blob: aa66e3b0b22e5573a41e10997e4b78073a1373a9 [file] [log] [blame]
Damien Miller9a661552013-07-18 16:09:04 +1000120130718
2 - (djm) OpenBSD CVS Sync
3 - dtucker@cvs.openbsd.org 2013/06/10 19:19:44
4 [readconf.c]
5 revert 1.203 while we investigate crashes reported by okan@
Damien Miller044bd2a2013-07-18 16:09:25 +10006 - guenther@cvs.openbsd.org 2013/06/17 04:48:42
7 [scp.c]
8 Handle time_t values as long long's when formatting them and when
9 parsing them from remote servers.
10 Improve error checking in parsing of 'T' lines.
11 ok dtucker@ deraadt@
Damien Miller30710702013-07-18 16:09:44 +100012 - markus@cvs.openbsd.org 2013/06/20 19:15:06
13 [krl.c]
14 don't leak the rdata blob on errors; ok djm@
Damien Miller20bdcd72013-07-18 16:10:09 +100015 - djm@cvs.openbsd.org 2013/06/21 00:34:49
16 [auth-rsa.c auth.h auth2-hostbased.c auth2-pubkey.c monitor.c]
17 for hostbased authentication, print the client host and user on
18 the auth success/failure line; bz#2064, ok dtucker@
Damien Miller7f2b4382013-07-18 16:10:29 +100019 - djm@cvs.openbsd.org 2013/06/21 00:37:49
20 [ssh_config.5]
21 explicitly mention that IdentitiesOnly can be used with IdentityFile
22 to control which keys are offered from an agent.
Damien Millerbbeb1da2013-07-18 16:10:49 +100023 - djm@cvs.openbsd.org 2013/06/21 05:42:32
24 [dh.c]
25 sprinkle in some error() to explain moduli(5) parse failures
Damien Miller81584412013-07-18 16:11:07 +100026 - djm@cvs.openbsd.org 2013/06/21 05:43:10
27 [scp.c]
28 make this -Wsign-compare clean after time_t conversion
Damien Millerbc35d922013-07-18 16:11:25 +100029 - djm@cvs.openbsd.org 2013/06/22 06:31:57
30 [scp.c]
31 improved time_t overflow check suggested by guenther@
Damien Millerfecfd112013-07-18 16:11:50 +100032 - jmc@cvs.openbsd.org 2013/06/27 14:05:37
33 [ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5]
34 do not use Sx for sections outwith the man page - ingo informs me that
35 stuff like html will render with broken links;
36 issue reported by Eric S. Raymond, via djm
Damien Miller0d02c3e2013-07-18 16:12:06 +100037 - markus@cvs.openbsd.org 2013/07/02 12:31:43
38 [dh.c]
39 remove extra whitespace
Damien Millerce986542013-07-18 16:12:44 +100040 - djm@cvs.openbsd.org 2013/07/12 00:19:59
41 [auth-options.c auth-rsa.c bufaux.c buffer.h channels.c hostfile.c]
42 [hostfile.h mux.c packet.c packet.h roaming_common.c serverloop.c]
43 fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
Damien Miller9a661552013-07-18 16:09:04 +100044
Darren Tuckerb7482cf2013-07-02 20:06:46 +10004520130702
46 - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config
47 contrib/cygwin/ssh-user-config] Modernizes and improve readability of
48 the Cygwin README file (which hasn't been updated for ages), drop
49 unsupported OSes from the ssh-host-config help text, and drop an
50 unneeded option from ssh-user-config. Patch from vinschen at redhat com.
51
Damien Miller36187092013-06-10 13:07:11 +10005220130610
53 - (djm) OpenBSD CVS Sync
54 - dtucker@cvs.openbsd.org 2013/06/07 15:37:52
55 [channels.c channels.h clientloop.c]
56 Add an "ABANDONED" channel state and use for mux sessions that are
57 disconnected via the ~. escape sequence. Channels in this state will
58 be able to close if the server responds, but do not count as active channels.
59 This means that if you ~. all of the mux clients when using ControlPersist
60 on a broken network, the backgrounded mux master will exit when the
61 Control Persist time expires rather than hanging around indefinitely.
62 bz#1917, also reported and tested by tedu@. ok djm@ markus@.
Darren Tucker6d8bd572013-06-11 11:26:10 +100063 - (dtucker) [Makefile.in configure.ac fixalgorithms] Remove unsupported
64 algorithms (Ciphers, MACs and HostKeyAlgorithms) from man pages.
Darren Tucker97b62f42013-06-11 11:47:24 +100065 - (dtucker) [myproposal.h] Do not advertise AES GSM ciphers if we don't have
66 the required OpenSSL support. Patch from naddy at freebsd.
Darren Tuckerb8ae92d2013-06-11 12:10:02 +100067 - (dtucker) [myproposal.h] Make the conditional algorithm support consistent
68 and add some comments so it's clear what goes where.
Damien Miller36187092013-06-10 13:07:11 +100069
Darren Tucker2ea9eb72013-06-05 15:04:00 +10007020130605
Darren Tuckerb4e00942013-06-05 22:48:44 +100071 - (dtucker) [myproposal.h] Enable sha256 kex methods based on the presence of
72 the necessary functions, not from the openssl version.
73 - (dtucker) [contrib/ssh-copy-id] bz#2117: Use portable operator in test.
74 Patch from cjwatson at debian.
Darren Tucker2a228732013-06-06 01:59:13 +100075 - (dtucker) [regress/forwarding.sh] For (as yet unknown) reason, the
76 forwarding test is extremely slow copying data on some machines so switch
77 back to copying the much smaller ls binary until we can figure out why
78 this is.
Darren Tuckerdc62edb2013-06-06 05:12:35 +100079 - (dtucker) [Makefile.in] append $CFLAGS to compiler options when building
80 modpipe in case there's anything in there we need.
Darren Tucker5d12b8f2013-06-06 08:09:10 +100081 - (dtucker) OpenBSD CVS Sync
82 - dtucker@cvs.openbsd.org 2013/06/02 21:01:51
83 [channels.h]
84 typo in comment
Darren Tuckerea8342c2013-06-06 08:11:40 +100085 - dtucker@cvs.openbsd.org 2013/06/02 23:36:29
86 [clientloop.h clientloop.c mux.c]
87 No need for the mux cleanup callback to be visible so restore it to static
88 and call it through the detach_user function pointer. ok djm@
Darren Tucker4ac66af2013-06-06 08:12:37 +100089 - dtucker@cvs.openbsd.org 2013/06/03 00:03:18
90 [mac.c]
91 force the MAC output to be 64-bit aligned so umac won't see unaligned
92 accesses on strict-alignment architectures. bz#2101, patch from
93 tomas.kuthan at oracle.com, ok djm@
Darren Tucker194454d2013-06-06 08:16:04 +100094 - dtucker@cvs.openbsd.org 2013/06/04 19:12:23
95 [scp.c]
96 use MAXPATHLEN for buffer size instead of fixed value. ok markus
Darren Tuckerea647212013-06-06 08:19:09 +100097 - dtucker@cvs.openbsd.org 2013/06/04 20:42:36
98 [sftp.c]
99 Make sftp's libedit interface marginally multibyte aware by building up
100 the quoted string by character instead of by byte. Prevents failures
101 when linked against a libedit built with wide character support (bz#1990).
102 "looks ok" djm
Darren Tucker746e9062013-06-06 08:20:13 +1000103 - dtucker@cvs.openbsd.org 2013/06/05 02:07:29
104 [mux.c]
105 fix leaks in mux error paths, from Zhenbo Xu, found by Melton. bz#1967,
106 ok djm
Darren Tucker0cca17f2013-06-06 08:21:14 +1000107 - dtucker@cvs.openbsd.org 2013/06/05 02:27:50
108 [sshd.c]
109 When running sshd -D, close stderr unless we have explicitly requesting
110 logging to stderr. From james.hunt at ubuntu.com via bz#1976, djm's patch
111 so, err, ok dtucker.
Darren Tuckere52a2602013-06-06 08:22:05 +1000112 - dtucker@cvs.openbsd.org 2013/06/05 12:52:38
113 [sshconnect2.c]
114 Fix memory leaks found by Zhenbo Xu and the Melton tool. bz#1967, ok djm
Darren Tucker408eaf32013-06-06 08:22:46 +1000115 - dtucker@cvs.openbsd.org 2013/06/05 22:00:28
116 [readconf.c]
117 plug another memleak. bz#1967, from Zhenbo Xu, detected by Melton, ok djm
Darren Tuckerae133d42013-06-06 08:30:20 +1000118 - (dtucker) [configure.ac sftp.c openbsd-compat/openbsd-compat.h] Cater for
119 platforms that don't have multibyte character support (specifically,
120 mblen).
Darren Tucker2ea9eb72013-06-05 15:04:00 +1000121
Tim Rice86211d12013-06-01 18:38:23 -070012220130602
123 - (tim) [Makefile.in] Make Solaris, UnixWare, & OpenServer linkers happy
124 linking regress/modpipe.
Darren Tucker00e1abb2013-06-02 23:46:24 +1000125 - (dtucker) OpenBSD CVS Sync
126 - dtucker@cvs.openbsd.org 2013/06/02 13:33:05
127 [progressmeter.c]
128 Add misc.h for monotime prototype. (ID sync only).
Darren Tucker073f7952013-06-02 23:47:11 +1000129 - dtucker@cvs.openbsd.org 2013/06/02 13:35:58
130 [ssh-agent.c]
131 Make parent_alive_interval time_t to avoid signed/unsigned comparison
Darren Tuckeref4901c2013-06-03 01:59:13 +1000132 - (dtucker) [configure.ac] sys/un.h needs sys/socket.h on some platforms
Darren Tucker898ac932013-06-03 02:03:25 +1000133 to prevent noise from configure. Patch from Nathan Osman. (bz#2114).
134 - (dtucker) [configure.ac] bz#2111: don't try to use lastlog on Android.
135 Patch from Nathan Osman.
Tim Rice5ab9b632013-06-02 14:05:48 -0700136 - (tim) [configure.ac regress/Makefile] With rev 1.47 of test-exec.sh we
137 need a shell that can handle "[ file1 -nt file2 ]". Rather than keep
138 dealing with shell portability issues in regression tests, we let
139 configure find us a capable shell on those platforms with an old /bin/sh.
Tim Rice01ec0af2013-06-02 14:31:27 -0700140 - (tim) [aclocal.m4] Enhance OSSH_CHECK_CFLAG_COMPILE to check stderr.
141 feedback and ok dtucker
Tim Rice3f3064c2013-06-02 15:13:09 -0700142 - (tim) [regress/sftp-chroot.sh] skip if no sudo. ok dtucker
Darren Tucker0b43ffe2013-06-03 09:30:44 +1000143 - (dtucker) [configure.ac] Some platforms need sys/types.h before sys/un.h.
Darren Tucker16cac192013-06-04 12:55:24 +1000144 - (dtucker) [configure.ac] Some other platforms need sys/types.h before
145 sys/socket.h.
Tim Rice86211d12013-06-01 18:38:23 -0700146
Darren Tuckerc0c33732013-06-02 06:28:03 +100014720130601
148 - (dtucker) [configure.ac openbsd-compat/xcrypt.c] bz#2112: fall back to
Darren Tucker65cf7402013-06-02 09:11:19 +1000149 using openssl's DES_crypt function on platorms that don't have a native
Darren Tuckerc0c33732013-06-02 06:28:03 +1000150 one, eg Android. Based on a patch from Nathan Osman.
Darren Tuckerc7aad002013-06-02 07:18:47 +1000151 - (dtucker) [configure.ac defines.h] Test for fd_mask, howmany and NFDBITS
152 rather than trying to enumerate the plaforms that don't have them.
153 Based on a patch from Nathan Osman, with help from tim@.
Darren Tuckera627d422013-06-02 07:31:17 +1000154 - (dtucker) OpenBSD CVS Sync
155 - djm@cvs.openbsd.org 2013/05/17 00:13:13
156 [xmalloc.h cipher.c sftp-glob.c ssh-keyscan.c ssh.c sftp-common.c
157 ssh-ecdsa.c auth2-chall.c compat.c readconf.c kexgexs.c monitor.c
158 gss-genr.c cipher-3des1.c kex.c monitor_wrap.c ssh-pkcs11-client.c
159 auth-options.c rsa.c auth2-pubkey.c sftp.c hostfile.c auth2.c
160 servconf.c auth.c authfile.c xmalloc.c uuencode.c sftp-client.c
161 auth2-gss.c sftp-server.c bufaux.c mac.c session.c jpake.c kexgexc.c
162 sshconnect.c auth-chall.c auth2-passwd.c sshconnect1.c buffer.c
163 kexecdhs.c kexdhs.c ssh-rsa.c auth1.c ssh-pkcs11.c auth2-kbdint.c
164 kexdhc.c sshd.c umac.c ssh-dss.c auth2-jpake.c bufbn.c clientloop.c
165 monitor_mm.c scp.c roaming_client.c serverloop.c key.c auth-rsa.c
166 ssh-pkcs11-helper.c ssh-keysign.c ssh-keygen.c match.c channels.c
167 sshconnect2.c addrmatch.c mux.c canohost.c kexecdhc.c schnorr.c
168 ssh-add.c misc.c auth2-hostbased.c ssh-agent.c bufec.c groupaccess.c
169 dns.c packet.c readpass.c authfd.c moduli.c]
170 bye, bye xfree(); ok markus@
Darren Tucker74836ae2013-06-02 07:32:00 +1000171 - djm@cvs.openbsd.org 2013/05/19 02:38:28
172 [auth2-pubkey.c]
173 fix failure to recognise cert-authority keys if a key of a different type
174 appeared in authorized_keys before it; ok markus@
Darren Tucker0acca372013-06-02 07:41:51 +1000175 - djm@cvs.openbsd.org 2013/05/19 02:42:42
176 [auth.h auth.c key.c monitor.c auth-rsa.c auth2.c auth1.c key.h]
177 Standardise logging of supplemental information during userauth. Keys
178 and ruser is now logged in the auth success/failure message alongside
179 the local username, remote host/port and protocol in use. Certificates
180 contents and CA are logged too.
181 Pushing all logging onto a single line simplifies log analysis as it is
182 no longer necessary to relate information scattered across multiple log
183 entries. "I like it" markus@
Darren Tucker55119252013-06-02 07:43:59 +1000184 - dtucker@cvs.openbsd.org 2013/05/31 12:28:10
185 [ssh-agent.c]
186 Use time_t where appropriate. ok djm
Darren Tuckerb759c9c2013-06-02 07:46:16 +1000187 - dtucker@cvs.openbsd.org 2013/06/01 13:15:52
188 [ssh-agent.c clientloop.c misc.h packet.c progressmeter.c misc.c
189 channels.c sandbox-systrace.c]
190 Use clock_gettime(CLOCK_MONOTONIC ...) for ssh timers so that things like
191 keepalives and rekeying will work properly over clock steps. Suggested by
192 markus@, "looks good" djm@.
Darren Tucker3750fce2013-06-02 07:52:21 +1000193 - dtucker@cvs.openbsd.org 2013/06/01 20:59:25
194 [scp.c sftp-client.c]
195 Replace S_IWRITE, which isn't standardized, with S_IWUSR, which is. Patch
196 from Nathan Osman via bz#2085. ok deraadt.
Darren Tuckerc9a19912013-06-02 08:37:05 +1000197 - dtucker@cvs.openbsd.org 2013/06/01 22:34:50
198 [sftp-client.c]
199 Update progressmeter when data is acked, not when it's sent. bz#2108, from
200 Debian via Colin Watson, ok djm@
Darren Tuckerf60845f2013-06-02 08:07:31 +1000201 - (dtucker) [M auth-chall.c auth-krb5.c auth-pam.c cipher-aes.c cipher-ctr.c
202 groupaccess.c loginrec.c monitor.c monitor_wrap.c session.c sshd.c
203 sshlogin.c uidswap.c openbsd-compat/bsd-cygwin_util.c
204 openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/port-aix.c
205 openbsd-compat/port-linux.c] Replace portable-specific instances of xfree
206 with the equivalent calls to free.
Darren Tuckera7108912013-06-02 08:18:31 +1000207 - (dtucker) [configure.ac misc.c] Look for clock_gettime in librt and fall
208 back to time(NULL) if we can't find it anywhere.
Darren Tuckere9887d12013-06-02 09:17:09 +1000209 - (dtucker) [sandbox-seccomp-filter.c] Allow clock_gettimeofday.
Darren Tuckerc0c33732013-06-02 06:28:03 +1000210
21120130529
Darren Tuckerefdf5342013-05-30 08:29:08 +1000212 - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] bz#2087: Add a null
213 implementation of endgrent for platforms that don't have it (eg Android).
214 Loosely based on a patch from Nathan Osman, ok djm
Darren Tuckerc0c33732013-06-02 06:28:03 +1000215
Darren Tucker712de4d2013-05-17 09:07:12 +1000216 20130517
217 - (dtucker) OpenBSD CVS Sync
218 - djm@cvs.openbsd.org 2013/03/07 00:20:34
219 [regress/proxy-connect.sh]
220 repeat test with a style appended to the username
Darren Tucker7c8b1e72013-05-17 09:10:20 +1000221 - dtucker@cvs.openbsd.org 2013/03/23 11:09:43
Darren Tucker75129022013-05-17 09:19:10 +1000222 [regress/test-exec.sh]
Darren Tucker7c8b1e72013-05-17 09:10:20 +1000223 Only regenerate host keys if they don't exist or if ssh-keygen has changed
224 since they were. Reduces test runtime by 5-30% depending on machine
225 speed.
Darren Tucker75129022013-05-17 09:19:10 +1000226 - dtucker@cvs.openbsd.org 2013/04/06 06:00:22
227 [regress/rekey.sh regress/test-exec.sh regress/integrity.sh
228 regress/multiplex.sh Makefile regress/cfgmatch.sh]
229 Split the regress log into 3 parts: the debug output from ssh, the debug
230 log from sshd and the output from the client command (ssh, scp or sftp).
231 Somewhat functional now, will become more useful when ssh/sshd -E is added.
Darren Tuckerdfea3bc2013-05-17 09:31:39 +1000232 - dtucker@cvs.openbsd.org 2013/04/07 02:16:03
233 [regress/Makefile regress/rekey.sh regress/integrity.sh
234 regress/sshd-log-wrapper.sh regress/forwarding.sh regress/test-exec.sh]
235 use -E option for ssh and sshd to write debuging logs to ssh{,d}.log and
236 save the output from any failing tests. If a test fails the debug output
237 from ssh and sshd for the failing tests (and only the failing tests) should
238 be available in failed-ssh{,d}.log.
Darren Tuckerf3568fc2013-05-17 09:35:26 +1000239 - djm@cvs.openbsd.org 2013/04/18 02:46:12
Darren Tucker40aaff72013-05-17 09:36:20 +1000240 [regress/Makefile regress/sftp-chroot.sh]
Darren Tuckerf3568fc2013-05-17 09:35:26 +1000241 test sshd ChrootDirectory+internal-sftp; feedback & ok dtucker@
Darren Tucker40aaff72013-05-17 09:36:20 +1000242 - dtucker@cvs.openbsd.org 2013/04/22 07:23:08
Darren Tuckera4df65b2013-05-17 09:37:31 +1000243 [regress/multiplex.sh]
Darren Tucker40aaff72013-05-17 09:36:20 +1000244 Write mux master logs to regress.log instead of ssh.log to keep separate
Darren Tucker5e951732013-05-17 09:41:33 +1000245 - djm@cvs.openbsd.org 2013/05/10 03:46:14
Darren Tuckerc31c8722013-05-17 09:43:33 +1000246 [regress/modpipe.c]
Darren Tucker5e951732013-05-17 09:41:33 +1000247 sync some portability changes from portable OpenSSH (id sync only)
Darren Tuckera8a62fc2013-05-17 09:42:34 +1000248 - dtucker@cvs.openbsd.org 2013/05/16 02:10:35
Darren Tuckerc31c8722013-05-17 09:43:33 +1000249 [regress/rekey.sh]
Darren Tuckera8a62fc2013-05-17 09:42:34 +1000250 Add test for time-based rekeying
Darren Tuckerc31c8722013-05-17 09:43:33 +1000251 - dtucker@cvs.openbsd.org 2013/05/16 03:33:30
252 [regress/rekey.sh]
253 test rekeying when there's no data being transferred
Darren Tucker14490fe2013-05-17 09:44:20 +1000254 - dtucker@cvs.openbsd.org 2013/05/16 04:26:10
255 [regress/rekey.sh]
256 add server-side rekey test
Darren Tucker982b0cb2013-05-17 09:45:12 +1000257 - dtucker@cvs.openbsd.org 2013/05/16 05:48:31
258 [regress/rekey.sh]
259 add tests for RekeyLimit parsing
Darren Tucker56347ef2013-05-17 13:28:36 +1000260 - dtucker@cvs.openbsd.org 2013/05/17 00:37:40
261 [regress/agent.sh regress/keytype.sh regress/cfgmatch.sh
262 regress/forcecommand.sh regress/proto-version.sh regress/test-exec.sh
263 regress/cipher-speed.sh regress/cert-hostkey.sh regress/cert-userkey.sh
264 regress/ssh-com.sh]
265 replace 'echo -n' with 'printf' since it's more portable
266 also remove "echon" hack.
Darren Tuckerb8b96b02013-05-17 14:46:20 +1000267 - dtucker@cvs.openbsd.org 2013/05/17 01:16:09
268 [regress/agent-timeout.sh]
269 Pull back some portability changes from -portable:
270 - TIMEOUT is a read-only variable in some shells
271 - not all greps have -q so redirect to /dev/null instead.
272 (ID sync only)
Darren Tucker34035be2013-05-17 14:47:51 +1000273 - dtucker@cvs.openbsd.org 2013/05/17 01:32:11
274 [regress/integrity.sh]
275 don't print output from ssh before getting it (it's available in ssh.log)
Darren Tucker59d928d2013-05-17 15:32:29 +1000276 - dtucker@cvs.openbsd.org 2013/05/17 04:29:14
277 [regress/sftp.sh regress/putty-ciphers.sh regress/cipher-speed.sh
278 regress/test-exec.sh regress/sftp-batch.sh regress/dynamic-forward.sh
279 regress/putty-transfer.sh regress/conch-ciphers.sh regress/sftp-cmds.sh
280 regress/scp.sh regress/ssh-com-sftp.sh regress/rekey.sh
281 regress/putty-kex.sh regress/stderr-data.sh regress/stderr-after-eof.sh
282 regress/sftp-badcmds.sh regress/reexec.sh regress/ssh-com-client.sh
283 regress/sftp-chroot.sh regress/forwarding.sh regress/transfer.sh
284 regress/multiplex.sh]
285 Move the setting of DATA and COPY into test-exec.sh
Darren Tuckerdd669172013-05-17 20:39:57 +1000286 - dtucker@cvs.openbsd.org 2013/05/17 10:16:26
287 [regress/try-ciphers.sh]
288 use expr for math to keep diffs vs portable down
289 (id sync only)
Darren Tucker05b5e512013-05-17 20:41:07 +1000290 - dtucker@cvs.openbsd.org 2013/05/17 10:23:52
291 [regress/login-timeout.sh regress/reexec.sh regress/test-exec.sh]
292 Use SUDO when cat'ing pid files and running the sshd log wrapper so that
293 it works with a restrictive umask and the pid files are not world readable.
294 Changes from -portable. (id sync only)
Darren Tucker1466bd22013-05-17 20:42:05 +1000295 - dtucker@cvs.openbsd.org 2013/05/17 10:24:48
Darren Tucker438f60e2013-05-17 20:43:13 +1000296 [regress/localcommand.sh]
Darren Tucker1466bd22013-05-17 20:42:05 +1000297 use backticks for portability. (id sync only)
Darren Tucker438f60e2013-05-17 20:43:13 +1000298 - dtucker@cvs.openbsd.org 2013/05/17 10:26:26
299 [regress/sftp-badcmds.sh]
300 remove unused BATCH variable. (id sync only)
Darren Tucker98989eb2013-05-17 20:44:09 +1000301 - dtucker@cvs.openbsd.org 2013/05/17 10:28:11
302 [regress/sftp.sh]
303 only compare copied data if sftp succeeds. from portable (id sync only)
Darren Tucker00478d32013-05-17 20:45:06 +1000304 - dtucker@cvs.openbsd.org 2013/05/17 10:30:07
305 [regress/test-exec.sh]
306 wait a bit longer for startup and use case for absolute path.
307 from portable (id sync only)
Darren Tucker62ee2222013-05-17 20:46:00 +1000308 - dtucker@cvs.openbsd.org 2013/05/17 10:33:09
309 [regress/agent-getpeereid.sh]
310 don't redirect stdout from sudo. from portable (id sync only)
Darren Tucker0a404b02013-05-17 20:47:29 +1000311 - dtucker@cvs.openbsd.org 2013/05/17 10:34:30
312 [regress/portnum.sh]
313 use a more portable negated if structure. from portable (id sync only)
Darren Tucker9b42d322013-05-17 20:48:59 +1000314 - dtucker@cvs.openbsd.org 2013/05/17 10:35:43
315 [regress/scp.sh]
316 use a file extention that's not special on some platforms. from portable
317 (id sync only)
Darren Tucker6e1e60c2013-05-17 11:23:41 +1000318 - (dtucker) [regress/bsd.regress.mk] Remove unused file. We've never used it
319 in portable and it's long gone in openbsd.
Darren Tucker91af05c2013-05-17 13:16:59 +1000320 - (dtucker) [regress/integrity.sh]. Force fixed Diffie-Hellman key exchange
321 methods. When the openssl version doesn't support ECDH then next one on
322 the list is DH group exchange, but that causes a bit more traffic which can
323 mean that the tests flip bits in the initial exchange rather than the MACed
324 traffic and we get different errors to what the tests look for.
Darren Tucker8654dd22013-05-17 16:03:48 +1000325 - (dtucker) [openbsd-compat/getopt.h] Remove unneeded bits.
Darren Tucker7f193232013-05-17 19:02:28 +1000326 - (dtucker) [regress/cfgmatch.sh] Resync config file setup with openbsd.
Darren Tucker96457a52013-05-17 19:03:38 +1000327 - (dtucker) [regress/agent-getpeereid.sh] Resync spaces with openbsd.
Darren Tucker5f1a89a2013-05-17 19:17:58 +1000328 - (dtucker) [regress/integrity.sh regress/krl.sh regress/test-exec.sh]
329 Move the jot helper function to portable-specific part of test-exec.sh.
Darren Tucker6f669812013-05-17 19:28:51 +1000330 - (dtucker) [regress/test-exec.sh] Move the portable-specific functions
331 together and add a couple of missing lines from openbsd.
Darren Tuckerf8d5b342013-05-17 19:53:25 +1000332 - (dtucker) [regress/stderr-after-eof.sh regress/test-exec.sh] Move the md5
333 helper function to the portable part of test-exec.sh.
Darren Tucker9cc8ff72013-05-17 20:01:52 +1000334 - (dtucker) [regress/runtests.sh] Remove obsolete test driver script.
Darren Tucker044f32f2013-05-17 20:12:57 +1000335 - (dtucker) [regress/cfgmatch.sh] Remove unneeded sleep renderd obsolete by
336 rev 1.6 which calls wait.
Darren Tucker712de4d2013-05-17 09:07:12 +1000337
Damien Miller6aa3eac2013-05-16 11:10:17 +100033820130516
339 - (djm) [contrib/ssh-copy-id] Fix bug that could cause "rm *" to be
340 executed if mktemp failed; bz#2105 ok dtucker@
Darren Tucker2ca51bf2013-05-16 20:22:46 +1000341 - (dtucker) OpenBSD CVS Sync
342 - tedu@cvs.openbsd.org 2013/04/23 17:49:45
343 [misc.c]
344 use xasprintf instead of a series of strlcats and strdup. ok djm
Darren Tucker026d9db2013-05-16 20:23:52 +1000345 - tedu@cvs.openbsd.org 2013/04/24 16:01:46
346 [misc.c]
347 remove extra parens noticed by nicm
Darren Tucker5d8b7022013-05-16 20:24:23 +1000348 - dtucker@cvs.openbsd.org 2013/05/06 07:35:12
349 [sftp-server.8]
350 Reference the version of the sftp draft we actually implement. ok djm@
Darren Tucker54da6be2013-05-16 20:25:04 +1000351 - djm@cvs.openbsd.org 2013/05/10 03:40:07
352 [sshconnect2.c]
353 fix bzero(ptr_to_struct, sizeof(ptr_to_struct)); bz#2100 from
Darren Tucker7e831ed2013-05-16 20:25:40 +1000354 Colin Watson
Darren Tuckercaf00102013-05-16 20:26:18 +1000355 - djm@cvs.openbsd.org 2013/05/10 04:08:01
356 [key.c]
357 memleak in cert_free(), wasn't actually freeing the struct;
358 bz#2096 from shm AT digitalsun.pl
Darren Tucker64c6fce2013-05-16 20:27:14 +1000359 - dtucker@cvs.openbsd.org 2013/05/10 10:13:50
360 [ssh-pkcs11-helper.c]
361 remove unused extern optarg. ok markus@
Darren Tuckerc53c2af2013-05-16 20:28:16 +1000362 - dtucker@cvs.openbsd.org 2013/05/16 02:00:34
363 [ssh_config sshconnect2.c packet.c readconf.h readconf.c clientloop.c
364 ssh_config.5 packet.h]
365 Add an optional second argument to RekeyLimit in the client to allow
366 rekeying based on elapsed time in addition to amount of traffic.
367 with djm@ jmc@, ok djm
Darren Tucker5f96f3b2013-05-16 20:29:28 +1000368 - dtucker@cvs.openbsd.org 2013/05/16 04:09:14
369 [sshd_config.5 servconf.c servconf.h packet.c serverloop.c monitor.c sshd_config
370 sshd.c] Add RekeyLimit to sshd with the same syntax as the client allowing
371 rekeying based on traffic volume or time. ok djm@, help & ok jmc@ for the man
372 page.
Darren Tucker07636982013-05-16 20:30:03 +1000373 - djm@cvs.openbsd.org 2013/05/16 04:27:50
374 [ssh_config.5 readconf.h readconf.c]
375 add the ability to ignore specific unrecognised ssh_config options;
376 bz#866; ok markus@
Darren Tucker63e0df22013-05-16 20:30:31 +1000377 - jmc@cvs.openbsd.org 2013/05/16 06:28:45
378 [ssh_config.5]
379 put IgnoreUnknown in the right place;
Darren Tucker64d22942013-05-16 20:31:29 +1000380 - jmc@cvs.openbsd.org 2013/05/16 06:30:06
381 [sshd_config.5]
382 oops! avoid Xr to self;
Darren Tuckerdbee3082013-05-16 20:32:29 +1000383 - dtucker@cvs.openbsd.org 2013/05/16 09:08:41
384 [log.c scp.c sshd.c serverloop.c schnorr.c sftp.c]
385 Fix some "unused result" warnings found via clang and -portable.
386 ok markus@
Darren Tuckerb7ee8522013-05-16 20:33:10 +1000387 - dtucker@cvs.openbsd.org 2013/05/16 09:12:31
388 [readconf.c servconf.c]
389 switch RekeyLimit traffic volume parsing to scan_scaled. ok djm@
Darren Tucker9113d0c2013-05-16 20:48:14 +1000390 - dtucker@cvs.openbsd.org 2013/05/16 10:43:34
391 [servconf.c readconf.c]
392 remove now-unused variables
Darren Tucker09c0f032013-05-16 20:48:57 +1000393 - dtucker@cvs.openbsd.org 2013/05/16 10:44:06
394 [servconf.c]
395 remove another now-unused variable
Darren Tuckere194ba42013-05-16 20:47:31 +1000396 - (dtucker) [configure.ac readconf.c servconf.c
397 openbsd-compat/openbsd-compat.h] Add compat bits for scan_scaled.
Damien Miller6aa3eac2013-05-16 11:10:17 +1000398
Darren Tuckerabbc7a72013-05-10 13:54:23 +100039920130510
400 - (dtucker) [configure.ac] Enable -Wsizeof-pointer-memaccess if the compiler
401 supports it. Mentioned by Colin Watson in bz#2100, ok djm.
Darren Tucker35b2fe92013-05-10 15:35:26 +1000402 - (dtucker) [openbsd-compat/getopt.c] Factor out portibility changes to
403 getopt.c. Preprocessed source is identical other than line numbers.
Darren Tucker39332022013-05-10 15:38:11 +1000404 - (dtucker) [openbsd-compat/getopt_long.c] Import from OpenBSD. No
405 portability changes yet.
Darren Tuckerccfdfce2013-05-10 16:28:55 +1000406 - (dtucker) [openbsd-compat/Makefile.in openbsd-compat/getopt.c
407 openbsd-compat/getopt_long.c regress/modpipe.c] Remove getopt.c, add
408 portability code to getopt_long.c and switch over Makefile and the ugly
409 hack in modpipe.c. Fixes bz#1448.
Darren Tucker0abfb552013-05-10 18:08:49 +1000410 - (dtucker) [openbsd-compat/getopt.h openbsd-compat/getopt_long.c
411 openbsd-compat/openbsd-compat.h] pull in getopt.h from openbsd and plumb
412 in to use it when we're using our own getopt.
Darren Tuckera75d2472013-05-10 18:11:55 +1000413 - (dtucker) [kex.c] Only include sha256 and ECC key exchange methods when the
414 underlying libraries support them.
Darren Tuckerc54e3e02013-05-10 18:53:14 +1000415 - (dtucker) [configure.ac] Add -Werror to the -Qunused-arguments test so
416 we don't get a warning on compilers that *don't* support it. Add
417 -Wno-unknown-warning-option. Move both to the start of the list for
418 maximum noise suppression. Tested with gcc 4.6.3, gcc 2.95.4 and clang 2.9.
Darren Tuckerabbc7a72013-05-10 13:54:23 +1000419
Damien Miller6332da22013-04-23 14:25:52 +100042020130423
421 - (djm) [auth.c configure.ac misc.c monitor.c monitor_wrap.c] Support
422 platforms, such as Android, that lack struct passwd.pw_gecos. Report
423 and initial patch from Nathan Osman bz#2086; feedback tim@ ok dtucker@
Damien Miller62e9c4f2013-04-23 15:15:49 +1000424 - (djm) OpenBSD CVS Sync
425 - markus@cvs.openbsd.org 2013/03/05 20:16:09
426 [sshconnect2.c]
427 reset pubkey order on partial success; ok djm@
Damien Miller998cc562013-04-23 15:16:43 +1000428 - djm@cvs.openbsd.org 2013/03/06 23:35:23
429 [session.c]
430 fatal() when ChrootDirectory specified by running without root privileges;
431 ok markus@
Damien Miller5cbec4c2013-04-23 15:17:12 +1000432 - djm@cvs.openbsd.org 2013/03/06 23:36:53
433 [readconf.c]
434 g/c unused variable (-Wunused)
Damien Miller4ce189d2013-04-23 15:17:52 +1000435 - djm@cvs.openbsd.org 2013/03/07 00:19:59
436 [auth2-pubkey.c monitor.c]
437 reconstruct the original username that was sent by the client, which may
438 have included a style (e.g. "root:skey") when checking public key
439 signatures. Fixes public key and hostbased auth when the client specified
440 a style; ok markus@
Damien Miller91a55f22013-04-23 15:18:10 +1000441 - markus@cvs.openbsd.org 2013/03/07 19:27:25
442 [auth.h auth2-chall.c auth2.c monitor.c sshd_config.5]
443 add submethod support to AuthenticationMethods; ok and freedback djm@
Damien Miller508b6c32013-04-23 15:18:28 +1000444 - djm@cvs.openbsd.org 2013/03/08 06:32:58
445 [ssh.c]
446 allow "ssh -f none ..." ok markus@
Damien Millerd677ad12013-04-23 15:18:51 +1000447 - djm@cvs.openbsd.org 2013/04/05 00:14:00
448 [auth2-gss.c krl.c sshconnect2.c]
449 hush some {unused, printf type} warnings
Damien Miller9f12b5d2013-04-23 15:19:11 +1000450 - djm@cvs.openbsd.org 2013/04/05 00:31:49
451 [pathnames.h]
452 use the existing _PATH_SSH_USER_RC define to construct the other
453 pathnames; bz#2077, ok dtucker@ (no binary change)
Damien Miller172859c2013-04-23 15:19:27 +1000454 - djm@cvs.openbsd.org 2013/04/05 00:58:51
455 [mux.c]
456 cleanup mux-created channels that are in SSH_CHANNEL_OPENING state too
457 (in addition to ones already in OPEN); bz#2079, ok dtucker@
Damien Miller37f1c082013-04-23 15:20:43 +1000458 - markus@cvs.openbsd.org 2013/04/06 16:07:00
459 [channels.c sshd.c]
460 handle ECONNABORTED for accept(); ok deraadt some time ago...
Damien Miller03d4d7e2013-04-23 15:21:06 +1000461 - dtucker@cvs.openbsd.org 2013/04/07 02:10:33
462 [log.c log.h ssh.1 ssh.c sshd.8 sshd.c]
463 Add -E option to ssh and sshd to append debugging logs to a specified file
464 instead of stderr or syslog. ok markus@, man page help jmc@
Damien Miller69010322013-04-23 15:21:24 +1000465 - dtucker@cvs.openbsd.org 2013/04/07 09:40:27
466 [sshd.8]
467 clarify -e text. suggested by & ok jmc@
Damien Millerd5edefd2013-04-23 15:21:39 +1000468 - djm@cvs.openbsd.org 2013/04/11 02:27:50
469 [packet.c]
470 quiet disconnect notifications on the server from error() back to logit()
471 if it is a normal client closure; bz#2057 ok+feedback dtucker@
Damien Millerf1a02ae2013-04-23 15:22:13 +1000472 - dtucker@cvs.openbsd.org 2013/04/17 09:04:09
473 [session.c]
474 revert rev 1.262; it fails because uid is already set here. ok djm@
Damien Miller9303e652013-04-23 15:22:40 +1000475 - djm@cvs.openbsd.org 2013/04/18 02:16:07
476 [sftp.c]
477 make "sftp -q" do what it says on the sticker: hush everything but errors;
Damien Miller467b00c2013-04-23 15:23:07 +1000478 ok dtucker@
479 - djm@cvs.openbsd.org 2013/04/19 01:00:10
480 [sshd_config.5]
481 document the requirment that the AuthorizedKeysCommand be owned by root;
482 ok dtucker@ markus@
Damien Miller0d6771b2013-04-23 15:23:24 +1000483 - djm@cvs.openbsd.org 2013/04/19 01:01:00
484 [ssh-keygen.c]
485 fix some memory leaks; bz#2088 ok dtucker@
Damien Millera56086b2013-04-23 15:24:18 +1000486 - djm@cvs.openbsd.org 2013/04/19 01:03:01
487 [session.c]
488 reintroduce 1.262 without the connection-killing bug:
489 fatal() when ChrootDirectory specified by running without root privileges;
490 ok markus@
Damien Millerea111192013-04-23 19:24:32 +1000491 - djm@cvs.openbsd.org 2013/04/19 01:06:50
492 [authfile.c cipher.c cipher.h kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c]
493 [key.c key.h mac.c mac.h packet.c ssh.1 ssh.c]
494 add the ability to query supported ciphers, MACs, key type and KEX
495 algorithms to ssh. Includes some refactoring of KEX and key type handling
496 to be table-driven; ok markus@
Damien Miller34bd20a2013-04-23 19:25:00 +1000497 - djm@cvs.openbsd.org 2013/04/19 11:10:18
498 [ssh.c]
499 add -Q to usage; reminded by jmc@
Damien Millerf8b894e2013-04-23 19:25:29 +1000500 - djm@cvs.openbsd.org 2013/04/19 12:07:08
501 [kex.c]
502 remove duplicated list entry pointed out by naddy@
Damien Millerbc02f162013-04-23 19:25:49 +1000503 - dtucker@cvs.openbsd.org 2013/04/22 01:17:18
504 [mux.c]
505 typo in debug output: evitval->exitval
Damien Miller6332da22013-04-23 14:25:52 +1000506
Damien Millerbc68f242013-04-18 11:26:25 +100050720130418
508 - (djm) [config.guess config.sub] Update to last versions before they switch
509 to GPL3. ok dtucker@
Darren Tuckerce1c9572013-04-18 21:36:19 +1000510 - (dtucker) [configure.ac] Use -Qunused-arguments to suppress warnings from
511 unused argument warnings (in particular, -fno-builtin-memset) from clang.
Damien Millerbc68f242013-04-18 11:26:25 +1000512
Darren Tucker19104782013-04-05 11:13:08 +110051320130404
514 - (dtucker) OpenBSD CVS Sync
515 - dtucker@cvs.openbsd.org 2013/02/17 23:16:57
516 [readconf.c ssh.c readconf.h sshconnect2.c]
517 Keep track of which IndentityFile options were manually supplied and which
518 were default options, and don't warn if the latter are missing.
519 ok markus@
Darren Tuckerf3c38142013-04-05 11:16:52 +1100520 - dtucker@cvs.openbsd.org 2013/02/19 02:12:47
521 [krl.c]
522 Remove bogus include. ok djm
Darren Tuckeraefa3682013-04-05 11:18:35 +1100523 - dtucker@cvs.openbsd.org 2013/02/22 04:45:09
524 [ssh.c readconf.c readconf.h]
525 Don't complain if IdentityFiles specified in system-wide configs are
526 missing. ok djm, deraadt.
Darren Tucker5d1d9542013-04-05 11:20:00 +1100527 - markus@cvs.openbsd.org 2013/02/22 19:13:56
528 [sshconnect.c]
529 support ProxyCommand=- (stdin/out already point to the proxy); ok djm@
Darren Tucker15fd19c2013-04-05 11:22:26 +1100530 - djm@cvs.openbsd.org 2013/02/22 22:09:01
531 [ssh.c]
532 Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier
533 version)
Darren Tucker19104782013-04-05 11:13:08 +1100534
Darren Tuckerc9627cd2013-04-01 12:40:48 +110053520130401
536 - (dtucker) [openbsd-compat/bsd-cygwin_util.{c,h}] Don't include windows.h
537 to avoid conflicting definitions of __int64, adding the required bits.
538 Patch from Corinna Vinschen.
539
Tim Rice75db01d2013-03-22 10:14:32 -070054020120323
541 - (tim) [Makefile.in] remove some duplication introduced in 20130220 commit.
542
Damien Miller83efe7c2013-03-22 10:17:36 +110054320120322
544 - (djm) [contrib/ssh-copy-id contrib/ssh-copy-id.1] Updated to Phil
545 Hands' greatly revised version.
Damien Millereed8dc22013-03-22 10:25:22 +1100546 - (djm) Release 6.2p1
Darren Tuckerc8a0f272013-03-22 12:49:14 +1100547 - (dtucker) [configure.ac] Add stdlib.h to zlib check for exit() prototype.
Darren Tucker221b4b22013-03-22 12:51:09 +1100548 - (dtucker) [includes.h] Check if _GNU_SOURCE is already defined before
549 defining it again. Prevents warnings if someone, eg, sets it in CFLAGS.
Damien Miller83efe7c2013-03-22 10:17:36 +1100550
Damien Miller63b4bcd2013-03-20 12:55:14 +110055120120318
552 - (djm) [configure.ac log.c scp.c sshconnect2.c openbsd-compat/vis.c]
553 [openbsd-compat/vis.h] FreeBSD's strnvis isn't compatible with OpenBSD's
554 so mark it as broken. Patch from des AT des.no
555
Tim Riceaa86c392013-03-16 20:55:46 -070055620120317
557 - (tim) [configure.ac] OpenServer 5 wants lastlog even though it has none
558 of the bits the configure test looks for.
559
Damien Millera2438bb2013-03-15 10:23:07 +110056020120316
561 - (djm) [configure.ac] Disable utmp, wtmp and/or lastlog if the platform
562 is unable to successfully compile them. Based on patch from des AT
563 des.no
Damien Millerf4db77d2013-03-15 10:34:25 +1100564 - (djm) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
565 Add a usleep replacement for platforms that lack it; ok dtucker
Damien Miller58528402013-03-15 11:22:37 +1100566 - (djm) [session.c] FreeBSD needs setusercontext(..., LOGIN_SETUMASK) to
567 occur after UID switch; patch from John Marshall via des AT des.no;
568 ok dtucker@
Damien Millera2438bb2013-03-15 10:23:07 +1100569
Darren Tuckerfe10a282013-03-12 11:19:40 +110057020120312
571 - (dtucker) [regress/Makefile regress/cipher-speed.sh regress/test-exec.sh]
572 Improve portability of cipher-speed test, based mostly on a patch from
573 Iain Morgan.
Darren Tuckeraa97d132013-03-12 11:31:05 +1100574 - (dtucker) [auth.c configure.ac platform.c platform.h] Accept uid 2 ("bin")
575 in addition to root as an owner of system directories on AIX and HP-UX.
576 ok djm@
Darren Tuckerfe10a282013-03-12 11:19:40 +1100577
Darren Tuckerb3cd5032013-03-07 12:33:35 +110057820130307
579 - (dtucker) [INSTALL] Bump documented autoconf version to what we're
580 currently using.
Darren Tucker4d1a0fe2013-03-07 20:14:34 +1100581 - (dtucker) [defines.h] Remove SIZEOF_CHAR bits since the test for it
Darren Tucker9243ef02013-03-07 20:06:13 +1100582 was removed in configure.ac rev 1.481 as it was redundant.
Tim Rice2b6ea472013-03-07 07:37:13 -0800583 - (tim) [Makefile.in] Add another missing $(EXEEXT) I should have seen 3 days
584 ago.
Damien Millere4f43472013-03-08 12:14:22 +1100585 - (djm) [configure.ac] Add a timeout to the select/rlimit test to give it a
586 chance to complete on broken systems; ok dtucker@
Darren Tuckerb3cd5032013-03-07 12:33:35 +1100587
Darren Tucker834a0d62013-03-06 14:06:48 +110058820130306
589 - (dtucker) [regress/forward-control.sh] Wait longer for the forwarding
590 connection to start so that the test works on slower machines.
Darren Tuckerff008de2013-03-06 17:48:48 +1100591 - (dtucker) [configure.ac] test that we can set number of file descriptors
592 to zero with setrlimit before enabling the rlimit sandbox. This affects
593 (at least) HPUX 11.11.
Darren Tucker834a0d62013-03-06 14:06:48 +1100594
Damien Miller43e5e602013-03-05 09:49:00 +110059520130305
596 - (djm) [regress/modpipe.c] Compilation fix for AIX and parsing fix for
597 HP/UX. Spotted by Kevin Brott
Darren Tucker5f0e54c2013-03-05 19:57:39 +1100598 - (dtucker) [configure.ac] use "=" for shell test and not "==". Spotted by
Darren Tuckerfef9f7c2013-03-05 20:02:24 +1100599 Amit Kulkarni and Kevin Brott.
Darren Tucker29c71512013-03-05 21:50:09 +1100600 - (dtucker) [Makefile.in] Remove trailing "\" on PATHS, which caused obscure
601 build breakage on (at least) HP-UX 11.11. Found by Amit Kulkarni and Kevin
602 Brott.
Tim Riceff8bda82013-03-05 14:23:58 -0800603 - (tim) [Makefile.in] Add missing $(EXEEXT). Found by Roumen Petrov.
Damien Miller43e5e602013-03-05 09:49:00 +1100604
Damien Millerc0cc7ce2013-02-27 10:48:18 +110060520130227
606 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
607 [contrib/suse/openssh.spec] Crank version numbers
Tim Ricea514bc02013-02-26 19:35:26 -0800608 - (tim) [regress/forward-control.sh] use sh in case login shell is csh.
Tim Ricef9e20602013-02-26 20:27:29 -0800609 - (tim) [regress/integrity.sh] shell portability fix.
Tim Riceada7e172013-02-26 21:49:09 -0800610 - (tim) [regress/integrity.sh] keep old solaris awk from hanging.
Tim Rice21f591b2013-02-26 22:48:31 -0800611 - (tim) [regress/krl.sh] keep old solaris awk from hanging.
Damien Millerc0cc7ce2013-02-27 10:48:18 +1100612
Damien Miller1e657d52013-02-26 18:58:06 +110061320130226
614 - OpenBSD CVS Sync
615 - djm@cvs.openbsd.org 2013/02/20 08:27:50
616 [integrity.sh]
617 Add an option to modpipe that warns if the modification offset it not
618 reached in it's stream and turn it on for t-integrity. This should catch
619 cases where the session is not fuzzed for being too short (cf. my last
620 "oops" commit)
Damien Miller6c21bb82013-02-26 19:41:30 +1100621 - (djm) [regress/integrity.sh] Run sshd via $SUDO; fixes tinderbox breakage
622 for UsePAM=yes configuration
Damien Miller1e657d52013-02-26 18:58:06 +1100623
Darren Tucker03978c62013-02-25 11:24:44 +110062420130225
625 - (dtucker) [configure.ac ssh-gss.h] bz#2073: additional #includes needed
626 to use Solaris native GSS libs. Patch from Pierre Ossman.
627
Darren Tuckera423fef2013-02-25 10:32:27 +110062820130223
Damien Millerb87f6b72013-02-23 09:12:23 +1100629 - (djm) [configure.ac includes.h loginrec.c mux.c sftp.c] Prefer
630 bsd/libutil.h to libutil.h to avoid deprecation warnings on Ubuntu.
631 ok tim
632
Darren Tuckera423fef2013-02-25 10:32:27 +110063320130222
Darren Tucker964de182013-02-22 10:39:59 +1100634 - (dtucker) [Makefile.in configure.ac] bz#2072: don't link krb5 libs to
Darren Tuckera2b5a4c2013-02-22 10:43:15 +1100635 ssh(1) since they're not needed. Patch from Pierre Ossman, ok djm.
636 - (dtucker) [configure.ac] bz#2073: look for Solaris' differently-named
637 libgss too. Patch from Pierre Ossman, ok djm.
Damien Miller91f40d82013-02-22 11:37:00 +1100638 - (djm) [configure.ac sandbox-seccomp-filter.c] Support for Linux
639 seccomp-bpf sandbox on ARM. Patch from shawnlandden AT gmail.com;
640 ok dtucker
Darren Tucker964de182013-02-22 10:39:59 +1100641
Tim Rice0ec74232013-02-20 21:37:55 -080064220130221
643 - (tim) [regress/forward-control.sh] shell portability fix.
644
Tim Ricec08b3ef2013-02-19 11:53:29 -080064520130220
646 - (tim) [regress/cipher-speed.sh regress/try-ciphers.sh] shell portability fix.
Tim Ricec31db8c2013-02-19 19:01:51 -0800647 - (tim) [krl.c Makefile.in regress/Makefile regress/modpipe.c] remove unneeded
648 err.h include from krl.c. Additional portability fixes for modpipe. OK djm
Damien Miller283e5752013-02-20 21:13:27 +1100649 - OpenBSD CVS Sync
650 - djm@cvs.openbsd.org 2013/02/20 08:27:50
651 [regress/integrity.sh regress/modpipe.c]
652 Add an option to modpipe that warns if the modification offset it not
653 reached in it's stream and turn it on for t-integrity. This should catch
654 cases where the session is not fuzzed for being too short (cf. my last
655 "oops" commit)
Damien Miller5acc6be2013-02-20 21:16:07 +1100656 - djm@cvs.openbsd.org 2013/02/20 08:29:27
657 [regress/modpipe.c]
658 s/Id/OpenBSD/ in RCS tag
Tim Ricec08b3ef2013-02-19 11:53:29 -0800659
Damien Miller0dc3bc92013-02-19 09:28:32 +110066020130219
661 - OpenBSD CVS Sync
662 - djm@cvs.openbsd.org 2013/02/18 22:26:47
663 [integrity.sh]
664 crank the offset yet again; it was still fuzzing KEX one of Darren's
665 portable test hosts at 2800
Damien Millerb3764e12013-02-19 13:15:01 +1100666 - djm@cvs.openbsd.org 2013/02/19 02:14:09
667 [integrity.sh]
668 oops, forgot to increase the output of the ssh command to ensure that
669 we actually reach $offset
Damien Millerdae85cc2013-02-19 14:27:44 +1100670 - (djm) [regress/integrity.sh] Skip SHA2-based MACs on configurations that
671 lack support for SHA2.
Tim Ricec31db8c2013-02-19 19:01:51 -0800672 - (djm) [regress/modpipe.c] Add local err, and errx functions for platforms
673 that do not have them.
Damien Miller0dc3bc92013-02-19 09:28:32 +1100674
Damien Miller33d52562013-02-18 10:18:05 +110067520130217
676 - OpenBSD CVS Sync
677 - djm@cvs.openbsd.org 2013/02/17 23:16:55
678 [integrity.sh]
679 make the ssh command generates some output to ensure that there are at
680 least offset+tries bytes in the stream.
681
Damien Miller5d7b9562013-02-16 17:32:31 +110068220130216
683 - OpenBSD CVS Sync
684 - djm@cvs.openbsd.org 2013/02/16 06:08:45
685 [integrity.sh]
686 make sure the fuzz offset is actually past the end of KEX for all KEX
687 types. diffie-hellman-group-exchange-sha256 requires an offset around
688 2700. Noticed via test failures in portable OpenSSH on platforms that
689 lack ECC and this the more byte-frugal ECDH KEX algorithms.
690
Damien Miller91edc1c2013-02-15 10:23:44 +110069120130215
692 - (djm) [contrib/suse/rc.sshd] Use SSHD_BIN consistently; bz#2056 from
693 Iain Morgan
Darren Tucker3c4a24c2013-02-15 11:41:35 +1100694 - (dtucker) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
695 Use getpgrp() if we don't have getpgid() (old BSDs, maybe others).
Darren Tucker8e6fb782013-02-15 12:13:01 +1100696 - (dtucker) [configure.ac openbsd-compat/Makefile.in openbsd-compat/strtoull.c
697 openbsd-compat/openbsd-compat.h] Add strtoull to compat library for
698 platforms that don't have it.
Darren Tuckerf32db832013-02-15 12:20:41 +1100699 - (dtucker) [openbsd-compat/openbsd-compat.h] Add prototype for strtoul,
700 group strto* function prototypes together.
Darren Tucker2991d282013-02-15 14:55:38 +1100701 - (dtucker) [openbsd-compat/bsd-misc.c] Handle the case where setpgrp() takes
702 an argument. Pointed out by djm.
Damien Miller4018dc02013-02-15 10:28:55 +1100703 - (djm) OpenBSD CVS Sync
704 - djm@cvs.openbsd.org 2013/02/14 21:35:59
705 [auth2-pubkey.c]
706 Correct error message that had a typo and was logging the wrong thing;
707 patch from Petr Lautrbach
Damien Miller5ceddc32013-02-15 12:18:32 +1100708 - dtucker@cvs.openbsd.org 2013/02/15 00:21:01
709 [sshconnect2.c]
710 Warn more loudly if an IdentityFile provided by the user cannot be read.
711 bz #1981, ok djm@
Damien Miller91edc1c2013-02-15 10:23:44 +1100712
Damien Miller2653f5c2013-02-14 10:14:51 +110071320130214
714 - (djm) [regress/krl.sh] Don't use ecdsa keys in environment that lack ECC.
Damien Miller6d77d6e2013-02-14 10:31:03 +1100715 - (djm) [regress/krl.sh] typo; found by Iain Morgan
Damien Miller57f92182013-02-14 10:32:33 +1100716 - (djm) [regress/integrity.sh] Start fuzzing from offset 2500 (instead
717 of 2300) to avoid clobbering the end of (non-MAC'd) KEX. Verified by
718 Iain Morgan
Damien Miller2653f5c2013-02-14 10:14:51 +1100719
Damien Millerea078462013-02-12 10:54:37 +110072020130212
721 - (djm) OpenBSD CVS Sync
722 - djm@cvs.openbsd.org 2013/01/24 21:45:37
723 [krl.c]
724 fix handling of (unused) KRL signatures; skip string in correct buffer
Damien Miller6045f5d2013-02-12 10:54:54 +1100725 - djm@cvs.openbsd.org 2013/01/24 22:08:56
726 [krl.c]
727 skip serial lookup when cert's serial number is zero
Damien Miller377d9a42013-02-12 10:55:16 +1100728 - krw@cvs.openbsd.org 2013/01/25 05:00:27
729 [krl.c]
730 Revert last. Breaks due to likely typo. Let djm@ fix later.
731 ok djm@ via dlg@
Damien Miller60565bc2013-02-12 10:56:42 +1100732 - djm@cvs.openbsd.org 2013/01/25 10:22:19
733 [krl.c]
734 redo last commit without the vi-vomit that snuck in:
735 skip serial lookup when cert's serial number is zero
736 (now with 100% better comment)
Damien Millerf0a8ded2013-02-12 11:00:34 +1100737 - djm@cvs.openbsd.org 2013/01/26 06:11:05
738 [Makefile.in acss.c acss.h cipher-acss.c cipher.c]
739 [openbsd-compat/openssl-compat.h]
740 remove ACSS, now that it is gone from libcrypto too
Damien Miller0cd2f8e2013-02-12 11:01:39 +1100741 - djm@cvs.openbsd.org 2013/01/27 10:06:12
742 [krl.c]
743 actually use the xrealloc() return value; spotted by xi.wang AT gmail.com
Damien Miller1f583df2013-02-12 11:02:08 +1100744 - dtucker@cvs.openbsd.org 2013/02/06 00:20:42
745 [servconf.c sshd_config sshd_config.5]
746 Change default of MaxStartups to 10:30:100 to start doing random early
747 drop at 10 connections up to 100 connections. This will make it harder
748 to DoS as CPUs have come a long way since the original value was set
749 back in 2000. Prompted by nion at debian org, ok markus@
Damien Miller18de9132013-02-12 11:02:27 +1100750 - dtucker@cvs.openbsd.org 2013/02/06 00:22:21
751 [auth.c]
752 Fix comment, from jfree.e1 at gmail
Damien Millerd6d9fa02013-02-12 11:02:46 +1100753 - djm@cvs.openbsd.org 2013/02/08 00:41:12
754 [sftp.c]
755 fix NULL deref when built without libedit and control characters
756 entered as command; debugging and patch from Iain Morgan an
757 Loganaden Velvindron in bz#1956
Damien Millerfd051542013-02-12 11:03:10 +1100758 - markus@cvs.openbsd.org 2013/02/10 21:19:34
759 [version.h]
760 openssh 6.2
Damien Miller78d22712013-02-12 11:03:36 +1100761 - djm@cvs.openbsd.org 2013/02/10 23:32:10
762 [ssh-keygen.c]
763 append to moduli file when screening candidates rather than overwriting.
764 allows resumption of interrupted screen; patch from Christophe Garault
765 in bz#1957; ok dtucker@
Damien Miller894926e2013-02-12 11:03:58 +1100766 - djm@cvs.openbsd.org 2013/02/10 23:35:24
767 [packet.c]
768 record "Received disconnect" messages at ERROR rather than INFO priority,
769 since they are abnormal and result in a non-zero ssh exit status; patch
770 from Iain Morgan in bz#2057; ok dtucker@
Damien Miller22e8a1e2013-02-12 11:04:48 +1100771 - dtucker@cvs.openbsd.org 2013/02/11 21:21:58
772 [sshd.c]
773 Add openssl version to debug output similar to the client. ok markus@
Damien Miller58e2c5b2013-02-12 11:16:57 +1100774 - djm@cvs.openbsd.org 2013/02/11 23:58:51
775 [regress/try-ciphers.sh]
776 remove acss here too
Damien Miller2f20de52013-02-12 11:31:38 +1100777 - (djm) [regress/try-ciphers.sh] clean up CVS merge botch
Damien Millerea078462013-02-12 10:54:37 +1100778
Damien Millerb6f73b32013-02-11 10:39:12 +110077920130211
780 - (djm) [configure.ac openbsd-compat/openssl-compat.h] Repair build on old
781 libcrypto that lacks EVP_CIPHER_CTX_ctrl
782
Damien Millere7f50e12013-02-08 10:49:37 +110078320130208
784 - (djm) [contrib/redhat/sshd.init] treat RETVAL as an integer;
785 patch from Iain Morgan in bz#2059
Darren Tucker951b53b2013-02-08 11:50:09 +1100786 - (dtucker) [configure.ac openbsd-compat/sys-tree.h] Test if compiler allows
787 __attribute__ on return values and work around if necessary. ok djm@
Damien Millere7f50e12013-02-08 10:49:37 +1100788
78920130207
Damien Miller5c3bbd72013-02-07 10:11:05 +1100790 - (djm) [configure.ac] Don't probe seccomp capability of running kernel
791 at configure time; the seccomp sandbox will fall back to rlimit at
792 runtime anyway. Patch from plautrba AT redhat.com in bz#2011
793
Damien Millerda5cc5d2013-01-20 22:31:29 +110079420130120
795 - (djm) [cipher-aes.c cipher-ctr.c openbsd-compat/openssl-compat.h]
796 Move prototypes for replacement ciphers to openssl-compat.h; fix EVP
797 prototypes for openssl-1.0.0-fips.
Damien Millerac5542b2013-01-20 22:33:02 +1100798 - (djm) OpenBSD CVS Sync
799 - jmc@cvs.openbsd.org 2013/01/18 07:57:47
800 [ssh-keygen.1]
801 tweak previous;
Damien Miller3d6d68b2013-01-20 22:33:23 +1100802 - jmc@cvs.openbsd.org 2013/01/18 07:59:46
803 [ssh-keygen.c]
804 -u before -V in usage();
Damien Miller72abeb72013-01-20 22:33:44 +1100805 - jmc@cvs.openbsd.org 2013/01/18 08:00:49
806 [sshd_config.5]
807 tweak previous;
Damien Miller072fdcd2013-01-20 22:34:04 +1100808 - jmc@cvs.openbsd.org 2013/01/18 08:39:04
809 [ssh-keygen.1]
810 add -Q to the options list; ok djm
Damien Miller881a7a22013-01-20 22:34:46 +1100811 - jmc@cvs.openbsd.org 2013/01/18 21:48:43
812 [ssh-keygen.1]
813 command-line (adj.) -> command line (n.);
Damien Millera0a7ee82013-01-20 22:35:06 +1100814 - jmc@cvs.openbsd.org 2013/01/19 07:13:25
815 [ssh-keygen.1]
816 fix some formatting; ok djm
Damien Millera7522d92013-01-20 22:35:31 +1100817 - markus@cvs.openbsd.org 2013/01/19 12:34:55
818 [krl.c]
819 RB_INSERT does not remove existing elments; ok djm@
Damien Millerd60b2102013-01-20 22:49:58 +1100820 - (djm) [openbsd-compat/sys-tree.h] Sync with OpenBSD. krl.c needs newer
821 version.
Damien Millerdc75d1f2013-01-20 22:58:51 +1100822 - (djm) [regress/krl.sh] replacement for jot; most platforms lack it
Damien Millerda5cc5d2013-01-20 22:31:29 +1100823
Damien Millerf3747bf2013-01-18 11:44:04 +110082420130118
825 - (djm) OpenBSD CVS Sync
826 - djm@cvs.openbsd.org 2013/01/17 23:00:01
827 [auth.c key.c key.h ssh-keygen.1 ssh-keygen.c sshd_config.5]
828 [krl.c krl.h PROTOCOL.krl]
829 add support for Key Revocation Lists (KRLs). These are a compact way to
830 represent lists of revoked keys and certificates, taking as little as
831 a single bit of incremental cost to revoke a certificate by serial number.
832 KRLs are loaded via the existing RevokedKeys sshd_config option.
833 feedback and ok markus@
Damien Millerebafebd2013-01-18 11:51:56 +1100834 - djm@cvs.openbsd.org 2013/01/18 00:45:29
835 [regress/Makefile regress/cert-userkey.sh regress/krl.sh]
836 Tests for Key Revocation Lists (KRLs)
Damien Miller13f5f762013-01-18 15:32:03 +1100837 - djm@cvs.openbsd.org 2013/01/18 03:00:32
838 [krl.c]
839 fix KRL generation bug for list sections
Damien Millerf3747bf2013-01-18 11:44:04 +1100840
Damien Millerb26699b2013-01-17 14:31:57 +110084120130117
842 - (djm) [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh]
843 check for GCM support before testing GCM ciphers.
844
Damien Millerc20eb8b2013-01-12 22:41:26 +110084520130112
846 - (djm) OpenBSD CVS Sync
847 - djm@cvs.openbsd.org 2013/01/12 11:22:04
848 [cipher.c]
849 improve error message for integrity failure in AES-GCM modes; ok markus@
Damien Miller846dc7f2013-01-12 22:46:26 +1100850 - djm@cvs.openbsd.org 2013/01/12 11:23:53
851 [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh]
852 test AES-GCM modes; feedback markus@
Damien Millerefa1c952013-01-12 23:10:47 +1100853 - (djm) [regress/integrity.sh] repair botched merge
Damien Millerc20eb8b2013-01-12 22:41:26 +1100854
Damien Miller4e14a582013-01-09 15:54:48 +110085520130109
856 - (djm) OpenBSD CVS Sync
857 - dtucker@cvs.openbsd.org 2012/12/14 05:26:43
858 [auth.c]
859 use correct string in error message; from rustybsd at gmx.fr
Damien Miller73298f42013-01-09 15:55:50 +1100860 - djm@cvs.openbsd.org 2013/01/02 00:32:07
861 [clientloop.c mux.c]
862 channel_setup_local_fwd_listener() returns 0 on failure, not -ve
863 bz#2055 reported by mathieu.lacage AT gmail.com
Damien Miller697485d2013-01-09 15:56:13 +1100864 - djm@cvs.openbsd.org 2013/01/02 00:33:49
865 [PROTOCOL.agent]
866 correct format description for SSH_AGENTC_ADD_RSA_ID_CONSTRAINED
867 bz#2051 from david AT lechnology.com
Damien Miller44138442013-01-09 15:56:45 +1100868 - djm@cvs.openbsd.org 2013/01/03 05:49:36
869 [servconf.h]
870 add a couple of ServerOptions members that should be copied to the privsep
871 child (for consistency, in this case they happen only to be accessed in
872 the monitor); ok dtucker@
Damien Miller3739c8f2013-01-09 15:57:16 +1100873 - djm@cvs.openbsd.org 2013/01/03 12:49:01
874 [PROTOCOL]
875 fix description of MAC calculation for EtM modes; ok markus@
Damien Miller502ab0e2013-01-09 15:57:36 +1100876 - djm@cvs.openbsd.org 2013/01/03 12:54:49
877 [sftp-server.8 sftp-server.c]
878 allow specification of an alternate start directory for sftp-server(8)
879 "I like this" markus@
Damien Millerec77c952013-01-09 15:58:00 +1100880 - djm@cvs.openbsd.org 2013/01/03 23:22:58
881 [ssh-keygen.c]
882 allow fingerprinting of keys hosted in PKCS#11 tokens: ssh-keygen -lD ...
883 ok markus@
Damien Milleraa7ad302013-01-09 15:58:21 +1100884 - jmc@cvs.openbsd.org 2013/01/04 19:26:38
885 [sftp-server.8 sftp-server.c]
886 sftp-server.8: add argument name to -d
887 sftp-server.c: add -d to usage()
888 ok djm
Damien Miller1d75abf2013-01-09 16:12:19 +1100889 - markus@cvs.openbsd.org 2013/01/08 18:49:04
890 [PROTOCOL authfile.c cipher.c cipher.h kex.c kex.h monitor_wrap.c]
891 [myproposal.h packet.c ssh_config.5 sshd_config.5]
892 support AES-GCM as defined in RFC 5647 (but with simpler KEX handling)
893 ok and feedback djm@
Damien Miller1422c082013-01-09 16:44:54 +1100894 - djm@cvs.openbsd.org 2013/01/09 05:40:17
895 [ssh-keygen.c]
896 correctly initialise fingerprint type for fingerprinting PKCS#11 keys
Damien Millerd522c682013-01-09 16:42:47 +1100897 - (djm) [cipher.c configure.ac openbsd-compat/openssl-compat.h]
898 Fix merge botch, automatically detect AES-GCM in OpenSSL, move a little
899 cipher compat code to openssl-compat.h
Damien Miller4e14a582013-01-09 15:54:48 +1100900
Darren Tucker0fc77292012-12-17 15:59:42 +110090120121217
902 - (dtucker) [Makefile.in] Add some scaffolding so that the new regress
903 tests will work with VPATH directories.
904
Damien Miller8c05da32012-12-13 07:18:59 +110090520121213
906 - (djm) OpenBSD CVS Sync
907 - markus@cvs.openbsd.org 2012/12/12 16:45:52
908 [packet.c]
909 reset incoming_packet buffer for each new packet in EtM-case, too;
910 this happens if packets are parsed only parially (e.g. ignore
911 messages sent when su/sudo turn off echo); noted by sthen/millert
Damien Miller25a02b02012-12-13 08:18:56 +1100912 - naddy@cvs.openbsd.org 2012/12/12 16:46:10
913 [cipher.c]
914 use OpenSSL's EVP_aes_{128,192,256}_ctr() API and remove our hand-rolled
915 counter mode code; ok djm@
916 - (djm) [configure.ac cipher-ctr.c] Adapt EVP AES CTR change to retain our
917 compat code for older OpenSSL
Damien Miller13cbff12012-12-13 08:25:07 +1100918 - (djm) [cipher.c] Fix missing prototype for compat code
Damien Miller8c05da32012-12-13 07:18:59 +1100919
Damien Miller6a1937e2012-12-12 10:44:38 +110092020121212
921 - (djm) OpenBSD CVS Sync
922 - markus@cvs.openbsd.org 2012/12/11 22:16:21
923 [monitor.c]
924 drain the log messages after receiving the keystate from the unpriv
925 child. otherwise it might block while sending. ok djm@
Damien Milleraf43a7a2012-12-12 10:46:31 +1100926 - markus@cvs.openbsd.org 2012/12/11 22:31:18
927 [PROTOCOL authfile.c cipher.c cipher.h kex.h mac.c myproposal.h]
928 [packet.c ssh_config.5 sshd_config.5]
929 add encrypt-then-mac (EtM) modes to openssh by defining new mac algorithms
930 that change the packet format and compute the MAC over the encrypted
931 message (including the packet size) instead of the plaintext data;
932 these EtM modes are considered more secure and used by default.
933 feedback and ok djm@
Damien Miller74f13bd2012-12-12 10:46:53 +1100934 - sthen@cvs.openbsd.org 2012/12/11 22:51:45
935 [mac.c]
936 fix typo, s/tem/etm in hmac-ripemd160-tem. ok markus@
Damien Miller1a45b632012-12-12 10:52:07 +1100937 - markus@cvs.openbsd.org 2012/12/11 22:32:56
938 [regress/try-ciphers.sh]
939 add etm modes
Damien Miller1fb593a2012-12-12 10:54:37 +1100940 - markus@cvs.openbsd.org 2012/12/11 22:42:11
941 [regress/Makefile regress/modpipe.c regress/integrity.sh]
942 test the integrity of the packets; with djm@
Damien Millerec7ce9a2012-12-12 10:55:32 +1100943 - markus@cvs.openbsd.org 2012/12/11 23:12:13
944 [try-ciphers.sh]
945 add hmac-ripemd160-etm@openssh.com
Damien Miller37834af2012-12-12 11:00:37 +1100946 - (djm) [mac.c] fix merge botch
Damien Miller37461d72012-12-12 12:37:32 +1100947 - (djm) [regress/Makefile regress/integrity.sh] Make the integrity.sh test
948 work on platforms without 'jot'
949 - (djm) [regress/integrity.sh] Fix awk quoting, packet length skip
Damien Millerfaabeb62012-12-12 12:51:54 +1100950 - (djm) [regress/Makefile] fix t-exec rule
Damien Miller6a1937e2012-12-12 10:44:38 +1100951
Darren Tucker3dfb8772012-12-07 13:03:10 +110095220121207
953 - (dtucker) OpenBSD CVS Sync
954 - dtucker@cvs.openbsd.org 2012/12/06 06:06:54
955 [regress/keys-command.sh]
956 Fix some problems with the keys-command test:
957 - use string comparison rather than numeric comparison
958 - check for existing KEY_COMMAND file and don't clobber if it exists
959 - clean up KEY_COMMAND file if we do create it.
960 - check that KEY_COMMAND is executable (which it won't be if eg /var/run
961 is mounted noexec).
962 ok djm.
Darren Tuckerf9333d52012-12-07 13:06:13 +1100963 - jmc@cvs.openbsd.org 2012/12/03 08:33:03
964 [ssh-add.1 sshd_config.5]
965 tweak previous;
Darren Tucker8a965222012-12-07 13:07:02 +1100966 - markus@cvs.openbsd.org 2012/12/05 15:42:52
967 [ssh-add.c]
968 prevent double-free of comment; ok djm@
Darren Tucker3e1027c2012-12-07 13:07:46 +1100969 - dtucker@cvs.openbsd.org 2012/12/07 01:51:35
970 [serverloop.c]
971 Cast signal to int for logging. A no-op on openbsd (they're always ints)
972 but will prevent warnings in portable. ok djm@
Darren Tucker3dfb8772012-12-07 13:03:10 +1100973
Tim Rice96ce9a12012-12-04 07:50:03 -080097420121205
975 - (tim) [defines.h] Some platforms are missing ULLONG_MAX. Feedback djm@.
976
Damien Millercf6ef132012-12-03 09:37:56 +110097720121203
978 - (djm) [openbsd-compat/sys-queue.h] Sync with OpenBSD to get
979 TAILQ_FOREACH_SAFE needed for upcoming changes.
Damien Millercb6b68b2012-12-03 09:49:52 +1100980 - (djm) OpenBSD CVS Sync
981 - djm@cvs.openbsd.org 2012/12/02 20:26:11
982 [ssh_config.5 sshconnect2.c]
983 Make IdentitiesOnly apply to keys obtained from a PKCS11Provider.
984 This allows control of which keys are offered from tokens using
985 IdentityFile. ok markus@
Damien Miller33a81362012-12-03 09:50:24 +1100986 - djm@cvs.openbsd.org 2012/12/02 20:42:15
987 [ssh-add.1 ssh-add.c]
988 make deleting explicit keys "ssh-add -d" symmetric with adding keys -
989 try to delete the corresponding certificate too and respect the -k option
990 to allow deleting of the key only; feedback and ok markus@
Damien Milleraa5b3f82012-12-03 09:50:54 +1100991 - djm@cvs.openbsd.org 2012/12/02 20:46:11
992 [auth-options.c channels.c servconf.c servconf.h serverloop.c session.c]
993 [sshd_config.5]
994 make AllowTcpForwarding accept "local" and "remote" in addition to its
995 current "yes"/"no" to allow the server to specify whether just local or
996 remote TCP forwarding is enabled. ok markus@
Damien Millerfa51d8b2012-12-03 10:08:25 +1100997 - dtucker@cvs.openbsd.org 2012/10/05 02:20:48
998 [regress/cipher-speed.sh regress/try-ciphers.sh]
999 Add umac-128@openssh.com to the list of MACs to be tested
Damien Miller6618e922012-12-03 10:09:04 +11001000 - djm@cvs.openbsd.org 2012/10/19 05:10:42
1001 [regress/cert-userkey.sh]
1002 include a serial number when generating certs
Damien Miller771c43c2012-12-03 10:12:13 +11001003 - djm@cvs.openbsd.org 2012/11/22 22:49:30
1004 [regress/Makefile regress/keys-command.sh]
1005 regress for AuthorizedKeysCommand; hints from markus@
Damien Miller999bd2d2012-12-03 10:13:39 +11001006 - djm@cvs.openbsd.org 2012/12/02 20:47:48
1007 [Makefile regress/forward-control.sh]
1008 regress for AllowTcpForwarding local/remote; ok markus@
Damien Miller55aca022012-12-03 11:25:30 +11001009 - djm@cvs.openbsd.org 2012/12/03 00:14:06
1010 [auth2-chall.c ssh-keygen.c]
1011 Fix compilation with -Wall -Werror (trivial type fixes)
Damien Miller03af12e2012-12-03 11:55:53 +11001012 - (djm) [configure.ac] Turn on -g for gcc compilers. Helps pre-installation
1013 debugging. ok dtucker@
Damien Miller8b489822012-12-03 12:35:55 +11001014 - (djm) [configure.ac] Revert previous. configure.ac already does this
1015 for us.
Damien Millercf6ef132012-12-03 09:37:56 +11001016
Damien Miller1e854692012-11-14 19:04:02 +1100101720121114
1018 - (djm) OpenBSD CVS Sync
1019 - djm@cvs.openbsd.org 2012/11/14 02:24:27
1020 [auth2-pubkey.c]
1021 fix username passed to helper program
1022 prepare stdio fds before closefrom()
1023 spotted by landry@
Damien Miller6f3b3622012-11-14 19:04:33 +11001024 - djm@cvs.openbsd.org 2012/11/14 02:32:15
1025 [ssh-keygen.c]
1026 allow the full range of unsigned serial numbers; 'fine' deraadt@
Damien Miller15b05cf2012-12-03 09:53:20 +11001027 - djm@cvs.openbsd.org 2012/12/02 20:34:10
1028 [auth.c auth.h auth1.c auth2-chall.c auth2-gss.c auth2-jpake.c auth2.c]
1029 [monitor.c monitor.h]
1030 Fixes logging of partial authentication when privsep is enabled
1031 Previously, we recorded "Failed xxx" since we reset authenticated before
1032 calling auth_log() in auth2.c. This adds an explcit "Partial" state.
1033
1034 Add a "submethod" to auth_log() to report which submethod is used
1035 for keyboard-interactive.
1036
1037 Fix multiple authentication when one of the methods is
1038 keyboard-interactive.
1039
1040 ok markus@
Damien Millerd27a0262012-12-03 10:06:37 +11001041 - dtucker@cvs.openbsd.org 2012/10/05 02:05:30
1042 [regress/multiplex.sh]
1043 Use 'kill -0' to test for the presence of a pid since it's more portable
Damien Miller1e854692012-11-14 19:04:02 +11001044
Damien Millerd5c3d4c2012-11-07 08:35:38 +1100104520121107
1046 - (djm) OpenBSD CVS Sync
1047 - eric@cvs.openbsd.org 2011/11/28 08:46:27
1048 [moduli.5]
1049 fix formula
1050 ok djm@
Damien Miller0120c412012-11-07 08:36:00 +11001051 - jmc@cvs.openbsd.org 2012/09/26 17:34:38
1052 [moduli.5]
1053 last stage of rfc changes, using consistent Rs/Re blocks, and moving the
1054 references into a STANDARDS section;
Damien Millerd5c3d4c2012-11-07 08:35:38 +11001055
Darren Tuckerf96ff182012-11-05 17:04:37 +1100105620121105
1057 - (dtucker) [uidswap.c openbsd-compat/Makefile.in
1058 openbsd-compat/bsd-setres_id.c openbsd-compat/bsd-setres_id.h
1059 openbsd-compat/openbsd-compat.h] Move the fallback code for setting uids
1060 and gids from uidswap.c to the compat library, which allows it to work with
1061 the new setresuid calls in auth2-pubkey. with tim@, ok djm@
Darren Tucker737f7af2012-11-05 17:07:43 +11001062 - (dtucker) [auth2-pubkey.c] wrap paths.h in an ifdef for platforms that
1063 don't have it. Spotted by tim@.
Darren Tuckerf96ff182012-11-05 17:04:37 +11001064
Damien Millerf33580e2012-11-04 22:22:52 +1100106520121104
1066 - (djm) OpenBSD CVS Sync
1067 - jmc@cvs.openbsd.org 2012/10/31 08:04:50
1068 [sshd_config.5]
1069 tweak previous;
Damien Millerd0d10992012-11-04 22:23:14 +11001070 - djm@cvs.openbsd.org 2012/11/04 10:38:43
1071 [auth2-pubkey.c sshd.c sshd_config.5]
1072 Remove default of AuthorizedCommandUser. Administrators are now expected
1073 to explicitly specify a user. feedback and ok markus@
Damien Millera6e3f012012-11-04 23:21:40 +11001074 - djm@cvs.openbsd.org 2012/11/04 11:09:15
1075 [auth.h auth1.c auth2.c monitor.c servconf.c servconf.h sshd.c]
1076 [sshd_config.5]
1077 Support multiple required authentication via an AuthenticationMethods
1078 option. This option lists one or more comma-separated lists of
1079 authentication method names. Successful completion of all the methods in
1080 any list is required for authentication to complete;
1081 feedback and ok markus@
Damien Millerf33580e2012-11-04 22:22:52 +11001082
Damien Miller07daed52012-10-31 08:57:55 +1100108320121030
1084 - (djm) OpenBSD CVS Sync
1085 - markus@cvs.openbsd.org 2012/10/05 12:34:39
1086 [sftp.c]
1087 fix signed vs unsigned warning; feedback & ok: djm@
Damien Miller09d3e122012-10-31 08:58:58 +11001088 - djm@cvs.openbsd.org 2012/10/30 21:29:55
1089 [auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h]
1090 [sshd.c sshd_config sshd_config.5]
1091 new sshd_config option AuthorizedKeysCommand to support fetching
1092 authorized_keys from a command in addition to (or instead of) from
1093 the filesystem. The command is run as the target server user unless
1094 another specified via a new AuthorizedKeysCommandUser option.
1095
1096 patch originally by jchadima AT redhat.com, reworked by me; feedback
1097 and ok markus@
Damien Miller07daed52012-10-31 08:57:55 +11001098
Tim Ricec0e5cbe2012-10-18 21:38:58 -0700109920121019
1100 - (tim) [buildpkg.sh.in] Double up on some backslashes so they end up in
1101 the generated file as intended.
1102
Darren Tucker0af24052012-10-05 10:41:25 +1000110320121005
1104 - (dtucker) OpenBSD CVS Sync
1105 - djm@cvs.openbsd.org 2012/09/17 09:54:44
1106 [sftp.c]
1107 an XXX for later
Darren Tucker302889a2012-10-05 10:42:53 +10001108 - markus@cvs.openbsd.org 2012/09/17 13:04:11
1109 [packet.c]
1110 clear old keys on rekeing; ok djm
Darren Tucker063018d2012-10-05 10:43:58 +10001111 - dtucker@cvs.openbsd.org 2012/09/18 10:36:12
1112 [sftp.c]
1113 Add bounds check on sftp tab-completion. Part of a patch from from
1114 Jean-Marc Robert via tech@, ok djm
Darren Tucker191fcc62012-10-05 10:45:01 +10001115 - dtucker@cvs.openbsd.org 2012/09/21 10:53:07
1116 [sftp.c]
1117 Fix improper handling of absolute paths when PWD is part of the completed
1118 path. Patch from Jean-Marc Robert via tech@, ok djm.
Darren Tucker17146d32012-10-05 10:46:16 +10001119 - dtucker@cvs.openbsd.org 2012/09/21 10:55:04
1120 [sftp.c]
1121 Fix handling of filenames containing escaped globbing characters and
1122 escape "#" and "*". Patch from Jean-Marc Robert via tech@, ok djm.
Darren Tucker628a3fd2012-10-05 10:50:15 +10001123 - jmc@cvs.openbsd.org 2012/09/26 16:12:13
1124 [ssh.1]
1125 last stage of rfc changes, using consistent Rs/Re blocks, and moving the
1126 references into a STANDARDS section;
Darren Tucker3a7c0412012-10-05 10:51:59 +10001127 - naddy@cvs.openbsd.org 2012/10/01 13:59:51
1128 [monitor_wrap.c]
1129 pasto; ok djm@
Darren Tucker0dc283b2012-10-05 10:52:51 +10001130 - djm@cvs.openbsd.org 2012/10/02 07:07:45
1131 [ssh-keygen.c]
1132 fix -z option, broken in revision 1.215
Darren Tucker427e4092012-10-05 11:02:39 +10001133 - markus@cvs.openbsd.org 2012/10/04 13:21:50
1134 [myproposal.h ssh_config.5 umac.h sshd_config.5 ssh.1 sshd.8 mac.c]
1135 add umac128 variant; ok djm@ at n2k12
Darren Tucker189e5ba2012-10-05 11:41:52 +10001136 - dtucker@cvs.openbsd.org 2012/09/06 04:11:07
1137 [regress/try-ciphers.sh]
1138 Restore missing space. (Id sync only).
Darren Tucker6fc5aa82012-10-05 11:43:57 +10001139 - dtucker@cvs.openbsd.org 2012/09/09 11:51:25
1140 [regress/multiplex.sh]
1141 Add test for ssh -Ostop
Darren Tucker9b2c0362012-10-05 11:45:39 +10001142 - dtucker@cvs.openbsd.org 2012/09/10 00:49:21
1143 [regress/multiplex.sh]
1144 Log -O cmd output to the log file and make logging consistent with the
1145 other tests. Test clean shutdown of an existing channel when testing
1146 "stop".
Darren Tuckeree4ad772012-10-05 12:04:10 +10001147 - dtucker@cvs.openbsd.org 2012/09/10 01:51:19
1148 [regress/multiplex.sh]
1149 use -Ocheck and waiting for completions by PID to make multiplexing test
1150 less racy and (hopefully) more reliable on slow hardware.
Darren Tucker992faad2012-10-05 11:38:24 +10001151 - [Makefile umac.c] Add special-case target to build umac128.o.
Darren Tucker50ce4472012-10-05 12:11:33 +10001152 - [umac.c] Enforce allowed umac output sizes. From djm@.
Darren Tuckercc8e9ff2012-10-05 15:41:06 +10001153 - [Makefile.in] "Using $< in a non-suffix rule context is a GNUmake idiom".
Darren Tucker0af24052012-10-05 10:41:25 +10001154
Darren Tuckerbb6cc072012-09-17 13:25:06 +1000115520120917
1156 - (dtucker) OpenBSD CVS Sync
1157 - dtucker@cvs.openbsd.org 2012/09/13 23:37:36
1158 [servconf.c]
1159 Fix comment line length
Darren Tucker26b9e3b2012-09-17 13:25:44 +10001160 - markus@cvs.openbsd.org 2012/09/14 16:51:34
1161 [sshconnect.c]
1162 remove unused variable
Darren Tuckerbb6cc072012-09-17 13:25:06 +10001163
Darren Tucker92a39cf2012-09-07 11:20:20 +1000116420120907
1165 - (dtucker) OpenBSD CVS Sync
1166 - dtucker@cvs.openbsd.org 2012/09/06 09:50:13
1167 [clientloop.c]
1168 Make the escape command help (~?) context sensitive so that only commands
1169 that will work in the current session are shown. ok markus@
Darren Tucker83d0af62012-09-07 11:21:03 +10001170 - jmc@cvs.openbsd.org 2012/09/06 13:57:42
1171 [ssh.1]
1172 missing letter in previous;
Darren Tuckerf111d402012-09-07 11:21:42 +10001173 - dtucker@cvs.openbsd.org 2012/09/07 00:30:19
1174 [clientloop.c]
1175 Print '^Z' instead of a raw ^Z when the sequence is not supported. ok djm@
Darren Tuckerca0d0fd2012-09-07 11:22:24 +10001176 - dtucker@cvs.openbsd.org 2012/09/07 01:10:21
1177 [clientloop.c]
1178 Merge escape help text for ~v and ~V; ok djm@
Darren Tucker48bf4b02012-09-07 16:38:53 +10001179 - dtucker@cvs.openbsd.org 2012/09/07 06:34:21
1180 [clientloop.c]
1181 when muxmaster is run with -N, make it shut down gracefully when a client
1182 sends it "-O stop" rather than hanging around (bz#1985). ok djm@
Darren Tucker92a39cf2012-09-07 11:20:20 +10001183
Darren Tucker3ee50c52012-09-06 21:18:11 +1000118420120906
1185 - (dtucker) OpenBSD CVS Sync
1186 - jmc@cvs.openbsd.org 2012/08/15 18:25:50
1187 [ssh-keygen.1]
1188 a little more info on certificate validity;
1189 requested by Ross L Richardson, and provided by djm
Darren Tucker66cb0e02012-09-06 21:19:05 +10001190 - dtucker@cvs.openbsd.org 2012/08/17 00:45:45
1191 [clientloop.c clientloop.h mux.c]
1192 Force a clean shutdown of ControlMaster client sessions when the ~. escape
1193 sequence is used. This means that ~. should now work in mux clients even
1194 if the server is no longer responding. Found by tedu, ok djm.
Darren Tuckerae608bd2012-09-06 21:19:51 +10001195 - djm@cvs.openbsd.org 2012/08/17 01:22:56
1196 [kex.c]
1197 add some comments about better handling first-KEX-follows notifications
1198 from the server. Nothing uses these right now. No binary change
Darren Tuckerf09a8a62012-09-06 21:20:39 +10001199 - djm@cvs.openbsd.org 2012/08/17 01:25:58
1200 [ssh-keygen.c]
1201 print details of which host lines were deleted when using
1202 "ssh-keygen -R host"; ok markus@
Darren Tucker00c15182012-09-06 21:21:56 +10001203 - djm@cvs.openbsd.org 2012/08/17 01:30:00
1204 [compat.c sshconnect.c]
1205 Send client banner immediately, rather than waiting for the server to
1206 move first for SSH protocol 2 connections (the default). Patch based on
1207 one in bz#1999 by tls AT panix.com, feedback dtucker@ ok markus@
Darren Tucker50a48d02012-09-06 21:25:37 +10001208 - dtucker@cvs.openbsd.org 2012/09/06 04:37:39
1209 [clientloop.c log.c ssh.1 log.h]
1210 Add ~v and ~V escape sequences to raise and lower the logging level
1211 respectively. Man page help from jmc, ok deraadt jmc
Darren Tucker3ee50c52012-09-06 21:18:11 +10001212
Darren Tucker23e4b802012-08-30 10:42:47 +1000121320120830
1214 - (dtucker) [moduli] Import new moduli file.
1215
Darren Tucker31854182012-08-28 19:57:19 +1000121620120828
Damien Miller4eb0a532012-08-29 10:26:20 +10001217 - (djm) Release openssh-6.1
1218
121920120828
Darren Tucker31854182012-08-28 19:57:19 +10001220 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] define WIN32_LEAN_AND_MEAN
1221 for compatibility with future mingw-w64 headers. Patch from vinschen at
1222 redhat com.
1223
Damien Miller39a9d2c2012-08-22 21:57:13 +1000122420120822
1225 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
1226 [contrib/suse/openssh.spec] Update version numbers
1227
Damien Miller709a1e92012-07-31 12:20:43 +1000122820120731
1229 - (djm) OpenBSD CVS Sync
1230 - jmc@cvs.openbsd.org 2012/07/06 06:38:03
1231 [ssh-keygen.c]
1232 missing full stop in usage();
Damien Miller5a5c2b92012-07-31 12:21:34 +10001233 - djm@cvs.openbsd.org 2012/07/10 02:19:15
1234 [servconf.c servconf.h sshd.c sshd_config]
1235 Turn on systrace sandboxing of pre-auth sshd by default for new installs
1236 by shipping a config that overrides the current UsePrivilegeSeparation=yes
1237 default. Make it easier to flip the default in the future by adding too.
Damien Miller1cce1032012-07-31 12:22:18 +10001238 prodded markus@ feedback dtucker@ "get it in" deraadt@
Damien Miller46cb75a2012-07-31 12:22:37 +10001239 - dtucker@cvs.openbsd.org 2012/07/13 01:35:21
1240 [servconf.c]
1241 handle long comments in config files better. bz#2025, ok markus
Damien Miller38fe6622012-07-31 12:23:16 +10001242 - markus@cvs.openbsd.org 2012/07/22 18:19:21
1243 [version.h]
1244 openssh 6.1
Damien Miller709a1e92012-07-31 12:20:43 +10001245
Darren Tuckerd809a4b2012-07-20 10:42:06 +1000124620120720
1247 - (dtucker) Import regened moduli file.
1248
Damien Millera0433a72012-07-06 10:27:10 +1000124920120706
1250 - (djm) [sandbox-seccomp-filter.c] fallback to rlimit if seccomp filter is
1251 not available. Allows use of sshd compiled on host with a filter-capable
1252 kernel on hosts that lack the support. bz#2011 ok dtucker@
Damien Miller77eab7b2012-07-06 11:49:28 +10001253 - (djm) [configure.ac] Recursively expand $(bindir) to ensure it has no
1254 unexpanded $(prefix) embedded. bz#2007 patch from nix-corp AT
1255 esperi.org.uk; ok dtucker@
Damien Millerdfceafe2012-07-06 13:44:19 +10001256- (djm) OpenBSD CVS Sync
1257 - dtucker@cvs.openbsd.org 2012/07/06 00:41:59
1258 [moduli.c ssh-keygen.1 ssh-keygen.c]
1259 Add options to specify starting line number and number of lines to process
1260 when screening moduli candidates. This allows processing of different
1261 parts of a candidate moduli file in parallel. man page help jmc@, ok djm@
Damien Millerab523b02012-07-06 13:44:43 +10001262 - djm@cvs.openbsd.org 2012/07/06 01:37:21
1263 [mux.c]
1264 fix memory leak of passed-in environment variables and connection
1265 context when new session message is malformed; bz#2003 from Bert.Wesarg
1266 AT googlemail.com
Damien Millerfff9f092012-07-06 13:45:01 +10001267 - djm@cvs.openbsd.org 2012/07/06 01:47:38
1268 [ssh.c]
1269 move setting of tty_flag to after config parsing so RequestTTY options
1270 are correctly picked up. bz#1995 patch from przemoc AT gmail.com;
1271 ok dtucker@
Damien Millera0433a72012-07-06 10:27:10 +10001272
Darren Tucker34f702a2012-07-04 08:50:09 +1000127320120704
1274 - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] Add setlinebuf for
1275 platforms that don't have it. "looks good" tim@
1276
Darren Tucker60395f92012-07-03 14:31:18 +1000127720120703
1278 - (dtucker) [configure.ac] Detect platforms that can't use select(2) with
1279 setrlimit(RLIMIT_NOFILE, rl_zero) and disable the rlimit sandbox on those.
Darren Tuckerd545a4b2012-07-03 22:48:31 +10001280 - (dtucker) [configure.ac sandbox-rlimit.c] Test whether or not
1281 setrlimit(RLIMIT_FSIZE, rl_zero) and skip it if it's not supported. Its
1282 benefit is minor, so it's not worth disabling the sandbox if it doesn't
1283 work.
Darren Tucker60395f92012-07-03 14:31:18 +10001284
Darren Tuckerecbf14a2012-07-02 18:53:37 +1000128520120702
1286- (dtucker) OpenBSD CVS Sync
1287 - naddy@cvs.openbsd.org 2012/06/29 13:57:25
1288 [ssh_config.5 sshd_config.5]
1289 match the documented MAC order of preference to the actual one;
1290 ok dtucker@
Darren Tucker3b4b2d32012-07-02 18:54:31 +10001291 - markus@cvs.openbsd.org 2012/06/30 14:35:09
1292 [sandbox-systrace.c sshd.c]
1293 fix a during the load of the sandbox policies (child can still make
1294 the read-syscall and wait forever for systrace-answers) by replacing
1295 the read/write synchronisation with SIGSTOP/SIGCONT;
1296 report and help hshoexer@; ok djm@, dtucker@
Darren Tucker7b305012012-07-02 18:55:09 +10001297 - dtucker@cvs.openbsd.org 2012/07/02 08:50:03
1298 [ssh.c]
1299 set interactive ToS for forwarded X11 sessions. ok djm@
Darren Tucker4908d442012-07-02 22:15:38 +10001300 - dtucker@cvs.openbsd.org 2012/07/02 12:13:26
1301 [ssh-pkcs11-helper.c sftp-client.c]
1302 fix a couple of "assigned but not used" warnings. ok markus@
Darren Tucker369ceed2012-07-03 00:53:18 +10001303 - dtucker@cvs.openbsd.org 2012/07/02 14:37:06
1304 [regress/connect-privsep.sh]
1305 remove exit from end of test since it prevents reporting failure
Darren Tuckerec1e15d2012-07-03 01:06:49 +10001306 - (dtucker) [regress/reexec.sh regress/sftp-cmds.sh regress/test-exec.sh]
1307 Move cygwin detection to test-exec and use to skip reexec test on cygwin.
Darren Tucker6ea5dc62012-07-03 01:11:28 +10001308 - (dtucker) [regress/test-exec.sh] Correct uname for cygwin/w2k.
Darren Tuckerecbf14a2012-07-02 18:53:37 +10001309
Damien Miller97f43bb2012-06-30 08:32:29 +1000131020120629
1311 - OpenBSD CVS Sync
1312 - dtucker@cvs.openbsd.org 2012/06/21 00:16:07
1313 [addrmatch.c]
1314 fix strlcpy truncation check. from carsten at debian org, ok markus
Damien Miller5f58a872012-06-30 08:33:17 +10001315 - dtucker@cvs.openbsd.org 2012/06/22 12:30:26
1316 [monitor.c sshconnect2.c]
1317 remove dead code following 'for (;;)' loops.
1318 From Steve.McClellan at radisys com, ok markus@
Damien Millerea858292012-06-30 08:33:32 +10001319 - dtucker@cvs.openbsd.org 2012/06/22 14:36:33
1320 [sftp.c]
1321 Remove unused variable leftover from tab-completion changes.
1322 From Steve.McClellan at radisys com, ok markus@
Damien Miller560de922012-06-30 08:33:53 +10001323 - dtucker@cvs.openbsd.org 2012/06/26 11:02:30
1324 [sandbox-systrace.c]
1325 Add mquery to the list of allowed syscalls for "UsePrivilegeSeparation
1326 sandbox" since malloc now uses it. From johnw.mail at gmail com.
Damien Millerdb4f8e82012-06-30 08:34:59 +10001327 - dtucker@cvs.openbsd.org 2012/06/28 05:07:45
1328 [mac.c myproposal.h ssh_config.5 sshd_config.5]
1329 Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed
1330 from draft6 of the spec and will not be in the RFC when published. Patch
1331 from mdb at juniper net via bz#2023, ok markus.
Damien Milleree3c1962012-06-30 08:35:59 +10001332 - naddy@cvs.openbsd.org 2012/06/29 13:57:25
1333 [ssh_config.5 sshd_config.5]
1334 match the documented MAC order of preference to the actual one; ok dtucker@
Darren Tucker30139032012-06-30 15:01:22 +10001335 - dtucker@cvs.openbsd.org 2012/05/13 01:42:32
1336 [regress/addrmatch.sh]
1337 Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests
1338 to match. Feedback and ok djm@ markus@.
Darren Tucker4430a862012-06-30 15:03:28 +10001339 - djm@cvs.openbsd.org 2012/06/01 00:47:35
Darren Tucker2920bc12012-06-30 15:06:28 +10001340 [regress/multiplex.sh regress/forwarding.sh]
Darren Tucker4430a862012-06-30 15:03:28 +10001341 append to rather than truncate test log; bz#2013 from openssh AT
1342 roumenpetrov.info
Darren Tuckerff32d7c2012-06-30 15:04:13 +10001343 - djm@cvs.openbsd.org 2012/06/01 00:52:52
Darren Tucker2920bc12012-06-30 15:06:28 +10001344 [regress/sftp-cmds.sh]
Darren Tuckerff32d7c2012-06-30 15:04:13 +10001345 don't delete .* on cleanup due to unintended env expansion; pointed out in
1346 bz#2014 by openssh AT roumenpetrov.info
Darren Tucker2920bc12012-06-30 15:06:28 +10001347 - dtucker@cvs.openbsd.org 2012/06/26 12:06:59
1348 [regress/connect-privsep.sh]
1349 test sandbox with every malloc option
Darren Tuckera08c2072012-06-30 15:08:53 +10001350 - dtucker@cvs.openbsd.org 2012/06/28 05:07:45
1351 [regress/try-ciphers.sh regress/cipher-speed.sh]
1352 Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed
1353 from draft6 of the spec and will not be in the RFC when published. Patch
1354 from mdb at juniper net via bz#2023, ok markus.
Darren Tucker3886f952012-06-30 19:47:01 +10001355 - (dtucker) [myproposal.h] Remove trailing backslash to fix compile error.
Darren Tucker14a9d252012-06-30 20:05:02 +10001356 - (dtucker) [key.c] ifdef out sha256 key types on platforms that don't have
1357 the required functions in libcrypto.
Damien Miller97f43bb2012-06-30 08:32:29 +10001358
Darren Tucker8908da72012-06-28 15:21:32 +1000135920120628
1360 - (dtucker) [openbsd-compat/getrrsetbyname-ldns.c] bz #2022: prevent null
1361 pointer deref in the client when built with LDNS and using DNSSEC with a
1362 CNAME. Patch from gregdlg+mr at hochet info.
1363
Darren Tucker62dcd632012-06-22 22:02:42 +1000136420120622
1365 - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as
1366 can logon as a service. Patch from vinschen at redhat com.
1367
Damien Millerefc6fc92012-06-20 21:44:56 +1000136820120620
1369 - (djm) OpenBSD CVS Sync
1370 - djm@cvs.openbsd.org 2011/12/02 00:41:56
1371 [mux.c]
1372 fix bz#1948: ssh -f doesn't fork for multiplexed connection.
1373 ok dtucker@
Damien Miller140df632012-06-20 21:46:57 +10001374 - djm@cvs.openbsd.org 2011/12/04 23:16:12
1375 [mux.c]
1376 revert:
1377 > revision 1.32
1378 > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1
1379 > fix bz#1948: ssh -f doesn't fork for multiplexed connection.
1380 > ok dtucker@
1381 it interacts badly with ControlPersist
Damien Millerac58ce82012-06-20 21:50:47 +10001382 - djm@cvs.openbsd.org 2012/01/07 21:11:36
1383 [mux.c]
1384 fix double-free in new session handler
1385 NB. Id sync only
Damien Miller3bde12a2012-06-20 21:51:11 +10001386 - djm@cvs.openbsd.org 2012/05/23 03:28:28
1387 [dns.c dns.h key.c key.h ssh-keygen.c]
1388 add support for RFC6594 SSHFP DNS records for ECDSA key types.
1389 patch from bugzilla-m67 AT nulld.me in bz#1978; ok + tweak markus@
Darren Tucker86dc9b42012-09-07 18:08:23 +10001390 (Original authors Ondřej Surý, Ondřej Caletka and Daniel Black)
Damien Miller7f121572012-06-20 21:51:29 +10001391 - djm@cvs.openbsd.org 2012/06/01 00:49:35
1392 [PROTOCOL.mux]
1393 correct types of port numbers (integers, not strings); bz#2004 from
1394 bert.wesarg AT googlemail.com
Damien Miller2e7decf2012-06-20 21:52:00 +10001395 - djm@cvs.openbsd.org 2012/06/01 01:01:22
1396 [mux.c]
1397 fix memory leak when mux socket creation fails; bz#2002 from bert.wesarg
1398 AT googlemail.com
Damien Miller276dcfd2012-06-20 21:52:18 +10001399 - dtucker@cvs.openbsd.org 2012/06/18 11:43:53
1400 [jpake.c]
1401 correct sizeof usage. patch from saw at online.de, ok deraadt
Damien Miller71924332012-06-20 21:52:38 +10001402 - dtucker@cvs.openbsd.org 2012/06/18 11:49:58
1403 [ssh_config.5]
1404 RSA instead of DSA twice. From Steve.McClellan at radisys com
Damien Millerb9902cf2012-06-20 21:52:58 +10001405 - dtucker@cvs.openbsd.org 2012/06/18 12:07:07
1406 [ssh.1 sshd.8]
1407 Remove mention of 'three' key files since there are now four. From
1408 Steve.McClellan at radisys com.
Damien Miller36378c62012-06-20 21:53:25 +10001409 - dtucker@cvs.openbsd.org 2012/06/18 12:17:18
1410 [ssh.1]
1411 Clarify description of -W. Noted by Steve.McClellan at radisys com,
1412 ok jmc
Damien Millerc24da772012-06-20 21:53:58 +10001413 - markus@cvs.openbsd.org 2012/06/19 18:25:28
1414 [servconf.c servconf.h sshd_config.5]
1415 sshd_config: extend Match to allow AcceptEnv and {Allow,Deny}{Users,Groups}
1416 this allows 'Match LocalPort 1022' combined with 'AllowUser bauer'
1417 ok djm@ (back in March)
Damien Millerf8268502012-06-20 21:54:15 +10001418 - jmc@cvs.openbsd.org 2012/06/19 21:35:54
1419 [sshd_config.5]
1420 tweak previous; ok markus
Damien Miller6c6da332012-06-20 22:31:26 +10001421 - djm@cvs.openbsd.org 2012/06/20 04:42:58
1422 [clientloop.c serverloop.c]
1423 initialise accept() backoff timer to avoid EINVAL from select(2) in
1424 rekeying
Damien Millerefc6fc92012-06-20 21:44:56 +10001425
Darren Tuckerd0494fd2012-05-19 14:25:39 +1000142620120519
1427 - (dtucker) [configure.ac] bz#2010: fix non-portable shell construct. Patch
1428 from cjwatson at debian org.
Darren Tucker59353892012-05-19 15:24:37 +10001429 - (dtucker) [configure.ac contrib/Makefile] bz#1996: use AC_PATH_TOOL to find
1430 pkg-config so it does the right thing when cross-compiling. Patch from
1431 cjwatson at debian org.
Darren Tuckerfbcf8272012-05-19 19:37:01 +10001432- (dtucker) OpenBSD CVS Sync
1433 - dtucker@cvs.openbsd.org 2012/05/13 01:42:32
1434 [servconf.h servconf.c sshd.8 sshd.c auth.c sshd_config.5]
1435 Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests
1436 to match. Feedback and ok djm@ markus@.
Darren Tuckerba9ea322012-05-19 19:37:33 +10001437 - dtucker@cvs.openbsd.org 2012/05/19 06:30:30
1438 [sshd_config.5]
1439 Document PermitOpen none. bz#2001, patch from Loganaden Velvindron
Darren Tuckerd0494fd2012-05-19 14:25:39 +10001440
Darren Tuckere1a3ddf2012-05-04 11:05:45 +1000144120120504
1442 - (dtucker) [configure.ac] Include <sys/param.h> rather than <sys/types.h>
1443 to fix building on some plaforms. Fom bowman at math utah edu and
1444 des at des no.
1445
Darren Tuckerd0d3fff2012-04-27 10:55:39 +1000144620120427
1447 - (dtucker) [regress/addrmatch.sh] skip tests when running on a non-ipv6
1448 platform rather than exiting early, so that we still clean up and return
1449 success or failure to test-exec.sh
1450
Damien Miller7584cb12012-04-26 09:51:26 +1000145120120426
1452 - (djm) [auth-passwd.c] Handle crypt() returning NULL; from Paul Wouters
1453 via Niels
Damien Miller025bfd12012-04-26 09:52:15 +10001454 - (djm) [auth-krb5.c] Save errno across calls that might modify it;
1455 ok dtucker@
Damien Miller7584cb12012-04-26 09:51:26 +10001456
Damien Millerba77e1f2012-04-23 18:21:05 +1000145720120423
1458 - OpenBSD CVS Sync
1459 - djm@cvs.openbsd.org 2012/04/23 08:18:17
1460 [channels.c]
1461 fix function proto/source mismatch
1462
Damien Millera563cce2012-04-22 11:07:28 +1000146320120422
1464 - OpenBSD CVS Sync
1465 - djm@cvs.openbsd.org 2012/02/29 11:21:26
1466 [ssh-keygen.c]
1467 allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@
Damien Miller29cd1882012-04-22 11:08:10 +10001468 - guenther@cvs.openbsd.org 2012/03/15 03:10:27
1469 [session.c]
1470 root should always be excluded from the test for /etc/nologin instead
1471 of having it always enforced even when marked as ignorenologin. This
1472 regressed when the logic was incompletely flipped around in rev 1.251
1473 ok halex@ millert@
Damien Miller48348fc2012-04-22 11:08:30 +10001474 - djm@cvs.openbsd.org 2012/03/28 07:23:22
1475 [PROTOCOL.certkeys]
1476 explain certificate extensions/crit split rationale. Mention requirement
1477 that each appear at most once per cert.
Damien Millerc6081482012-04-22 11:18:53 +10001478 - dtucker@cvs.openbsd.org 2012/03/29 23:54:36
1479 [channels.c channels.h servconf.c]
1480 Add PermitOpen none option based on patch from Loganaden Velvindron
1481 (bz #1949). ok djm@
Damien Millera6508752012-04-22 11:21:10 +10001482 - djm@cvs.openbsd.org 2012/04/11 13:16:19
1483 [channels.c channels.h clientloop.c serverloop.c]
1484 don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a
1485 while; ok deraadt@ markus@
Damien Miller9fed1612012-04-22 11:21:43 +10001486 - djm@cvs.openbsd.org 2012/04/11 13:17:54
1487 [auth.c]
1488 Support "none" as an argument for AuthorizedPrincipalsFile to indicate
1489 no file should be read.
Damien Millera116d132012-04-22 11:23:46 +10001490 - djm@cvs.openbsd.org 2012/04/11 13:26:40
1491 [sshd.c]
1492 don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a
1493 while; ok deraadt@ markus@
Damien Miller839f7432012-04-22 11:24:21 +10001494 - djm@cvs.openbsd.org 2012/04/11 13:34:17
1495 [ssh-keyscan.1 ssh-keyscan.c]
1496 now that sshd defaults to offering ECDSA keys, ssh-keyscan should also
1497 look for them by default; bz#1971
Damien Miller23528812012-04-22 11:24:43 +10001498 - djm@cvs.openbsd.org 2012/04/12 02:42:32
1499 [servconf.c servconf.h sshd.c sshd_config sshd_config.5]
1500 VersionAddendum option to allow server operators to append some arbitrary
1501 text to the SSH-... banner; ok deraadt@ "don't care" markus@
Damien Miller8fef9eb2012-04-22 11:25:10 +10001502 - djm@cvs.openbsd.org 2012/04/12 02:43:55
1503 [sshd_config sshd_config.5]
1504 mention AuthorizedPrincipalsFile=none default
Damien Miller49223152012-04-22 11:25:47 +10001505 - djm@cvs.openbsd.org 2012/04/20 03:24:23
1506 [sftp.c]
1507 setlinebuf(3) is more readable than setvbuf(.., _IOLBF, ...)
Damien Miller70b2d552012-04-22 11:26:10 +10001508 - jmc@cvs.openbsd.org 2012/04/20 16:26:22
1509 [ssh.1]
1510 use "brackets" instead of "braces", for consistency;
Damien Millera563cce2012-04-22 11:07:28 +10001511
Damien Miller8beb3202012-04-20 10:58:34 +1000151220120420
1513 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
1514 [contrib/suse/openssh.spec] Update for release 6.0
Damien Millerbf230412012-04-20 14:11:04 +10001515 - (djm) [README] Update URL to release notes.
Damien Millerd5dacb42012-04-20 15:01:01 +10001516 - (djm) Release openssh-6.0
Damien Miller8beb3202012-04-20 10:58:34 +10001517
Damien Miller398c0ff2012-04-19 21:46:35 +1000151820120419
1519 - (djm) [configure.ac] Fix compilation error on FreeBSD, whose libutil
1520 contains openpty() but not login()
1521
Damien Millere0956e32012-04-04 11:27:54 +1000152220120404
1523 - (djm) [Makefile.in configure.ac sandbox-seccomp-filter.c] Add sandbox
1524 mode for Linux's new seccomp filter; patch from Will Drewry; feedback
1525 and ok dtucker@
1526
Darren Tucker67ccc862012-03-30 10:19:56 +1100152720120330
1528 - (dtucker) [contrib/redhat/openssh.spec] Bug #1992: remove now-gone WARNING
1529 file from spec file. From crighter at nuclioss com.
Damien Miller4d557342012-03-30 11:34:27 +11001530 - (djm) [entropy.c] bz#1991: relax OpenSSL version test to allow running
1531 openssh binaries on a newer fix release than they were compiled on.
1532 with and ok dtucker@
Damien Millerce1ec9d2012-03-30 14:07:05 +11001533 - (djm) [openbsd-compat/bsd-cygwin_util.h] #undef _WIN32 to avoid incorrect
1534 assumptions when building on Cygwin; patch from Corinna Vinschen
Darren Tucker67ccc862012-03-30 10:19:56 +11001535
Damien Miller7bf7b882012-03-09 10:25:16 +1100153620120309
1537 - (djm) [openbsd-compat/port-linux.c] bz#1960: fix crash on SELinux
1538 systems where sshd is run in te wrong context. Patch from Sven
1539 Vermeulen; ok dtucker@
Damien Miller54c38d22012-03-09 10:28:07 +11001540 - (djm) [packet.c] bz#1963: Fix IPQoS not being set on non-mapped v4-in-v6
1541 addressed connections. ok dtucker@
Damien Miller7bf7b882012-03-09 10:25:16 +11001542
Darren Tucker93a2d412012-02-24 10:40:41 +1100154320120224
1544 - (dtucker) [audit-bsm.c configure.ac] bug #1968: enable workarounds for BSM
1545 audit breakage in Solaris 11. Patch from Magnus Johansson.
1546
Tim Ricee3609c92012-02-14 10:03:30 -0800154720120215
1548 - (tim) [openbsd-compat/bsd-misc.h sshd.c] Fix conflicting return type for
1549 unsetenv due to rev 1.14 change to setenv.c. Cast unsetenv to void in sshd.c
1550 ok dtucker@
Tim Ricef79b5d32012-02-14 20:13:05 -08001551 - (tim) [defines.h] move chunk introduced in 1.125 before MAXPATHLEN so
1552 it actually works.
Tim Ricea3f297d2012-02-14 23:01:42 -08001553 - (tim) [regress/keytype.sh] stderr redirection needs to be inside back quote
1554 to work. Spotted by Angel Gonzalez
Tim Ricee3609c92012-02-14 10:03:30 -08001555
Damien Miller7b7901c2012-02-14 06:38:36 +1100155620120214
1557 - (djm) [openbsd-compat/bsd-cygwin_util.c] Add PROGRAMFILES to list of
1558 preserved Cygwin environment variables; from Corinna Vinschen
1559
Damien Millera2876db2012-02-11 08:16:06 +1100156020120211
1561 - (djm) OpenBSD CVS Sync
1562 - djm@cvs.openbsd.org 2012/01/05 00:16:56
1563 [monitor.c]
1564 memleak on error path
Damien Miller2ec03422012-02-11 08:16:28 +11001565 - djm@cvs.openbsd.org 2012/01/07 21:11:36
1566 [mux.c]
1567 fix double-free in new session handler
Damien Miller83ba8e62012-02-11 08:17:27 +11001568 - miod@cvs.openbsd.org 2012/01/08 13:17:11
1569 [ssh-ecdsa.c]
1570 Fix memory leak in ssh_ecdsa_verify(); from Loganaden Velvindron,
1571 ok markus@
Damien Millerfb12c6d2012-02-11 08:17:52 +11001572 - miod@cvs.openbsd.org 2012/01/16 20:34:09
1573 [ssh-pkcs11-client.c]
1574 Fix a memory leak in pkcs11_rsa_private_encrypt(), reported by Jan Klemkow.
1575 While there, be sure to buffer_clear() between send_msg() and recv_msg().
1576 ok markus@
Damien Miller8d60be52012-02-11 08:18:17 +11001577 - dtucker@cvs.openbsd.org 2012/01/18 21:46:43
1578 [clientloop.c]
1579 Ensure that $DISPLAY contains only valid characters before using it to
1580 extract xauth data so that it can't be used to play local shell
1581 metacharacter games. Report from r00t_ati at ihteam.net, ok markus.
Damien Miller1de2cfe2012-02-11 08:18:43 +11001582 - markus@cvs.openbsd.org 2012/01/25 19:26:43
1583 [packet.c]
1584 do not permit SSH2_MSG_SERVICE_REQUEST/ACCEPT during rekeying;
1585 ok dtucker@, djm@
Damien Miller5d007702012-02-11 08:19:02 +11001586 - markus@cvs.openbsd.org 2012/01/25 19:36:31
1587 [authfile.c]
1588 memleak in key_load_file(); from Jan Klemkow
Damien Miller72de9822012-02-11 08:19:21 +11001589 - markus@cvs.openbsd.org 2012/01/25 19:40:09
1590 [packet.c packet.h]
1591 packet_read_poll() is not used anymore.
Damien Millerdb854552012-02-11 08:19:44 +11001592 - markus@cvs.openbsd.org 2012/02/09 20:00:18
1593 [version.h]
1594 move from 6.0-beta to 6.0
Damien Millera2876db2012-02-11 08:16:06 +11001595
Damien Millerb56e4932012-02-06 07:41:27 +1100159620120206
1597 - (djm) [ssh-keygen.c] Don't fail in do_gen_all_hostkeys on platforms
1598 that don't support ECC. Patch from Phil Oleson
Darren Tuckere9b3ad72012-01-17 14:03:34 +11001599
Damien Miller5360dff2011-12-19 10:51:11 +1100160020111219
1601 - OpenBSD CVS Sync
1602 - djm@cvs.openbsd.org 2011/12/02 00:41:56
1603 [mux.c]
1604 fix bz#1948: ssh -f doesn't fork for multiplexed connection.
1605 ok dtucker@
Damien Millerd0e582c2011-12-19 10:51:39 +11001606 - djm@cvs.openbsd.org 2011/12/02 00:43:57
1607 [mac.c]
1608 fix bz#1934: newer OpenSSL versions will require HMAC_CTX_Init before
1609 HMAC_init (this change in policy seems insane to me)
1610 ok dtucker@
Damien Miller913ddff2011-12-19 10:52:21 +11001611 - djm@cvs.openbsd.org 2011/12/04 23:16:12
1612 [mux.c]
1613 revert:
1614 > revision 1.32
1615 > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1
1616 > fix bz#1948: ssh -f doesn't fork for multiplexed connection.
1617 > ok dtucker@
1618 it interacts badly with ControlPersist
Damien Miller8ed4de82011-12-19 10:52:50 +11001619 - djm@cvs.openbsd.org 2011/12/07 05:44:38
1620 [auth2.c dh.c packet.c roaming.h roaming_client.c roaming_common.c]
1621 fix some harmless and/or unreachable int overflows;
1622 reported Xi Wang, ok markus@
Damien Miller5360dff2011-12-19 10:51:11 +11001623
Damien Miller47d81152011-11-25 13:53:48 +1100162420111125
1625 - OpenBSD CVS Sync
1626 - oga@cvs.openbsd.org 2011/11/16 12:24:28
1627 [sftp.c]
1628 Don't leak list in complete_cmd_parse if there are no commands found.
1629 Discovered when I was ``borrowing'' this code for something else.
1630 ok djm@
1631
Darren Tucker4a725ef2011-11-21 16:38:48 +1100163220111121
1633 - (dtucker) [configure.ac] Set _FORTIFY_SOURCE. ok djm@
1634
Darren Tucker45c66d72011-11-04 10:50:40 +1100163520111104
1636 - (dtucker) OpenBSD CVS Sync
1637 - djm@cvs.openbsd.org 2011/10/18 05:15:28
1638 [ssh.c]
1639 ssh(1): skip attempting to create ~/.ssh when -F is passed; ok markus@
Darren Tuckere68cf842011-11-04 10:51:51 +11001640 - djm@cvs.openbsd.org 2011/10/18 23:37:42
1641 [ssh-add.c]
1642 add -k to usage(); reminded by jmc@
Darren Tucker9ee09cf2011-11-04 10:52:43 +11001643 - djm@cvs.openbsd.org 2011/10/19 00:06:10
1644 [moduli.c]
1645 s/tmpfile/tmp/ to make this -Wshadow clean
Darren Tucker8a057952011-11-04 10:53:31 +11001646 - djm@cvs.openbsd.org 2011/10/19 10:39:48
1647 [umac.c]
1648 typo in comment; patch from Michael W. Bombardieri
Darren Tucker2d6665d2011-11-04 10:54:22 +11001649 - djm@cvs.openbsd.org 2011/10/24 02:10:46
1650 [ssh.c]
1651 bz#1943: unbreak stdio forwarding when ControlPersist is in user - ssh
1652 was incorrectly requesting the forward in both the control master and
1653 slave. skip requesting it in the master to fix. ok markus@
Darren Tucker9c5d5532011-11-04 10:55:24 +11001654 - djm@cvs.openbsd.org 2011/10/24 02:13:13
1655 [session.c]
1656 bz#1859: send tty break to pty master instead of (probably already
1657 closed) slave side; "looks good" markus@
Darren Tuckerbe4032b2011-11-04 11:16:06 +11001658 - dtucker@cvs.openbsd.org 011/11/04 00:09:39
1659 [moduli]
1660 regenerated moduli file; ok deraadt
Darren Tuckeraa3cbd12011-11-04 11:25:24 +11001661 - (dtucker) [INSTALL LICENCE configure.ac openbsd-compat/Makefile.in
1662 openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/getrrsetbyname.c]
1663 bz 1320: Add optional support for LDNS, a BSD licensed DNS resolver library
1664 which supports DNSSEC. Patch from Simon Vallet (svallet at genoscope cns fr)
1665 with some rework from myself and djm. ok djm.
Darren Tucker45c66d72011-11-04 10:50:40 +11001666
Darren Tucker9f157ab2011-10-25 09:37:57 +1100166720111025
1668 - (dtucker) [contrib/cygwin/Makefile] Continue if installing a doc file
1669 fails. Patch from Corinna Vinschen.
1670
Damien Millerd3e69902011-10-18 16:04:57 +1100167120111018
1672 - (djm) OpenBSD CVS Sync
1673 - djm@cvs.openbsd.org 2011/10/04 14:17:32
1674 [sftp-glob.c]
1675 silence error spam for "ls */foo" in directory with files; bz#1683
Damien Miller390d0562011-10-18 16:05:19 +11001676 - dtucker@cvs.openbsd.org 2011/10/16 11:02:46
1677 [moduli.c ssh-keygen.1 ssh-keygen.c]
1678 Add optional checkpoints for moduli screening. feedback & ok deraadt
Damien Miller927d82b2011-10-18 16:05:38 +11001679 - jmc@cvs.openbsd.org 2011/10/16 15:02:41
1680 [ssh-keygen.c]
1681 put -K in the right place (usage());
Damien Miller91f3eae2011-10-18 16:05:55 +11001682 - stsp@cvs.openbsd.org 2011/10/16 15:51:39
1683 [moduli.c]
1684 add missing includes to unbreak tree; fix from rpointel
Damien Millerc51a5ab2011-10-18 16:06:14 +11001685 - djm@cvs.openbsd.org 2011/10/18 04:58:26
1686 [auth-options.c key.c]
1687 remove explict search for \0 in packet strings, this job is now done
1688 implicitly by buffer_get_cstring; ok markus
Damien Miller8f4279e2011-10-18 16:06:33 +11001689 - djm@cvs.openbsd.org 2011/10/18 05:00:48
1690 [ssh-add.1 ssh-add.c]
1691 new "ssh-add -k" option to load plain keys (skipping certificates);
1692 "looks ok" markus@
Damien Millerd3e69902011-10-18 16:04:57 +11001693
169420111001
Darren Tucker036876c2011-10-01 18:46:12 +10001695 - (dtucker) [openbsd-compat/mktemp.c] Fix compiler warning. ok djm
Darren Tucker1338b9e2011-10-02 18:57:35 +11001696 - (dtucker) OpenBSD CVS Sync
1697 - dtucker@cvs.openbsd.org 2011/09/23 00:22:04
1698 [channels.c auth-options.c servconf.c channels.h sshd.8]
1699 Add wildcard support to PermitOpen, allowing things like "PermitOpen
1700 localhost:*". bz #1857, ok djm markus.
Darren Tucker68afb8c2011-10-02 18:59:03 +11001701 - markus@cvs.openbsd.org 2011/09/23 07:45:05
1702 [mux.c readconf.h channels.h compat.h compat.c ssh.c readconf.c channels.c
1703 version.h]
1704 unbreak remote portforwarding with dynamic allocated listen ports:
1705 1) send the actual listen port in the open message (instead of 0).
1706 this allows multiple forwardings with a dynamic listen port
1707 2) update the matching permit-open entry, so we can identify where
1708 to connect to
1709 report: den at skbkontur.ru and P. Szczygielski
1710 feedback and ok djm@
Darren Tuckeraf1a60e2011-10-02 18:59:59 +11001711 - djm@cvs.openbsd.org 2011/09/25 05:44:47
1712 [auth2-pubkey.c]
1713 improve the AuthorizedPrincipalsFile debug log message to include
1714 file and line number
Darren Tucker95125e52011-10-02 19:09:07 +11001715 - dtucker@cvs.openbsd.org 2011/09/30 00:47:37
1716 [sshd.c]
1717 don't attempt privsep cleanup when not using privsep; ok markus@
Darren Tucker2e135602011-10-02 19:10:13 +11001718 - djm@cvs.openbsd.org 2011/09/30 21:22:49
1719 [sshd.c]
1720 fix inverted test that caused logspam; spotted by henning@
Darren Tucker036876c2011-10-01 18:46:12 +10001721
Damien Miller5ffe1c42011-09-29 11:11:51 +1000172220110929
1723 - (djm) [configure.ac defines.h] No need to detect sizeof(char); patch
1724 from des AT des.no
Darren Tuckerb54f50e2011-09-29 23:17:18 +10001725 - (dtucker) [configure.ac openbsd-compat/Makefile.in
1726 openbsd-compat/strnlen.c] Add strnlen to the compat library.
Damien Miller5ffe1c42011-09-29 11:11:51 +10001727
Damien Milleradd1e202011-09-23 10:38:01 +1000172820110923
Damien Milleracdf3fb2011-09-23 10:40:50 +10001729 - (djm) [openbsd-compat/getcwd.c] Remove OpenBSD rcsid marker since we no
1730 longer want to sync this file (OpenBSD uses a __getcwd syscall now, we
1731 want this longhand version)
Damien Millercd927902011-09-23 10:44:03 +10001732 - (djm) [openbsd-compat/getgrouplist.c] Remove OpenBSD rcsid marker: the
1733 upstream version is YPified and we don't want this
Damien Miller48886712011-09-23 10:56:29 +10001734 - (djm) [openbsd-compat/mktemp.c] forklift upgrade to -current version.
1735 The file was totally rewritten between what we had in tree and -current.
Damien Miller64efe962011-09-23 11:13:00 +10001736 - (djm) [openbsd-compat/sha2.c openbsd-compat/sha2.h] Remove OpenBSD rcsid
1737 marker. The upstream API has changed (function and structure names)
1738 enough to put it out of sync with other providers of this interface.
Damien Millerd1a74582011-09-23 11:26:34 +10001739 - (djm) [openbsd-compat/setenv.c] Forklift upgrade, including inclusion
1740 of static __findenv() function from upstream setenv.c
Damien Milleradd1e202011-09-23 10:38:01 +10001741 - OpenBSD CVS Sync
1742 - millert@cvs.openbsd.org 2006/05/05 15:27:38
Damien Milleracdf3fb2011-09-23 10:40:50 +10001743 [openbsd-compat/strlcpy.c]
Damien Milleradd1e202011-09-23 10:38:01 +10001744 Convert do {} while loop -> while {} for clarity. No binary change
1745 on most architectures. From Oliver Smith. OK deraadt@ and henning@
Damien Miller834e8202011-09-23 10:42:02 +10001746 - tobias@cvs.openbsd.org 2007/10/21 11:09:30
Damien Miller3e6fe872011-09-23 11:16:09 +10001747 [openbsd-compat/mktemp.c]
Damien Miller834e8202011-09-23 10:42:02 +10001748 Comment fix about time consumption of _gettemp.
1749 FreeBSD did this in revision 1.20.
1750 OK deraadt@, krw@
Damien Millerdc0e09b2011-09-23 10:46:48 +10001751 - deraadt@cvs.openbsd.org 2008/07/22 21:47:45
Damien Miller3e6fe872011-09-23 11:16:09 +10001752 [openbsd-compat/mktemp.c]
Damien Millerdc0e09b2011-09-23 10:46:48 +10001753 use arc4random_uniform(); ok djm millert
Damien Miller3a359b32011-09-23 10:47:29 +10001754 - millert@cvs.openbsd.org 2008/08/21 16:54:44
Damien Miller3e6fe872011-09-23 11:16:09 +10001755 [openbsd-compat/mktemp.c]
Damien Miller3a359b32011-09-23 10:47:29 +10001756 Remove useless code, the kernel will set errno appropriately if an
1757 element in the path does not exist. OK deraadt@ pvalchev@
Damien Miller3e6fe872011-09-23 11:16:09 +10001758 - otto@cvs.openbsd.org 2008/12/09 19:38:38
1759 [openbsd-compat/inet_ntop.c]
1760 fix inet_ntop(3) prototype; ok millert@ libc to be bumbed very soon
Damien Milleradd1e202011-09-23 10:38:01 +10001761
Damien Millere01a6272011-09-22 21:20:21 +1000176220110922
1763 - OpenBSD CVS Sync
1764 - pyr@cvs.openbsd.org 2011/05/12 07:15:10
1765 [openbsd-compat/glob.c]
1766 When the max number of items for a directory has reached GLOB_LIMIT_READDIR
1767 an error is returned but closedir() is not called.
1768 spotted and fix provided by Frank Denis obsd-tech@pureftpd.org
1769 ok otto@, millert@
Damien Millerc4bf7dd2011-09-22 21:21:48 +10001770 - stsp@cvs.openbsd.org 2011/09/20 10:18:46
1771 [glob.c]
1772 In glob(3), limit recursion during matching attempts. Similar to
1773 fnmatch fix. Also collapse consecutive '*' (from NetBSD).
1774 ok miod deraadt
Damien Millere128a502011-09-22 21:22:21 +10001775 - djm@cvs.openbsd.org 2011/09/22 06:27:29
1776 [glob.c]
1777 fix GLOB_KEEPSTAT without GLOB_NOSORT; the implicit sort was being
1778 applied only to the gl_pathv vector and not the corresponding gl_statv
1779 array. reported in OpenSSH bz#1935; feedback and okay matthew@
Damien Millerefad7272011-09-22 21:33:53 +10001780 - djm@cvs.openbsd.org 2011/08/26 01:45:15
1781 [ssh.1]
1782 Add some missing ssh_config(5) options that can be used in ssh(1)'s
1783 -o argument. Patch from duclare AT guu.fi
Damien Millere5777722011-09-22 21:34:15 +10001784 - djm@cvs.openbsd.org 2011/09/05 05:56:13
1785 [scp.1 sftp.1]
1786 mention ControlPersist and KbdInteractiveAuthentication in the -o
1787 verbiage in these pages too (prompted by jmc@)
Damien Miller2918e032011-09-22 21:34:35 +10001788 - djm@cvs.openbsd.org 2011/09/05 05:59:08
1789 [misc.c]
1790 fix typo in IPQoS parsing: there is no "AF14" class, but there is
1791 an "AF21" class. Spotted by giesen AT snickers.org; ok markus stevesk
Damien Millere0296732011-09-22 21:34:56 +10001792 - jmc@cvs.openbsd.org 2011/09/05 07:01:44
1793 [scp.1]
1794 knock out a useless Ns;
Damien Miller6232a162011-09-22 21:36:00 +10001795 - deraadt@cvs.openbsd.org 2011/09/07 02:18:31
1796 [ssh-keygen.1]
1797 typo (they vs the) found by Lawrence Teo
Damien Millerf6e758c2011-09-22 21:37:13 +10001798 - djm@cvs.openbsd.org 2011/09/09 00:43:00
1799 [ssh_config.5 sshd_config.5]
1800 fix typo in IPQoS parsing: there is no "AF14" class, but there is
1801 an "AF21" class. Spotted by giesen AT snickers.org; ok markus stevesk
Damien Miller4cb855b2011-09-22 21:37:38 +10001802 - djm@cvs.openbsd.org 2011/09/09 00:44:07
1803 [PROTOCOL.mux]
1804 MUX_C_CLOSE_FWD includes forward type in message (though it isn't
1805 implemented anyway)
Damien Miller0603d982011-09-22 21:38:00 +10001806 - djm@cvs.openbsd.org 2011/09/09 22:37:01
1807 [scp.c]
1808 suppress adding '--' to remote commandlines when the first argument
1809 does not start with '-'. saves breakage on some difficult-to-upgrade
1810 embedded/router platforms; feedback & ok dtucker ok markus
Damien Miller9ee2c602011-09-22 21:38:30 +10001811 - djm@cvs.openbsd.org 2011/09/09 22:38:21
1812 [sshd.c]
1813 kill the preauth privsep child on fatal errors in the monitor;
1814 ok markus@
Damien Millerf6dff7c2011-09-22 21:38:52 +10001815 - djm@cvs.openbsd.org 2011/09/09 22:46:44
1816 [channels.c channels.h clientloop.h mux.c ssh.c]
1817 support for cancelling local and remote port forwards via the multiplex
1818 socket. Use ssh -O cancel -L xx:xx:xx -R yy:yy:yy user@host" to request
1819 the cancellation of the specified forwardings; ok markus@
Damien Millerff773642011-09-22 21:39:48 +10001820 - markus@cvs.openbsd.org 2011/09/10 22:26:34
1821 [channels.c channels.h clientloop.c ssh.1]
1822 support cancellation of local/dynamic forwardings from ~C commandline;
1823 ok & feedback djm@
Damien Miller1bcbd0a2011-09-22 21:40:45 +10001824 - okan@cvs.openbsd.org 2011/09/11 06:59:05
1825 [ssh.1]
1826 document new -O cancel command; ok djm@
Damien Miller3decdba2011-09-22 21:41:05 +10001827 - markus@cvs.openbsd.org 2011/09/11 16:07:26
1828 [sftp-client.c]
1829 fix leaks in do_hardlink() and do_readlink(); bz#1921
1830 from Loganaden Velvindron
Damien Miller57c38ac2011-09-22 21:42:45 +10001831 - markus@cvs.openbsd.org 2011/09/12 08:46:15
1832 [sftp-client.c]
1833 fix leak in do_lsreaddir(); ok djm
Damien Millerd7be70d2011-09-22 21:43:06 +10001834 - djm@cvs.openbsd.org 2011/09/22 06:29:03
1835 [sftp.c]
1836 don't let remote_glob() implicitly sort its results in do_globbed_ls() -
1837 in all likelihood, they will be resorted anyway
Damien Millere01a6272011-09-22 21:20:21 +10001838
Darren Tuckere8a82c52011-09-09 11:29:40 +1000183920110909
1840 - (dtucker) [entropy.h] Bug #1932: remove old definition of init_rng. From
1841 Colin Watson.
1842
Damien Millerfb9d8172011-09-07 09:11:53 +1000184320110906
1844 - (djm) [README version.h] Correct version
Damien Miller022ee242011-09-07 09:15:02 +10001845 - (djm) [contrib/redhat/openssh.spec] Correct restorcon => restorecon
1846 - (djm) Respin OpenSSH-5.9p1 release
Damien Millerfb9d8172011-09-07 09:11:53 +10001847
Damien Miller86dcd3e2011-09-05 10:29:04 +1000184820110905
1849 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
1850 [contrib/suse/openssh.spec] Update version numbers.
1851
Damien Miller6efd94f2011-09-04 19:04:16 +1000185220110904
1853 - (djm) [regress/connect-privsep.sh regress/test-exec.sh] demote fatal
1854 regress errors for the sandbox to warnings. ok tim dtucker
Darren Tucker0dd24e02011-09-04 19:59:26 +10001855 - (dtucker) [ssh-keygen.c ssh-pkcs11.c] Bug #1929: add null implementations
Damien Miller86dcd3e2011-09-05 10:29:04 +10001856 ofsh-pkcs11.cpkcs_init and pkcs_terminate for building without dlopen
1857 support.
Damien Miller6efd94f2011-09-04 19:04:16 +10001858
Damien Miller58ac11a2011-08-29 16:09:52 +1000185920110829
1860 - (djm) [openbsd-compat/port-linux.c] Suppress logging when attempting
1861 to switch SELinux context away from unconfined_t, based on patch from
1862 Jan Chadima; bz#1919 ok dtucker@
1863
Darren Tucker44383542011-08-28 04:50:16 +1000186420110827
1865 - (dtucker) [auth-skey.c] Add log.h to fix build --with-skey.
1866
Tim Ricea6e60612011-08-17 21:48:22 -0700186720110818
1868 - (tim) [configure.ac] Typo in error message spotted by Andy Tsouladze
1869
Tim Ricea1226822011-08-16 17:29:01 -0700187020110817
1871 - (tim) [mac.c myproposal.h] Wrap SHA256 and SHA512 in ifdefs for
1872 OpenSSL 0.9.7. ok djm
Damien Miller9c083122011-08-17 11:31:07 +10001873 - (djm) [ openbsd-compat/bsd-cygwin_util.c openbsd-compat/bsd-cygwin_util.h]
1874 binary_pipe is no longer required on Cygwin; patch from Corinna Vinschen
Damien Miller1a91c0f2011-08-17 11:59:25 +10001875 - (djm) [configure.ac] error out if the host lacks the necessary bits for
1876 an explicitly requested sandbox type
Damien Miller44a6c932011-08-17 12:01:44 +10001877 - (djm) [contrib/ssh-copy-id] Missing backlslash; spotted by
1878 bisson AT archlinux.org
Damien Miller9231c8b2011-08-17 12:08:15 +10001879 - (djm) OpenBSD CVS Sync
1880 - dtucker@cvs.openbsd.org 2011/06/03 05:35:10
1881 [regress/cfgmatch.sh]
1882 use OBJ to find test configs, patch from Tim Rice
Damien Millerfaf4d802011-08-17 12:09:19 +10001883 - markus@cvs.openbsd.org 2011/06/30 22:44:43
1884 [regress/connect-privsep.sh]
1885 test with sandbox enabled; ok djm@
Damien Miller062fa302011-08-17 12:10:02 +10001886 - djm@cvs.openbsd.org 2011/08/02 01:23:41
1887 [regress/cipher-speed.sh regress/try-ciphers.sh]
1888 add SHA256/SHA512 based HMAC modes
Damien Miller2df1bec2011-08-17 12:25:46 +10001889 - (djm) [regress/cipher-speed.sh regress/try-ciphers.sh] disable HMAC-SHA2
1890 MAC tests for platforms that hack EVP_SHA2 support
Tim Ricea1226822011-08-16 17:29:01 -07001891
Darren Tucker4d47ec92011-08-12 10:12:53 +1000189220110812
1893 - (dtucker) [openbsd-compat/port-linux.c] Bug 1924: Improve selinux context
1894 change error by reporting old and new context names Patch from
1895 jchadima at redhat.
Damien Miller2db99772011-08-12 11:02:35 +10001896 - (djm) [contrib/redhat/openssh.spec contrib/redhat/sshd.init]
1897 [contrib/suse/openssh.spec contrib/suse/rc.sshd] Updated RHEL and SLES
Damien Millerd1eb1dd2011-08-12 11:22:47 +10001898 init scrips from imorgan AT nas.nasa.gov; bz#1920
1899 - (djm) [contrib/ssh-copy-id] Fix failure for cases where the path to the
1900 identify file contained whitespace. bz#1828 patch from gwenael.lambrouin
1901 AT gmail.com; ok dtucker@
Darren Tucker4d47ec92011-08-12 10:12:53 +10001902
Darren Tucker578451d2011-08-07 23:09:20 +1000190320110807
1904 - (dtucker) OpenBSD CVS Sync
1905 - jmc@cvs.openbsd.org 2008/06/26 06:59:39
1906 [moduli.5]
1907 tweak previous;
Darren Tuckerf2794742011-08-07 23:10:11 +10001908 - sobrado@cvs.openbsd.org 2009/10/28 08:56:54
1909 [moduli.5]
1910 "Diffie-Hellman" is the usual spelling for the cryptographic protocol
1911 first published by Whitfield Diffie and Martin Hellman in 1976.
1912 ok jmc@
Darren Tucker91e6b572011-08-07 23:10:56 +10001913 - jmc@cvs.openbsd.org 2010/10/14 20:41:28
1914 [moduli.5]
1915 probabalistic -> probabilistic; from naddy
Darren Tuckerddccfb42011-08-07 23:12:26 +10001916 - dtucker@cvs.openbsd.org 2011/08/07 12:55:30
1917 [sftp.1]
1918 typo, fix from Laurent Gautrot
Darren Tucker578451d2011-08-07 23:09:20 +10001919
Damien Miller7741ce82011-08-06 06:15:15 +1000192020110805
1921 - OpenBSD CVS Sync
1922 - djm@cvs.openbsd.org 2011/06/23 23:35:42
1923 [monitor.c]
1924 ignore EINTR errors from poll()
Damien Miller6ea5e442011-08-06 06:16:00 +10001925 - tedu@cvs.openbsd.org 2011/07/06 18:09:21
1926 [authfd.c]
1927 bzero the agent address. the kernel was for a while very cranky about
1928 these things. evne though that's fixed, always good to initialize
1929 memory. ok deraadt djm
Damien Miller35e48192011-08-06 06:16:23 +10001930 - djm@cvs.openbsd.org 2011/07/29 14:42:45
1931 [sandbox-systrace.c]
1932 fail open(2) with EPERM rather than SIGKILLing the whole process. libc
1933 will call open() to do strerror() when NLS is enabled;
1934 feedback and ok markus@
Damien Milleradb467f2011-08-06 06:16:46 +10001935 - markus@cvs.openbsd.org 2011/08/01 19:18:15
1936 [gss-serv.c]
1937 prevent post-auth resource exhaustion (int overflow leading to 4GB malloc);
1938 report Adam Zabrock; ok djm@, deraadt@
Damien Miller20bd4532011-08-06 06:17:30 +10001939 - djm@cvs.openbsd.org 2011/08/02 01:22:11
1940 [mac.c myproposal.h ssh.1 ssh_config.5 sshd.8 sshd_config.5]
1941 Add new SHA256 and SHA512 based HMAC modes from
1942 http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt
1943 Patch from mdb AT juniper.net; feedback and ok markus@
Damien Millerc4718602011-08-06 06:17:48 +10001944 - djm@cvs.openbsd.org 2011/08/02 23:13:01
1945 [version.h]
1946 crank now, release later
Damien Miller765f8c42011-08-06 06:18:16 +10001947 - djm@cvs.openbsd.org 2011/08/02 23:15:03
1948 [ssh.c]
1949 typo in comment
Damien Miller7741ce82011-08-06 06:15:15 +10001950
Damien Millercd5e52e2011-06-27 07:18:18 +1000195120110624
1952 - (djm) [configure.ac Makefile.in sandbox-darwin.c] Add a sandbox for
1953 Darwin/OS X using sandbox_init() + setrlimit(); feedback and testing
1954 markus@
1955
Damien Miller82c55872011-06-23 08:20:30 +1000195620110623
1957 - OpenBSD CVS Sync
1958 - djm@cvs.openbsd.org 2011/06/22 21:47:28
1959 [servconf.c]
1960 reuse the multistate option arrays to pretty-print options for "sshd -T"
Damien Miller69ff1df2011-06-23 08:30:03 +10001961 - djm@cvs.openbsd.org 2011/06/22 21:57:01
1962 [servconf.c servconf.h sshd.c sshd_config.5]
1963 [configure.ac Makefile.in]
1964 introduce sandboxing of the pre-auth privsep child using systrace(4).
1965
1966 This introduces a new "UsePrivilegeSeparation=sandbox" option for
1967 sshd_config that applies mandatory restrictions on the syscalls the
1968 privsep child can perform. This prevents a compromised privsep child
1969 from being used to attack other hosts (by opening sockets and proxying)
1970 or probing local kernel attack surface.
1971
1972 The sandbox is implemented using systrace(4) in unsupervised "fast-path"
1973 mode, where a list of permitted syscalls is supplied. Any syscall not
1974 on the list results in SIGKILL being sent to the privsep child. Note
1975 that this requires a kernel with the new SYSTR_POLICY_KILL option.
1976
1977 UsePrivilegeSeparation=sandbox will become the default in the future
1978 so please start testing it now.
1979
1980 feedback dtucker@; ok markus@
Damien Miller6d7b4372011-06-23 08:31:57 +10001981 - djm@cvs.openbsd.org 2011/06/22 22:08:42
1982 [channels.c channels.h clientloop.c clientloop.h mux.c ssh.c]
1983 hook up a channel confirm callback to warn the user then requested X11
1984 forwarding was refused by the server; ok markus@
Damien Millerdcbd41e2011-06-23 19:45:51 +10001985 - djm@cvs.openbsd.org 2011/06/23 09:34:13
1986 [sshd.c ssh-sandbox.h sandbox.h sandbox-rlimit.c sandbox-systrace.c]
1987 [sandbox-null.c]
1988 rename sandbox.h => ssh-sandbox.h to make things easier for portable
Damien Miller80b62e32011-06-23 19:03:18 +10001989 - (djm) [sandbox-null.c] Dummy sandbox for platforms that don't support
1990 setrlimit(2)
Damien Miller82c55872011-06-23 08:20:30 +10001991
Damien Miller6029e072011-06-20 14:22:49 +1000199220110620
1993 - OpenBSD CVS Sync
1994 - djm@cvs.openbsd.org 2011/06/04 00:10:26
1995 [ssh_config.5]
1996 explain IdentifyFile's semantics a little better, prompted by bz#1898
1997 ok dtucker jmc
Damien Millere7ac2bd2011-06-20 14:23:25 +10001998 - markus@cvs.openbsd.org 2011/06/14 22:49:18
1999 [authfile.c]
2000 make sure key_parse_public/private_rsa1() no longer consumes its input
2001 buffer. fixes ssh-add for passphrase-protected ssh1-keys;
2002 noted by naddy@; ok djm@
Damien Miller8f0bf232011-06-20 14:42:23 +10002003 - djm@cvs.openbsd.org 2011/06/17 21:44:31
2004 [log.c log.h monitor.c monitor.h monitor_wrap.c monitor_wrap.h sshd.c]
2005 make the pre-auth privsep slave log via a socketpair shared with the
2006 monitor rather than /var/empty/dev/log; ok dtucker@ deraadt@ markus@
Damien Millerf145a5b2011-06-20 14:42:51 +10002007 - djm@cvs.openbsd.org 2011/06/17 21:46:16
2008 [sftp-server.c]
2009 the protocol version should be unsigned; bz#1913 reported by mb AT
2010 smartftp.com
Damien Miller33322122011-06-20 14:43:11 +10002011 - djm@cvs.openbsd.org 2011/06/17 21:47:35
2012 [servconf.c]
2013 factor out multi-choice option parsing into a parse_multistate label
2014 and some support structures; ok dtucker@
Damien Miller4ac99c32011-06-20 14:43:31 +10002015 - djm@cvs.openbsd.org 2011/06/17 21:57:25
2016 [clientloop.c]
2017 setproctitle for a mux master that has been gracefully stopped;
2018 bz#1911 from Bert.Wesarg AT googlemail.com
Damien Miller6029e072011-06-20 14:22:49 +10002019
Darren Tuckerc412c152011-06-03 10:35:23 +1000202020110603
2021 - (dtucker) [README version.h contrib/caldera/openssh.spec
2022 contrib/redhat/openssh.spec contrib/suse/openssh.spec] Pull the version
2023 bumps from the 5.8p2 branch into HEAD. ok djm.
Tim Rice90f42b02011-06-02 18:17:49 -07002024 - (tim) [configure.ac defines.h] Run test program to detect system mail
2025 directory. Add --with-maildir option to override. Fixed OpenServer 6
2026 getting it wrong. Fixed many systems having MAIL=/var/mail//username
2027 ok dtucker
Darren Tuckerc3c72272011-06-03 11:20:06 +10002028 - (dtucker) [monitor.c] Remove the !HAVE_SOCKETPAIR case. We use socketpair
2029 unconditionally in other places and the survey data we have does not show
2030 any systems that use it. "nuke it" djm@
Damien Millerc09182f2011-06-03 12:11:38 +10002031 - (djm) [configure.ac] enable setproctitle emulation for OS X
2032 - (djm) OpenBSD CVS Sync
Damien Millerea2c1a42011-06-03 12:10:22 +10002033 - djm@cvs.openbsd.org 2011/06/03 00:54:38
2034 [ssh.c]
2035 bz#1883 - setproctitle() to identify mux master; patch from Bert.Wesarg
2036 AT googlemail.com; ok dtucker@
2037 NB. includes additional portability code to enable setproctitle emulation
2038 on platforms that don't support it.
Darren Tucker3e78a512011-06-03 14:14:16 +10002039 - dtucker@cvs.openbsd.org 2011/06/03 01:37:40
2040 [ssh-agent.c]
2041 Check current parent process ID against saved one to determine if the parent
2042 has exited, rather than attempting to send a zero signal, since the latter
2043 won't work if the parent has changed privs. bz#1905, patch from Daniel Kahn
2044 Gillmor, ok djm@
Darren Tucker260c8fb2011-06-03 14:17:27 +10002045 - dtucker@cvs.openbsd.org 2011/05/31 02:01:58
2046 [regress/dynamic-forward.sh]
2047 back out revs 1.6 and 1.5 since it's not reliable
Darren Tucker75e035c2011-06-03 14:18:17 +10002048 - dtucker@cvs.openbsd.org 2011/05/31 02:03:34
2049 [regress/dynamic-forward.sh]
2050 work around startup and teardown races; caught by deraadt
Darren Tuckerbf4d05a2011-06-03 14:19:02 +10002051 - dtucker@cvs.openbsd.org 2011/06/03 00:29:52
2052 [regress/dynamic-forward.sh]
2053 Retry establishing the port forwarding after a small delay, should make
2054 the tests less flaky when the previous test is slow to shut down and free
2055 up the port.
Tim Ricebc481572011-06-02 22:26:19 -07002056 - (tim) [regress/cfgmatch.sh] Build/test out of tree fix.
Darren Tuckerc412c152011-06-03 10:35:23 +10002057
Damien Millerd8478b62011-05-29 21:39:36 +1000205820110529
2059 - (djm) OpenBSD CVS Sync
2060 - djm@cvs.openbsd.org 2011/05/23 03:30:07
2061 [auth-rsa.c auth.c auth.h auth2-pubkey.c monitor.c monitor_wrap.c]
2062 [pathnames.h servconf.c servconf.h sshd.8 sshd_config sshd_config.5]
2063 allow AuthorizedKeysFile to specify multiple files, separated by spaces.
2064 Bring back authorized_keys2 as a default search path (to avoid breaking
2065 existing users of this file), but override this in sshd_config so it will
2066 be no longer used on fresh installs. Maybe in 2015 we can remove it
2067 entierly :)
2068
2069 feedback and ok markus@ dtucker@
Damien Miller1dd66e52011-05-29 21:40:42 +10002070 - djm@cvs.openbsd.org 2011/05/23 03:33:38
2071 [auth.c]
2072 make secure_filename() spam debug logs less
Damien Miller201f4252011-05-29 21:41:03 +10002073 - djm@cvs.openbsd.org 2011/05/23 03:52:55
2074 [sshconnect.c]
2075 remove extra newline
Damien Millerb9132fc2011-05-29 21:41:40 +10002076 - jmc@cvs.openbsd.org 2011/05/23 07:10:21
2077 [sshd.8 sshd_config.5]
2078 tweak previous; ok djm
Damien Miller04bb56e2011-05-29 21:42:08 +10002079 - djm@cvs.openbsd.org 2011/05/23 07:24:57
2080 [authfile.c]
2081 read in key comments for v.2 keys (though note that these are not
2082 passed over the agent protocol); bz#439, based on patch from binder
2083 AT arago.de; ok markus@
Damien Miller295ee632011-05-29 21:42:31 +10002084 - djm@cvs.openbsd.org 2011/05/24 07:15:47
2085 [readconf.c readconf.h ssh.c ssh_config.5 sshconnect.c sshconnect2.c]
2086 Remove undocumented legacy options UserKnownHostsFile2 and
2087 GlobalKnownHostsFile2 by making UserKnownHostsFile/GlobalKnownHostsFile
2088 accept multiple paths per line and making their defaults include
2089 known_hosts2; ok markus
Damien Miller8cb35872011-05-29 21:59:10 +10002090 - djm@cvs.openbsd.org 2011/05/23 03:31:31
2091 [regress/cfgmatch.sh]
2092 include testing of multiple/overridden AuthorizedKeysFiles
2093 refactor to simply daemon start/stop and get rid of racy constructs
Damien Millerd8478b62011-05-29 21:39:36 +10002094
Damien Miller14684a12011-05-20 11:23:07 +1000209520110520
2096 - (djm) [session.c] call setexeccon() before executing passwd for pw
2097 changes; bz#1891 reported by jchadima AT redhat.com; ok dtucker@
Damien Miller989bb7f2011-05-20 18:56:30 +10002098 - (djm) [aclocal.m4 configure.ac] since gcc-4.x ignores all -Wno-options
2099 options, we should corresponding -W-option when trying to determine
2100 whether it is accepted. Also includes a warning fix on the program
2101 fragment uses (bad main() return type).
2102 bz#1900 and bz#1901 reported by g.esp AT free.fr; ok dtucker@
Damien Millerec2eaa32011-05-20 18:57:14 +10002103 - (djm) [servconf.c] remove leftover droppings of AuthorizedKeysFile2
Damien Miller814ace02011-05-20 19:02:47 +10002104 - OpenBSD CVS Sync
2105 - djm@cvs.openbsd.org 2011/05/15 08:09:01
2106 [authfd.c monitor.c serverloop.c]
2107 use FD_CLOEXEC consistently; patch from zion AT x96.org
Damien Miller8f639fe2011-05-20 19:03:08 +10002108 - djm@cvs.openbsd.org 2011/05/17 07:13:31
2109 [key.c]
2110 fatal() if asked to generate a legacy ECDSA cert (these don't exist)
2111 and fix the regress test that was trying to generate them :)
Damien Miller5d74e582011-05-20 19:03:31 +10002112 - djm@cvs.openbsd.org 2011/05/20 00:55:02
2113 [servconf.c]
2114 the options TrustedUserCAKeys, RevokedKeysFile, AuthorizedKeysFile
2115 and AuthorizedPrincipalsFile were not being correctly applied in
2116 Match blocks, despite being overridable there; ok dtucker@
Damien Millerc2411902011-05-20 19:03:49 +10002117 - dtucker@cvs.openbsd.org 2011/05/20 02:00:19
2118 [servconf.c]
2119 Add comment documenting what should be after the preauth check. ok djm
Damien Millerf2e407e2011-05-20 19:04:14 +10002120 - djm@cvs.openbsd.org 2011/05/20 03:25:45
2121 [monitor.c monitor_wrap.c servconf.c servconf.h]
2122 use a macro to define which string options to copy between configs
2123 for Match. This avoids problems caused by forgetting to keep three
2124 code locations in perfect sync and ordering
2125
2126 "this is at once beautiful and horrible" + ok dtucker@
Damien Millerf67188f2011-05-20 19:06:48 +10002127 - djm@cvs.openbsd.org 2011/05/17 07:13:31
2128 [regress/cert-userkey.sh]
2129 fatal() if asked to generate a legacy ECDSA cert (these don't exist)
2130 and fix the regress test that was trying to generate them :)
Damien Miller3045b452011-05-20 19:07:45 +10002131 - djm@cvs.openbsd.org 2011/05/20 02:43:36
2132 [cert-hostkey.sh]
2133 another attempt to generate a v00 ECDSA key that broke the test
2134 ID sync only - portable already had this somehow
Damien Miller7b9451f2011-05-20 19:08:11 +10002135 - dtucker@cvs.openbsd.org 2011/05/20 05:19:50
2136 [dynamic-forward.sh]
2137 Prevent races in dynamic forwarding test; ok djm
Damien Milleracacced2011-05-20 19:08:40 +10002138 - dtucker@cvs.openbsd.org 2011/05/20 06:32:30
2139 [dynamic-forward.sh]
2140 fix dumb error in dynamic-forward test
Damien Miller14684a12011-05-20 11:23:07 +10002141
Damien Miller60432d82011-05-15 08:34:46 +1000214220110515
2143 - (djm) OpenBSD CVS Sync
2144 - djm@cvs.openbsd.org 2011/05/05 05:12:08
2145 [mux.c]
2146 gracefully fall back when ControlPath is too large for a
2147 sockaddr_un. ok markus@ as part of a larger diff
Damien Millerfd53abd2011-05-15 08:36:02 +10002148 - dtucker@cvs.openbsd.org 2011/05/06 01:03:35
2149 [sshd_config]
2150 clarify language about overriding defaults. bz#1892, from Petr Cerny
Damien Miller58a77e22011-05-15 08:36:29 +10002151 - djm@cvs.openbsd.org 2011/05/06 01:09:53
2152 [sftp.1]
2153 mention that IPv6 addresses must be enclosed in square brackets;
2154 bz#1845
Damien Miller78c40c32011-05-15 08:36:59 +10002155 - djm@cvs.openbsd.org 2011/05/06 02:05:41
2156 [sshconnect2.c]
2157 fix memory leak; bz#1849 ok dtucker@
Damien Millerd2ac5d72011-05-15 08:43:13 +10002158 - djm@cvs.openbsd.org 2011/05/06 21:14:05
2159 [packet.c packet.h]
2160 set traffic class for IPv6 traffic as we do for IPv4 TOS;
2161 patch from lionel AT mamane.lu via Colin Watson in bz#1855;
2162 ok markus@
Damien Millerdfc85fa2011-05-15 08:44:02 +10002163 - djm@cvs.openbsd.org 2011/05/06 21:18:02
2164 [ssh.c ssh_config.5]
2165 add a %L expansion (short-form of the local host name) for ControlPath;
2166 sync some more expansions with LocalCommand; ok markus@
Damien Millerfe924212011-05-15 08:44:45 +10002167 - djm@cvs.openbsd.org 2011/05/06 21:31:38
2168 [readconf.c ssh_config.5]
2169 support negated Host matching, e.g.
2170
2171 Host *.example.org !c.example.org
2172 User mekmitasdigoat
2173
2174 Will match "a.example.org", "b.example.org", but not "c.example.org"
2175 ok markus@
Damien Miller21771e22011-05-15 08:45:50 +10002176 - djm@cvs.openbsd.org 2011/05/06 21:34:32
2177 [clientloop.c mux.c readconf.c readconf.h ssh.c ssh_config.5]
2178 Add a RequestTTY ssh_config option to allow configuration-based
2179 control over tty allocation (like -t/-T); ok markus@
Damien Millera6bbbe42011-05-15 08:46:29 +10002180 - djm@cvs.openbsd.org 2011/05/06 21:38:58
2181 [ssh.c]
2182 fix dropping from previous diff
Damien Millerc067f622011-05-15 08:46:54 +10002183 - djm@cvs.openbsd.org 2011/05/06 22:20:10
2184 [PROTOCOL.mux]
2185 fix numbering; from bert.wesarg AT googlemail.com
Damien Miller486dd2e2011-05-15 08:47:18 +10002186 - jmc@cvs.openbsd.org 2011/05/07 23:19:39
2187 [ssh_config.5]
2188 - tweak previous
2189 - come consistency fixes
2190 ok djm
Damien Millerf4b32aa2011-05-15 08:47:43 +10002191 - jmc@cvs.openbsd.org 2011/05/07 23:20:25
2192 [ssh.1]
2193 +.It RequestTTY
Damien Miller555f3b82011-05-15 08:48:05 +10002194 - djm@cvs.openbsd.org 2011/05/08 12:52:01
2195 [PROTOCOL.mux clientloop.c clientloop.h mux.c]
2196 improve our behaviour when TTY allocation fails: if we are in
2197 RequestTTY=auto mode (the default), then do not treat at TTY
2198 allocation error as fatal but rather just restore the local TTY
2199 to cooked mode and continue. This is more graceful on devices that
2200 never allocate TTYs.
2201
2202 If RequestTTY is set to "yes" or "force", then failure to allocate
2203 a TTY is fatal.
2204
2205 ok markus@
Damien Miller32198242011-05-15 08:50:32 +10002206 - djm@cvs.openbsd.org 2011/05/10 05:46:46
2207 [authfile.c]
2208 despam debug() logs by detecting that we are trying to load a private key
2209 in key_try_load_public() and returning early; ok markus@
Damien Miller7c1b2c42011-05-15 08:51:05 +10002210 - djm@cvs.openbsd.org 2011/05/11 04:47:06
2211 [auth.c auth.h auth2-pubkey.c pathnames.h servconf.c servconf.h]
2212 remove support for authorized_keys2; it is a relic from the early days
2213 of protocol v.2 support and has been undocumented for many years;
2214 ok markus@
Damien Miller9d276b82011-05-15 08:51:43 +10002215 - djm@cvs.openbsd.org 2011/05/13 00:05:36
2216 [authfile.c]
2217 warn on unexpected key type in key_parse_private_type()
Damien Miller23f425b2011-05-15 08:58:15 +10002218 - (djm) [packet.c] unbreak portability #endif
Damien Miller60432d82011-05-15 08:34:46 +10002219
Darren Tuckerd6548fe2011-05-10 11:13:36 +1000222020110510
2221 - (dtucker) [openbsd-compat/openssl-compat.{c,h}] Bug #1882: fix
2222 --with-ssl-engine which was broken with the change from deprecated
2223 SSLeay_add_all_algorithms(). ok djm
2224
Darren Tucker343f75f2011-05-06 10:43:50 +1000222520110506
2226 - (dtucker) [openbsd-compat/regress/closefromtest.c] Bug #1875: add prototype
2227 for closefrom() in test code. Report from Dan Wallis via Gentoo.
2228
Damien Miller68790fe2011-05-05 11:19:13 +1000222920110505
2230 - (djm) [defines.h] Move up include of netinet/ip.h for IPTOS
2231 definitions. From des AT des.no
Damien Millerf22019b2011-05-05 13:48:37 +10002232 - (djm) [Makefile.in WARNING.RNG aclocal.m4 buildpkg.sh.in configure.ac]
2233 [entropy.c ssh-add.c ssh-agent.c ssh-keygen.c ssh-keyscan.c]
2234 [ssh-keysign.c ssh-pkcs11-helper.c ssh-rand-helper.8 ssh-rand-helper.c]
2235 [ssh.c ssh_prng_cmds.in sshd.c contrib/aix/buildbff.sh]
2236 [regress/README.regress] Remove ssh-rand-helper and all its
2237 tentacles. PRNGd seeding has been rolled into entropy.c directly.
2238 Thanks to tim@ for testing on affected platforms.
Damien Miller3fcdfd52011-05-05 14:04:11 +10002239 - OpenBSD CVS Sync
2240 - djm@cvs.openbsd.org 2011/03/10 02:52:57
Damien Millerb2da7d12011-05-05 14:04:50 +10002241 [auth2-gss.c auth2.c auth.h]
Damien Miller3fcdfd52011-05-05 14:04:11 +10002242 allow GSSAPI authentication to detect when a server-side failure causes
2243 authentication failure and don't count such failures against MaxAuthTries;
2244 bz#1244 from simon AT sxw.org.uk; ok markus@ before lock
Damien Millerc5219e72011-05-05 14:05:12 +10002245 - okan@cvs.openbsd.org 2011/03/15 10:36:02
2246 [ssh-keyscan.c]
2247 use timerclear macro
2248 ok djm@
Damien Miller58f1baf2011-05-05 14:06:15 +10002249 - stevesk@cvs.openbsd.org 2011/03/23 15:16:22
2250 [ssh-keygen.1 ssh-keygen.c]
2251 Add -A option. For each of the key types (rsa1, rsa, dsa and ecdsa)
2252 for which host keys do not exist, generate the host keys with the
2253 default key file path, an empty passphrase, default bits for the key
2254 type, and default comment. This will be used by /etc/rc to generate
2255 new host keys. Idea from deraadt.
2256 ok deraadt
Damien Miller4a4d1612011-05-05 14:06:39 +10002257 - stevesk@cvs.openbsd.org 2011/03/23 16:24:56
2258 [ssh-keygen.1]
2259 -q not used in /etc/rc now so remove statement.
Damien Miller11143192011-05-05 14:13:25 +10002260 - stevesk@cvs.openbsd.org 2011/03/23 16:50:04
2261 [ssh-keygen.c]
2262 remove -d, documentation removed >10 years ago; ok markus
Damien Miller3ca1eb32011-05-05 14:13:50 +10002263 - jmc@cvs.openbsd.org 2011/03/24 15:29:30
2264 [ssh-keygen.1]
2265 zap trailing whitespace;
Damien Miller044f4a62011-05-05 14:14:08 +10002266 - stevesk@cvs.openbsd.org 2011/03/24 22:14:54
2267 [ssh-keygen.c]
2268 use strcasecmp() for "clear" cert permission option also; ok djm
Damien Miller91475862011-05-05 14:14:34 +10002269 - stevesk@cvs.openbsd.org 2011/03/29 18:54:17
2270 [misc.c misc.h servconf.c]
2271 print ipqos friendly string for sshd -T; ok markus
2272 # sshd -Tf sshd_config|grep ipqos
2273 ipqos lowdelay throughput
Damien Miller884b63a2011-05-05 14:14:52 +10002274 - djm@cvs.openbsd.org 2011/04/12 04:23:50
2275 [ssh-keygen.c]
2276 fix -Wshadow
Damien Miller26b57ce2011-05-05 14:15:09 +10002277 - djm@cvs.openbsd.org 2011/04/12 05:32:49
2278 [sshd.c]
2279 exit with 0 status on SIGTERM; bz#1879
Damien Miller085c90f2011-05-05 14:15:33 +10002280 - djm@cvs.openbsd.org 2011/04/13 04:02:48
2281 [ssh-keygen.1]
2282 improve wording; bz#1861
Damien Millerad210322011-05-05 14:15:54 +10002283 - djm@cvs.openbsd.org 2011/04/13 04:09:37
2284 [ssh-keygen.1]
2285 mention valid -b sizes for ECDSA keys; bz#1862
Damien Miller6c3eec72011-05-05 14:16:22 +10002286 - djm@cvs.openbsd.org 2011/04/17 22:42:42
2287 [PROTOCOL.mux clientloop.c clientloop.h mux.c ssh.1 ssh.c]
2288 allow graceful shutdown of multiplexing: request that a mux server
2289 removes its listener socket and refuse future multiplexing requests;
2290 ok markus@
Damien Miller8cb1cda2011-05-05 14:16:56 +10002291 - djm@cvs.openbsd.org 2011/04/18 00:46:05
2292 [ssh-keygen.c]
2293 certificate options are supposed to be packed in lexical order of
2294 option name (though we don't actually enforce this at present).
2295 Move one up that was out of sequence
Damien Miller2ce12ef2011-05-05 14:17:18 +10002296 - djm@cvs.openbsd.org 2011/05/04 21:15:29
2297 [authfile.c authfile.h ssh-add.c]
2298 allow "ssh-add - < key"; feedback and ok markus@
Tim Rice19d81812011-05-04 21:44:25 -07002299 - (tim) [configure.ac] Add AC_LANG_SOURCE to OPENSSH_CHECK_CFLAG_COMPILE
2300 so autoreconf 2.68 is happy.
Tim Rice9abb6972011-05-04 23:06:59 -07002301 - (tim) [defines.h] Deal with platforms that do not have S_IFSOCK ok djm@
Damien Miller68790fe2011-05-05 11:19:13 +10002302
Darren Tuckere541aaa2011-02-21 21:41:29 +1100230320110221
2304 - (dtucker) [contrib/cygwin/ssh-host-config] From Corinna: revamp of the
2305 Cygwin-specific service installer script ssh-host-config. The actual
2306 functionality is the same, the revisited version is just more
2307 exact when it comes to check for problems which disallow to run
2308 certain aspects of the script. So, part of this script and the also
2309 rearranged service helper script library "csih" is to check if all
2310 the tools required to run the script are available on the system.
2311 The new script also is more thorough to inform the user why the
2312 script failed. Patch from vinschen at redhat com.
2313
Damien Miller0588beb2011-02-18 09:18:45 +1100231420110218
2315 - OpenBSD CVS Sync
2316 - djm@cvs.openbsd.org 2011/02/16 00:31:14
2317 [ssh-keysign.c]
2318 make hostbased auth with ECDSA keys work correctly. Based on patch
2319 by harvey.eneman AT oracle.com in bz#1858; ok markus@ (pre-lock)
2320
Darren Tucker3b9617e2011-02-06 13:24:35 +1100232120110206
2322 - (dtucker) [openbsd-compat/port-linux.c] Bug #1851: fix syntax error in
2323 selinux code. Patch from Leonardo Chiquitto
Darren Tuckerea676a62011-02-06 13:31:23 +11002324 - (dtucker) [contrib/cygwin/ssh-{host,user}-config] Add ECDSA key
2325 generation and simplify. Patch from Corinna Vinschen.
Darren Tucker3b9617e2011-02-06 13:24:35 +11002326
Damien Millerb407dd82011-02-04 11:46:39 +1100232720110204
2328 - OpenBSD CVS Sync
2329 - djm@cvs.openbsd.org 2011/01/31 21:42:15
2330 [PROTOCOL.mux]
2331 cut'n'pasto; from bert.wesarg AT googlemail.com
Damien Miller0a5f0122011-02-04 11:47:01 +11002332 - djm@cvs.openbsd.org 2011/02/04 00:44:21
2333 [key.c]
2334 fix uninitialised nonce variable; reported by Mateusz Kocielski
Damien Millera6981272011-02-04 11:47:20 +11002335 - djm@cvs.openbsd.org 2011/02/04 00:44:43
2336 [version.h]
2337 openssh-5.8
Damien Miller0d30b092011-02-04 12:43:36 +11002338 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2339 [contrib/suse/openssh.spec] update versions in docs and spec files.
2340 - Release OpenSSH 5.8p1
Damien Millerb407dd82011-02-04 11:46:39 +11002341
Damien Millerd4a55042011-01-28 10:30:18 +1100234220110128
2343 - (djm) [openbsd-compat/port-linux.c] Check whether SELinux is enabled
2344 before attempting setfscreatecon(). Check whether matchpathcon()
2345 succeeded before using its result. Patch from cjwatson AT debian.org;
2346 bz#1851
2347
Tim Riced069c482011-01-26 12:32:12 -0800234820110127
2349 - (tim) [config.guess config.sub] Sync with upstream.
Tim Rice648f8762011-01-26 12:38:57 -08002350 - (tim) [configure.ac] Consistent M4 quoting throughout, updated obsolete
2351 AC_TRY_COMPILE with AC_COMPILE_IFELSE, updated obsolete AC_TRY_LINK with
2352 AC_LINK_IFELSE, updated obsolete AC_TRY_RUN with AC_RUN_IFELSE, misc white
2353 space changes for consistency/readability. Makes autoconf 2.68 happy.
2354 "Nice work" djm
Tim Riced069c482011-01-26 12:32:12 -08002355
Damien Miller71adf122011-01-25 12:16:15 +1100235620110125
2357 - (djm) [configure.ac Makefile.in ssh.c openbsd-compat/port-linux.c
2358 openbsd-compat/port-linux.h] Move SELinux-specific code from ssh.c to
2359 port-linux.c to avoid compilation errors. Add -lselinux to ssh when
2360 building with SELinux support to avoid linking failure; report from
2361 amk AT spamfence.net; ok dtucker
2362
Darren Tucker79241372011-01-22 09:37:01 +1100236320110122
2364 - (dtucker) [configure.ac openbsd-compat/openssl-compat.{c,h}] Add
2365 RSA_get_default_method() for the benefit of openssl versions that don't
2366 have it (at least openssl-engine-0.9.6b). Found and tested by Kevin Brott,
2367 ok djm@.
Damien Millerad4b1ad2011-01-22 20:21:33 +11002368 - OpenBSD CVS Sync
2369 - djm@cvs.openbsd.org 2011/01/22 09:18:53
2370 [version.h]
2371 crank to OpenSSH-5.7
Damien Miller966accc2011-01-22 20:23:10 +11002372 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2373 [contrib/suse/openssh.spec] update versions in docs and spec files.
Damien Miller6f8f04b2011-01-22 20:25:11 +11002374 - (djm) Release 5.7p1
Darren Tucker79241372011-01-22 09:37:01 +11002375
Tim Rice15e1b4d2011-01-18 20:47:04 -0800237620110119
2377 - (tim) [contrib/caldera/openssh.spec] Use CFLAGS from Makefile instead
2378 of RPM so build completes. Signatures were changed to .asc since 4.1p1.
Damien Millere323ebc2011-01-19 23:12:27 +11002379 - (djm) [configure.ac] Disable ECC on OpenSSL <0.9.8g. Releases prior to
2380 0.9.8 lacked it, and 0.9.8a through 0.9.8d have proven buggy in pre-
2381 release testing (random crashes and failure to load ECC keys).
2382 ok dtucker@
Tim Rice15e1b4d2011-01-18 20:47:04 -08002383
Damien Miller369c0e82011-01-17 10:51:40 +1100238420110117
2385 - (djm) [regress/Makefile] use $TEST_SSH_KEYGEN instead of the one in
2386 $PATH, fix cleanup of droppings; reported by openssh AT
2387 roumenpetrov.info; ok dtucker@
Damien Millerfd3669e2011-01-17 11:20:18 +11002388 - (djm) [regress/agent-ptrace.sh] Fix false failure on OS X by adding
2389 its unique snowflake of a gdb error to the ones we look for.
Damien Miller1ccbfa82011-01-17 11:52:40 +11002390 - (djm) [regress/agent-getpeereid.sh] leave stdout attached when running
2391 ssh-add to avoid $SUDO failures on Linux
Darren Tucker0c93adc2011-01-17 11:55:59 +11002392 - (dtucker) [openbsd-compat/port-linux.c] Bug #1838: Add support for the new
2393 Linux OOM-killer magic values that changed in 2.6.36 kernels, with fallback
2394 to the old values. Feedback from vapier at gentoo org and djm, ok djm.
Damien Miller58497782011-01-17 16:17:09 +11002395 - (djm) [configure.ac regress/agent-getpeereid.sh regress/multiplex.sh]
2396 [regress/sftp-glob.sh regress/test-exec.sh] Rework how feature tests are
2397 disabled on platforms that do not support them; add a "config_defined()"
2398 shell function that greps for defines in config.h and use them to decide
2399 on feature tests.
2400 Convert a couple of existing grep's over config.h to use the new function
2401 Add a define "FILESYSTEM_NO_BACKSLASH" for filesystem that can't represent
2402 backslash characters in filenames, enable it for Cygwin and use it to turn
2403 of tests for quotes backslashes in sftp-glob.sh.
2404 based on discussion with vinschen AT redhat.com and dtucker@; ok dtucker@
Tim Rice6dfcd342011-01-16 22:53:56 -08002405 - (tim) [regress/agent-getpeereid.sh] shell portability fix.
Darren Tucker263d43d2011-01-17 18:50:22 +11002406 - (dtucker) [openbsd-compat/port-linux.c] Fix minor bug caught by -Werror on
2407 the tinderbox.
Darren Tuckerea52a822011-01-17 21:15:27 +11002408 - (dtucker) [LICENCE Makefile.in audit-bsm.c audit-linux.c audit.c audit.h
2409 configure.ac defines.h loginrec.c] Bug #1402: add linux audit subsystem
2410 support, based on patches from Tomas Mraz and jchadima at redhat.
Damien Miller369c0e82011-01-17 10:51:40 +11002411
Darren Tucker50c61f82011-01-16 18:28:09 +1100241220110116
2413 - (dtucker) [Makefile.in configure.ac regress/kextype.sh] Skip sha256-based
2414 on configurations that don't have it.
Damien Miller4791f9d2011-01-16 23:16:53 +11002415 - OpenBSD CVS Sync
2416 - djm@cvs.openbsd.org 2011/01/16 11:50:05
2417 [clientloop.c]
2418 Use atomicio when flushing protocol 1 std{out,err} buffers at
2419 session close. This was a latent bug exposed by setting a SIGCHLD
2420 handler and spotted by kevin.brott AT gmail.com; ok dtucker@
Damien Miller6fb6fd52011-01-16 23:17:45 +11002421 - djm@cvs.openbsd.org 2011/01/16 11:50:36
2422 [sshconnect.c]
2423 reset the SIGPIPE handler when forking to execute child processes;
2424 ok dtucker@
Damien Millercfd6e4f2011-01-16 23:18:33 +11002425 - djm@cvs.openbsd.org 2011/01/16 12:05:59
2426 [clientloop.c]
2427 a couple more tweaks to the post-close protocol 1 stderr/stdout flush:
2428 now that we use atomicio(), convert them from while loops to if statements
2429 add test and cast to compile cleanly with -Wsigned
Darren Tucker50c61f82011-01-16 18:28:09 +11002430
Darren Tucker08f83882011-01-16 18:24:04 +1100243120110114
Damien Miller445c9a52011-01-14 12:01:29 +11002432 - OpenBSD CVS Sync
2433 - djm@cvs.openbsd.org 2011/01/13 21:54:53
2434 [mux.c]
2435 correct error messages; patch from bert.wesarg AT googlemail.com
Damien Miller42747df2011-01-14 12:01:50 +11002436 - djm@cvs.openbsd.org 2011/01/13 21:55:25
2437 [PROTOCOL.mux]
2438 correct protocol names and add a couple of missing protocol number
2439 defines; patch from bert.wesarg AT googlemail.com
Damien Millere9b40482011-01-14 14:47:37 +11002440 - (djm) [Makefile.in] Use shell test to disable ecdsa key generating in
2441 host-key-force target rather than a substitution that is replaced with a
2442 comment so that the Makefile.in is still a syntactically valid Makefile
2443 (useful to run the distprep target)
Tim Rice02d99da2011-01-13 22:20:27 -08002444 - (tim) [regress/cert-hostkey.sh] Typo. Missing $ on variable name.
Tim Ricec5c346b2011-01-13 22:36:14 -08002445 - (tim) [regress/cert-hostkey.sh] Add missing TEST_SSH_ECC guard around some
2446 ecdsa bits.
Damien Miller445c9a52011-01-14 12:01:29 +11002447
Darren Tucker08f83882011-01-16 18:24:04 +1100244820110113
Damien Miller1708cb72011-01-13 12:21:34 +11002449 - (djm) [misc.c] include time.h for nanosleep() prototype
Tim Ricecce927c2011-01-12 19:06:31 -08002450 - (tim) [Makefile.in] test the ECC bits if we have the capability. ok djm
Tim Rice9b87a5c2011-01-12 22:35:43 -08002451 - (tim) [Makefile.in configure.ac opensshd.init.in] Add support for generating
2452 ecdsa keys. ok djm.
Damien Millerff22df52011-01-13 21:05:27 +11002453 - (djm) [entropy.c] cast OPENSSL_VERSION_NUMBER to u_long to avoid
2454 gcc warning on platforms where it defaults to int
Damien Millercbaf8e62011-01-13 21:08:27 +11002455 - (djm) [regress/Makefile] add a few more generated files to the clean
2456 target
Damien Miller9b160862011-01-13 22:00:20 +11002457 - (djm) [myproposal.h] Fix reversed OPENSSL_VERSION_NUMBER test and bad
2458 #define that was causing diffie-hellman-group-exchange-sha256 to be
2459 incorrectly disabled
Damien Miller52788062011-01-13 22:05:14 +11002460 - (djm) [regress/kextype.sh] Testing diffie-hellman-group-exchange-sha256
2461 should not depend on ECC support
Damien Miller1708cb72011-01-13 12:21:34 +11002462
Darren Tucker08f83882011-01-16 18:24:04 +1100246320110112
Damien Millerb66e9172011-01-12 13:30:18 +11002464 - OpenBSD CVS Sync
2465 - nicm@cvs.openbsd.org 2010/10/08 21:48:42
2466 [openbsd-compat/glob.c]
2467 Extend GLOB_LIMIT to cover readdir and stat and bump the malloc limit
2468 from ARG_MAX to 64K.
2469 Fixes glob-using programs (notably ftp) able to be triggered to hit
2470 resource limits.
2471 Idea from a similar NetBSD change, original problem reported by jasper@.
2472 ok millert tedu jasper
Damien Miller4927aaf2011-01-12 13:32:03 +11002473 - djm@cvs.openbsd.org 2011/01/12 01:53:14
2474 avoid some integer overflows mostly with GLOB_APPEND and GLOB_DOOFFS
2475 and sanity check arguments (these will be unnecessary when we switch
2476 struct glob members from being type into to size_t in the future);
2477 "looks ok" tedu@ feedback guenther@
Damien Miller945aa0c2011-01-12 13:34:02 +11002478 - (djm) [configure.ac] Turn on -Wno-unused-result for gcc >= 4.4 to avoid
2479 silly warnings on write() calls we don't care succeed or not.
Damien Miller134d02a2011-01-12 16:00:37 +11002480 - (djm) [configure.ac] Fix broken test for gcc >= 4.4 with per-compiler
2481 flag tests that don't depend on gcc version at all; suggested by and
2482 ok dtucker@
Damien Millerb66e9172011-01-12 13:30:18 +11002483
Tim Rice076a3b92011-01-10 12:56:26 -0800248420110111
2485 - (tim) [regress/host-expand.sh] Fix for building outside of read only
2486 source tree.
Damien Miller81ad4b12011-01-11 17:02:23 +11002487 - (djm) [platform.c] Some missing includes that show up under -Werror
Damien Millerb73b6fd2011-01-11 17:18:56 +11002488 - OpenBSD CVS Sync
2489 - djm@cvs.openbsd.org 2011/01/08 10:51:51
2490 [clientloop.c]
2491 use host and not options.hostname, as the latter may have unescaped
2492 substitution characters
Damien Millera256c8d2011-01-11 17:20:05 +11002493 - djm@cvs.openbsd.org 2011/01/11 06:06:09
2494 [sshlogin.c]
2495 fd leak on error paths; from zinovik@
2496 NB. Id sync only; we use loginrec.c that was also audited and fixed
2497 recently
Damien Miller821de0a2011-01-11 17:20:29 +11002498 - djm@cvs.openbsd.org 2011/01/11 06:13:10
2499 [clientloop.c ssh-keygen.c sshd.c]
2500 some unsigned long long casts that make things a bit easier for
2501 portable without resorting to dropping PRIu64 formats everywhere
Tim Rice076a3b92011-01-10 12:56:26 -08002502
Damien Millere63b7f22011-01-09 09:19:50 +1100250320110109
2504 - (djm) [Makefile.in] list ssh_host_ecdsa key in PATHSUBS; spotted by
2505 openssh AT roumenpetrov.info
2506
Damien Miller996384d2011-01-08 21:58:20 +1100250720110108
2508 - (djm) [regress/keytype.sh] s/echo -n/echon/ to repair failing regress
2509 test on OSX and others. Reported by imorgan AT nas.nasa.gov
2510
Damien Miller322125b2011-01-07 09:50:08 +1100251120110107
2512 - (djm) [regress/cert-hostkey.sh regress/cert-userkey.sh] fix shell test
2513 for no-ECC case. Patch from cristian.ionescu-idbohrn AT axis.com
Damien Miller83f8a402011-01-07 09:51:17 +11002514 - djm@cvs.openbsd.org 2011/01/06 22:23:53
2515 [ssh.c]
2516 unbreak %n expansion in LocalCommand; patch from bert.wesarg AT
2517 googlemail.com; ok markus@
Damien Miller64abf312011-01-07 09:51:52 +11002518 - djm@cvs.openbsd.org 2011/01/06 22:23:02
2519 [clientloop.c]
2520 when exiting due to ServerAliveTimeout, mention the hostname that caused
2521 it (useful with backgrounded controlmaster)
Damien Miller7d06b002011-01-07 09:54:20 +11002522 - djm@cvs.openbsd.org 2011/01/06 22:46:21
2523 [regress/Makefile regress/host-expand.sh]
2524 regress test for LocalCommand %n expansion from bert.wesarg AT
2525 googlemail.com; ok markus@
Damien Millered3a8eb2011-01-07 10:02:52 +11002526 - djm@cvs.openbsd.org 2011/01/06 23:01:35
2527 [sshconnect.c]
2528 reset SIGCHLD handler to SIG_DFL when execuring LocalCommand;
2529 ok markus@
Damien Miller322125b2011-01-07 09:50:08 +11002530
Damien Millerf1211432011-01-06 22:40:30 +1100253120110106
2532 - (djm) OpenBSD CVS Sync
2533 - markus@cvs.openbsd.org 2010/12/08 22:46:03
2534 [scp.1 scp.c]
2535 add a new -3 option to scp: Copies between two remote hosts are
2536 transferred through the local host. Without this option the data
2537 is copied directly between the two remote hosts. ok djm@ (bugzilla #1837)
Damien Miller907998d2011-01-06 22:41:21 +11002538 - jmc@cvs.openbsd.org 2010/12/09 14:13:33
2539 [scp.1 scp.c]
2540 scp.1: grammer fix
2541 scp.c: add -3 to usage()
Damien Miller05c89972011-01-06 22:42:04 +11002542 - markus@cvs.openbsd.org 2010/12/14 11:59:06
2543 [sshconnect.c]
2544 don't mention key type in key-changed-warning, since we also print
2545 this warning if a new key type appears. ok djm@
Damien Miller106079c2011-01-06 22:43:44 +11002546 - djm@cvs.openbsd.org 2010/12/15 00:49:27
2547 [readpass.c]
2548 fix ControlMaster=ask regression
2549 reset SIGCHLD handler before fork (and restore it after) so we don't miss
2550 the the askpass child's exit status. Correct test for exit status/signal to
2551 account for waitpid() failure; with claudio@ ok claudio@ markus@
Damien Millerde53fd02011-01-06 22:44:18 +11002552 - djm@cvs.openbsd.org 2010/12/24 21:41:48
2553 [auth-options.c]
2554 don't send the actual forced command in a debug message; ok markus deraadt
Damien Miller8ad960b2011-01-06 22:44:44 +11002555 - otto@cvs.openbsd.org 2011/01/04 20:44:13
2556 [ssh-keyscan.c]
2557 handle ecdsa-sha2 with various key lengths; hint and ok djm@
Damien Millerf1211432011-01-06 22:40:30 +11002558
Damien Miller30a69e72011-01-04 08:16:27 +1100255920110104
2560 - (djm) [configure.ac Makefile.in] Use mandoc as preferred manpage
2561 formatter if it is present, followed by nroff and groff respectively.
2562 Fixes distprep target on OpenBSD (which has bumped groff/nroff to ports
2563 in favour of mandoc). feedback and ok tim
2564
256520110103
Damien Millerd197fd62011-01-03 14:48:14 +11002566 - (djm) [Makefile.in] revert local hack I didn't intend to commit
2567
256820110102
Damien Miller4a06f922011-01-02 21:43:59 +11002569 - (djm) [loginrec.c] Fix some fd leaks on error paths. ok dtucker
Damien Miller41bccf72011-01-02 21:53:07 +11002570 - (djm) [configure.ac] Check whether libdes is needed when building
2571 with Heimdal krb5 support. On OpenBSD this library no longer exists,
2572 so linking it unconditionally causes a build failure; ok dtucker
Damien Miller4a06f922011-01-02 21:43:59 +11002573
Damien Miller928362d2010-12-26 14:26:45 +1100257420101226
2575 - (dtucker) OpenBSD CVS Sync
2576 - djm@cvs.openbsd.org 2010/12/08 04:02:47
2577 [ssh_config.5 sshd_config.5]
2578 explain that IPQoS arguments are separated by whitespace; iirc requested
2579 by jmc@ a while back
2580
Darren Tucker37bb7562010-12-05 08:46:05 +1100258120101205
2582 - (dtucker) openbsd-compat/openssl-compat.c] remove sleep leftover from
2583 debugging. Spotted by djm.
Darren Tucker7336b902010-12-05 09:00:30 +11002584 - (dtucker) OpenBSD CVS Sync
2585 - djm@cvs.openbsd.org 2010/12/03 23:49:26
2586 [schnorr.c]
2587 check that g^x^q === 1 mod p; recommended by JPAKE author Feng Hao
2588 (this code is still disabled, but apprently people are treating it as
2589 a reference implementation)
Darren Tuckeradab6f12010-12-05 09:01:47 +11002590 - djm@cvs.openbsd.org 2010/12/03 23:55:27
2591 [auth-rsa.c]
2592 move check for revoked keys to run earlier (in auth_rsa_key_allowed)
2593 bz#1829; patch from ldv AT altlinux.org; ok markus@
Darren Tuckeraf1f9092010-12-05 09:02:47 +11002594 - djm@cvs.openbsd.org 2010/12/04 00:18:01
2595 [sftp-server.c sftp.1 sftp-client.h sftp.c PROTOCOL sftp-client.c]
2596 add a protocol extension to support a hard link operation. It is
2597 available through the "ln" command in the client. The old "ln"
2598 behaviour of creating a symlink is available using its "-s" option
2599 or through the preexisting "symlink" command; based on a patch from
2600 miklos AT szeredi.hu in bz#1555; ok markus@
Darren Tucker094f1e92010-12-05 09:03:31 +11002601 - djm@cvs.openbsd.org 2010/12/04 13:31:37
2602 [hostfile.c]
2603 fix fd leak; spotted and ok dtucker
Darren Tucker4288c532010-12-05 09:45:50 +11002604 - djm@cvs.openbsd.org 2010/12/04 00:21:19
2605 [regress/sftp-cmds.sh]
2606 adjust for hard-link support
Darren Tucker7e1a5a42010-12-05 09:29:31 +11002607 - (dtucker) [regress/Makefile] Id sync.
Darren Tucker37bb7562010-12-05 08:46:05 +11002608
Damien Millerd89745b2010-12-03 10:50:26 +1100260920101204
2610 - (djm) [openbsd-compat/bindresvport.c] Use arc4random_uniform(range)
2611 instead of (arc4random() % range)
Darren Tuckerebdef762010-12-04 23:20:50 +11002612 - (dtucker) [configure.ac moduli.c openbsd-compat/openssl-compat.{c,h}] Add
2613 shims for the new, non-deprecated OpenSSL key generation functions for
2614 platforms that don't have the new interfaces.
Damien Millerd89745b2010-12-03 10:50:26 +11002615
Damien Miller188ea812010-12-01 11:50:14 +1100261620101201
2617 - OpenBSD CVS Sync
2618 - deraadt@cvs.openbsd.org 2010/11/20 05:12:38
2619 [auth2-pubkey.c]
2620 clean up cases of ;;
Damien Miller2cd62932010-12-01 11:50:35 +11002621 - djm@cvs.openbsd.org 2010/11/21 01:01:13
2622 [clientloop.c misc.c misc.h ssh-agent.1 ssh-agent.c]
2623 honour $TMPDIR for client xauth and ssh-agent temporary directories;
2624 feedback and ok markus@
Damien Millera2327922010-12-01 12:01:21 +11002625 - djm@cvs.openbsd.org 2010/11/21 10:57:07
2626 [authfile.c]
2627 Refactor internals of private key loading and saving to work on memory
2628 buffers rather than directly on files. This will make a few things
2629 easier to do in the future; ok markus@
Damien Miller6a740e72010-12-01 12:01:51 +11002630 - djm@cvs.openbsd.org 2010/11/23 02:35:50
2631 [auth.c]
2632 use strict_modes already passed as function argument over referencing
2633 global options.strict_modes
Damien Millerd0fdd682010-12-01 12:02:14 +11002634 - djm@cvs.openbsd.org 2010/11/23 23:57:24
2635 [clientloop.c]
2636 avoid NULL deref on receiving a channel request on an unknown or invalid
2637 channel; report bz#1842 from jchadima AT redhat.com; ok dtucker@
Damien Millerb7f827a2010-12-01 12:02:35 +11002638 - djm@cvs.openbsd.org 2010/11/24 01:24:14
2639 [channels.c]
2640 remove a debug() that pollutes stderr on client connecting to a server
2641 in debug mode (channel_close_fds is called transitively from the session
2642 code post-fork); bz#1719, ok dtucker
Damien Millerf80c3de2010-12-01 12:02:59 +11002643 - djm@cvs.openbsd.org 2010/11/25 04:10:09
2644 [session.c]
2645 replace close() loop for fds 3->64 with closefrom();
2646 ok markus deraadt dtucker
Damien Miller87dc0a42010-12-01 12:03:19 +11002647 - djm@cvs.openbsd.org 2010/11/26 05:52:49
2648 [scp.c]
2649 Pass through ssh command-line flags and options when doing remote-remote
2650 transfers, e.g. to enable agent forwarding which is particularly useful
2651 in this case; bz#1837 ok dtucker@
Damien Miller03c0e532010-12-01 12:03:39 +11002652 - markus@cvs.openbsd.org 2010/11/29 18:57:04
2653 [authfile.c]
2654 correctly load comment for encrypted rsa1 keys;
2655 report/fix Joachim Schipper; ok djm@
Damien Millerd925dcd2010-12-01 12:21:51 +11002656 - djm@cvs.openbsd.org 2010/11/29 23:45:51
2657 [auth.c hostfile.c hostfile.h ssh.c ssh_config.5 sshconnect.c]
2658 [sshconnect.h sshconnect2.c]
2659 automatically order the hostkeys requested by the client based on
2660 which hostkeys are already recorded in known_hosts. This avoids
2661 hostkey warnings when connecting to servers with new ECDSA keys
2662 that are preferred by default; with markus@
Damien Miller188ea812010-12-01 11:50:14 +11002663
Darren Tuckerd9957122010-11-24 10:09:13 +1100266420101124
2665 - (dtucker) [platform.c session.c] Move the getluid call out of session.c and
2666 into the platform-specific code Only affects SCO, tested by and ok tim@.
Damien Miller88e341e2010-11-24 10:36:15 +11002667 - (djm) [loginrec.c] Relax permission requirement on btmp logs to allow
2668 group read/write. ok dtucker@
Darren Tucker4b6cbf72010-11-24 10:46:37 +11002669 - (dtucker) [packet.c] Remove redundant local declaration of "int tos".
Damien Miller73de86a2010-11-24 10:50:04 +11002670 - (djm) [defines.h] Add IP DSCP defines
Darren Tuckerd9957122010-11-24 10:09:13 +11002671
Darren Tucker9e0ff7a2010-11-22 17:59:00 +1100267220101122
2673 - (dtucker) Bug #1840: fix warning when configuring --with-ssl-engine, patch
2674 from vapier at gentoo org.
2675
Damien Miller7a221a12010-11-20 15:14:29 +1100267620101120
2677 - OpenBSD CVS Sync
2678 - djm@cvs.openbsd.org 2010/11/05 02:46:47
2679 [packet.c]
2680 whitespace KNF
Damien Miller4499f4c2010-11-20 15:15:49 +11002681 - djm@cvs.openbsd.org 2010/11/10 01:33:07
2682 [kexdhc.c kexdhs.c kexgexc.c kexgexs.c key.c moduli.c]
2683 use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED.
2684 these have been around for years by this time. ok markus
Damien Miller0dac6fb2010-11-20 15:19:38 +11002685 - djm@cvs.openbsd.org 2010/11/13 23:27:51
2686 [clientloop.c misc.c misc.h packet.c packet.h readconf.c readconf.h]
2687 [servconf.c servconf.h session.c ssh.c ssh_config.5 sshd_config.5]
2688 allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead of
2689 hardcoding lowdelay/throughput.
2690
2691 bz#1733 patch from philipp AT redfish-solutions.com; ok markus@ deraadt@
Damien Miller8e1ea4e2010-11-20 15:20:10 +11002692 - jmc@cvs.openbsd.org 2010/11/15 07:40:14
2693 [ssh_config.5]
2694 libary -> library;
Damien Miller0a184732010-11-20 15:21:03 +11002695 - jmc@cvs.openbsd.org 2010/11/18 15:01:00
2696 [scp.1 sftp.1 ssh.1 sshd_config.5]
2697 add IPQoS to the various -o lists, and zap some trailing whitespace;
Damien Miller7a221a12010-11-20 15:14:29 +11002698
Damien Millerdd190dd2010-11-11 14:17:02 +1100269920101111
2700 - (djm) [servconf.c ssh-add.c ssh-keygen.c] don't look for ECDSA keys on
2701 platforms that don't support ECC. Fixes some spurious warnings reported
2702 by tim@
2703
Tim Ricee426f5e2010-11-08 09:15:14 -0800270420101109
2705 - (tim) [regress/kextype.sh] Not all platforms have time in /usr/bin.
2706 Feedback from dtucker@
Tim Ricec7a8af02010-11-08 14:26:23 -08002707 - (tim) [configure.ac openbsd-compat/bsd-misc.h openbsd-compat/bsd-misc.c] Add
2708 support for platforms missing isblank(). ok djm@
Tim Ricee426f5e2010-11-08 09:15:14 -08002709
Tim Rice522262f2010-11-07 13:00:27 -0800271020101108
2711 - (tim) [regress/Makefile] Fixes to allow building/testing outside source
2712 tree.
Tim Ricec10aeaa2010-11-07 13:03:11 -08002713 - (tim) [regress/kextype.sh] Shell portability fix.
Tim Rice522262f2010-11-07 13:00:27 -08002714
Darren Tuckerd1ece6e2010-11-07 18:05:54 +1100271520101107
2716 - (dtucker) [platform.c] includes.h instead of defines.h so that we get
2717 the correct typedefs.
2718
Damien Miller3a0e9f62010-11-05 10:16:34 +1100271920101105
Damien Miller34ee4202010-11-05 10:52:37 +11002720 - (djm) [loginrec.c loginrec.h] Use correct uid_t/pid_t types instead of
2721 int. Should fix bz#1817 cleanly; ok dtucker@
Damien Miller3a0e9f62010-11-05 10:16:34 +11002722 - OpenBSD CVS Sync
2723 - djm@cvs.openbsd.org 2010/09/22 12:26:05
2724 [regress/Makefile regress/kextype.sh]
2725 regress test for each of the key exchange algorithms that we support
Damien Millerb472a902010-11-05 10:19:49 +11002726 - djm@cvs.openbsd.org 2010/10/28 11:22:09
2727 [authfile.c key.c key.h ssh-keygen.c]
2728 fix a possible NULL deref on loading a corrupt ECDH key
2729
2730 store ECDH group information in private keys files as "named groups"
2731 rather than as a set of explicit group parameters (by setting
2732 the OPENSSL_EC_NAMED_CURVE flag). This makes for shorter key files and
2733 retrieves the group's OpenSSL NID that we need for various things.
Damien Miller55fa5652010-11-05 10:20:14 +11002734 - jmc@cvs.openbsd.org 2010/10/28 18:33:28
2735 [scp.1 ssh-add.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5]
2736 knock out some "-*- nroff -*-" lines;
Damien Miller07331212010-11-05 10:20:31 +11002737 - djm@cvs.openbsd.org 2010/11/04 02:45:34
2738 [sftp-server.c]
2739 umask should be parsed as octal. reported by candland AT xmission.com;
2740 ok markus@
Darren Tucker97528352010-11-05 12:03:05 +11002741 - (dtucker) [configure.ac platform.{c,h} session.c
2742 openbsd-compat/port-solaris.{c,h}] Bug #1824: Add Solaris Project support.
2743 Patch from cory.erickson at csu mnscu edu with a bit of rework from me.
2744 ok djm@
Darren Tucker920612e2010-11-05 12:36:15 +11002745 - (dtucker) [platform.c platform.h session.c] Add a platform hook to run
2746 after the user's groups are established and move the selinux calls into it.
Darren Tucker4db38072010-11-05 12:41:13 +11002747 - (dtucker) [platform.c session.c] Move the AIX setpcred+chroot hack into
2748 platform.c
Darren Tucker44a97be2010-11-05 12:45:18 +11002749 - (dtucker) [platform.c session.c] Move the BSDI setpgrp into platform.c.
Darren Tuckerfd4d8aa2010-11-05 12:50:41 +11002750 - (dtucker) [platform.c] Only call setpgrp on BSDI if running as root to
2751 retain previous behavior.
Darren Tucker728d8372010-11-05 13:00:05 +11002752 - (dtucker) [platform.c session.c] Move the PAM credential establishment for
2753 the LOGIN_CAP case into platform.c.
Darren Tucker7a8afe32010-11-05 13:07:24 +11002754 - (dtucker) platform.c session.c] Move the USE_LIBIAF fragment into
2755 platform.c
Darren Tucker0b2ee642010-11-05 13:29:25 +11002756 - (dtucker) [platform.c session.c] Move aix_usrinfo frament into platform.c.
2757 - (dtucker) [platform.c session.c] Move irix setusercontext fragment into
2758 platform.c.
Darren Tuckercc124182010-11-05 13:32:52 +11002759 - (dtucker) [platform.c session.c] Move PAM credential establishment for the
2760 non-LOGIN_CAP case into platform.c.
Darren Tuckerb12fe272010-11-05 14:47:01 +11002761 - (dtucker) [platform.c platform.h session.c] Move the Cygwin special-case
2762 check into platform.c
Darren Tuckerb69e0332010-11-05 18:19:15 +11002763 - (dtucker) [regress/keytype.sh] Import new test.
Darren Tuckereab5f0d2010-11-05 18:23:38 +11002764 - (dtucker) [Makefile configure.ac regress/Makefile regress/keytype.sh]
2765 Import recent changes to regress/Makefile, pass a flag to enable ECC tests
2766 from configure through to regress/Makefile and use it in the tests.
Darren Tucker345178d2010-11-05 18:35:52 +11002767 - (dtucker) [regress/kextype.sh] Add missing "test".
Darren Tuckerf619d1c2010-11-05 18:41:50 +11002768 - (dtucker) [regress/kextype.sh] Make sha256 test depend on ECC. This is not
2769 strictly correct since while ECC requires sha256 the reverse is not true
2770 however it does prevent spurious test failures.
Darren Tucker9283d8c2010-11-05 18:56:08 +11002771 - (dtucker) [platform.c] Need servconf.h and extern options.
Damien Miller3a0e9f62010-11-05 10:16:34 +11002772
Tim Ricebdd3e672010-10-24 18:35:55 -0700277320101025
2774 - (tim) [openbsd-compat/glob.h] Remove sys/cdefs.h include that came with
2775 1.12 to unbreak Solaris build.
2776 ok djm@
Darren Tucker54b1f312010-10-25 16:54:28 +11002777 - (dtucker) [defines.h] Use SIZE_T_MAX for SIZE_MAX for platforms that have a
2778 native one.
Tim Ricebdd3e672010-10-24 18:35:55 -07002779
Darren Tuckera5393932010-10-24 10:47:30 +1100278020101024
2781 - (dtucker) [includes.h] Add missing ifdef GLOB_HAS_GL_STATV to fix build.
Darren Tuckerbfd9b1b2010-10-24 11:19:26 +11002782 - (dtucker) [regress/cert-hostkey.sh] Disable ECC-based tests on platforms
2783 which don't have ECC support in libcrypto.
Darren Tuckerd633fef2010-10-24 11:33:07 +11002784 - (dtucker) [regress/cert-userkey.sh] Disable ECC-based tests on platforms
2785 which don't have ECC support in libcrypto.
Darren Tucker7bc236d2010-10-24 11:58:43 +11002786 - (dtucker) [defines.h] Add SIZE_MAX for the benefit of platforms that don't
2787 have it.
Darren Tuckerd78739a2010-10-24 10:56:32 +11002788 - (dtucker) OpenBSD CVS Sync
2789 - sthen@cvs.openbsd.org 2010/10/23 22:06:12
2790 [sftp.c]
2791 escape '[' in filename tab-completion; fix a type while there.
2792 ok djm@
Darren Tuckera5393932010-10-24 10:47:30 +11002793
Damien Miller68512c02010-10-21 15:21:11 +1100279420101021
2795 - OpenBSD CVS Sync
2796 - dtucker@cvs.openbsd.org 2010/10/12 02:22:24
2797 [mux.c]
2798 Typo in confirmation message. bz#1827, patch from imorgan at
2799 nas nasa gov
Damien Miller6fd2d7d2010-10-21 15:27:14 +11002800 - djm@cvs.openbsd.org 2010/08/31 12:24:09
2801 [regress/cert-hostkey.sh regress/cert-userkey.sh]
2802 tests for ECDSA certificates
Damien Miller68512c02010-10-21 15:21:11 +11002803
Damien Miller1f789802010-10-11 22:35:22 +1100280420101011
Damien Miller47e57bf2010-10-12 13:28:12 +11002805 - (djm) [canohost.c] Zero a4 instead of addr to better match type.
2806 bz#1825, reported by foo AT mailinator.com
Damien Miller9c0c31d2010-10-12 13:30:44 +11002807 - (djm) [sshconnect.c] Need signal.h for prototype for kill(2)
Damien Miller47e57bf2010-10-12 13:28:12 +11002808
280920101011
Damien Miller1f789802010-10-11 22:35:22 +11002810 - (djm) [configure.ac] Use = instead of == in shell tests. Patch from
2811 dr AT vasco.com
2812
Damien Milleraa180632010-10-07 21:25:27 +1100281320101007
Damien Miller9a3d0dc2010-10-07 22:06:42 +11002814 - (djm) [ssh-agent.c] Fix type for curve name.
Damien Milleraa180632010-10-07 21:25:27 +11002815 - (djm) OpenBSD CVS Sync
2816 - matthew@cvs.openbsd.org 2010/09/24 13:33:00
2817 [misc.c misc.h configure.ac openbsd-compat/openbsd-compat.h]
2818 [openbsd-compat/timingsafe_bcmp.c]
2819 Add timingsafe_bcmp(3) to libc, mention that it's already in the
2820 kernel in kern(9), and remove it from OpenSSH.
2821 ok deraadt@, djm@
2822 NB. re-added under openbsd-compat/ for portable OpenSSH
Damien Millera6e121a2010-10-07 21:39:17 +11002823 - djm@cvs.openbsd.org 2010/09/25 09:30:16
2824 [sftp.c configure.ac openbsd-compat/glob.c openbsd-compat/glob.h]
2825 make use of new glob(3) GLOB_KEEPSTAT extension to save extra server
2826 rountrips to fetch per-file stat(2) information.
2827 NB. update openbsd-compat/ glob(3) implementation from OpenBSD libc to
2828 match.
Damien Miller68e2e562010-10-07 21:39:55 +11002829 - djm@cvs.openbsd.org 2010/09/26 22:26:33
2830 [sftp.c]
2831 when performing an "ls" in columnated (short) mode, only call
2832 ioctl(TIOCGWINSZ) once to get the window width instead of per-
2833 filename
Damien Millerc54b02c2010-10-07 21:40:17 +11002834 - djm@cvs.openbsd.org 2010/09/30 11:04:51
2835 [servconf.c]
2836 prevent free() of string in .rodata when overriding AuthorizedKeys in
2837 a Match block; patch from rein AT basefarm.no
Damien Miller9a3d0dc2010-10-07 22:06:42 +11002838 - djm@cvs.openbsd.org 2010/10/01 23:05:32
2839 [cipher-3des1.c cipher-bf1.c cipher-ctr.c openbsd-compat/openssl-compat.h]
2840 adapt to API changes in openssl-1.0.0a
2841 NB. contains compat code to select correct API for older OpenSSL
Damien Miller38d9a962010-10-07 22:07:11 +11002842 - djm@cvs.openbsd.org 2010/10/05 05:13:18
2843 [sftp.c sshconnect.c]
2844 use default shell /bin/sh if $SHELL is ""; ok markus@
Damien Millera41ccca2010-10-07 22:07:32 +11002845 - djm@cvs.openbsd.org 2010/10/06 06:39:28
2846 [clientloop.c ssh.c sshconnect.c sshconnect.h]
2847 kill proxy command on fatal() (we already kill it on clean exit);
2848 ok markus@
Damien Miller45fcdaa2010-10-07 22:07:58 +11002849 - djm@cvs.openbsd.org 2010/10/06 21:10:21
2850 [sshconnect.c]
2851 swapped args to kill(2)
Damien Miller37f4f182010-10-07 22:10:38 +11002852 - (djm) [openbsd-compat/glob.c] restore ARG_MAX compat code.
Damien Miller80e99532010-10-07 22:12:08 +11002853 - (djm) [cipher-acss.c] Add missing header.
Damien Miller88b844f2010-10-07 22:19:23 +11002854 - (djm) [openbsd-compat/Makefile.in] Actually link timingsafe_bcmp
Damien Milleraa180632010-10-07 21:25:27 +11002855
Damien Miller6186bbc2010-09-24 22:00:54 +1000285620100924
2857 - (djm) OpenBSD CVS Sync
2858 - naddy@cvs.openbsd.org 2010/09/10 15:19:29
2859 [ssh-keygen.1]
2860 * mention ECDSA in more places
2861 * less repetition in FILES section
2862 * SSHv1 keys are still encrypted with 3DES
2863 help and ok jmc@
Damien Miller1ca94692010-09-24 22:01:22 +10002864 - djm@cvs.openbsd.org 2010/09/11 21:44:20
2865 [ssh.1]
2866 mention RFC 5656 for ECC stuff
Damien Miller881adf72010-09-24 22:01:54 +10002867 - jmc@cvs.openbsd.org 2010/09/19 21:30:05
2868 [sftp.1]
2869 more wacky macro fixing;
Damien Miller857b02e2010-09-24 22:02:56 +10002870 - djm@cvs.openbsd.org 2010/09/20 04:41:47
2871 [ssh.c]
2872 install a SIGCHLD handler to reap expiried child process; ok markus@
Damien Millerf7540cd2010-09-24 22:03:24 +10002873 - djm@cvs.openbsd.org 2010/09/20 04:50:53
2874 [jpake.c schnorr.c]
2875 check that received values are smaller than the group size in the
2876 disabled and unfinished J-PAKE code.
2877 avoids catastrophic security failure found by Sebastien Martini
Damien Miller18e1cab2010-09-24 22:07:17 +10002878 - djm@cvs.openbsd.org 2010/09/20 04:54:07
2879 [jpake.c]
2880 missing #include
Damien Miller603134e2010-09-24 22:07:55 +10002881 - djm@cvs.openbsd.org 2010/09/20 07:19:27
2882 [mux.c]
2883 "atomically" create the listening mux socket by binding it on a temorary
2884 name and then linking it into position after listen() has succeeded.
2885 this allows the mux clients to determine that the server socket is
2886 either ready or stale without races. stale server sockets are now
2887 automatically removed
2888 ok deraadt
Damien Millerd5f62bf2010-09-24 22:11:14 +10002889 - djm@cvs.openbsd.org 2010/09/22 05:01:30
2890 [kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c readconf.c readconf.h]
2891 [servconf.c servconf.h ssh_config.5 sshconnect2.c sshd.c sshd_config.5]
2892 add a KexAlgorithms knob to the client and server configuration to allow
2893 selection of which key exchange methods are used by ssh(1) and sshd(8)
2894 and their order of preference.
2895 ok markus@
Damien Miller7fe2b1f2010-09-24 22:11:53 +10002896 - jmc@cvs.openbsd.org 2010/09/22 08:30:08
2897 [ssh.1 ssh_config.5]
2898 ssh.1: add kexalgorithms to the -o list
2899 ssh_config.5: format the kexalgorithms in a more consistent
2900 (prettier!) way
2901 ok djm
Damien Miller65e42f82010-09-24 22:15:11 +10002902 - djm@cvs.openbsd.org 2010/09/22 22:58:51
2903 [atomicio.c atomicio.h misc.c misc.h scp.c sftp-client.c]
2904 [sftp-client.h sftp.1 sftp.c]
2905 add an option per-read/write callback to atomicio
2906
2907 factor out bandwidth limiting code from scp(1) into a generic bandwidth
2908 limiter that can be attached using the atomicio callback mechanism
2909
2910 add a bandwidth limit option to sftp(1) using the above
2911 "very nice" markus@
Damien Miller56883e12010-09-24 22:15:39 +10002912 - jmc@cvs.openbsd.org 2010/09/23 13:34:43
2913 [sftp.c]
2914 add [-l limit] to usage();
Damien Miller2beb32f2010-09-24 22:16:03 +10002915 - jmc@cvs.openbsd.org 2010/09/23 13:36:46
2916 [scp.1 sftp.1]
2917 add KexAlgorithms to the -o list;
Damien Miller6186bbc2010-09-24 22:00:54 +10002918
Damien Miller4314c2b2010-09-10 11:12:09 +1000291920100910
Darren Tucker50e3bab2010-09-10 10:30:25 +10002920 - (dtucker) [openbsd-compat/port-linux.c] Check is_selinux_enabled for exact
2921 return code since it can apparently return -1 under some conditions. From
2922 openssh bugs werbittewas de, ok djm@
Damien Miller4314c2b2010-09-10 11:12:09 +10002923 - OpenBSD CVS Sync
2924 - djm@cvs.openbsd.org 2010/08/31 12:33:38
2925 [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c]
2926 reintroduce commit from tedu@, which I pulled out for release
2927 engineering:
2928 OpenSSL_add_all_algorithms is the name of the function we have a
2929 man page for, so use that. ok djm
Damien Millerde735ea2010-09-10 11:12:38 +10002930 - jmc@cvs.openbsd.org 2010/08/31 17:40:54
2931 [ssh-agent.1]
2932 fix some macro abuse;
Damien Millerd4427902010-09-10 11:15:10 +10002933 - jmc@cvs.openbsd.org 2010/08/31 21:14:58
2934 [ssh.1]
2935 small text tweak to accommodate previous;
Damien Millere13cadf2010-09-10 11:15:33 +10002936 - naddy@cvs.openbsd.org 2010/09/01 15:21:35
2937 [servconf.c]
2938 pick up ECDSA host key by default; ok djm@
Damien Miller390f1532010-09-10 11:17:54 +10002939 - markus@cvs.openbsd.org 2010/09/02 16:07:25
Damien Miller57737942010-09-10 11:16:37 +10002940 [ssh-keygen.c]
2941 permit -b 256, 384 or 521 as key size for ECDSA; ok djm@
Damien Miller390f1532010-09-10 11:17:54 +10002942 - markus@cvs.openbsd.org 2010/09/02 16:08:39
Damien Miller5929c522010-09-10 11:17:02 +10002943 [ssh.c]
2944 unbreak ControlPersist=yes for ControlMaster=yes; ok djm@
Damien Miller6e9f6802010-09-10 11:17:38 +10002945 - naddy@cvs.openbsd.org 2010/09/02 17:21:50
2946 [ssh-keygen.c]
2947 Switch ECDSA default key size to 256 bits, which according to RFC5656
2948 should still be better than our current RSA-2048 default.
2949 ok djm@, markus@
Damien Miller390f1532010-09-10 11:17:54 +10002950 - jmc@cvs.openbsd.org 2010/09/03 11:09:29
2951 [scp.1]
2952 add an EXIT STATUS section for /usr/bin;
Damien Millerdaa7b222010-09-10 11:19:33 +10002953 - jmc@cvs.openbsd.org 2010/09/04 09:38:34
2954 [ssh-add.1 ssh.1]
2955 two more EXIT STATUS sections;
Damien Miller80ed82a2010-09-10 11:20:11 +10002956 - naddy@cvs.openbsd.org 2010/09/06 17:10:19
2957 [sshd_config]
2958 add ssh_host_ecdsa_key to /etc; from Mattieu Baptiste
2959 <mattieu.b@gmail.com>
2960 ok deraadt@
Damien Millerbf0423e2010-09-10 11:20:38 +10002961 - djm@cvs.openbsd.org 2010/09/08 03:54:36
2962 [authfile.c]
2963 typo
Damien Miller3796ab42010-09-10 11:20:59 +10002964 - deraadt@cvs.openbsd.org 2010/09/08 04:13:31
2965 [compress.c]
2966 work around name-space collisions some buggy compilers (looking at you
2967 gcc, at least in earlier versions, but this does not forgive your current
2968 transgressions) seen between zlib and openssl
2969 ok djm
Damien Miller041ab7c2010-09-10 11:23:34 +10002970 - djm@cvs.openbsd.org 2010/09/09 10:45:45
2971 [kex.c kex.h kexecdh.c key.c key.h monitor.c ssh-ecdsa.c]
2972 ECDH/ECDSA compliance fix: these methods vary the hash function they use
2973 (SHA256/384/512) depending on the length of the curve in use. The previous
2974 code incorrectly used SHA256 in all cases.
2975
2976 This fix will cause authentication failure when using 384 or 521-bit curve
2977 keys if one peer hasn't been upgraded and the other has. (256-bit curve
2978 keys work ok). In particular you may need to specify HostkeyAlgorithms
2979 when connecting to a server that has not been upgraded from an upgraded
2980 client.
2981
2982 ok naddy@
Damien Miller6af914a2010-09-10 11:39:26 +10002983 - (djm) [authfd.c authfile.c bufec.c buffer.h configure.ac kex.h kexecdh.c]
2984 [kexecdhc.c kexecdhs.c key.c key.h myproposal.h packet.c readconf.c]
2985 [ssh-agent.c ssh-ecdsa.c ssh-keygen.c ssh.c] Disable ECDH and ECDSA on
2986 platforms that don't have the requisite OpenSSL support. ok dtucker@
Darren Tucker8ccb7392010-09-10 12:28:24 +10002987 - (dtucker) [kex.h key.c packet.h ssh-agent.c ssh.c] A few more ECC ifdefs
2988 for missing headers and compiler warnings.
Darren Tucker50e3bab2010-09-10 10:30:25 +10002989
299020100831
Damien Millerafdae612010-08-31 22:31:14 +10002991 - OpenBSD CVS Sync
2992 - jmc@cvs.openbsd.org 2010/08/08 19:36:30
2993 [ssh-keysign.8 ssh.1 sshd.8]
2994 use the same template for all FILES sections; i.e. -compact/.Pp where we
2995 have multiple items, and .Pa for path names;
Damien Miller9b87e792010-08-31 22:31:37 +10002996 - tedu@cvs.openbsd.org 2010/08/12 23:34:39
2997 [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c]
2998 OpenSSL_add_all_algorithms is the name of the function we have a man page
2999 for, so use that. ok djm
Damien Millerd96546f2010-08-31 22:32:12 +10003000 - djm@cvs.openbsd.org 2010/08/16 04:06:06
3001 [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c]
3002 backout previous temporarily; discussed with deraadt@
Damien Millerda108ec2010-08-31 22:36:39 +10003003 - djm@cvs.openbsd.org 2010/08/31 09:58:37
3004 [auth-options.c auth1.c auth2.c bufaux.c buffer.h kex.c key.c packet.c]
3005 [packet.h ssh-dss.c ssh-rsa.c]
3006 Add buffer_get_cstring() and related functions that verify that the
3007 string extracted from the buffer contains no embedded \0 characters*
3008 This prevents random (possibly malicious) crap from being appended to
3009 strings where it would not be noticed if the string is used with
3010 a string(3) function.
3011
3012 Use the new API in a few sensitive places.
3013
3014 * actually, we allow a single one at the end of the string for now because
3015 we don't know how many deployed implementations get this wrong, but don't
3016 count on this to remain indefinitely.
Damien Millereb8b60e2010-08-31 22:41:14 +10003017 - djm@cvs.openbsd.org 2010/08/31 11:54:45
3018 [PROTOCOL PROTOCOL.agent PROTOCOL.certkeys auth2-jpake.c authfd.c]
3019 [authfile.c buffer.h dns.c kex.c kex.h key.c key.h monitor.c]
3020 [monitor_wrap.c myproposal.h packet.c packet.h pathnames.h readconf.c]
3021 [ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c]
3022 [ssh-keyscan.1 ssh-keyscan.c ssh-keysign.8 ssh.1 ssh.c ssh2.h]
3023 [ssh_config.5 sshconnect.c sshconnect2.c sshd.8 sshd.c sshd_config.5]
3024 [uuencode.c uuencode.h bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c]
3025 Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and
3026 host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer
3027 better performance than plain DH and DSA at the same equivalent symmetric
3028 key length, as well as much shorter keys.
3029
3030 Only the mandatory sections of RFC5656 are implemented, specifically the
3031 three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and
3032 ECDSA. Point compression (optional in RFC5656 is NOT implemented).
3033
3034 Certificate host and user keys using the new ECDSA key types are supported.
3035
3036 Note that this code has not been tested for interoperability and may be
3037 subject to change.
3038
3039 feedback and ok markus@
Damien Millerb5a62d02010-08-31 22:47:15 +10003040 - (djm) [Makefile.in] Add new ECC files
Damien Millerc79ff072010-08-31 22:50:48 +10003041 - (djm) [bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] include
3042 includes.h
Damien Millerafdae612010-08-31 22:31:14 +10003043
Darren Tucker6889abd2010-08-27 10:12:54 +1000304420100827
3045 - (dtucker) [contrib/redhat/sshd.init] Bug #1810: initlog is deprecated,
3046 remove. Patch from martynas at venck us
3047
Damien Millera5362022010-08-23 21:20:20 +1000304820100823
3049 - (djm) Release OpenSSH-5.6p1
3050
Darren Tuckeraa74f672010-08-16 13:15:23 +1000305120100816
3052 - (dtucker) [configure.ac openbsd-compat/Makefile.in
3053 openbsd-compat/openbsd-compat.h openbsd-compat/strptime.c] Add strptime to
3054 the compat library which helps on platforms like old IRIX. Based on work
3055 by djm, tested by Tom Christensen.
Damien Miller00d9ae22010-08-17 01:59:31 +10003056 - OpenBSD CVS Sync
3057 - djm@cvs.openbsd.org 2010/08/12 21:49:44
3058 [ssh.c]
3059 close any extra file descriptors inherited from parent at start and
3060 reopen stdin/stdout to /dev/null when forking for ControlPersist.
3061
3062 prevents tools that fork and run a captive ssh for communication from
3063 failing to exit when the ssh completes while they wait for these fds to
3064 close. The inherited fds may persist arbitrarily long if a background
3065 mux master has been started by ControlPersist. cvs and scp were effected
3066 by this.
3067
3068 "please commit" markus@
Damien Miller07ad3892010-08-17 07:04:28 +10003069 - (djm) [regress/README.regress] typo
Darren Tuckeraa74f672010-08-16 13:15:23 +10003070
Tim Rice722b8d12010-08-12 09:43:13 -0700307120100812
3072 - (tim) [regress/login-timeout.sh regress/reconfigure.sh regress/reexec.sh
3073 regress/test-exec.sh] Under certain conditions when testing with sudo
3074 tests would fail because the pidfile could not be read by a regular user.
3075 "cat: cannot open ...../regress/pidfile: Permission denied (error 13)"
3076 Make sure cat is run by $SUDO. no objection from me. djm@
Tim Ricead7d5472010-08-12 10:33:01 -07003077 - (tim) [auth.c] add cast to quiet compiler. Change only affects SVR5 systems.
Tim Rice722b8d12010-08-12 09:43:13 -07003078
Damien Miller7e569b82010-08-09 02:28:37 +1000307920100809
Damien Miller2c4b13a2010-08-10 12:47:40 +10003080 - (djm) bz#1561: don't bother setting IFF_UP on tun(4) device if it is
3081 already set. Makes FreeBSD user openable tunnels useful; patch from
3082 richard.burakowski+ossh AT mrburak.net, ok dtucker@
Darren Tucker02c47342010-08-10 13:36:09 +10003083 - (dtucker) bug #1530: strip trailing ":" from hostname in ssh-copy-id.
3084 based in part on a patch from Colin Watson, ok djm@
Damien Miller2c4b13a2010-08-10 12:47:40 +10003085
308620100809
Damien Miller7e569b82010-08-09 02:28:37 +10003087 - OpenBSD CVS Sync
3088 - djm@cvs.openbsd.org 2010/08/08 16:26:42
3089 [version.h]
3090 crank to 5.6
Damien Miller792010b2010-08-09 02:32:05 +10003091 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
3092 [contrib/suse/openssh.spec] Crank version numbers
Damien Miller7e569b82010-08-09 02:28:37 +10003093
Damien Miller8e604ac2010-08-09 02:28:10 +1000309420100805
Damien Miller7fa96602010-08-05 13:03:13 +10003095 - OpenBSD CVS Sync
3096 - djm@cvs.openbsd.org 2010/08/04 05:37:01
3097 [ssh.1 ssh_config.5 sshd.8]
3098 Remove mentions of weird "addr/port" alternate address format for IPv6
3099 addresses combinations. It hasn't worked for ages and we have supported
3100 the more commen "[addr]:port" format for a long time. ok jmc@ markus@
Damien Miller1da63882010-08-05 13:03:51 +10003101 - djm@cvs.openbsd.org 2010/08/04 05:40:39
3102 [PROTOCOL.certkeys ssh-keygen.c]
3103 tighten the rules for certificate encoding by requiring that options
3104 appear in lexical order and make our ssh-keygen comply. ok markus@
Damien Millerc1583312010-08-05 13:04:50 +10003105 - djm@cvs.openbsd.org 2010/08/04 05:42:47
3106 [auth.c auth2-hostbased.c authfile.c authfile.h ssh-keysign.8]
3107 [ssh-keysign.c ssh.c]
3108 enable certificates for hostbased authentication, from Iain Morgan;
3109 "looks ok" markus@
Damien Miller5458c4d2010-08-05 13:05:15 +10003110 - djm@cvs.openbsd.org 2010/08/04 05:49:22
3111 [authfile.c]
3112 commited the wrong version of the hostbased certificate diff; this
3113 version replaces some strlc{py,at} verbosity with xasprintf() at
3114 the request of markus@
Damien Miller757f34e2010-08-05 13:05:31 +10003115 - djm@cvs.openbsd.org 2010/08/04 06:07:11
3116 [ssh-keygen.1 ssh-keygen.c]
3117 Support CA keys in PKCS#11 tokens; feedback and ok markus@
Damien Millerb89e6b72010-08-05 13:06:20 +10003118 - djm@cvs.openbsd.org 2010/08/04 06:08:40
3119 [ssh-keysign.c]
3120 clean for -Wuninitialized (Id sync only; portable had this change)
Damien Miller7d457182010-08-05 23:09:48 +10003121 - djm@cvs.openbsd.org 2010/08/05 13:08:42
3122 [channels.c]
3123 Fix a trio of bugs in the local/remote window calculation for datagram
3124 data channels (i.e. TunnelForward):
3125
3126 Calculate local_consumed correctly in channel_handle_wfd() by measuring
3127 the delta to buffer_len(c->output) from when we start to when we finish.
3128 The proximal problem here is that the output_filter we use in portable
3129 modified the length of the dequeued datagram (to futz with the headers
3130 for !OpenBSD).
3131
3132 In channel_output_poll(), don't enqueue datagrams that won't fit in the
3133 peer's advertised packet size (highly unlikely to ever occur) or which
3134 won't fit in the peer's remaining window (more likely).
3135
3136 In channel_input_data(), account for the 4-byte string header in
3137 datagram packets that we accept from the peer and enqueue in c->output.
3138
3139 report, analysis and testing 2/3 cases from wierbows AT us.ibm.com;
3140 "looks good" markus@
Damien Miller7fa96602010-08-05 13:03:13 +10003141
Damien Miller8e604ac2010-08-09 02:28:10 +1000314220100803
Darren Tucker8b7a0552010-08-03 15:50:16 +10003143 - (dtucker) [monitor.c] Bug #1795: Initialize the values to be returned from
3144 PAM to sane values in case the PAM method doesn't write to them. Spotted by
3145 Bitman Zhou, ok djm@.
Damien Miller844cccf2010-08-03 16:03:29 +10003146 - OpenBSD CVS Sync
3147 - djm@cvs.openbsd.org 2010/07/16 04:45:30
3148 [ssh-keygen.c]
3149 avoid bogus compiler warning
Damien Miller4e8285e2010-08-03 16:04:03 +10003150 - djm@cvs.openbsd.org 2010/07/16 14:07:35
3151 [ssh-rsa.c]
3152 more timing paranoia - compare all parts of the expected decrypted
3153 data before returning. AFAIK not exploitable in the SSH protocol.
3154 "groovy" deraadt@
Damien Millerc4bb91c2010-08-03 16:04:22 +10003155 - djm@cvs.openbsd.org 2010/07/19 03:16:33
3156 [sftp-client.c]
3157 bz#1797: fix swapped args in upload_dir_internal(), breaking recursive
3158 upload depth checks and causing verbose printing of transfers to always
3159 be turned on; patch from imorgan AT nas.nasa.gov
Damien Millere11e1ea2010-08-03 16:04:46 +10003160 - djm@cvs.openbsd.org 2010/07/19 09:15:12
3161 [clientloop.c readconf.c readconf.h ssh.c ssh_config.5]
3162 add a "ControlPersist" option that automatically starts a background
3163 ssh(1) multiplex master when connecting. This connection can stay alive
3164 indefinitely, or can be set to automatically close after a user-specified
3165 duration of inactivity. bz#1330 - patch by dwmw2 AT infradead.org, but
3166 further hacked on by wmertens AT cisco.com, apb AT cequrux.com,
3167 martin-mindrot-bugzilla AT earth.li and myself; "looks ok" markus@
Damien Miller8c1eb112010-08-03 16:05:05 +10003168 - djm@cvs.openbsd.org 2010/07/21 02:10:58
3169 [misc.c]
3170 sync timingsafe_bcmp() with the one dempsky@ committed to sys/lib/libkern
Damien Miller081f3c72010-08-03 16:05:25 +10003171 - dtucker@cvs.openbsd.org 2010/07/23 08:49:25
3172 [ssh.1]
3173 Ciphers is documented in ssh_config(5) these days
Darren Tucker8b7a0552010-08-03 15:50:16 +10003174
317520100819
Darren Tucker12b29db2010-07-19 21:24:13 +10003176 - (dtucker) [contrib/ssh-copy-ud.1] Bug #1786: update ssh-copy-id.1 with more
3177 details about its behaviour WRT existing directories. Patch from
3178 asguthrie at gmail com, ok djm.
3179
Damien Miller9308fc72010-07-16 13:56:01 +1000318020100716
3181 - (djm) OpenBSD CVS Sync
3182 - djm@cvs.openbsd.org 2010/07/02 04:32:44
3183 [misc.c]
3184 unbreak strdelim() skipping past quoted strings, e.g.
3185 AllowUsers "blah blah" blah
3186 was broken; report and fix in bz#1757 from bitman.zhou AT centrify.com
3187 ok dtucker;
Damien Miller1f25ab42010-07-16 13:56:23 +10003188 - djm@cvs.openbsd.org 2010/07/12 22:38:52
3189 [ssh.c]
3190 Make ExitOnForwardFailure work with fork-after-authentication ("ssh -f")
3191 for protocol 2. ok markus@
Damien Millerd0244d42010-07-16 13:56:43 +10003192 - djm@cvs.openbsd.org 2010/07/12 22:41:13
3193 [ssh.c ssh_config.5]
3194 expand %h to the hostname in ssh_config Hostname options. While this
3195 sounds useless, it is actually handy for working with unqualified
3196 hostnames:
3197
3198 Host *.*
3199 Hostname %h
3200 Host *
3201 Hostname %h.example.org
3202
3203 "I like it" markus@
Damien Miller8a0268f2010-07-16 13:57:51 +10003204 - djm@cvs.openbsd.org 2010/07/13 11:52:06
3205 [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c]
3206 [packet.c ssh-rsa.c]
3207 implement a timing_safe_cmp() function to compare memory without leaking
3208 timing information by short-circuiting like memcmp() and use it for
3209 some of the more sensitive comparisons (though nothing high-value was
3210 readily attackable anyway); "looks ok" markus@
Damien Millerea1651c2010-07-16 13:58:37 +10003211 - djm@cvs.openbsd.org 2010/07/13 23:13:16
3212 [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c packet.c]
3213 [ssh-rsa.c]
3214 s/timing_safe_cmp/timingsafe_bcmp/g
Damien Millerbcfbc482010-07-16 13:59:11 +10003215 - jmc@cvs.openbsd.org 2010/07/14 17:06:58
3216 [ssh.1]
3217 finally ssh synopsis looks nice again! this commit just removes a ton of
3218 hacks we had in place to make it work with old groff;
Damien Millerbad5e032010-07-16 13:59:59 +10003219 - schwarze@cvs.openbsd.org 2010/07/15 21:20:38
3220 [ssh-keygen.1]
3221 repair incorrect block nesting, which screwed up indentation;
3222 problem reported and fix OK by jmc@
Damien Miller9308fc72010-07-16 13:56:01 +10003223
Tim Ricecfbdc282010-07-14 13:42:28 -0700322420100714
3225 - (tim) [contrib/redhat/openssh.spec] Bug 1796: Test for skip_x11_askpass
3226 (line 77) should have been for no_x11_askpass.
3227
Damien Millercede1db2010-07-02 13:33:48 +1000322820100702
3229 - (djm) OpenBSD CVS Sync
3230 - jmc@cvs.openbsd.org 2010/06/26 00:57:07
3231 [ssh_config.5]
3232 tweak previous;
Damien Millerb96c4412010-07-02 13:34:24 +10003233 - djm@cvs.openbsd.org 2010/06/26 23:04:04
3234 [ssh.c]
3235 oops, forgot to #include <canohost.h>; spotted and patch from chl@
Damien Miller44b25042010-07-02 13:35:01 +10003236 - djm@cvs.openbsd.org 2010/06/29 23:15:30
3237 [ssh-keygen.1 ssh-keygen.c]
3238 allow import (-i) and export (-e) of PEM and PKCS#8 encoded keys;
3239 bz#1749; ok markus@
Damien Miller6018a362010-07-02 13:35:19 +10003240 - djm@cvs.openbsd.org 2010/06/29 23:16:46
3241 [auth2-pubkey.c sshd_config.5]
3242 allow key options (command="..." and friends) in AuthorizedPrincipals;
3243 ok markus@
Damien Millerea727282010-07-02 13:35:34 +10003244 - jmc@cvs.openbsd.org 2010/06/30 07:24:25
3245 [ssh-keygen.1]
3246 tweak previous;
Damien Miller6022f582010-07-02 13:37:01 +10003247 - jmc@cvs.openbsd.org 2010/06/30 07:26:03
3248 [ssh-keygen.c]
3249 sort usage();
Damien Millerd59dab82010-07-02 13:37:17 +10003250 - jmc@cvs.openbsd.org 2010/06/30 07:28:34
3251 [sshd_config.5]
3252 tweak previous;
Damien Miller0979b402010-07-02 13:37:33 +10003253 - millert@cvs.openbsd.org 2010/07/01 13:06:59
3254 [scp.c]
3255 Fix a longstanding problem where if you suspend scp at the
3256 password/passphrase prompt the terminal mode is not restored.
3257 OK djm@
Damien Miller527ded72010-07-02 13:40:16 +10003258 - phessler@cvs.openbsd.org 2010/06/27 19:19:56
3259 [regress/Makefile]
3260 fix how we run the tests so we can successfully use SUDO='sudo -E'
3261 in our env
Damien Millerab139cd2010-07-02 13:42:18 +10003262 - djm@cvs.openbsd.org 2010/06/29 23:59:54
3263 [cert-userkey.sh]
3264 regress tests for key options in AuthorizedPrincipals
Damien Millercede1db2010-07-02 13:33:48 +10003265
Tim Rice3fd307d2010-06-26 16:45:15 -0700326620100627
3267 - (tim) [openbsd-compat/port-uw.c] Reorder includes. auth-options.h now needs
3268 key.h.
3269
Damien Miller2e774462010-06-26 09:30:47 +1000327020100626
3271 - (djm) OpenBSD CVS Sync
3272 - djm@cvs.openbsd.org 2010/05/21 05:00:36
3273 [misc.c]
3274 colon() returns char*, so s/return (0)/return NULL/
Damien Miller4fe686d2010-06-26 09:36:10 +10003275 - markus@cvs.openbsd.org 2010/06/08 21:32:19
3276 [ssh-pkcs11.c]
3277 check length of value returned C_GetAttributValue for != 0
3278 from mdrtbugzilla@codefive.co.uk; bugzilla #1773; ok dtucker@
Damien Millerc094d1e2010-06-26 09:36:34 +10003279 - djm@cvs.openbsd.org 2010/06/17 07:07:30
3280 [mux.c]
3281 Correct sizing of object to be allocated by calloc(), replacing
3282 sizeof(state) with sizeof(*state). This worked by accident since
3283 the struct contained a single int at present, but could have broken
3284 in the future. patch from hyc AT symas.com
Damien Miller99ac4e92010-06-26 09:36:58 +10003285 - djm@cvs.openbsd.org 2010/06/18 00:58:39
3286 [sftp.c]
3287 unbreak ls in working directories that contains globbing characters in
3288 their pathnames. bz#1655 reported by vgiffin AT apple.com
Damien Miller7aa46ec2010-06-26 09:37:57 +10003289 - djm@cvs.openbsd.org 2010/06/18 03:16:03
3290 [session.c]
3291 Missing check for chroot_director == "none" (we already checked against
3292 NULL); bz#1564 from Jan.Pechanec AT Sun.COM
Damien Miller49566312010-06-26 09:38:23 +10003293 - djm@cvs.openbsd.org 2010/06/18 04:43:08
3294 [sftp-client.c]
3295 fix memory leak in do_realpath() error path; bz#1771, patch from
3296 anicka AT suse.cz
Damien Millerab6de352010-06-26 09:38:45 +10003297 - djm@cvs.openbsd.org 2010/06/22 04:22:59
3298 [servconf.c sshd_config.5]
3299 expose some more sshd_config options inside Match blocks:
3300 AuthorizedKeysFile AuthorizedPrincipalsFile
3301 HostbasedUsesNameFromPacketOnly PermitTunnel
3302 bz#1764; feedback from imorgan AT nas.nasa.gov; ok dtucker@
Damien Millerba3420a2010-06-26 09:39:07 +10003303 - djm@cvs.openbsd.org 2010/06/22 04:32:06
3304 [ssh-keygen.c]
3305 standardise error messages when attempting to open private key
3306 files to include "progname: filename: error reason"
3307 bz#1783; ok dtucker@
Damien Miller48147d62010-06-26 09:39:25 +10003308 - djm@cvs.openbsd.org 2010/06/22 04:49:47
3309 [auth.c]
3310 queue auth debug messages for bad ownership or permissions on the user's
3311 keyfiles. These messages will be sent after the user has successfully
3312 authenticated (where our client will display them with LogLevel=debug).
Damien Miller0e76c5e2010-06-26 09:39:59 +10003313 bz#1554; ok dtucker@
3314 - djm@cvs.openbsd.org 2010/06/22 04:54:30
3315 [ssh-keyscan.c]
3316 replace verbose and overflow-prone Linebuf code with read_keyfile_line()
3317 based on patch from joachim AT joachimschipper.nl; bz#1565; ok dtucker@
Damien Miller1b2b61e2010-06-26 09:47:43 +10003318 - djm@cvs.openbsd.org 2010/06/22 04:59:12
3319 [session.c]
3320 include the user name on "subsystem request for ..." log messages;
3321 bz#1571; ok dtucker@
Damien Millerd834d352010-06-26 09:48:02 +10003322 - djm@cvs.openbsd.org 2010/06/23 02:59:02
3323 [ssh-keygen.c]
3324 fix printing of extensions in v01 certificates that I broke in r1.190
Damien Miller232cfb12010-06-26 09:50:30 +10003325 - djm@cvs.openbsd.org 2010/06/25 07:14:46
3326 [channels.c mux.c readconf.c readconf.h ssh.h]
3327 bz#1327: remove hardcoded limit of 100 permitopen clauses and port
3328 forwards per direction; ok markus@ stevesk@
Damien Miller8853ca52010-06-26 10:00:14 +10003329 - djm@cvs.openbsd.org 2010/06/25 07:20:04
3330 [channels.c session.c]
3331 bz#1750: fix requirement for /dev/null inside ChrootDirectory for
3332 internal-sftp accidentally introduced in r1.253 by removing the code
3333 that opens and dup /dev/null to stderr and modifying the channels code
3334 to read stderr but discard it instead; ok markus@
Damien Millerbda3eca2010-06-26 10:01:33 +10003335 - djm@cvs.openbsd.org 2010/06/25 08:46:17
3336 [auth1.c auth2-none.c]
3337 skip the initial check for access with an empty password when
3338 PermitEmptyPasswords=no; bz#1638; ok markus@
Damien Miller383ffe62010-06-26 10:02:03 +10003339 - djm@cvs.openbsd.org 2010/06/25 23:10:30
3340 [ssh.c]
3341 log the hostname and address that we connected to at LogLevel=verbose
3342 after authentication is successful to mitigate "phishing" attacks by
3343 servers with trusted keys that accept authentication silently and
3344 automatically before presenting fake password/passphrase prompts;
3345 "nice!" markus@
Damien Miller1ab6a512010-06-26 10:02:24 +10003346 - djm@cvs.openbsd.org 2010/06/25 23:10:30
3347 [ssh.c]
3348 log the hostname and address that we connected to at LogLevel=verbose
3349 after authentication is successful to mitigate "phishing" attacks by
3350 servers with trusted keys that accept authentication silently and
3351 automatically before presenting fake password/passphrase prompts;
3352 "nice!" markus@
Damien Miller2e774462010-06-26 09:30:47 +10003353
Damien Millerd82a2602010-06-22 15:02:39 +1000335420100622
3355 - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512
3356 bz#1579; ok dtucker
3357
Damien Millerea909792010-06-18 11:09:24 +1000335820100618
3359 - (djm) [contrib/ssh-copy-id] Update key file explicitly under ~
3360 rather than assuming that $CWD == $HOME. bz#1500, patch from
3361 timothy AT gelter.com
3362
Tim Riceb9ae4ec2010-06-17 11:11:44 -0700336320100617
3364 - (tim) [contrib/cygwin/README] Remove a reference to the obsolete
3365 minires-devel package, and to add the reference to the libedit-devel
3366 package since CYgwin now provides libedit. Patch from Corinna Vinschen.
3367
Damien Miller3bcce802010-05-21 14:48:16 +1000336820100521
3369 - (djm) OpenBSD CVS Sync
3370 - djm@cvs.openbsd.org 2010/05/07 11:31:26
3371 [regress/Makefile regress/cert-userkey.sh]
3372 regress tests for AuthorizedPrincipalsFile and "principals=" key option.
3373 feedback and ok markus@
Damien Miller3b903822010-05-21 14:56:25 +10003374 - djm@cvs.openbsd.org 2010/05/11 02:58:04
3375 [auth-rsa.c]
3376 don't accept certificates marked as "cert-authority" here; ok markus@
Damien Millerc6afb5f2010-05-21 14:56:47 +10003377 - djm@cvs.openbsd.org 2010/05/14 00:47:22
3378 [ssh-add.c]
3379 check that the certificate matches the corresponding private key before
3380 grafting it on
Damien Millerd530f5f2010-05-21 14:57:10 +10003381 - djm@cvs.openbsd.org 2010/05/14 23:29:23
3382 [channels.c channels.h mux.c ssh.c]
3383 Pause the mux channel while waiting for reply from aynch callbacks.
3384 Prevents misordering of replies if new requests arrive while waiting.
3385
3386 Extend channel open confirm callback to allow signalling failure
3387 conditions as well as success. Use this to 1) fix a memory leak, 2)
3388 start using the above pause mechanism and 3) delay sending a success/
3389 failure message on mux slave session open until we receive a reply from
3390 the server.
3391
3392 motivated by and with feedback from markus@
Damien Miller388f6fc2010-05-21 14:57:35 +10003393 - markus@cvs.openbsd.org 2010/05/16 12:55:51
3394 [PROTOCOL.mux clientloop.h mux.c readconf.c readconf.h ssh.1 ssh.c]
3395 mux support for remote forwarding with dynamic port allocation,
3396 use with
3397 LPORT=`ssh -S muxsocket -R0:localhost:25 -O forward somehost`
3398 feedback and ok djm@
Damien Miller84399552010-05-21 14:58:12 +10003399 - djm@cvs.openbsd.org 2010/05/20 11:25:26
3400 [auth2-pubkey.c]
3401 fix logspam when key options (from="..." especially) deny non-matching
3402 keys; reported by henning@ also bz#1765; ok markus@ dtucker@
Damien Millerd0e4a8e2010-05-21 14:58:32 +10003403 - djm@cvs.openbsd.org 2010/05/20 23:46:02
3404 [PROTOCOL.certkeys auth-options.c ssh-keygen.c]
3405 Move the permit-* options to the non-critical "extensions" field for v01
3406 certificates. The logic is that if another implementation fails to
3407 implement them then the connection just loses features rather than fails
3408 outright.
3409
3410 ok markus@
Damien Miller3bcce802010-05-21 14:48:16 +10003411
Darren Tucker5b6d0d02010-05-12 16:51:38 +1000341220100511
3413 - (dtucker) [Makefile.in] Bug #1770: Link libopenbsd-compat twice to solve
3414 circular dependency problem on old or odd platforms. From Tom Lane, ok
3415 djm@.
Damien Miller4b1ec832010-05-12 17:49:59 +10003416 - (djm) [openbsd-compat/openssl-compat.h] Fix build breakage on older
3417 libcrypto by defining OPENSSL_[DR]SA_MAX_MODULUS_BITS if they aren't
3418 already. ok dtucker@
Darren Tucker5b6d0d02010-05-12 16:51:38 +10003419
Damien Miller50af79b2010-05-10 11:52:00 +1000342020100510
3421 - OpenBSD CVS Sync
3422 - djm@cvs.openbsd.org 2010/04/23 01:47:41
3423 [ssh-keygen.c]
3424 bz#1740: display a more helpful error message when $HOME is
3425 inaccessible while trying to create .ssh directory. Based on patch
3426 from jchadima AT redhat.com; ok dtucker@
Damien Miller85c50d72010-05-10 11:53:02 +10003427 - djm@cvs.openbsd.org 2010/04/23 22:27:38
3428 [mux.c]
3429 set "detach_close" flag when registering channel cleanup callbacks.
3430 This causes the channel to close normally when its fds close and
3431 hangs when terminating a mux slave using ~. bz#1758; ok markus@
Damien Miller22a29882010-05-10 11:53:54 +10003432 - djm@cvs.openbsd.org 2010/04/23 22:42:05
3433 [session.c]
3434 set stderr to /dev/null for subsystems rather than just closing it.
3435 avoids hangs if a subsystem or shell initialisation writes to stderr.
3436 bz#1750; ok markus@
Damien Millerbebbb7e2010-05-10 11:54:38 +10003437 - djm@cvs.openbsd.org 2010/04/23 22:48:31
3438 [ssh-keygen.c]
3439 refuse to generate keys longer than OPENSSL_[RD]SA_MAX_MODULUS_BITS,
3440 since we would refuse to use them anyway. bz#1516; ok dtucker@
Damien Miller79442c02010-05-10 11:55:38 +10003441 - djm@cvs.openbsd.org 2010/04/26 22:28:24
3442 [sshconnect2.c]
3443 bz#1502: authctxt.success is declared as an int, but passed by
3444 reference to function that accepts sig_atomic_t*. Convert it to
3445 the latter; ok markus@ dtucker@
Damien Miller2725c212010-05-10 11:56:14 +10003446 - djm@cvs.openbsd.org 2010/05/01 02:50:50
3447 [PROTOCOL.certkeys]
3448 typo; jmeltzer@
Damien Miller099fc162010-05-10 11:56:50 +10003449 - dtucker@cvs.openbsd.org 2010/05/05 04:22:09
3450 [sftp.c]
3451 restore mput and mget which got lost in the tab-completion changes.
3452 found by Kenneth Whitaker, ok djm@
Damien Miller30da3442010-05-10 11:58:03 +10003453 - djm@cvs.openbsd.org 2010/05/07 11:30:30
3454 [auth-options.c auth-options.h auth.c auth.h auth2-pubkey.c]
3455 [key.c servconf.c servconf.h sshd.8 sshd_config.5]
3456 add some optional indirection to matching of principal names listed
3457 in certificates. Currently, a certificate must include the a user's name
3458 to be accepted for authentication. This change adds the ability to
3459 specify a list of certificate principal names that are acceptable.
3460
3461 When authenticating using a CA trusted through ~/.ssh/authorized_keys,
3462 this adds a new principals="name1[,name2,...]" key option.
3463
3464 For CAs listed through sshd_config's TrustedCAKeys option, a new config
3465 option "AuthorizedPrincipalsFile" specifies a per-user file containing
3466 the list of acceptable names.
3467
3468 If either option is absent, the current behaviour of requiring the
3469 username to appear in principals continues to apply.
3470
3471 These options are useful for role accounts, disjoint account namespaces
3472 and "user@realm"-style naming policies in certificates.
3473
3474 feedback and ok markus@
Damien Miller81d3fc52010-05-10 11:58:45 +10003475 - jmc@cvs.openbsd.org 2010/05/07 12:49:17
3476 [sshd_config.5]
3477 tweak previous;
Damien Miller50af79b2010-05-10 11:52:00 +10003478
Darren Tucker9f8703b2010-04-23 11:12:06 +1000347920100423
3480 - (dtucker) [configure.ac] Bug #1756: Check for the existence of a lib64 dir
3481 in the openssl install directory (some newer openssl versions do this on at
3482 least some amd64 platforms).
3483
Damien Millerc4eddee2010-04-18 08:07:43 +1000348420100418
3485 - OpenBSD CVS Sync
3486 - jmc@cvs.openbsd.org 2010/04/16 06:45:01
3487 [ssh_config.5]
3488 tweak previous; ok djm
Damien Miller1f181422010-04-18 08:08:03 +10003489 - jmc@cvs.openbsd.org 2010/04/16 06:47:04
3490 [ssh-keygen.1 ssh-keygen.c]
3491 tweak previous; ok djm
Damien Millerc617aa92010-04-18 08:08:20 +10003492 - djm@cvs.openbsd.org 2010/04/16 21:14:27
3493 [sshconnect.c]
3494 oops, %r => remote username, not %u
Damien Miller53f4bb62010-04-18 08:15:14 +10003495 - djm@cvs.openbsd.org 2010/04/16 01:58:45
3496 [regress/cert-hostkey.sh regress/cert-userkey.sh]
3497 regression tests for v01 certificate format
3498 includes interop tests for v00 certs
Darren Tuckere25a9bd2010-04-18 13:35:00 +10003499 - (dtucker) [contrib/aix/buildbff.sh] Fix creation of ssh_prng_cmds.default
3500 file.
Damien Millerc4eddee2010-04-18 08:07:43 +10003501
Damien Millera45f1c02010-04-16 15:51:34 +1000350220100416
3503 - (djm) Release openssh-5.5p1
Damien Millerd6fc3062010-04-16 15:51:45 +10003504 - OpenBSD CVS Sync
3505 - djm@cvs.openbsd.org 2010/03/26 03:13:17
3506 [bufaux.c]
3507 allow buffer_get_int_ret/buffer_get_int64_ret to take a NULL pointer
3508 argument to allow skipping past values in a buffer
Damien Miller67f30d72010-04-16 15:52:03 +10003509 - jmc@cvs.openbsd.org 2010/03/26 06:54:36
3510 [ssh.1]
3511 tweak previous;
Damien Miller544378d2010-04-16 15:52:24 +10003512 - jmc@cvs.openbsd.org 2010/03/27 14:26:55
3513 [ssh_config.5]
3514 tweak previous; ok dtucker
Damien Millerdeb5a142010-04-16 15:52:43 +10003515 - djm@cvs.openbsd.org 2010/04/10 00:00:16
3516 [ssh.c]
3517 bz#1746 - suppress spurious tty warning when using -O and stdin
3518 is not a tty; ok dtucker@ markus@
Damien Miller67283992010-04-16 15:53:02 +10003519 - djm@cvs.openbsd.org 2010/04/10 00:04:30
3520 [sshconnect.c]
3521 fix terminology: we didn't find a certificate in known_hosts, we found
3522 a CA key
Damien Miller22c97f12010-04-16 15:53:23 +10003523 - djm@cvs.openbsd.org 2010/04/10 02:08:44
3524 [clientloop.c]
3525 bz#1698: kill channel when pty allocation requests fail. Fixed
3526 stuck client if the server refuses pty allocation.
3527 ok dtucker@ "think so" markus@
Damien Miller88680652010-04-16 15:53:43 +10003528 - djm@cvs.openbsd.org 2010/04/10 02:10:56
3529 [sshconnect2.c]
3530 show the key type that we are offering in debug(), helps distinguish
3531 between certs and plain keys as the path to the private key is usually
3532 the same.
Damien Miller601a23c2010-04-16 15:54:01 +10003533 - djm@cvs.openbsd.org 2010/04/10 05:48:16
3534 [mux.c]
3535 fix NULL dereference; from matthew.haub AT alumni.adelaide.edu.au
Damien Millerb1b17042010-04-16 15:54:19 +10003536 - djm@cvs.openbsd.org 2010/04/14 22:27:42
3537 [ssh_config.5 sshconnect.c]
3538 expand %r => remote username in ssh_config:ProxyCommand;
3539 ok deraadt markus
Damien Miller031c9102010-04-16 15:54:44 +10003540 - markus@cvs.openbsd.org 2010/04/15 20:32:55
3541 [ssh-pkcs11.c]
3542 retry lookup for private key if there's no matching key with CKA_SIGN
3543 attribute enabled; this fixes fixes MuscleCard support (bugzilla #1736)
3544 ok djm@
Damien Miller4e270b02010-04-16 15:56:21 +10003545 - djm@cvs.openbsd.org 2010/04/16 01:47:26
3546 [PROTOCOL.certkeys auth-options.c auth-options.h auth-rsa.c]
3547 [auth2-pubkey.c authfd.c key.c key.h myproposal.h ssh-add.c]
3548 [ssh-agent.c ssh-dss.c ssh-keygen.1 ssh-keygen.c ssh-rsa.c]
3549 [sshconnect.c sshconnect2.c sshd.c]
3550 revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the
3551 following changes:
3552
3553 move the nonce field to the beginning of the certificate where it can
3554 better protect against chosen-prefix attacks on the signature hash
3555
3556 Rename "constraints" field to "critical options"
3557
3558 Add a new non-critical "extensions" field
3559
3560 Add a serial number
3561
3562 The older format is still support for authentication and cert generation
3563 (use "ssh-keygen -t v00 -s ca_key ..." to generate a v00 certificate)
3564
3565 ok markus@