blob: d274fc4eaef48033ca64e8b4ea7e924ff0a24300 [file] [log] [blame]
Darren Tucker2aca1592014-01-19 15:25:34 +1100120140119
2 - (dtucker) OpenBSD CVS Sync
3 - dtucker@cvs.openbsd.org 2014/01/17 06:23:24
4 [sftp-server.c]
5 fix log message statvfs. ok djm
Darren Tucker293ee3c2014-01-19 15:28:01 +11006 - dtucker@cvs.openbsd.org 2014/01/18 09:36:26
7 [session.c]
8 explicitly define USE_PIPES to 1 to prevent redefinition warnings in
9 portable on platforms that use pipes for everything.
Darren Tucker2aca1592014-01-19 15:25:34 +110010
Darren Tucker89c532d2014-01-18 20:43:49 +11001120140118
12 - (dtucker) [uidswap.c] Prevent unused variable warnings on Cygwin. Patch
13 from vinschen at redhat.com
Darren Tucker1411c922014-01-18 21:03:59 +110014 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] Add missing function
15 declarations that stopped being included when we stopped including
16 <windows.h> from openbsd-compat/bsd-cygwin_util.h. Patch from vinschen at
17 redhat.com.
Darren Tuckerfdce3732014-01-18 21:12:42 +110018 - (dtucker) [configure.ac] On Cygwin the getopt variables (like optargs,
19 optind) are defined in getopt.h already. Unfortunately they are defined as
20 "declspec(dllimport)" for historical reasons, because the GNU linker didn't
21 allow auto-import on PE/COFF targets way back when. The problem is the
22 dllexport attributes collide with the definitions in the various source
23 files in OpenSSH, which obviousy define the variables without
24 declspec(dllimport). The least intrusive way to get rid of these warnings
25 is to disable warnings for GCC compiler attributes when building on Cygwin.
26 Patch from vinschen at redhat.com.
Darren Tucker841f7da2014-01-18 22:12:15 +110027 - (dtucker) [sandbox-capsicum.c] Correct some error messages and make the
28 return value check for cap_enter() consistent with the other uses in
29 FreeBSD. From by Loganaden Velvindron @ AfriNIC via bz#2140.
Darren Tucker89c532d2014-01-18 20:43:49 +110030
Darren Tuckerfd994372014-01-17 09:53:24 +11003120140117
32 - (dtucker) [aclocal.m4 configure.ac] Add some additional compiler/toolchain
33 hardening flags including -fstack-protector-strong. These default to on
34 if the toolchain supports them, but there is a configure-time knob
35 (--without-hardening) to disable them if necessary. ok djm@
Damien Millerc3d483f2014-01-17 11:20:26 +110036 - (djm) [sftp-client.c] signed/unsigned comparison fix
Darren Tucker1c4a0112014-01-17 12:23:23 +110037 - (dtucker) [loginrec.c] Cast to the types specfied in the format
38 specification to prevent warnings.
Darren Tuckerac413b62014-01-17 12:31:33 +110039 - (dtucker) [crypto_api.h] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
Darren Tucker99df3692014-01-17 12:42:17 +110040 - (dtucker) [poly1305.c] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
Darren Tuckerf45f78a2014-01-17 12:43:43 +110041 - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c] Include
42 includes.h to pull in all of the compatibility stuff.
Darren Tuckerc3ed0652014-01-17 14:18:45 +110043 - (dtucker) [openbsd-compat/bcrypt_pbkdf.c] Wrap stdlib.h include inside
44 #ifdef HAVE_STDINT_H.
Darren Tuckeracad3512014-01-17 14:20:05 +110045 - (dtucker) [defines.h] Add typedefs for uintXX_t types for platforms that
46 don't have them.
Darren Tuckerc5487222014-01-17 15:12:16 +110047 - (dtucker) [configure.ac] Split AC_CHECK_FUNCS for OpenSSL functions into
48 separate lines and alphabetize for easier diffing of changes.
Darren Tucker5f1c57a2014-01-17 16:29:45 +110049 - (dtucker) OpenBSD CVS Sync
50 - djm@cvs.openbsd.org 2014/01/17 00:21:06
51 [sftp-client.c]
52 signed/unsigned comparison warning fix; from portable (Id sync only)
Darren Tuckera9d186a2014-01-17 16:30:49 +110053 - dtucker@cvs.openbsd.org 2014/01/17 05:26:41
54 [digest.c]
55 remove unused includes. ok djm@
Damien Miller868ea1e2014-01-17 16:47:04 +110056 - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c]
57 [sandbox-null.c sandbox-rlimit.c sandbox-seccomp-filter.c]
58 [sandbox-systrace.c ssh-sandbox.h sshd.c] Support preauth sandboxing
59 using the Capsicum API introduced in FreeBSD 10. Patch by Dag-Erling
60 Smorgrav, updated by Loganaden Velvindron @ AfriNIC; ok dtucker@
Darren Tuckerd23a91f2014-01-17 17:32:30 +110061 - (dtucker) [configure.ac digest.c openbsd-compat/openssl-compat.c
62 openbsd-compat/openssl-compat.h] Add compatibility layer for older
63 openssl versions. ok djm@
Darren Tucker1357d712014-01-17 18:00:40 +110064 - (dtucker) Fix typo in #ifndef.
Darren Tuckera5cf1e22014-01-17 18:10:58 +110065 - (dtucker) [configure.ac openbsd-compat/bsd-statvfs.c
66 openbsd-compat/bsd-statvfs.h] Implement enough of statvfs on top of statfs
67 to be useful (and for the regression tests to pass) on platforms that
68 have statfs and fstatfs. ok djm@
Darren Tucker50556992014-01-17 18:48:22 +110069 - (dtucker) [openbsd-compat/bsd-statvfs.h] Only start including headers if we
70 need them to cut down on the name collisions.
Darren Tucker6d725682014-01-17 19:17:34 +110071 - (dtucker) [configure.ac] Also look in inttypes.h for uintXX_t types.
Darren Tucker9edcbff2014-01-17 21:54:32 +110072 - (dtucker) [configure.ac] Have --without-hardening not turn off
73 stack-protector since that has a separate flag that's been around a while.
Darren Tuckera3357662014-01-18 00:03:57 +110074 - (dtucker) [readconf.c] Wrap paths.h inside an ifdef. Allows building on
75 Solaris.
Darren Tucker355f8612014-01-18 00:12:38 +110076 - (dtucker) [defines.h] Move our definitions of uintXX_t types down to after
77 they're defined if we have to define them ourselves. Fixes builds on old
78 AIX.
Darren Tuckerfd994372014-01-17 09:53:24 +110079
Damien Miller52c371c2014-01-16 18:42:10 +11008020140118
81 - (djm) OpenBSD CVS Sync
82 - djm@cvs.openbsd.org 2014/01/16 07:31:09
83 [sftp-client.c]
84 needless and incorrect cast to size_t can break resumption of
85 large download; patch from tobias@
Damien Miller0fa29e62014-01-16 18:42:31 +110086 - djm@cvs.openbsd.org 2014/01/16 07:32:00
87 [version.h]
88 openssh-6.5
Damien Miller2ae77e62014-01-16 18:51:07 +110089 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
90 [contrib/suse/openssh.spec] Crank RPM spec version numbers.
Damien Miller366224d2014-01-16 18:51:44 +110091 - (djm) [README] update release notes URL.
Damien Miller52c371c2014-01-16 18:42:10 +110092
Damien Milleraf5d4482014-01-12 19:20:47 +11009320140112
94 - (djm) OpenBSD CVS Sync
95 - djm@cvs.openbsd.org 2014/01/10 05:59:19
96 [sshd_config]
97 the /etc/ssh/ssh_host_ed25519_key is loaded by default too
Damien Miller91b580e2014-01-12 19:21:22 +110098 - djm@cvs.openbsd.org 2014/01/12 08:13:13
99 [bufaux.c buffer.h kex.c kex.h kexc25519.c kexc25519c.c kexc25519s.c]
100 [kexdhc.c kexdhs.c kexecdhc.c kexecdhs.c kexgexc.c kexgexs.c]
101 avoid use of OpenSSL BIGNUM type and functions for KEX with
102 Curve25519 by adding a buffer_put_bignum2_from_string() that stores
103 a string using the bignum encoding rules. Will make it easier to
104 build a reduced-feature OpenSSH without OpenSSL in the future;
105 ok markus@
Damien Milleraf5d4482014-01-12 19:20:47 +1100106
Damien Miller3e498532014-01-10 10:37:05 +110010720140110
108 - (djm) OpenBSD CVS Sync
109 - tedu@cvs.openbsd.org 2014/01/04 17:50:55
110 [mac.c monitor_mm.c monitor_mm.h xmalloc.c]
111 use standard types and formats for size_t like variables. ok dtucker
Damien Millere00e4132014-01-10 10:40:45 +1100112 - guenther@cvs.openbsd.org 2014/01/09 03:26:00
113 [sftp-common.c]
114 When formating the time for "ls -l"-style output, show dates in the future
115 with the year, and rearrange a comparison to avoid a potentional signed
116 arithmetic overflow that would give the wrong result.
117 ok djm@
Damien Millerb3051d02014-01-10 10:58:53 +1100118 - djm@cvs.openbsd.org 2014/01/09 23:20:00
119 [digest.c digest.h hostfile.c kex.c kex.h kexc25519.c kexc25519c.c]
120 [kexc25519s.c kexdh.c kexecdh.c kexecdhc.c kexecdhs.c kexgex.c kexgexc.c]
121 [kexgexs.c key.c key.h roaming_client.c roaming_common.c schnorr.c]
122 [schnorr.h ssh-dss.c ssh-ecdsa.c ssh-rsa.c sshconnect2.c]
123 Introduce digest API and use it to perform all hashing operations
124 rather than calling OpenSSL EVP_Digest* directly. Will make it easier
125 to build a reduced-feature OpenSSH without OpenSSL in future;
126 feedback, ok markus@
Damien Miller58cd63b2014-01-10 10:59:24 +1100127 - djm@cvs.openbsd.org 2014/01/09 23:26:48
128 [sshconnect.c sshd.c]
129 ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient,
130 deranged and might make some attacks on KEX easier; ok markus@
Damien Miller3e498532014-01-10 10:37:05 +1100131
Damien Millera9c1e502014-01-08 16:13:12 +110013220140108
133 - (djm) [regress/.cvsignore] Ignore regress test droppings; ok dtucker@
134
Damien Miller324541e2013-12-31 12:25:40 +110013520131231
136 - (djm) OpenBSD CVS Sync
137 - djm@cvs.openbsd.org 2013/12/30 23:52:28
138 [auth2-hostbased.c auth2-pubkey.c compat.c compat.h ssh-rsa.c]
139 [sshconnect.c sshconnect2.c sshd.c]
140 refuse RSA keys from old proprietary clients/servers that use the
141 obsolete RSA+MD5 signature scheme. it will still be possible to connect
142 with these clients/servers but only DSA keys will be accepted, and we'll
143 deprecate them entirely in a future release. ok markus@
144
Damien Miller7d97fd92013-12-29 17:40:18 +110014520131229
146 - (djm) [loginrec.c] Check for username truncation when looking up lastlog
147 entries
Damien Miller9f4c8e72013-12-29 17:57:46 +1100148 - (djm) [regress/Makefile] Add some generated files for cleaning
Damien Milleref275ea2013-12-29 17:44:07 +1100149 - (djm) OpenBSD CVS Sync
150 - djm@cvs.openbsd.org 2013/12/19 00:10:30
151 [ssh-add.c]
152 skip requesting smartcard PIN when removing keys from agent; bz#2187
153 patch from jay AT slushpupie.com; ok dtucker
Damien Millerbb3dafe2013-12-29 17:44:29 +1100154 - dtucker@cvs.openbsd.org 2013/12/19 00:19:12
155 [serverloop.c]
156 Cast client_alive_interval to u_int64_t before assinging to
157 max_time_milliseconds to avoid potential integer overflow in the timeout.
158 bz#2170, patch from Loganaden Velvindron, ok djm@
Damien Millerbf25d112013-12-29 17:44:56 +1100159 - djm@cvs.openbsd.org 2013/12/19 00:27:57
160 [auth-options.c]
161 simplify freeing of source-address certificate restriction
Damien Miller4def1842013-12-29 17:45:26 +1100162 - djm@cvs.openbsd.org 2013/12/19 01:04:36
163 [channels.c]
164 bz#2147: fix multiple remote forwardings with dynamically assigned
165 listen ports. In the s->c message to open the channel we were sending
166 zero (the magic number to request a dynamic port) instead of the actual
167 listen port. The client therefore had no way of discriminating between
168 them.
169
170 Diagnosis and fix by ronf AT timeheart.net
Damien Miller0b36c832013-12-29 17:45:51 +1100171 - djm@cvs.openbsd.org 2013/12/19 01:19:41
172 [ssh-agent.c]
173 bz#2186: don't crash (NULL deref) when deleting PKCS#11 keys from an agent
174 that has a mix of normal and PKCS#11 keys; fix from jay AT slushpupie.com;
175 ok dtucker
Damien Miller339a48f2013-12-29 17:46:49 +1100176 - djm@cvs.openbsd.org 2013/12/19 22:57:13
177 [poly1305.c poly1305.h]
178 use full name for author, with his permission
Damien Miller13797712013-12-29 17:47:14 +1100179 - tedu@cvs.openbsd.org 2013/12/21 07:10:47
180 [ssh-keygen.1]
181 small typo
Damien Miller3e192952013-12-29 17:47:50 +1100182 - djm@cvs.openbsd.org 2013/12/27 22:30:17
183 [ssh-dss.c ssh-ecdsa.c ssh-rsa.c]
184 make the original RSA and DSA signing/verification code look more like
185 the ECDSA/Ed25519 ones: use key_type_plain() when checking the key type
186 rather than tediously listing all variants, use __func__ for debug/
187 error messages
Damien Miller06122e92013-12-29 17:48:15 +1100188 - djm@cvs.openbsd.org 2013/12/27 22:37:18
189 [ssh-rsa.c]
190 correct comment
Damien Miller83f2fe22013-12-29 17:48:38 +1100191 - djm@cvs.openbsd.org 2013/12/29 02:28:10
192 [key.c]
193 allow ed25519 keys to appear as certificate authorities
Damien Miller5baeacf2013-12-29 17:48:55 +1100194 - djm@cvs.openbsd.org 2013/12/29 02:37:04
195 [key.c]
196 correct comment for key_to_certified()
Damien Miller9de4fcd2013-12-29 17:49:13 +1100197 - djm@cvs.openbsd.org 2013/12/29 02:49:52
198 [key.c]
199 correct comment for key_drop_cert()
Damien Miller29ace1c2013-12-29 17:49:31 +1100200 - djm@cvs.openbsd.org 2013/12/29 04:20:04
201 [key.c]
202 to make sure we don't omit any key types as valid CA keys again,
203 factor the valid key type check into a key_type_is_valid_ca()
204 function
Damien Millerf72cdde2013-12-29 17:49:55 +1100205 - djm@cvs.openbsd.org 2013/12/29 04:29:25
206 [authfd.c]
207 allow deletion of ed25519 keys from the agent
Damien Millerb9a95492013-12-29 17:50:15 +1100208 - djm@cvs.openbsd.org 2013/12/29 04:35:50
209 [authfile.c]
210 don't refuse to load Ed25519 certificates
Damien Miller0fa47cf2013-12-29 17:53:39 +1100211 - djm@cvs.openbsd.org 2013/12/29 05:42:16
212 [ssh.c]
213 don't forget to load Ed25519 certs too
Damien Miller106bf1c2013-12-29 17:54:03 +1100214 - djm@cvs.openbsd.org 2013/12/29 05:57:02
215 [sshconnect.c]
216 when showing other hostkeys, don't forget Ed25519 keys
Damien Miller7d97fd92013-12-29 17:40:18 +1100217
Darren Tucker77244af2013-12-21 17:02:39 +110021820131221
219 - (dtucker) [regress/keytype.sh] Actually test ecdsa key types.
220
Darren Tucker1fcec9d2013-12-19 11:00:12 +110022120131219
222 - (dtucker) [configure.ac] bz#2178: Don't try to use BSM on Solaris versions
223 greater than 11 either rather than just 11. Patch from Tomas Kuthan.
Darren Tucker53f8e782013-12-19 11:31:44 +1100224 - (dtucker) [auth-pam.c] bz#2163: check return value from pam_get_item().
225 Patch from Loganaden Velvindron.
Darren Tucker1fcec9d2013-12-19 11:00:12 +1100226
Damien Miller4f752cf2013-12-18 17:45:35 +110022720131218
228 - (djm) OpenBSD CVS Sync
229 - djm@cvs.openbsd.org 2013/12/07 08:08:26
230 [ssh-keygen.1]
231 document -a and -o wrt new key format
Damien Miller8ba0ead2013-12-18 17:46:27 +1100232 - naddy@cvs.openbsd.org 2013/12/07 11:58:46
233 [ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8 ssh.1]
234 [ssh_config.5 sshd.8 sshd_config.5]
235 add missing mentions of ed25519; ok djm@
Damien Miller6575c3a2013-12-18 17:47:02 +1100236 - dtucker@cvs.openbsd.org 2013/12/08 09:53:27
237 [sshd_config.5]
238 Use a literal for the default value of KEXAlgorithms. ok deraadt jmc
Damien Miller8a56dc22013-12-18 17:48:11 +1100239 - markus@cvs.openbsd.org 2013/12/09 11:03:45
240 [blocks.c ed25519.c fe25519.c fe25519.h ge25519.c ge25519.h]
241 [ge25519_base.data hash.c sc25519.c sc25519.h verify.c]
242 Add Authors for the public domain ed25519/nacl code.
243 see also http://nacl.cr.yp.to/features.html
244 All of the NaCl software is in the public domain.
245 and http://ed25519.cr.yp.to/software.html
246 The Ed25519 software is in the public domain.
Damien Miller155b5a52013-12-18 17:48:32 +1100247 - markus@cvs.openbsd.org 2013/12/09 11:08:17
248 [crypto_api.h]
249 remove unused defines
Damien Miller059321d2013-12-18 17:49:48 +1100250 - pascal@cvs.openbsd.org 2013/12/15 18:17:26
251 [ssh-add.c]
252 Make ssh-add also add .ssh/id_ed25519; fixes lie in manual page.
253 ok markus@
Damien Millerd58a5962013-12-18 17:50:13 +1100254 - djm@cvs.openbsd.org 2013/12/15 21:42:35
255 [cipher-chachapoly.c]
256 add some comments and constify a constant
Damien Miller6674eb92013-12-18 17:50:39 +1100257 - markus@cvs.openbsd.org 2013/12/17 10:36:38
258 [crypto_api.h]
259 I've assempled the header file by cut&pasting from generated headers
260 and the source files.
Damien Miller4f752cf2013-12-18 17:45:35 +1100261
Damien Miller7e6e42f2013-12-08 08:23:08 +110026220131208
263 - (djm) [openbsd-compat/bsd-setres_id.c] Missing header; from Corinna
264 Vinschen
Damien Miller6d6fcd12013-12-08 15:53:28 +1100265 - (djm) [Makefile.in regress/Makefile regress/agent-ptrace.sh]
266 [regress/setuid-allowed.c] Check that ssh-agent is not on a no-setuid
267 filesystem before running agent-ptrace.sh; ok dtucker
Damien Miller7e6e42f2013-12-08 08:23:08 +1100268
Damien Miller39392072013-12-07 10:31:08 +110026920131207
270 - (djm) OpenBSD CVS Sync
271 - djm@cvs.openbsd.org 2013/12/05 22:59:45
272 [sftp-client.c]
273 fix memory leak in error path in do_readdir(); pointed out by
274 Loganaden Velvindron @ AfriNIC in bz#2163
Damien Miller0f8536d2013-12-07 10:31:37 +1100275 - djm@cvs.openbsd.org 2013/12/06 03:40:51
276 [ssh-keygen.c]
277 remove duplicated character ('g') in getopt() string;
278 document the (few) remaining option characters so we don't have to
279 rummage next time.
Damien Millerf0e90602013-12-07 10:40:26 +1100280 - markus@cvs.openbsd.org 2013/12/06 13:30:08
281 [authfd.c key.c key.h ssh-agent.c]
282 move private key (de)serialization to key.c; ok djm
Damien Millerbcd00ab2013-12-07 10:41:55 +1100283 - markus@cvs.openbsd.org 2013/12/06 13:34:54
284 [authfile.c authfile.h cipher.c cipher.h key.c packet.c ssh-agent.c]
285 [ssh-keygen.c PROTOCOL.key] new private key format, bcrypt as KDF by
286 default; details in PROTOCOL.key; feedback and lots help from djm;
287 ok djm@
Damien Miller5be9d9e2013-12-07 11:24:01 +1100288 - markus@cvs.openbsd.org 2013/12/06 13:39:49
289 [authfd.c authfile.c key.c key.h myproposal.h pathnames.h readconf.c]
290 [servconf.c ssh-agent.c ssh-keygen.c ssh-keyscan.1 ssh-keyscan.c]
291 [ssh-keysign.c ssh.c ssh_config.5 sshd.8 sshd.c verify.c ssh-ed25519.c]
292 [sc25519.h sc25519.c hash.c ge25519_base.data ge25519.h ge25519.c]
293 [fe25519.h fe25519.c ed25519.c crypto_api.h blocks.c]
294 support ed25519 keys (hostkeys and user identities) using the public
295 domain ed25519 reference code from SUPERCOP, see
296 http://ed25519.cr.yp.to/software.html
297 feedback, help & ok djm@
Damien Millera7827c12013-12-07 11:24:30 +1100298 - jmc@cvs.openbsd.org 2013/12/06 15:29:07
299 [sshd.8]
300 missing comma;
Damien Millerca570a52013-12-07 11:29:09 +1100301 - djm@cvs.openbsd.org 2013/12/07 00:19:15
302 [key.c]
303 set k->cert = NULL after freeing it
Damien Millerf54542a2013-12-07 16:32:44 +1100304 - markus@cvs.openbsd.org 2013/12/06 13:52:46
305 [regress/Makefile regress/agent.sh regress/cert-hostkey.sh]
306 [regress/cert-userkey.sh regress/keytype.sh]
307 test ed25519 support; from djm@
Damien Millerf104da22013-12-07 12:37:53 +1100308 - (djm) [blocks.c ed25519.c fe25519.c fe25519.h ge25519.c ge25519.h]
Damien Miller3cccc0e2013-12-07 11:27:47 +1100309 [ge25519_base.data hash.c sc25519.c sc25519.h verify.c] Fix RCS idents
Damien Millerf104da22013-12-07 12:37:53 +1100310 - (djm) [Makefile.in] Add ed25519 sources
311 - (djm) [authfile.c] Conditionalise inclusion of util.h
312 - (djm) [configure.ac openbsd-compat/Makefile.in openbsd-compat/bcrypt_pbkdf.c]
Damien Miller1ff130d2013-12-07 11:51:51 +1100313 [openbsd-compat/blf.h openbsd-compat/blowfish.c]
314 [openbsd-compat/openbsd-compat.h] Start at supporting bcrypt_pbkdf in
315 portable.
Damien Millerf104da22013-12-07 12:37:53 +1100316 - (djm) [ed25519.c ssh-ed25519.c openbsd-compat/Makefile.in]
317 [openbsd-compat/bcrypt_pbkdf.c] Make ed25519/new key format compile on
318 Linux
Damien Millereb401582013-12-07 17:07:15 +1100319 - (djm) [regress/cert-hostkey.sh] Fix merge botch
Damien Millerda3ca352013-12-07 21:43:46 +1100320 - (djm) [Makefile.in] PATHSUBS and keygen bits for Ed25519; from
321 Loganaden Velvindron @ AfriNIC in bz#2179
Damien Miller39392072013-12-07 10:31:08 +1100322
Damien Millerdec03932013-12-05 10:18:43 +110032320131205
324 - (djm) OpenBSD CVS Sync
325 - jmc@cvs.openbsd.org 2013/11/21 08:05:09
326 [ssh_config.5 sshd_config.5]
327 no need for .Pp before displays;
Damien Millerd937dc02013-12-05 10:19:54 +1100328 - deraadt@cvs.openbsd.org 2013/11/25 18:04:21
329 [ssh.1 ssh.c]
330 improve -Q usage and such. One usage change is that the option is now
331 case-sensitive
332 ok dtucker markus djm
Damien Millerbdb352a2013-12-05 10:20:52 +1100333 - jmc@cvs.openbsd.org 2013/11/26 12:14:54
334 [ssh.1 ssh.c]
335 - put -Q in the right place
336 - Ar was a poor choice for the arguments to -Q. i've chosen an
337 admittedly equally poor Cm, at least consistent with the rest
338 of the docs. also no need for multiple instances
339 - zap a now redundant Nm
340 - usage() sync
Damien Miller1d2f8802013-12-05 10:22:03 +1100341 - deraadt@cvs.openbsd.org 2013/11/26 19:15:09
342 [pkcs11.h]
343 cleanup 1 << 31 idioms. Resurrection of this issue pointed out by
344 Eitan Adler ok markus for ssh, implies same change in kerberosV
Damien Millere4870c02013-12-05 10:22:39 +1100345 - djm@cvs.openbsd.org 2013/12/01 23:19:05
346 [PROTOCOL]
347 mention curve25519-sha256@libssh.org key exchange algorithm
Damien Miller114e5402013-12-05 10:22:57 +1100348 - djm@cvs.openbsd.org 2013/12/02 02:50:27
349 [PROTOCOL.chacha20poly1305]
350 typo; from Jon Cave
Damien Millerf1e44ea2013-12-05 10:23:21 +1100351 - djm@cvs.openbsd.org 2013/12/02 02:56:17
352 [ssh-pkcs11-helper.c]
353 use-after-free; bz#2175 patch from Loganaden Velvindron @ AfriNIC
Damien Millerf7e8a872013-12-05 10:25:51 +1100354 - djm@cvs.openbsd.org 2013/12/02 03:09:22
355 [key.c]
356 make key_to_blob() return a NULL blob on failure; part of
357 bz#2175 from Loganaden Velvindron @ AfriNIC
Damien Miller960f6a22013-12-05 10:26:14 +1100358 - djm@cvs.openbsd.org 2013/12/02 03:13:14
359 [cipher.c]
360 correct bzero of chacha20+poly1305 key context. bz#2177 from
361 Loganaden Velvindron @ AfriNIC
362
363 Also make it a memset for consistency with the rest of cipher.c
Damien Miller9275df32013-12-05 10:26:32 +1100364 - djm@cvs.openbsd.org 2013/12/04 04:20:01
365 [sftp-client.c]
366 bz#2171: don't leak local_fd on error; from Loganaden Velvindron @
367 AfriNIC
Damien Miller534b2cc2013-12-05 14:07:27 +1100368 - djm@cvs.openbsd.org 2013/12/05 01:16:41
369 [servconf.c servconf.h]
370 bz#2161 - fix AuthorizedKeysCommand inside a Match block and
371 rearrange things so the same error is harder to make next time;
372 with and ok dtucker@
Darren Tucker8369c8e2013-12-05 11:00:16 +1100373 - (dtucker) [configure.ac] bz#2173: use pkg-config --libs to include correct
374 -L location for libedit. Patch from Serge van den Boom.
Damien Millerdec03932013-12-05 10:18:43 +1100375
Damien Miller0600c702013-11-21 13:55:43 +110037620131121
377 - (djm) OpenBSD CVS Sync
378 - dtucker@cvs.openbsd.org 2013/11/08 11:15:19
379 [bufaux.c bufbn.c buffer.c sftp-client.c sftp-common.c sftp-glob.c]
380 [uidswap.c] Include stdlib.h for free() as per the man page.
Damien Miller867e6932013-11-21 13:56:06 +1100381 - markus@cvs.openbsd.org 2013/11/13 13:48:20
382 [ssh-pkcs11.c]
383 add missing braces found by pedro
Damien Miller23e00aa2013-11-21 13:56:28 +1100384 - djm@cvs.openbsd.org 2013/11/20 02:19:01
385 [sshd.c]
386 delay closure of in/out fds until after "Bad protocol version
387 identification..." message, as get_remote_ipaddr/get_remote_port
388 require them open.
Damien Millere0016732013-11-21 13:56:49 +1100389 - deraadt@cvs.openbsd.org 2013/11/20 20:53:10
390 [scp.c]
391 unsigned casts for ctype macros where neccessary
392 ok guenther millert markus
Damien Millerfdb23062013-11-21 13:57:15 +1100393 - deraadt@cvs.openbsd.org 2013/11/20 20:54:10
394 [canohost.c clientloop.c match.c readconf.c sftp.c]
395 unsigned casts for ctype macros where neccessary
396 ok guenther millert markus
Damien Miller0fde8ac2013-11-21 14:12:23 +1100397 - djm@cvs.openbsd.org 2013/11/21 00:45:44
398 [Makefile.in PROTOCOL PROTOCOL.chacha20poly1305 authfile.c chacha.c]
399 [chacha.h cipher-chachapoly.c cipher-chachapoly.h cipher.c cipher.h]
400 [dh.c myproposal.h packet.c poly1305.c poly1305.h servconf.c ssh.1]
401 [ssh.c ssh_config.5 sshd_config.5] Add a new protocol 2 transport
402 cipher "chacha20-poly1305@openssh.com" that combines Daniel
403 Bernstein's ChaCha20 stream cipher and Poly1305 MAC to build an
404 authenticated encryption mode.
405
406 Inspired by and similar to Adam Langley's proposal for TLS:
407 http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-03
408 but differs in layout used for the MAC calculation and the use of a
409 second ChaCha20 instance to separately encrypt packet lengths.
410 Details are in the PROTOCOL.chacha20poly1305 file.
411
412 Feedback markus@, naddy@; manpage bits Loganden Velvindron @ AfriNIC
413 ok markus@ naddy@
Damien Millerfa7a20b2013-11-21 14:24:08 +1100414 - naddy@cvs.openbsd.org 2013/11/18 05:09:32
415 [regress/forward-control.sh]
416 bump timeout to 10 seconds to allow slow machines (e.g. Alpha PC164)
417 to successfully run this; ok djm@
Damien Miller36aba252013-11-21 14:24:42 +1100418 - djm@cvs.openbsd.org 2013/11/21 03:15:46
419 [regress/krl.sh]
420 add some reminders for additional tests that I'd like to implement
Damien Millerea61b212013-11-21 14:25:15 +1100421 - djm@cvs.openbsd.org 2013/11/21 03:16:47
422 [regress/modpipe.c]
423 use unsigned long long instead of u_int64_t here to avoid warnings
424 on some systems portable OpenSSH is built on.
Damien Miller8a073cf2013-11-21 14:26:18 +1100425 - djm@cvs.openbsd.org 2013/11/21 03:18:51
426 [regress/cipher-speed.sh regress/integrity.sh regress/rekey.sh]
427 [regress/try-ciphers.sh]
428 use new "ssh -Q cipher-auth" query to obtain lists of authenticated
429 encryption ciphers instead of specifying them manually; ensures that
430 the new chacha20poly1305@openssh.com mode is tested;
431
432 ok markus@ and naddy@ as part of the diff to add
433 chacha20poly1305@openssh.com
Damien Miller0600c702013-11-21 13:55:43 +1100434
Darren Tuckerb6a75b02013-11-10 20:25:22 +110043520131110
436 - (dtucker) [regress/keytype.sh] Populate ECDSA key types to be tested by
437 querying the ones that are compiled in.
438
Darren Tucker6e2fe812013-11-09 16:55:03 +110043920131109
440 - (dtucker) OpenBSD CVS Sync
441 - dtucker@cvs.openbsd.org 2013/11/09 05:41:34
442 [regress/test-exec.sh regress/rekey.sh]
443 Use smaller test data files to speed up tests. Grow test datafiles
444 where necessary for a specific test.
Darren Tucker37bcef52013-11-09 18:39:25 +1100445 - (dtucker) [configure.ac kex.c key.c myproposal.h] Test for the presence of
446 NID_X9_62_prime256v1, NID_secp384r1 and NID_secp521r1 and test that the
447 latter actually works before using it. Fedora (at least) has NID_secp521r1
448 that doesn't work (see https://bugzilla.redhat.com/show_bug.cgi?id=1021897).
Darren Tucker95cb2d42013-11-09 22:02:31 +1100449 - (dtucker) [configure.ac] Fix brackets in NID_secp521r1 test.
Darren Tuckerdd5264d2013-11-09 22:32:51 +1100450 - (dtucker) [configure.ac] Add missing "test".
Darren Tucker2c894302013-11-10 12:38:42 +1100451 - (dtucker) [key.c] Check for the correct defines for NID_secp521r1.
Darren Tucker6e2fe812013-11-09 16:55:03 +1100452
Darren Tucker08998c52013-11-08 12:11:46 +110045320131108
454 - (dtucker) OpenBSD CVS Sync
455 - dtucker@cvs.openbsd.org 2013/11/08 01:06:14
456 [regress/rekey.sh]
457 Rekey less frequently during tests to speed them up
Damien Miller690d9892013-11-08 12:16:49 +1100458 - (djm) OpenBSD CVS Sync
459 - dtucker@cvs.openbsd.org 2013/11/07 11:58:27
460 [cipher.c cipher.h kex.c kex.h mac.c mac.h servconf.c ssh.c]
461 Output the effective values of Ciphers, MACs and KexAlgorithms when
462 the default has not been overridden. ok markus@
Damien Miller6c81fee2013-11-08 12:19:55 +1100463 - djm@cvs.openbsd.org 2013/11/08 00:39:15
464 [auth-options.c auth2-chall.c authfd.c channels.c cipher-3des1.c]
465 [clientloop.c gss-genr.c monitor_mm.c packet.c schnorr.c umac.c]
466 [sftp-client.c sftp-glob.c]
467 use calloc for all structure allocations; from markus@
Damien Miller3ac4a232013-11-08 12:39:49 +1100468 - djm@cvs.openbsd.org 2013/11/08 01:38:11
469 [version.h]
470 openssh-6.4
Damien Miller3420a502013-11-08 16:48:13 +1100471 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
472 [contrib/suse/openssh.spec] Update version numbers following release.
Darren Tuckerccdb9be2013-11-08 18:54:38 +1100473 - (dtucker) [openbsd-compat/openbsd-compat.h] Add null implementation of
474 arc4random_stir for platforms that have arc4random but don't have
475 arc4random_stir (right now this is only OpenBSD -current).
Darren Tucker1c8ce342013-11-08 19:50:32 +1100476 - (dtucker) [kex.c] Only enable CURVE25519_SHA256 if we actually have
477 EVP_sha256.
Darren Tuckerd94240b2013-11-08 21:10:04 +1100478 - (dtucker) [myproposal.h] Conditionally enable CURVE25519_SHA256.
Darren Tucker8c333ec2013-11-08 21:12:58 +1100479 - (dtucker) [openbsd-compat/bsd-poll.c] Add headers to prevent compile
480 warnings.
Darren Tucker882abfd2013-11-09 00:17:41 +1100481 - (dtucker) [Makefile.in configure.ac] Set MALLOC_OPTIONS per platform
Darren Tuckeraff7ef12013-11-09 00:19:22 +1100482 and pass in TEST_ENV. use stderr to get polluted
Darren Tucker882abfd2013-11-09 00:17:41 +1100483 and the stderr-data test to fail.
Darren Tuckeraff7ef12013-11-09 00:19:22 +1100484 - (dtucker) [contrib/cygwin/ssh-host-config] Simplify host key generation:
485 rather than testing and generating each key, call ssh-keygen -A.
486 Patch from vinschen at redhat.com.
Darren Tucker6e2fe812013-11-09 16:55:03 +1100487 - (dtucker) OpenBSD CVS Sync
488 - dtucker@cvs.openbsd.org 2013/11/09 05:41:34
489 [regress/test-exec.sh regress/rekey.sh]
490 Use smaller test data files to speed up tests. Grow test datafiles
491 where necessary for a specific test.
Darren Tucker08998c52013-11-08 12:11:46 +1100492
Damien Miller61c5c232013-11-07 11:34:14 +110049320131107
494 - (djm) [ssh-pkcs11.c] Bring back "non-constant initialiser" fix (rev 1.5)
495 that got lost in recent merge.
Damien Millerc9831972013-11-07 12:00:23 +1100496 - (djm) [Makefile.in monitor.c] Missed chunks of curve25519 KEX diff
Damien Millera6fd1d32013-11-07 12:03:26 +1100497 - (djm) [regress/modpipe.c regress/rekey.sh] Never intended to commit these
Damien Millerdf8b0302013-11-07 13:28:16 +1100498 - (djm) [configure.ac defines.h] Skip arc4random_stir() calls on platforms
499 that lack it but have arc4random_uniform()
Damien Miller67a88002013-11-07 13:32:51 +1100500 - (djm) OpenBSD CVS Sync
501 - markus@cvs.openbsd.org 2013/11/04 11:51:16
502 [monitor.c]
503 fix rekeying for KEX_C25519_SHA256; noted by dtucker@
504 RCSID sync only; I thought this was a merge botch and fixed it already
Damien Miller49c145c2013-11-07 13:35:39 +1100505 - markus@cvs.openbsd.org 2013/11/06 16:52:11
506 [monitor_wrap.c]
507 fix rekeying for AES-GCM modes; ok deraadt
Damien Millerc8908aa2013-11-07 13:38:35 +1100508 - djm@cvs.openbsd.org 2013/11/06 23:05:59
509 [ssh-pkcs11.c]
510 from portable: s/true/true_val/ to avoid name collisions on dump platforms
511 RCSID sync only
Darren Tuckeraa195482013-11-07 14:50:09 +1100512 - (dtucker) OpenBSD CVS Sync
513 - djm@cvs.openbsd.org 2013/10/09 23:44:14
514 [regress/Makefile] (ID sync only)
515 regression test for sftp request white/blacklisting and readonly mode.
Darren Tuckerbbfb9b02013-11-07 14:56:43 +1100516 - markus@cvs.openbsd.org 2013/11/02 22:39:53
517 [regress/kextype.sh]
518 add curve25519-sha256@libssh.org
Darren Tucker23455772013-11-07 15:00:51 +1100519 - dtucker@cvs.openbsd.org 2013/11/04 12:27:42
520 [regress/rekey.sh]
521 Test rekeying with all KexAlgorithms.
Darren Tucker651dc8b2013-11-07 15:04:44 +1100522 - dtucker@cvs.openbsd.org 2013/11/07 00:12:05
523 [regress/rekey.sh]
524 Test rekeying for every Cipher, MAC and KEX, plus test every KEX with
525 the GCM ciphers.
Darren Tucker06595d62013-11-07 15:08:02 +1100526 - dtucker@cvs.openbsd.org 2013/11/07 01:12:51
527 [regress/rekey.sh]
528 Factor out the data transfer rekey tests
Darren Tuckera9550412013-11-07 15:21:19 +1100529 - dtucker@cvs.openbsd.org 2013/11/07 02:48:38
530 [regress/integrity.sh regress/cipher-speed.sh regress/try-ciphers.sh]
531 Use ssh -Q instead of hardcoding lists of ciphers or MACs.
Darren Tucker74cbc222013-11-07 15:26:12 +1100532 - dtucker@cvs.openbsd.org 2013/11/07 03:55:41
533 [regress/kextype.sh]
534 Use ssh -Q to get kex types instead of a static list.
Darren Tucker6e9d6f42013-11-07 15:32:37 +1100535 - dtucker@cvs.openbsd.org 2013/11/07 04:26:56
536 [regress/kextype.sh]
537 trailing space
Darren Tucker4bf7e502013-11-07 22:33:48 +1100538 - (dtucker) [Makefile.in configure.ac] Remove TEST_SSH_SHA256 environment
539 variable. It's no longer used now that we get the supported MACs from
540 ssh -Q.
Damien Miller61c5c232013-11-07 11:34:14 +1100541
Damien Millerd2252c72013-11-04 07:41:48 +110054220131104
543 - (djm) OpenBSD CVS Sync
544 - markus@cvs.openbsd.org 2013/11/02 20:03:54
545 [ssh-pkcs11.c]
546 support pkcs#11 tokes that only provide x509 zerts instead of raw pubkeys;
547 fixes bz#1908; based on patch from Laurent Barbe; ok djm
Damien Miller1e124262013-11-04 08:26:52 +1100548 - markus@cvs.openbsd.org 2013/11/02 21:59:15
549 [kex.c kex.h myproposal.h ssh-keyscan.c sshconnect2.c sshd.c]
550 use curve25519 for default key exchange (curve25519-sha256@libssh.org);
551 initial patch from Aris Adamantiadis; ok djm@
Damien Millerabdca982013-11-04 08:30:05 +1100552 - markus@cvs.openbsd.org 2013/11/02 22:10:15
553 [kexdhs.c kexecdhs.c]
554 no need to include monitor_wrap.h
Damien Miller660621b2013-11-04 08:37:51 +1100555 - markus@cvs.openbsd.org 2013/11/02 22:24:24
556 [kexdhs.c kexecdhs.c]
557 no need to include ssh-gss.h
Damien Miller4c3ba072013-11-04 08:40:13 +1100558 - markus@cvs.openbsd.org 2013/11/02 22:34:01
559 [auth-options.c]
560 no need to include monitor_wrap.h and ssh-gss.h
Damien Miller0bd8f152013-11-04 08:55:43 +1100561 - markus@cvs.openbsd.org 2013/11/02 22:39:19
562 [ssh_config.5 sshd_config.5]
563 the default kex is now curve25519-sha256@libssh.org
Damien Millerca67a7e2013-11-04 09:05:17 +1100564 - djm@cvs.openbsd.org 2013/11/03 10:37:19
565 [roaming_common.c]
566 fix a couple of function definitions foo() -> foo(void)
567 (-Wold-style-definition)
Damien Miller094003f2013-11-04 22:59:27 +1100568 - (djm) [kexc25519.c kexc25519c.c kexc25519s.c] Import missed files from
569 KEX/curve25519 change
Damien Millerd2252c72013-11-04 07:41:48 +1100570
Darren Tuckerd5277042013-11-03 16:30:46 +110057120131103
572 - (dtucker) [openbsd-compat/bsd-misc.c] Include time.h for nanosleep.
573 From OpenSMTPD where it prevents "implicit declaration" warnings (it's
574 a no-op in OpenSSH). From chl at openbsd.
Darren Tucker710f3742013-11-03 17:20:34 +1100575 - (dtucker) [openbsd-compat/setproctitle.c] Handle error case form the 2nd
576 vsnprintf. From eric at openbsd via chl@.
Darren Tucker007e3b32013-11-03 18:43:55 +1100577 - (dtucker) [configure.ac defines.h] Add typedefs for intmax_t and uintmax_t
578 for platforms that don't have them.
Darren Tuckerd5277042013-11-03 16:30:46 +1100579
Damien Miller4a3a9d42013-10-30 22:19:47 +110058020131030
581 - (djm) OpenBSD CVS Sync
582 - djm@cvs.openbsd.org 2013/10/29 09:42:11
583 [key.c key.h]
584 fix potential stack exhaustion caused by nested certificates;
585 report by Mateusz Kocielski; ok dtucker@ markus@
Damien Miller5ff30c62013-10-30 22:21:50 +1100586 - djm@cvs.openbsd.org 2013/10/29 09:48:02
587 [servconf.c servconf.h session.c sshd_config sshd_config.5]
588 shd_config PermitTTY to disallow TTY allocation, mirroring the
589 longstanding no-pty authorized_keys option;
590 bz#2070, patch from Teran McKinney; ok markus@
Damien Miller63857c92013-10-30 22:31:06 +1100591 - jmc@cvs.openbsd.org 2013/10/29 18:49:32
592 [sshd_config.5]
593 pty(4), not pty(7);
Damien Miller4a3a9d42013-10-30 22:19:47 +1100594
Damien Miller28631ce2013-10-26 10:07:56 +110059520131026
596 - (djm) OpenBSD CVS Sync
597 - djm@cvs.openbsd.org 2013/10/25 23:04:51
598 [ssh.c]
599 fix crash when using ProxyCommand caused by previous commit - was calling
600 freeaddrinfo(NULL); spotted by sthen@ and Tim Ruehsen, patch by sthen@
601
Damien Miller26506ad2013-10-26 10:05:46 +110060220131025
603 - (djm) [ssh-keygen.c ssh-keysign.c sshconnect1.c sshd.c] Remove
604 unnecessary arc4random_stir() calls. The only ones left are to ensure
605 that the PRNG gets a different state after fork() for platforms that
606 have broken the API.
607
Damien Miller8f187312013-10-24 10:53:02 +110060820131024
609 - (djm) [auth-krb5.c] bz#2032 - use local username in krb5_kuserok check
610 rather than full client name which may be of form user@REALM;
611 patch from Miguel Sanders; ok dtucker@
Damien Miller03bf2e62013-10-24 21:01:26 +1100612 - (djm) OpenBSD CVS Sync
613 - dtucker@cvs.openbsd.org 2013/10/23 05:40:58
614 [servconf.c]
615 fix comment
Damien Miller5ecb4162013-10-24 21:02:02 +1100616 - djm@cvs.openbsd.org 2013/10/23 23:35:32
617 [sshd.c]
618 include local address and port in "Connection from ..." message (only
619 shown at loglevel>=verbose)
Damien Miller4bedd402013-10-24 21:02:26 +1100620 - dtucker@cvs.openbsd.org 2013/10/24 00:49:49
621 [moduli.c]
622 Periodically print progress and, if possible, expected time to completion
623 when screening moduli for DH groups. ok deraadt djm
Damien Millercf31f382013-10-24 21:02:56 +1100624 - dtucker@cvs.openbsd.org 2013/10/24 00:51:48
625 [readconf.c servconf.c ssh_config.5 sshd_config.5]
626 Disallow empty Match statements and add "Match all" which matches
627 everything. ok djm, man page help jmc@
Damien Millera90c0332013-10-24 21:03:17 +1100628 - djm@cvs.openbsd.org 2013/10/24 08:19:36
629 [ssh.c]
630 fix bug introduced in hostname canonicalisation commit: don't try to
631 resolve hostnames when a ProxyCommand is set unless the user has forced
632 canonicalisation; spotted by Iain Morgan
Tim Ricebd43e882013-10-24 12:22:49 -0700633 - (tim) [regress/sftp-perm.sh] We need a shell that understands "! somecmd"
Damien Miller8f187312013-10-24 10:53:02 +1100634
Damien Miller5c86ebd2013-10-23 16:29:12 +110063520131023
636 - (djm) OpenBSD CVS Sync
637 - djm@cvs.openbsd.org 2013/10/20 04:39:28
638 [ssh_config.5]
639 document % expansions performed by "Match command ..."
Damien Miller8a04be72013-10-23 16:29:40 +1100640 - djm@cvs.openbsd.org 2013/10/20 06:19:28
641 [readconf.c ssh_config.5]
642 rename "command" subclause of the recently-added "Match" keyword to
643 "exec"; it's shorter, clearer in intent and we might want to add the
644 ability to match against the command being executed at the remote end in
645 the future.
Damien Millerc0049bd2013-10-23 16:29:59 +1100646 - djm@cvs.openbsd.org 2013/10/20 09:51:26
647 [scp.1 sftp.1]
648 add canonicalisation options to -o lists
Damien Miller8e5a67f2013-10-23 16:30:25 +1100649 - jmc@cvs.openbsd.org 2013/10/20 18:00:13
650 [ssh_config.5]
651 tweak the "exec" description, as worded by djm;
Damien Miller084bcd22013-10-23 16:30:51 +1100652 - djm@cvs.openbsd.org 2013/10/23 03:03:07
653 [readconf.c]
654 Hostname may have %h sequences that should be expanded prior to Match
655 evaluation; spotted by Iain Morgan
Damien Millereff5cad2013-10-23 16:31:10 +1100656 - djm@cvs.openbsd.org 2013/10/23 03:05:19
657 [readconf.c ssh.c]
658 comment
Damien Miller5b01b0d2013-10-23 16:31:31 +1100659 - djm@cvs.openbsd.org 2013/10/23 04:16:22
660 [ssh-keygen.c]
661 Make code match documentation: relative-specified certificate expiry time
662 should be relative to current time and not the validity start time.
663 Reported by Petr Lautrbach; ok deraadt@
Damien Miller5c86ebd2013-10-23 16:29:12 +1100664
Damien Millera176e182013-10-18 09:05:41 +110066520131018
666 - (djm) OpenBSD CVS Sync
667 - djm@cvs.openbsd.org 2013/10/09 23:44:14
668 [regress/Makefile regress/sftp-perm.sh]
669 regression test for sftp request white/blacklisting and readonly mode.
Damien Miller1edcbf62013-10-18 10:17:17 +1100670 - jmc@cvs.openbsd.org 2013/10/17 07:35:48
671 [sftp.1 sftp.c]
672 tweak previous;
Damien Miller4502f882013-10-18 10:17:36 +1100673 - djm@cvs.openbsd.org 2013/10/17 22:08:04
674 [sshd.c]
675 include remote port in bad banner message; bz#2162
Damien Millera176e182013-10-18 09:05:41 +1100676
Damien Millerd77b81f2013-10-17 11:39:00 +110067720131017
678 - (djm) OpenBSD CVS Sync
679 - jmc@cvs.openbsd.org 2013/10/15 14:10:25
680 [ssh.1 ssh_config.5]
681 tweak previous;
Damien Miller0faf7472013-10-17 11:47:23 +1100682 - djm@cvs.openbsd.org 2013/10/16 02:31:47
683 [readconf.c readconf.h roaming_client.c ssh.1 ssh.c ssh_config.5]
684 [sshconnect.c sshconnect.h]
685 Implement client-side hostname canonicalisation to allow an explicit
686 search path of domain suffixes to use to convert unqualified host names
687 to fully-qualified ones for host key matching.
688 This is particularly useful for host certificates, which would otherwise
689 need to list unqualified names alongside fully-qualified ones (and this
690 causes a number of problems).
691 "looks fine" markus@
Damien Miller607af342013-10-17 11:47:51 +1100692 - jmc@cvs.openbsd.org 2013/10/16 06:42:25
693 [ssh_config.5]
694 tweak previous;
Damien Miller38505592013-10-17 11:48:13 +1100695 - djm@cvs.openbsd.org 2013/10/16 22:49:39
696 [readconf.c readconf.h ssh.1 ssh.c ssh_config.5]
697 s/canonicalise/canonicalize/ for consistency with existing spelling,
698 e.g. authorized_keys; pointed out by naddy@
Damien Miller51682fa2013-10-17 11:48:31 +1100699 - djm@cvs.openbsd.org 2013/10/16 22:58:01
700 [ssh.c ssh_config.5]
701 one I missed in previous: s/isation/ization/
Damien Millerf29238e2013-10-17 11:48:52 +1100702 - djm@cvs.openbsd.org 2013/10/17 00:30:13
703 [PROTOCOL sftp-client.c sftp-client.h sftp-server.c sftp.1 sftp.c]
704 fsync@openssh.com protocol extension for sftp-server
705 client support to allow calling fsync() faster successful transfer
706 patch mostly by imorgan AT nas.nasa.gov; bz#1798
707 "fine" markus@ "grumble OK" deraadt@ "doesn't sound bad to me" millert@
Damien Millere3ea0942013-10-17 11:57:23 +1100708 - djm@cvs.openbsd.org 2013/10/17 00:46:49
709 [ssh.c]
710 rearrange check to reduce diff against -portable
711 (Id sync only)
Damien Millerd77b81f2013-10-17 11:39:00 +1100712
Damien Miller6eaeebf2013-10-15 11:55:57 +110071320131015
714 - (djm) OpenBSD CVS Sync
715 - djm@cvs.openbsd.org 2013/10/09 23:42:17
716 [sftp-server.8 sftp-server.c]
717 Add ability to whitelist and/or blacklist sftp protocol requests by name.
718 Refactor dispatch loop and consolidate read-only mode checks.
719 Make global variables static, since sftp-server is linked into sshd(8).
720 ok dtucker@
Damien Miller73600e52013-10-15 11:56:25 +1100721 - djm@cvs.openbsd.org 2013/10/10 00:53:25
722 [sftp-server.c]
723 add -Q, -P and -p to usage() before jmc@ catches me
Damien Miller61ee4d62013-10-15 11:56:47 +1100724 - djm@cvs.openbsd.org 2013/10/10 01:43:03
725 [sshd.c]
726 bz#2139: fix re-exec fallback by ensuring that startup_pipe is correctly
727 updated; ok dtucker@
Damien Millerbda5c842013-10-15 12:05:58 +1100728 - djm@cvs.openbsd.org 2013/10/11 02:45:36
729 [sftp-client.c]
730 rename flag arguments to be more clear and consistent.
731 reorder some internal function arguments to make adding additional flags
732 easier.
733 no functional change
Damien Miller2f93d052013-10-15 12:06:27 +1100734 - djm@cvs.openbsd.org 2013/10/11 02:52:23
735 [sftp-client.c]
736 missed one arg reorder
Damien Miller61c7de82013-10-15 12:06:45 +1100737 - djm@cvs.openbsd.org 2013/10/11 02:53:45
738 [sftp-client.h]
739 obsolete comment
Damien Miller6efab272013-10-15 12:07:05 +1100740 - jmc@cvs.openbsd.org 2013/10/14 14:18:56
741 [sftp-server.8 sftp-server.c]
742 tweak previous;
743 ok djm
Damien Miller71df7522013-10-15 12:12:02 +1100744 - djm@cvs.openbsd.org 2013/10/14 21:20:52
745 [session.c session.h]
746 Add logging of session starts in a useful format; ok markus@ feedback and
747 ok dtucker@
Damien Miller194fd902013-10-15 12:13:05 +1100748 - djm@cvs.openbsd.org 2013/10/14 22:22:05
749 [readconf.c readconf.h ssh-keysign.c ssh.c ssh_config.5]
750 add a "Match" keyword to ssh_config that allows matching on hostname,
751 user and result of arbitrary commands. "nice work" markus@
Damien Millere9fc72e2013-10-15 12:14:12 +1100752 - djm@cvs.openbsd.org 2013/10/14 23:28:23
753 [canohost.c misc.c misc.h readconf.c sftp-server.c ssh.c]
754 refactor client config code a little:
755 add multistate option partsing to readconf.c, similar to servconf.c's
756 existing code.
757 move checking of options that accept "none" as an argument to readconf.c
758 add a lowercase() function and use it instead of explicit tolower() in
759 loops
760 part of a larger diff that was ok markus@
Damien Miller386feab2013-10-15 12:14:49 +1100761 - djm@cvs.openbsd.org 2013/10/14 23:31:01
762 [ssh.c]
763 whitespace at EOL; pointed out by markus@
Damien Millerdcd39f22013-10-17 11:31:40 +1100764 - [ssh.c] g/c unused variable.
Damien Miller6eaeebf2013-10-15 11:55:57 +1100765
Darren Tuckerad92df72013-10-10 10:24:11 +110076620131010
767 - (dtucker) OpenBSD CVS Sync
768 - sthen@cvs.openbsd.org 2013/09/16 11:35:43
769 [ssh_config]
770 Remove gssapi config parts from ssh_config, as was already done for
771 sshd_config. Req by/ok ajacoutot@
772 ID SYNC ONLY for portable; kerberos/gssapi is still pretty popular
Darren Tucker5d80e452013-10-10 10:25:09 +1100773 - djm@cvs.openbsd.org 2013/09/19 00:24:52
774 [progressmeter.c]
775 store the initial file offset so the progress meter doesn't freak out
776 when resuming sftp transfers. bz#2137; patch from Iain Morgan; ok dtucker@`
Darren Tuckerb59aaf32013-10-10 10:26:21 +1100777 - djm@cvs.openbsd.org 2013/09/19 00:49:12
778 [sftp-client.c]
779 fix swapped pflag and printflag in sftp upload_dir; from Iain Morgan
Darren Tucker71152bc2013-10-10 10:27:21 +1100780 - djm@cvs.openbsd.org 2013/09/19 01:24:46
781 [channels.c]
782 bz#1297 - tell the client (via packet_send_debug) when their preferred
783 listen address has been overridden by the server's GatewayPorts;
784 ok dtucker@
Darren Tuckere6e52f82013-10-10 10:28:07 +1100785 - djm@cvs.openbsd.org 2013/09/19 01:26:29
786 [sshconnect.c]
787 bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from
788 swp AT swp.pp.ru; ok dtucker@
Darren Tuckerdf62d712013-10-10 10:32:39 +1100789 - dtucker@cvs.openbsd.org 2013/10/08 11:42:13
790 [dh.c dh.h]
791 Increase the size of the Diffie-Hellman groups requested for a each
792 symmetric key size. New values from NIST Special Publication 800-57 with
793 the upper limit specified by RFC4419. Pointed out by Peter Backes, ok
794 djm@.
Darren Tuckerad92df72013-10-10 10:24:11 +1100795
Damien Miller91593102013-10-09 10:42:32 +110079620131009
797 - (djm) [openbsd-compat/arc4random.c openbsd-compat/chacha_private.h] Pull
798 in OpenBSD implementation of arc4random, shortly to replace the existing
799 bsd-arc4random.c
Damien Miller72071192013-10-09 10:44:47 +1100800 - (djm) [openbsd-compat/Makefile.in openbsd-compat/arc4random.c]
801 [openbsd-compat/bsd-arc4random.c] Replace old RC4-based arc4random
802 implementation with recent OpenBSD's ChaCha-based PRNG. ok dtucker@,
803 tested tim@
Damien Miller91593102013-10-09 10:42:32 +1100804
Darren Tuckerf2bf36c2013-09-22 19:02:40 +100080520130922
806 - (dtucker) [platform.c platform.h sshd.c] bz#2156: restore Linux oom_adj
807 setting when handling SIGHUP to maintain behaviour over retart. Patch
808 from Matthew Ife.
809
Darren Tuckere90a06a2013-09-18 15:09:38 +100081020130918
811 - (dtucker) [sshd_config] Trailing whitespace; from jstjohn at purdue edu.
812
Damien Miller045bda52013-09-14 09:44:37 +100081320130914
814 - (djm) OpenBSD CVS Sync
815 - djm@cvs.openbsd.org 2013/08/22 19:02:21
816 [sshd.c]
817 Stir PRNG after post-accept fork. The child gets a different PRNG state
818 anyway via rexec and explicit privsep reseeds, but it's good to be sure.
819 ok markus@
Damien Miller66085482013-09-14 09:45:03 +1000820 - mikeb@cvs.openbsd.org 2013/08/28 12:34:27
821 [ssh-keygen.c]
822 improve batch processing a bit by making use of the quite flag a bit
823 more often and exit with a non zero code if asked to find a hostname
824 in a known_hosts file and it wasn't there;
825 originally from reyk@, ok djm
Damien Miller61353b32013-09-14 09:45:32 +1000826 - djm@cvs.openbsd.org 2013/08/31 00:13:54
827 [sftp.c]
828 make ^w match ksh behaviour (delete previous word instead of entire line)
Damien Miller8bab5e72013-09-14 09:47:00 +1000829 - deraadt@cvs.openbsd.org 2013/09/02 22:00:34
830 [ssh-keygen.c sshconnect1.c sshd.c]
831 All the instances of arc4random_stir() are bogus, since arc4random()
832 does this itself, inside itself, and has for a very long time.. Actually,
833 this was probably reducing the entropy available.
834 ok djm
835 ID SYNC ONLY for portable; we don't trust other arc4random implementations
836 to do this right.
Damien Millerff9d6c22013-09-14 09:48:55 +1000837 - sthen@cvs.openbsd.org 2013/09/07 13:53:11
838 [sshd_config]
839 Remove commented-out kerberos/gssapi config options from sample config,
840 kerberos support is currently not enabled in ssh in OpenBSD. Discussed with
841 various people; ok deraadt@
842 ID SYNC ONLY for portable; kerberos/gssapi is still pretty popular
Damien Miller70182522013-09-14 09:49:19 +1000843 - djm@cvs.openbsd.org 2013/09/12 01:41:12
844 [clientloop.c]
845 fix connection crash when sending break (~B) on ControlPersist'd session;
846 ok dtucker@
Damien Miller13840e02013-09-14 09:49:43 +1000847 - djm@cvs.openbsd.org 2013/09/13 06:54:34
848 [channels.c]
849 avoid unaligned access in code that reused a buffer to send a
850 struct in_addr in a reply; simpler just use use buffer_put_int();
851 from portable; spotted by and ok dtucker@
Damien Miller045bda52013-09-14 09:44:37 +1000852
Damien Miller04be8b92013-08-28 12:49:43 +100085320130828
854 - (djm) [openbsd-compat/bsd-snprintf.c] teach our local snprintf code the
855 'j' (intmax_t/uintmax_t) and 'z' (size_t/ssize_t) conversions in case we
856 start to use them in the future.
Damien Miller43968a82013-08-28 14:00:54 +1000857 - (djm) [openbsd-compat/bsd-snprintf.c] #ifdef noytet for intmax_t bits
858 until we have configure support.
Damien Miller04be8b92013-08-28 12:49:43 +1000859
Damien Miller02e87802013-08-21 02:38:51 +100086020130821
861 - (djm) OpenBSD CVS Sync
862 - djm@cvs.openbsd.org 2013/08/06 23:03:49
863 [sftp.c]
864 fix some whitespace at EOL
865 make list of commands an enum rather than a long list of defines
866 add -a to usage()
Damien Millereec84062013-08-21 02:39:39 +1000867 - djm@cvs.openbsd.org 2013/08/06 23:05:01
868 [sftp.1]
869 document top-level -a option (the -a option to 'get' was already
870 documented)
Damien Millera6d6c1f2013-08-21 02:40:01 +1000871 - djm@cvs.openbsd.org 2013/08/06 23:06:01
872 [servconf.c]
873 add cast to avoid format warning; from portable
Damien Millerc6895c52013-08-21 02:40:21 +1000874 - jmc@cvs.openbsd.org 2013/08/07 06:24:51
875 [sftp.1 sftp.c]
876 sort -a;
Damien Miller034f27a2013-08-21 02:40:44 +1000877 - djm@cvs.openbsd.org 2013/08/08 04:52:04
878 [sftp.c]
879 fix two year old regression: symlinking a file would incorrectly
880 canonicalise the target path. bz#2129 report from delphij AT freebsd.org
Damien Millerc7dba122013-08-21 02:41:15 +1000881 - djm@cvs.openbsd.org 2013/08/08 05:04:03
882 [sftp-client.c sftp-client.h sftp.c]
883 add a "-l" flag for the rename command to force it to use the silly
884 standard SSH_FXP_RENAME command instead of the POSIX-rename- like
885 posix-rename@openssh.com extension.
Damien Miller02e87802013-08-21 02:38:51 +1000886
Damien Millerc7dba122013-08-21 02:41:15 +1000887 intended for use in regress tests, so no documentation.
Damien Miller036d3072013-08-21 02:41:46 +1000888 - djm@cvs.openbsd.org 2013/08/09 03:37:25
889 [sftp.c]
890 do getopt parsing for all sftp commands (with an empty optstring for
891 commands without arguments) to ensure consistent behaviour
Damien Millerfec029f2013-08-21 02:42:12 +1000892 - djm@cvs.openbsd.org 2013/08/09 03:39:13
893 [sftp-client.c]
894 two problems found by a to-be-committed regress test: 1) msg_id was not
895 being initialised so was starting at a random value from the heap
896 (harmless, but confusing). 2) some error conditions were not being
897 propagated back to the caller
Damien Millere0ee7272013-08-21 02:42:35 +1000898 - djm@cvs.openbsd.org 2013/08/09 03:56:42
899 [sftp.c]
900 enable ctrl-left-arrow and ctrl-right-arrow to move forward/back a word;
901 matching ksh's relatively recent change.
Damien Millerd234afb2013-08-21 02:42:58 +1000902 - djm@cvs.openbsd.org 2013/08/13 18:32:08
903 [ssh-keygen.c]
904 typo in error message; from Stephan Rickauer
Damien Millerd5d9d7b2013-08-21 02:43:27 +1000905 - djm@cvs.openbsd.org 2013/08/13 18:33:08
906 [ssh-keygen.c]
907 another of the same typo
Damien Millerb7727df2013-08-21 02:43:49 +1000908 - jmc@cvs.openbsd.org 2013/08/14 08:39:27
909 [scp.1 ssh.1]
910 some Bx/Ox conversion;
911 From: Jan Stary
Damien Miller1262b662013-08-21 02:44:24 +1000912 - djm@cvs.openbsd.org 2013/08/20 00:11:38
913 [readconf.c readconf.h ssh_config.5 sshconnect.c]
914 Add a ssh_config ProxyUseFDPass option that supports the use of
915 ProxyCommands that establish a connection and then pass a connected
916 file descriptor back to ssh(1). This allows the ProxyCommand to exit
917 rather than have to shuffle data back and forth and enables ssh to use
918 getpeername, etc. to obtain address information just like it does with
919 regular directly-connected sockets. ok markus@
Damien Millerf2f6c312013-08-21 02:44:58 +1000920 - jmc@cvs.openbsd.org 2013/08/20 06:56:07
921 [ssh.1 ssh_config.5]
922 some proxyusefdpass tweaks;
Damien Miller036d3072013-08-21 02:41:46 +1000923
Darren Tuckera5a3cbf2013-08-08 10:58:49 +100092420130808
925 - (dtucker) [regress/Makefile regress/test-exec.sh] Don't try to use test -nt
926 since some platforms (eg really old FreeBSD) don't have it. Instead,
927 run "make clean" before a complete regress run. ok djm.
Darren Tucker94396b72013-08-08 11:52:37 +1000928 - (dtucker) [misc.c] Fall back to time(2) at runtime if clock_gettime(
929 CLOCK_MONOTONIC...) fails. Some older versions of RHEL have the
930 CLOCK_MONOTONIC define but don't actually support it. Found and tested
931 by Kevin Brott, ok djm.
Darren Tucker9542de42013-08-08 12:50:06 +1000932 - (dtucker) [misc.c] Remove define added for fallback testing that was
933 mistakenly included in the previous commit.
Darren Tuckeracd20602013-08-08 17:02:12 +1000934 - (dtucker) [regress/Makefile regress/test-exec.sh] Roll back the -nt
935 removal. The "make clean" removes modpipe which is built by the top-level
936 directory before running the tests. Spotted by tim@
Damien Millered4af412013-09-14 09:40:51 +1000937 - (djm) Release 6.3p1
Darren Tuckera5a3cbf2013-08-08 10:58:49 +1000938
Darren Tuckerf3ab2c52013-08-04 21:48:41 +100093920130804
940 - (dtucker) [auth-krb5.c configure.ac openbsd-compat/bsd-misc.h] Add support
941 for building with older Heimdal versions. ok djm.
942
Damien Millerc192a4c2013-08-01 14:29:20 +100094320130801
944 - (djm) [channels.c channels.h] bz#2135: On Solaris, isatty() on a non-
945 blocking connecting socket will clear any stored errno that might
946 otherwise have been retrievable via getsockopt(). A hack to limit writes
947 to TTYs on AIX was triggering this. Since only AIX needs the hack, wrap
948 it in an #ifdef. Diagnosis and patch from Ivo Raisr.
Damien Millerab3575c2013-08-01 14:34:16 +1000949 - (djm) [sshlogin.h] Fix prototype merge botch from 2006; bz#2134
Damien Millerc192a4c2013-08-01 14:29:20 +1000950
Damien Millerc8669a82013-07-25 11:52:48 +100095120130725
952 - (djm) OpenBSD CVS Sync
953 - djm@cvs.openbsd.org 2013/07/20 22:20:42
954 [krl.c]
955 fix verification error in (as-yet usused) KRL signature checking path
Damien Millerc331dbd2013-07-25 11:55:20 +1000956 - djm@cvs.openbsd.org 2013/07/22 05:00:17
957 [umac.c]
958 make MAC key, data to be hashed and nonce for final hash const;
959 checked with -Wcast-qual
Damien Miller94c9cd32013-07-25 11:55:39 +1000960 - djm@cvs.openbsd.org 2013/07/22 12:20:02
961 [umac.h]
962 oops, forgot to commit corresponding header change;
963 spotted by jsg and jasper
Damien Miller98e27dc2013-07-25 11:55:52 +1000964 - djm@cvs.openbsd.org 2013/07/25 00:29:10
965 [ssh.c]
966 daemonise backgrounded (ControlPersist'ed) multiplexing master to ensure
967 it is fully detached from its controlling terminal. based on debugging
Damien Miller0d032412013-07-25 11:56:52 +1000968 - djm@cvs.openbsd.org 2013/07/25 00:56:52
969 [sftp-client.c sftp-client.h sftp.1 sftp.c]
970 sftp support for resuming partial downloads; patch mostly by Loganaden
971 Velvindron/AfriNIC with some tweaks by me; feedback and ok dtucker@
Damien Miller53435b22013-07-25 11:57:15 +1000972 "Just be careful" deraadt@
973 - djm@cvs.openbsd.org 2013/07/25 00:57:37
974 [version.h]
975 openssh-6.3 for release
Damien Millerfea44062013-07-25 12:08:07 +1000976 - dtucker@cvs.openbsd.org 2013/05/30 20:12:32
977 [regress/test-exec.sh]
978 use ssh and sshd as testdata since it needs to be >256k for the rekey test
Damien Miller78d47b72013-07-25 12:08:46 +1000979 - dtucker@cvs.openbsd.org 2013/06/10 21:56:43
980 [regress/forwarding.sh]
981 Add test for forward config parsing
Damien Millerd1e26cf2013-07-25 12:11:18 +1000982 - djm@cvs.openbsd.org 2013/06/21 02:26:26
983 [regress/sftp-cmds.sh regress/test-exec.sh]
984 unbreak sftp-cmds for renamed test data (s/ls/data/)
Tim Riceed899eb2013-07-25 15:40:00 -0700985 - (tim) [sftp-client.c] Use of a gcc extension trips up native compilers on
986 Solaris and UnixWare. Feedback and OK djm@
Tim Rice81f7cf12013-07-25 18:41:40 -0700987 - (tim) [regress/forwarding.sh] Fix for building outside source tree.
Damien Millerc8669a82013-07-25 11:52:48 +1000988
Damien Miller85b45e02013-07-20 13:21:52 +100098920130720
990 - (djm) OpenBSD CVS Sync
991 - markus@cvs.openbsd.org 2013/07/19 07:37:48
992 [auth.h kex.h kexdhs.c kexecdhs.c kexgexs.c monitor.c servconf.c]
993 [servconf.h session.c sshd.c sshd_config.5]
994 add ssh-agent(1) support to sshd(8); allows encrypted hostkeys,
995 or hostkeys on smartcards; most of the work by Zev Weiss; bz #1974
996 ok djm@
Damien Miller32ecfa02013-07-20 13:22:13 +1000997 - djm@cvs.openbsd.org 2013/07/20 01:43:46
998 [umac.c]
999 use a union to ensure correct alignment; ok deraadt
Damien Miller3009d3c2013-07-20 13:22:31 +10001000 - djm@cvs.openbsd.org 2013/07/20 01:44:37
1001 [ssh-keygen.c ssh.c]
1002 More useful error message on missing current user in /etc/passwd
Damien Miller1f0e86f2013-07-20 13:22:49 +10001003 - djm@cvs.openbsd.org 2013/07/20 01:50:20
1004 [ssh-agent.c]
1005 call cleanup_handler on SIGINT when in debug mode to ensure sockets
1006 are cleaned up on manual exit; bz#2120
Damien Miller63ddc892013-07-20 13:35:45 +10001007 - djm@cvs.openbsd.org 2013/07/20 01:55:13
1008 [auth-krb5.c gss-serv-krb5.c gss-serv.c]
1009 fix kerberos/GSSAPI deprecation warnings and linking; "looks okay" millert@
Damien Miller85b45e02013-07-20 13:21:52 +10001010
Damien Miller9a661552013-07-18 16:09:04 +1000101120130718
1012 - (djm) OpenBSD CVS Sync
1013 - dtucker@cvs.openbsd.org 2013/06/10 19:19:44
1014 [readconf.c]
1015 revert 1.203 while we investigate crashes reported by okan@
Damien Miller044bd2a2013-07-18 16:09:25 +10001016 - guenther@cvs.openbsd.org 2013/06/17 04:48:42
1017 [scp.c]
1018 Handle time_t values as long long's when formatting them and when
1019 parsing them from remote servers.
1020 Improve error checking in parsing of 'T' lines.
1021 ok dtucker@ deraadt@
Damien Miller30710702013-07-18 16:09:44 +10001022 - markus@cvs.openbsd.org 2013/06/20 19:15:06
1023 [krl.c]
1024 don't leak the rdata blob on errors; ok djm@
Damien Miller20bdcd72013-07-18 16:10:09 +10001025 - djm@cvs.openbsd.org 2013/06/21 00:34:49
1026 [auth-rsa.c auth.h auth2-hostbased.c auth2-pubkey.c monitor.c]
1027 for hostbased authentication, print the client host and user on
1028 the auth success/failure line; bz#2064, ok dtucker@
Damien Miller7f2b4382013-07-18 16:10:29 +10001029 - djm@cvs.openbsd.org 2013/06/21 00:37:49
1030 [ssh_config.5]
1031 explicitly mention that IdentitiesOnly can be used with IdentityFile
1032 to control which keys are offered from an agent.
Damien Millerbbeb1da2013-07-18 16:10:49 +10001033 - djm@cvs.openbsd.org 2013/06/21 05:42:32
1034 [dh.c]
1035 sprinkle in some error() to explain moduli(5) parse failures
Damien Miller81584412013-07-18 16:11:07 +10001036 - djm@cvs.openbsd.org 2013/06/21 05:43:10
1037 [scp.c]
1038 make this -Wsign-compare clean after time_t conversion
Damien Millerbc35d922013-07-18 16:11:25 +10001039 - djm@cvs.openbsd.org 2013/06/22 06:31:57
1040 [scp.c]
1041 improved time_t overflow check suggested by guenther@
Damien Millerfecfd112013-07-18 16:11:50 +10001042 - jmc@cvs.openbsd.org 2013/06/27 14:05:37
1043 [ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5]
1044 do not use Sx for sections outwith the man page - ingo informs me that
1045 stuff like html will render with broken links;
1046 issue reported by Eric S. Raymond, via djm
Damien Miller0d02c3e2013-07-18 16:12:06 +10001047 - markus@cvs.openbsd.org 2013/07/02 12:31:43
1048 [dh.c]
1049 remove extra whitespace
Damien Millerce986542013-07-18 16:12:44 +10001050 - djm@cvs.openbsd.org 2013/07/12 00:19:59
1051 [auth-options.c auth-rsa.c bufaux.c buffer.h channels.c hostfile.c]
1052 [hostfile.h mux.c packet.c packet.h roaming_common.c serverloop.c]
1053 fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
Damien Miller746d1a62013-07-18 16:13:02 +10001054 - djm@cvs.openbsd.org 2013/07/12 00:20:00
1055 [sftp.c ssh-keygen.c ssh-pkcs11.c]
1056 fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
Damien Miller7313fc92013-07-18 16:13:19 +10001057 - djm@cvs.openbsd.org 2013/07/12 00:43:50
1058 [misc.c]
1059 in ssh_gai_strerror() don't fallback to strerror for EAI_SYSTEM when
1060 errno == 0. Avoids confusing error message in some broken resolver
1061 cases. bz#2122 patch from plautrba AT redhat.com; ok dtucker
Damien Miller5bb88332013-07-18 16:13:37 +10001062 - djm@cvs.openbsd.org 2013/07/12 05:42:03
1063 [ssh-keygen.c]
1064 do_print_resource_record() can never be called with a NULL filename, so
1065 don't attempt (and bungle) asking for one if it has not been specified
1066 bz#2127 ok dtucker@
Damien Miller649fe022013-07-18 16:13:55 +10001067 - djm@cvs.openbsd.org 2013/07/12 05:48:55
1068 [ssh.c]
1069 set TCP nodelay for connections started with -N; bz#2124 ok dtucker@
Damien Millerbf836e52013-07-18 16:14:13 +10001070 - schwarze@cvs.openbsd.org 2013/07/16 00:07:52
1071 [scp.1 sftp-server.8 ssh-keyscan.1 ssh-keysign.8 ssh-pkcs11-helper.8]
1072 use .Mt for email addresses; from Jan Stary <hans at stare dot cz>; ok jmc@
Damien Millerd93340c2013-07-18 16:14:34 +10001073 - djm@cvs.openbsd.org 2013/07/18 01:12:26
1074 [ssh.1]
1075 be more exact wrt perms for ~/.ssh/config; bz#2078
Damien Miller9a661552013-07-18 16:09:04 +10001076
Darren Tuckerb7482cf2013-07-02 20:06:46 +1000107720130702
1078 - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config
1079 contrib/cygwin/ssh-user-config] Modernizes and improve readability of
1080 the Cygwin README file (which hasn't been updated for ages), drop
1081 unsupported OSes from the ssh-host-config help text, and drop an
1082 unneeded option from ssh-user-config. Patch from vinschen at redhat com.
1083
Damien Miller36187092013-06-10 13:07:11 +1000108420130610
1085 - (djm) OpenBSD CVS Sync
1086 - dtucker@cvs.openbsd.org 2013/06/07 15:37:52
1087 [channels.c channels.h clientloop.c]
1088 Add an "ABANDONED" channel state and use for mux sessions that are
1089 disconnected via the ~. escape sequence. Channels in this state will
1090 be able to close if the server responds, but do not count as active channels.
1091 This means that if you ~. all of the mux clients when using ControlPersist
1092 on a broken network, the backgrounded mux master will exit when the
1093 Control Persist time expires rather than hanging around indefinitely.
1094 bz#1917, also reported and tested by tedu@. ok djm@ markus@.
Darren Tucker6d8bd572013-06-11 11:26:10 +10001095 - (dtucker) [Makefile.in configure.ac fixalgorithms] Remove unsupported
1096 algorithms (Ciphers, MACs and HostKeyAlgorithms) from man pages.
Darren Tucker97b62f42013-06-11 11:47:24 +10001097 - (dtucker) [myproposal.h] Do not advertise AES GSM ciphers if we don't have
1098 the required OpenSSL support. Patch from naddy at freebsd.
Darren Tuckerb8ae92d2013-06-11 12:10:02 +10001099 - (dtucker) [myproposal.h] Make the conditional algorithm support consistent
1100 and add some comments so it's clear what goes where.
Damien Miller36187092013-06-10 13:07:11 +10001101
Darren Tucker2ea9eb72013-06-05 15:04:00 +1000110220130605
Darren Tuckerb4e00942013-06-05 22:48:44 +10001103 - (dtucker) [myproposal.h] Enable sha256 kex methods based on the presence of
1104 the necessary functions, not from the openssl version.
1105 - (dtucker) [contrib/ssh-copy-id] bz#2117: Use portable operator in test.
1106 Patch from cjwatson at debian.
Darren Tucker2a228732013-06-06 01:59:13 +10001107 - (dtucker) [regress/forwarding.sh] For (as yet unknown) reason, the
1108 forwarding test is extremely slow copying data on some machines so switch
1109 back to copying the much smaller ls binary until we can figure out why
1110 this is.
Darren Tuckerdc62edb2013-06-06 05:12:35 +10001111 - (dtucker) [Makefile.in] append $CFLAGS to compiler options when building
1112 modpipe in case there's anything in there we need.
Darren Tucker5d12b8f2013-06-06 08:09:10 +10001113 - (dtucker) OpenBSD CVS Sync
1114 - dtucker@cvs.openbsd.org 2013/06/02 21:01:51
1115 [channels.h]
1116 typo in comment
Darren Tuckerea8342c2013-06-06 08:11:40 +10001117 - dtucker@cvs.openbsd.org 2013/06/02 23:36:29
1118 [clientloop.h clientloop.c mux.c]
1119 No need for the mux cleanup callback to be visible so restore it to static
1120 and call it through the detach_user function pointer. ok djm@
Darren Tucker4ac66af2013-06-06 08:12:37 +10001121 - dtucker@cvs.openbsd.org 2013/06/03 00:03:18
1122 [mac.c]
1123 force the MAC output to be 64-bit aligned so umac won't see unaligned
1124 accesses on strict-alignment architectures. bz#2101, patch from
1125 tomas.kuthan at oracle.com, ok djm@
Darren Tucker194454d2013-06-06 08:16:04 +10001126 - dtucker@cvs.openbsd.org 2013/06/04 19:12:23
1127 [scp.c]
1128 use MAXPATHLEN for buffer size instead of fixed value. ok markus
Darren Tuckerea647212013-06-06 08:19:09 +10001129 - dtucker@cvs.openbsd.org 2013/06/04 20:42:36
1130 [sftp.c]
1131 Make sftp's libedit interface marginally multibyte aware by building up
1132 the quoted string by character instead of by byte. Prevents failures
1133 when linked against a libedit built with wide character support (bz#1990).
1134 "looks ok" djm
Darren Tucker746e9062013-06-06 08:20:13 +10001135 - dtucker@cvs.openbsd.org 2013/06/05 02:07:29
1136 [mux.c]
1137 fix leaks in mux error paths, from Zhenbo Xu, found by Melton. bz#1967,
1138 ok djm
Darren Tucker0cca17f2013-06-06 08:21:14 +10001139 - dtucker@cvs.openbsd.org 2013/06/05 02:27:50
1140 [sshd.c]
1141 When running sshd -D, close stderr unless we have explicitly requesting
1142 logging to stderr. From james.hunt at ubuntu.com via bz#1976, djm's patch
1143 so, err, ok dtucker.
Darren Tuckere52a2602013-06-06 08:22:05 +10001144 - dtucker@cvs.openbsd.org 2013/06/05 12:52:38
1145 [sshconnect2.c]
1146 Fix memory leaks found by Zhenbo Xu and the Melton tool. bz#1967, ok djm
Darren Tucker408eaf32013-06-06 08:22:46 +10001147 - dtucker@cvs.openbsd.org 2013/06/05 22:00:28
1148 [readconf.c]
1149 plug another memleak. bz#1967, from Zhenbo Xu, detected by Melton, ok djm
Darren Tuckerae133d42013-06-06 08:30:20 +10001150 - (dtucker) [configure.ac sftp.c openbsd-compat/openbsd-compat.h] Cater for
1151 platforms that don't have multibyte character support (specifically,
1152 mblen).
Darren Tucker2ea9eb72013-06-05 15:04:00 +10001153
Tim Rice86211d12013-06-01 18:38:23 -0700115420130602
1155 - (tim) [Makefile.in] Make Solaris, UnixWare, & OpenServer linkers happy
1156 linking regress/modpipe.
Darren Tucker00e1abb2013-06-02 23:46:24 +10001157 - (dtucker) OpenBSD CVS Sync
1158 - dtucker@cvs.openbsd.org 2013/06/02 13:33:05
1159 [progressmeter.c]
1160 Add misc.h for monotime prototype. (ID sync only).
Darren Tucker073f7952013-06-02 23:47:11 +10001161 - dtucker@cvs.openbsd.org 2013/06/02 13:35:58
1162 [ssh-agent.c]
1163 Make parent_alive_interval time_t to avoid signed/unsigned comparison
Darren Tuckeref4901c2013-06-03 01:59:13 +10001164 - (dtucker) [configure.ac] sys/un.h needs sys/socket.h on some platforms
Darren Tucker898ac932013-06-03 02:03:25 +10001165 to prevent noise from configure. Patch from Nathan Osman. (bz#2114).
1166 - (dtucker) [configure.ac] bz#2111: don't try to use lastlog on Android.
1167 Patch from Nathan Osman.
Tim Rice5ab9b632013-06-02 14:05:48 -07001168 - (tim) [configure.ac regress/Makefile] With rev 1.47 of test-exec.sh we
1169 need a shell that can handle "[ file1 -nt file2 ]". Rather than keep
1170 dealing with shell portability issues in regression tests, we let
1171 configure find us a capable shell on those platforms with an old /bin/sh.
Tim Rice01ec0af2013-06-02 14:31:27 -07001172 - (tim) [aclocal.m4] Enhance OSSH_CHECK_CFLAG_COMPILE to check stderr.
1173 feedback and ok dtucker
Tim Rice3f3064c2013-06-02 15:13:09 -07001174 - (tim) [regress/sftp-chroot.sh] skip if no sudo. ok dtucker
Darren Tucker0b43ffe2013-06-03 09:30:44 +10001175 - (dtucker) [configure.ac] Some platforms need sys/types.h before sys/un.h.
Darren Tucker16cac192013-06-04 12:55:24 +10001176 - (dtucker) [configure.ac] Some other platforms need sys/types.h before
1177 sys/socket.h.
Tim Rice86211d12013-06-01 18:38:23 -07001178
Darren Tuckerc0c33732013-06-02 06:28:03 +1000117920130601
1180 - (dtucker) [configure.ac openbsd-compat/xcrypt.c] bz#2112: fall back to
Darren Tucker65cf7402013-06-02 09:11:19 +10001181 using openssl's DES_crypt function on platorms that don't have a native
Darren Tuckerc0c33732013-06-02 06:28:03 +10001182 one, eg Android. Based on a patch from Nathan Osman.
Darren Tuckerc7aad002013-06-02 07:18:47 +10001183 - (dtucker) [configure.ac defines.h] Test for fd_mask, howmany and NFDBITS
1184 rather than trying to enumerate the plaforms that don't have them.
1185 Based on a patch from Nathan Osman, with help from tim@.
Darren Tuckera627d422013-06-02 07:31:17 +10001186 - (dtucker) OpenBSD CVS Sync
1187 - djm@cvs.openbsd.org 2013/05/17 00:13:13
1188 [xmalloc.h cipher.c sftp-glob.c ssh-keyscan.c ssh.c sftp-common.c
1189 ssh-ecdsa.c auth2-chall.c compat.c readconf.c kexgexs.c monitor.c
1190 gss-genr.c cipher-3des1.c kex.c monitor_wrap.c ssh-pkcs11-client.c
1191 auth-options.c rsa.c auth2-pubkey.c sftp.c hostfile.c auth2.c
1192 servconf.c auth.c authfile.c xmalloc.c uuencode.c sftp-client.c
1193 auth2-gss.c sftp-server.c bufaux.c mac.c session.c jpake.c kexgexc.c
1194 sshconnect.c auth-chall.c auth2-passwd.c sshconnect1.c buffer.c
1195 kexecdhs.c kexdhs.c ssh-rsa.c auth1.c ssh-pkcs11.c auth2-kbdint.c
1196 kexdhc.c sshd.c umac.c ssh-dss.c auth2-jpake.c bufbn.c clientloop.c
1197 monitor_mm.c scp.c roaming_client.c serverloop.c key.c auth-rsa.c
1198 ssh-pkcs11-helper.c ssh-keysign.c ssh-keygen.c match.c channels.c
1199 sshconnect2.c addrmatch.c mux.c canohost.c kexecdhc.c schnorr.c
1200 ssh-add.c misc.c auth2-hostbased.c ssh-agent.c bufec.c groupaccess.c
1201 dns.c packet.c readpass.c authfd.c moduli.c]
1202 bye, bye xfree(); ok markus@
Darren Tucker74836ae2013-06-02 07:32:00 +10001203 - djm@cvs.openbsd.org 2013/05/19 02:38:28
1204 [auth2-pubkey.c]
1205 fix failure to recognise cert-authority keys if a key of a different type
1206 appeared in authorized_keys before it; ok markus@
Darren Tucker0acca372013-06-02 07:41:51 +10001207 - djm@cvs.openbsd.org 2013/05/19 02:42:42
1208 [auth.h auth.c key.c monitor.c auth-rsa.c auth2.c auth1.c key.h]
1209 Standardise logging of supplemental information during userauth. Keys
1210 and ruser is now logged in the auth success/failure message alongside
1211 the local username, remote host/port and protocol in use. Certificates
1212 contents and CA are logged too.
1213 Pushing all logging onto a single line simplifies log analysis as it is
1214 no longer necessary to relate information scattered across multiple log
1215 entries. "I like it" markus@
Darren Tucker55119252013-06-02 07:43:59 +10001216 - dtucker@cvs.openbsd.org 2013/05/31 12:28:10
1217 [ssh-agent.c]
1218 Use time_t where appropriate. ok djm
Darren Tuckerb759c9c2013-06-02 07:46:16 +10001219 - dtucker@cvs.openbsd.org 2013/06/01 13:15:52
1220 [ssh-agent.c clientloop.c misc.h packet.c progressmeter.c misc.c
1221 channels.c sandbox-systrace.c]
1222 Use clock_gettime(CLOCK_MONOTONIC ...) for ssh timers so that things like
1223 keepalives and rekeying will work properly over clock steps. Suggested by
1224 markus@, "looks good" djm@.
Darren Tucker3750fce2013-06-02 07:52:21 +10001225 - dtucker@cvs.openbsd.org 2013/06/01 20:59:25
1226 [scp.c sftp-client.c]
1227 Replace S_IWRITE, which isn't standardized, with S_IWUSR, which is. Patch
1228 from Nathan Osman via bz#2085. ok deraadt.
Darren Tuckerc9a19912013-06-02 08:37:05 +10001229 - dtucker@cvs.openbsd.org 2013/06/01 22:34:50
1230 [sftp-client.c]
1231 Update progressmeter when data is acked, not when it's sent. bz#2108, from
1232 Debian via Colin Watson, ok djm@
Darren Tuckerf60845f2013-06-02 08:07:31 +10001233 - (dtucker) [M auth-chall.c auth-krb5.c auth-pam.c cipher-aes.c cipher-ctr.c
1234 groupaccess.c loginrec.c monitor.c monitor_wrap.c session.c sshd.c
1235 sshlogin.c uidswap.c openbsd-compat/bsd-cygwin_util.c
1236 openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/port-aix.c
1237 openbsd-compat/port-linux.c] Replace portable-specific instances of xfree
1238 with the equivalent calls to free.
Darren Tuckera7108912013-06-02 08:18:31 +10001239 - (dtucker) [configure.ac misc.c] Look for clock_gettime in librt and fall
1240 back to time(NULL) if we can't find it anywhere.
Darren Tuckere9887d12013-06-02 09:17:09 +10001241 - (dtucker) [sandbox-seccomp-filter.c] Allow clock_gettimeofday.
Darren Tuckerc0c33732013-06-02 06:28:03 +10001242
124320130529
Darren Tuckerefdf5342013-05-30 08:29:08 +10001244 - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] bz#2087: Add a null
1245 implementation of endgrent for platforms that don't have it (eg Android).
1246 Loosely based on a patch from Nathan Osman, ok djm
Darren Tuckerc0c33732013-06-02 06:28:03 +10001247
Darren Tucker712de4d2013-05-17 09:07:12 +10001248 20130517
1249 - (dtucker) OpenBSD CVS Sync
1250 - djm@cvs.openbsd.org 2013/03/07 00:20:34
1251 [regress/proxy-connect.sh]
1252 repeat test with a style appended to the username
Darren Tucker7c8b1e72013-05-17 09:10:20 +10001253 - dtucker@cvs.openbsd.org 2013/03/23 11:09:43
Darren Tucker75129022013-05-17 09:19:10 +10001254 [regress/test-exec.sh]
Darren Tucker7c8b1e72013-05-17 09:10:20 +10001255 Only regenerate host keys if they don't exist or if ssh-keygen has changed
1256 since they were. Reduces test runtime by 5-30% depending on machine
1257 speed.
Darren Tucker75129022013-05-17 09:19:10 +10001258 - dtucker@cvs.openbsd.org 2013/04/06 06:00:22
1259 [regress/rekey.sh regress/test-exec.sh regress/integrity.sh
1260 regress/multiplex.sh Makefile regress/cfgmatch.sh]
1261 Split the regress log into 3 parts: the debug output from ssh, the debug
1262 log from sshd and the output from the client command (ssh, scp or sftp).
1263 Somewhat functional now, will become more useful when ssh/sshd -E is added.
Darren Tuckerdfea3bc2013-05-17 09:31:39 +10001264 - dtucker@cvs.openbsd.org 2013/04/07 02:16:03
1265 [regress/Makefile regress/rekey.sh regress/integrity.sh
1266 regress/sshd-log-wrapper.sh regress/forwarding.sh regress/test-exec.sh]
1267 use -E option for ssh and sshd to write debuging logs to ssh{,d}.log and
1268 save the output from any failing tests. If a test fails the debug output
1269 from ssh and sshd for the failing tests (and only the failing tests) should
1270 be available in failed-ssh{,d}.log.
Darren Tuckerf3568fc2013-05-17 09:35:26 +10001271 - djm@cvs.openbsd.org 2013/04/18 02:46:12
Darren Tucker40aaff72013-05-17 09:36:20 +10001272 [regress/Makefile regress/sftp-chroot.sh]
Darren Tuckerf3568fc2013-05-17 09:35:26 +10001273 test sshd ChrootDirectory+internal-sftp; feedback & ok dtucker@
Darren Tucker40aaff72013-05-17 09:36:20 +10001274 - dtucker@cvs.openbsd.org 2013/04/22 07:23:08
Darren Tuckera4df65b2013-05-17 09:37:31 +10001275 [regress/multiplex.sh]
Darren Tucker40aaff72013-05-17 09:36:20 +10001276 Write mux master logs to regress.log instead of ssh.log to keep separate
Darren Tucker5e951732013-05-17 09:41:33 +10001277 - djm@cvs.openbsd.org 2013/05/10 03:46:14
Darren Tuckerc31c8722013-05-17 09:43:33 +10001278 [regress/modpipe.c]
Darren Tucker5e951732013-05-17 09:41:33 +10001279 sync some portability changes from portable OpenSSH (id sync only)
Darren Tuckera8a62fc2013-05-17 09:42:34 +10001280 - dtucker@cvs.openbsd.org 2013/05/16 02:10:35
Darren Tuckerc31c8722013-05-17 09:43:33 +10001281 [regress/rekey.sh]
Darren Tuckera8a62fc2013-05-17 09:42:34 +10001282 Add test for time-based rekeying
Darren Tuckerc31c8722013-05-17 09:43:33 +10001283 - dtucker@cvs.openbsd.org 2013/05/16 03:33:30
1284 [regress/rekey.sh]
1285 test rekeying when there's no data being transferred
Darren Tucker14490fe2013-05-17 09:44:20 +10001286 - dtucker@cvs.openbsd.org 2013/05/16 04:26:10
1287 [regress/rekey.sh]
1288 add server-side rekey test
Darren Tucker982b0cb2013-05-17 09:45:12 +10001289 - dtucker@cvs.openbsd.org 2013/05/16 05:48:31
1290 [regress/rekey.sh]
1291 add tests for RekeyLimit parsing
Darren Tucker56347ef2013-05-17 13:28:36 +10001292 - dtucker@cvs.openbsd.org 2013/05/17 00:37:40
1293 [regress/agent.sh regress/keytype.sh regress/cfgmatch.sh
1294 regress/forcecommand.sh regress/proto-version.sh regress/test-exec.sh
1295 regress/cipher-speed.sh regress/cert-hostkey.sh regress/cert-userkey.sh
1296 regress/ssh-com.sh]
1297 replace 'echo -n' with 'printf' since it's more portable
1298 also remove "echon" hack.
Darren Tuckerb8b96b02013-05-17 14:46:20 +10001299 - dtucker@cvs.openbsd.org 2013/05/17 01:16:09
1300 [regress/agent-timeout.sh]
1301 Pull back some portability changes from -portable:
1302 - TIMEOUT is a read-only variable in some shells
1303 - not all greps have -q so redirect to /dev/null instead.
1304 (ID sync only)
Darren Tucker34035be2013-05-17 14:47:51 +10001305 - dtucker@cvs.openbsd.org 2013/05/17 01:32:11
1306 [regress/integrity.sh]
1307 don't print output from ssh before getting it (it's available in ssh.log)
Darren Tucker59d928d2013-05-17 15:32:29 +10001308 - dtucker@cvs.openbsd.org 2013/05/17 04:29:14
1309 [regress/sftp.sh regress/putty-ciphers.sh regress/cipher-speed.sh
1310 regress/test-exec.sh regress/sftp-batch.sh regress/dynamic-forward.sh
1311 regress/putty-transfer.sh regress/conch-ciphers.sh regress/sftp-cmds.sh
1312 regress/scp.sh regress/ssh-com-sftp.sh regress/rekey.sh
1313 regress/putty-kex.sh regress/stderr-data.sh regress/stderr-after-eof.sh
1314 regress/sftp-badcmds.sh regress/reexec.sh regress/ssh-com-client.sh
1315 regress/sftp-chroot.sh regress/forwarding.sh regress/transfer.sh
1316 regress/multiplex.sh]
1317 Move the setting of DATA and COPY into test-exec.sh
Darren Tuckerdd669172013-05-17 20:39:57 +10001318 - dtucker@cvs.openbsd.org 2013/05/17 10:16:26
1319 [regress/try-ciphers.sh]
1320 use expr for math to keep diffs vs portable down
1321 (id sync only)
Darren Tucker05b5e512013-05-17 20:41:07 +10001322 - dtucker@cvs.openbsd.org 2013/05/17 10:23:52
1323 [regress/login-timeout.sh regress/reexec.sh regress/test-exec.sh]
1324 Use SUDO when cat'ing pid files and running the sshd log wrapper so that
1325 it works with a restrictive umask and the pid files are not world readable.
1326 Changes from -portable. (id sync only)
Darren Tucker1466bd22013-05-17 20:42:05 +10001327 - dtucker@cvs.openbsd.org 2013/05/17 10:24:48
Darren Tucker438f60e2013-05-17 20:43:13 +10001328 [regress/localcommand.sh]
Darren Tucker1466bd22013-05-17 20:42:05 +10001329 use backticks for portability. (id sync only)
Darren Tucker438f60e2013-05-17 20:43:13 +10001330 - dtucker@cvs.openbsd.org 2013/05/17 10:26:26
1331 [regress/sftp-badcmds.sh]
1332 remove unused BATCH variable. (id sync only)
Darren Tucker98989eb2013-05-17 20:44:09 +10001333 - dtucker@cvs.openbsd.org 2013/05/17 10:28:11
1334 [regress/sftp.sh]
1335 only compare copied data if sftp succeeds. from portable (id sync only)
Darren Tucker00478d32013-05-17 20:45:06 +10001336 - dtucker@cvs.openbsd.org 2013/05/17 10:30:07
1337 [regress/test-exec.sh]
1338 wait a bit longer for startup and use case for absolute path.
1339 from portable (id sync only)
Darren Tucker62ee2222013-05-17 20:46:00 +10001340 - dtucker@cvs.openbsd.org 2013/05/17 10:33:09
1341 [regress/agent-getpeereid.sh]
1342 don't redirect stdout from sudo. from portable (id sync only)
Darren Tucker0a404b02013-05-17 20:47:29 +10001343 - dtucker@cvs.openbsd.org 2013/05/17 10:34:30
1344 [regress/portnum.sh]
1345 use a more portable negated if structure. from portable (id sync only)
Darren Tucker9b42d322013-05-17 20:48:59 +10001346 - dtucker@cvs.openbsd.org 2013/05/17 10:35:43
1347 [regress/scp.sh]
1348 use a file extention that's not special on some platforms. from portable
1349 (id sync only)
Darren Tucker6e1e60c2013-05-17 11:23:41 +10001350 - (dtucker) [regress/bsd.regress.mk] Remove unused file. We've never used it
1351 in portable and it's long gone in openbsd.
Darren Tucker91af05c2013-05-17 13:16:59 +10001352 - (dtucker) [regress/integrity.sh]. Force fixed Diffie-Hellman key exchange
1353 methods. When the openssl version doesn't support ECDH then next one on
1354 the list is DH group exchange, but that causes a bit more traffic which can
1355 mean that the tests flip bits in the initial exchange rather than the MACed
1356 traffic and we get different errors to what the tests look for.
Darren Tucker8654dd22013-05-17 16:03:48 +10001357 - (dtucker) [openbsd-compat/getopt.h] Remove unneeded bits.
Darren Tucker7f193232013-05-17 19:02:28 +10001358 - (dtucker) [regress/cfgmatch.sh] Resync config file setup with openbsd.
Darren Tucker96457a52013-05-17 19:03:38 +10001359 - (dtucker) [regress/agent-getpeereid.sh] Resync spaces with openbsd.
Darren Tucker5f1a89a2013-05-17 19:17:58 +10001360 - (dtucker) [regress/integrity.sh regress/krl.sh regress/test-exec.sh]
1361 Move the jot helper function to portable-specific part of test-exec.sh.
Darren Tucker6f669812013-05-17 19:28:51 +10001362 - (dtucker) [regress/test-exec.sh] Move the portable-specific functions
1363 together and add a couple of missing lines from openbsd.
Darren Tuckerf8d5b342013-05-17 19:53:25 +10001364 - (dtucker) [regress/stderr-after-eof.sh regress/test-exec.sh] Move the md5
1365 helper function to the portable part of test-exec.sh.
Darren Tucker9cc8ff72013-05-17 20:01:52 +10001366 - (dtucker) [regress/runtests.sh] Remove obsolete test driver script.
Darren Tucker044f32f2013-05-17 20:12:57 +10001367 - (dtucker) [regress/cfgmatch.sh] Remove unneeded sleep renderd obsolete by
1368 rev 1.6 which calls wait.
Darren Tucker712de4d2013-05-17 09:07:12 +10001369
Damien Miller6aa3eac2013-05-16 11:10:17 +1000137020130516
1371 - (djm) [contrib/ssh-copy-id] Fix bug that could cause "rm *" to be
1372 executed if mktemp failed; bz#2105 ok dtucker@
Darren Tucker2ca51bf2013-05-16 20:22:46 +10001373 - (dtucker) OpenBSD CVS Sync
1374 - tedu@cvs.openbsd.org 2013/04/23 17:49:45
1375 [misc.c]
1376 use xasprintf instead of a series of strlcats and strdup. ok djm
Darren Tucker026d9db2013-05-16 20:23:52 +10001377 - tedu@cvs.openbsd.org 2013/04/24 16:01:46
1378 [misc.c]
1379 remove extra parens noticed by nicm
Darren Tucker5d8b7022013-05-16 20:24:23 +10001380 - dtucker@cvs.openbsd.org 2013/05/06 07:35:12
1381 [sftp-server.8]
1382 Reference the version of the sftp draft we actually implement. ok djm@
Darren Tucker54da6be2013-05-16 20:25:04 +10001383 - djm@cvs.openbsd.org 2013/05/10 03:40:07
1384 [sshconnect2.c]
1385 fix bzero(ptr_to_struct, sizeof(ptr_to_struct)); bz#2100 from
Darren Tucker7e831ed2013-05-16 20:25:40 +10001386 Colin Watson
Darren Tuckercaf00102013-05-16 20:26:18 +10001387 - djm@cvs.openbsd.org 2013/05/10 04:08:01
1388 [key.c]
1389 memleak in cert_free(), wasn't actually freeing the struct;
1390 bz#2096 from shm AT digitalsun.pl
Darren Tucker64c6fce2013-05-16 20:27:14 +10001391 - dtucker@cvs.openbsd.org 2013/05/10 10:13:50
1392 [ssh-pkcs11-helper.c]
1393 remove unused extern optarg. ok markus@
Darren Tuckerc53c2af2013-05-16 20:28:16 +10001394 - dtucker@cvs.openbsd.org 2013/05/16 02:00:34
1395 [ssh_config sshconnect2.c packet.c readconf.h readconf.c clientloop.c
1396 ssh_config.5 packet.h]
1397 Add an optional second argument to RekeyLimit in the client to allow
1398 rekeying based on elapsed time in addition to amount of traffic.
1399 with djm@ jmc@, ok djm
Darren Tucker5f96f3b2013-05-16 20:29:28 +10001400 - dtucker@cvs.openbsd.org 2013/05/16 04:09:14
1401 [sshd_config.5 servconf.c servconf.h packet.c serverloop.c monitor.c sshd_config
1402 sshd.c] Add RekeyLimit to sshd with the same syntax as the client allowing
1403 rekeying based on traffic volume or time. ok djm@, help & ok jmc@ for the man
1404 page.
Darren Tucker07636982013-05-16 20:30:03 +10001405 - djm@cvs.openbsd.org 2013/05/16 04:27:50
1406 [ssh_config.5 readconf.h readconf.c]
1407 add the ability to ignore specific unrecognised ssh_config options;
1408 bz#866; ok markus@
Darren Tucker63e0df22013-05-16 20:30:31 +10001409 - jmc@cvs.openbsd.org 2013/05/16 06:28:45
1410 [ssh_config.5]
1411 put IgnoreUnknown in the right place;
Darren Tucker64d22942013-05-16 20:31:29 +10001412 - jmc@cvs.openbsd.org 2013/05/16 06:30:06
1413 [sshd_config.5]
1414 oops! avoid Xr to self;
Darren Tuckerdbee3082013-05-16 20:32:29 +10001415 - dtucker@cvs.openbsd.org 2013/05/16 09:08:41
1416 [log.c scp.c sshd.c serverloop.c schnorr.c sftp.c]
1417 Fix some "unused result" warnings found via clang and -portable.
1418 ok markus@
Darren Tuckerb7ee8522013-05-16 20:33:10 +10001419 - dtucker@cvs.openbsd.org 2013/05/16 09:12:31
1420 [readconf.c servconf.c]
1421 switch RekeyLimit traffic volume parsing to scan_scaled. ok djm@
Darren Tucker9113d0c2013-05-16 20:48:14 +10001422 - dtucker@cvs.openbsd.org 2013/05/16 10:43:34
1423 [servconf.c readconf.c]
1424 remove now-unused variables
Darren Tucker09c0f032013-05-16 20:48:57 +10001425 - dtucker@cvs.openbsd.org 2013/05/16 10:44:06
1426 [servconf.c]
1427 remove another now-unused variable
Darren Tuckere194ba42013-05-16 20:47:31 +10001428 - (dtucker) [configure.ac readconf.c servconf.c
1429 openbsd-compat/openbsd-compat.h] Add compat bits for scan_scaled.
Damien Miller6aa3eac2013-05-16 11:10:17 +10001430
Darren Tuckerabbc7a72013-05-10 13:54:23 +1000143120130510
1432 - (dtucker) [configure.ac] Enable -Wsizeof-pointer-memaccess if the compiler
1433 supports it. Mentioned by Colin Watson in bz#2100, ok djm.
Darren Tucker35b2fe92013-05-10 15:35:26 +10001434 - (dtucker) [openbsd-compat/getopt.c] Factor out portibility changes to
1435 getopt.c. Preprocessed source is identical other than line numbers.
Darren Tucker39332022013-05-10 15:38:11 +10001436 - (dtucker) [openbsd-compat/getopt_long.c] Import from OpenBSD. No
1437 portability changes yet.
Darren Tuckerccfdfce2013-05-10 16:28:55 +10001438 - (dtucker) [openbsd-compat/Makefile.in openbsd-compat/getopt.c
1439 openbsd-compat/getopt_long.c regress/modpipe.c] Remove getopt.c, add
1440 portability code to getopt_long.c and switch over Makefile and the ugly
1441 hack in modpipe.c. Fixes bz#1448.
Darren Tucker0abfb552013-05-10 18:08:49 +10001442 - (dtucker) [openbsd-compat/getopt.h openbsd-compat/getopt_long.c
1443 openbsd-compat/openbsd-compat.h] pull in getopt.h from openbsd and plumb
1444 in to use it when we're using our own getopt.
Darren Tuckera75d2472013-05-10 18:11:55 +10001445 - (dtucker) [kex.c] Only include sha256 and ECC key exchange methods when the
1446 underlying libraries support them.
Darren Tuckerc54e3e02013-05-10 18:53:14 +10001447 - (dtucker) [configure.ac] Add -Werror to the -Qunused-arguments test so
1448 we don't get a warning on compilers that *don't* support it. Add
1449 -Wno-unknown-warning-option. Move both to the start of the list for
1450 maximum noise suppression. Tested with gcc 4.6.3, gcc 2.95.4 and clang 2.9.
Darren Tuckerabbc7a72013-05-10 13:54:23 +10001451
Damien Miller6332da22013-04-23 14:25:52 +1000145220130423
1453 - (djm) [auth.c configure.ac misc.c monitor.c monitor_wrap.c] Support
1454 platforms, such as Android, that lack struct passwd.pw_gecos. Report
1455 and initial patch from Nathan Osman bz#2086; feedback tim@ ok dtucker@
Damien Miller62e9c4f2013-04-23 15:15:49 +10001456 - (djm) OpenBSD CVS Sync
1457 - markus@cvs.openbsd.org 2013/03/05 20:16:09
1458 [sshconnect2.c]
1459 reset pubkey order on partial success; ok djm@
Damien Miller998cc562013-04-23 15:16:43 +10001460 - djm@cvs.openbsd.org 2013/03/06 23:35:23
1461 [session.c]
1462 fatal() when ChrootDirectory specified by running without root privileges;
1463 ok markus@
Damien Miller5cbec4c2013-04-23 15:17:12 +10001464 - djm@cvs.openbsd.org 2013/03/06 23:36:53
1465 [readconf.c]
1466 g/c unused variable (-Wunused)
Damien Miller4ce189d2013-04-23 15:17:52 +10001467 - djm@cvs.openbsd.org 2013/03/07 00:19:59
1468 [auth2-pubkey.c monitor.c]
1469 reconstruct the original username that was sent by the client, which may
1470 have included a style (e.g. "root:skey") when checking public key
1471 signatures. Fixes public key and hostbased auth when the client specified
1472 a style; ok markus@
Damien Miller91a55f22013-04-23 15:18:10 +10001473 - markus@cvs.openbsd.org 2013/03/07 19:27:25
1474 [auth.h auth2-chall.c auth2.c monitor.c sshd_config.5]
1475 add submethod support to AuthenticationMethods; ok and freedback djm@
Damien Miller508b6c32013-04-23 15:18:28 +10001476 - djm@cvs.openbsd.org 2013/03/08 06:32:58
1477 [ssh.c]
1478 allow "ssh -f none ..." ok markus@
Damien Millerd677ad12013-04-23 15:18:51 +10001479 - djm@cvs.openbsd.org 2013/04/05 00:14:00
1480 [auth2-gss.c krl.c sshconnect2.c]
1481 hush some {unused, printf type} warnings
Damien Miller9f12b5d2013-04-23 15:19:11 +10001482 - djm@cvs.openbsd.org 2013/04/05 00:31:49
1483 [pathnames.h]
1484 use the existing _PATH_SSH_USER_RC define to construct the other
1485 pathnames; bz#2077, ok dtucker@ (no binary change)
Damien Miller172859c2013-04-23 15:19:27 +10001486 - djm@cvs.openbsd.org 2013/04/05 00:58:51
1487 [mux.c]
1488 cleanup mux-created channels that are in SSH_CHANNEL_OPENING state too
1489 (in addition to ones already in OPEN); bz#2079, ok dtucker@
Damien Miller37f1c082013-04-23 15:20:43 +10001490 - markus@cvs.openbsd.org 2013/04/06 16:07:00
1491 [channels.c sshd.c]
1492 handle ECONNABORTED for accept(); ok deraadt some time ago...
Damien Miller03d4d7e2013-04-23 15:21:06 +10001493 - dtucker@cvs.openbsd.org 2013/04/07 02:10:33
1494 [log.c log.h ssh.1 ssh.c sshd.8 sshd.c]
1495 Add -E option to ssh and sshd to append debugging logs to a specified file
1496 instead of stderr or syslog. ok markus@, man page help jmc@
Damien Miller69010322013-04-23 15:21:24 +10001497 - dtucker@cvs.openbsd.org 2013/04/07 09:40:27
1498 [sshd.8]
1499 clarify -e text. suggested by & ok jmc@
Damien Millerd5edefd2013-04-23 15:21:39 +10001500 - djm@cvs.openbsd.org 2013/04/11 02:27:50
1501 [packet.c]
1502 quiet disconnect notifications on the server from error() back to logit()
1503 if it is a normal client closure; bz#2057 ok+feedback dtucker@
Damien Millerf1a02ae2013-04-23 15:22:13 +10001504 - dtucker@cvs.openbsd.org 2013/04/17 09:04:09
1505 [session.c]
1506 revert rev 1.262; it fails because uid is already set here. ok djm@
Damien Miller9303e652013-04-23 15:22:40 +10001507 - djm@cvs.openbsd.org 2013/04/18 02:16:07
1508 [sftp.c]
1509 make "sftp -q" do what it says on the sticker: hush everything but errors;
Damien Miller467b00c2013-04-23 15:23:07 +10001510 ok dtucker@
1511 - djm@cvs.openbsd.org 2013/04/19 01:00:10
1512 [sshd_config.5]
1513 document the requirment that the AuthorizedKeysCommand be owned by root;
1514 ok dtucker@ markus@
Damien Miller0d6771b2013-04-23 15:23:24 +10001515 - djm@cvs.openbsd.org 2013/04/19 01:01:00
1516 [ssh-keygen.c]
1517 fix some memory leaks; bz#2088 ok dtucker@
Damien Millera56086b2013-04-23 15:24:18 +10001518 - djm@cvs.openbsd.org 2013/04/19 01:03:01
1519 [session.c]
1520 reintroduce 1.262 without the connection-killing bug:
1521 fatal() when ChrootDirectory specified by running without root privileges;
1522 ok markus@
Damien Millerea111192013-04-23 19:24:32 +10001523 - djm@cvs.openbsd.org 2013/04/19 01:06:50
1524 [authfile.c cipher.c cipher.h kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c]
1525 [key.c key.h mac.c mac.h packet.c ssh.1 ssh.c]
1526 add the ability to query supported ciphers, MACs, key type and KEX
1527 algorithms to ssh. Includes some refactoring of KEX and key type handling
1528 to be table-driven; ok markus@
Damien Miller34bd20a2013-04-23 19:25:00 +10001529 - djm@cvs.openbsd.org 2013/04/19 11:10:18
1530 [ssh.c]
1531 add -Q to usage; reminded by jmc@
Damien Millerf8b894e2013-04-23 19:25:29 +10001532 - djm@cvs.openbsd.org 2013/04/19 12:07:08
1533 [kex.c]
1534 remove duplicated list entry pointed out by naddy@
Damien Millerbc02f162013-04-23 19:25:49 +10001535 - dtucker@cvs.openbsd.org 2013/04/22 01:17:18
1536 [mux.c]
1537 typo in debug output: evitval->exitval
Damien Miller6332da22013-04-23 14:25:52 +10001538
Damien Millerbc68f242013-04-18 11:26:25 +1000153920130418
1540 - (djm) [config.guess config.sub] Update to last versions before they switch
1541 to GPL3. ok dtucker@
Darren Tuckerce1c9572013-04-18 21:36:19 +10001542 - (dtucker) [configure.ac] Use -Qunused-arguments to suppress warnings from
1543 unused argument warnings (in particular, -fno-builtin-memset) from clang.
Damien Millerbc68f242013-04-18 11:26:25 +10001544
Darren Tucker19104782013-04-05 11:13:08 +1100154520130404
1546 - (dtucker) OpenBSD CVS Sync
1547 - dtucker@cvs.openbsd.org 2013/02/17 23:16:57
1548 [readconf.c ssh.c readconf.h sshconnect2.c]
1549 Keep track of which IndentityFile options were manually supplied and which
1550 were default options, and don't warn if the latter are missing.
1551 ok markus@
Darren Tuckerf3c38142013-04-05 11:16:52 +11001552 - dtucker@cvs.openbsd.org 2013/02/19 02:12:47
1553 [krl.c]
1554 Remove bogus include. ok djm
Darren Tuckeraefa3682013-04-05 11:18:35 +11001555 - dtucker@cvs.openbsd.org 2013/02/22 04:45:09
1556 [ssh.c readconf.c readconf.h]
1557 Don't complain if IdentityFiles specified in system-wide configs are
1558 missing. ok djm, deraadt.
Darren Tucker5d1d9542013-04-05 11:20:00 +11001559 - markus@cvs.openbsd.org 2013/02/22 19:13:56
1560 [sshconnect.c]
1561 support ProxyCommand=- (stdin/out already point to the proxy); ok djm@
Darren Tucker15fd19c2013-04-05 11:22:26 +11001562 - djm@cvs.openbsd.org 2013/02/22 22:09:01
1563 [ssh.c]
1564 Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier
1565 version)
Darren Tucker19104782013-04-05 11:13:08 +11001566
Darren Tuckerc9627cd2013-04-01 12:40:48 +1100156720130401
1568 - (dtucker) [openbsd-compat/bsd-cygwin_util.{c,h}] Don't include windows.h
1569 to avoid conflicting definitions of __int64, adding the required bits.
1570 Patch from Corinna Vinschen.
1571
Damien Miller67f1d552013-10-09 09:33:08 +1100157220130323
Tim Rice75db01d2013-03-22 10:14:32 -07001573 - (tim) [Makefile.in] remove some duplication introduced in 20130220 commit.
1574
Damien Miller67f1d552013-10-09 09:33:08 +1100157520130322
Damien Miller83efe7c2013-03-22 10:17:36 +11001576 - (djm) [contrib/ssh-copy-id contrib/ssh-copy-id.1] Updated to Phil
1577 Hands' greatly revised version.
Damien Millereed8dc22013-03-22 10:25:22 +11001578 - (djm) Release 6.2p1
Darren Tuckerc8a0f272013-03-22 12:49:14 +11001579 - (dtucker) [configure.ac] Add stdlib.h to zlib check for exit() prototype.
Darren Tucker221b4b22013-03-22 12:51:09 +11001580 - (dtucker) [includes.h] Check if _GNU_SOURCE is already defined before
1581 defining it again. Prevents warnings if someone, eg, sets it in CFLAGS.
Damien Miller83efe7c2013-03-22 10:17:36 +11001582
Damien Miller67f1d552013-10-09 09:33:08 +1100158320130318
Damien Miller63b4bcd2013-03-20 12:55:14 +11001584 - (djm) [configure.ac log.c scp.c sshconnect2.c openbsd-compat/vis.c]
1585 [openbsd-compat/vis.h] FreeBSD's strnvis isn't compatible with OpenBSD's
1586 so mark it as broken. Patch from des AT des.no
1587
Damien Miller67f1d552013-10-09 09:33:08 +1100158820130317
Tim Riceaa86c392013-03-16 20:55:46 -07001589 - (tim) [configure.ac] OpenServer 5 wants lastlog even though it has none
1590 of the bits the configure test looks for.
1591
Damien Miller67f1d552013-10-09 09:33:08 +1100159220130316
Damien Millera2438bb2013-03-15 10:23:07 +11001593 - (djm) [configure.ac] Disable utmp, wtmp and/or lastlog if the platform
1594 is unable to successfully compile them. Based on patch from des AT
1595 des.no
Damien Millerf4db77d2013-03-15 10:34:25 +11001596 - (djm) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
1597 Add a usleep replacement for platforms that lack it; ok dtucker
Damien Miller58528402013-03-15 11:22:37 +11001598 - (djm) [session.c] FreeBSD needs setusercontext(..., LOGIN_SETUMASK) to
1599 occur after UID switch; patch from John Marshall via des AT des.no;
1600 ok dtucker@
Damien Millera2438bb2013-03-15 10:23:07 +11001601
Damien Miller67f1d552013-10-09 09:33:08 +1100160220130312
Darren Tuckerfe10a282013-03-12 11:19:40 +11001603 - (dtucker) [regress/Makefile regress/cipher-speed.sh regress/test-exec.sh]
1604 Improve portability of cipher-speed test, based mostly on a patch from
1605 Iain Morgan.
Darren Tuckeraa97d132013-03-12 11:31:05 +11001606 - (dtucker) [auth.c configure.ac platform.c platform.h] Accept uid 2 ("bin")
1607 in addition to root as an owner of system directories on AIX and HP-UX.
1608 ok djm@
Darren Tuckerfe10a282013-03-12 11:19:40 +11001609
Darren Tuckerb3cd5032013-03-07 12:33:35 +1100161020130307
1611 - (dtucker) [INSTALL] Bump documented autoconf version to what we're
1612 currently using.
Darren Tucker4d1a0fe2013-03-07 20:14:34 +11001613 - (dtucker) [defines.h] Remove SIZEOF_CHAR bits since the test for it
Darren Tucker9243ef02013-03-07 20:06:13 +11001614 was removed in configure.ac rev 1.481 as it was redundant.
Tim Rice2b6ea472013-03-07 07:37:13 -08001615 - (tim) [Makefile.in] Add another missing $(EXEEXT) I should have seen 3 days
1616 ago.
Damien Millere4f43472013-03-08 12:14:22 +11001617 - (djm) [configure.ac] Add a timeout to the select/rlimit test to give it a
1618 chance to complete on broken systems; ok dtucker@
Darren Tuckerb3cd5032013-03-07 12:33:35 +11001619
Darren Tucker834a0d62013-03-06 14:06:48 +1100162020130306
1621 - (dtucker) [regress/forward-control.sh] Wait longer for the forwarding
1622 connection to start so that the test works on slower machines.
Darren Tuckerff008de2013-03-06 17:48:48 +11001623 - (dtucker) [configure.ac] test that we can set number of file descriptors
1624 to zero with setrlimit before enabling the rlimit sandbox. This affects
1625 (at least) HPUX 11.11.
Darren Tucker834a0d62013-03-06 14:06:48 +11001626
Damien Miller43e5e602013-03-05 09:49:00 +1100162720130305
1628 - (djm) [regress/modpipe.c] Compilation fix for AIX and parsing fix for
1629 HP/UX. Spotted by Kevin Brott
Darren Tucker5f0e54c2013-03-05 19:57:39 +11001630 - (dtucker) [configure.ac] use "=" for shell test and not "==". Spotted by
Darren Tuckerfef9f7c2013-03-05 20:02:24 +11001631 Amit Kulkarni and Kevin Brott.
Darren Tucker29c71512013-03-05 21:50:09 +11001632 - (dtucker) [Makefile.in] Remove trailing "\" on PATHS, which caused obscure
1633 build breakage on (at least) HP-UX 11.11. Found by Amit Kulkarni and Kevin
1634 Brott.
Tim Riceff8bda82013-03-05 14:23:58 -08001635 - (tim) [Makefile.in] Add missing $(EXEEXT). Found by Roumen Petrov.
Damien Miller43e5e602013-03-05 09:49:00 +11001636
Damien Millerc0cc7ce2013-02-27 10:48:18 +1100163720130227
1638 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
1639 [contrib/suse/openssh.spec] Crank version numbers
Tim Ricea514bc02013-02-26 19:35:26 -08001640 - (tim) [regress/forward-control.sh] use sh in case login shell is csh.
Tim Ricef9e20602013-02-26 20:27:29 -08001641 - (tim) [regress/integrity.sh] shell portability fix.
Tim Riceada7e172013-02-26 21:49:09 -08001642 - (tim) [regress/integrity.sh] keep old solaris awk from hanging.
Tim Rice21f591b2013-02-26 22:48:31 -08001643 - (tim) [regress/krl.sh] keep old solaris awk from hanging.
Damien Millerc0cc7ce2013-02-27 10:48:18 +11001644
Damien Miller1e657d52013-02-26 18:58:06 +1100164520130226
1646 - OpenBSD CVS Sync
1647 - djm@cvs.openbsd.org 2013/02/20 08:27:50
1648 [integrity.sh]
1649 Add an option to modpipe that warns if the modification offset it not
1650 reached in it's stream and turn it on for t-integrity. This should catch
1651 cases where the session is not fuzzed for being too short (cf. my last
1652 "oops" commit)
Damien Miller6c21bb82013-02-26 19:41:30 +11001653 - (djm) [regress/integrity.sh] Run sshd via $SUDO; fixes tinderbox breakage
1654 for UsePAM=yes configuration
Damien Miller1e657d52013-02-26 18:58:06 +11001655
Darren Tucker03978c62013-02-25 11:24:44 +1100165620130225
1657 - (dtucker) [configure.ac ssh-gss.h] bz#2073: additional #includes needed
1658 to use Solaris native GSS libs. Patch from Pierre Ossman.
1659
Darren Tuckera423fef2013-02-25 10:32:27 +1100166020130223
Damien Millerb87f6b72013-02-23 09:12:23 +11001661 - (djm) [configure.ac includes.h loginrec.c mux.c sftp.c] Prefer
1662 bsd/libutil.h to libutil.h to avoid deprecation warnings on Ubuntu.
1663 ok tim
1664
Darren Tuckera423fef2013-02-25 10:32:27 +1100166520130222
Darren Tucker964de182013-02-22 10:39:59 +11001666 - (dtucker) [Makefile.in configure.ac] bz#2072: don't link krb5 libs to
Darren Tuckera2b5a4c2013-02-22 10:43:15 +11001667 ssh(1) since they're not needed. Patch from Pierre Ossman, ok djm.
1668 - (dtucker) [configure.ac] bz#2073: look for Solaris' differently-named
1669 libgss too. Patch from Pierre Ossman, ok djm.
Damien Miller91f40d82013-02-22 11:37:00 +11001670 - (djm) [configure.ac sandbox-seccomp-filter.c] Support for Linux
1671 seccomp-bpf sandbox on ARM. Patch from shawnlandden AT gmail.com;
1672 ok dtucker
Darren Tucker964de182013-02-22 10:39:59 +11001673
Tim Rice0ec74232013-02-20 21:37:55 -0800167420130221
1675 - (tim) [regress/forward-control.sh] shell portability fix.
1676
Tim Ricec08b3ef2013-02-19 11:53:29 -0800167720130220
1678 - (tim) [regress/cipher-speed.sh regress/try-ciphers.sh] shell portability fix.
Tim Ricec31db8c2013-02-19 19:01:51 -08001679 - (tim) [krl.c Makefile.in regress/Makefile regress/modpipe.c] remove unneeded
1680 err.h include from krl.c. Additional portability fixes for modpipe. OK djm
Damien Miller283e5752013-02-20 21:13:27 +11001681 - OpenBSD CVS Sync
1682 - djm@cvs.openbsd.org 2013/02/20 08:27:50
1683 [regress/integrity.sh regress/modpipe.c]
1684 Add an option to modpipe that warns if the modification offset it not
1685 reached in it's stream and turn it on for t-integrity. This should catch
1686 cases where the session is not fuzzed for being too short (cf. my last
1687 "oops" commit)
Damien Miller5acc6be2013-02-20 21:16:07 +11001688 - djm@cvs.openbsd.org 2013/02/20 08:29:27
1689 [regress/modpipe.c]
1690 s/Id/OpenBSD/ in RCS tag
Tim Ricec08b3ef2013-02-19 11:53:29 -08001691
Damien Miller0dc3bc92013-02-19 09:28:32 +1100169220130219
1693 - OpenBSD CVS Sync
1694 - djm@cvs.openbsd.org 2013/02/18 22:26:47
1695 [integrity.sh]
1696 crank the offset yet again; it was still fuzzing KEX one of Darren's
1697 portable test hosts at 2800
Damien Millerb3764e12013-02-19 13:15:01 +11001698 - djm@cvs.openbsd.org 2013/02/19 02:14:09
1699 [integrity.sh]
1700 oops, forgot to increase the output of the ssh command to ensure that
1701 we actually reach $offset
Damien Millerdae85cc2013-02-19 14:27:44 +11001702 - (djm) [regress/integrity.sh] Skip SHA2-based MACs on configurations that
1703 lack support for SHA2.
Tim Ricec31db8c2013-02-19 19:01:51 -08001704 - (djm) [regress/modpipe.c] Add local err, and errx functions for platforms
1705 that do not have them.
Damien Miller0dc3bc92013-02-19 09:28:32 +11001706
Damien Miller33d52562013-02-18 10:18:05 +1100170720130217
1708 - OpenBSD CVS Sync
1709 - djm@cvs.openbsd.org 2013/02/17 23:16:55
1710 [integrity.sh]
1711 make the ssh command generates some output to ensure that there are at
1712 least offset+tries bytes in the stream.
1713
Damien Miller5d7b9562013-02-16 17:32:31 +1100171420130216
1715 - OpenBSD CVS Sync
1716 - djm@cvs.openbsd.org 2013/02/16 06:08:45
1717 [integrity.sh]
1718 make sure the fuzz offset is actually past the end of KEX for all KEX
1719 types. diffie-hellman-group-exchange-sha256 requires an offset around
1720 2700. Noticed via test failures in portable OpenSSH on platforms that
1721 lack ECC and this the more byte-frugal ECDH KEX algorithms.
1722
Damien Miller91edc1c2013-02-15 10:23:44 +1100172320130215
1724 - (djm) [contrib/suse/rc.sshd] Use SSHD_BIN consistently; bz#2056 from
1725 Iain Morgan
Darren Tucker3c4a24c2013-02-15 11:41:35 +11001726 - (dtucker) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
1727 Use getpgrp() if we don't have getpgid() (old BSDs, maybe others).
Darren Tucker8e6fb782013-02-15 12:13:01 +11001728 - (dtucker) [configure.ac openbsd-compat/Makefile.in openbsd-compat/strtoull.c
1729 openbsd-compat/openbsd-compat.h] Add strtoull to compat library for
1730 platforms that don't have it.
Darren Tuckerf32db832013-02-15 12:20:41 +11001731 - (dtucker) [openbsd-compat/openbsd-compat.h] Add prototype for strtoul,
1732 group strto* function prototypes together.
Darren Tucker2991d282013-02-15 14:55:38 +11001733 - (dtucker) [openbsd-compat/bsd-misc.c] Handle the case where setpgrp() takes
1734 an argument. Pointed out by djm.
Damien Miller4018dc02013-02-15 10:28:55 +11001735 - (djm) OpenBSD CVS Sync
1736 - djm@cvs.openbsd.org 2013/02/14 21:35:59
1737 [auth2-pubkey.c]
1738 Correct error message that had a typo and was logging the wrong thing;
1739 patch from Petr Lautrbach
Damien Miller5ceddc32013-02-15 12:18:32 +11001740 - dtucker@cvs.openbsd.org 2013/02/15 00:21:01
1741 [sshconnect2.c]
1742 Warn more loudly if an IdentityFile provided by the user cannot be read.
1743 bz #1981, ok djm@
Damien Miller91edc1c2013-02-15 10:23:44 +11001744
Damien Miller2653f5c2013-02-14 10:14:51 +1100174520130214
1746 - (djm) [regress/krl.sh] Don't use ecdsa keys in environment that lack ECC.
Damien Miller6d77d6e2013-02-14 10:31:03 +11001747 - (djm) [regress/krl.sh] typo; found by Iain Morgan
Damien Miller57f92182013-02-14 10:32:33 +11001748 - (djm) [regress/integrity.sh] Start fuzzing from offset 2500 (instead
1749 of 2300) to avoid clobbering the end of (non-MAC'd) KEX. Verified by
1750 Iain Morgan
Damien Miller2653f5c2013-02-14 10:14:51 +11001751
Damien Millerea078462013-02-12 10:54:37 +1100175220130212
1753 - (djm) OpenBSD CVS Sync
1754 - djm@cvs.openbsd.org 2013/01/24 21:45:37
1755 [krl.c]
1756 fix handling of (unused) KRL signatures; skip string in correct buffer
Damien Miller6045f5d2013-02-12 10:54:54 +11001757 - djm@cvs.openbsd.org 2013/01/24 22:08:56
1758 [krl.c]
1759 skip serial lookup when cert's serial number is zero
Damien Miller377d9a42013-02-12 10:55:16 +11001760 - krw@cvs.openbsd.org 2013/01/25 05:00:27
1761 [krl.c]
1762 Revert last. Breaks due to likely typo. Let djm@ fix later.
1763 ok djm@ via dlg@
Damien Miller60565bc2013-02-12 10:56:42 +11001764 - djm@cvs.openbsd.org 2013/01/25 10:22:19
1765 [krl.c]
1766 redo last commit without the vi-vomit that snuck in:
1767 skip serial lookup when cert's serial number is zero
1768 (now with 100% better comment)
Damien Millerf0a8ded2013-02-12 11:00:34 +11001769 - djm@cvs.openbsd.org 2013/01/26 06:11:05
1770 [Makefile.in acss.c acss.h cipher-acss.c cipher.c]
1771 [openbsd-compat/openssl-compat.h]
1772 remove ACSS, now that it is gone from libcrypto too
Damien Miller0cd2f8e2013-02-12 11:01:39 +11001773 - djm@cvs.openbsd.org 2013/01/27 10:06:12
1774 [krl.c]
1775 actually use the xrealloc() return value; spotted by xi.wang AT gmail.com
Damien Miller1f583df2013-02-12 11:02:08 +11001776 - dtucker@cvs.openbsd.org 2013/02/06 00:20:42
1777 [servconf.c sshd_config sshd_config.5]
1778 Change default of MaxStartups to 10:30:100 to start doing random early
1779 drop at 10 connections up to 100 connections. This will make it harder
1780 to DoS as CPUs have come a long way since the original value was set
1781 back in 2000. Prompted by nion at debian org, ok markus@
Damien Miller18de9132013-02-12 11:02:27 +11001782 - dtucker@cvs.openbsd.org 2013/02/06 00:22:21
1783 [auth.c]
1784 Fix comment, from jfree.e1 at gmail
Damien Millerd6d9fa02013-02-12 11:02:46 +11001785 - djm@cvs.openbsd.org 2013/02/08 00:41:12
1786 [sftp.c]
1787 fix NULL deref when built without libedit and control characters
1788 entered as command; debugging and patch from Iain Morgan an
1789 Loganaden Velvindron in bz#1956
Damien Millerfd051542013-02-12 11:03:10 +11001790 - markus@cvs.openbsd.org 2013/02/10 21:19:34
1791 [version.h]
1792 openssh 6.2
Damien Miller78d22712013-02-12 11:03:36 +11001793 - djm@cvs.openbsd.org 2013/02/10 23:32:10
1794 [ssh-keygen.c]
1795 append to moduli file when screening candidates rather than overwriting.
1796 allows resumption of interrupted screen; patch from Christophe Garault
1797 in bz#1957; ok dtucker@
Damien Miller894926e2013-02-12 11:03:58 +11001798 - djm@cvs.openbsd.org 2013/02/10 23:35:24
1799 [packet.c]
1800 record "Received disconnect" messages at ERROR rather than INFO priority,
1801 since they are abnormal and result in a non-zero ssh exit status; patch
1802 from Iain Morgan in bz#2057; ok dtucker@
Damien Miller22e8a1e2013-02-12 11:04:48 +11001803 - dtucker@cvs.openbsd.org 2013/02/11 21:21:58
1804 [sshd.c]
1805 Add openssl version to debug output similar to the client. ok markus@
Damien Miller58e2c5b2013-02-12 11:16:57 +11001806 - djm@cvs.openbsd.org 2013/02/11 23:58:51
1807 [regress/try-ciphers.sh]
1808 remove acss here too
Damien Miller2f20de52013-02-12 11:31:38 +11001809 - (djm) [regress/try-ciphers.sh] clean up CVS merge botch
Damien Millerea078462013-02-12 10:54:37 +11001810
Damien Millerb6f73b32013-02-11 10:39:12 +1100181120130211
1812 - (djm) [configure.ac openbsd-compat/openssl-compat.h] Repair build on old
1813 libcrypto that lacks EVP_CIPHER_CTX_ctrl
1814
Damien Millere7f50e12013-02-08 10:49:37 +1100181520130208
1816 - (djm) [contrib/redhat/sshd.init] treat RETVAL as an integer;
1817 patch from Iain Morgan in bz#2059
Darren Tucker951b53b2013-02-08 11:50:09 +11001818 - (dtucker) [configure.ac openbsd-compat/sys-tree.h] Test if compiler allows
1819 __attribute__ on return values and work around if necessary. ok djm@
Damien Millere7f50e12013-02-08 10:49:37 +11001820
182120130207
Damien Miller5c3bbd72013-02-07 10:11:05 +11001822 - (djm) [configure.ac] Don't probe seccomp capability of running kernel
1823 at configure time; the seccomp sandbox will fall back to rlimit at
1824 runtime anyway. Patch from plautrba AT redhat.com in bz#2011
1825
Damien Millerda5cc5d2013-01-20 22:31:29 +1100182620130120
1827 - (djm) [cipher-aes.c cipher-ctr.c openbsd-compat/openssl-compat.h]
1828 Move prototypes for replacement ciphers to openssl-compat.h; fix EVP
1829 prototypes for openssl-1.0.0-fips.
Damien Millerac5542b2013-01-20 22:33:02 +11001830 - (djm) OpenBSD CVS Sync
1831 - jmc@cvs.openbsd.org 2013/01/18 07:57:47
1832 [ssh-keygen.1]
1833 tweak previous;
Damien Miller3d6d68b2013-01-20 22:33:23 +11001834 - jmc@cvs.openbsd.org 2013/01/18 07:59:46
1835 [ssh-keygen.c]
1836 -u before -V in usage();
Damien Miller72abeb72013-01-20 22:33:44 +11001837 - jmc@cvs.openbsd.org 2013/01/18 08:00:49
1838 [sshd_config.5]
1839 tweak previous;
Damien Miller072fdcd2013-01-20 22:34:04 +11001840 - jmc@cvs.openbsd.org 2013/01/18 08:39:04
1841 [ssh-keygen.1]
1842 add -Q to the options list; ok djm
Damien Miller881a7a22013-01-20 22:34:46 +11001843 - jmc@cvs.openbsd.org 2013/01/18 21:48:43
1844 [ssh-keygen.1]
1845 command-line (adj.) -> command line (n.);
Damien Millera0a7ee82013-01-20 22:35:06 +11001846 - jmc@cvs.openbsd.org 2013/01/19 07:13:25
1847 [ssh-keygen.1]
1848 fix some formatting; ok djm
Damien Millera7522d92013-01-20 22:35:31 +11001849 - markus@cvs.openbsd.org 2013/01/19 12:34:55
1850 [krl.c]
1851 RB_INSERT does not remove existing elments; ok djm@
Damien Millerd60b2102013-01-20 22:49:58 +11001852 - (djm) [openbsd-compat/sys-tree.h] Sync with OpenBSD. krl.c needs newer
1853 version.
Damien Millerdc75d1f2013-01-20 22:58:51 +11001854 - (djm) [regress/krl.sh] replacement for jot; most platforms lack it
Damien Millerda5cc5d2013-01-20 22:31:29 +11001855
Damien Millerf3747bf2013-01-18 11:44:04 +1100185620130118
1857 - (djm) OpenBSD CVS Sync
1858 - djm@cvs.openbsd.org 2013/01/17 23:00:01
1859 [auth.c key.c key.h ssh-keygen.1 ssh-keygen.c sshd_config.5]
1860 [krl.c krl.h PROTOCOL.krl]
1861 add support for Key Revocation Lists (KRLs). These are a compact way to
1862 represent lists of revoked keys and certificates, taking as little as
1863 a single bit of incremental cost to revoke a certificate by serial number.
1864 KRLs are loaded via the existing RevokedKeys sshd_config option.
1865 feedback and ok markus@
Damien Millerebafebd2013-01-18 11:51:56 +11001866 - djm@cvs.openbsd.org 2013/01/18 00:45:29
1867 [regress/Makefile regress/cert-userkey.sh regress/krl.sh]
1868 Tests for Key Revocation Lists (KRLs)
Damien Miller13f5f762013-01-18 15:32:03 +11001869 - djm@cvs.openbsd.org 2013/01/18 03:00:32
1870 [krl.c]
1871 fix KRL generation bug for list sections
Damien Millerf3747bf2013-01-18 11:44:04 +11001872
Damien Millerb26699b2013-01-17 14:31:57 +1100187320130117
1874 - (djm) [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh]
1875 check for GCM support before testing GCM ciphers.
1876
Damien Millerc20eb8b2013-01-12 22:41:26 +1100187720130112
1878 - (djm) OpenBSD CVS Sync
1879 - djm@cvs.openbsd.org 2013/01/12 11:22:04
1880 [cipher.c]
1881 improve error message for integrity failure in AES-GCM modes; ok markus@
Damien Miller846dc7f2013-01-12 22:46:26 +11001882 - djm@cvs.openbsd.org 2013/01/12 11:23:53
1883 [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh]
1884 test AES-GCM modes; feedback markus@
Damien Millerefa1c952013-01-12 23:10:47 +11001885 - (djm) [regress/integrity.sh] repair botched merge
Damien Millerc20eb8b2013-01-12 22:41:26 +11001886
Damien Miller4e14a582013-01-09 15:54:48 +1100188720130109
1888 - (djm) OpenBSD CVS Sync
1889 - dtucker@cvs.openbsd.org 2012/12/14 05:26:43
1890 [auth.c]
1891 use correct string in error message; from rustybsd at gmx.fr
Damien Miller73298f42013-01-09 15:55:50 +11001892 - djm@cvs.openbsd.org 2013/01/02 00:32:07
1893 [clientloop.c mux.c]
1894 channel_setup_local_fwd_listener() returns 0 on failure, not -ve
1895 bz#2055 reported by mathieu.lacage AT gmail.com
Damien Miller697485d2013-01-09 15:56:13 +11001896 - djm@cvs.openbsd.org 2013/01/02 00:33:49
1897 [PROTOCOL.agent]
1898 correct format description for SSH_AGENTC_ADD_RSA_ID_CONSTRAINED
1899 bz#2051 from david AT lechnology.com
Damien Miller44138442013-01-09 15:56:45 +11001900 - djm@cvs.openbsd.org 2013/01/03 05:49:36
1901 [servconf.h]
1902 add a couple of ServerOptions members that should be copied to the privsep
1903 child (for consistency, in this case they happen only to be accessed in
1904 the monitor); ok dtucker@
Damien Miller3739c8f2013-01-09 15:57:16 +11001905 - djm@cvs.openbsd.org 2013/01/03 12:49:01
1906 [PROTOCOL]
1907 fix description of MAC calculation for EtM modes; ok markus@
Damien Miller502ab0e2013-01-09 15:57:36 +11001908 - djm@cvs.openbsd.org 2013/01/03 12:54:49
1909 [sftp-server.8 sftp-server.c]
1910 allow specification of an alternate start directory for sftp-server(8)
1911 "I like this" markus@
Damien Millerec77c952013-01-09 15:58:00 +11001912 - djm@cvs.openbsd.org 2013/01/03 23:22:58
1913 [ssh-keygen.c]
1914 allow fingerprinting of keys hosted in PKCS#11 tokens: ssh-keygen -lD ...
1915 ok markus@
Damien Milleraa7ad302013-01-09 15:58:21 +11001916 - jmc@cvs.openbsd.org 2013/01/04 19:26:38
1917 [sftp-server.8 sftp-server.c]
1918 sftp-server.8: add argument name to -d
1919 sftp-server.c: add -d to usage()
1920 ok djm
Damien Miller1d75abf2013-01-09 16:12:19 +11001921 - markus@cvs.openbsd.org 2013/01/08 18:49:04
1922 [PROTOCOL authfile.c cipher.c cipher.h kex.c kex.h monitor_wrap.c]
1923 [myproposal.h packet.c ssh_config.5 sshd_config.5]
1924 support AES-GCM as defined in RFC 5647 (but with simpler KEX handling)
1925 ok and feedback djm@
Damien Miller1422c082013-01-09 16:44:54 +11001926 - djm@cvs.openbsd.org 2013/01/09 05:40:17
1927 [ssh-keygen.c]
1928 correctly initialise fingerprint type for fingerprinting PKCS#11 keys
Damien Millerd522c682013-01-09 16:42:47 +11001929 - (djm) [cipher.c configure.ac openbsd-compat/openssl-compat.h]
1930 Fix merge botch, automatically detect AES-GCM in OpenSSL, move a little
1931 cipher compat code to openssl-compat.h
Damien Miller4e14a582013-01-09 15:54:48 +11001932
Darren Tucker0fc77292012-12-17 15:59:42 +1100193320121217
1934 - (dtucker) [Makefile.in] Add some scaffolding so that the new regress
1935 tests will work with VPATH directories.
1936
Damien Miller8c05da32012-12-13 07:18:59 +1100193720121213
1938 - (djm) OpenBSD CVS Sync
1939 - markus@cvs.openbsd.org 2012/12/12 16:45:52
1940 [packet.c]
1941 reset incoming_packet buffer for each new packet in EtM-case, too;
1942 this happens if packets are parsed only parially (e.g. ignore
1943 messages sent when su/sudo turn off echo); noted by sthen/millert
Damien Miller25a02b02012-12-13 08:18:56 +11001944 - naddy@cvs.openbsd.org 2012/12/12 16:46:10
1945 [cipher.c]
1946 use OpenSSL's EVP_aes_{128,192,256}_ctr() API and remove our hand-rolled
1947 counter mode code; ok djm@
1948 - (djm) [configure.ac cipher-ctr.c] Adapt EVP AES CTR change to retain our
1949 compat code for older OpenSSL
Damien Miller13cbff12012-12-13 08:25:07 +11001950 - (djm) [cipher.c] Fix missing prototype for compat code
Damien Miller8c05da32012-12-13 07:18:59 +11001951
Damien Miller6a1937e2012-12-12 10:44:38 +1100195220121212
1953 - (djm) OpenBSD CVS Sync
1954 - markus@cvs.openbsd.org 2012/12/11 22:16:21
1955 [monitor.c]
1956 drain the log messages after receiving the keystate from the unpriv
1957 child. otherwise it might block while sending. ok djm@
Damien Milleraf43a7a2012-12-12 10:46:31 +11001958 - markus@cvs.openbsd.org 2012/12/11 22:31:18
1959 [PROTOCOL authfile.c cipher.c cipher.h kex.h mac.c myproposal.h]
1960 [packet.c ssh_config.5 sshd_config.5]
1961 add encrypt-then-mac (EtM) modes to openssh by defining new mac algorithms
1962 that change the packet format and compute the MAC over the encrypted
1963 message (including the packet size) instead of the plaintext data;
1964 these EtM modes are considered more secure and used by default.
1965 feedback and ok djm@
Damien Miller74f13bd2012-12-12 10:46:53 +11001966 - sthen@cvs.openbsd.org 2012/12/11 22:51:45
1967 [mac.c]
1968 fix typo, s/tem/etm in hmac-ripemd160-tem. ok markus@
Damien Miller1a45b632012-12-12 10:52:07 +11001969 - markus@cvs.openbsd.org 2012/12/11 22:32:56
1970 [regress/try-ciphers.sh]
1971 add etm modes
Damien Miller1fb593a2012-12-12 10:54:37 +11001972 - markus@cvs.openbsd.org 2012/12/11 22:42:11
1973 [regress/Makefile regress/modpipe.c regress/integrity.sh]
1974 test the integrity of the packets; with djm@
Damien Millerec7ce9a2012-12-12 10:55:32 +11001975 - markus@cvs.openbsd.org 2012/12/11 23:12:13
1976 [try-ciphers.sh]
1977 add hmac-ripemd160-etm@openssh.com
Damien Miller37834af2012-12-12 11:00:37 +11001978 - (djm) [mac.c] fix merge botch
Damien Miller37461d72012-12-12 12:37:32 +11001979 - (djm) [regress/Makefile regress/integrity.sh] Make the integrity.sh test
1980 work on platforms without 'jot'
1981 - (djm) [regress/integrity.sh] Fix awk quoting, packet length skip
Damien Millerfaabeb62012-12-12 12:51:54 +11001982 - (djm) [regress/Makefile] fix t-exec rule
Damien Miller6a1937e2012-12-12 10:44:38 +11001983
Darren Tucker3dfb8772012-12-07 13:03:10 +1100198420121207
1985 - (dtucker) OpenBSD CVS Sync
1986 - dtucker@cvs.openbsd.org 2012/12/06 06:06:54
1987 [regress/keys-command.sh]
1988 Fix some problems with the keys-command test:
1989 - use string comparison rather than numeric comparison
1990 - check for existing KEY_COMMAND file and don't clobber if it exists
1991 - clean up KEY_COMMAND file if we do create it.
1992 - check that KEY_COMMAND is executable (which it won't be if eg /var/run
1993 is mounted noexec).
1994 ok djm.
Darren Tuckerf9333d52012-12-07 13:06:13 +11001995 - jmc@cvs.openbsd.org 2012/12/03 08:33:03
1996 [ssh-add.1 sshd_config.5]
1997 tweak previous;
Darren Tucker8a965222012-12-07 13:07:02 +11001998 - markus@cvs.openbsd.org 2012/12/05 15:42:52
1999 [ssh-add.c]
2000 prevent double-free of comment; ok djm@
Darren Tucker3e1027c2012-12-07 13:07:46 +11002001 - dtucker@cvs.openbsd.org 2012/12/07 01:51:35
2002 [serverloop.c]
2003 Cast signal to int for logging. A no-op on openbsd (they're always ints)
2004 but will prevent warnings in portable. ok djm@
Darren Tucker3dfb8772012-12-07 13:03:10 +11002005
Tim Rice96ce9a12012-12-04 07:50:03 -0800200620121205
2007 - (tim) [defines.h] Some platforms are missing ULLONG_MAX. Feedback djm@.
2008
Damien Millercf6ef132012-12-03 09:37:56 +1100200920121203
2010 - (djm) [openbsd-compat/sys-queue.h] Sync with OpenBSD to get
2011 TAILQ_FOREACH_SAFE needed for upcoming changes.
Damien Millercb6b68b2012-12-03 09:49:52 +11002012 - (djm) OpenBSD CVS Sync
2013 - djm@cvs.openbsd.org 2012/12/02 20:26:11
2014 [ssh_config.5 sshconnect2.c]
2015 Make IdentitiesOnly apply to keys obtained from a PKCS11Provider.
2016 This allows control of which keys are offered from tokens using
2017 IdentityFile. ok markus@
Damien Miller33a81362012-12-03 09:50:24 +11002018 - djm@cvs.openbsd.org 2012/12/02 20:42:15
2019 [ssh-add.1 ssh-add.c]
2020 make deleting explicit keys "ssh-add -d" symmetric with adding keys -
2021 try to delete the corresponding certificate too and respect the -k option
2022 to allow deleting of the key only; feedback and ok markus@
Damien Milleraa5b3f82012-12-03 09:50:54 +11002023 - djm@cvs.openbsd.org 2012/12/02 20:46:11
2024 [auth-options.c channels.c servconf.c servconf.h serverloop.c session.c]
2025 [sshd_config.5]
2026 make AllowTcpForwarding accept "local" and "remote" in addition to its
2027 current "yes"/"no" to allow the server to specify whether just local or
2028 remote TCP forwarding is enabled. ok markus@
Damien Millerfa51d8b2012-12-03 10:08:25 +11002029 - dtucker@cvs.openbsd.org 2012/10/05 02:20:48
2030 [regress/cipher-speed.sh regress/try-ciphers.sh]
2031 Add umac-128@openssh.com to the list of MACs to be tested
Damien Miller6618e922012-12-03 10:09:04 +11002032 - djm@cvs.openbsd.org 2012/10/19 05:10:42
2033 [regress/cert-userkey.sh]
2034 include a serial number when generating certs
Damien Miller771c43c2012-12-03 10:12:13 +11002035 - djm@cvs.openbsd.org 2012/11/22 22:49:30
2036 [regress/Makefile regress/keys-command.sh]
2037 regress for AuthorizedKeysCommand; hints from markus@
Damien Miller999bd2d2012-12-03 10:13:39 +11002038 - djm@cvs.openbsd.org 2012/12/02 20:47:48
2039 [Makefile regress/forward-control.sh]
2040 regress for AllowTcpForwarding local/remote; ok markus@
Damien Miller55aca022012-12-03 11:25:30 +11002041 - djm@cvs.openbsd.org 2012/12/03 00:14:06
2042 [auth2-chall.c ssh-keygen.c]
2043 Fix compilation with -Wall -Werror (trivial type fixes)
Damien Miller03af12e2012-12-03 11:55:53 +11002044 - (djm) [configure.ac] Turn on -g for gcc compilers. Helps pre-installation
2045 debugging. ok dtucker@
Damien Miller8b489822012-12-03 12:35:55 +11002046 - (djm) [configure.ac] Revert previous. configure.ac already does this
2047 for us.
Damien Millercf6ef132012-12-03 09:37:56 +11002048
Damien Miller1e854692012-11-14 19:04:02 +1100204920121114
2050 - (djm) OpenBSD CVS Sync
2051 - djm@cvs.openbsd.org 2012/11/14 02:24:27
2052 [auth2-pubkey.c]
2053 fix username passed to helper program
2054 prepare stdio fds before closefrom()
2055 spotted by landry@
Damien Miller6f3b3622012-11-14 19:04:33 +11002056 - djm@cvs.openbsd.org 2012/11/14 02:32:15
2057 [ssh-keygen.c]
2058 allow the full range of unsigned serial numbers; 'fine' deraadt@
Damien Miller15b05cf2012-12-03 09:53:20 +11002059 - djm@cvs.openbsd.org 2012/12/02 20:34:10
2060 [auth.c auth.h auth1.c auth2-chall.c auth2-gss.c auth2-jpake.c auth2.c]
2061 [monitor.c monitor.h]
2062 Fixes logging of partial authentication when privsep is enabled
2063 Previously, we recorded "Failed xxx" since we reset authenticated before
2064 calling auth_log() in auth2.c. This adds an explcit "Partial" state.
2065
2066 Add a "submethod" to auth_log() to report which submethod is used
2067 for keyboard-interactive.
2068
2069 Fix multiple authentication when one of the methods is
2070 keyboard-interactive.
2071
2072 ok markus@
Damien Millerd27a0262012-12-03 10:06:37 +11002073 - dtucker@cvs.openbsd.org 2012/10/05 02:05:30
2074 [regress/multiplex.sh]
2075 Use 'kill -0' to test for the presence of a pid since it's more portable
Damien Miller1e854692012-11-14 19:04:02 +11002076
Damien Millerd5c3d4c2012-11-07 08:35:38 +1100207720121107
2078 - (djm) OpenBSD CVS Sync
2079 - eric@cvs.openbsd.org 2011/11/28 08:46:27
2080 [moduli.5]
2081 fix formula
2082 ok djm@
Damien Miller0120c412012-11-07 08:36:00 +11002083 - jmc@cvs.openbsd.org 2012/09/26 17:34:38
2084 [moduli.5]
2085 last stage of rfc changes, using consistent Rs/Re blocks, and moving the
2086 references into a STANDARDS section;
Damien Millerd5c3d4c2012-11-07 08:35:38 +11002087
Darren Tuckerf96ff182012-11-05 17:04:37 +1100208820121105
2089 - (dtucker) [uidswap.c openbsd-compat/Makefile.in
2090 openbsd-compat/bsd-setres_id.c openbsd-compat/bsd-setres_id.h
2091 openbsd-compat/openbsd-compat.h] Move the fallback code for setting uids
2092 and gids from uidswap.c to the compat library, which allows it to work with
2093 the new setresuid calls in auth2-pubkey. with tim@, ok djm@
Darren Tucker737f7af2012-11-05 17:07:43 +11002094 - (dtucker) [auth2-pubkey.c] wrap paths.h in an ifdef for platforms that
2095 don't have it. Spotted by tim@.
Darren Tuckerf96ff182012-11-05 17:04:37 +11002096
Damien Millerf33580e2012-11-04 22:22:52 +1100209720121104
2098 - (djm) OpenBSD CVS Sync
2099 - jmc@cvs.openbsd.org 2012/10/31 08:04:50
2100 [sshd_config.5]
2101 tweak previous;
Damien Millerd0d10992012-11-04 22:23:14 +11002102 - djm@cvs.openbsd.org 2012/11/04 10:38:43
2103 [auth2-pubkey.c sshd.c sshd_config.5]
2104 Remove default of AuthorizedCommandUser. Administrators are now expected
2105 to explicitly specify a user. feedback and ok markus@
Damien Millera6e3f012012-11-04 23:21:40 +11002106 - djm@cvs.openbsd.org 2012/11/04 11:09:15
2107 [auth.h auth1.c auth2.c monitor.c servconf.c servconf.h sshd.c]
2108 [sshd_config.5]
2109 Support multiple required authentication via an AuthenticationMethods
2110 option. This option lists one or more comma-separated lists of
2111 authentication method names. Successful completion of all the methods in
2112 any list is required for authentication to complete;
2113 feedback and ok markus@
Damien Millerf33580e2012-11-04 22:22:52 +11002114
Damien Miller07daed52012-10-31 08:57:55 +1100211520121030
2116 - (djm) OpenBSD CVS Sync
2117 - markus@cvs.openbsd.org 2012/10/05 12:34:39
2118 [sftp.c]
2119 fix signed vs unsigned warning; feedback & ok: djm@
Damien Miller09d3e122012-10-31 08:58:58 +11002120 - djm@cvs.openbsd.org 2012/10/30 21:29:55
2121 [auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h]
2122 [sshd.c sshd_config sshd_config.5]
2123 new sshd_config option AuthorizedKeysCommand to support fetching
2124 authorized_keys from a command in addition to (or instead of) from
2125 the filesystem. The command is run as the target server user unless
2126 another specified via a new AuthorizedKeysCommandUser option.
2127
2128 patch originally by jchadima AT redhat.com, reworked by me; feedback
2129 and ok markus@
Damien Miller07daed52012-10-31 08:57:55 +11002130
Tim Ricec0e5cbe2012-10-18 21:38:58 -0700213120121019
2132 - (tim) [buildpkg.sh.in] Double up on some backslashes so they end up in
2133 the generated file as intended.
2134
Darren Tucker0af24052012-10-05 10:41:25 +1000213520121005
2136 - (dtucker) OpenBSD CVS Sync
2137 - djm@cvs.openbsd.org 2012/09/17 09:54:44
2138 [sftp.c]
2139 an XXX for later
Darren Tucker302889a2012-10-05 10:42:53 +10002140 - markus@cvs.openbsd.org 2012/09/17 13:04:11
2141 [packet.c]
2142 clear old keys on rekeing; ok djm
Darren Tucker063018d2012-10-05 10:43:58 +10002143 - dtucker@cvs.openbsd.org 2012/09/18 10:36:12
2144 [sftp.c]
2145 Add bounds check on sftp tab-completion. Part of a patch from from
2146 Jean-Marc Robert via tech@, ok djm
Darren Tucker191fcc62012-10-05 10:45:01 +10002147 - dtucker@cvs.openbsd.org 2012/09/21 10:53:07
2148 [sftp.c]
2149 Fix improper handling of absolute paths when PWD is part of the completed
2150 path. Patch from Jean-Marc Robert via tech@, ok djm.
Darren Tucker17146d32012-10-05 10:46:16 +10002151 - dtucker@cvs.openbsd.org 2012/09/21 10:55:04
2152 [sftp.c]
2153 Fix handling of filenames containing escaped globbing characters and
2154 escape "#" and "*". Patch from Jean-Marc Robert via tech@, ok djm.
Darren Tucker628a3fd2012-10-05 10:50:15 +10002155 - jmc@cvs.openbsd.org 2012/09/26 16:12:13
2156 [ssh.1]
2157 last stage of rfc changes, using consistent Rs/Re blocks, and moving the
2158 references into a STANDARDS section;
Darren Tucker3a7c0412012-10-05 10:51:59 +10002159 - naddy@cvs.openbsd.org 2012/10/01 13:59:51
2160 [monitor_wrap.c]
2161 pasto; ok djm@
Darren Tucker0dc283b2012-10-05 10:52:51 +10002162 - djm@cvs.openbsd.org 2012/10/02 07:07:45
2163 [ssh-keygen.c]
2164 fix -z option, broken in revision 1.215
Darren Tucker427e4092012-10-05 11:02:39 +10002165 - markus@cvs.openbsd.org 2012/10/04 13:21:50
2166 [myproposal.h ssh_config.5 umac.h sshd_config.5 ssh.1 sshd.8 mac.c]
2167 add umac128 variant; ok djm@ at n2k12
Darren Tucker189e5ba2012-10-05 11:41:52 +10002168 - dtucker@cvs.openbsd.org 2012/09/06 04:11:07
2169 [regress/try-ciphers.sh]
2170 Restore missing space. (Id sync only).
Darren Tucker6fc5aa82012-10-05 11:43:57 +10002171 - dtucker@cvs.openbsd.org 2012/09/09 11:51:25
2172 [regress/multiplex.sh]
2173 Add test for ssh -Ostop
Darren Tucker9b2c0362012-10-05 11:45:39 +10002174 - dtucker@cvs.openbsd.org 2012/09/10 00:49:21
2175 [regress/multiplex.sh]
2176 Log -O cmd output to the log file and make logging consistent with the
2177 other tests. Test clean shutdown of an existing channel when testing
2178 "stop".
Darren Tuckeree4ad772012-10-05 12:04:10 +10002179 - dtucker@cvs.openbsd.org 2012/09/10 01:51:19
2180 [regress/multiplex.sh]
2181 use -Ocheck and waiting for completions by PID to make multiplexing test
2182 less racy and (hopefully) more reliable on slow hardware.
Darren Tucker992faad2012-10-05 11:38:24 +10002183 - [Makefile umac.c] Add special-case target to build umac128.o.
Darren Tucker50ce4472012-10-05 12:11:33 +10002184 - [umac.c] Enforce allowed umac output sizes. From djm@.
Darren Tuckercc8e9ff2012-10-05 15:41:06 +10002185 - [Makefile.in] "Using $< in a non-suffix rule context is a GNUmake idiom".
Darren Tucker0af24052012-10-05 10:41:25 +10002186
Darren Tuckerbb6cc072012-09-17 13:25:06 +1000218720120917
2188 - (dtucker) OpenBSD CVS Sync
2189 - dtucker@cvs.openbsd.org 2012/09/13 23:37:36
2190 [servconf.c]
2191 Fix comment line length
Darren Tucker26b9e3b2012-09-17 13:25:44 +10002192 - markus@cvs.openbsd.org 2012/09/14 16:51:34
2193 [sshconnect.c]
2194 remove unused variable
Darren Tuckerbb6cc072012-09-17 13:25:06 +10002195
Darren Tucker92a39cf2012-09-07 11:20:20 +1000219620120907
2197 - (dtucker) OpenBSD CVS Sync
2198 - dtucker@cvs.openbsd.org 2012/09/06 09:50:13
2199 [clientloop.c]
2200 Make the escape command help (~?) context sensitive so that only commands
2201 that will work in the current session are shown. ok markus@
Darren Tucker83d0af62012-09-07 11:21:03 +10002202 - jmc@cvs.openbsd.org 2012/09/06 13:57:42
2203 [ssh.1]
2204 missing letter in previous;
Darren Tuckerf111d402012-09-07 11:21:42 +10002205 - dtucker@cvs.openbsd.org 2012/09/07 00:30:19
2206 [clientloop.c]
2207 Print '^Z' instead of a raw ^Z when the sequence is not supported. ok djm@
Darren Tuckerca0d0fd2012-09-07 11:22:24 +10002208 - dtucker@cvs.openbsd.org 2012/09/07 01:10:21
2209 [clientloop.c]
2210 Merge escape help text for ~v and ~V; ok djm@
Darren Tucker48bf4b02012-09-07 16:38:53 +10002211 - dtucker@cvs.openbsd.org 2012/09/07 06:34:21
2212 [clientloop.c]
2213 when muxmaster is run with -N, make it shut down gracefully when a client
2214 sends it "-O stop" rather than hanging around (bz#1985). ok djm@
Darren Tucker92a39cf2012-09-07 11:20:20 +10002215
Darren Tucker3ee50c52012-09-06 21:18:11 +1000221620120906
2217 - (dtucker) OpenBSD CVS Sync
2218 - jmc@cvs.openbsd.org 2012/08/15 18:25:50
2219 [ssh-keygen.1]
2220 a little more info on certificate validity;
2221 requested by Ross L Richardson, and provided by djm
Darren Tucker66cb0e02012-09-06 21:19:05 +10002222 - dtucker@cvs.openbsd.org 2012/08/17 00:45:45
2223 [clientloop.c clientloop.h mux.c]
2224 Force a clean shutdown of ControlMaster client sessions when the ~. escape
2225 sequence is used. This means that ~. should now work in mux clients even
2226 if the server is no longer responding. Found by tedu, ok djm.
Darren Tuckerae608bd2012-09-06 21:19:51 +10002227 - djm@cvs.openbsd.org 2012/08/17 01:22:56
2228 [kex.c]
2229 add some comments about better handling first-KEX-follows notifications
2230 from the server. Nothing uses these right now. No binary change
Darren Tuckerf09a8a62012-09-06 21:20:39 +10002231 - djm@cvs.openbsd.org 2012/08/17 01:25:58
2232 [ssh-keygen.c]
2233 print details of which host lines were deleted when using
2234 "ssh-keygen -R host"; ok markus@
Darren Tucker00c15182012-09-06 21:21:56 +10002235 - djm@cvs.openbsd.org 2012/08/17 01:30:00
2236 [compat.c sshconnect.c]
2237 Send client banner immediately, rather than waiting for the server to
2238 move first for SSH protocol 2 connections (the default). Patch based on
2239 one in bz#1999 by tls AT panix.com, feedback dtucker@ ok markus@
Darren Tucker50a48d02012-09-06 21:25:37 +10002240 - dtucker@cvs.openbsd.org 2012/09/06 04:37:39
2241 [clientloop.c log.c ssh.1 log.h]
2242 Add ~v and ~V escape sequences to raise and lower the logging level
2243 respectively. Man page help from jmc, ok deraadt jmc
Darren Tucker3ee50c52012-09-06 21:18:11 +10002244
Darren Tucker23e4b802012-08-30 10:42:47 +1000224520120830
2246 - (dtucker) [moduli] Import new moduli file.
2247
Darren Tucker31854182012-08-28 19:57:19 +1000224820120828
Damien Miller4eb0a532012-08-29 10:26:20 +10002249 - (djm) Release openssh-6.1
2250
225120120828
Darren Tucker31854182012-08-28 19:57:19 +10002252 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] define WIN32_LEAN_AND_MEAN
2253 for compatibility with future mingw-w64 headers. Patch from vinschen at
2254 redhat com.
2255
Damien Miller39a9d2c2012-08-22 21:57:13 +1000225620120822
2257 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2258 [contrib/suse/openssh.spec] Update version numbers
2259
Damien Miller709a1e92012-07-31 12:20:43 +1000226020120731
2261 - (djm) OpenBSD CVS Sync
2262 - jmc@cvs.openbsd.org 2012/07/06 06:38:03
2263 [ssh-keygen.c]
2264 missing full stop in usage();
Damien Miller5a5c2b92012-07-31 12:21:34 +10002265 - djm@cvs.openbsd.org 2012/07/10 02:19:15
2266 [servconf.c servconf.h sshd.c sshd_config]
2267 Turn on systrace sandboxing of pre-auth sshd by default for new installs
2268 by shipping a config that overrides the current UsePrivilegeSeparation=yes
2269 default. Make it easier to flip the default in the future by adding too.
Damien Miller1cce1032012-07-31 12:22:18 +10002270 prodded markus@ feedback dtucker@ "get it in" deraadt@
Damien Miller46cb75a2012-07-31 12:22:37 +10002271 - dtucker@cvs.openbsd.org 2012/07/13 01:35:21
2272 [servconf.c]
2273 handle long comments in config files better. bz#2025, ok markus
Damien Miller38fe6622012-07-31 12:23:16 +10002274 - markus@cvs.openbsd.org 2012/07/22 18:19:21
2275 [version.h]
2276 openssh 6.1
Damien Miller709a1e92012-07-31 12:20:43 +10002277
Darren Tuckerd809a4b2012-07-20 10:42:06 +1000227820120720
2279 - (dtucker) Import regened moduli file.
2280
Damien Millera0433a72012-07-06 10:27:10 +1000228120120706
2282 - (djm) [sandbox-seccomp-filter.c] fallback to rlimit if seccomp filter is
2283 not available. Allows use of sshd compiled on host with a filter-capable
2284 kernel on hosts that lack the support. bz#2011 ok dtucker@
Damien Miller77eab7b2012-07-06 11:49:28 +10002285 - (djm) [configure.ac] Recursively expand $(bindir) to ensure it has no
2286 unexpanded $(prefix) embedded. bz#2007 patch from nix-corp AT
2287 esperi.org.uk; ok dtucker@
Damien Millerdfceafe2012-07-06 13:44:19 +10002288- (djm) OpenBSD CVS Sync
2289 - dtucker@cvs.openbsd.org 2012/07/06 00:41:59
2290 [moduli.c ssh-keygen.1 ssh-keygen.c]
2291 Add options to specify starting line number and number of lines to process
2292 when screening moduli candidates. This allows processing of different
2293 parts of a candidate moduli file in parallel. man page help jmc@, ok djm@
Damien Millerab523b02012-07-06 13:44:43 +10002294 - djm@cvs.openbsd.org 2012/07/06 01:37:21
2295 [mux.c]
2296 fix memory leak of passed-in environment variables and connection
2297 context when new session message is malformed; bz#2003 from Bert.Wesarg
2298 AT googlemail.com
Damien Millerfff9f092012-07-06 13:45:01 +10002299 - djm@cvs.openbsd.org 2012/07/06 01:47:38
2300 [ssh.c]
2301 move setting of tty_flag to after config parsing so RequestTTY options
2302 are correctly picked up. bz#1995 patch from przemoc AT gmail.com;
2303 ok dtucker@
Damien Millera0433a72012-07-06 10:27:10 +10002304
Darren Tucker34f702a2012-07-04 08:50:09 +1000230520120704
2306 - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] Add setlinebuf for
2307 platforms that don't have it. "looks good" tim@
2308
Darren Tucker60395f92012-07-03 14:31:18 +1000230920120703
2310 - (dtucker) [configure.ac] Detect platforms that can't use select(2) with
2311 setrlimit(RLIMIT_NOFILE, rl_zero) and disable the rlimit sandbox on those.
Darren Tuckerd545a4b2012-07-03 22:48:31 +10002312 - (dtucker) [configure.ac sandbox-rlimit.c] Test whether or not
2313 setrlimit(RLIMIT_FSIZE, rl_zero) and skip it if it's not supported. Its
2314 benefit is minor, so it's not worth disabling the sandbox if it doesn't
2315 work.
Darren Tucker60395f92012-07-03 14:31:18 +10002316
Darren Tuckerecbf14a2012-07-02 18:53:37 +1000231720120702
2318- (dtucker) OpenBSD CVS Sync
2319 - naddy@cvs.openbsd.org 2012/06/29 13:57:25
2320 [ssh_config.5 sshd_config.5]
2321 match the documented MAC order of preference to the actual one;
2322 ok dtucker@
Darren Tucker3b4b2d32012-07-02 18:54:31 +10002323 - markus@cvs.openbsd.org 2012/06/30 14:35:09
2324 [sandbox-systrace.c sshd.c]
2325 fix a during the load of the sandbox policies (child can still make
2326 the read-syscall and wait forever for systrace-answers) by replacing
2327 the read/write synchronisation with SIGSTOP/SIGCONT;
2328 report and help hshoexer@; ok djm@, dtucker@
Darren Tucker7b305012012-07-02 18:55:09 +10002329 - dtucker@cvs.openbsd.org 2012/07/02 08:50:03
2330 [ssh.c]
2331 set interactive ToS for forwarded X11 sessions. ok djm@
Darren Tucker4908d442012-07-02 22:15:38 +10002332 - dtucker@cvs.openbsd.org 2012/07/02 12:13:26
2333 [ssh-pkcs11-helper.c sftp-client.c]
2334 fix a couple of "assigned but not used" warnings. ok markus@
Darren Tucker369ceed2012-07-03 00:53:18 +10002335 - dtucker@cvs.openbsd.org 2012/07/02 14:37:06
2336 [regress/connect-privsep.sh]
2337 remove exit from end of test since it prevents reporting failure
Darren Tuckerec1e15d2012-07-03 01:06:49 +10002338 - (dtucker) [regress/reexec.sh regress/sftp-cmds.sh regress/test-exec.sh]
2339 Move cygwin detection to test-exec and use to skip reexec test on cygwin.
Darren Tucker6ea5dc62012-07-03 01:11:28 +10002340 - (dtucker) [regress/test-exec.sh] Correct uname for cygwin/w2k.
Darren Tuckerecbf14a2012-07-02 18:53:37 +10002341
Damien Miller97f43bb2012-06-30 08:32:29 +1000234220120629
2343 - OpenBSD CVS Sync
2344 - dtucker@cvs.openbsd.org 2012/06/21 00:16:07
2345 [addrmatch.c]
2346 fix strlcpy truncation check. from carsten at debian org, ok markus
Damien Miller5f58a872012-06-30 08:33:17 +10002347 - dtucker@cvs.openbsd.org 2012/06/22 12:30:26
2348 [monitor.c sshconnect2.c]
2349 remove dead code following 'for (;;)' loops.
2350 From Steve.McClellan at radisys com, ok markus@
Damien Millerea858292012-06-30 08:33:32 +10002351 - dtucker@cvs.openbsd.org 2012/06/22 14:36:33
2352 [sftp.c]
2353 Remove unused variable leftover from tab-completion changes.
2354 From Steve.McClellan at radisys com, ok markus@
Damien Miller560de922012-06-30 08:33:53 +10002355 - dtucker@cvs.openbsd.org 2012/06/26 11:02:30
2356 [sandbox-systrace.c]
2357 Add mquery to the list of allowed syscalls for "UsePrivilegeSeparation
2358 sandbox" since malloc now uses it. From johnw.mail at gmail com.
Damien Millerdb4f8e82012-06-30 08:34:59 +10002359 - dtucker@cvs.openbsd.org 2012/06/28 05:07:45
2360 [mac.c myproposal.h ssh_config.5 sshd_config.5]
2361 Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed
2362 from draft6 of the spec and will not be in the RFC when published. Patch
2363 from mdb at juniper net via bz#2023, ok markus.
Damien Milleree3c1962012-06-30 08:35:59 +10002364 - naddy@cvs.openbsd.org 2012/06/29 13:57:25
2365 [ssh_config.5 sshd_config.5]
2366 match the documented MAC order of preference to the actual one; ok dtucker@
Darren Tucker30139032012-06-30 15:01:22 +10002367 - dtucker@cvs.openbsd.org 2012/05/13 01:42:32
2368 [regress/addrmatch.sh]
2369 Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests
2370 to match. Feedback and ok djm@ markus@.
Darren Tucker4430a862012-06-30 15:03:28 +10002371 - djm@cvs.openbsd.org 2012/06/01 00:47:35
Darren Tucker2920bc12012-06-30 15:06:28 +10002372 [regress/multiplex.sh regress/forwarding.sh]
Darren Tucker4430a862012-06-30 15:03:28 +10002373 append to rather than truncate test log; bz#2013 from openssh AT
2374 roumenpetrov.info
Darren Tuckerff32d7c2012-06-30 15:04:13 +10002375 - djm@cvs.openbsd.org 2012/06/01 00:52:52
Darren Tucker2920bc12012-06-30 15:06:28 +10002376 [regress/sftp-cmds.sh]
Darren Tuckerff32d7c2012-06-30 15:04:13 +10002377 don't delete .* on cleanup due to unintended env expansion; pointed out in
2378 bz#2014 by openssh AT roumenpetrov.info
Darren Tucker2920bc12012-06-30 15:06:28 +10002379 - dtucker@cvs.openbsd.org 2012/06/26 12:06:59
2380 [regress/connect-privsep.sh]
2381 test sandbox with every malloc option
Darren Tuckera08c2072012-06-30 15:08:53 +10002382 - dtucker@cvs.openbsd.org 2012/06/28 05:07:45
2383 [regress/try-ciphers.sh regress/cipher-speed.sh]
2384 Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed
2385 from draft6 of the spec and will not be in the RFC when published. Patch
2386 from mdb at juniper net via bz#2023, ok markus.
Darren Tucker3886f952012-06-30 19:47:01 +10002387 - (dtucker) [myproposal.h] Remove trailing backslash to fix compile error.
Darren Tucker14a9d252012-06-30 20:05:02 +10002388 - (dtucker) [key.c] ifdef out sha256 key types on platforms that don't have
2389 the required functions in libcrypto.
Damien Miller97f43bb2012-06-30 08:32:29 +10002390
Darren Tucker8908da72012-06-28 15:21:32 +1000239120120628
2392 - (dtucker) [openbsd-compat/getrrsetbyname-ldns.c] bz #2022: prevent null
2393 pointer deref in the client when built with LDNS and using DNSSEC with a
2394 CNAME. Patch from gregdlg+mr at hochet info.
2395
Darren Tucker62dcd632012-06-22 22:02:42 +1000239620120622
2397 - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as
2398 can logon as a service. Patch from vinschen at redhat com.
2399
Damien Millerefc6fc92012-06-20 21:44:56 +1000240020120620
2401 - (djm) OpenBSD CVS Sync
2402 - djm@cvs.openbsd.org 2011/12/02 00:41:56
2403 [mux.c]
2404 fix bz#1948: ssh -f doesn't fork for multiplexed connection.
2405 ok dtucker@
Damien Miller140df632012-06-20 21:46:57 +10002406 - djm@cvs.openbsd.org 2011/12/04 23:16:12
2407 [mux.c]
2408 revert:
2409 > revision 1.32
2410 > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1
2411 > fix bz#1948: ssh -f doesn't fork for multiplexed connection.
2412 > ok dtucker@
2413 it interacts badly with ControlPersist
Damien Millerac58ce82012-06-20 21:50:47 +10002414 - djm@cvs.openbsd.org 2012/01/07 21:11:36
2415 [mux.c]
2416 fix double-free in new session handler
2417 NB. Id sync only
Damien Miller3bde12a2012-06-20 21:51:11 +10002418 - djm@cvs.openbsd.org 2012/05/23 03:28:28
2419 [dns.c dns.h key.c key.h ssh-keygen.c]
2420 add support for RFC6594 SSHFP DNS records for ECDSA key types.
2421 patch from bugzilla-m67 AT nulld.me in bz#1978; ok + tweak markus@
Darren Tucker86dc9b42012-09-07 18:08:23 +10002422 (Original authors Ondřej Surý, Ondřej Caletka and Daniel Black)
Damien Miller7f121572012-06-20 21:51:29 +10002423 - djm@cvs.openbsd.org 2012/06/01 00:49:35
2424 [PROTOCOL.mux]
2425 correct types of port numbers (integers, not strings); bz#2004 from
2426 bert.wesarg AT googlemail.com
Damien Miller2e7decf2012-06-20 21:52:00 +10002427 - djm@cvs.openbsd.org 2012/06/01 01:01:22
2428 [mux.c]
2429 fix memory leak when mux socket creation fails; bz#2002 from bert.wesarg
2430 AT googlemail.com
Damien Miller276dcfd2012-06-20 21:52:18 +10002431 - dtucker@cvs.openbsd.org 2012/06/18 11:43:53
2432 [jpake.c]
2433 correct sizeof usage. patch from saw at online.de, ok deraadt
Damien Miller71924332012-06-20 21:52:38 +10002434 - dtucker@cvs.openbsd.org 2012/06/18 11:49:58
2435 [ssh_config.5]
2436 RSA instead of DSA twice. From Steve.McClellan at radisys com
Damien Millerb9902cf2012-06-20 21:52:58 +10002437 - dtucker@cvs.openbsd.org 2012/06/18 12:07:07
2438 [ssh.1 sshd.8]
2439 Remove mention of 'three' key files since there are now four. From
2440 Steve.McClellan at radisys com.
Damien Miller36378c62012-06-20 21:53:25 +10002441 - dtucker@cvs.openbsd.org 2012/06/18 12:17:18
2442 [ssh.1]
2443 Clarify description of -W. Noted by Steve.McClellan at radisys com,
2444 ok jmc
Damien Millerc24da772012-06-20 21:53:58 +10002445 - markus@cvs.openbsd.org 2012/06/19 18:25:28
2446 [servconf.c servconf.h sshd_config.5]
2447 sshd_config: extend Match to allow AcceptEnv and {Allow,Deny}{Users,Groups}
2448 this allows 'Match LocalPort 1022' combined with 'AllowUser bauer'
2449 ok djm@ (back in March)
Damien Millerf8268502012-06-20 21:54:15 +10002450 - jmc@cvs.openbsd.org 2012/06/19 21:35:54
2451 [sshd_config.5]
2452 tweak previous; ok markus
Damien Miller6c6da332012-06-20 22:31:26 +10002453 - djm@cvs.openbsd.org 2012/06/20 04:42:58
2454 [clientloop.c serverloop.c]
2455 initialise accept() backoff timer to avoid EINVAL from select(2) in
2456 rekeying
Damien Millerefc6fc92012-06-20 21:44:56 +10002457
Darren Tuckerd0494fd2012-05-19 14:25:39 +1000245820120519
2459 - (dtucker) [configure.ac] bz#2010: fix non-portable shell construct. Patch
2460 from cjwatson at debian org.
Darren Tucker59353892012-05-19 15:24:37 +10002461 - (dtucker) [configure.ac contrib/Makefile] bz#1996: use AC_PATH_TOOL to find
2462 pkg-config so it does the right thing when cross-compiling. Patch from
2463 cjwatson at debian org.
Darren Tuckerfbcf8272012-05-19 19:37:01 +10002464- (dtucker) OpenBSD CVS Sync
2465 - dtucker@cvs.openbsd.org 2012/05/13 01:42:32
2466 [servconf.h servconf.c sshd.8 sshd.c auth.c sshd_config.5]
2467 Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests
2468 to match. Feedback and ok djm@ markus@.
Darren Tuckerba9ea322012-05-19 19:37:33 +10002469 - dtucker@cvs.openbsd.org 2012/05/19 06:30:30
2470 [sshd_config.5]
2471 Document PermitOpen none. bz#2001, patch from Loganaden Velvindron
Darren Tuckerd0494fd2012-05-19 14:25:39 +10002472
Darren Tuckere1a3ddf2012-05-04 11:05:45 +1000247320120504
2474 - (dtucker) [configure.ac] Include <sys/param.h> rather than <sys/types.h>
2475 to fix building on some plaforms. Fom bowman at math utah edu and
2476 des at des no.
2477
Darren Tuckerd0d3fff2012-04-27 10:55:39 +1000247820120427
2479 - (dtucker) [regress/addrmatch.sh] skip tests when running on a non-ipv6
2480 platform rather than exiting early, so that we still clean up and return
2481 success or failure to test-exec.sh
2482
Damien Miller7584cb12012-04-26 09:51:26 +1000248320120426
2484 - (djm) [auth-passwd.c] Handle crypt() returning NULL; from Paul Wouters
2485 via Niels
Damien Miller025bfd12012-04-26 09:52:15 +10002486 - (djm) [auth-krb5.c] Save errno across calls that might modify it;
2487 ok dtucker@
Damien Miller7584cb12012-04-26 09:51:26 +10002488
Damien Millerba77e1f2012-04-23 18:21:05 +1000248920120423
2490 - OpenBSD CVS Sync
2491 - djm@cvs.openbsd.org 2012/04/23 08:18:17
2492 [channels.c]
2493 fix function proto/source mismatch
2494
Damien Millera563cce2012-04-22 11:07:28 +1000249520120422
2496 - OpenBSD CVS Sync
2497 - djm@cvs.openbsd.org 2012/02/29 11:21:26
2498 [ssh-keygen.c]
2499 allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@
Damien Miller29cd1882012-04-22 11:08:10 +10002500 - guenther@cvs.openbsd.org 2012/03/15 03:10:27
2501 [session.c]
2502 root should always be excluded from the test for /etc/nologin instead
2503 of having it always enforced even when marked as ignorenologin. This
2504 regressed when the logic was incompletely flipped around in rev 1.251
2505 ok halex@ millert@
Damien Miller48348fc2012-04-22 11:08:30 +10002506 - djm@cvs.openbsd.org 2012/03/28 07:23:22
2507 [PROTOCOL.certkeys]
2508 explain certificate extensions/crit split rationale. Mention requirement
2509 that each appear at most once per cert.
Damien Millerc6081482012-04-22 11:18:53 +10002510 - dtucker@cvs.openbsd.org 2012/03/29 23:54:36
2511 [channels.c channels.h servconf.c]
2512 Add PermitOpen none option based on patch from Loganaden Velvindron
2513 (bz #1949). ok djm@
Damien Millera6508752012-04-22 11:21:10 +10002514 - djm@cvs.openbsd.org 2012/04/11 13:16:19
2515 [channels.c channels.h clientloop.c serverloop.c]
2516 don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a
2517 while; ok deraadt@ markus@
Damien Miller9fed1612012-04-22 11:21:43 +10002518 - djm@cvs.openbsd.org 2012/04/11 13:17:54
2519 [auth.c]
2520 Support "none" as an argument for AuthorizedPrincipalsFile to indicate
2521 no file should be read.
Damien Millera116d132012-04-22 11:23:46 +10002522 - djm@cvs.openbsd.org 2012/04/11 13:26:40
2523 [sshd.c]
2524 don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a
2525 while; ok deraadt@ markus@
Damien Miller839f7432012-04-22 11:24:21 +10002526 - djm@cvs.openbsd.org 2012/04/11 13:34:17
2527 [ssh-keyscan.1 ssh-keyscan.c]
2528 now that sshd defaults to offering ECDSA keys, ssh-keyscan should also
2529 look for them by default; bz#1971
Damien Miller23528812012-04-22 11:24:43 +10002530 - djm@cvs.openbsd.org 2012/04/12 02:42:32
2531 [servconf.c servconf.h sshd.c sshd_config sshd_config.5]
2532 VersionAddendum option to allow server operators to append some arbitrary
2533 text to the SSH-... banner; ok deraadt@ "don't care" markus@
Damien Miller8fef9eb2012-04-22 11:25:10 +10002534 - djm@cvs.openbsd.org 2012/04/12 02:43:55
2535 [sshd_config sshd_config.5]
2536 mention AuthorizedPrincipalsFile=none default
Damien Miller49223152012-04-22 11:25:47 +10002537 - djm@cvs.openbsd.org 2012/04/20 03:24:23
2538 [sftp.c]
2539 setlinebuf(3) is more readable than setvbuf(.., _IOLBF, ...)
Damien Miller70b2d552012-04-22 11:26:10 +10002540 - jmc@cvs.openbsd.org 2012/04/20 16:26:22
2541 [ssh.1]
2542 use "brackets" instead of "braces", for consistency;
Damien Millera563cce2012-04-22 11:07:28 +10002543
Damien Miller8beb3202012-04-20 10:58:34 +1000254420120420
2545 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2546 [contrib/suse/openssh.spec] Update for release 6.0
Damien Millerbf230412012-04-20 14:11:04 +10002547 - (djm) [README] Update URL to release notes.
Damien Millerd5dacb42012-04-20 15:01:01 +10002548 - (djm) Release openssh-6.0
Damien Miller8beb3202012-04-20 10:58:34 +10002549
Damien Miller398c0ff2012-04-19 21:46:35 +1000255020120419
2551 - (djm) [configure.ac] Fix compilation error on FreeBSD, whose libutil
2552 contains openpty() but not login()
2553
Damien Millere0956e32012-04-04 11:27:54 +1000255420120404
2555 - (djm) [Makefile.in configure.ac sandbox-seccomp-filter.c] Add sandbox
2556 mode for Linux's new seccomp filter; patch from Will Drewry; feedback
2557 and ok dtucker@
2558
Darren Tucker67ccc862012-03-30 10:19:56 +1100255920120330
2560 - (dtucker) [contrib/redhat/openssh.spec] Bug #1992: remove now-gone WARNING
2561 file from spec file. From crighter at nuclioss com.
Damien Miller4d557342012-03-30 11:34:27 +11002562 - (djm) [entropy.c] bz#1991: relax OpenSSL version test to allow running
2563 openssh binaries on a newer fix release than they were compiled on.
2564 with and ok dtucker@
Damien Millerce1ec9d2012-03-30 14:07:05 +11002565 - (djm) [openbsd-compat/bsd-cygwin_util.h] #undef _WIN32 to avoid incorrect
2566 assumptions when building on Cygwin; patch from Corinna Vinschen
Darren Tucker67ccc862012-03-30 10:19:56 +11002567
Damien Miller7bf7b882012-03-09 10:25:16 +1100256820120309
2569 - (djm) [openbsd-compat/port-linux.c] bz#1960: fix crash on SELinux
2570 systems where sshd is run in te wrong context. Patch from Sven
2571 Vermeulen; ok dtucker@
Damien Miller54c38d22012-03-09 10:28:07 +11002572 - (djm) [packet.c] bz#1963: Fix IPQoS not being set on non-mapped v4-in-v6
2573 addressed connections. ok dtucker@
Damien Miller7bf7b882012-03-09 10:25:16 +11002574
Darren Tucker93a2d412012-02-24 10:40:41 +1100257520120224
2576 - (dtucker) [audit-bsm.c configure.ac] bug #1968: enable workarounds for BSM
2577 audit breakage in Solaris 11. Patch from Magnus Johansson.
2578
Tim Ricee3609c92012-02-14 10:03:30 -0800257920120215
2580 - (tim) [openbsd-compat/bsd-misc.h sshd.c] Fix conflicting return type for
2581 unsetenv due to rev 1.14 change to setenv.c. Cast unsetenv to void in sshd.c
2582 ok dtucker@
Tim Ricef79b5d32012-02-14 20:13:05 -08002583 - (tim) [defines.h] move chunk introduced in 1.125 before MAXPATHLEN so
2584 it actually works.
Tim Ricea3f297d2012-02-14 23:01:42 -08002585 - (tim) [regress/keytype.sh] stderr redirection needs to be inside back quote
2586 to work. Spotted by Angel Gonzalez
Tim Ricee3609c92012-02-14 10:03:30 -08002587
Damien Miller7b7901c2012-02-14 06:38:36 +1100258820120214
2589 - (djm) [openbsd-compat/bsd-cygwin_util.c] Add PROGRAMFILES to list of
2590 preserved Cygwin environment variables; from Corinna Vinschen
2591
Damien Millera2876db2012-02-11 08:16:06 +1100259220120211
2593 - (djm) OpenBSD CVS Sync
2594 - djm@cvs.openbsd.org 2012/01/05 00:16:56
2595 [monitor.c]
2596 memleak on error path
Damien Miller2ec03422012-02-11 08:16:28 +11002597 - djm@cvs.openbsd.org 2012/01/07 21:11:36
2598 [mux.c]
2599 fix double-free in new session handler
Damien Miller83ba8e62012-02-11 08:17:27 +11002600 - miod@cvs.openbsd.org 2012/01/08 13:17:11
2601 [ssh-ecdsa.c]
2602 Fix memory leak in ssh_ecdsa_verify(); from Loganaden Velvindron,
2603 ok markus@
Damien Millerfb12c6d2012-02-11 08:17:52 +11002604 - miod@cvs.openbsd.org 2012/01/16 20:34:09
2605 [ssh-pkcs11-client.c]
2606 Fix a memory leak in pkcs11_rsa_private_encrypt(), reported by Jan Klemkow.
2607 While there, be sure to buffer_clear() between send_msg() and recv_msg().
2608 ok markus@
Damien Miller8d60be52012-02-11 08:18:17 +11002609 - dtucker@cvs.openbsd.org 2012/01/18 21:46:43
2610 [clientloop.c]
2611 Ensure that $DISPLAY contains only valid characters before using it to
2612 extract xauth data so that it can't be used to play local shell
2613 metacharacter games. Report from r00t_ati at ihteam.net, ok markus.
Damien Miller1de2cfe2012-02-11 08:18:43 +11002614 - markus@cvs.openbsd.org 2012/01/25 19:26:43
2615 [packet.c]
2616 do not permit SSH2_MSG_SERVICE_REQUEST/ACCEPT during rekeying;
2617 ok dtucker@, djm@
Damien Miller5d007702012-02-11 08:19:02 +11002618 - markus@cvs.openbsd.org 2012/01/25 19:36:31
2619 [authfile.c]
2620 memleak in key_load_file(); from Jan Klemkow
Damien Miller72de9822012-02-11 08:19:21 +11002621 - markus@cvs.openbsd.org 2012/01/25 19:40:09
2622 [packet.c packet.h]
2623 packet_read_poll() is not used anymore.
Damien Millerdb854552012-02-11 08:19:44 +11002624 - markus@cvs.openbsd.org 2012/02/09 20:00:18
2625 [version.h]
2626 move from 6.0-beta to 6.0
Damien Millera2876db2012-02-11 08:16:06 +11002627
Damien Millerb56e4932012-02-06 07:41:27 +1100262820120206
2629 - (djm) [ssh-keygen.c] Don't fail in do_gen_all_hostkeys on platforms
2630 that don't support ECC. Patch from Phil Oleson
Darren Tuckere9b3ad72012-01-17 14:03:34 +11002631
Damien Miller5360dff2011-12-19 10:51:11 +1100263220111219
2633 - OpenBSD CVS Sync
2634 - djm@cvs.openbsd.org 2011/12/02 00:41:56
2635 [mux.c]
2636 fix bz#1948: ssh -f doesn't fork for multiplexed connection.
2637 ok dtucker@
Damien Millerd0e582c2011-12-19 10:51:39 +11002638 - djm@cvs.openbsd.org 2011/12/02 00:43:57
2639 [mac.c]
2640 fix bz#1934: newer OpenSSL versions will require HMAC_CTX_Init before
2641 HMAC_init (this change in policy seems insane to me)
2642 ok dtucker@
Damien Miller913ddff2011-12-19 10:52:21 +11002643 - djm@cvs.openbsd.org 2011/12/04 23:16:12
2644 [mux.c]
2645 revert:
2646 > revision 1.32
2647 > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1
2648 > fix bz#1948: ssh -f doesn't fork for multiplexed connection.
2649 > ok dtucker@
2650 it interacts badly with ControlPersist
Damien Miller8ed4de82011-12-19 10:52:50 +11002651 - djm@cvs.openbsd.org 2011/12/07 05:44:38
2652 [auth2.c dh.c packet.c roaming.h roaming_client.c roaming_common.c]
2653 fix some harmless and/or unreachable int overflows;
2654 reported Xi Wang, ok markus@
Damien Miller5360dff2011-12-19 10:51:11 +11002655
Damien Miller47d81152011-11-25 13:53:48 +1100265620111125
2657 - OpenBSD CVS Sync
2658 - oga@cvs.openbsd.org 2011/11/16 12:24:28
2659 [sftp.c]
2660 Don't leak list in complete_cmd_parse if there are no commands found.
2661 Discovered when I was ``borrowing'' this code for something else.
2662 ok djm@
2663
Darren Tucker4a725ef2011-11-21 16:38:48 +1100266420111121
2665 - (dtucker) [configure.ac] Set _FORTIFY_SOURCE. ok djm@
2666
Darren Tucker45c66d72011-11-04 10:50:40 +1100266720111104
2668 - (dtucker) OpenBSD CVS Sync
2669 - djm@cvs.openbsd.org 2011/10/18 05:15:28
2670 [ssh.c]
2671 ssh(1): skip attempting to create ~/.ssh when -F is passed; ok markus@
Darren Tuckere68cf842011-11-04 10:51:51 +11002672 - djm@cvs.openbsd.org 2011/10/18 23:37:42
2673 [ssh-add.c]
2674 add -k to usage(); reminded by jmc@
Darren Tucker9ee09cf2011-11-04 10:52:43 +11002675 - djm@cvs.openbsd.org 2011/10/19 00:06:10
2676 [moduli.c]
2677 s/tmpfile/tmp/ to make this -Wshadow clean
Darren Tucker8a057952011-11-04 10:53:31 +11002678 - djm@cvs.openbsd.org 2011/10/19 10:39:48
2679 [umac.c]
2680 typo in comment; patch from Michael W. Bombardieri
Darren Tucker2d6665d2011-11-04 10:54:22 +11002681 - djm@cvs.openbsd.org 2011/10/24 02:10:46
2682 [ssh.c]
2683 bz#1943: unbreak stdio forwarding when ControlPersist is in user - ssh
2684 was incorrectly requesting the forward in both the control master and
2685 slave. skip requesting it in the master to fix. ok markus@
Darren Tucker9c5d5532011-11-04 10:55:24 +11002686 - djm@cvs.openbsd.org 2011/10/24 02:13:13
2687 [session.c]
2688 bz#1859: send tty break to pty master instead of (probably already
2689 closed) slave side; "looks good" markus@
Darren Tuckerbe4032b2011-11-04 11:16:06 +11002690 - dtucker@cvs.openbsd.org 011/11/04 00:09:39
2691 [moduli]
2692 regenerated moduli file; ok deraadt
Darren Tuckeraa3cbd12011-11-04 11:25:24 +11002693 - (dtucker) [INSTALL LICENCE configure.ac openbsd-compat/Makefile.in
2694 openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/getrrsetbyname.c]
2695 bz 1320: Add optional support for LDNS, a BSD licensed DNS resolver library
2696 which supports DNSSEC. Patch from Simon Vallet (svallet at genoscope cns fr)
2697 with some rework from myself and djm. ok djm.
Darren Tucker45c66d72011-11-04 10:50:40 +11002698
Darren Tucker9f157ab2011-10-25 09:37:57 +1100269920111025
2700 - (dtucker) [contrib/cygwin/Makefile] Continue if installing a doc file
2701 fails. Patch from Corinna Vinschen.
2702
Damien Millerd3e69902011-10-18 16:04:57 +1100270320111018
2704 - (djm) OpenBSD CVS Sync
2705 - djm@cvs.openbsd.org 2011/10/04 14:17:32
2706 [sftp-glob.c]
2707 silence error spam for "ls */foo" in directory with files; bz#1683
Damien Miller390d0562011-10-18 16:05:19 +11002708 - dtucker@cvs.openbsd.org 2011/10/16 11:02:46
2709 [moduli.c ssh-keygen.1 ssh-keygen.c]
2710 Add optional checkpoints for moduli screening. feedback & ok deraadt
Damien Miller927d82b2011-10-18 16:05:38 +11002711 - jmc@cvs.openbsd.org 2011/10/16 15:02:41
2712 [ssh-keygen.c]
2713 put -K in the right place (usage());
Damien Miller91f3eae2011-10-18 16:05:55 +11002714 - stsp@cvs.openbsd.org 2011/10/16 15:51:39
2715 [moduli.c]
2716 add missing includes to unbreak tree; fix from rpointel
Damien Millerc51a5ab2011-10-18 16:06:14 +11002717 - djm@cvs.openbsd.org 2011/10/18 04:58:26
2718 [auth-options.c key.c]
2719 remove explict search for \0 in packet strings, this job is now done
2720 implicitly by buffer_get_cstring; ok markus
Damien Miller8f4279e2011-10-18 16:06:33 +11002721 - djm@cvs.openbsd.org 2011/10/18 05:00:48
2722 [ssh-add.1 ssh-add.c]
2723 new "ssh-add -k" option to load plain keys (skipping certificates);
2724 "looks ok" markus@
Damien Millerd3e69902011-10-18 16:04:57 +11002725
272620111001
Darren Tucker036876c2011-10-01 18:46:12 +10002727 - (dtucker) [openbsd-compat/mktemp.c] Fix compiler warning. ok djm
Darren Tucker1338b9e2011-10-02 18:57:35 +11002728 - (dtucker) OpenBSD CVS Sync
2729 - dtucker@cvs.openbsd.org 2011/09/23 00:22:04
2730 [channels.c auth-options.c servconf.c channels.h sshd.8]
2731 Add wildcard support to PermitOpen, allowing things like "PermitOpen
2732 localhost:*". bz #1857, ok djm markus.
Darren Tucker68afb8c2011-10-02 18:59:03 +11002733 - markus@cvs.openbsd.org 2011/09/23 07:45:05
2734 [mux.c readconf.h channels.h compat.h compat.c ssh.c readconf.c channels.c
2735 version.h]
2736 unbreak remote portforwarding with dynamic allocated listen ports:
2737 1) send the actual listen port in the open message (instead of 0).
2738 this allows multiple forwardings with a dynamic listen port
2739 2) update the matching permit-open entry, so we can identify where
2740 to connect to
2741 report: den at skbkontur.ru and P. Szczygielski
2742 feedback and ok djm@
Darren Tuckeraf1a60e2011-10-02 18:59:59 +11002743 - djm@cvs.openbsd.org 2011/09/25 05:44:47
2744 [auth2-pubkey.c]
2745 improve the AuthorizedPrincipalsFile debug log message to include
2746 file and line number
Darren Tucker95125e52011-10-02 19:09:07 +11002747 - dtucker@cvs.openbsd.org 2011/09/30 00:47:37
2748 [sshd.c]
2749 don't attempt privsep cleanup when not using privsep; ok markus@
Darren Tucker2e135602011-10-02 19:10:13 +11002750 - djm@cvs.openbsd.org 2011/09/30 21:22:49
2751 [sshd.c]
2752 fix inverted test that caused logspam; spotted by henning@
Darren Tucker036876c2011-10-01 18:46:12 +10002753
Damien Miller5ffe1c42011-09-29 11:11:51 +1000275420110929
2755 - (djm) [configure.ac defines.h] No need to detect sizeof(char); patch
2756 from des AT des.no
Darren Tuckerb54f50e2011-09-29 23:17:18 +10002757 - (dtucker) [configure.ac openbsd-compat/Makefile.in
2758 openbsd-compat/strnlen.c] Add strnlen to the compat library.
Damien Miller5ffe1c42011-09-29 11:11:51 +10002759
Damien Milleradd1e202011-09-23 10:38:01 +1000276020110923
Damien Milleracdf3fb2011-09-23 10:40:50 +10002761 - (djm) [openbsd-compat/getcwd.c] Remove OpenBSD rcsid marker since we no
2762 longer want to sync this file (OpenBSD uses a __getcwd syscall now, we
2763 want this longhand version)
Damien Millercd927902011-09-23 10:44:03 +10002764 - (djm) [openbsd-compat/getgrouplist.c] Remove OpenBSD rcsid marker: the
2765 upstream version is YPified and we don't want this
Damien Miller48886712011-09-23 10:56:29 +10002766 - (djm) [openbsd-compat/mktemp.c] forklift upgrade to -current version.
2767 The file was totally rewritten between what we had in tree and -current.
Damien Miller64efe962011-09-23 11:13:00 +10002768 - (djm) [openbsd-compat/sha2.c openbsd-compat/sha2.h] Remove OpenBSD rcsid
2769 marker. The upstream API has changed (function and structure names)
2770 enough to put it out of sync with other providers of this interface.
Damien Millerd1a74582011-09-23 11:26:34 +10002771 - (djm) [openbsd-compat/setenv.c] Forklift upgrade, including inclusion
2772 of static __findenv() function from upstream setenv.c
Damien Milleradd1e202011-09-23 10:38:01 +10002773 - OpenBSD CVS Sync
2774 - millert@cvs.openbsd.org 2006/05/05 15:27:38
Damien Milleracdf3fb2011-09-23 10:40:50 +10002775 [openbsd-compat/strlcpy.c]
Damien Milleradd1e202011-09-23 10:38:01 +10002776 Convert do {} while loop -> while {} for clarity. No binary change
2777 on most architectures. From Oliver Smith. OK deraadt@ and henning@
Damien Miller834e8202011-09-23 10:42:02 +10002778 - tobias@cvs.openbsd.org 2007/10/21 11:09:30
Damien Miller3e6fe872011-09-23 11:16:09 +10002779 [openbsd-compat/mktemp.c]
Damien Miller834e8202011-09-23 10:42:02 +10002780 Comment fix about time consumption of _gettemp.
2781 FreeBSD did this in revision 1.20.
2782 OK deraadt@, krw@
Damien Millerdc0e09b2011-09-23 10:46:48 +10002783 - deraadt@cvs.openbsd.org 2008/07/22 21:47:45
Damien Miller3e6fe872011-09-23 11:16:09 +10002784 [openbsd-compat/mktemp.c]
Damien Millerdc0e09b2011-09-23 10:46:48 +10002785 use arc4random_uniform(); ok djm millert
Damien Miller3a359b32011-09-23 10:47:29 +10002786 - millert@cvs.openbsd.org 2008/08/21 16:54:44
Damien Miller3e6fe872011-09-23 11:16:09 +10002787 [openbsd-compat/mktemp.c]
Damien Miller3a359b32011-09-23 10:47:29 +10002788 Remove useless code, the kernel will set errno appropriately if an
2789 element in the path does not exist. OK deraadt@ pvalchev@
Damien Miller3e6fe872011-09-23 11:16:09 +10002790 - otto@cvs.openbsd.org 2008/12/09 19:38:38
2791 [openbsd-compat/inet_ntop.c]
2792 fix inet_ntop(3) prototype; ok millert@ libc to be bumbed very soon
Damien Milleradd1e202011-09-23 10:38:01 +10002793
Damien Millere01a6272011-09-22 21:20:21 +1000279420110922
2795 - OpenBSD CVS Sync
2796 - pyr@cvs.openbsd.org 2011/05/12 07:15:10
2797 [openbsd-compat/glob.c]
2798 When the max number of items for a directory has reached GLOB_LIMIT_READDIR
2799 an error is returned but closedir() is not called.
2800 spotted and fix provided by Frank Denis obsd-tech@pureftpd.org
2801 ok otto@, millert@
Damien Millerc4bf7dd2011-09-22 21:21:48 +10002802 - stsp@cvs.openbsd.org 2011/09/20 10:18:46
2803 [glob.c]
2804 In glob(3), limit recursion during matching attempts. Similar to
2805 fnmatch fix. Also collapse consecutive '*' (from NetBSD).
2806 ok miod deraadt
Damien Millere128a502011-09-22 21:22:21 +10002807 - djm@cvs.openbsd.org 2011/09/22 06:27:29
2808 [glob.c]
2809 fix GLOB_KEEPSTAT without GLOB_NOSORT; the implicit sort was being
2810 applied only to the gl_pathv vector and not the corresponding gl_statv
2811 array. reported in OpenSSH bz#1935; feedback and okay matthew@
Damien Millerefad7272011-09-22 21:33:53 +10002812 - djm@cvs.openbsd.org 2011/08/26 01:45:15
2813 [ssh.1]
2814 Add some missing ssh_config(5) options that can be used in ssh(1)'s
2815 -o argument. Patch from duclare AT guu.fi
Damien Millere5777722011-09-22 21:34:15 +10002816 - djm@cvs.openbsd.org 2011/09/05 05:56:13
2817 [scp.1 sftp.1]
2818 mention ControlPersist and KbdInteractiveAuthentication in the -o
2819 verbiage in these pages too (prompted by jmc@)
Damien Miller2918e032011-09-22 21:34:35 +10002820 - djm@cvs.openbsd.org 2011/09/05 05:59:08
2821 [misc.c]
2822 fix typo in IPQoS parsing: there is no "AF14" class, but there is
2823 an "AF21" class. Spotted by giesen AT snickers.org; ok markus stevesk
Damien Millere0296732011-09-22 21:34:56 +10002824 - jmc@cvs.openbsd.org 2011/09/05 07:01:44
2825 [scp.1]
2826 knock out a useless Ns;
Damien Miller6232a162011-09-22 21:36:00 +10002827 - deraadt@cvs.openbsd.org 2011/09/07 02:18:31
2828 [ssh-keygen.1]
2829 typo (they vs the) found by Lawrence Teo
Damien Millerf6e758c2011-09-22 21:37:13 +10002830 - djm@cvs.openbsd.org 2011/09/09 00:43:00
2831 [ssh_config.5 sshd_config.5]
2832 fix typo in IPQoS parsing: there is no "AF14" class, but there is
2833 an "AF21" class. Spotted by giesen AT snickers.org; ok markus stevesk
Damien Miller4cb855b2011-09-22 21:37:38 +10002834 - djm@cvs.openbsd.org 2011/09/09 00:44:07
2835 [PROTOCOL.mux]
2836 MUX_C_CLOSE_FWD includes forward type in message (though it isn't
2837 implemented anyway)
Damien Miller0603d982011-09-22 21:38:00 +10002838 - djm@cvs.openbsd.org 2011/09/09 22:37:01
2839 [scp.c]
2840 suppress adding '--' to remote commandlines when the first argument
2841 does not start with '-'. saves breakage on some difficult-to-upgrade
2842 embedded/router platforms; feedback & ok dtucker ok markus
Damien Miller9ee2c602011-09-22 21:38:30 +10002843 - djm@cvs.openbsd.org 2011/09/09 22:38:21
2844 [sshd.c]
2845 kill the preauth privsep child on fatal errors in the monitor;
2846 ok markus@
Damien Millerf6dff7c2011-09-22 21:38:52 +10002847 - djm@cvs.openbsd.org 2011/09/09 22:46:44
2848 [channels.c channels.h clientloop.h mux.c ssh.c]
2849 support for cancelling local and remote port forwards via the multiplex
2850 socket. Use ssh -O cancel -L xx:xx:xx -R yy:yy:yy user@host" to request
2851 the cancellation of the specified forwardings; ok markus@
Damien Millerff773642011-09-22 21:39:48 +10002852 - markus@cvs.openbsd.org 2011/09/10 22:26:34
2853 [channels.c channels.h clientloop.c ssh.1]
2854 support cancellation of local/dynamic forwardings from ~C commandline;
2855 ok & feedback djm@
Damien Miller1bcbd0a2011-09-22 21:40:45 +10002856 - okan@cvs.openbsd.org 2011/09/11 06:59:05
2857 [ssh.1]
2858 document new -O cancel command; ok djm@
Damien Miller3decdba2011-09-22 21:41:05 +10002859 - markus@cvs.openbsd.org 2011/09/11 16:07:26
2860 [sftp-client.c]
2861 fix leaks in do_hardlink() and do_readlink(); bz#1921
2862 from Loganaden Velvindron
Damien Miller57c38ac2011-09-22 21:42:45 +10002863 - markus@cvs.openbsd.org 2011/09/12 08:46:15
2864 [sftp-client.c]
2865 fix leak in do_lsreaddir(); ok djm
Damien Millerd7be70d2011-09-22 21:43:06 +10002866 - djm@cvs.openbsd.org 2011/09/22 06:29:03
2867 [sftp.c]
2868 don't let remote_glob() implicitly sort its results in do_globbed_ls() -
2869 in all likelihood, they will be resorted anyway
Damien Millere01a6272011-09-22 21:20:21 +10002870
Darren Tuckere8a82c52011-09-09 11:29:40 +1000287120110909
2872 - (dtucker) [entropy.h] Bug #1932: remove old definition of init_rng. From
2873 Colin Watson.
2874
Damien Millerfb9d8172011-09-07 09:11:53 +1000287520110906
2876 - (djm) [README version.h] Correct version
Damien Miller022ee242011-09-07 09:15:02 +10002877 - (djm) [contrib/redhat/openssh.spec] Correct restorcon => restorecon
2878 - (djm) Respin OpenSSH-5.9p1 release
Damien Millerfb9d8172011-09-07 09:11:53 +10002879
Damien Miller86dcd3e2011-09-05 10:29:04 +1000288020110905
2881 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2882 [contrib/suse/openssh.spec] Update version numbers.
2883
Damien Miller6efd94f2011-09-04 19:04:16 +1000288420110904
2885 - (djm) [regress/connect-privsep.sh regress/test-exec.sh] demote fatal
2886 regress errors for the sandbox to warnings. ok tim dtucker
Darren Tucker0dd24e02011-09-04 19:59:26 +10002887 - (dtucker) [ssh-keygen.c ssh-pkcs11.c] Bug #1929: add null implementations
Damien Miller86dcd3e2011-09-05 10:29:04 +10002888 ofsh-pkcs11.cpkcs_init and pkcs_terminate for building without dlopen
2889 support.
Damien Miller6efd94f2011-09-04 19:04:16 +10002890
Damien Miller58ac11a2011-08-29 16:09:52 +1000289120110829
2892 - (djm) [openbsd-compat/port-linux.c] Suppress logging when attempting
2893 to switch SELinux context away from unconfined_t, based on patch from
2894 Jan Chadima; bz#1919 ok dtucker@
2895
Darren Tucker44383542011-08-28 04:50:16 +1000289620110827
2897 - (dtucker) [auth-skey.c] Add log.h to fix build --with-skey.
2898
Tim Ricea6e60612011-08-17 21:48:22 -0700289920110818
2900 - (tim) [configure.ac] Typo in error message spotted by Andy Tsouladze
2901
Tim Ricea1226822011-08-16 17:29:01 -0700290220110817
2903 - (tim) [mac.c myproposal.h] Wrap SHA256 and SHA512 in ifdefs for
2904 OpenSSL 0.9.7. ok djm
Damien Miller9c083122011-08-17 11:31:07 +10002905 - (djm) [ openbsd-compat/bsd-cygwin_util.c openbsd-compat/bsd-cygwin_util.h]
2906 binary_pipe is no longer required on Cygwin; patch from Corinna Vinschen
Damien Miller1a91c0f2011-08-17 11:59:25 +10002907 - (djm) [configure.ac] error out if the host lacks the necessary bits for
2908 an explicitly requested sandbox type
Damien Miller44a6c932011-08-17 12:01:44 +10002909 - (djm) [contrib/ssh-copy-id] Missing backlslash; spotted by
2910 bisson AT archlinux.org
Damien Miller9231c8b2011-08-17 12:08:15 +10002911 - (djm) OpenBSD CVS Sync
2912 - dtucker@cvs.openbsd.org 2011/06/03 05:35:10
2913 [regress/cfgmatch.sh]
2914 use OBJ to find test configs, patch from Tim Rice
Damien Millerfaf4d802011-08-17 12:09:19 +10002915 - markus@cvs.openbsd.org 2011/06/30 22:44:43
2916 [regress/connect-privsep.sh]
2917 test with sandbox enabled; ok djm@
Damien Miller062fa302011-08-17 12:10:02 +10002918 - djm@cvs.openbsd.org 2011/08/02 01:23:41
2919 [regress/cipher-speed.sh regress/try-ciphers.sh]
2920 add SHA256/SHA512 based HMAC modes
Damien Miller2df1bec2011-08-17 12:25:46 +10002921 - (djm) [regress/cipher-speed.sh regress/try-ciphers.sh] disable HMAC-SHA2
2922 MAC tests for platforms that hack EVP_SHA2 support
Tim Ricea1226822011-08-16 17:29:01 -07002923
Darren Tucker4d47ec92011-08-12 10:12:53 +1000292420110812
2925 - (dtucker) [openbsd-compat/port-linux.c] Bug 1924: Improve selinux context
2926 change error by reporting old and new context names Patch from
2927 jchadima at redhat.
Damien Miller2db99772011-08-12 11:02:35 +10002928 - (djm) [contrib/redhat/openssh.spec contrib/redhat/sshd.init]
2929 [contrib/suse/openssh.spec contrib/suse/rc.sshd] Updated RHEL and SLES
Damien Millerd1eb1dd2011-08-12 11:22:47 +10002930 init scrips from imorgan AT nas.nasa.gov; bz#1920
2931 - (djm) [contrib/ssh-copy-id] Fix failure for cases where the path to the
2932 identify file contained whitespace. bz#1828 patch from gwenael.lambrouin
2933 AT gmail.com; ok dtucker@
Darren Tucker4d47ec92011-08-12 10:12:53 +10002934
Darren Tucker578451d2011-08-07 23:09:20 +1000293520110807
2936 - (dtucker) OpenBSD CVS Sync
2937 - jmc@cvs.openbsd.org 2008/06/26 06:59:39
2938 [moduli.5]
2939 tweak previous;
Darren Tuckerf2794742011-08-07 23:10:11 +10002940 - sobrado@cvs.openbsd.org 2009/10/28 08:56:54
2941 [moduli.5]
2942 "Diffie-Hellman" is the usual spelling for the cryptographic protocol
2943 first published by Whitfield Diffie and Martin Hellman in 1976.
2944 ok jmc@
Darren Tucker91e6b572011-08-07 23:10:56 +10002945 - jmc@cvs.openbsd.org 2010/10/14 20:41:28
2946 [moduli.5]
2947 probabalistic -> probabilistic; from naddy
Darren Tuckerddccfb42011-08-07 23:12:26 +10002948 - dtucker@cvs.openbsd.org 2011/08/07 12:55:30
2949 [sftp.1]
2950 typo, fix from Laurent Gautrot
Darren Tucker578451d2011-08-07 23:09:20 +10002951
Damien Miller7741ce82011-08-06 06:15:15 +1000295220110805
2953 - OpenBSD CVS Sync
2954 - djm@cvs.openbsd.org 2011/06/23 23:35:42
2955 [monitor.c]
2956 ignore EINTR errors from poll()
Damien Miller6ea5e442011-08-06 06:16:00 +10002957 - tedu@cvs.openbsd.org 2011/07/06 18:09:21
2958 [authfd.c]
2959 bzero the agent address. the kernel was for a while very cranky about
2960 these things. evne though that's fixed, always good to initialize
2961 memory. ok deraadt djm
Damien Miller35e48192011-08-06 06:16:23 +10002962 - djm@cvs.openbsd.org 2011/07/29 14:42:45
2963 [sandbox-systrace.c]
2964 fail open(2) with EPERM rather than SIGKILLing the whole process. libc
2965 will call open() to do strerror() when NLS is enabled;
2966 feedback and ok markus@
Damien Milleradb467f2011-08-06 06:16:46 +10002967 - markus@cvs.openbsd.org 2011/08/01 19:18:15
2968 [gss-serv.c]
2969 prevent post-auth resource exhaustion (int overflow leading to 4GB malloc);
2970 report Adam Zabrock; ok djm@, deraadt@
Damien Miller20bd4532011-08-06 06:17:30 +10002971 - djm@cvs.openbsd.org 2011/08/02 01:22:11
2972 [mac.c myproposal.h ssh.1 ssh_config.5 sshd.8 sshd_config.5]
2973 Add new SHA256 and SHA512 based HMAC modes from
2974 http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt
2975 Patch from mdb AT juniper.net; feedback and ok markus@
Damien Millerc4718602011-08-06 06:17:48 +10002976 - djm@cvs.openbsd.org 2011/08/02 23:13:01
2977 [version.h]
2978 crank now, release later
Damien Miller765f8c42011-08-06 06:18:16 +10002979 - djm@cvs.openbsd.org 2011/08/02 23:15:03
2980 [ssh.c]
2981 typo in comment
Damien Miller7741ce82011-08-06 06:15:15 +10002982
Damien Millercd5e52e2011-06-27 07:18:18 +1000298320110624
2984 - (djm) [configure.ac Makefile.in sandbox-darwin.c] Add a sandbox for
2985 Darwin/OS X using sandbox_init() + setrlimit(); feedback and testing
2986 markus@
2987
Damien Miller82c55872011-06-23 08:20:30 +1000298820110623
2989 - OpenBSD CVS Sync
2990 - djm@cvs.openbsd.org 2011/06/22 21:47:28
2991 [servconf.c]
2992 reuse the multistate option arrays to pretty-print options for "sshd -T"
Damien Miller69ff1df2011-06-23 08:30:03 +10002993 - djm@cvs.openbsd.org 2011/06/22 21:57:01
2994 [servconf.c servconf.h sshd.c sshd_config.5]
2995 [configure.ac Makefile.in]
2996 introduce sandboxing of the pre-auth privsep child using systrace(4).
2997
2998 This introduces a new "UsePrivilegeSeparation=sandbox" option for
2999 sshd_config that applies mandatory restrictions on the syscalls the
3000 privsep child can perform. This prevents a compromised privsep child
3001 from being used to attack other hosts (by opening sockets and proxying)
3002 or probing local kernel attack surface.
3003
3004 The sandbox is implemented using systrace(4) in unsupervised "fast-path"
3005 mode, where a list of permitted syscalls is supplied. Any syscall not
3006 on the list results in SIGKILL being sent to the privsep child. Note
3007 that this requires a kernel with the new SYSTR_POLICY_KILL option.
3008
3009 UsePrivilegeSeparation=sandbox will become the default in the future
3010 so please start testing it now.
3011
3012 feedback dtucker@; ok markus@
Damien Miller6d7b4372011-06-23 08:31:57 +10003013 - djm@cvs.openbsd.org 2011/06/22 22:08:42
3014 [channels.c channels.h clientloop.c clientloop.h mux.c ssh.c]
3015 hook up a channel confirm callback to warn the user then requested X11
3016 forwarding was refused by the server; ok markus@
Damien Millerdcbd41e2011-06-23 19:45:51 +10003017 - djm@cvs.openbsd.org 2011/06/23 09:34:13
3018 [sshd.c ssh-sandbox.h sandbox.h sandbox-rlimit.c sandbox-systrace.c]
3019 [sandbox-null.c]
3020 rename sandbox.h => ssh-sandbox.h to make things easier for portable
Damien Miller80b62e32011-06-23 19:03:18 +10003021 - (djm) [sandbox-null.c] Dummy sandbox for platforms that don't support
3022 setrlimit(2)
Damien Miller82c55872011-06-23 08:20:30 +10003023
Damien Miller6029e072011-06-20 14:22:49 +1000302420110620
3025 - OpenBSD CVS Sync
3026 - djm@cvs.openbsd.org 2011/06/04 00:10:26
3027 [ssh_config.5]
3028 explain IdentifyFile's semantics a little better, prompted by bz#1898
3029 ok dtucker jmc
Damien Millere7ac2bd2011-06-20 14:23:25 +10003030 - markus@cvs.openbsd.org 2011/06/14 22:49:18
3031 [authfile.c]
3032 make sure key_parse_public/private_rsa1() no longer consumes its input
3033 buffer. fixes ssh-add for passphrase-protected ssh1-keys;
3034 noted by naddy@; ok djm@
Damien Miller8f0bf232011-06-20 14:42:23 +10003035 - djm@cvs.openbsd.org 2011/06/17 21:44:31
3036 [log.c log.h monitor.c monitor.h monitor_wrap.c monitor_wrap.h sshd.c]
3037 make the pre-auth privsep slave log via a socketpair shared with the
3038 monitor rather than /var/empty/dev/log; ok dtucker@ deraadt@ markus@
Damien Millerf145a5b2011-06-20 14:42:51 +10003039 - djm@cvs.openbsd.org 2011/06/17 21:46:16
3040 [sftp-server.c]
3041 the protocol version should be unsigned; bz#1913 reported by mb AT
3042 smartftp.com
Damien Miller33322122011-06-20 14:43:11 +10003043 - djm@cvs.openbsd.org 2011/06/17 21:47:35
3044 [servconf.c]
3045 factor out multi-choice option parsing into a parse_multistate label
3046 and some support structures; ok dtucker@
Damien Miller4ac99c32011-06-20 14:43:31 +10003047 - djm@cvs.openbsd.org 2011/06/17 21:57:25
3048 [clientloop.c]
3049 setproctitle for a mux master that has been gracefully stopped;
3050 bz#1911 from Bert.Wesarg AT googlemail.com
Damien Miller6029e072011-06-20 14:22:49 +10003051
Darren Tuckerc412c152011-06-03 10:35:23 +1000305220110603
3053 - (dtucker) [README version.h contrib/caldera/openssh.spec
3054 contrib/redhat/openssh.spec contrib/suse/openssh.spec] Pull the version
3055 bumps from the 5.8p2 branch into HEAD. ok djm.
Tim Rice90f42b02011-06-02 18:17:49 -07003056 - (tim) [configure.ac defines.h] Run test program to detect system mail
3057 directory. Add --with-maildir option to override. Fixed OpenServer 6
3058 getting it wrong. Fixed many systems having MAIL=/var/mail//username
3059 ok dtucker
Darren Tuckerc3c72272011-06-03 11:20:06 +10003060 - (dtucker) [monitor.c] Remove the !HAVE_SOCKETPAIR case. We use socketpair
3061 unconditionally in other places and the survey data we have does not show
3062 any systems that use it. "nuke it" djm@
Damien Millerc09182f2011-06-03 12:11:38 +10003063 - (djm) [configure.ac] enable setproctitle emulation for OS X
3064 - (djm) OpenBSD CVS Sync
Damien Millerea2c1a42011-06-03 12:10:22 +10003065 - djm@cvs.openbsd.org 2011/06/03 00:54:38
3066 [ssh.c]
3067 bz#1883 - setproctitle() to identify mux master; patch from Bert.Wesarg
3068 AT googlemail.com; ok dtucker@
3069 NB. includes additional portability code to enable setproctitle emulation
3070 on platforms that don't support it.
Darren Tucker3e78a512011-06-03 14:14:16 +10003071 - dtucker@cvs.openbsd.org 2011/06/03 01:37:40
3072 [ssh-agent.c]
3073 Check current parent process ID against saved one to determine if the parent
3074 has exited, rather than attempting to send a zero signal, since the latter
3075 won't work if the parent has changed privs. bz#1905, patch from Daniel Kahn
3076 Gillmor, ok djm@
Darren Tucker260c8fb2011-06-03 14:17:27 +10003077 - dtucker@cvs.openbsd.org 2011/05/31 02:01:58
3078 [regress/dynamic-forward.sh]
3079 back out revs 1.6 and 1.5 since it's not reliable
Darren Tucker75e035c2011-06-03 14:18:17 +10003080 - dtucker@cvs.openbsd.org 2011/05/31 02:03:34
3081 [regress/dynamic-forward.sh]
3082 work around startup and teardown races; caught by deraadt
Darren Tuckerbf4d05a2011-06-03 14:19:02 +10003083 - dtucker@cvs.openbsd.org 2011/06/03 00:29:52
3084 [regress/dynamic-forward.sh]
3085 Retry establishing the port forwarding after a small delay, should make
3086 the tests less flaky when the previous test is slow to shut down and free
3087 up the port.
Tim Ricebc481572011-06-02 22:26:19 -07003088 - (tim) [regress/cfgmatch.sh] Build/test out of tree fix.
Darren Tuckerc412c152011-06-03 10:35:23 +10003089
Damien Millerd8478b62011-05-29 21:39:36 +1000309020110529
3091 - (djm) OpenBSD CVS Sync
3092 - djm@cvs.openbsd.org 2011/05/23 03:30:07
3093 [auth-rsa.c auth.c auth.h auth2-pubkey.c monitor.c monitor_wrap.c]
3094 [pathnames.h servconf.c servconf.h sshd.8 sshd_config sshd_config.5]
3095 allow AuthorizedKeysFile to specify multiple files, separated by spaces.
3096 Bring back authorized_keys2 as a default search path (to avoid breaking
3097 existing users of this file), but override this in sshd_config so it will
3098 be no longer used on fresh installs. Maybe in 2015 we can remove it
3099 entierly :)
3100
3101 feedback and ok markus@ dtucker@
Damien Miller1dd66e52011-05-29 21:40:42 +10003102 - djm@cvs.openbsd.org 2011/05/23 03:33:38
3103 [auth.c]
3104 make secure_filename() spam debug logs less
Damien Miller201f4252011-05-29 21:41:03 +10003105 - djm@cvs.openbsd.org 2011/05/23 03:52:55
3106 [sshconnect.c]
3107 remove extra newline
Damien Millerb9132fc2011-05-29 21:41:40 +10003108 - jmc@cvs.openbsd.org 2011/05/23 07:10:21
3109 [sshd.8 sshd_config.5]
3110 tweak previous; ok djm
Damien Miller04bb56e2011-05-29 21:42:08 +10003111 - djm@cvs.openbsd.org 2011/05/23 07:24:57
3112 [authfile.c]
3113 read in key comments for v.2 keys (though note that these are not
3114 passed over the agent protocol); bz#439, based on patch from binder
3115 AT arago.de; ok markus@
Damien Miller295ee632011-05-29 21:42:31 +10003116 - djm@cvs.openbsd.org 2011/05/24 07:15:47
3117 [readconf.c readconf.h ssh.c ssh_config.5 sshconnect.c sshconnect2.c]
3118 Remove undocumented legacy options UserKnownHostsFile2 and
3119 GlobalKnownHostsFile2 by making UserKnownHostsFile/GlobalKnownHostsFile
3120 accept multiple paths per line and making their defaults include
3121 known_hosts2; ok markus
Damien Miller8cb35872011-05-29 21:59:10 +10003122 - djm@cvs.openbsd.org 2011/05/23 03:31:31
3123 [regress/cfgmatch.sh]
3124 include testing of multiple/overridden AuthorizedKeysFiles
3125 refactor to simply daemon start/stop and get rid of racy constructs
Damien Millerd8478b62011-05-29 21:39:36 +10003126
Damien Miller14684a12011-05-20 11:23:07 +1000312720110520
3128 - (djm) [session.c] call setexeccon() before executing passwd for pw
3129 changes; bz#1891 reported by jchadima AT redhat.com; ok dtucker@
Damien Miller989bb7f2011-05-20 18:56:30 +10003130 - (djm) [aclocal.m4 configure.ac] since gcc-4.x ignores all -Wno-options
3131 options, we should corresponding -W-option when trying to determine
3132 whether it is accepted. Also includes a warning fix on the program
3133 fragment uses (bad main() return type).
3134 bz#1900 and bz#1901 reported by g.esp AT free.fr; ok dtucker@
Damien Millerec2eaa32011-05-20 18:57:14 +10003135 - (djm) [servconf.c] remove leftover droppings of AuthorizedKeysFile2
Damien Miller814ace02011-05-20 19:02:47 +10003136 - OpenBSD CVS Sync
3137 - djm@cvs.openbsd.org 2011/05/15 08:09:01
3138 [authfd.c monitor.c serverloop.c]
3139 use FD_CLOEXEC consistently; patch from zion AT x96.org
Damien Miller8f639fe2011-05-20 19:03:08 +10003140 - djm@cvs.openbsd.org 2011/05/17 07:13:31
3141 [key.c]
3142 fatal() if asked to generate a legacy ECDSA cert (these don't exist)
3143 and fix the regress test that was trying to generate them :)
Damien Miller5d74e582011-05-20 19:03:31 +10003144 - djm@cvs.openbsd.org 2011/05/20 00:55:02
3145 [servconf.c]
3146 the options TrustedUserCAKeys, RevokedKeysFile, AuthorizedKeysFile
3147 and AuthorizedPrincipalsFile were not being correctly applied in
3148 Match blocks, despite being overridable there; ok dtucker@
Damien Millerc2411902011-05-20 19:03:49 +10003149 - dtucker@cvs.openbsd.org 2011/05/20 02:00:19
3150 [servconf.c]
3151 Add comment documenting what should be after the preauth check. ok djm
Damien Millerf2e407e2011-05-20 19:04:14 +10003152 - djm@cvs.openbsd.org 2011/05/20 03:25:45
3153 [monitor.c monitor_wrap.c servconf.c servconf.h]
3154 use a macro to define which string options to copy between configs
3155 for Match. This avoids problems caused by forgetting to keep three
3156 code locations in perfect sync and ordering
3157
3158 "this is at once beautiful and horrible" + ok dtucker@
Damien Millerf67188f2011-05-20 19:06:48 +10003159 - djm@cvs.openbsd.org 2011/05/17 07:13:31
3160 [regress/cert-userkey.sh]
3161 fatal() if asked to generate a legacy ECDSA cert (these don't exist)
3162 and fix the regress test that was trying to generate them :)
Damien Miller3045b452011-05-20 19:07:45 +10003163 - djm@cvs.openbsd.org 2011/05/20 02:43:36
3164 [cert-hostkey.sh]
3165 another attempt to generate a v00 ECDSA key that broke the test
3166 ID sync only - portable already had this somehow
Damien Miller7b9451f2011-05-20 19:08:11 +10003167 - dtucker@cvs.openbsd.org 2011/05/20 05:19:50
3168 [dynamic-forward.sh]
3169 Prevent races in dynamic forwarding test; ok djm
Damien Milleracacced2011-05-20 19:08:40 +10003170 - dtucker@cvs.openbsd.org 2011/05/20 06:32:30
3171 [dynamic-forward.sh]
3172 fix dumb error in dynamic-forward test
Damien Miller14684a12011-05-20 11:23:07 +10003173
Damien Miller60432d82011-05-15 08:34:46 +1000317420110515
3175 - (djm) OpenBSD CVS Sync
3176 - djm@cvs.openbsd.org 2011/05/05 05:12:08
3177 [mux.c]
3178 gracefully fall back when ControlPath is too large for a
3179 sockaddr_un. ok markus@ as part of a larger diff
Damien Millerfd53abd2011-05-15 08:36:02 +10003180 - dtucker@cvs.openbsd.org 2011/05/06 01:03:35
3181 [sshd_config]
3182 clarify language about overriding defaults. bz#1892, from Petr Cerny
Damien Miller58a77e22011-05-15 08:36:29 +10003183 - djm@cvs.openbsd.org 2011/05/06 01:09:53
3184 [sftp.1]
3185 mention that IPv6 addresses must be enclosed in square brackets;
3186 bz#1845
Damien Miller78c40c32011-05-15 08:36:59 +10003187 - djm@cvs.openbsd.org 2011/05/06 02:05:41
3188 [sshconnect2.c]
3189 fix memory leak; bz#1849 ok dtucker@
Damien Millerd2ac5d72011-05-15 08:43:13 +10003190 - djm@cvs.openbsd.org 2011/05/06 21:14:05
3191 [packet.c packet.h]
3192 set traffic class for IPv6 traffic as we do for IPv4 TOS;
3193 patch from lionel AT mamane.lu via Colin Watson in bz#1855;
3194 ok markus@
Damien Millerdfc85fa2011-05-15 08:44:02 +10003195 - djm@cvs.openbsd.org 2011/05/06 21:18:02
3196 [ssh.c ssh_config.5]
3197 add a %L expansion (short-form of the local host name) for ControlPath;
3198 sync some more expansions with LocalCommand; ok markus@
Damien Millerfe924212011-05-15 08:44:45 +10003199 - djm@cvs.openbsd.org 2011/05/06 21:31:38
3200 [readconf.c ssh_config.5]
3201 support negated Host matching, e.g.
3202
3203 Host *.example.org !c.example.org
3204 User mekmitasdigoat
3205
3206 Will match "a.example.org", "b.example.org", but not "c.example.org"
3207 ok markus@
Damien Miller21771e22011-05-15 08:45:50 +10003208 - djm@cvs.openbsd.org 2011/05/06 21:34:32
3209 [clientloop.c mux.c readconf.c readconf.h ssh.c ssh_config.5]
3210 Add a RequestTTY ssh_config option to allow configuration-based
3211 control over tty allocation (like -t/-T); ok markus@
Damien Millera6bbbe42011-05-15 08:46:29 +10003212 - djm@cvs.openbsd.org 2011/05/06 21:38:58
3213 [ssh.c]
3214 fix dropping from previous diff
Damien Millerc067f622011-05-15 08:46:54 +10003215 - djm@cvs.openbsd.org 2011/05/06 22:20:10
3216 [PROTOCOL.mux]
3217 fix numbering; from bert.wesarg AT googlemail.com
Damien Miller486dd2e2011-05-15 08:47:18 +10003218 - jmc@cvs.openbsd.org 2011/05/07 23:19:39
3219 [ssh_config.5]
3220 - tweak previous
3221 - come consistency fixes
3222 ok djm
Damien Millerf4b32aa2011-05-15 08:47:43 +10003223 - jmc@cvs.openbsd.org 2011/05/07 23:20:25
3224 [ssh.1]
3225 +.It RequestTTY
Damien Miller555f3b82011-05-15 08:48:05 +10003226 - djm@cvs.openbsd.org 2011/05/08 12:52:01
3227 [PROTOCOL.mux clientloop.c clientloop.h mux.c]
3228 improve our behaviour when TTY allocation fails: if we are in
3229 RequestTTY=auto mode (the default), then do not treat at TTY
3230 allocation error as fatal but rather just restore the local TTY
3231 to cooked mode and continue. This is more graceful on devices that
3232 never allocate TTYs.
3233
3234 If RequestTTY is set to "yes" or "force", then failure to allocate
3235 a TTY is fatal.
3236
3237 ok markus@
Damien Miller32198242011-05-15 08:50:32 +10003238 - djm@cvs.openbsd.org 2011/05/10 05:46:46
3239 [authfile.c]
3240 despam debug() logs by detecting that we are trying to load a private key
3241 in key_try_load_public() and returning early; ok markus@
Damien Miller7c1b2c42011-05-15 08:51:05 +10003242 - djm@cvs.openbsd.org 2011/05/11 04:47:06
3243 [auth.c auth.h auth2-pubkey.c pathnames.h servconf.c servconf.h]
3244 remove support for authorized_keys2; it is a relic from the early days
3245 of protocol v.2 support and has been undocumented for many years;
3246 ok markus@
Damien Miller9d276b82011-05-15 08:51:43 +10003247 - djm@cvs.openbsd.org 2011/05/13 00:05:36
3248 [authfile.c]
3249 warn on unexpected key type in key_parse_private_type()
Damien Miller23f425b2011-05-15 08:58:15 +10003250 - (djm) [packet.c] unbreak portability #endif
Damien Miller60432d82011-05-15 08:34:46 +10003251
Darren Tuckerd6548fe2011-05-10 11:13:36 +1000325220110510
3253 - (dtucker) [openbsd-compat/openssl-compat.{c,h}] Bug #1882: fix
3254 --with-ssl-engine which was broken with the change from deprecated
3255 SSLeay_add_all_algorithms(). ok djm
3256
Darren Tucker343f75f2011-05-06 10:43:50 +1000325720110506
3258 - (dtucker) [openbsd-compat/regress/closefromtest.c] Bug #1875: add prototype
3259 for closefrom() in test code. Report from Dan Wallis via Gentoo.
3260
Damien Miller68790fe2011-05-05 11:19:13 +1000326120110505
3262 - (djm) [defines.h] Move up include of netinet/ip.h for IPTOS
3263 definitions. From des AT des.no
Damien Millerf22019b2011-05-05 13:48:37 +10003264 - (djm) [Makefile.in WARNING.RNG aclocal.m4 buildpkg.sh.in configure.ac]
3265 [entropy.c ssh-add.c ssh-agent.c ssh-keygen.c ssh-keyscan.c]
3266 [ssh-keysign.c ssh-pkcs11-helper.c ssh-rand-helper.8 ssh-rand-helper.c]
3267 [ssh.c ssh_prng_cmds.in sshd.c contrib/aix/buildbff.sh]
3268 [regress/README.regress] Remove ssh-rand-helper and all its
3269 tentacles. PRNGd seeding has been rolled into entropy.c directly.
3270 Thanks to tim@ for testing on affected platforms.
Damien Miller3fcdfd52011-05-05 14:04:11 +10003271 - OpenBSD CVS Sync
3272 - djm@cvs.openbsd.org 2011/03/10 02:52:57
Damien Millerb2da7d12011-05-05 14:04:50 +10003273 [auth2-gss.c auth2.c auth.h]
Damien Miller3fcdfd52011-05-05 14:04:11 +10003274 allow GSSAPI authentication to detect when a server-side failure causes
3275 authentication failure and don't count such failures against MaxAuthTries;
3276 bz#1244 from simon AT sxw.org.uk; ok markus@ before lock
Damien Millerc5219e72011-05-05 14:05:12 +10003277 - okan@cvs.openbsd.org 2011/03/15 10:36:02
3278 [ssh-keyscan.c]
3279 use timerclear macro
3280 ok djm@
Damien Miller58f1baf2011-05-05 14:06:15 +10003281 - stevesk@cvs.openbsd.org 2011/03/23 15:16:22
3282 [ssh-keygen.1 ssh-keygen.c]
3283 Add -A option. For each of the key types (rsa1, rsa, dsa and ecdsa)
3284 for which host keys do not exist, generate the host keys with the
3285 default key file path, an empty passphrase, default bits for the key
3286 type, and default comment. This will be used by /etc/rc to generate
3287 new host keys. Idea from deraadt.
3288 ok deraadt
Damien Miller4a4d1612011-05-05 14:06:39 +10003289 - stevesk@cvs.openbsd.org 2011/03/23 16:24:56
3290 [ssh-keygen.1]
3291 -q not used in /etc/rc now so remove statement.
Damien Miller11143192011-05-05 14:13:25 +10003292 - stevesk@cvs.openbsd.org 2011/03/23 16:50:04
3293 [ssh-keygen.c]
3294 remove -d, documentation removed >10 years ago; ok markus
Damien Miller3ca1eb32011-05-05 14:13:50 +10003295 - jmc@cvs.openbsd.org 2011/03/24 15:29:30
3296 [ssh-keygen.1]
3297 zap trailing whitespace;
Damien Miller044f4a62011-05-05 14:14:08 +10003298 - stevesk@cvs.openbsd.org 2011/03/24 22:14:54
3299 [ssh-keygen.c]
3300 use strcasecmp() for "clear" cert permission option also; ok djm
Damien Miller91475862011-05-05 14:14:34 +10003301 - stevesk@cvs.openbsd.org 2011/03/29 18:54:17
3302 [misc.c misc.h servconf.c]
3303 print ipqos friendly string for sshd -T; ok markus
3304 # sshd -Tf sshd_config|grep ipqos
3305 ipqos lowdelay throughput
Damien Miller884b63a2011-05-05 14:14:52 +10003306 - djm@cvs.openbsd.org 2011/04/12 04:23:50
3307 [ssh-keygen.c]
3308 fix -Wshadow
Damien Miller26b57ce2011-05-05 14:15:09 +10003309 - djm@cvs.openbsd.org 2011/04/12 05:32:49
3310 [sshd.c]
3311 exit with 0 status on SIGTERM; bz#1879
Damien Miller085c90f2011-05-05 14:15:33 +10003312 - djm@cvs.openbsd.org 2011/04/13 04:02:48
3313 [ssh-keygen.1]
3314 improve wording; bz#1861
Damien Millerad210322011-05-05 14:15:54 +10003315 - djm@cvs.openbsd.org 2011/04/13 04:09:37
3316 [ssh-keygen.1]
3317 mention valid -b sizes for ECDSA keys; bz#1862
Damien Miller6c3eec72011-05-05 14:16:22 +10003318 - djm@cvs.openbsd.org 2011/04/17 22:42:42
3319 [PROTOCOL.mux clientloop.c clientloop.h mux.c ssh.1 ssh.c]
3320 allow graceful shutdown of multiplexing: request that a mux server
3321 removes its listener socket and refuse future multiplexing requests;
3322 ok markus@
Damien Miller8cb1cda2011-05-05 14:16:56 +10003323 - djm@cvs.openbsd.org 2011/04/18 00:46:05
3324 [ssh-keygen.c]
3325 certificate options are supposed to be packed in lexical order of
3326 option name (though we don't actually enforce this at present).
3327 Move one up that was out of sequence
Damien Miller2ce12ef2011-05-05 14:17:18 +10003328 - djm@cvs.openbsd.org 2011/05/04 21:15:29
3329 [authfile.c authfile.h ssh-add.c]
3330 allow "ssh-add - < key"; feedback and ok markus@
Tim Rice19d81812011-05-04 21:44:25 -07003331 - (tim) [configure.ac] Add AC_LANG_SOURCE to OPENSSH_CHECK_CFLAG_COMPILE
3332 so autoreconf 2.68 is happy.
Tim Rice9abb6972011-05-04 23:06:59 -07003333 - (tim) [defines.h] Deal with platforms that do not have S_IFSOCK ok djm@
Damien Miller68790fe2011-05-05 11:19:13 +10003334
Darren Tuckere541aaa2011-02-21 21:41:29 +1100333520110221
3336 - (dtucker) [contrib/cygwin/ssh-host-config] From Corinna: revamp of the
3337 Cygwin-specific service installer script ssh-host-config. The actual
3338 functionality is the same, the revisited version is just more
3339 exact when it comes to check for problems which disallow to run
3340 certain aspects of the script. So, part of this script and the also
3341 rearranged service helper script library "csih" is to check if all
3342 the tools required to run the script are available on the system.
3343 The new script also is more thorough to inform the user why the
3344 script failed. Patch from vinschen at redhat com.
3345
Damien Miller0588beb2011-02-18 09:18:45 +1100334620110218
3347 - OpenBSD CVS Sync
3348 - djm@cvs.openbsd.org 2011/02/16 00:31:14
3349 [ssh-keysign.c]
3350 make hostbased auth with ECDSA keys work correctly. Based on patch
3351 by harvey.eneman AT oracle.com in bz#1858; ok markus@ (pre-lock)
3352
Darren Tucker3b9617e2011-02-06 13:24:35 +1100335320110206
3354 - (dtucker) [openbsd-compat/port-linux.c] Bug #1851: fix syntax error in
3355 selinux code. Patch from Leonardo Chiquitto
Darren Tuckerea676a62011-02-06 13:31:23 +11003356 - (dtucker) [contrib/cygwin/ssh-{host,user}-config] Add ECDSA key
3357 generation and simplify. Patch from Corinna Vinschen.
Darren Tucker3b9617e2011-02-06 13:24:35 +11003358
Damien Millerb407dd82011-02-04 11:46:39 +1100335920110204
3360 - OpenBSD CVS Sync
3361 - djm@cvs.openbsd.org 2011/01/31 21:42:15
3362 [PROTOCOL.mux]
3363 cut'n'pasto; from bert.wesarg AT googlemail.com
Damien Miller0a5f0122011-02-04 11:47:01 +11003364 - djm@cvs.openbsd.org 2011/02/04 00:44:21
3365 [key.c]
3366 fix uninitialised nonce variable; reported by Mateusz Kocielski
Damien Millera6981272011-02-04 11:47:20 +11003367 - djm@cvs.openbsd.org 2011/02/04 00:44:43
3368 [version.h]
3369 openssh-5.8
Damien Miller0d30b092011-02-04 12:43:36 +11003370 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
3371 [contrib/suse/openssh.spec] update versions in docs and spec files.
3372 - Release OpenSSH 5.8p1
Damien Millerb407dd82011-02-04 11:46:39 +11003373
Damien Millerd4a55042011-01-28 10:30:18 +1100337420110128
3375 - (djm) [openbsd-compat/port-linux.c] Check whether SELinux is enabled
3376 before attempting setfscreatecon(). Check whether matchpathcon()
3377 succeeded before using its result. Patch from cjwatson AT debian.org;
3378 bz#1851
3379
Tim Riced069c482011-01-26 12:32:12 -0800338020110127
3381 - (tim) [config.guess config.sub] Sync with upstream.
Tim Rice648f8762011-01-26 12:38:57 -08003382 - (tim) [configure.ac] Consistent M4 quoting throughout, updated obsolete
3383 AC_TRY_COMPILE with AC_COMPILE_IFELSE, updated obsolete AC_TRY_LINK with
3384 AC_LINK_IFELSE, updated obsolete AC_TRY_RUN with AC_RUN_IFELSE, misc white
3385 space changes for consistency/readability. Makes autoconf 2.68 happy.
3386 "Nice work" djm
Tim Riced069c482011-01-26 12:32:12 -08003387
Damien Miller71adf122011-01-25 12:16:15 +1100338820110125
3389 - (djm) [configure.ac Makefile.in ssh.c openbsd-compat/port-linux.c
3390 openbsd-compat/port-linux.h] Move SELinux-specific code from ssh.c to
3391 port-linux.c to avoid compilation errors. Add -lselinux to ssh when
3392 building with SELinux support to avoid linking failure; report from
3393 amk AT spamfence.net; ok dtucker
3394
Darren Tucker79241372011-01-22 09:37:01 +1100339520110122
3396 - (dtucker) [configure.ac openbsd-compat/openssl-compat.{c,h}] Add
3397 RSA_get_default_method() for the benefit of openssl versions that don't
3398 have it (at least openssl-engine-0.9.6b). Found and tested by Kevin Brott,
3399 ok djm@.
Damien Millerad4b1ad2011-01-22 20:21:33 +11003400 - OpenBSD CVS Sync
3401 - djm@cvs.openbsd.org 2011/01/22 09:18:53
3402 [version.h]
3403 crank to OpenSSH-5.7
Damien Miller966accc2011-01-22 20:23:10 +11003404 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
3405 [contrib/suse/openssh.spec] update versions in docs and spec files.
Damien Miller6f8f04b2011-01-22 20:25:11 +11003406 - (djm) Release 5.7p1
Darren Tucker79241372011-01-22 09:37:01 +11003407
Tim Rice15e1b4d2011-01-18 20:47:04 -0800340820110119
3409 - (tim) [contrib/caldera/openssh.spec] Use CFLAGS from Makefile instead
3410 of RPM so build completes. Signatures were changed to .asc since 4.1p1.
Damien Millere323ebc2011-01-19 23:12:27 +11003411 - (djm) [configure.ac] Disable ECC on OpenSSL <0.9.8g. Releases prior to
3412 0.9.8 lacked it, and 0.9.8a through 0.9.8d have proven buggy in pre-
3413 release testing (random crashes and failure to load ECC keys).
3414 ok dtucker@
Tim Rice15e1b4d2011-01-18 20:47:04 -08003415
Damien Miller369c0e82011-01-17 10:51:40 +1100341620110117
3417 - (djm) [regress/Makefile] use $TEST_SSH_KEYGEN instead of the one in
3418 $PATH, fix cleanup of droppings; reported by openssh AT
3419 roumenpetrov.info; ok dtucker@
Damien Millerfd3669e2011-01-17 11:20:18 +11003420 - (djm) [regress/agent-ptrace.sh] Fix false failure on OS X by adding
3421 its unique snowflake of a gdb error to the ones we look for.
Damien Miller1ccbfa82011-01-17 11:52:40 +11003422 - (djm) [regress/agent-getpeereid.sh] leave stdout attached when running
3423 ssh-add to avoid $SUDO failures on Linux
Darren Tucker0c93adc2011-01-17 11:55:59 +11003424 - (dtucker) [openbsd-compat/port-linux.c] Bug #1838: Add support for the new
3425 Linux OOM-killer magic values that changed in 2.6.36 kernels, with fallback
3426 to the old values. Feedback from vapier at gentoo org and djm, ok djm.
Damien Miller58497782011-01-17 16:17:09 +11003427 - (djm) [configure.ac regress/agent-getpeereid.sh regress/multiplex.sh]
3428 [regress/sftp-glob.sh regress/test-exec.sh] Rework how feature tests are
3429 disabled on platforms that do not support them; add a "config_defined()"
3430 shell function that greps for defines in config.h and use them to decide
3431 on feature tests.
3432 Convert a couple of existing grep's over config.h to use the new function
3433 Add a define "FILESYSTEM_NO_BACKSLASH" for filesystem that can't represent
3434 backslash characters in filenames, enable it for Cygwin and use it to turn
3435 of tests for quotes backslashes in sftp-glob.sh.
3436 based on discussion with vinschen AT redhat.com and dtucker@; ok dtucker@
Tim Rice6dfcd342011-01-16 22:53:56 -08003437 - (tim) [regress/agent-getpeereid.sh] shell portability fix.
Darren Tucker263d43d2011-01-17 18:50:22 +11003438 - (dtucker) [openbsd-compat/port-linux.c] Fix minor bug caught by -Werror on
3439 the tinderbox.
Darren Tuckerea52a822011-01-17 21:15:27 +11003440 - (dtucker) [LICENCE Makefile.in audit-bsm.c audit-linux.c audit.c audit.h
3441 configure.ac defines.h loginrec.c] Bug #1402: add linux audit subsystem
3442 support, based on patches from Tomas Mraz and jchadima at redhat.
Damien Miller369c0e82011-01-17 10:51:40 +11003443
Darren Tucker50c61f82011-01-16 18:28:09 +1100344420110116
3445 - (dtucker) [Makefile.in configure.ac regress/kextype.sh] Skip sha256-based
3446 on configurations that don't have it.
Damien Miller4791f9d2011-01-16 23:16:53 +11003447 - OpenBSD CVS Sync
3448 - djm@cvs.openbsd.org 2011/01/16 11:50:05
3449 [clientloop.c]
3450 Use atomicio when flushing protocol 1 std{out,err} buffers at
3451 session close. This was a latent bug exposed by setting a SIGCHLD
3452 handler and spotted by kevin.brott AT gmail.com; ok dtucker@
Damien Miller6fb6fd52011-01-16 23:17:45 +11003453 - djm@cvs.openbsd.org 2011/01/16 11:50:36
3454 [sshconnect.c]
3455 reset the SIGPIPE handler when forking to execute child processes;
3456 ok dtucker@
Damien Millercfd6e4f2011-01-16 23:18:33 +11003457 - djm@cvs.openbsd.org 2011/01/16 12:05:59
3458 [clientloop.c]
3459 a couple more tweaks to the post-close protocol 1 stderr/stdout flush:
3460 now that we use atomicio(), convert them from while loops to if statements
3461 add test and cast to compile cleanly with -Wsigned
Darren Tucker50c61f82011-01-16 18:28:09 +11003462
Darren Tucker08f83882011-01-16 18:24:04 +1100346320110114
Damien Miller445c9a52011-01-14 12:01:29 +11003464 - OpenBSD CVS Sync
3465 - djm@cvs.openbsd.org 2011/01/13 21:54:53
3466 [mux.c]
3467 correct error messages; patch from bert.wesarg AT googlemail.com
Damien Miller42747df2011-01-14 12:01:50 +11003468 - djm@cvs.openbsd.org 2011/01/13 21:55:25
3469 [PROTOCOL.mux]
3470 correct protocol names and add a couple of missing protocol number
3471 defines; patch from bert.wesarg AT googlemail.com
Damien Millere9b40482011-01-14 14:47:37 +11003472 - (djm) [Makefile.in] Use shell test to disable ecdsa key generating in
3473 host-key-force target rather than a substitution that is replaced with a
3474 comment so that the Makefile.in is still a syntactically valid Makefile
3475 (useful to run the distprep target)
Tim Rice02d99da2011-01-13 22:20:27 -08003476 - (tim) [regress/cert-hostkey.sh] Typo. Missing $ on variable name.
Tim Ricec5c346b2011-01-13 22:36:14 -08003477 - (tim) [regress/cert-hostkey.sh] Add missing TEST_SSH_ECC guard around some
3478 ecdsa bits.
Damien Miller445c9a52011-01-14 12:01:29 +11003479
Darren Tucker08f83882011-01-16 18:24:04 +1100348020110113
Damien Miller1708cb72011-01-13 12:21:34 +11003481 - (djm) [misc.c] include time.h for nanosleep() prototype
Tim Ricecce927c2011-01-12 19:06:31 -08003482 - (tim) [Makefile.in] test the ECC bits if we have the capability. ok djm
Tim Rice9b87a5c2011-01-12 22:35:43 -08003483 - (tim) [Makefile.in configure.ac opensshd.init.in] Add support for generating
3484 ecdsa keys. ok djm.
Damien Millerff22df52011-01-13 21:05:27 +11003485 - (djm) [entropy.c] cast OPENSSL_VERSION_NUMBER to u_long to avoid
3486 gcc warning on platforms where it defaults to int
Damien Millercbaf8e62011-01-13 21:08:27 +11003487 - (djm) [regress/Makefile] add a few more generated files to the clean
3488 target
Damien Miller9b160862011-01-13 22:00:20 +11003489 - (djm) [myproposal.h] Fix reversed OPENSSL_VERSION_NUMBER test and bad
3490 #define that was causing diffie-hellman-group-exchange-sha256 to be
3491 incorrectly disabled
Damien Miller52788062011-01-13 22:05:14 +11003492 - (djm) [regress/kextype.sh] Testing diffie-hellman-group-exchange-sha256
3493 should not depend on ECC support
Damien Miller1708cb72011-01-13 12:21:34 +11003494
Darren Tucker08f83882011-01-16 18:24:04 +1100349520110112
Damien Millerb66e9172011-01-12 13:30:18 +11003496 - OpenBSD CVS Sync
3497 - nicm@cvs.openbsd.org 2010/10/08 21:48:42
3498 [openbsd-compat/glob.c]
3499 Extend GLOB_LIMIT to cover readdir and stat and bump the malloc limit
3500 from ARG_MAX to 64K.
3501 Fixes glob-using programs (notably ftp) able to be triggered to hit
3502 resource limits.
3503 Idea from a similar NetBSD change, original problem reported by jasper@.
3504 ok millert tedu jasper
Damien Miller4927aaf2011-01-12 13:32:03 +11003505 - djm@cvs.openbsd.org 2011/01/12 01:53:14
3506 avoid some integer overflows mostly with GLOB_APPEND and GLOB_DOOFFS
3507 and sanity check arguments (these will be unnecessary when we switch
3508 struct glob members from being type into to size_t in the future);
3509 "looks ok" tedu@ feedback guenther@
Damien Miller945aa0c2011-01-12 13:34:02 +11003510 - (djm) [configure.ac] Turn on -Wno-unused-result for gcc >= 4.4 to avoid
3511 silly warnings on write() calls we don't care succeed or not.
Damien Miller134d02a2011-01-12 16:00:37 +11003512 - (djm) [configure.ac] Fix broken test for gcc >= 4.4 with per-compiler
3513 flag tests that don't depend on gcc version at all; suggested by and
3514 ok dtucker@
Damien Millerb66e9172011-01-12 13:30:18 +11003515
Tim Rice076a3b92011-01-10 12:56:26 -0800351620110111
3517 - (tim) [regress/host-expand.sh] Fix for building outside of read only
3518 source tree.
Damien Miller81ad4b12011-01-11 17:02:23 +11003519 - (djm) [platform.c] Some missing includes that show up under -Werror
Damien Millerb73b6fd2011-01-11 17:18:56 +11003520 - OpenBSD CVS Sync
3521 - djm@cvs.openbsd.org 2011/01/08 10:51:51
3522 [clientloop.c]
3523 use host and not options.hostname, as the latter may have unescaped
3524 substitution characters
Damien Millera256c8d2011-01-11 17:20:05 +11003525 - djm@cvs.openbsd.org 2011/01/11 06:06:09
3526 [sshlogin.c]
3527 fd leak on error paths; from zinovik@
3528 NB. Id sync only; we use loginrec.c that was also audited and fixed
3529 recently
Damien Miller821de0a2011-01-11 17:20:29 +11003530 - djm@cvs.openbsd.org 2011/01/11 06:13:10
3531 [clientloop.c ssh-keygen.c sshd.c]
3532 some unsigned long long casts that make things a bit easier for
3533 portable without resorting to dropping PRIu64 formats everywhere
Tim Rice076a3b92011-01-10 12:56:26 -08003534
Damien Millere63b7f22011-01-09 09:19:50 +1100353520110109
3536 - (djm) [Makefile.in] list ssh_host_ecdsa key in PATHSUBS; spotted by
3537 openssh AT roumenpetrov.info
3538
Damien Miller996384d2011-01-08 21:58:20 +1100353920110108
3540 - (djm) [regress/keytype.sh] s/echo -n/echon/ to repair failing regress
3541 test on OSX and others. Reported by imorgan AT nas.nasa.gov
3542
Damien Miller322125b2011-01-07 09:50:08 +1100354320110107
3544 - (djm) [regress/cert-hostkey.sh regress/cert-userkey.sh] fix shell test
3545 for no-ECC case. Patch from cristian.ionescu-idbohrn AT axis.com
Damien Miller83f8a402011-01-07 09:51:17 +11003546 - djm@cvs.openbsd.org 2011/01/06 22:23:53
3547 [ssh.c]
3548 unbreak %n expansion in LocalCommand; patch from bert.wesarg AT
3549 googlemail.com; ok markus@
Damien Miller64abf312011-01-07 09:51:52 +11003550 - djm@cvs.openbsd.org 2011/01/06 22:23:02
3551 [clientloop.c]
3552 when exiting due to ServerAliveTimeout, mention the hostname that caused
3553 it (useful with backgrounded controlmaster)
Damien Miller7d06b002011-01-07 09:54:20 +11003554 - djm@cvs.openbsd.org 2011/01/06 22:46:21
3555 [regress/Makefile regress/host-expand.sh]
3556 regress test for LocalCommand %n expansion from bert.wesarg AT
3557 googlemail.com; ok markus@
Damien Millered3a8eb2011-01-07 10:02:52 +11003558 - djm@cvs.openbsd.org 2011/01/06 23:01:35
3559 [sshconnect.c]
3560 reset SIGCHLD handler to SIG_DFL when execuring LocalCommand;
3561 ok markus@
Damien Miller322125b2011-01-07 09:50:08 +11003562
Damien Millerf1211432011-01-06 22:40:30 +1100356320110106
3564 - (djm) OpenBSD CVS Sync
3565 - markus@cvs.openbsd.org 2010/12/08 22:46:03
3566 [scp.1 scp.c]
3567 add a new -3 option to scp: Copies between two remote hosts are
3568 transferred through the local host. Without this option the data
3569 is copied directly between the two remote hosts. ok djm@ (bugzilla #1837)
Damien Miller907998d2011-01-06 22:41:21 +11003570 - jmc@cvs.openbsd.org 2010/12/09 14:13:33
3571 [scp.1 scp.c]
3572 scp.1: grammer fix
3573 scp.c: add -3 to usage()
Damien Miller05c89972011-01-06 22:42:04 +11003574 - markus@cvs.openbsd.org 2010/12/14 11:59:06
3575 [sshconnect.c]
3576 don't mention key type in key-changed-warning, since we also print
3577 this warning if a new key type appears. ok djm@
Damien Miller106079c2011-01-06 22:43:44 +11003578 - djm@cvs.openbsd.org 2010/12/15 00:49:27
3579 [readpass.c]
3580 fix ControlMaster=ask regression
3581 reset SIGCHLD handler before fork (and restore it after) so we don't miss
3582 the the askpass child's exit status. Correct test for exit status/signal to
3583 account for waitpid() failure; with claudio@ ok claudio@ markus@
Damien Millerde53fd02011-01-06 22:44:18 +11003584 - djm@cvs.openbsd.org 2010/12/24 21:41:48
3585 [auth-options.c]
3586 don't send the actual forced command in a debug message; ok markus deraadt
Damien Miller8ad960b2011-01-06 22:44:44 +11003587 - otto@cvs.openbsd.org 2011/01/04 20:44:13
3588 [ssh-keyscan.c]
3589 handle ecdsa-sha2 with various key lengths; hint and ok djm@
Damien Millerf1211432011-01-06 22:40:30 +11003590
Damien Miller30a69e72011-01-04 08:16:27 +1100359120110104
3592 - (djm) [configure.ac Makefile.in] Use mandoc as preferred manpage
3593 formatter if it is present, followed by nroff and groff respectively.
3594 Fixes distprep target on OpenBSD (which has bumped groff/nroff to ports
3595 in favour of mandoc). feedback and ok tim
3596
359720110103
Damien Millerd197fd62011-01-03 14:48:14 +11003598 - (djm) [Makefile.in] revert local hack I didn't intend to commit
3599
360020110102
Damien Miller4a06f922011-01-02 21:43:59 +11003601 - (djm) [loginrec.c] Fix some fd leaks on error paths. ok dtucker
Damien Miller41bccf72011-01-02 21:53:07 +11003602 - (djm) [configure.ac] Check whether libdes is needed when building
3603 with Heimdal krb5 support. On OpenBSD this library no longer exists,
3604 so linking it unconditionally causes a build failure; ok dtucker
Damien Miller4a06f922011-01-02 21:43:59 +11003605
Damien Miller928362d2010-12-26 14:26:45 +1100360620101226
3607 - (dtucker) OpenBSD CVS Sync
3608 - djm@cvs.openbsd.org 2010/12/08 04:02:47
3609 [ssh_config.5 sshd_config.5]
3610 explain that IPQoS arguments are separated by whitespace; iirc requested
3611 by jmc@ a while back
3612
Darren Tucker37bb7562010-12-05 08:46:05 +1100361320101205
3614 - (dtucker) openbsd-compat/openssl-compat.c] remove sleep leftover from
3615 debugging. Spotted by djm.
Darren Tucker7336b902010-12-05 09:00:30 +11003616 - (dtucker) OpenBSD CVS Sync
3617 - djm@cvs.openbsd.org 2010/12/03 23:49:26
3618 [schnorr.c]
3619 check that g^x^q === 1 mod p; recommended by JPAKE author Feng Hao
3620 (this code is still disabled, but apprently people are treating it as
3621 a reference implementation)
Darren Tuckeradab6f12010-12-05 09:01:47 +11003622 - djm@cvs.openbsd.org 2010/12/03 23:55:27
3623 [auth-rsa.c]
3624 move check for revoked keys to run earlier (in auth_rsa_key_allowed)
3625 bz#1829; patch from ldv AT altlinux.org; ok markus@
Darren Tuckeraf1f9092010-12-05 09:02:47 +11003626 - djm@cvs.openbsd.org 2010/12/04 00:18:01
3627 [sftp-server.c sftp.1 sftp-client.h sftp.c PROTOCOL sftp-client.c]
3628 add a protocol extension to support a hard link operation. It is
3629 available through the "ln" command in the client. The old "ln"
3630 behaviour of creating a symlink is available using its "-s" option
3631 or through the preexisting "symlink" command; based on a patch from
3632 miklos AT szeredi.hu in bz#1555; ok markus@
Darren Tucker094f1e92010-12-05 09:03:31 +11003633 - djm@cvs.openbsd.org 2010/12/04 13:31:37
3634 [hostfile.c]
3635 fix fd leak; spotted and ok dtucker
Darren Tucker4288c532010-12-05 09:45:50 +11003636 - djm@cvs.openbsd.org 2010/12/04 00:21:19
3637 [regress/sftp-cmds.sh]
3638 adjust for hard-link support
Darren Tucker7e1a5a42010-12-05 09:29:31 +11003639 - (dtucker) [regress/Makefile] Id sync.
Darren Tucker37bb7562010-12-05 08:46:05 +11003640
Damien Millerd89745b2010-12-03 10:50:26 +1100364120101204
3642 - (djm) [openbsd-compat/bindresvport.c] Use arc4random_uniform(range)
3643 instead of (arc4random() % range)
Darren Tuckerebdef762010-12-04 23:20:50 +11003644 - (dtucker) [configure.ac moduli.c openbsd-compat/openssl-compat.{c,h}] Add
3645 shims for the new, non-deprecated OpenSSL key generation functions for
3646 platforms that don't have the new interfaces.
Damien Millerd89745b2010-12-03 10:50:26 +11003647
Damien Miller188ea812010-12-01 11:50:14 +1100364820101201
3649 - OpenBSD CVS Sync
3650 - deraadt@cvs.openbsd.org 2010/11/20 05:12:38
3651 [auth2-pubkey.c]
3652 clean up cases of ;;
Damien Miller2cd62932010-12-01 11:50:35 +11003653 - djm@cvs.openbsd.org 2010/11/21 01:01:13
3654 [clientloop.c misc.c misc.h ssh-agent.1 ssh-agent.c]
3655 honour $TMPDIR for client xauth and ssh-agent temporary directories;
3656 feedback and ok markus@
Damien Millera2327922010-12-01 12:01:21 +11003657 - djm@cvs.openbsd.org 2010/11/21 10:57:07
3658 [authfile.c]
3659 Refactor internals of private key loading and saving to work on memory
3660 buffers rather than directly on files. This will make a few things
3661 easier to do in the future; ok markus@
Damien Miller6a740e72010-12-01 12:01:51 +11003662 - djm@cvs.openbsd.org 2010/11/23 02:35:50
3663 [auth.c]
3664 use strict_modes already passed as function argument over referencing
3665 global options.strict_modes
Damien Millerd0fdd682010-12-01 12:02:14 +11003666 - djm@cvs.openbsd.org 2010/11/23 23:57:24
3667 [clientloop.c]
3668 avoid NULL deref on receiving a channel request on an unknown or invalid
3669 channel; report bz#1842 from jchadima AT redhat.com; ok dtucker@
Damien Millerb7f827a2010-12-01 12:02:35 +11003670 - djm@cvs.openbsd.org 2010/11/24 01:24:14
3671 [channels.c]
3672 remove a debug() that pollutes stderr on client connecting to a server
3673 in debug mode (channel_close_fds is called transitively from the session
3674 code post-fork); bz#1719, ok dtucker
Damien Millerf80c3de2010-12-01 12:02:59 +11003675 - djm@cvs.openbsd.org 2010/11/25 04:10:09
3676 [session.c]
3677 replace close() loop for fds 3->64 with closefrom();
3678 ok markus deraadt dtucker
Damien Miller87dc0a42010-12-01 12:03:19 +11003679 - djm@cvs.openbsd.org 2010/11/26 05:52:49
3680 [scp.c]
3681 Pass through ssh command-line flags and options when doing remote-remote
3682 transfers, e.g. to enable agent forwarding which is particularly useful
3683 in this case; bz#1837 ok dtucker@
Damien Miller03c0e532010-12-01 12:03:39 +11003684 - markus@cvs.openbsd.org 2010/11/29 18:57:04
3685 [authfile.c]
3686 correctly load comment for encrypted rsa1 keys;
3687 report/fix Joachim Schipper; ok djm@
Damien Millerd925dcd2010-12-01 12:21:51 +11003688 - djm@cvs.openbsd.org 2010/11/29 23:45:51
3689 [auth.c hostfile.c hostfile.h ssh.c ssh_config.5 sshconnect.c]
3690 [sshconnect.h sshconnect2.c]
3691 automatically order the hostkeys requested by the client based on
3692 which hostkeys are already recorded in known_hosts. This avoids
3693 hostkey warnings when connecting to servers with new ECDSA keys
3694 that are preferred by default; with markus@
Damien Miller188ea812010-12-01 11:50:14 +11003695
Darren Tuckerd9957122010-11-24 10:09:13 +1100369620101124
3697 - (dtucker) [platform.c session.c] Move the getluid call out of session.c and
3698 into the platform-specific code Only affects SCO, tested by and ok tim@.
Damien Miller88e341e2010-11-24 10:36:15 +11003699 - (djm) [loginrec.c] Relax permission requirement on btmp logs to allow
3700 group read/write. ok dtucker@
Darren Tucker4b6cbf72010-11-24 10:46:37 +11003701 - (dtucker) [packet.c] Remove redundant local declaration of "int tos".
Damien Miller73de86a2010-11-24 10:50:04 +11003702 - (djm) [defines.h] Add IP DSCP defines
Darren Tuckerd9957122010-11-24 10:09:13 +11003703
Darren Tucker9e0ff7a2010-11-22 17:59:00 +1100370420101122
3705 - (dtucker) Bug #1840: fix warning when configuring --with-ssl-engine, patch
3706 from vapier at gentoo org.
3707
Damien Miller7a221a12010-11-20 15:14:29 +1100370820101120
3709 - OpenBSD CVS Sync
3710 - djm@cvs.openbsd.org 2010/11/05 02:46:47
3711 [packet.c]
3712 whitespace KNF
Damien Miller4499f4c2010-11-20 15:15:49 +11003713 - djm@cvs.openbsd.org 2010/11/10 01:33:07
3714 [kexdhc.c kexdhs.c kexgexc.c kexgexs.c key.c moduli.c]
3715 use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED.
3716 these have been around for years by this time. ok markus
Damien Miller0dac6fb2010-11-20 15:19:38 +11003717 - djm@cvs.openbsd.org 2010/11/13 23:27:51
3718 [clientloop.c misc.c misc.h packet.c packet.h readconf.c readconf.h]
3719 [servconf.c servconf.h session.c ssh.c ssh_config.5 sshd_config.5]
3720 allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead of
3721 hardcoding lowdelay/throughput.
3722
3723 bz#1733 patch from philipp AT redfish-solutions.com; ok markus@ deraadt@
Damien Miller8e1ea4e2010-11-20 15:20:10 +11003724 - jmc@cvs.openbsd.org 2010/11/15 07:40:14
3725 [ssh_config.5]
3726 libary -> library;
Damien Miller0a184732010-11-20 15:21:03 +11003727 - jmc@cvs.openbsd.org 2010/11/18 15:01:00
3728 [scp.1 sftp.1 ssh.1 sshd_config.5]
3729 add IPQoS to the various -o lists, and zap some trailing whitespace;
Damien Miller7a221a12010-11-20 15:14:29 +11003730
Damien Millerdd190dd2010-11-11 14:17:02 +1100373120101111
3732 - (djm) [servconf.c ssh-add.c ssh-keygen.c] don't look for ECDSA keys on
3733 platforms that don't support ECC. Fixes some spurious warnings reported
3734 by tim@
3735
Tim Ricee426f5e2010-11-08 09:15:14 -0800373620101109
3737 - (tim) [regress/kextype.sh] Not all platforms have time in /usr/bin.
3738 Feedback from dtucker@
Tim Ricec7a8af02010-11-08 14:26:23 -08003739 - (tim) [configure.ac openbsd-compat/bsd-misc.h openbsd-compat/bsd-misc.c] Add
3740 support for platforms missing isblank(). ok djm@
Tim Ricee426f5e2010-11-08 09:15:14 -08003741
Tim Rice522262f2010-11-07 13:00:27 -0800374220101108
3743 - (tim) [regress/Makefile] Fixes to allow building/testing outside source
3744 tree.
Tim Ricec10aeaa2010-11-07 13:03:11 -08003745 - (tim) [regress/kextype.sh] Shell portability fix.
Tim Rice522262f2010-11-07 13:00:27 -08003746
Darren Tuckerd1ece6e2010-11-07 18:05:54 +1100374720101107
3748 - (dtucker) [platform.c] includes.h instead of defines.h so that we get
3749 the correct typedefs.
3750
Damien Miller3a0e9f62010-11-05 10:16:34 +1100375120101105
Damien Miller34ee4202010-11-05 10:52:37 +11003752 - (djm) [loginrec.c loginrec.h] Use correct uid_t/pid_t types instead of
3753 int. Should fix bz#1817 cleanly; ok dtucker@
Damien Miller3a0e9f62010-11-05 10:16:34 +11003754 - OpenBSD CVS Sync
3755 - djm@cvs.openbsd.org 2010/09/22 12:26:05
3756 [regress/Makefile regress/kextype.sh]
3757 regress test for each of the key exchange algorithms that we support
Damien Millerb472a902010-11-05 10:19:49 +11003758 - djm@cvs.openbsd.org 2010/10/28 11:22:09
3759 [authfile.c key.c key.h ssh-keygen.c]
3760 fix a possible NULL deref on loading a corrupt ECDH key
3761
3762 store ECDH group information in private keys files as "named groups"
3763 rather than as a set of explicit group parameters (by setting
3764 the OPENSSL_EC_NAMED_CURVE flag). This makes for shorter key files and
3765 retrieves the group's OpenSSL NID that we need for various things.
Damien Miller55fa5652010-11-05 10:20:14 +11003766 - jmc@cvs.openbsd.org 2010/10/28 18:33:28
3767 [scp.1 ssh-add.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5]
3768 knock out some "-*- nroff -*-" lines;
Damien Miller07331212010-11-05 10:20:31 +11003769 - djm@cvs.openbsd.org 2010/11/04 02:45:34
3770 [sftp-server.c]
3771 umask should be parsed as octal. reported by candland AT xmission.com;
3772 ok markus@
Darren Tucker97528352010-11-05 12:03:05 +11003773 - (dtucker) [configure.ac platform.{c,h} session.c
3774 openbsd-compat/port-solaris.{c,h}] Bug #1824: Add Solaris Project support.
3775 Patch from cory.erickson at csu mnscu edu with a bit of rework from me.
3776 ok djm@
Darren Tucker920612e2010-11-05 12:36:15 +11003777 - (dtucker) [platform.c platform.h session.c] Add a platform hook to run
3778 after the user's groups are established and move the selinux calls into it.
Darren Tucker4db38072010-11-05 12:41:13 +11003779 - (dtucker) [platform.c session.c] Move the AIX setpcred+chroot hack into
3780 platform.c
Darren Tucker44a97be2010-11-05 12:45:18 +11003781 - (dtucker) [platform.c session.c] Move the BSDI setpgrp into platform.c.
Darren Tuckerfd4d8aa2010-11-05 12:50:41 +11003782 - (dtucker) [platform.c] Only call setpgrp on BSDI if running as root to
3783 retain previous behavior.
Darren Tucker728d8372010-11-05 13:00:05 +11003784 - (dtucker) [platform.c session.c] Move the PAM credential establishment for
3785 the LOGIN_CAP case into platform.c.
Darren Tucker7a8afe32010-11-05 13:07:24 +11003786 - (dtucker) platform.c session.c] Move the USE_LIBIAF fragment into
3787 platform.c
Darren Tucker0b2ee642010-11-05 13:29:25 +11003788 - (dtucker) [platform.c session.c] Move aix_usrinfo frament into platform.c.
3789 - (dtucker) [platform.c session.c] Move irix setusercontext fragment into
3790 platform.c.
Darren Tuckercc124182010-11-05 13:32:52 +11003791 - (dtucker) [platform.c session.c] Move PAM credential establishment for the
3792 non-LOGIN_CAP case into platform.c.
Darren Tuckerb12fe272010-11-05 14:47:01 +11003793 - (dtucker) [platform.c platform.h session.c] Move the Cygwin special-case
3794 check into platform.c
Darren Tuckerb69e0332010-11-05 18:19:15 +11003795 - (dtucker) [regress/keytype.sh] Import new test.
Darren Tuckereab5f0d2010-11-05 18:23:38 +11003796 - (dtucker) [Makefile configure.ac regress/Makefile regress/keytype.sh]
3797 Import recent changes to regress/Makefile, pass a flag to enable ECC tests
3798 from configure through to regress/Makefile and use it in the tests.
Darren Tucker345178d2010-11-05 18:35:52 +11003799 - (dtucker) [regress/kextype.sh] Add missing "test".
Darren Tuckerf619d1c2010-11-05 18:41:50 +11003800 - (dtucker) [regress/kextype.sh] Make sha256 test depend on ECC. This is not
3801 strictly correct since while ECC requires sha256 the reverse is not true
3802 however it does prevent spurious test failures.
Darren Tucker9283d8c2010-11-05 18:56:08 +11003803 - (dtucker) [platform.c] Need servconf.h and extern options.
Damien Miller3a0e9f62010-11-05 10:16:34 +11003804
Tim Ricebdd3e672010-10-24 18:35:55 -0700380520101025
3806 - (tim) [openbsd-compat/glob.h] Remove sys/cdefs.h include that came with
3807 1.12 to unbreak Solaris build.
3808 ok djm@
Darren Tucker54b1f312010-10-25 16:54:28 +11003809 - (dtucker) [defines.h] Use SIZE_T_MAX for SIZE_MAX for platforms that have a
3810 native one.
Tim Ricebdd3e672010-10-24 18:35:55 -07003811
Darren Tuckera5393932010-10-24 10:47:30 +1100381220101024
3813 - (dtucker) [includes.h] Add missing ifdef GLOB_HAS_GL_STATV to fix build.
Darren Tuckerbfd9b1b2010-10-24 11:19:26 +11003814 - (dtucker) [regress/cert-hostkey.sh] Disable ECC-based tests on platforms
3815 which don't have ECC support in libcrypto.
Darren Tuckerd633fef2010-10-24 11:33:07 +11003816 - (dtucker) [regress/cert-userkey.sh] Disable ECC-based tests on platforms
3817 which don't have ECC support in libcrypto.
Darren Tucker7bc236d2010-10-24 11:58:43 +11003818 - (dtucker) [defines.h] Add SIZE_MAX for the benefit of platforms that don't
3819 have it.
Darren Tuckerd78739a2010-10-24 10:56:32 +11003820 - (dtucker) OpenBSD CVS Sync
3821 - sthen@cvs.openbsd.org 2010/10/23 22:06:12
3822 [sftp.c]
3823 escape '[' in filename tab-completion; fix a type while there.
3824 ok djm@
Darren Tuckera5393932010-10-24 10:47:30 +11003825
Damien Miller68512c02010-10-21 15:21:11 +1100382620101021
3827 - OpenBSD CVS Sync
3828 - dtucker@cvs.openbsd.org 2010/10/12 02:22:24
3829 [mux.c]
3830 Typo in confirmation message. bz#1827, patch from imorgan at
3831 nas nasa gov
Damien Miller6fd2d7d2010-10-21 15:27:14 +11003832 - djm@cvs.openbsd.org 2010/08/31 12:24:09
3833 [regress/cert-hostkey.sh regress/cert-userkey.sh]
3834 tests for ECDSA certificates
Damien Miller68512c02010-10-21 15:21:11 +11003835
Damien Miller1f789802010-10-11 22:35:22 +1100383620101011
Damien Miller47e57bf2010-10-12 13:28:12 +11003837 - (djm) [canohost.c] Zero a4 instead of addr to better match type.
3838 bz#1825, reported by foo AT mailinator.com
Damien Miller9c0c31d2010-10-12 13:30:44 +11003839 - (djm) [sshconnect.c] Need signal.h for prototype for kill(2)
Damien Miller47e57bf2010-10-12 13:28:12 +11003840
384120101011
Damien Miller1f789802010-10-11 22:35:22 +11003842 - (djm) [configure.ac] Use = instead of == in shell tests. Patch from
3843 dr AT vasco.com
3844
Damien Milleraa180632010-10-07 21:25:27 +1100384520101007
Damien Miller9a3d0dc2010-10-07 22:06:42 +11003846 - (djm) [ssh-agent.c] Fix type for curve name.
Damien Milleraa180632010-10-07 21:25:27 +11003847 - (djm) OpenBSD CVS Sync
3848 - matthew@cvs.openbsd.org 2010/09/24 13:33:00
3849 [misc.c misc.h configure.ac openbsd-compat/openbsd-compat.h]
3850 [openbsd-compat/timingsafe_bcmp.c]
3851 Add timingsafe_bcmp(3) to libc, mention that it's already in the
3852 kernel in kern(9), and remove it from OpenSSH.
3853 ok deraadt@, djm@
3854 NB. re-added under openbsd-compat/ for portable OpenSSH
Damien Millera6e121a2010-10-07 21:39:17 +11003855 - djm@cvs.openbsd.org 2010/09/25 09:30:16
3856 [sftp.c configure.ac openbsd-compat/glob.c openbsd-compat/glob.h]
3857 make use of new glob(3) GLOB_KEEPSTAT extension to save extra server
3858 rountrips to fetch per-file stat(2) information.
3859 NB. update openbsd-compat/ glob(3) implementation from OpenBSD libc to
3860 match.
Damien Miller68e2e562010-10-07 21:39:55 +11003861 - djm@cvs.openbsd.org 2010/09/26 22:26:33
3862 [sftp.c]
3863 when performing an "ls" in columnated (short) mode, only call
3864 ioctl(TIOCGWINSZ) once to get the window width instead of per-
3865 filename
Damien Millerc54b02c2010-10-07 21:40:17 +11003866 - djm@cvs.openbsd.org 2010/09/30 11:04:51
3867 [servconf.c]
3868 prevent free() of string in .rodata when overriding AuthorizedKeys in
3869 a Match block; patch from rein AT basefarm.no
Damien Miller9a3d0dc2010-10-07 22:06:42 +11003870 - djm@cvs.openbsd.org 2010/10/01 23:05:32
3871 [cipher-3des1.c cipher-bf1.c cipher-ctr.c openbsd-compat/openssl-compat.h]
3872 adapt to API changes in openssl-1.0.0a
3873 NB. contains compat code to select correct API for older OpenSSL
Damien Miller38d9a962010-10-07 22:07:11 +11003874 - djm@cvs.openbsd.org 2010/10/05 05:13:18
3875 [sftp.c sshconnect.c]
3876 use default shell /bin/sh if $SHELL is ""; ok markus@
Damien Millera41ccca2010-10-07 22:07:32 +11003877 - djm@cvs.openbsd.org 2010/10/06 06:39:28
3878 [clientloop.c ssh.c sshconnect.c sshconnect.h]
3879 kill proxy command on fatal() (we already kill it on clean exit);
3880 ok markus@
Damien Miller45fcdaa2010-10-07 22:07:58 +11003881 - djm@cvs.openbsd.org 2010/10/06 21:10:21
3882 [sshconnect.c]
3883 swapped args to kill(2)
Damien Miller37f4f182010-10-07 22:10:38 +11003884 - (djm) [openbsd-compat/glob.c] restore ARG_MAX compat code.
Damien Miller80e99532010-10-07 22:12:08 +11003885 - (djm) [cipher-acss.c] Add missing header.
Damien Miller88b844f2010-10-07 22:19:23 +11003886 - (djm) [openbsd-compat/Makefile.in] Actually link timingsafe_bcmp
Damien Milleraa180632010-10-07 21:25:27 +11003887
Damien Miller6186bbc2010-09-24 22:00:54 +1000388820100924
3889 - (djm) OpenBSD CVS Sync
3890 - naddy@cvs.openbsd.org 2010/09/10 15:19:29
3891 [ssh-keygen.1]
3892 * mention ECDSA in more places
3893 * less repetition in FILES section
3894 * SSHv1 keys are still encrypted with 3DES
3895 help and ok jmc@
Damien Miller1ca94692010-09-24 22:01:22 +10003896 - djm@cvs.openbsd.org 2010/09/11 21:44:20
3897 [ssh.1]
3898 mention RFC 5656 for ECC stuff
Damien Miller881adf72010-09-24 22:01:54 +10003899 - jmc@cvs.openbsd.org 2010/09/19 21:30:05
3900 [sftp.1]
3901 more wacky macro fixing;
Damien Miller857b02e2010-09-24 22:02:56 +10003902 - djm@cvs.openbsd.org 2010/09/20 04:41:47
3903 [ssh.c]
3904 install a SIGCHLD handler to reap expiried child process; ok markus@
Damien Millerf7540cd2010-09-24 22:03:24 +10003905 - djm@cvs.openbsd.org 2010/09/20 04:50:53
3906 [jpake.c schnorr.c]
3907 check that received values are smaller than the group size in the
3908 disabled and unfinished J-PAKE code.
3909 avoids catastrophic security failure found by Sebastien Martini
Damien Miller18e1cab2010-09-24 22:07:17 +10003910 - djm@cvs.openbsd.org 2010/09/20 04:54:07
3911 [jpake.c]
3912 missing #include
Damien Miller603134e2010-09-24 22:07:55 +10003913 - djm@cvs.openbsd.org 2010/09/20 07:19:27
3914 [mux.c]
3915 "atomically" create the listening mux socket by binding it on a temorary
3916 name and then linking it into position after listen() has succeeded.
3917 this allows the mux clients to determine that the server socket is
3918 either ready or stale without races. stale server sockets are now
3919 automatically removed
3920 ok deraadt
Damien Millerd5f62bf2010-09-24 22:11:14 +10003921 - djm@cvs.openbsd.org 2010/09/22 05:01:30
3922 [kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c readconf.c readconf.h]
3923 [servconf.c servconf.h ssh_config.5 sshconnect2.c sshd.c sshd_config.5]
3924 add a KexAlgorithms knob to the client and server configuration to allow
3925 selection of which key exchange methods are used by ssh(1) and sshd(8)
3926 and their order of preference.
3927 ok markus@
Damien Miller7fe2b1f2010-09-24 22:11:53 +10003928 - jmc@cvs.openbsd.org 2010/09/22 08:30:08
3929 [ssh.1 ssh_config.5]
3930 ssh.1: add kexalgorithms to the -o list
3931 ssh_config.5: format the kexalgorithms in a more consistent
3932 (prettier!) way
3933 ok djm
Damien Miller65e42f82010-09-24 22:15:11 +10003934 - djm@cvs.openbsd.org 2010/09/22 22:58:51
3935 [atomicio.c atomicio.h misc.c misc.h scp.c sftp-client.c]
3936 [sftp-client.h sftp.1 sftp.c]
3937 add an option per-read/write callback to atomicio
3938
3939 factor out bandwidth limiting code from scp(1) into a generic bandwidth
3940 limiter that can be attached using the atomicio callback mechanism
3941
3942 add a bandwidth limit option to sftp(1) using the above
3943 "very nice" markus@
Damien Miller56883e12010-09-24 22:15:39 +10003944 - jmc@cvs.openbsd.org 2010/09/23 13:34:43
3945 [sftp.c]
3946 add [-l limit] to usage();
Damien Miller2beb32f2010-09-24 22:16:03 +10003947 - jmc@cvs.openbsd.org 2010/09/23 13:36:46
3948 [scp.1 sftp.1]
3949 add KexAlgorithms to the -o list;
Damien Miller6186bbc2010-09-24 22:00:54 +10003950
Damien Miller4314c2b2010-09-10 11:12:09 +1000395120100910
Darren Tucker50e3bab2010-09-10 10:30:25 +10003952 - (dtucker) [openbsd-compat/port-linux.c] Check is_selinux_enabled for exact
3953 return code since it can apparently return -1 under some conditions. From
3954 openssh bugs werbittewas de, ok djm@
Damien Miller4314c2b2010-09-10 11:12:09 +10003955 - OpenBSD CVS Sync
3956 - djm@cvs.openbsd.org 2010/08/31 12:33:38
3957 [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c]
3958 reintroduce commit from tedu@, which I pulled out for release
3959 engineering:
3960 OpenSSL_add_all_algorithms is the name of the function we have a
3961 man page for, so use that. ok djm
Damien Millerde735ea2010-09-10 11:12:38 +10003962 - jmc@cvs.openbsd.org 2010/08/31 17:40:54
3963 [ssh-agent.1]
3964 fix some macro abuse;
Damien Millerd4427902010-09-10 11:15:10 +10003965 - jmc@cvs.openbsd.org 2010/08/31 21:14:58
3966 [ssh.1]
3967 small text tweak to accommodate previous;
Damien Millere13cadf2010-09-10 11:15:33 +10003968 - naddy@cvs.openbsd.org 2010/09/01 15:21:35
3969 [servconf.c]
3970 pick up ECDSA host key by default; ok djm@
Damien Miller390f1532010-09-10 11:17:54 +10003971 - markus@cvs.openbsd.org 2010/09/02 16:07:25
Damien Miller57737942010-09-10 11:16:37 +10003972 [ssh-keygen.c]
3973 permit -b 256, 384 or 521 as key size for ECDSA; ok djm@
Damien Miller390f1532010-09-10 11:17:54 +10003974 - markus@cvs.openbsd.org 2010/09/02 16:08:39
Damien Miller5929c522010-09-10 11:17:02 +10003975 [ssh.c]
3976 unbreak ControlPersist=yes for ControlMaster=yes; ok djm@
Damien Miller6e9f6802010-09-10 11:17:38 +10003977 - naddy@cvs.openbsd.org 2010/09/02 17:21:50
3978 [ssh-keygen.c]
3979 Switch ECDSA default key size to 256 bits, which according to RFC5656
3980 should still be better than our current RSA-2048 default.
3981 ok djm@, markus@
Damien Miller390f1532010-09-10 11:17:54 +10003982 - jmc@cvs.openbsd.org 2010/09/03 11:09:29
3983 [scp.1]
3984 add an EXIT STATUS section for /usr/bin;
Damien Millerdaa7b222010-09-10 11:19:33 +10003985 - jmc@cvs.openbsd.org 2010/09/04 09:38:34
3986 [ssh-add.1 ssh.1]
3987 two more EXIT STATUS sections;
Damien Miller80ed82a2010-09-10 11:20:11 +10003988 - naddy@cvs.openbsd.org 2010/09/06 17:10:19
3989 [sshd_config]
3990 add ssh_host_ecdsa_key to /etc; from Mattieu Baptiste
3991 <mattieu.b@gmail.com>
3992 ok deraadt@
Damien Millerbf0423e2010-09-10 11:20:38 +10003993 - djm@cvs.openbsd.org 2010/09/08 03:54:36
3994 [authfile.c]
3995 typo
Damien Miller3796ab42010-09-10 11:20:59 +10003996 - deraadt@cvs.openbsd.org 2010/09/08 04:13:31
3997 [compress.c]
3998 work around name-space collisions some buggy compilers (looking at you
3999 gcc, at least in earlier versions, but this does not forgive your current
4000 transgressions) seen between zlib and openssl
4001 ok djm
Damien Miller041ab7c2010-09-10 11:23:34 +10004002 - djm@cvs.openbsd.org 2010/09/09 10:45:45
4003 [kex.c kex.h kexecdh.c key.c key.h monitor.c ssh-ecdsa.c]
4004 ECDH/ECDSA compliance fix: these methods vary the hash function they use
4005 (SHA256/384/512) depending on the length of the curve in use. The previous
4006 code incorrectly used SHA256 in all cases.
4007
4008 This fix will cause authentication failure when using 384 or 521-bit curve
4009 keys if one peer hasn't been upgraded and the other has. (256-bit curve
4010 keys work ok). In particular you may need to specify HostkeyAlgorithms
4011 when connecting to a server that has not been upgraded from an upgraded
4012 client.
4013
4014 ok naddy@
Damien Miller6af914a2010-09-10 11:39:26 +10004015 - (djm) [authfd.c authfile.c bufec.c buffer.h configure.ac kex.h kexecdh.c]
4016 [kexecdhc.c kexecdhs.c key.c key.h myproposal.h packet.c readconf.c]
4017 [ssh-agent.c ssh-ecdsa.c ssh-keygen.c ssh.c] Disable ECDH and ECDSA on
4018 platforms that don't have the requisite OpenSSL support. ok dtucker@
Darren Tucker8ccb7392010-09-10 12:28:24 +10004019 - (dtucker) [kex.h key.c packet.h ssh-agent.c ssh.c] A few more ECC ifdefs
4020 for missing headers and compiler warnings.
Darren Tucker50e3bab2010-09-10 10:30:25 +10004021
402220100831
Damien Millerafdae612010-08-31 22:31:14 +10004023 - OpenBSD CVS Sync
4024 - jmc@cvs.openbsd.org 2010/08/08 19:36:30
4025 [ssh-keysign.8 ssh.1 sshd.8]
4026 use the same template for all FILES sections; i.e. -compact/.Pp where we
4027 have multiple items, and .Pa for path names;
Damien Miller9b87e792010-08-31 22:31:37 +10004028 - tedu@cvs.openbsd.org 2010/08/12 23:34:39
4029 [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c]
4030 OpenSSL_add_all_algorithms is the name of the function we have a man page
4031 for, so use that. ok djm
Damien Millerd96546f2010-08-31 22:32:12 +10004032 - djm@cvs.openbsd.org 2010/08/16 04:06:06
4033 [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c]
4034 backout previous temporarily; discussed with deraadt@
Damien Millerda108ec2010-08-31 22:36:39 +10004035 - djm@cvs.openbsd.org 2010/08/31 09:58:37
4036 [auth-options.c auth1.c auth2.c bufaux.c buffer.h kex.c key.c packet.c]
4037 [packet.h ssh-dss.c ssh-rsa.c]
4038 Add buffer_get_cstring() and related functions that verify that the
4039 string extracted from the buffer contains no embedded \0 characters*
4040 This prevents random (possibly malicious) crap from being appended to
4041 strings where it would not be noticed if the string is used with
4042 a string(3) function.
4043
4044 Use the new API in a few sensitive places.
4045
4046 * actually, we allow a single one at the end of the string for now because
4047 we don't know how many deployed implementations get this wrong, but don't
4048 count on this to remain indefinitely.
Damien Millereb8b60e2010-08-31 22:41:14 +10004049 - djm@cvs.openbsd.org 2010/08/31 11:54:45
4050 [PROTOCOL PROTOCOL.agent PROTOCOL.certkeys auth2-jpake.c authfd.c]
4051 [authfile.c buffer.h dns.c kex.c kex.h key.c key.h monitor.c]
4052 [monitor_wrap.c myproposal.h packet.c packet.h pathnames.h readconf.c]
4053 [ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c]
4054 [ssh-keyscan.1 ssh-keyscan.c ssh-keysign.8 ssh.1 ssh.c ssh2.h]
4055 [ssh_config.5 sshconnect.c sshconnect2.c sshd.8 sshd.c sshd_config.5]
4056 [uuencode.c uuencode.h bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c]
4057 Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and
4058 host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer
4059 better performance than plain DH and DSA at the same equivalent symmetric
4060 key length, as well as much shorter keys.
4061
4062 Only the mandatory sections of RFC5656 are implemented, specifically the
4063 three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and
4064 ECDSA. Point compression (optional in RFC5656 is NOT implemented).
4065
4066 Certificate host and user keys using the new ECDSA key types are supported.
4067
4068 Note that this code has not been tested for interoperability and may be
4069 subject to change.
4070
4071 feedback and ok markus@
Damien Millerb5a62d02010-08-31 22:47:15 +10004072 - (djm) [Makefile.in] Add new ECC files
Damien Millerc79ff072010-08-31 22:50:48 +10004073 - (djm) [bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] include
4074 includes.h
Damien Millerafdae612010-08-31 22:31:14 +10004075
Darren Tucker6889abd2010-08-27 10:12:54 +1000407620100827
4077 - (dtucker) [contrib/redhat/sshd.init] Bug #1810: initlog is deprecated,
4078 remove. Patch from martynas at venck us
4079
Damien Millera5362022010-08-23 21:20:20 +1000408020100823
4081 - (djm) Release OpenSSH-5.6p1
4082
Darren Tuckeraa74f672010-08-16 13:15:23 +1000408320100816
4084 - (dtucker) [configure.ac openbsd-compat/Makefile.in
4085 openbsd-compat/openbsd-compat.h openbsd-compat/strptime.c] Add strptime to
4086 the compat library which helps on platforms like old IRIX. Based on work
4087 by djm, tested by Tom Christensen.
Damien Miller00d9ae22010-08-17 01:59:31 +10004088 - OpenBSD CVS Sync
4089 - djm@cvs.openbsd.org 2010/08/12 21:49:44
4090 [ssh.c]
4091 close any extra file descriptors inherited from parent at start and
4092 reopen stdin/stdout to /dev/null when forking for ControlPersist.
4093
4094 prevents tools that fork and run a captive ssh for communication from
4095 failing to exit when the ssh completes while they wait for these fds to
4096 close. The inherited fds may persist arbitrarily long if a background
4097 mux master has been started by ControlPersist. cvs and scp were effected
4098 by this.
4099
4100 "please commit" markus@
Damien Miller07ad3892010-08-17 07:04:28 +10004101 - (djm) [regress/README.regress] typo
Darren Tuckeraa74f672010-08-16 13:15:23 +10004102
Tim Rice722b8d12010-08-12 09:43:13 -0700410320100812
4104 - (tim) [regress/login-timeout.sh regress/reconfigure.sh regress/reexec.sh
4105 regress/test-exec.sh] Under certain conditions when testing with sudo
4106 tests would fail because the pidfile could not be read by a regular user.
4107 "cat: cannot open ...../regress/pidfile: Permission denied (error 13)"
4108 Make sure cat is run by $SUDO. no objection from me. djm@
Tim Ricead7d5472010-08-12 10:33:01 -07004109 - (tim) [auth.c] add cast to quiet compiler. Change only affects SVR5 systems.
Tim Rice722b8d12010-08-12 09:43:13 -07004110
Damien Miller7e569b82010-08-09 02:28:37 +1000411120100809
Damien Miller2c4b13a2010-08-10 12:47:40 +10004112 - (djm) bz#1561: don't bother setting IFF_UP on tun(4) device if it is
4113 already set. Makes FreeBSD user openable tunnels useful; patch from
4114 richard.burakowski+ossh AT mrburak.net, ok dtucker@
Darren Tucker02c47342010-08-10 13:36:09 +10004115 - (dtucker) bug #1530: strip trailing ":" from hostname in ssh-copy-id.
4116 based in part on a patch from Colin Watson, ok djm@
Damien Miller2c4b13a2010-08-10 12:47:40 +10004117
411820100809
Damien Miller7e569b82010-08-09 02:28:37 +10004119 - OpenBSD CVS Sync
4120 - djm@cvs.openbsd.org 2010/08/08 16:26:42
4121 [version.h]
4122 crank to 5.6
Damien Miller792010b2010-08-09 02:32:05 +10004123 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
4124 [contrib/suse/openssh.spec] Crank version numbers
Damien Miller7e569b82010-08-09 02:28:37 +10004125
Damien Miller8e604ac2010-08-09 02:28:10 +1000412620100805
Damien Miller7fa96602010-08-05 13:03:13 +10004127 - OpenBSD CVS Sync
4128 - djm@cvs.openbsd.org 2010/08/04 05:37:01
4129 [ssh.1 ssh_config.5 sshd.8]
4130 Remove mentions of weird "addr/port" alternate address format for IPv6
4131 addresses combinations. It hasn't worked for ages and we have supported
4132 the more commen "[addr]:port" format for a long time. ok jmc@ markus@
Damien Miller1da63882010-08-05 13:03:51 +10004133 - djm@cvs.openbsd.org 2010/08/04 05:40:39
4134 [PROTOCOL.certkeys ssh-keygen.c]
4135 tighten the rules for certificate encoding by requiring that options
4136 appear in lexical order and make our ssh-keygen comply. ok markus@
Damien Millerc1583312010-08-05 13:04:50 +10004137 - djm@cvs.openbsd.org 2010/08/04 05:42:47
4138 [auth.c auth2-hostbased.c authfile.c authfile.h ssh-keysign.8]
4139 [ssh-keysign.c ssh.c]
4140 enable certificates for hostbased authentication, from Iain Morgan;
4141 "looks ok" markus@
Damien Miller5458c4d2010-08-05 13:05:15 +10004142 - djm@cvs.openbsd.org 2010/08/04 05:49:22
4143 [authfile.c]
4144 commited the wrong version of the hostbased certificate diff; this
4145 version replaces some strlc{py,at} verbosity with xasprintf() at
4146 the request of markus@
Damien Miller757f34e2010-08-05 13:05:31 +10004147 - djm@cvs.openbsd.org 2010/08/04 06:07:11
4148 [ssh-keygen.1 ssh-keygen.c]
4149 Support CA keys in PKCS#11 tokens; feedback and ok markus@
Damien Millerb89e6b72010-08-05 13:06:20 +10004150 - djm@cvs.openbsd.org 2010/08/04 06:08:40
4151 [ssh-keysign.c]
4152 clean for -Wuninitialized (Id sync only; portable had this change)
Damien Miller7d457182010-08-05 23:09:48 +10004153 - djm@cvs.openbsd.org 2010/08/05 13:08:42
4154 [channels.c]
4155 Fix a trio of bugs in the local/remote window calculation for datagram
4156 data channels (i.e. TunnelForward):
4157
4158 Calculate local_consumed correctly in channel_handle_wfd() by measuring
4159 the delta to buffer_len(c->output) from when we start to when we finish.
4160 The proximal problem here is that the output_filter we use in portable
4161 modified the length of the dequeued datagram (to futz with the headers
4162 for !OpenBSD).
4163
4164 In channel_output_poll(), don't enqueue datagrams that won't fit in the
4165 peer's advertised packet size (highly unlikely to ever occur) or which
4166 won't fit in the peer's remaining window (more likely).
4167
4168 In channel_input_data(), account for the 4-byte string header in
4169 datagram packets that we accept from the peer and enqueue in c->output.
4170
4171 report, analysis and testing 2/3 cases from wierbows AT us.ibm.com;
4172 "looks good" markus@
Damien Miller7fa96602010-08-05 13:03:13 +10004173
Damien Miller8e604ac2010-08-09 02:28:10 +1000417420100803
Darren Tucker8b7a0552010-08-03 15:50:16 +10004175 - (dtucker) [monitor.c] Bug #1795: Initialize the values to be returned from
4176 PAM to sane values in case the PAM method doesn't write to them. Spotted by
4177 Bitman Zhou, ok djm@.
Damien Miller844cccf2010-08-03 16:03:29 +10004178 - OpenBSD CVS Sync
4179 - djm@cvs.openbsd.org 2010/07/16 04:45:30
4180 [ssh-keygen.c]
4181 avoid bogus compiler warning
Damien Miller4e8285e2010-08-03 16:04:03 +10004182 - djm@cvs.openbsd.org 2010/07/16 14:07:35
4183 [ssh-rsa.c]
4184 more timing paranoia - compare all parts of the expected decrypted
4185 data before returning. AFAIK not exploitable in the SSH protocol.
4186 "groovy" deraadt@
Damien Millerc4bb91c2010-08-03 16:04:22 +10004187 - djm@cvs.openbsd.org 2010/07/19 03:16:33
4188 [sftp-client.c]
4189 bz#1797: fix swapped args in upload_dir_internal(), breaking recursive
4190 upload depth checks and causing verbose printing of transfers to always
4191 be turned on; patch from imorgan AT nas.nasa.gov
Damien Millere11e1ea2010-08-03 16:04:46 +10004192 - djm@cvs.openbsd.org 2010/07/19 09:15:12
4193 [clientloop.c readconf.c readconf.h ssh.c ssh_config.5]
4194 add a "ControlPersist" option that automatically starts a background
4195 ssh(1) multiplex master when connecting. This connection can stay alive
4196 indefinitely, or can be set to automatically close after a user-specified
4197 duration of inactivity. bz#1330 - patch by dwmw2 AT infradead.org, but
4198 further hacked on by wmertens AT cisco.com, apb AT cequrux.com,
4199 martin-mindrot-bugzilla AT earth.li and myself; "looks ok" markus@
Damien Miller8c1eb112010-08-03 16:05:05 +10004200 - djm@cvs.openbsd.org 2010/07/21 02:10:58
4201 [misc.c]
4202 sync timingsafe_bcmp() with the one dempsky@ committed to sys/lib/libkern
Damien Miller081f3c72010-08-03 16:05:25 +10004203 - dtucker@cvs.openbsd.org 2010/07/23 08:49:25
4204 [ssh.1]
4205 Ciphers is documented in ssh_config(5) these days
Darren Tucker8b7a0552010-08-03 15:50:16 +10004206
420720100819
Darren Tucker12b29db2010-07-19 21:24:13 +10004208 - (dtucker) [contrib/ssh-copy-ud.1] Bug #1786: update ssh-copy-id.1 with more
4209 details about its behaviour WRT existing directories. Patch from
4210 asguthrie at gmail com, ok djm.
4211
Damien Miller9308fc72010-07-16 13:56:01 +1000421220100716
4213 - (djm) OpenBSD CVS Sync
4214 - djm@cvs.openbsd.org 2010/07/02 04:32:44
4215 [misc.c]
4216 unbreak strdelim() skipping past quoted strings, e.g.
4217 AllowUsers "blah blah" blah
4218 was broken; report and fix in bz#1757 from bitman.zhou AT centrify.com
4219 ok dtucker;
Damien Miller1f25ab42010-07-16 13:56:23 +10004220 - djm@cvs.openbsd.org 2010/07/12 22:38:52
4221 [ssh.c]
4222 Make ExitOnForwardFailure work with fork-after-authentication ("ssh -f")
4223 for protocol 2. ok markus@
Damien Millerd0244d42010-07-16 13:56:43 +10004224 - djm@cvs.openbsd.org 2010/07/12 22:41:13
4225 [ssh.c ssh_config.5]
4226 expand %h to the hostname in ssh_config Hostname options. While this
4227 sounds useless, it is actually handy for working with unqualified
4228 hostnames:
4229
4230 Host *.*
4231 Hostname %h
4232 Host *
4233 Hostname %h.example.org
4234
4235 "I like it" markus@
Damien Miller8a0268f2010-07-16 13:57:51 +10004236 - djm@cvs.openbsd.org 2010/07/13 11:52:06
4237 [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c]
4238 [packet.c ssh-rsa.c]
4239 implement a timing_safe_cmp() function to compare memory without leaking
4240 timing information by short-circuiting like memcmp() and use it for
4241 some of the more sensitive comparisons (though nothing high-value was
4242 readily attackable anyway); "looks ok" markus@
Damien Millerea1651c2010-07-16 13:58:37 +10004243 - djm@cvs.openbsd.org 2010/07/13 23:13:16
4244 [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c packet.c]
4245 [ssh-rsa.c]
4246 s/timing_safe_cmp/timingsafe_bcmp/g
Damien Millerbcfbc482010-07-16 13:59:11 +10004247 - jmc@cvs.openbsd.org 2010/07/14 17:06:58
4248 [ssh.1]
4249 finally ssh synopsis looks nice again! this commit just removes a ton of
4250 hacks we had in place to make it work with old groff;
Damien Millerbad5e032010-07-16 13:59:59 +10004251 - schwarze@cvs.openbsd.org 2010/07/15 21:20:38
4252 [ssh-keygen.1]
4253 repair incorrect block nesting, which screwed up indentation;
4254 problem reported and fix OK by jmc@
Damien Miller9308fc72010-07-16 13:56:01 +10004255
Tim Ricecfbdc282010-07-14 13:42:28 -0700425620100714
4257 - (tim) [contrib/redhat/openssh.spec] Bug 1796: Test for skip_x11_askpass
4258 (line 77) should have been for no_x11_askpass.
4259
Damien Millercede1db2010-07-02 13:33:48 +1000426020100702
4261 - (djm) OpenBSD CVS Sync
4262 - jmc@cvs.openbsd.org 2010/06/26 00:57:07
4263 [ssh_config.5]
4264 tweak previous;
Damien Millerb96c4412010-07-02 13:34:24 +10004265 - djm@cvs.openbsd.org 2010/06/26 23:04:04
4266 [ssh.c]
4267 oops, forgot to #include <canohost.h>; spotted and patch from chl@
Damien Miller44b25042010-07-02 13:35:01 +10004268 - djm@cvs.openbsd.org 2010/06/29 23:15:30
4269 [ssh-keygen.1 ssh-keygen.c]
4270 allow import (-i) and export (-e) of PEM and PKCS#8 encoded keys;
4271 bz#1749; ok markus@
Damien Miller6018a362010-07-02 13:35:19 +10004272 - djm@cvs.openbsd.org 2010/06/29 23:16:46
4273 [auth2-pubkey.c sshd_config.5]
4274 allow key options (command="..." and friends) in AuthorizedPrincipals;
4275 ok markus@
Damien Millerea727282010-07-02 13:35:34 +10004276 - jmc@cvs.openbsd.org 2010/06/30 07:24:25
4277 [ssh-keygen.1]
4278 tweak previous;
Damien Miller6022f582010-07-02 13:37:01 +10004279 - jmc@cvs.openbsd.org 2010/06/30 07:26:03
4280 [ssh-keygen.c]
4281 sort usage();
Damien Millerd59dab82010-07-02 13:37:17 +10004282 - jmc@cvs.openbsd.org 2010/06/30 07:28:34
4283 [sshd_config.5]
4284 tweak previous;
Damien Miller0979b402010-07-02 13:37:33 +10004285 - millert@cvs.openbsd.org 2010/07/01 13:06:59
4286 [scp.c]
4287 Fix a longstanding problem where if you suspend scp at the
4288 password/passphrase prompt the terminal mode is not restored.
4289 OK djm@
Damien Miller527ded72010-07-02 13:40:16 +10004290 - phessler@cvs.openbsd.org 2010/06/27 19:19:56
4291 [regress/Makefile]
4292 fix how we run the tests so we can successfully use SUDO='sudo -E'
4293 in our env
Damien Millerab139cd2010-07-02 13:42:18 +10004294 - djm@cvs.openbsd.org 2010/06/29 23:59:54
4295 [cert-userkey.sh]
4296 regress tests for key options in AuthorizedPrincipals
Damien Millercede1db2010-07-02 13:33:48 +10004297
Tim Rice3fd307d2010-06-26 16:45:15 -0700429820100627
4299 - (tim) [openbsd-compat/port-uw.c] Reorder includes. auth-options.h now needs
4300 key.h.
4301
Damien Miller2e774462010-06-26 09:30:47 +1000430220100626
4303 - (djm) OpenBSD CVS Sync
4304 - djm@cvs.openbsd.org 2010/05/21 05:00:36
4305 [misc.c]
4306 colon() returns char*, so s/return (0)/return NULL/
Damien Miller4fe686d2010-06-26 09:36:10 +10004307 - markus@cvs.openbsd.org 2010/06/08 21:32:19
4308 [ssh-pkcs11.c]
4309 check length of value returned C_GetAttributValue for != 0
4310 from mdrtbugzilla@codefive.co.uk; bugzilla #1773; ok dtucker@
Damien Millerc094d1e2010-06-26 09:36:34 +10004311 - djm@cvs.openbsd.org 2010/06/17 07:07:30
4312 [mux.c]
4313 Correct sizing of object to be allocated by calloc(), replacing
4314 sizeof(state) with sizeof(*state). This worked by accident since
4315 the struct contained a single int at present, but could have broken
4316 in the future. patch from hyc AT symas.com
Damien Miller99ac4e92010-06-26 09:36:58 +10004317 - djm@cvs.openbsd.org 2010/06/18 00:58:39
4318 [sftp.c]
4319 unbreak ls in working directories that contains globbing characters in
4320 their pathnames. bz#1655 reported by vgiffin AT apple.com
Damien Miller7aa46ec2010-06-26 09:37:57 +10004321 - djm@cvs.openbsd.org 2010/06/18 03:16:03
4322 [session.c]
4323 Missing check for chroot_director == "none" (we already checked against
4324 NULL); bz#1564 from Jan.Pechanec AT Sun.COM
Damien Miller49566312010-06-26 09:38:23 +10004325 - djm@cvs.openbsd.org 2010/06/18 04:43:08
4326 [sftp-client.c]
4327 fix memory leak in do_realpath() error path; bz#1771, patch from
4328 anicka AT suse.cz
Damien Millerab6de352010-06-26 09:38:45 +10004329 - djm@cvs.openbsd.org 2010/06/22 04:22:59
4330 [servconf.c sshd_config.5]
4331 expose some more sshd_config options inside Match blocks:
4332 AuthorizedKeysFile AuthorizedPrincipalsFile
4333 HostbasedUsesNameFromPacketOnly PermitTunnel
4334 bz#1764; feedback from imorgan AT nas.nasa.gov; ok dtucker@
Damien Millerba3420a2010-06-26 09:39:07 +10004335 - djm@cvs.openbsd.org 2010/06/22 04:32:06
4336 [ssh-keygen.c]
4337 standardise error messages when attempting to open private key
4338 files to include "progname: filename: error reason"
4339 bz#1783; ok dtucker@
Damien Miller48147d62010-06-26 09:39:25 +10004340 - djm@cvs.openbsd.org 2010/06/22 04:49:47
4341 [auth.c]
4342 queue auth debug messages for bad ownership or permissions on the user's
4343 keyfiles. These messages will be sent after the user has successfully
4344 authenticated (where our client will display them with LogLevel=debug).
Damien Miller0e76c5e2010-06-26 09:39:59 +10004345 bz#1554; ok dtucker@
4346 - djm@cvs.openbsd.org 2010/06/22 04:54:30
4347 [ssh-keyscan.c]
4348 replace verbose and overflow-prone Linebuf code with read_keyfile_line()
4349 based on patch from joachim AT joachimschipper.nl; bz#1565; ok dtucker@
Damien Miller1b2b61e2010-06-26 09:47:43 +10004350 - djm@cvs.openbsd.org 2010/06/22 04:59:12
4351 [session.c]
4352 include the user name on "subsystem request for ..." log messages;
4353 bz#1571; ok dtucker@
Damien Millerd834d352010-06-26 09:48:02 +10004354 - djm@cvs.openbsd.org 2010/06/23 02:59:02
4355 [ssh-keygen.c]
4356 fix printing of extensions in v01 certificates that I broke in r1.190
Damien Miller232cfb12010-06-26 09:50:30 +10004357 - djm@cvs.openbsd.org 2010/06/25 07:14:46
4358 [channels.c mux.c readconf.c readconf.h ssh.h]
4359 bz#1327: remove hardcoded limit of 100 permitopen clauses and port
4360 forwards per direction; ok markus@ stevesk@
Damien Miller8853ca52010-06-26 10:00:14 +10004361 - djm@cvs.openbsd.org 2010/06/25 07:20:04
4362 [channels.c session.c]
4363 bz#1750: fix requirement for /dev/null inside ChrootDirectory for
4364 internal-sftp accidentally introduced in r1.253 by removing the code
4365 that opens and dup /dev/null to stderr and modifying the channels code
4366 to read stderr but discard it instead; ok markus@
Damien Millerbda3eca2010-06-26 10:01:33 +10004367 - djm@cvs.openbsd.org 2010/06/25 08:46:17
4368 [auth1.c auth2-none.c]
4369 skip the initial check for access with an empty password when
4370 PermitEmptyPasswords=no; bz#1638; ok markus@
Damien Miller383ffe62010-06-26 10:02:03 +10004371 - djm@cvs.openbsd.org 2010/06/25 23:10:30
4372 [ssh.c]
4373 log the hostname and address that we connected to at LogLevel=verbose
4374 after authentication is successful to mitigate "phishing" attacks by
4375 servers with trusted keys that accept authentication silently and
4376 automatically before presenting fake password/passphrase prompts;
4377 "nice!" markus@
Damien Miller1ab6a512010-06-26 10:02:24 +10004378 - djm@cvs.openbsd.org 2010/06/25 23:10:30
4379 [ssh.c]
4380 log the hostname and address that we connected to at LogLevel=verbose
4381 after authentication is successful to mitigate "phishing" attacks by
4382 servers with trusted keys that accept authentication silently and
4383 automatically before presenting fake password/passphrase prompts;
4384 "nice!" markus@
Damien Miller2e774462010-06-26 09:30:47 +10004385
Damien Millerd82a2602010-06-22 15:02:39 +1000438620100622
4387 - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512
4388 bz#1579; ok dtucker
4389
Damien Millerea909792010-06-18 11:09:24 +1000439020100618
4391 - (djm) [contrib/ssh-copy-id] Update key file explicitly under ~
4392 rather than assuming that $CWD == $HOME. bz#1500, patch from
4393 timothy AT gelter.com
4394
Tim Riceb9ae4ec2010-06-17 11:11:44 -0700439520100617
4396 - (tim) [contrib/cygwin/README] Remove a reference to the obsolete
4397 minires-devel package, and to add the reference to the libedit-devel
4398 package since CYgwin now provides libedit. Patch from Corinna Vinschen.
4399
Damien Miller3bcce802010-05-21 14:48:16 +1000440020100521
4401 - (djm) OpenBSD CVS Sync
4402 - djm@cvs.openbsd.org 2010/05/07 11:31:26
4403 [regress/Makefile regress/cert-userkey.sh]
4404 regress tests for AuthorizedPrincipalsFile and "principals=" key option.
4405 feedback and ok markus@
Damien Miller3b903822010-05-21 14:56:25 +10004406 - djm@cvs.openbsd.org 2010/05/11 02:58:04
4407 [auth-rsa.c]
4408 don't accept certificates marked as "cert-authority" here; ok markus@
Damien Millerc6afb5f2010-05-21 14:56:47 +10004409 - djm@cvs.openbsd.org 2010/05/14 00:47:22
4410 [ssh-add.c]
4411 check that the certificate matches the corresponding private key before
4412 grafting it on
Damien Millerd530f5f2010-05-21 14:57:10 +10004413 - djm@cvs.openbsd.org 2010/05/14 23:29:23
4414 [channels.c channels.h mux.c ssh.c]
4415 Pause the mux channel while waiting for reply from aynch callbacks.
4416 Prevents misordering of replies if new requests arrive while waiting.
4417
4418 Extend channel open confirm callback to allow signalling failure
4419 conditions as well as success. Use this to 1) fix a memory leak, 2)
4420 start using the above pause mechanism and 3) delay sending a success/
4421 failure message on mux slave session open until we receive a reply from
4422 the server.
4423
4424 motivated by and with feedback from markus@
Damien Miller388f6fc2010-05-21 14:57:35 +10004425 - markus@cvs.openbsd.org 2010/05/16 12:55:51
4426 [PROTOCOL.mux clientloop.h mux.c readconf.c readconf.h ssh.1 ssh.c]
4427 mux support for remote forwarding with dynamic port allocation,
4428 use with
4429 LPORT=`ssh -S muxsocket -R0:localhost:25 -O forward somehost`
4430 feedback and ok djm@
Damien Miller84399552010-05-21 14:58:12 +10004431 - djm@cvs.openbsd.org 2010/05/20 11:25:26
4432 [auth2-pubkey.c]
4433 fix logspam when key options (from="..." especially) deny non-matching
4434 keys; reported by henning@ also bz#1765; ok markus@ dtucker@
Damien Millerd0e4a8e2010-05-21 14:58:32 +10004435 - djm@cvs.openbsd.org 2010/05/20 23:46:02
4436 [PROTOCOL.certkeys auth-options.c ssh-keygen.c]
4437 Move the permit-* options to the non-critical "extensions" field for v01
4438 certificates. The logic is that if another implementation fails to
4439 implement them then the connection just loses features rather than fails
4440 outright.
4441
4442 ok markus@
Damien Miller3bcce802010-05-21 14:48:16 +10004443
Darren Tucker5b6d0d02010-05-12 16:51:38 +1000444420100511
4445 - (dtucker) [Makefile.in] Bug #1770: Link libopenbsd-compat twice to solve
4446 circular dependency problem on old or odd platforms. From Tom Lane, ok
4447 djm@.
Damien Miller4b1ec832010-05-12 17:49:59 +10004448 - (djm) [openbsd-compat/openssl-compat.h] Fix build breakage on older
4449 libcrypto by defining OPENSSL_[DR]SA_MAX_MODULUS_BITS if they aren't
4450 already. ok dtucker@
Darren Tucker5b6d0d02010-05-12 16:51:38 +10004451
Damien Miller50af79b2010-05-10 11:52:00 +1000445220100510
4453 - OpenBSD CVS Sync
4454 - djm@cvs.openbsd.org 2010/04/23 01:47:41
4455 [ssh-keygen.c]
4456 bz#1740: display a more helpful error message when $HOME is
4457 inaccessible while trying to create .ssh directory. Based on patch
4458 from jchadima AT redhat.com; ok dtucker@
Damien Miller85c50d72010-05-10 11:53:02 +10004459 - djm@cvs.openbsd.org 2010/04/23 22:27:38
4460 [mux.c]
4461 set "detach_close" flag when registering channel cleanup callbacks.
4462 This causes the channel to close normally when its fds close and
4463 hangs when terminating a mux slave using ~. bz#1758; ok markus@
Damien Miller22a29882010-05-10 11:53:54 +10004464 - djm@cvs.openbsd.org 2010/04/23 22:42:05
4465 [session.c]
4466 set stderr to /dev/null for subsystems rather than just closing it.
4467 avoids hangs if a subsystem or shell initialisation writes to stderr.
4468 bz#1750; ok markus@
Damien Millerbebbb7e2010-05-10 11:54:38 +10004469 - djm@cvs.openbsd.org 2010/04/23 22:48:31
4470 [ssh-keygen.c]
4471 refuse to generate keys longer than OPENSSL_[RD]SA_MAX_MODULUS_BITS,
4472 since we would refuse to use them anyway. bz#1516; ok dtucker@
Damien Miller79442c02010-05-10 11:55:38 +10004473 - djm@cvs.openbsd.org 2010/04/26 22:28:24
4474 [sshconnect2.c]
4475 bz#1502: authctxt.success is declared as an int, but passed by
4476 reference to function that accepts sig_atomic_t*. Convert it to
4477 the latter; ok markus@ dtucker@
Damien Miller2725c212010-05-10 11:56:14 +10004478 - djm@cvs.openbsd.org 2010/05/01 02:50:50
4479 [PROTOCOL.certkeys]
4480 typo; jmeltzer@
Damien Miller099fc162010-05-10 11:56:50 +10004481 - dtucker@cvs.openbsd.org 2010/05/05 04:22:09
4482 [sftp.c]
4483 restore mput and mget which got lost in the tab-completion changes.
4484 found by Kenneth Whitaker, ok djm@
Damien Miller30da3442010-05-10 11:58:03 +10004485 - djm@cvs.openbsd.org 2010/05/07 11:30:30
4486 [auth-options.c auth-options.h auth.c auth.h auth2-pubkey.c]
4487 [key.c servconf.c servconf.h sshd.8 sshd_config.5]
4488 add some optional indirection to matching of principal names listed
4489 in certificates. Currently, a certificate must include the a user's name
4490 to be accepted for authentication. This change adds the ability to
4491 specify a list of certificate principal names that are acceptable.
4492
4493 When authenticating using a CA trusted through ~/.ssh/authorized_keys,
4494 this adds a new principals="name1[,name2,...]" key option.
4495
4496 For CAs listed through sshd_config's TrustedCAKeys option, a new config
4497 option "AuthorizedPrincipalsFile" specifies a per-user file containing
4498 the list of acceptable names.
4499
4500 If either option is absent, the current behaviour of requiring the
4501 username to appear in principals continues to apply.
4502
4503 These options are useful for role accounts, disjoint account namespaces
4504 and "user@realm"-style naming policies in certificates.
4505
4506 feedback and ok markus@
Damien Miller81d3fc52010-05-10 11:58:45 +10004507 - jmc@cvs.openbsd.org 2010/05/07 12:49:17
4508 [sshd_config.5]
4509 tweak previous;
Damien Miller50af79b2010-05-10 11:52:00 +10004510
Darren Tucker9f8703b2010-04-23 11:12:06 +1000451120100423
4512 - (dtucker) [configure.ac] Bug #1756: Check for the existence of a lib64 dir
4513 in the openssl install directory (some newer openssl versions do this on at
4514 least some amd64 platforms).
4515
Damien Millerc4eddee2010-04-18 08:07:43 +1000451620100418
4517 - OpenBSD CVS Sync
4518 - jmc@cvs.openbsd.org 2010/04/16 06:45:01
4519 [ssh_config.5]
4520 tweak previous; ok djm
Damien Miller1f181422010-04-18 08:08:03 +10004521 - jmc@cvs.openbsd.org 2010/04/16 06:47:04
4522 [ssh-keygen.1 ssh-keygen.c]
4523 tweak previous; ok djm
Damien Millerc617aa92010-04-18 08:08:20 +10004524 - djm@cvs.openbsd.org 2010/04/16 21:14:27
4525 [sshconnect.c]
4526 oops, %r => remote username, not %u
Damien Miller53f4bb62010-04-18 08:15:14 +10004527 - djm@cvs.openbsd.org 2010/04/16 01:58:45
4528 [regress/cert-hostkey.sh regress/cert-userkey.sh]
4529 regression tests for v01 certificate format
4530 includes interop tests for v00 certs
Darren Tuckere25a9bd2010-04-18 13:35:00 +10004531 - (dtucker) [contrib/aix/buildbff.sh] Fix creation of ssh_prng_cmds.default
4532 file.
Damien Millerc4eddee2010-04-18 08:07:43 +10004533
Damien Millera45f1c02010-04-16 15:51:34 +1000453420100416
4535 - (djm) Release openssh-5.5p1
Damien Millerd6fc3062010-04-16 15:51:45 +10004536 - OpenBSD CVS Sync
4537 - djm@cvs.openbsd.org 2010/03/26 03:13:17
4538 [bufaux.c]
4539 allow buffer_get_int_ret/buffer_get_int64_ret to take a NULL pointer
4540 argument to allow skipping past values in a buffer
Damien Miller67f30d72010-04-16 15:52:03 +10004541 - jmc@cvs.openbsd.org 2010/03/26 06:54:36
4542 [ssh.1]
4543 tweak previous;
Damien Miller544378d2010-04-16 15:52:24 +10004544 - jmc@cvs.openbsd.org 2010/03/27 14:26:55
4545 [ssh_config.5]
4546 tweak previous; ok dtucker
Damien Millerdeb5a142010-04-16 15:52:43 +10004547 - djm@cvs.openbsd.org 2010/04/10 00:00:16
4548 [ssh.c]
4549 bz#1746 - suppress spurious tty warning when using -O and stdin
4550 is not a tty; ok dtucker@ markus@
Damien Miller67283992010-04-16 15:53:02 +10004551 - djm@cvs.openbsd.org 2010/04/10 00:04:30
4552 [sshconnect.c]
4553 fix terminology: we didn't find a certificate in known_hosts, we found
4554 a CA key
Damien Miller22c97f12010-04-16 15:53:23 +10004555 - djm@cvs.openbsd.org 2010/04/10 02:08:44
4556 [clientloop.c]
4557 bz#1698: kill channel when pty allocation requests fail. Fixed
4558 stuck client if the server refuses pty allocation.
4559 ok dtucker@ "think so" markus@
Damien Miller88680652010-04-16 15:53:43 +10004560 - djm@cvs.openbsd.org 2010/04/10 02:10:56
4561 [sshconnect2.c]
4562 show the key type that we are offering in debug(), helps distinguish
4563 between certs and plain keys as the path to the private key is usually
4564 the same.
Damien Miller601a23c2010-04-16 15:54:01 +10004565 - djm@cvs.openbsd.org 2010/04/10 05:48:16
4566 [mux.c]
4567 fix NULL dereference; from matthew.haub AT alumni.adelaide.edu.au
Damien Millerb1b17042010-04-16 15:54:19 +10004568 - djm@cvs.openbsd.org 2010/04/14 22:27:42
4569 [ssh_config.5 sshconnect.c]
4570 expand %r => remote username in ssh_config:ProxyCommand;
4571 ok deraadt markus
Damien Miller031c9102010-04-16 15:54:44 +10004572 - markus@cvs.openbsd.org 2010/04/15 20:32:55
4573 [ssh-pkcs11.c]
4574 retry lookup for private key if there's no matching key with CKA_SIGN
4575 attribute enabled; this fixes fixes MuscleCard support (bugzilla #1736)
4576 ok djm@
Damien Miller4e270b02010-04-16 15:56:21 +10004577 - djm@cvs.openbsd.org 2010/04/16 01:47:26
4578 [PROTOCOL.certkeys auth-options.c auth-options.h auth-rsa.c]
4579 [auth2-pubkey.c authfd.c key.c key.h myproposal.h ssh-add.c]
4580 [ssh-agent.c ssh-dss.c ssh-keygen.1 ssh-keygen.c ssh-rsa.c]
4581 [sshconnect.c sshconnect2.c sshd.c]
4582 revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the
4583 following changes:
4584
4585 move the nonce field to the beginning of the certificate where it can
4586 better protect against chosen-prefix attacks on the signature hash
4587
4588 Rename "constraints" field to "critical options"
4589
4590 Add a new non-critical "extensions" field
4591
4592 Add a serial number
4593
4594 The older format is still support for authentication and cert generation
4595 (use "ssh-keygen -t v00 -s ca_key ..." to generate a v00 certificate)
4596
4597 ok markus@