1] |
| 2952 | add an EXIT STATUS section for /usr/bin; |
Damien Miller | daa7b22 | 2010-09-10 11:19:33 +1000 | [diff] [blame] | 2953 | - jmc@cvs.openbsd.org 2010/09/04 09:38:34 |
| 2954 | [ssh-add.1 ssh.1] |
| 2955 | two more EXIT STATUS sections; |
Damien Miller | 80ed82a | 2010-09-10 11:20:11 +1000 | [diff] [blame] | 2956 | - naddy@cvs.openbsd.org 2010/09/06 17:10:19 |
| 2957 | [sshd_config] |
| 2958 | add ssh_host_ecdsa_key to /etc; from Mattieu Baptiste |
| 2959 | <mattieu.b@gmail.com> |
| 2960 | ok deraadt@ |
Damien Miller | bf0423e | 2010-09-10 11:20:38 +1000 | [diff] [blame] | 2961 | - djm@cvs.openbsd.org 2010/09/08 03:54:36 |
| 2962 | [authfile.c] |
| 2963 | typo |
Damien Miller | 3796ab4 | 2010-09-10 11:20:59 +1000 | [diff] [blame] | 2964 | - deraadt@cvs.openbsd.org 2010/09/08 04:13:31 |
| 2965 | [compress.c] |
| 2966 | work around name-space collisions some buggy compilers (looking at you |
| 2967 | gcc, at least in earlier versions, but this does not forgive your current |
| 2968 | transgressions) seen between zlib and openssl |
| 2969 | ok djm |
Damien Miller | 041ab7c | 2010-09-10 11:23:34 +1000 | [diff] [blame] | 2970 | - djm@cvs.openbsd.org 2010/09/09 10:45:45 |
| 2971 | [kex.c kex.h kexecdh.c key.c key.h monitor.c ssh-ecdsa.c] |
| 2972 | ECDH/ECDSA compliance fix: these methods vary the hash function they use |
| 2973 | (SHA256/384/512) depending on the length of the curve in use. The previous |
| 2974 | code incorrectly used SHA256 in all cases. |
| 2975 | |
| 2976 | This fix will cause authentication failure when using 384 or 521-bit curve |
| 2977 | keys if one peer hasn't been upgraded and the other has. (256-bit curve |
| 2978 | keys work ok). In particular you may need to specify HostkeyAlgorithms |
| 2979 | when connecting to a server that has not been upgraded from an upgraded |
| 2980 | client. |
| 2981 | |
| 2982 | ok naddy@ |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 2983 | - (djm) [authfd.c authfile.c bufec.c buffer.h configure.ac kex.h kexecdh.c] |
| 2984 | [kexecdhc.c kexecdhs.c key.c key.h myproposal.h packet.c readconf.c] |
| 2985 | [ssh-agent.c ssh-ecdsa.c ssh-keygen.c ssh.c] Disable ECDH and ECDSA on |
| 2986 | platforms that don't have the requisite OpenSSL support. ok dtucker@ |
Darren Tucker | 8ccb739 | 2010-09-10 12:28:24 +1000 | [diff] [blame] | 2987 | - (dtucker) [kex.h key.c packet.h ssh-agent.c ssh.c] A few more ECC ifdefs |
| 2988 | for missing headers and compiler warnings. |
Darren Tucker | 50e3bab | 2010-09-10 10:30:25 +1000 | [diff] [blame] | 2989 | |
| 2990 | 20100831 |
Damien Miller | afdae61 | 2010-08-31 22:31:14 +1000 | [diff] [blame] | 2991 | - OpenBSD CVS Sync |
| 2992 | - jmc@cvs.openbsd.org 2010/08/08 19:36:30 |
| 2993 | [ssh-keysign.8 ssh.1 sshd.8] |
| 2994 | use the same template for all FILES sections; i.e. -compact/.Pp where we |
| 2995 | have multiple items, and .Pa for path names; |
Damien Miller | 9b87e79 | 2010-08-31 22:31:37 +1000 | [diff] [blame] | 2996 | - tedu@cvs.openbsd.org 2010/08/12 23:34:39 |
| 2997 | [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c] |
| 2998 | OpenSSL_add_all_algorithms is the name of the function we have a man page |
| 2999 | for, so use that. ok djm |
Damien Miller | d96546f | 2010-08-31 22:32:12 +1000 | [diff] [blame] | 3000 | - djm@cvs.openbsd.org 2010/08/16 04:06:06 |
| 3001 | [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c] |
| 3002 | backout previous temporarily; discussed with deraadt@ |
Damien Miller | da108ec | 2010-08-31 22:36:39 +1000 | [diff] [blame] | 3003 | - djm@cvs.openbsd.org 2010/08/31 09:58:37 |
| 3004 | [auth-options.c auth1.c auth2.c bufaux.c buffer.h kex.c key.c packet.c] |
| 3005 | [packet.h ssh-dss.c ssh-rsa.c] |
| 3006 | Add buffer_get_cstring() and related functions that verify that the |
| 3007 | string extracted from the buffer contains no embedded \0 characters* |
| 3008 | This prevents random (possibly malicious) crap from being appended to |
| 3009 | strings where it would not be noticed if the string is used with |
| 3010 | a string(3) function. |
| 3011 | |
| 3012 | Use the new API in a few sensitive places. |
| 3013 | |
| 3014 | * actually, we allow a single one at the end of the string for now because |
| 3015 | we don't know how many deployed implementations get this wrong, but don't |
| 3016 | count on this to remain indefinitely. |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame] | 3017 | - djm@cvs.openbsd.org 2010/08/31 11:54:45 |
| 3018 | [PROTOCOL PROTOCOL.agent PROTOCOL.certkeys auth2-jpake.c authfd.c] |
| 3019 | [authfile.c buffer.h dns.c kex.c kex.h key.c key.h monitor.c] |
| 3020 | [monitor_wrap.c myproposal.h packet.c packet.h pathnames.h readconf.c] |
| 3021 | [ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c] |
| 3022 | [ssh-keyscan.1 ssh-keyscan.c ssh-keysign.8 ssh.1 ssh.c ssh2.h] |
| 3023 | [ssh_config.5 sshconnect.c sshconnect2.c sshd.8 sshd.c sshd_config.5] |
| 3024 | [uuencode.c uuencode.h bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] |
| 3025 | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and |
| 3026 | host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer |
| 3027 | better performance than plain DH and DSA at the same equivalent symmetric |
| 3028 | key length, as well as much shorter keys. |
| 3029 | |
| 3030 | Only the mandatory sections of RFC5656 are implemented, specifically the |
| 3031 | three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and |
| 3032 | ECDSA. Point compression (optional in RFC5656 is NOT implemented). |
| 3033 | |
| 3034 | Certificate host and user keys using the new ECDSA key types are supported. |
| 3035 | |
| 3036 | Note that this code has not been tested for interoperability and may be |
| 3037 | subject to change. |
| 3038 | |
| 3039 | feedback and ok markus@ |
Damien Miller | b5a62d0 | 2010-08-31 22:47:15 +1000 | [diff] [blame] | 3040 | - (djm) [Makefile.in] Add new ECC files |
Damien Miller | c79ff07 | 2010-08-31 22:50:48 +1000 | [diff] [blame] | 3041 | - (djm) [bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] include |
| 3042 | includes.h |
Damien Miller | afdae61 | 2010-08-31 22:31:14 +1000 | [diff] [blame] | 3043 | |
Darren Tucker | 6889abd | 2010-08-27 10:12:54 +1000 | [diff] [blame] | 3044 | 20100827 |
| 3045 | - (dtucker) [contrib/redhat/sshd.init] Bug #1810: initlog is deprecated, |
| 3046 | remove. Patch from martynas at venck us |
| 3047 | |
Damien Miller | a536202 | 2010-08-23 21:20:20 +1000 | [diff] [blame] | 3048 | 20100823 |
| 3049 | - (djm) Release OpenSSH-5.6p1 |
| 3050 | |
Darren Tucker | aa74f67 | 2010-08-16 13:15:23 +1000 | [diff] [blame] | 3051 | 20100816 |
| 3052 | - (dtucker) [configure.ac openbsd-compat/Makefile.in |
| 3053 | openbsd-compat/openbsd-compat.h openbsd-compat/strptime.c] Add strptime to |
| 3054 | the compat library which helps on platforms like old IRIX. Based on work |
| 3055 | by djm, tested by Tom Christensen. |
Damien Miller | 00d9ae2 | 2010-08-17 01:59:31 +1000 | [diff] [blame] | 3056 | - OpenBSD CVS Sync |
| 3057 | - djm@cvs.openbsd.org 2010/08/12 21:49:44 |
| 3058 | [ssh.c] |
| 3059 | close any extra file descriptors inherited from parent at start and |
| 3060 | reopen stdin/stdout to /dev/null when forking for ControlPersist. |
| 3061 | |
| 3062 | prevents tools that fork and run a captive ssh for communication from |
| 3063 | failing to exit when the ssh completes while they wait for these fds to |
| 3064 | close. The inherited fds may persist arbitrarily long if a background |
| 3065 | mux master has been started by ControlPersist. cvs and scp were effected |
| 3066 | by this. |
| 3067 | |
| 3068 | "please commit" markus@ |
Damien Miller | 07ad389 | 2010-08-17 07:04:28 +1000 | [diff] [blame] | 3069 | - (djm) [regress/README.regress] typo |
Darren Tucker | aa74f67 | 2010-08-16 13:15:23 +1000 | [diff] [blame] | 3070 | |
Tim Rice | 722b8d1 | 2010-08-12 09:43:13 -0700 | [diff] [blame] | 3071 | 20100812 |
| 3072 | - (tim) [regress/login-timeout.sh regress/reconfigure.sh regress/reexec.sh |
| 3073 | regress/test-exec.sh] Under certain conditions when testing with sudo |
| 3074 | tests would fail because the pidfile could not be read by a regular user. |
| 3075 | "cat: cannot open ...../regress/pidfile: Permission denied (error 13)" |
| 3076 | Make sure cat is run by $SUDO. no objection from me. djm@ |
Tim Rice | ad7d547 | 2010-08-12 10:33:01 -0700 | [diff] [blame] | 3077 | - (tim) [auth.c] add cast to quiet compiler. Change only affects SVR5 systems. |
Tim Rice | 722b8d1 | 2010-08-12 09:43:13 -0700 | [diff] [blame] | 3078 | |
Damien Miller | 7e569b8 | 2010-08-09 02:28:37 +1000 | [diff] [blame] | 3079 | 20100809 |
Damien Miller | 2c4b13a | 2010-08-10 12:47:40 +1000 | [diff] [blame] | 3080 | - (djm) bz#1561: don't bother setting IFF_UP on tun(4) device if it is |
| 3081 | already set. Makes FreeBSD user openable tunnels useful; patch from |
| 3082 | richard.burakowski+ossh AT mrburak.net, ok dtucker@ |
Darren Tucker | 02c4734 | 2010-08-10 13:36:09 +1000 | [diff] [blame] | 3083 | - (dtucker) bug #1530: strip trailing ":" from hostname in ssh-copy-id. |
| 3084 | based in part on a patch from Colin Watson, ok djm@ |
Damien Miller | 2c4b13a | 2010-08-10 12:47:40 +1000 | [diff] [blame] | 3085 | |
| 3086 | 20100809 |
Damien Miller | 7e569b8 | 2010-08-09 02:28:37 +1000 | [diff] [blame] | 3087 | - OpenBSD CVS Sync |
| 3088 | - djm@cvs.openbsd.org 2010/08/08 16:26:42 |
| 3089 | [version.h] |
| 3090 | crank to 5.6 |
Damien Miller | 792010b | 2010-08-09 02:32:05 +1000 | [diff] [blame] | 3091 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 3092 | [contrib/suse/openssh.spec] Crank version numbers |
Damien Miller | 7e569b8 | 2010-08-09 02:28:37 +1000 | [diff] [blame] | 3093 | |
Damien Miller | 8e604ac | 2010-08-09 02:28:10 +1000 | [diff] [blame] | 3094 | 20100805 |
Damien Miller | 7fa9660 | 2010-08-05 13:03:13 +1000 | [diff] [blame] | 3095 | - OpenBSD CVS Sync |
| 3096 | - djm@cvs.openbsd.org 2010/08/04 05:37:01 |
| 3097 | [ssh.1 ssh_config.5 sshd.8] |
| 3098 | Remove mentions of weird "addr/port" alternate address format for IPv6 |
| 3099 | addresses combinations. It hasn't worked for ages and we have supported |
| 3100 | the more commen "[addr]:port" format for a long time. ok jmc@ markus@ |
Damien Miller | 1da6388 | 2010-08-05 13:03:51 +1000 | [diff] [blame] | 3101 | - djm@cvs.openbsd.org 2010/08/04 05:40:39 |
| 3102 | [PROTOCOL.certkeys ssh-keygen.c] |
| 3103 | tighten the rules for certificate encoding by requiring that options |
| 3104 | appear in lexical order and make our ssh-keygen comply. ok markus@ |
Damien Miller | c158331 | 2010-08-05 13:04:50 +1000 | [diff] [blame] | 3105 | - djm@cvs.openbsd.org 2010/08/04 05:42:47 |
| 3106 | [auth.c auth2-hostbased.c authfile.c authfile.h ssh-keysign.8] |
| 3107 | [ssh-keysign.c ssh.c] |
| 3108 | enable certificates for hostbased authentication, from Iain Morgan; |
| 3109 | "looks ok" markus@ |
Damien Miller | 5458c4d | 2010-08-05 13:05:15 +1000 | [diff] [blame] | 3110 | - djm@cvs.openbsd.org 2010/08/04 05:49:22 |
| 3111 | [authfile.c] |
| 3112 | commited the wrong version of the hostbased certificate diff; this |
| 3113 | version replaces some strlc{py,at} verbosity with xasprintf() at |
| 3114 | the request of markus@ |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 3115 | - djm@cvs.openbsd.org 2010/08/04 06:07:11 |
| 3116 | [ssh-keygen.1 ssh-keygen.c] |
| 3117 | Support CA keys in PKCS#11 tokens; feedback and ok markus@ |
Damien Miller | b89e6b7 | 2010-08-05 13:06:20 +1000 | [diff] [blame] | 3118 | - djm@cvs.openbsd.org 2010/08/04 06:08:40 |
| 3119 | [ssh-keysign.c] |
| 3120 | clean for -Wuninitialized (Id sync only; portable had this change) |
Damien Miller | 7d45718 | 2010-08-05 23:09:48 +1000 | [diff] [blame] | 3121 | - djm@cvs.openbsd.org 2010/08/05 13:08:42 |
| 3122 | [channels.c] |
| 3123 | Fix a trio of bugs in the local/remote window calculation for datagram |
| 3124 | data channels (i.e. TunnelForward): |
| 3125 | |
| 3126 | Calculate local_consumed correctly in channel_handle_wfd() by measuring |
| 3127 | the delta to buffer_len(c->output) from when we start to when we finish. |
| 3128 | The proximal problem here is that the output_filter we use in portable |
| 3129 | modified the length of the dequeued datagram (to futz with the headers |
| 3130 | for !OpenBSD). |
| 3131 | |
| 3132 | In channel_output_poll(), don't enqueue datagrams that won't fit in the |
| 3133 | peer's advertised packet size (highly unlikely to ever occur) or which |
| 3134 | won't fit in the peer's remaining window (more likely). |
| 3135 | |
| 3136 | In channel_input_data(), account for the 4-byte string header in |
| 3137 | datagram packets that we accept from the peer and enqueue in c->output. |
| 3138 | |
| 3139 | report, analysis and testing 2/3 cases from wierbows AT us.ibm.com; |
| 3140 | "looks good" markus@ |
Damien Miller | 7fa9660 | 2010-08-05 13:03:13 +1000 | [diff] [blame] | 3141 | |
Damien Miller | 8e604ac | 2010-08-09 02:28:10 +1000 | [diff] [blame] | 3142 | 20100803 |
Darren Tucker | 8b7a055 | 2010-08-03 15:50:16 +1000 | [diff] [blame] | 3143 | - (dtucker) [monitor.c] Bug #1795: Initialize the values to be returned from |
| 3144 | PAM to sane values in case the PAM method doesn't write to them. Spotted by |
| 3145 | Bitman Zhou, ok djm@. |
Damien Miller | 844cccf | 2010-08-03 16:03:29 +1000 | [diff] [blame] | 3146 | - OpenBSD CVS Sync |
| 3147 | - djm@cvs.openbsd.org 2010/07/16 04:45:30 |
| 3148 | [ssh-keygen.c] |
| 3149 | avoid bogus compiler warning |
Damien Miller | 4e8285e | 2010-08-03 16:04:03 +1000 | [diff] [blame] | 3150 | - djm@cvs.openbsd.org 2010/07/16 14:07:35 |
| 3151 | [ssh-rsa.c] |
| 3152 | more timing paranoia - compare all parts of the expected decrypted |
| 3153 | data before returning. AFAIK not exploitable in the SSH protocol. |
| 3154 | "groovy" deraadt@ |
Damien Miller | c4bb91c | 2010-08-03 16:04:22 +1000 | [diff] [blame] | 3155 | - djm@cvs.openbsd.org 2010/07/19 03:16:33 |
| 3156 | [sftp-client.c] |
| 3157 | bz#1797: fix swapped args in upload_dir_internal(), breaking recursive |
| 3158 | upload depth checks and causing verbose printing of transfers to always |
| 3159 | be turned on; patch from imorgan AT nas.nasa.gov |
Damien Miller | e11e1ea | 2010-08-03 16:04:46 +1000 | [diff] [blame] | 3160 | - djm@cvs.openbsd.org 2010/07/19 09:15:12 |
| 3161 | [clientloop.c readconf.c readconf.h ssh.c ssh_config.5] |
| 3162 | add a "ControlPersist" option that automatically starts a background |
| 3163 | ssh(1) multiplex master when connecting. This connection can stay alive |
| 3164 | indefinitely, or can be set to automatically close after a user-specified |
| 3165 | duration of inactivity. bz#1330 - patch by dwmw2 AT infradead.org, but |
| 3166 | further hacked on by wmertens AT cisco.com, apb AT cequrux.com, |
| 3167 | martin-mindrot-bugzilla AT earth.li and myself; "looks ok" markus@ |
Damien Miller | 8c1eb11 | 2010-08-03 16:05:05 +1000 | [diff] [blame] | 3168 | - djm@cvs.openbsd.org 2010/07/21 02:10:58 |
| 3169 | [misc.c] |
| 3170 | sync timingsafe_bcmp() with the one dempsky@ committed to sys/lib/libkern |
Damien Miller | 081f3c7 | 2010-08-03 16:05:25 +1000 | [diff] [blame] | 3171 | - dtucker@cvs.openbsd.org 2010/07/23 08:49:25 |
| 3172 | [ssh.1] |
| 3173 | Ciphers is documented in ssh_config(5) these days |
Darren Tucker | 8b7a055 | 2010-08-03 15:50:16 +1000 | [diff] [blame] | 3174 | |
| 3175 | 20100819 |
Darren Tucker | 12b29db | 2010-07-19 21:24:13 +1000 | [diff] [blame] | 3176 | - (dtucker) [contrib/ssh-copy-ud.1] Bug #1786: update ssh-copy-id.1 with more |
| 3177 | details about its behaviour WRT existing directories. Patch from |
| 3178 | asguthrie at gmail com, ok djm. |
| 3179 | |
Damien Miller | 9308fc7 | 2010-07-16 13:56:01 +1000 | [diff] [blame] | 3180 | 20100716 |
| 3181 | - (djm) OpenBSD CVS Sync |
| 3182 | - djm@cvs.openbsd.org 2010/07/02 04:32:44 |
| 3183 | [misc.c] |
| 3184 | unbreak strdelim() skipping past quoted strings, e.g. |
| 3185 | AllowUsers "blah blah" blah |
| 3186 | was broken; report and fix in bz#1757 from bitman.zhou AT centrify.com |
| 3187 | ok dtucker; |
Damien Miller | 1f25ab4 | 2010-07-16 13:56:23 +1000 | [diff] [blame] | 3188 | - djm@cvs.openbsd.org 2010/07/12 22:38:52 |
| 3189 | [ssh.c] |
| 3190 | Make ExitOnForwardFailure work with fork-after-authentication ("ssh -f") |
| 3191 | for protocol 2. ok markus@ |
Damien Miller | d0244d4 | 2010-07-16 13:56:43 +1000 | [diff] [blame] | 3192 | - djm@cvs.openbsd.org 2010/07/12 22:41:13 |
| 3193 | [ssh.c ssh_config.5] |
| 3194 | expand %h to the hostname in ssh_config Hostname options. While this |
| 3195 | sounds useless, it is actually handy for working with unqualified |
| 3196 | hostnames: |
| 3197 | |
| 3198 | Host *.* |
| 3199 | Hostname %h |
| 3200 | Host * |
| 3201 | Hostname %h.example.org |
| 3202 | |
| 3203 | "I like it" markus@ |
Damien Miller | 8a0268f | 2010-07-16 13:57:51 +1000 | [diff] [blame] | 3204 | - djm@cvs.openbsd.org 2010/07/13 11:52:06 |
| 3205 | [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c] |
| 3206 | [packet.c ssh-rsa.c] |
| 3207 | implement a timing_safe_cmp() function to compare memory without leaking |
| 3208 | timing information by short-circuiting like memcmp() and use it for |
| 3209 | some of the more sensitive comparisons (though nothing high-value was |
| 3210 | readily attackable anyway); "looks ok" markus@ |
Damien Miller | ea1651c | 2010-07-16 13:58:37 +1000 | [diff] [blame] | 3211 | - djm@cvs.openbsd.org 2010/07/13 23:13:16 |
| 3212 | [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c packet.c] |
| 3213 | [ssh-rsa.c] |
| 3214 | s/timing_safe_cmp/timingsafe_bcmp/g |
Damien Miller | bcfbc48 | 2010-07-16 13:59:11 +1000 | [diff] [blame] | 3215 | - jmc@cvs.openbsd.org 2010/07/14 17:06:58 |
| 3216 | [ssh.1] |
| 3217 | finally ssh synopsis looks nice again! this commit just removes a ton of |
| 3218 | hacks we had in place to make it work with old groff; |
Damien Miller | bad5e03 | 2010-07-16 13:59:59 +1000 | [diff] [blame] | 3219 | - schwarze@cvs.openbsd.org 2010/07/15 21:20:38 |
| 3220 | [ssh-keygen.1] |
| 3221 | repair incorrect block nesting, which screwed up indentation; |
| 3222 | problem reported and fix OK by jmc@ |
Damien Miller | 9308fc7 | 2010-07-16 13:56:01 +1000 | [diff] [blame] | 3223 | |
Tim Rice | cfbdc28 | 2010-07-14 13:42:28 -0700 | [diff] [blame] | 3224 | 20100714 |
| 3225 | - (tim) [contrib/redhat/openssh.spec] Bug 1796: Test for skip_x11_askpass |
| 3226 | (line 77) should have been for no_x11_askpass. |
| 3227 | |
Damien Miller | cede1db | 2010-07-02 13:33:48 +1000 | [diff] [blame] | 3228 | 20100702 |
| 3229 | - (djm) OpenBSD CVS Sync |
| 3230 | - jmc@cvs.openbsd.org 2010/06/26 00:57:07 |
| 3231 | [ssh_config.5] |
| 3232 | tweak previous; |
Damien Miller | b96c441 | 2010-07-02 13:34:24 +1000 | [diff] [blame] | 3233 | - djm@cvs.openbsd.org 2010/06/26 23:04:04 |
| 3234 | [ssh.c] |
| 3235 | oops, forgot to #include <canohost.h>; spotted and patch from chl@ |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 3236 | - djm@cvs.openbsd.org 2010/06/29 23:15:30 |
| 3237 | [ssh-keygen.1 ssh-keygen.c] |
| 3238 | allow import (-i) and export (-e) of PEM and PKCS#8 encoded keys; |
| 3239 | bz#1749; ok markus@ |
Damien Miller | 6018a36 | 2010-07-02 13:35:19 +1000 | [diff] [blame] | 3240 | - djm@cvs.openbsd.org 2010/06/29 23:16:46 |
| 3241 | [auth2-pubkey.c sshd_config.5] |
| 3242 | allow key options (command="..." and friends) in AuthorizedPrincipals; |
| 3243 | ok markus@ |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 3244 | - jmc@cvs.openbsd.org 2010/06/30 07:24:25 |
| 3245 | [ssh-keygen.1] |
| 3246 | tweak previous; |
Damien Miller | 6022f58 | 2010-07-02 13:37:01 +1000 | [diff] [blame] | 3247 | - jmc@cvs.openbsd.org 2010/06/30 07:26:03 |
| 3248 | [ssh-keygen.c] |
| 3249 | sort usage(); |
Damien Miller | d59dab8 | 2010-07-02 13:37:17 +1000 | [diff] [blame] | 3250 | - jmc@cvs.openbsd.org 2010/06/30 07:28:34 |
| 3251 | [sshd_config.5] |
| 3252 | tweak previous; |
Damien Miller | 0979b40 | 2010-07-02 13:37:33 +1000 | [diff] [blame] | 3253 | - millert@cvs.openbsd.org 2010/07/01 13:06:59 |
| 3254 | [scp.c] |
| 3255 | Fix a longstanding problem where if you suspend scp at the |
| 3256 | password/passphrase prompt the terminal mode is not restored. |
| 3257 | OK djm@ |
Damien Miller | 527ded7 | 2010-07-02 13:40:16 +1000 | [diff] [blame] | 3258 | - phessler@cvs.openbsd.org 2010/06/27 19:19:56 |
| 3259 | [regress/Makefile] |
| 3260 | fix how we run the tests so we can successfully use SUDO='sudo -E' |
| 3261 | in our env |
Damien Miller | ab139cd | 2010-07-02 13:42:18 +1000 | [diff] [blame] | 3262 | - djm@cvs.openbsd.org 2010/06/29 23:59:54 |
| 3263 | [cert-userkey.sh] |
| 3264 | regress tests for key options in AuthorizedPrincipals |
Damien Miller | cede1db | 2010-07-02 13:33:48 +1000 | [diff] [blame] | 3265 | |
Tim Rice | 3fd307d | 2010-06-26 16:45:15 -0700 | [diff] [blame] | 3266 | 20100627 |
| 3267 | - (tim) [openbsd-compat/port-uw.c] Reorder includes. auth-options.h now needs |
| 3268 | key.h. |
| 3269 | |
Damien Miller | 2e77446 | 2010-06-26 09:30:47 +1000 | [diff] [blame] | 3270 | 20100626 |
| 3271 | - (djm) OpenBSD CVS Sync |
| 3272 | - djm@cvs.openbsd.org 2010/05/21 05:00:36 |
| 3273 | [misc.c] |
| 3274 | colon() returns char*, so s/return (0)/return NULL/ |
Damien Miller | 4fe686d | 2010-06-26 09:36:10 +1000 | [diff] [blame] | 3275 | - markus@cvs.openbsd.org 2010/06/08 21:32:19 |
| 3276 | [ssh-pkcs11.c] |
| 3277 | check length of value returned C_GetAttributValue for != 0 |
| 3278 | from mdrtbugzilla@codefive.co.uk; bugzilla #1773; ok dtucker@ |
Damien Miller | c094d1e | 2010-06-26 09:36:34 +1000 | [diff] [blame] | 3279 | - djm@cvs.openbsd.org 2010/06/17 07:07:30 |
| 3280 | [mux.c] |
| 3281 | Correct sizing of object to be allocated by calloc(), replacing |
| 3282 | sizeof(state) with sizeof(*state). This worked by accident since |
| 3283 | the struct contained a single int at present, but could have broken |
| 3284 | in the future. patch from hyc AT symas.com |
Damien Miller | 99ac4e9 | 2010-06-26 09:36:58 +1000 | [diff] [blame] | 3285 | - djm@cvs.openbsd.org 2010/06/18 00:58:39 |
| 3286 | [sftp.c] |
| 3287 | unbreak ls in working directories that contains globbing characters in |
| 3288 | their pathnames. bz#1655 reported by vgiffin AT apple.com |
Damien Miller | 7aa46ec | 2010-06-26 09:37:57 +1000 | [diff] [blame] | 3289 | - djm@cvs.openbsd.org 2010/06/18 03:16:03 |
| 3290 | [session.c] |
| 3291 | Missing check for chroot_director == "none" (we already checked against |
| 3292 | NULL); bz#1564 from Jan.Pechanec AT Sun.COM |
Damien Miller | 4956631 | 2010-06-26 09:38:23 +1000 | [diff] [blame] | 3293 | - djm@cvs.openbsd.org 2010/06/18 04:43:08 |
| 3294 | [sftp-client.c] |
| 3295 | fix memory leak in do_realpath() error path; bz#1771, patch from |
| 3296 | anicka AT suse.cz |
Damien Miller | ab6de35 | 2010-06-26 09:38:45 +1000 | [diff] [blame] | 3297 | - djm@cvs.openbsd.org 2010/06/22 04:22:59 |
| 3298 | [servconf.c sshd_config.5] |
| 3299 | expose some more sshd_config options inside Match blocks: |
| 3300 | AuthorizedKeysFile AuthorizedPrincipalsFile |
| 3301 | HostbasedUsesNameFromPacketOnly PermitTunnel |
| 3302 | bz#1764; feedback from imorgan AT nas.nasa.gov; ok dtucker@ |
Damien Miller | ba3420a | 2010-06-26 09:39:07 +1000 | [diff] [blame] | 3303 | - djm@cvs.openbsd.org 2010/06/22 04:32:06 |
| 3304 | [ssh-keygen.c] |
| 3305 | standardise error messages when attempting to open private key |
| 3306 | files to include "progname: filename: error reason" |
| 3307 | bz#1783; ok dtucker@ |
Damien Miller | 48147d6 | 2010-06-26 09:39:25 +1000 | [diff] [blame] | 3308 | - djm@cvs.openbsd.org 2010/06/22 04:49:47 |
| 3309 | [auth.c] |
| 3310 | queue auth debug messages for bad ownership or permissions on the user's |
| 3311 | keyfiles. These messages will be sent after the user has successfully |
| 3312 | authenticated (where our client will display them with LogLevel=debug). |
Damien Miller | 0e76c5e | 2010-06-26 09:39:59 +1000 | [diff] [blame] | 3313 | bz#1554; ok dtucker@ |
| 3314 | - djm@cvs.openbsd.org 2010/06/22 04:54:30 |
| 3315 | [ssh-keyscan.c] |
| 3316 | replace verbose and overflow-prone Linebuf code with read_keyfile_line() |
| 3317 | based on patch from joachim AT joachimschipper.nl; bz#1565; ok dtucker@ |
Damien Miller | 1b2b61e | 2010-06-26 09:47:43 +1000 | [diff] [blame] | 3318 | - djm@cvs.openbsd.org 2010/06/22 04:59:12 |
| 3319 | [session.c] |
| 3320 | include the user name on "subsystem request for ..." log messages; |
| 3321 | bz#1571; ok dtucker@ |
Damien Miller | d834d35 | 2010-06-26 09:48:02 +1000 | [diff] [blame] | 3322 | - djm@cvs.openbsd.org 2010/06/23 02:59:02 |
| 3323 | [ssh-keygen.c] |
| 3324 | fix printing of extensions in v01 certificates that I broke in r1.190 |
Damien Miller | 232cfb1 | 2010-06-26 09:50:30 +1000 | [diff] [blame] | 3325 | - djm@cvs.openbsd.org 2010/06/25 07:14:46 |
| 3326 | [channels.c mux.c readconf.c readconf.h ssh.h] |
| 3327 | bz#1327: remove hardcoded limit of 100 permitopen clauses and port |
| 3328 | forwards per direction; ok markus@ stevesk@ |
Damien Miller | 8853ca5 | 2010-06-26 10:00:14 +1000 | [diff] [blame] | 3329 | - djm@cvs.openbsd.org 2010/06/25 07:20:04 |
| 3330 | [channels.c session.c] |
| 3331 | bz#1750: fix requirement for /dev/null inside ChrootDirectory for |
| 3332 | internal-sftp accidentally introduced in r1.253 by removing the code |
| 3333 | that opens and dup /dev/null to stderr and modifying the channels code |
| 3334 | to read stderr but discard it instead; ok markus@ |
Damien Miller | bda3eca | 2010-06-26 10:01:33 +1000 | [diff] [blame] | 3335 | - djm@cvs.openbsd.org 2010/06/25 08:46:17 |
| 3336 | [auth1.c auth2-none.c] |
| 3337 | skip the initial check for access with an empty password when |
| 3338 | PermitEmptyPasswords=no; bz#1638; ok markus@ |
Damien Miller | 383ffe6 | 2010-06-26 10:02:03 +1000 | [diff] [blame] | 3339 | - djm@cvs.openbsd.org 2010/06/25 23:10:30 |
| 3340 | [ssh.c] |
| 3341 | log the hostname and address that we connected to at LogLevel=verbose |
| 3342 | after authentication is successful to mitigate "phishing" attacks by |
| 3343 | servers with trusted keys that accept authentication silently and |
| 3344 | automatically before presenting fake password/passphrase prompts; |
| 3345 | "nice!" markus@ |
Damien Miller | 1ab6a51 | 2010-06-26 10:02:24 +1000 | [diff] [blame] | 3346 | - djm@cvs.openbsd.org 2010/06/25 23:10:30 |
| 3347 | [ssh.c] |
| 3348 | log the hostname and address that we connected to at LogLevel=verbose |
| 3349 | after authentication is successful to mitigate "phishing" attacks by |
| 3350 | servers with trusted keys that accept authentication silently and |
| 3351 | automatically before presenting fake password/passphrase prompts; |
| 3352 | "nice!" markus@ |
Damien Miller | 2e77446 | 2010-06-26 09:30:47 +1000 | [diff] [blame] | 3353 | |
Damien Miller | d82a260 | 2010-06-22 15:02:39 +1000 | [diff] [blame] | 3354 | 20100622 |
| 3355 | - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512 |
| 3356 | bz#1579; ok dtucker |
| 3357 | |
Damien Miller | ea90979 | 2010-06-18 11:09:24 +1000 | [diff] [blame] | 3358 | 20100618 |
| 3359 | - (djm) [contrib/ssh-copy-id] Update key file explicitly under ~ |
| 3360 | rather than assuming that $CWD == $HOME. bz#1500, patch from |
| 3361 | timothy AT gelter.com |
| 3362 | |
Tim Rice | b9ae4ec | 2010-06-17 11:11:44 -0700 | [diff] [blame] | 3363 | 20100617 |
| 3364 | - (tim) [contrib/cygwin/README] Remove a reference to the obsolete |
| 3365 | minires-devel package, and to add the reference to the libedit-devel |
| 3366 | package since CYgwin now provides libedit. Patch from Corinna Vinschen. |
| 3367 | |
Damien Miller | 3bcce80 | 2010-05-21 14:48:16 +1000 | [diff] [blame] | 3368 | 20100521 |
| 3369 | - (djm) OpenBSD CVS Sync |
| 3370 | - djm@cvs.openbsd.org 2010/05/07 11:31:26 |
| 3371 | [regress/Makefile regress/cert-userkey.sh] |
| 3372 | regress tests for AuthorizedPrincipalsFile and "principals=" key option. |
| 3373 | feedback and ok markus@ |
Damien Miller | 3b90382 | 2010-05-21 14:56:25 +1000 | [diff] [blame] | 3374 | - djm@cvs.openbsd.org 2010/05/11 02:58:04 |
| 3375 | [auth-rsa.c] |
| 3376 | don't accept certificates marked as "cert-authority" here; ok markus@ |
Damien Miller | c6afb5f | 2010-05-21 14:56:47 +1000 | [diff] [blame] | 3377 | - djm@cvs.openbsd.org 2010/05/14 00:47:22 |
| 3378 | [ssh-add.c] |
| 3379 | check that the certificate matches the corresponding private key before |
| 3380 | grafting it on |
Damien Miller | d530f5f | 2010-05-21 14:57:10 +1000 | [diff] [blame] | 3381 | - djm@cvs.openbsd.org 2010/05/14 23:29:23 |
| 3382 | [channels.c channels.h mux.c ssh.c] |
| 3383 | Pause the mux channel while waiting for reply from aynch callbacks. |
| 3384 | Prevents misordering of replies if new requests arrive while waiting. |
| 3385 | |
| 3386 | Extend channel open confirm callback to allow signalling failure |
| 3387 | conditions as well as success. Use this to 1) fix a memory leak, 2) |
| 3388 | start using the above pause mechanism and 3) delay sending a success/ |
| 3389 | failure message on mux slave session open until we receive a reply from |
| 3390 | the server. |
| 3391 | |
| 3392 | motivated by and with feedback from markus@ |
Damien Miller | 388f6fc | 2010-05-21 14:57:35 +1000 | [diff] [blame] | 3393 | - markus@cvs.openbsd.org 2010/05/16 12:55:51 |
| 3394 | [PROTOCOL.mux clientloop.h mux.c readconf.c readconf.h ssh.1 ssh.c] |
| 3395 | mux support for remote forwarding with dynamic port allocation, |
| 3396 | use with |
| 3397 | LPORT=`ssh -S muxsocket -R0:localhost:25 -O forward somehost` |
| 3398 | feedback and ok djm@ |
Damien Miller | 8439955 | 2010-05-21 14:58:12 +1000 | [diff] [blame] | 3399 | - djm@cvs.openbsd.org 2010/05/20 11:25:26 |
| 3400 | [auth2-pubkey.c] |
| 3401 | fix logspam when key options (from="..." especially) deny non-matching |
| 3402 | keys; reported by henning@ also bz#1765; ok markus@ dtucker@ |
Damien Miller | d0e4a8e | 2010-05-21 14:58:32 +1000 | [diff] [blame] | 3403 | - djm@cvs.openbsd.org 2010/05/20 23:46:02 |
| 3404 | [PROTOCOL.certkeys auth-options.c ssh-keygen.c] |
| 3405 | Move the permit-* options to the non-critical "extensions" field for v01 |
| 3406 | certificates. The logic is that if another implementation fails to |
| 3407 | implement them then the connection just loses features rather than fails |
| 3408 | outright. |
| 3409 | |
| 3410 | ok markus@ |
Damien Miller | 3bcce80 | 2010-05-21 14:48:16 +1000 | [diff] [blame] | 3411 | |
Darren Tucker | 5b6d0d0 | 2010-05-12 16:51:38 +1000 | [diff] [blame] | 3412 | 20100511 |
| 3413 | - (dtucker) [Makefile.in] Bug #1770: Link libopenbsd-compat twice to solve |
| 3414 | circular dependency problem on old or odd platforms. From Tom Lane, ok |
| 3415 | djm@. |
Damien Miller | 4b1ec83 | 2010-05-12 17:49:59 +1000 | [diff] [blame] | 3416 | - (djm) [openbsd-compat/openssl-compat.h] Fix build breakage on older |
| 3417 | libcrypto by defining OPENSSL_[DR]SA_MAX_MODULUS_BITS if they aren't |
| 3418 | already. ok dtucker@ |
Darren Tucker | 5b6d0d0 | 2010-05-12 16:51:38 +1000 | [diff] [blame] | 3419 | |
Damien Miller | 50af79b | 2010-05-10 11:52:00 +1000 | [diff] [blame] | 3420 | 20100510 |
| 3421 | - OpenBSD CVS Sync |
| 3422 | - djm@cvs.openbsd.org 2010/04/23 01:47:41 |
| 3423 | [ssh-keygen.c] |
| 3424 | bz#1740: display a more helpful error message when $HOME is |
| 3425 | inaccessible while trying to create .ssh directory. Based on patch |
| 3426 | from jchadima AT redhat.com; ok dtucker@ |
Damien Miller | 85c50d7 | 2010-05-10 11:53:02 +1000 | [diff] [blame] | 3427 | - djm@cvs.openbsd.org 2010/04/23 22:27:38 |
| 3428 | [mux.c] |
| 3429 | set "detach_close" flag when registering channel cleanup callbacks. |
| 3430 | This causes the channel to close normally when its fds close and |
| 3431 | hangs when terminating a mux slave using ~. bz#1758; ok markus@ |
Damien Miller | 22a2988 | 2010-05-10 11:53:54 +1000 | [diff] [blame] | 3432 | - djm@cvs.openbsd.org 2010/04/23 22:42:05 |
| 3433 | [session.c] |
| 3434 | set stderr to /dev/null for subsystems rather than just closing it. |
| 3435 | avoids hangs if a subsystem or shell initialisation writes to stderr. |
| 3436 | bz#1750; ok markus@ |
Damien Miller | bebbb7e | 2010-05-10 11:54:38 +1000 | [diff] [blame] | 3437 | - djm@cvs.openbsd.org 2010/04/23 22:48:31 |
| 3438 | [ssh-keygen.c] |
| 3439 | refuse to generate keys longer than OPENSSL_[RD]SA_MAX_MODULUS_BITS, |
| 3440 | since we would refuse to use them anyway. bz#1516; ok dtucker@ |
Damien Miller | 79442c0 | 2010-05-10 11:55:38 +1000 | [diff] [blame] | 3441 | - djm@cvs.openbsd.org 2010/04/26 22:28:24 |
| 3442 | [sshconnect2.c] |
| 3443 | bz#1502: authctxt.success is declared as an int, but passed by |
| 3444 | reference to function that accepts sig_atomic_t*. Convert it to |
| 3445 | the latter; ok markus@ dtucker@ |
Damien Miller | 2725c21 | 2010-05-10 11:56:14 +1000 | [diff] [blame] | 3446 | - djm@cvs.openbsd.org 2010/05/01 02:50:50 |
| 3447 | [PROTOCOL.certkeys] |
| 3448 | typo; jmeltzer@ |
Damien Miller | 099fc16 | 2010-05-10 11:56:50 +1000 | [diff] [blame] | 3449 | - dtucker@cvs.openbsd.org 2010/05/05 04:22:09 |
| 3450 | [sftp.c] |
| 3451 | restore mput and mget which got lost in the tab-completion changes. |
| 3452 | found by Kenneth Whitaker, ok djm@ |
Damien Miller | 30da344 | 2010-05-10 11:58:03 +1000 | [diff] [blame] | 3453 | - djm@cvs.openbsd.org 2010/05/07 11:30:30 |
| 3454 | [auth-options.c auth-options.h auth.c auth.h auth2-pubkey.c] |
| 3455 | [key.c servconf.c servconf.h sshd.8 sshd_config.5] |
| 3456 | add some optional indirection to matching of principal names listed |
| 3457 | in certificates. Currently, a certificate must include the a user's name |
| 3458 | to be accepted for authentication. This change adds the ability to |
| 3459 | specify a list of certificate principal names that are acceptable. |
| 3460 | |
| 3461 | When authenticating using a CA trusted through ~/.ssh/authorized_keys, |
| 3462 | this adds a new principals="name1[,name2,...]" key option. |
| 3463 | |
| 3464 | For CAs listed through sshd_config's TrustedCAKeys option, a new config |
| 3465 | option "AuthorizedPrincipalsFile" specifies a per-user file containing |
| 3466 | the list of acceptable names. |
| 3467 | |
| 3468 | If either option is absent, the current behaviour of requiring the |
| 3469 | username to appear in principals continues to apply. |
| 3470 | |
| 3471 | These options are useful for role accounts, disjoint account namespaces |
| 3472 | and "user@realm"-style naming policies in certificates. |
| 3473 | |
| 3474 | feedback and ok markus@ |
Damien Miller | 81d3fc5 | 2010-05-10 11:58:45 +1000 | [diff] [blame] | 3475 | - jmc@cvs.openbsd.org 2010/05/07 12:49:17 |
| 3476 | [sshd_config.5] |
| 3477 | tweak previous; |
Damien Miller | 50af79b | 2010-05-10 11:52:00 +1000 | [diff] [blame] | 3478 | |
Darren Tucker | 9f8703b | 2010-04-23 11:12:06 +1000 | [diff] [blame] | 3479 | 20100423 |
| 3480 | - (dtucker) [configure.ac] Bug #1756: Check for the existence of a lib64 dir |
| 3481 | in the openssl install directory (some newer openssl versions do this on at |
| 3482 | least some amd64 platforms). |
| 3483 | |
Damien Miller | c4eddee | 2010-04-18 08:07:43 +1000 | [diff] [blame] | 3484 | 20100418 |
| 3485 | - OpenBSD CVS Sync |
| 3486 | - jmc@cvs.openbsd.org 2010/04/16 06:45:01 |
| 3487 | [ssh_config.5] |
| 3488 | tweak previous; ok djm |
Damien Miller | 1f18142 | 2010-04-18 08:08:03 +1000 | [diff] [blame] | 3489 | - jmc@cvs.openbsd.org 2010/04/16 06:47:04 |
| 3490 | [ssh-keygen.1 ssh-keygen.c] |
| 3491 | tweak previous; ok djm |
Damien Miller | c617aa9 | 2010-04-18 08:08:20 +1000 | [diff] [blame] | 3492 | - djm@cvs.openbsd.org 2010/04/16 21:14:27 |
| 3493 | [sshconnect.c] |
| 3494 | oops, %r => remote username, not %u |
Damien Miller | 53f4bb6 | 2010-04-18 08:15:14 +1000 | [diff] [blame] | 3495 | - djm@cvs.openbsd.org 2010/04/16 01:58:45 |
| 3496 | [regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 3497 | regression tests for v01 certificate format |
| 3498 | includes interop tests for v00 certs |
Darren Tucker | e25a9bd | 2010-04-18 13:35:00 +1000 | [diff] [blame] | 3499 | - (dtucker) [contrib/aix/buildbff.sh] Fix creation of ssh_prng_cmds.default |
| 3500 | file. |
Damien Miller | c4eddee | 2010-04-18 08:07:43 +1000 | [diff] [blame] | 3501 | |
Damien Miller | a45f1c0 | 2010-04-16 15:51:34 +1000 | [diff] [blame] | 3502 | 20100416 |
| 3503 | - (djm) Release openssh-5.5p1 |
Damien Miller | d6fc306 | 2010-04-16 15:51:45 +1000 | [diff] [blame] | 3504 | - OpenBSD CVS Sync |
| 3505 | - djm@cvs.openbsd.org 2010/03/26 03:13:17 |
| 3506 | [bufaux.c] |
| 3507 | allow buffer_get_int_ret/buffer_get_int64_ret to take a NULL pointer |
| 3508 | argument to allow skipping past values in a buffer |
Damien Miller | 67f30d7 | 2010-04-16 15:52:03 +1000 | [diff] [blame] | 3509 | - jmc@cvs.openbsd.org 2010/03/26 06:54:36 |
| 3510 | [ssh.1] |
| 3511 | tweak previous; |
Damien Miller | 544378d | 2010-04-16 15:52:24 +1000 | [diff] [blame] | 3512 | - jmc@cvs.openbsd.org 2010/03/27 14:26:55 |
| 3513 | [ssh_config.5] |
| 3514 | tweak previous; ok dtucker |
Damien Miller | deb5a14 | 2010-04-16 15:52:43 +1000 | [diff] [blame] | 3515 | - djm@cvs.openbsd.org 2010/04/10 00:00:16 |
| 3516 | [ssh.c] |
| 3517 | bz#1746 - suppress spurious tty warning when using -O and stdin |
| 3518 | is not a tty; ok dtucker@ markus@ |
Damien Miller | 6728399 | 2010-04-16 15:53:02 +1000 | [diff] [blame] | 3519 | - djm@cvs.openbsd.org 2010/04/10 00:04:30 |
| 3520 | [sshconnect.c] |
| 3521 | fix terminology: we didn't find a certificate in known_hosts, we found |
| 3522 | a CA key |
Damien Miller | 22c97f1 | 2010-04-16 15:53:23 +1000 | [diff] [blame] | 3523 | - djm@cvs.openbsd.org 2010/04/10 02:08:44 |
| 3524 | [clientloop.c] |
| 3525 | bz#1698: kill channel when pty allocation requests fail. Fixed |
| 3526 | stuck client if the server refuses pty allocation. |
| 3527 | ok dtucker@ "think so" markus@ |
Damien Miller | 8868065 | 2010-04-16 15:53:43 +1000 | [diff] [blame] | 3528 | - djm@cvs.openbsd.org 2010/04/10 02:10:56 |
| 3529 | [sshconnect2.c] |
| 3530 | show the key type that we are offering in debug(), helps distinguish |
| 3531 | between certs and plain keys as the path to the private key is usually |
| 3532 | the same. |
Damien Miller | 601a23c | 2010-04-16 15:54:01 +1000 | [diff] [blame] | 3533 | - djm@cvs.openbsd.org 2010/04/10 05:48:16 |
| 3534 | [mux.c] |
| 3535 | fix NULL dereference; from matthew.haub AT alumni.adelaide.edu.au |
Damien Miller | b1b1704 | 2010-04-16 15:54:19 +1000 | [diff] [blame] | 3536 | - djm@cvs.openbsd.org 2010/04/14 22:27:42 |
| 3537 | [ssh_config.5 sshconnect.c] |
| 3538 | expand %r => remote username in ssh_config:ProxyCommand; |
| 3539 | ok deraadt markus |
Damien Miller | 031c910 | 2010-04-16 15:54:44 +1000 | [diff] [blame] | 3540 | - markus@cvs.openbsd.org 2010/04/15 20:32:55 |
| 3541 | [ssh-pkcs11.c] |
| 3542 | retry lookup for private key if there's no matching key with CKA_SIGN |
| 3543 | attribute enabled; this fixes fixes MuscleCard support (bugzilla #1736) |
| 3544 | ok djm@ |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 3545 | - djm@cvs.openbsd.org 2010/04/16 01:47:26 |
| 3546 | [PROTOCOL.certkeys auth-options.c auth-options.h auth-rsa.c] |
| 3547 | [auth2-pubkey.c authfd.c key.c key.h myproposal.h ssh-add.c] |
| 3548 | [ssh-agent.c ssh-dss.c ssh-keygen.1 ssh-keygen.c ssh-rsa.c] |
| 3549 | [sshconnect.c sshconnect2.c sshd.c] |
| 3550 | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the |
| 3551 | following changes: |
| 3552 | |
| 3553 | move the nonce field to the beginning of the certificate where it can |
| 3554 | better protect against chosen-prefix attacks on the signature hash |
| 3555 | |
| 3556 | Rename "constraints" field to "critical options" |
| 3557 | |
| 3558 | Add a new non-critical "extensions" field |
| 3559 | |
| 3560 | Add a serial number |
| 3561 | |
| 3562 | The older format is still support for authentication and cert generation |
| 3563 | (use "ssh-keygen -t v00 -s ca_key ..." to generate a v00 certificate) |
| 3564 | |
| 3565 | ok markus@ |