Damien Miller | 1708cb7 | 2011-01-13 12:21:34 +1100 | [diff] [blame] | 1 | 20110213 |
| 2 | - (djm) [misc.c] include time.h for nanosleep() prototype |
Tim Rice | cce927c | 2011-01-12 19:06:31 -0800 | [diff] [blame] | 3 | - (tim) [Makefile.in] test the ECC bits if we have the capability. ok djm |
Tim Rice | 9b87a5c | 2011-01-12 22:35:43 -0800 | [diff] [blame] | 4 | - (tim) [Makefile.in configure.ac opensshd.init.in] Add support for generating |
| 5 | ecdsa keys. ok djm. |
Damien Miller | ff22df5 | 2011-01-13 21:05:27 +1100 | [diff] [blame] | 6 | - (djm) [entropy.c] cast OPENSSL_VERSION_NUMBER to u_long to avoid |
| 7 | gcc warning on platforms where it defaults to int |
Damien Miller | cbaf8e6 | 2011-01-13 21:08:27 +1100 | [diff] [blame] | 8 | - (djm) [regress/Makefile] add a few more generated files to the clean |
| 9 | target |
Damien Miller | 9b16086 | 2011-01-13 22:00:20 +1100 | [diff] [blame^] | 10 | - (djm) [myproposal.h] Fix reversed OPENSSL_VERSION_NUMBER test and bad |
| 11 | #define that was causing diffie-hellman-group-exchange-sha256 to be |
| 12 | incorrectly disabled |
Damien Miller | 1708cb7 | 2011-01-13 12:21:34 +1100 | [diff] [blame] | 13 | |
Damien Miller | b66e917 | 2011-01-12 13:30:18 +1100 | [diff] [blame] | 14 | 20110212 |
| 15 | - OpenBSD CVS Sync |
| 16 | - nicm@cvs.openbsd.org 2010/10/08 21:48:42 |
| 17 | [openbsd-compat/glob.c] |
| 18 | Extend GLOB_LIMIT to cover readdir and stat and bump the malloc limit |
| 19 | from ARG_MAX to 64K. |
| 20 | Fixes glob-using programs (notably ftp) able to be triggered to hit |
| 21 | resource limits. |
| 22 | Idea from a similar NetBSD change, original problem reported by jasper@. |
| 23 | ok millert tedu jasper |
Damien Miller | 4927aaf | 2011-01-12 13:32:03 +1100 | [diff] [blame] | 24 | - djm@cvs.openbsd.org 2011/01/12 01:53:14 |
| 25 | avoid some integer overflows mostly with GLOB_APPEND and GLOB_DOOFFS |
| 26 | and sanity check arguments (these will be unnecessary when we switch |
| 27 | struct glob members from being type into to size_t in the future); |
| 28 | "looks ok" tedu@ feedback guenther@ |
Damien Miller | 945aa0c | 2011-01-12 13:34:02 +1100 | [diff] [blame] | 29 | - (djm) [configure.ac] Turn on -Wno-unused-result for gcc >= 4.4 to avoid |
| 30 | silly warnings on write() calls we don't care succeed or not. |
Damien Miller | 134d02a | 2011-01-12 16:00:37 +1100 | [diff] [blame] | 31 | - (djm) [configure.ac] Fix broken test for gcc >= 4.4 with per-compiler |
| 32 | flag tests that don't depend on gcc version at all; suggested by and |
| 33 | ok dtucker@ |
Damien Miller | b66e917 | 2011-01-12 13:30:18 +1100 | [diff] [blame] | 34 | |
Tim Rice | 076a3b9 | 2011-01-10 12:56:26 -0800 | [diff] [blame] | 35 | 20110111 |
| 36 | - (tim) [regress/host-expand.sh] Fix for building outside of read only |
| 37 | source tree. |
Damien Miller | 81ad4b1 | 2011-01-11 17:02:23 +1100 | [diff] [blame] | 38 | - (djm) [platform.c] Some missing includes that show up under -Werror |
Damien Miller | b73b6fd | 2011-01-11 17:18:56 +1100 | [diff] [blame] | 39 | - OpenBSD CVS Sync |
| 40 | - djm@cvs.openbsd.org 2011/01/08 10:51:51 |
| 41 | [clientloop.c] |
| 42 | use host and not options.hostname, as the latter may have unescaped |
| 43 | substitution characters |
Damien Miller | a256c8d | 2011-01-11 17:20:05 +1100 | [diff] [blame] | 44 | - djm@cvs.openbsd.org 2011/01/11 06:06:09 |
| 45 | [sshlogin.c] |
| 46 | fd leak on error paths; from zinovik@ |
| 47 | NB. Id sync only; we use loginrec.c that was also audited and fixed |
| 48 | recently |
Damien Miller | 821de0a | 2011-01-11 17:20:29 +1100 | [diff] [blame] | 49 | - djm@cvs.openbsd.org 2011/01/11 06:13:10 |
| 50 | [clientloop.c ssh-keygen.c sshd.c] |
| 51 | some unsigned long long casts that make things a bit easier for |
| 52 | portable without resorting to dropping PRIu64 formats everywhere |
Tim Rice | 076a3b9 | 2011-01-10 12:56:26 -0800 | [diff] [blame] | 53 | |
Damien Miller | e63b7f2 | 2011-01-09 09:19:50 +1100 | [diff] [blame] | 54 | 20110109 |
| 55 | - (djm) [Makefile.in] list ssh_host_ecdsa key in PATHSUBS; spotted by |
| 56 | openssh AT roumenpetrov.info |
| 57 | |
Damien Miller | 996384d | 2011-01-08 21:58:20 +1100 | [diff] [blame] | 58 | 20110108 |
| 59 | - (djm) [regress/keytype.sh] s/echo -n/echon/ to repair failing regress |
| 60 | test on OSX and others. Reported by imorgan AT nas.nasa.gov |
| 61 | |
Damien Miller | 322125b | 2011-01-07 09:50:08 +1100 | [diff] [blame] | 62 | 20110107 |
| 63 | - (djm) [regress/cert-hostkey.sh regress/cert-userkey.sh] fix shell test |
| 64 | for no-ECC case. Patch from cristian.ionescu-idbohrn AT axis.com |
Damien Miller | 83f8a40 | 2011-01-07 09:51:17 +1100 | [diff] [blame] | 65 | - djm@cvs.openbsd.org 2011/01/06 22:23:53 |
| 66 | [ssh.c] |
| 67 | unbreak %n expansion in LocalCommand; patch from bert.wesarg AT |
| 68 | googlemail.com; ok markus@ |
Damien Miller | 64abf31 | 2011-01-07 09:51:52 +1100 | [diff] [blame] | 69 | - djm@cvs.openbsd.org 2011/01/06 22:23:02 |
| 70 | [clientloop.c] |
| 71 | when exiting due to ServerAliveTimeout, mention the hostname that caused |
| 72 | it (useful with backgrounded controlmaster) |
Damien Miller | 7d06b00 | 2011-01-07 09:54:20 +1100 | [diff] [blame] | 73 | - djm@cvs.openbsd.org 2011/01/06 22:46:21 |
| 74 | [regress/Makefile regress/host-expand.sh] |
| 75 | regress test for LocalCommand %n expansion from bert.wesarg AT |
| 76 | googlemail.com; ok markus@ |
Damien Miller | ed3a8eb | 2011-01-07 10:02:52 +1100 | [diff] [blame] | 77 | - djm@cvs.openbsd.org 2011/01/06 23:01:35 |
| 78 | [sshconnect.c] |
| 79 | reset SIGCHLD handler to SIG_DFL when execuring LocalCommand; |
| 80 | ok markus@ |
Damien Miller | 322125b | 2011-01-07 09:50:08 +1100 | [diff] [blame] | 81 | |
Damien Miller | f121143 | 2011-01-06 22:40:30 +1100 | [diff] [blame] | 82 | 20110106 |
| 83 | - (djm) OpenBSD CVS Sync |
| 84 | - markus@cvs.openbsd.org 2010/12/08 22:46:03 |
| 85 | [scp.1 scp.c] |
| 86 | add a new -3 option to scp: Copies between two remote hosts are |
| 87 | transferred through the local host. Without this option the data |
| 88 | is copied directly between the two remote hosts. ok djm@ (bugzilla #1837) |
Damien Miller | 907998d | 2011-01-06 22:41:21 +1100 | [diff] [blame] | 89 | - jmc@cvs.openbsd.org 2010/12/09 14:13:33 |
| 90 | [scp.1 scp.c] |
| 91 | scp.1: grammer fix |
| 92 | scp.c: add -3 to usage() |
Damien Miller | 05c8997 | 2011-01-06 22:42:04 +1100 | [diff] [blame] | 93 | - markus@cvs.openbsd.org 2010/12/14 11:59:06 |
| 94 | [sshconnect.c] |
| 95 | don't mention key type in key-changed-warning, since we also print |
| 96 | this warning if a new key type appears. ok djm@ |
Damien Miller | 106079c | 2011-01-06 22:43:44 +1100 | [diff] [blame] | 97 | - djm@cvs.openbsd.org 2010/12/15 00:49:27 |
| 98 | [readpass.c] |
| 99 | fix ControlMaster=ask regression |
| 100 | reset SIGCHLD handler before fork (and restore it after) so we don't miss |
| 101 | the the askpass child's exit status. Correct test for exit status/signal to |
| 102 | account for waitpid() failure; with claudio@ ok claudio@ markus@ |
Damien Miller | de53fd0 | 2011-01-06 22:44:18 +1100 | [diff] [blame] | 103 | - djm@cvs.openbsd.org 2010/12/24 21:41:48 |
| 104 | [auth-options.c] |
| 105 | don't send the actual forced command in a debug message; ok markus deraadt |
Damien Miller | 8ad960b | 2011-01-06 22:44:44 +1100 | [diff] [blame] | 106 | - otto@cvs.openbsd.org 2011/01/04 20:44:13 |
| 107 | [ssh-keyscan.c] |
| 108 | handle ecdsa-sha2 with various key lengths; hint and ok djm@ |
Damien Miller | f121143 | 2011-01-06 22:40:30 +1100 | [diff] [blame] | 109 | |
Damien Miller | 30a69e7 | 2011-01-04 08:16:27 +1100 | [diff] [blame] | 110 | 20110104 |
| 111 | - (djm) [configure.ac Makefile.in] Use mandoc as preferred manpage |
| 112 | formatter if it is present, followed by nroff and groff respectively. |
| 113 | Fixes distprep target on OpenBSD (which has bumped groff/nroff to ports |
| 114 | in favour of mandoc). feedback and ok tim |
| 115 | |
| 116 | 20110103 |
Damien Miller | d197fd6 | 2011-01-03 14:48:14 +1100 | [diff] [blame] | 117 | - (djm) [Makefile.in] revert local hack I didn't intend to commit |
| 118 | |
| 119 | 20110102 |
Damien Miller | 4a06f92 | 2011-01-02 21:43:59 +1100 | [diff] [blame] | 120 | - (djm) [loginrec.c] Fix some fd leaks on error paths. ok dtucker |
Damien Miller | 41bccf7 | 2011-01-02 21:53:07 +1100 | [diff] [blame] | 121 | - (djm) [configure.ac] Check whether libdes is needed when building |
| 122 | with Heimdal krb5 support. On OpenBSD this library no longer exists, |
| 123 | so linking it unconditionally causes a build failure; ok dtucker |
Damien Miller | 4a06f92 | 2011-01-02 21:43:59 +1100 | [diff] [blame] | 124 | |
Damien Miller | 928362d | 2010-12-26 14:26:45 +1100 | [diff] [blame] | 125 | 20101226 |
| 126 | - (dtucker) OpenBSD CVS Sync |
| 127 | - djm@cvs.openbsd.org 2010/12/08 04:02:47 |
| 128 | [ssh_config.5 sshd_config.5] |
| 129 | explain that IPQoS arguments are separated by whitespace; iirc requested |
| 130 | by jmc@ a while back |
| 131 | |
Darren Tucker | 37bb756 | 2010-12-05 08:46:05 +1100 | [diff] [blame] | 132 | 20101205 |
| 133 | - (dtucker) openbsd-compat/openssl-compat.c] remove sleep leftover from |
| 134 | debugging. Spotted by djm. |
Darren Tucker | 7336b90 | 2010-12-05 09:00:30 +1100 | [diff] [blame] | 135 | - (dtucker) OpenBSD CVS Sync |
| 136 | - djm@cvs.openbsd.org 2010/12/03 23:49:26 |
| 137 | [schnorr.c] |
| 138 | check that g^x^q === 1 mod p; recommended by JPAKE author Feng Hao |
| 139 | (this code is still disabled, but apprently people are treating it as |
| 140 | a reference implementation) |
Darren Tucker | adab6f1 | 2010-12-05 09:01:47 +1100 | [diff] [blame] | 141 | - djm@cvs.openbsd.org 2010/12/03 23:55:27 |
| 142 | [auth-rsa.c] |
| 143 | move check for revoked keys to run earlier (in auth_rsa_key_allowed) |
| 144 | bz#1829; patch from ldv AT altlinux.org; ok markus@ |
Darren Tucker | af1f909 | 2010-12-05 09:02:47 +1100 | [diff] [blame] | 145 | - djm@cvs.openbsd.org 2010/12/04 00:18:01 |
| 146 | [sftp-server.c sftp.1 sftp-client.h sftp.c PROTOCOL sftp-client.c] |
| 147 | add a protocol extension to support a hard link operation. It is |
| 148 | available through the "ln" command in the client. The old "ln" |
| 149 | behaviour of creating a symlink is available using its "-s" option |
| 150 | or through the preexisting "symlink" command; based on a patch from |
| 151 | miklos AT szeredi.hu in bz#1555; ok markus@ |
Darren Tucker | 094f1e9 | 2010-12-05 09:03:31 +1100 | [diff] [blame] | 152 | - djm@cvs.openbsd.org 2010/12/04 13:31:37 |
| 153 | [hostfile.c] |
| 154 | fix fd leak; spotted and ok dtucker |
Darren Tucker | 4288c53 | 2010-12-05 09:45:50 +1100 | [diff] [blame] | 155 | - djm@cvs.openbsd.org 2010/12/04 00:21:19 |
| 156 | [regress/sftp-cmds.sh] |
| 157 | adjust for hard-link support |
Darren Tucker | 7e1a5a4 | 2010-12-05 09:29:31 +1100 | [diff] [blame] | 158 | - (dtucker) [regress/Makefile] Id sync. |
Darren Tucker | 37bb756 | 2010-12-05 08:46:05 +1100 | [diff] [blame] | 159 | |
Damien Miller | d89745b | 2010-12-03 10:50:26 +1100 | [diff] [blame] | 160 | 20101204 |
| 161 | - (djm) [openbsd-compat/bindresvport.c] Use arc4random_uniform(range) |
| 162 | instead of (arc4random() % range) |
Darren Tucker | ebdef76 | 2010-12-04 23:20:50 +1100 | [diff] [blame] | 163 | - (dtucker) [configure.ac moduli.c openbsd-compat/openssl-compat.{c,h}] Add |
| 164 | shims for the new, non-deprecated OpenSSL key generation functions for |
| 165 | platforms that don't have the new interfaces. |
Damien Miller | d89745b | 2010-12-03 10:50:26 +1100 | [diff] [blame] | 166 | |
Damien Miller | 188ea81 | 2010-12-01 11:50:14 +1100 | [diff] [blame] | 167 | 20101201 |
| 168 | - OpenBSD CVS Sync |
| 169 | - deraadt@cvs.openbsd.org 2010/11/20 05:12:38 |
| 170 | [auth2-pubkey.c] |
| 171 | clean up cases of ;; |
Damien Miller | 2cd6293 | 2010-12-01 11:50:35 +1100 | [diff] [blame] | 172 | - djm@cvs.openbsd.org 2010/11/21 01:01:13 |
| 173 | [clientloop.c misc.c misc.h ssh-agent.1 ssh-agent.c] |
| 174 | honour $TMPDIR for client xauth and ssh-agent temporary directories; |
| 175 | feedback and ok markus@ |
Damien Miller | a232792 | 2010-12-01 12:01:21 +1100 | [diff] [blame] | 176 | - djm@cvs.openbsd.org 2010/11/21 10:57:07 |
| 177 | [authfile.c] |
| 178 | Refactor internals of private key loading and saving to work on memory |
| 179 | buffers rather than directly on files. This will make a few things |
| 180 | easier to do in the future; ok markus@ |
Damien Miller | 6a740e7 | 2010-12-01 12:01:51 +1100 | [diff] [blame] | 181 | - djm@cvs.openbsd.org 2010/11/23 02:35:50 |
| 182 | [auth.c] |
| 183 | use strict_modes already passed as function argument over referencing |
| 184 | global options.strict_modes |
Damien Miller | d0fdd68 | 2010-12-01 12:02:14 +1100 | [diff] [blame] | 185 | - djm@cvs.openbsd.org 2010/11/23 23:57:24 |
| 186 | [clientloop.c] |
| 187 | avoid NULL deref on receiving a channel request on an unknown or invalid |
| 188 | channel; report bz#1842 from jchadima AT redhat.com; ok dtucker@ |
Damien Miller | b7f827a | 2010-12-01 12:02:35 +1100 | [diff] [blame] | 189 | - djm@cvs.openbsd.org 2010/11/24 01:24:14 |
| 190 | [channels.c] |
| 191 | remove a debug() that pollutes stderr on client connecting to a server |
| 192 | in debug mode (channel_close_fds is called transitively from the session |
| 193 | code post-fork); bz#1719, ok dtucker |
Damien Miller | f80c3de | 2010-12-01 12:02:59 +1100 | [diff] [blame] | 194 | - djm@cvs.openbsd.org 2010/11/25 04:10:09 |
| 195 | [session.c] |
| 196 | replace close() loop for fds 3->64 with closefrom(); |
| 197 | ok markus deraadt dtucker |
Damien Miller | 87dc0a4 | 2010-12-01 12:03:19 +1100 | [diff] [blame] | 198 | - djm@cvs.openbsd.org 2010/11/26 05:52:49 |
| 199 | [scp.c] |
| 200 | Pass through ssh command-line flags and options when doing remote-remote |
| 201 | transfers, e.g. to enable agent forwarding which is particularly useful |
| 202 | in this case; bz#1837 ok dtucker@ |
Damien Miller | 03c0e53 | 2010-12-01 12:03:39 +1100 | [diff] [blame] | 203 | - markus@cvs.openbsd.org 2010/11/29 18:57:04 |
| 204 | [authfile.c] |
| 205 | correctly load comment for encrypted rsa1 keys; |
| 206 | report/fix Joachim Schipper; ok djm@ |
Damien Miller | d925dcd | 2010-12-01 12:21:51 +1100 | [diff] [blame] | 207 | - djm@cvs.openbsd.org 2010/11/29 23:45:51 |
| 208 | [auth.c hostfile.c hostfile.h ssh.c ssh_config.5 sshconnect.c] |
| 209 | [sshconnect.h sshconnect2.c] |
| 210 | automatically order the hostkeys requested by the client based on |
| 211 | which hostkeys are already recorded in known_hosts. This avoids |
| 212 | hostkey warnings when connecting to servers with new ECDSA keys |
| 213 | that are preferred by default; with markus@ |
Damien Miller | 188ea81 | 2010-12-01 11:50:14 +1100 | [diff] [blame] | 214 | |
Darren Tucker | d995712 | 2010-11-24 10:09:13 +1100 | [diff] [blame] | 215 | 20101124 |
| 216 | - (dtucker) [platform.c session.c] Move the getluid call out of session.c and |
| 217 | into the platform-specific code Only affects SCO, tested by and ok tim@. |
Damien Miller | 88e341e | 2010-11-24 10:36:15 +1100 | [diff] [blame] | 218 | - (djm) [loginrec.c] Relax permission requirement on btmp logs to allow |
| 219 | group read/write. ok dtucker@ |
Darren Tucker | 4b6cbf7 | 2010-11-24 10:46:37 +1100 | [diff] [blame] | 220 | - (dtucker) [packet.c] Remove redundant local declaration of "int tos". |
Damien Miller | 73de86a | 2010-11-24 10:50:04 +1100 | [diff] [blame] | 221 | - (djm) [defines.h] Add IP DSCP defines |
Darren Tucker | d995712 | 2010-11-24 10:09:13 +1100 | [diff] [blame] | 222 | |
Darren Tucker | 9e0ff7a | 2010-11-22 17:59:00 +1100 | [diff] [blame] | 223 | 20101122 |
| 224 | - (dtucker) Bug #1840: fix warning when configuring --with-ssl-engine, patch |
| 225 | from vapier at gentoo org. |
| 226 | |
Damien Miller | 7a221a1 | 2010-11-20 15:14:29 +1100 | [diff] [blame] | 227 | 20101120 |
| 228 | - OpenBSD CVS Sync |
| 229 | - djm@cvs.openbsd.org 2010/11/05 02:46:47 |
| 230 | [packet.c] |
| 231 | whitespace KNF |
Damien Miller | 4499f4c | 2010-11-20 15:15:49 +1100 | [diff] [blame] | 232 | - djm@cvs.openbsd.org 2010/11/10 01:33:07 |
| 233 | [kexdhc.c kexdhs.c kexgexc.c kexgexs.c key.c moduli.c] |
| 234 | use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED. |
| 235 | these have been around for years by this time. ok markus |
Damien Miller | 0dac6fb | 2010-11-20 15:19:38 +1100 | [diff] [blame] | 236 | - djm@cvs.openbsd.org 2010/11/13 23:27:51 |
| 237 | [clientloop.c misc.c misc.h packet.c packet.h readconf.c readconf.h] |
| 238 | [servconf.c servconf.h session.c ssh.c ssh_config.5 sshd_config.5] |
| 239 | allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead of |
| 240 | hardcoding lowdelay/throughput. |
| 241 | |
| 242 | bz#1733 patch from philipp AT redfish-solutions.com; ok markus@ deraadt@ |
Damien Miller | 8e1ea4e | 2010-11-20 15:20:10 +1100 | [diff] [blame] | 243 | - jmc@cvs.openbsd.org 2010/11/15 07:40:14 |
| 244 | [ssh_config.5] |
| 245 | libary -> library; |
Damien Miller | 0a18473 | 2010-11-20 15:21:03 +1100 | [diff] [blame] | 246 | - jmc@cvs.openbsd.org 2010/11/18 15:01:00 |
| 247 | [scp.1 sftp.1 ssh.1 sshd_config.5] |
| 248 | add IPQoS to the various -o lists, and zap some trailing whitespace; |
Damien Miller | 7a221a1 | 2010-11-20 15:14:29 +1100 | [diff] [blame] | 249 | |
Damien Miller | dd190dd | 2010-11-11 14:17:02 +1100 | [diff] [blame] | 250 | 20101111 |
| 251 | - (djm) [servconf.c ssh-add.c ssh-keygen.c] don't look for ECDSA keys on |
| 252 | platforms that don't support ECC. Fixes some spurious warnings reported |
| 253 | by tim@ |
| 254 | |
Tim Rice | e426f5e | 2010-11-08 09:15:14 -0800 | [diff] [blame] | 255 | 20101109 |
| 256 | - (tim) [regress/kextype.sh] Not all platforms have time in /usr/bin. |
| 257 | Feedback from dtucker@ |
Tim Rice | c7a8af0 | 2010-11-08 14:26:23 -0800 | [diff] [blame] | 258 | - (tim) [configure.ac openbsd-compat/bsd-misc.h openbsd-compat/bsd-misc.c] Add |
| 259 | support for platforms missing isblank(). ok djm@ |
Tim Rice | e426f5e | 2010-11-08 09:15:14 -0800 | [diff] [blame] | 260 | |
Tim Rice | 522262f | 2010-11-07 13:00:27 -0800 | [diff] [blame] | 261 | 20101108 |
| 262 | - (tim) [regress/Makefile] Fixes to allow building/testing outside source |
| 263 | tree. |
Tim Rice | c10aeaa | 2010-11-07 13:03:11 -0800 | [diff] [blame] | 264 | - (tim) [regress/kextype.sh] Shell portability fix. |
Tim Rice | 522262f | 2010-11-07 13:00:27 -0800 | [diff] [blame] | 265 | |
Darren Tucker | d1ece6e | 2010-11-07 18:05:54 +1100 | [diff] [blame] | 266 | 20101107 |
| 267 | - (dtucker) [platform.c] includes.h instead of defines.h so that we get |
| 268 | the correct typedefs. |
| 269 | |
Damien Miller | 3a0e9f6 | 2010-11-05 10:16:34 +1100 | [diff] [blame] | 270 | 20101105 |
Damien Miller | 34ee420 | 2010-11-05 10:52:37 +1100 | [diff] [blame] | 271 | - (djm) [loginrec.c loginrec.h] Use correct uid_t/pid_t types instead of |
| 272 | int. Should fix bz#1817 cleanly; ok dtucker@ |
Damien Miller | 3a0e9f6 | 2010-11-05 10:16:34 +1100 | [diff] [blame] | 273 | - OpenBSD CVS Sync |
| 274 | - djm@cvs.openbsd.org 2010/09/22 12:26:05 |
| 275 | [regress/Makefile regress/kextype.sh] |
| 276 | regress test for each of the key exchange algorithms that we support |
Damien Miller | b472a90 | 2010-11-05 10:19:49 +1100 | [diff] [blame] | 277 | - djm@cvs.openbsd.org 2010/10/28 11:22:09 |
| 278 | [authfile.c key.c key.h ssh-keygen.c] |
| 279 | fix a possible NULL deref on loading a corrupt ECDH key |
| 280 | |
| 281 | store ECDH group information in private keys files as "named groups" |
| 282 | rather than as a set of explicit group parameters (by setting |
| 283 | the OPENSSL_EC_NAMED_CURVE flag). This makes for shorter key files and |
| 284 | retrieves the group's OpenSSL NID that we need for various things. |
Damien Miller | 55fa565 | 2010-11-05 10:20:14 +1100 | [diff] [blame] | 285 | - jmc@cvs.openbsd.org 2010/10/28 18:33:28 |
| 286 | [scp.1 ssh-add.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5] |
| 287 | knock out some "-*- nroff -*-" lines; |
Damien Miller | 0733121 | 2010-11-05 10:20:31 +1100 | [diff] [blame] | 288 | - djm@cvs.openbsd.org 2010/11/04 02:45:34 |
| 289 | [sftp-server.c] |
| 290 | umask should be parsed as octal. reported by candland AT xmission.com; |
| 291 | ok markus@ |
Darren Tucker | 9752835 | 2010-11-05 12:03:05 +1100 | [diff] [blame] | 292 | - (dtucker) [configure.ac platform.{c,h} session.c |
| 293 | openbsd-compat/port-solaris.{c,h}] Bug #1824: Add Solaris Project support. |
| 294 | Patch from cory.erickson at csu mnscu edu with a bit of rework from me. |
| 295 | ok djm@ |
Darren Tucker | 920612e | 2010-11-05 12:36:15 +1100 | [diff] [blame] | 296 | - (dtucker) [platform.c platform.h session.c] Add a platform hook to run |
| 297 | after the user's groups are established and move the selinux calls into it. |
Darren Tucker | 4db3807 | 2010-11-05 12:41:13 +1100 | [diff] [blame] | 298 | - (dtucker) [platform.c session.c] Move the AIX setpcred+chroot hack into |
| 299 | platform.c |
Darren Tucker | 44a97be | 2010-11-05 12:45:18 +1100 | [diff] [blame] | 300 | - (dtucker) [platform.c session.c] Move the BSDI setpgrp into platform.c. |
Darren Tucker | fd4d8aa | 2010-11-05 12:50:41 +1100 | [diff] [blame] | 301 | - (dtucker) [platform.c] Only call setpgrp on BSDI if running as root to |
| 302 | retain previous behavior. |
Darren Tucker | 728d837 | 2010-11-05 13:00:05 +1100 | [diff] [blame] | 303 | - (dtucker) [platform.c session.c] Move the PAM credential establishment for |
| 304 | the LOGIN_CAP case into platform.c. |
Darren Tucker | 7a8afe3 | 2010-11-05 13:07:24 +1100 | [diff] [blame] | 305 | - (dtucker) platform.c session.c] Move the USE_LIBIAF fragment into |
| 306 | platform.c |
Darren Tucker | 0b2ee64 | 2010-11-05 13:29:25 +1100 | [diff] [blame] | 307 | - (dtucker) [platform.c session.c] Move aix_usrinfo frament into platform.c. |
| 308 | - (dtucker) [platform.c session.c] Move irix setusercontext fragment into |
| 309 | platform.c. |
Darren Tucker | cc12418 | 2010-11-05 13:32:52 +1100 | [diff] [blame] | 310 | - (dtucker) [platform.c session.c] Move PAM credential establishment for the |
| 311 | non-LOGIN_CAP case into platform.c. |
Darren Tucker | b12fe27 | 2010-11-05 14:47:01 +1100 | [diff] [blame] | 312 | - (dtucker) [platform.c platform.h session.c] Move the Cygwin special-case |
| 313 | check into platform.c |
Darren Tucker | b69e033 | 2010-11-05 18:19:15 +1100 | [diff] [blame] | 314 | - (dtucker) [regress/keytype.sh] Import new test. |
Darren Tucker | eab5f0d | 2010-11-05 18:23:38 +1100 | [diff] [blame] | 315 | - (dtucker) [Makefile configure.ac regress/Makefile regress/keytype.sh] |
| 316 | Import recent changes to regress/Makefile, pass a flag to enable ECC tests |
| 317 | from configure through to regress/Makefile and use it in the tests. |
Darren Tucker | 345178d | 2010-11-05 18:35:52 +1100 | [diff] [blame] | 318 | - (dtucker) [regress/kextype.sh] Add missing "test". |
Darren Tucker | f619d1c | 2010-11-05 18:41:50 +1100 | [diff] [blame] | 319 | - (dtucker) [regress/kextype.sh] Make sha256 test depend on ECC. This is not |
| 320 | strictly correct since while ECC requires sha256 the reverse is not true |
| 321 | however it does prevent spurious test failures. |
Darren Tucker | 9283d8c | 2010-11-05 18:56:08 +1100 | [diff] [blame] | 322 | - (dtucker) [platform.c] Need servconf.h and extern options. |
Damien Miller | 3a0e9f6 | 2010-11-05 10:16:34 +1100 | [diff] [blame] | 323 | |
Tim Rice | bdd3e67 | 2010-10-24 18:35:55 -0700 | [diff] [blame] | 324 | 20101025 |
| 325 | - (tim) [openbsd-compat/glob.h] Remove sys/cdefs.h include that came with |
| 326 | 1.12 to unbreak Solaris build. |
| 327 | ok djm@ |
Darren Tucker | 54b1f31 | 2010-10-25 16:54:28 +1100 | [diff] [blame] | 328 | - (dtucker) [defines.h] Use SIZE_T_MAX for SIZE_MAX for platforms that have a |
| 329 | native one. |
Tim Rice | bdd3e67 | 2010-10-24 18:35:55 -0700 | [diff] [blame] | 330 | |
Darren Tucker | a539393 | 2010-10-24 10:47:30 +1100 | [diff] [blame] | 331 | 20101024 |
| 332 | - (dtucker) [includes.h] Add missing ifdef GLOB_HAS_GL_STATV to fix build. |
Darren Tucker | bfd9b1b | 2010-10-24 11:19:26 +1100 | [diff] [blame] | 333 | - (dtucker) [regress/cert-hostkey.sh] Disable ECC-based tests on platforms |
| 334 | which don't have ECC support in libcrypto. |
Darren Tucker | d633fef | 2010-10-24 11:33:07 +1100 | [diff] [blame] | 335 | - (dtucker) [regress/cert-userkey.sh] Disable ECC-based tests on platforms |
| 336 | which don't have ECC support in libcrypto. |
Darren Tucker | 7bc236d | 2010-10-24 11:58:43 +1100 | [diff] [blame] | 337 | - (dtucker) [defines.h] Add SIZE_MAX for the benefit of platforms that don't |
| 338 | have it. |
Darren Tucker | d78739a | 2010-10-24 10:56:32 +1100 | [diff] [blame] | 339 | - (dtucker) OpenBSD CVS Sync |
| 340 | - sthen@cvs.openbsd.org 2010/10/23 22:06:12 |
| 341 | [sftp.c] |
| 342 | escape '[' in filename tab-completion; fix a type while there. |
| 343 | ok djm@ |
Darren Tucker | a539393 | 2010-10-24 10:47:30 +1100 | [diff] [blame] | 344 | |
Damien Miller | 68512c0 | 2010-10-21 15:21:11 +1100 | [diff] [blame] | 345 | 20101021 |
| 346 | - OpenBSD CVS Sync |
| 347 | - dtucker@cvs.openbsd.org 2010/10/12 02:22:24 |
| 348 | [mux.c] |
| 349 | Typo in confirmation message. bz#1827, patch from imorgan at |
| 350 | nas nasa gov |
Damien Miller | 6fd2d7d | 2010-10-21 15:27:14 +1100 | [diff] [blame] | 351 | - djm@cvs.openbsd.org 2010/08/31 12:24:09 |
| 352 | [regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 353 | tests for ECDSA certificates |
Damien Miller | 68512c0 | 2010-10-21 15:21:11 +1100 | [diff] [blame] | 354 | |
Damien Miller | 1f78980 | 2010-10-11 22:35:22 +1100 | [diff] [blame] | 355 | 20101011 |
Damien Miller | 47e57bf | 2010-10-12 13:28:12 +1100 | [diff] [blame] | 356 | - (djm) [canohost.c] Zero a4 instead of addr to better match type. |
| 357 | bz#1825, reported by foo AT mailinator.com |
Damien Miller | 9c0c31d | 2010-10-12 13:30:44 +1100 | [diff] [blame] | 358 | - (djm) [sshconnect.c] Need signal.h for prototype for kill(2) |
Damien Miller | 47e57bf | 2010-10-12 13:28:12 +1100 | [diff] [blame] | 359 | |
| 360 | 20101011 |
Damien Miller | 1f78980 | 2010-10-11 22:35:22 +1100 | [diff] [blame] | 361 | - (djm) [configure.ac] Use = instead of == in shell tests. Patch from |
| 362 | dr AT vasco.com |
| 363 | |
Damien Miller | aa18063 | 2010-10-07 21:25:27 +1100 | [diff] [blame] | 364 | 20101007 |
Damien Miller | 9a3d0dc | 2010-10-07 22:06:42 +1100 | [diff] [blame] | 365 | - (djm) [ssh-agent.c] Fix type for curve name. |
Damien Miller | aa18063 | 2010-10-07 21:25:27 +1100 | [diff] [blame] | 366 | - (djm) OpenBSD CVS Sync |
| 367 | - matthew@cvs.openbsd.org 2010/09/24 13:33:00 |
| 368 | [misc.c misc.h configure.ac openbsd-compat/openbsd-compat.h] |
| 369 | [openbsd-compat/timingsafe_bcmp.c] |
| 370 | Add timingsafe_bcmp(3) to libc, mention that it's already in the |
| 371 | kernel in kern(9), and remove it from OpenSSH. |
| 372 | ok deraadt@, djm@ |
| 373 | NB. re-added under openbsd-compat/ for portable OpenSSH |
Damien Miller | a6e121a | 2010-10-07 21:39:17 +1100 | [diff] [blame] | 374 | - djm@cvs.openbsd.org 2010/09/25 09:30:16 |
| 375 | [sftp.c configure.ac openbsd-compat/glob.c openbsd-compat/glob.h] |
| 376 | make use of new glob(3) GLOB_KEEPSTAT extension to save extra server |
| 377 | rountrips to fetch per-file stat(2) information. |
| 378 | NB. update openbsd-compat/ glob(3) implementation from OpenBSD libc to |
| 379 | match. |
Damien Miller | 68e2e56 | 2010-10-07 21:39:55 +1100 | [diff] [blame] | 380 | - djm@cvs.openbsd.org 2010/09/26 22:26:33 |
| 381 | [sftp.c] |
| 382 | when performing an "ls" in columnated (short) mode, only call |
| 383 | ioctl(TIOCGWINSZ) once to get the window width instead of per- |
| 384 | filename |
Damien Miller | c54b02c | 2010-10-07 21:40:17 +1100 | [diff] [blame] | 385 | - djm@cvs.openbsd.org 2010/09/30 11:04:51 |
| 386 | [servconf.c] |
| 387 | prevent free() of string in .rodata when overriding AuthorizedKeys in |
| 388 | a Match block; patch from rein AT basefarm.no |
Damien Miller | 9a3d0dc | 2010-10-07 22:06:42 +1100 | [diff] [blame] | 389 | - djm@cvs.openbsd.org 2010/10/01 23:05:32 |
| 390 | [cipher-3des1.c cipher-bf1.c cipher-ctr.c openbsd-compat/openssl-compat.h] |
| 391 | adapt to API changes in openssl-1.0.0a |
| 392 | NB. contains compat code to select correct API for older OpenSSL |
Damien Miller | 38d9a96 | 2010-10-07 22:07:11 +1100 | [diff] [blame] | 393 | - djm@cvs.openbsd.org 2010/10/05 05:13:18 |
| 394 | [sftp.c sshconnect.c] |
| 395 | use default shell /bin/sh if $SHELL is ""; ok markus@ |
Damien Miller | a41ccca | 2010-10-07 22:07:32 +1100 | [diff] [blame] | 396 | - djm@cvs.openbsd.org 2010/10/06 06:39:28 |
| 397 | [clientloop.c ssh.c sshconnect.c sshconnect.h] |
| 398 | kill proxy command on fatal() (we already kill it on clean exit); |
| 399 | ok markus@ |
Damien Miller | 45fcdaa | 2010-10-07 22:07:58 +1100 | [diff] [blame] | 400 | - djm@cvs.openbsd.org 2010/10/06 21:10:21 |
| 401 | [sshconnect.c] |
| 402 | swapped args to kill(2) |
Damien Miller | 37f4f18 | 2010-10-07 22:10:38 +1100 | [diff] [blame] | 403 | - (djm) [openbsd-compat/glob.c] restore ARG_MAX compat code. |
Damien Miller | 80e9953 | 2010-10-07 22:12:08 +1100 | [diff] [blame] | 404 | - (djm) [cipher-acss.c] Add missing header. |
Damien Miller | 88b844f | 2010-10-07 22:19:23 +1100 | [diff] [blame] | 405 | - (djm) [openbsd-compat/Makefile.in] Actually link timingsafe_bcmp |
Damien Miller | aa18063 | 2010-10-07 21:25:27 +1100 | [diff] [blame] | 406 | |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 407 | 20100924 |
| 408 | - (djm) OpenBSD CVS Sync |
| 409 | - naddy@cvs.openbsd.org 2010/09/10 15:19:29 |
| 410 | [ssh-keygen.1] |
| 411 | * mention ECDSA in more places |
| 412 | * less repetition in FILES section |
| 413 | * SSHv1 keys are still encrypted with 3DES |
| 414 | help and ok jmc@ |
Damien Miller | 1ca9469 | 2010-09-24 22:01:22 +1000 | [diff] [blame] | 415 | - djm@cvs.openbsd.org 2010/09/11 21:44:20 |
| 416 | [ssh.1] |
| 417 | mention RFC 5656 for ECC stuff |
Damien Miller | 881adf7 | 2010-09-24 22:01:54 +1000 | [diff] [blame] | 418 | - jmc@cvs.openbsd.org 2010/09/19 21:30:05 |
| 419 | [sftp.1] |
| 420 | more wacky macro fixing; |
Damien Miller | 857b02e | 2010-09-24 22:02:56 +1000 | [diff] [blame] | 421 | - djm@cvs.openbsd.org 2010/09/20 04:41:47 |
| 422 | [ssh.c] |
| 423 | install a SIGCHLD handler to reap expiried child process; ok markus@ |
Damien Miller | f7540cd | 2010-09-24 22:03:24 +1000 | [diff] [blame] | 424 | - djm@cvs.openbsd.org 2010/09/20 04:50:53 |
| 425 | [jpake.c schnorr.c] |
| 426 | check that received values are smaller than the group size in the |
| 427 | disabled and unfinished J-PAKE code. |
| 428 | avoids catastrophic security failure found by Sebastien Martini |
Damien Miller | 18e1cab | 2010-09-24 22:07:17 +1000 | [diff] [blame] | 429 | - djm@cvs.openbsd.org 2010/09/20 04:54:07 |
| 430 | [jpake.c] |
| 431 | missing #include |
Damien Miller | 603134e | 2010-09-24 22:07:55 +1000 | [diff] [blame] | 432 | - djm@cvs.openbsd.org 2010/09/20 07:19:27 |
| 433 | [mux.c] |
| 434 | "atomically" create the listening mux socket by binding it on a temorary |
| 435 | name and then linking it into position after listen() has succeeded. |
| 436 | this allows the mux clients to determine that the server socket is |
| 437 | either ready or stale without races. stale server sockets are now |
| 438 | automatically removed |
| 439 | ok deraadt |
Damien Miller | d5f62bf | 2010-09-24 22:11:14 +1000 | [diff] [blame] | 440 | - djm@cvs.openbsd.org 2010/09/22 05:01:30 |
| 441 | [kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c readconf.c readconf.h] |
| 442 | [servconf.c servconf.h ssh_config.5 sshconnect2.c sshd.c sshd_config.5] |
| 443 | add a KexAlgorithms knob to the client and server configuration to allow |
| 444 | selection of which key exchange methods are used by ssh(1) and sshd(8) |
| 445 | and their order of preference. |
| 446 | ok markus@ |
Damien Miller | 7fe2b1f | 2010-09-24 22:11:53 +1000 | [diff] [blame] | 447 | - jmc@cvs.openbsd.org 2010/09/22 08:30:08 |
| 448 | [ssh.1 ssh_config.5] |
| 449 | ssh.1: add kexalgorithms to the -o list |
| 450 | ssh_config.5: format the kexalgorithms in a more consistent |
| 451 | (prettier!) way |
| 452 | ok djm |
Damien Miller | 65e42f8 | 2010-09-24 22:15:11 +1000 | [diff] [blame] | 453 | - djm@cvs.openbsd.org 2010/09/22 22:58:51 |
| 454 | [atomicio.c atomicio.h misc.c misc.h scp.c sftp-client.c] |
| 455 | [sftp-client.h sftp.1 sftp.c] |
| 456 | add an option per-read/write callback to atomicio |
| 457 | |
| 458 | factor out bandwidth limiting code from scp(1) into a generic bandwidth |
| 459 | limiter that can be attached using the atomicio callback mechanism |
| 460 | |
| 461 | add a bandwidth limit option to sftp(1) using the above |
| 462 | "very nice" markus@ |
Damien Miller | 56883e1 | 2010-09-24 22:15:39 +1000 | [diff] [blame] | 463 | - jmc@cvs.openbsd.org 2010/09/23 13:34:43 |
| 464 | [sftp.c] |
| 465 | add [-l limit] to usage(); |
Damien Miller | 2beb32f | 2010-09-24 22:16:03 +1000 | [diff] [blame] | 466 | - jmc@cvs.openbsd.org 2010/09/23 13:36:46 |
| 467 | [scp.1 sftp.1] |
| 468 | add KexAlgorithms to the -o list; |
Damien Miller | 6186bbc | 2010-09-24 22:00:54 +1000 | [diff] [blame] | 469 | |
Damien Miller | 4314c2b | 2010-09-10 11:12:09 +1000 | [diff] [blame] | 470 | 20100910 |
Darren Tucker | 50e3bab | 2010-09-10 10:30:25 +1000 | [diff] [blame] | 471 | - (dtucker) [openbsd-compat/port-linux.c] Check is_selinux_enabled for exact |
| 472 | return code since it can apparently return -1 under some conditions. From |
| 473 | openssh bugs werbittewas de, ok djm@ |
Damien Miller | 4314c2b | 2010-09-10 11:12:09 +1000 | [diff] [blame] | 474 | - OpenBSD CVS Sync |
| 475 | - djm@cvs.openbsd.org 2010/08/31 12:33:38 |
| 476 | [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c] |
| 477 | reintroduce commit from tedu@, which I pulled out for release |
| 478 | engineering: |
| 479 | OpenSSL_add_all_algorithms is the name of the function we have a |
| 480 | man page for, so use that. ok djm |
Damien Miller | de735ea | 2010-09-10 11:12:38 +1000 | [diff] [blame] | 481 | - jmc@cvs.openbsd.org 2010/08/31 17:40:54 |
| 482 | [ssh-agent.1] |
| 483 | fix some macro abuse; |
Damien Miller | d442790 | 2010-09-10 11:15:10 +1000 | [diff] [blame] | 484 | - jmc@cvs.openbsd.org 2010/08/31 21:14:58 |
| 485 | [ssh.1] |
| 486 | small text tweak to accommodate previous; |
Damien Miller | e13cadf | 2010-09-10 11:15:33 +1000 | [diff] [blame] | 487 | - naddy@cvs.openbsd.org 2010/09/01 15:21:35 |
| 488 | [servconf.c] |
| 489 | pick up ECDSA host key by default; ok djm@ |
Damien Miller | 390f153 | 2010-09-10 11:17:54 +1000 | [diff] [blame] | 490 | - markus@cvs.openbsd.org 2010/09/02 16:07:25 |
Damien Miller | 5773794 | 2010-09-10 11:16:37 +1000 | [diff] [blame] | 491 | [ssh-keygen.c] |
| 492 | permit -b 256, 384 or 521 as key size for ECDSA; ok djm@ |
Damien Miller | 390f153 | 2010-09-10 11:17:54 +1000 | [diff] [blame] | 493 | - markus@cvs.openbsd.org 2010/09/02 16:08:39 |
Damien Miller | 5929c52 | 2010-09-10 11:17:02 +1000 | [diff] [blame] | 494 | [ssh.c] |
| 495 | unbreak ControlPersist=yes for ControlMaster=yes; ok djm@ |
Damien Miller | 6e9f680 | 2010-09-10 11:17:38 +1000 | [diff] [blame] | 496 | - naddy@cvs.openbsd.org 2010/09/02 17:21:50 |
| 497 | [ssh-keygen.c] |
| 498 | Switch ECDSA default key size to 256 bits, which according to RFC5656 |
| 499 | should still be better than our current RSA-2048 default. |
| 500 | ok djm@, markus@ |
Damien Miller | 390f153 | 2010-09-10 11:17:54 +1000 | [diff] [blame] | 501 | - jmc@cvs.openbsd.org 2010/09/03 11:09:29 |
| 502 | [scp.1] |
| 503 | add an EXIT STATUS section for /usr/bin; |
Damien Miller | daa7b22 | 2010-09-10 11:19:33 +1000 | [diff] [blame] | 504 | - jmc@cvs.openbsd.org 2010/09/04 09:38:34 |
| 505 | [ssh-add.1 ssh.1] |
| 506 | two more EXIT STATUS sections; |
Damien Miller | 80ed82a | 2010-09-10 11:20:11 +1000 | [diff] [blame] | 507 | - naddy@cvs.openbsd.org 2010/09/06 17:10:19 |
| 508 | [sshd_config] |
| 509 | add ssh_host_ecdsa_key to /etc; from Mattieu Baptiste |
| 510 | <mattieu.b@gmail.com> |
| 511 | ok deraadt@ |
Damien Miller | bf0423e | 2010-09-10 11:20:38 +1000 | [diff] [blame] | 512 | - djm@cvs.openbsd.org 2010/09/08 03:54:36 |
| 513 | [authfile.c] |
| 514 | typo |
Damien Miller | 3796ab4 | 2010-09-10 11:20:59 +1000 | [diff] [blame] | 515 | - deraadt@cvs.openbsd.org 2010/09/08 04:13:31 |
| 516 | [compress.c] |
| 517 | work around name-space collisions some buggy compilers (looking at you |
| 518 | gcc, at least in earlier versions, but this does not forgive your current |
| 519 | transgressions) seen between zlib and openssl |
| 520 | ok djm |
Damien Miller | 041ab7c | 2010-09-10 11:23:34 +1000 | [diff] [blame] | 521 | - djm@cvs.openbsd.org 2010/09/09 10:45:45 |
| 522 | [kex.c kex.h kexecdh.c key.c key.h monitor.c ssh-ecdsa.c] |
| 523 | ECDH/ECDSA compliance fix: these methods vary the hash function they use |
| 524 | (SHA256/384/512) depending on the length of the curve in use. The previous |
| 525 | code incorrectly used SHA256 in all cases. |
| 526 | |
| 527 | This fix will cause authentication failure when using 384 or 521-bit curve |
| 528 | keys if one peer hasn't been upgraded and the other has. (256-bit curve |
| 529 | keys work ok). In particular you may need to specify HostkeyAlgorithms |
| 530 | when connecting to a server that has not been upgraded from an upgraded |
| 531 | client. |
| 532 | |
| 533 | ok naddy@ |
Damien Miller | 6af914a | 2010-09-10 11:39:26 +1000 | [diff] [blame] | 534 | - (djm) [authfd.c authfile.c bufec.c buffer.h configure.ac kex.h kexecdh.c] |
| 535 | [kexecdhc.c kexecdhs.c key.c key.h myproposal.h packet.c readconf.c] |
| 536 | [ssh-agent.c ssh-ecdsa.c ssh-keygen.c ssh.c] Disable ECDH and ECDSA on |
| 537 | platforms that don't have the requisite OpenSSL support. ok dtucker@ |
Darren Tucker | 8ccb739 | 2010-09-10 12:28:24 +1000 | [diff] [blame] | 538 | - (dtucker) [kex.h key.c packet.h ssh-agent.c ssh.c] A few more ECC ifdefs |
| 539 | for missing headers and compiler warnings. |
Darren Tucker | 50e3bab | 2010-09-10 10:30:25 +1000 | [diff] [blame] | 540 | |
| 541 | 20100831 |
Damien Miller | afdae61 | 2010-08-31 22:31:14 +1000 | [diff] [blame] | 542 | - OpenBSD CVS Sync |
| 543 | - jmc@cvs.openbsd.org 2010/08/08 19:36:30 |
| 544 | [ssh-keysign.8 ssh.1 sshd.8] |
| 545 | use the same template for all FILES sections; i.e. -compact/.Pp where we |
| 546 | have multiple items, and .Pa for path names; |
Damien Miller | 9b87e79 | 2010-08-31 22:31:37 +1000 | [diff] [blame] | 547 | - tedu@cvs.openbsd.org 2010/08/12 23:34:39 |
| 548 | [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c] |
| 549 | OpenSSL_add_all_algorithms is the name of the function we have a man page |
| 550 | for, so use that. ok djm |
Damien Miller | d96546f | 2010-08-31 22:32:12 +1000 | [diff] [blame] | 551 | - djm@cvs.openbsd.org 2010/08/16 04:06:06 |
| 552 | [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keysign.c ssh.c sshd.c] |
| 553 | backout previous temporarily; discussed with deraadt@ |
Damien Miller | da108ec | 2010-08-31 22:36:39 +1000 | [diff] [blame] | 554 | - djm@cvs.openbsd.org 2010/08/31 09:58:37 |
| 555 | [auth-options.c auth1.c auth2.c bufaux.c buffer.h kex.c key.c packet.c] |
| 556 | [packet.h ssh-dss.c ssh-rsa.c] |
| 557 | Add buffer_get_cstring() and related functions that verify that the |
| 558 | string extracted from the buffer contains no embedded \0 characters* |
| 559 | This prevents random (possibly malicious) crap from being appended to |
| 560 | strings where it would not be noticed if the string is used with |
| 561 | a string(3) function. |
| 562 | |
| 563 | Use the new API in a few sensitive places. |
| 564 | |
| 565 | * actually, we allow a single one at the end of the string for now because |
| 566 | we don't know how many deployed implementations get this wrong, but don't |
| 567 | count on this to remain indefinitely. |
Damien Miller | eb8b60e | 2010-08-31 22:41:14 +1000 | [diff] [blame] | 568 | - djm@cvs.openbsd.org 2010/08/31 11:54:45 |
| 569 | [PROTOCOL PROTOCOL.agent PROTOCOL.certkeys auth2-jpake.c authfd.c] |
| 570 | [authfile.c buffer.h dns.c kex.c kex.h key.c key.h monitor.c] |
| 571 | [monitor_wrap.c myproposal.h packet.c packet.h pathnames.h readconf.c] |
| 572 | [ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c] |
| 573 | [ssh-keyscan.1 ssh-keyscan.c ssh-keysign.8 ssh.1 ssh.c ssh2.h] |
| 574 | [ssh_config.5 sshconnect.c sshconnect2.c sshd.8 sshd.c sshd_config.5] |
| 575 | [uuencode.c uuencode.h bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] |
| 576 | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and |
| 577 | host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer |
| 578 | better performance than plain DH and DSA at the same equivalent symmetric |
| 579 | key length, as well as much shorter keys. |
| 580 | |
| 581 | Only the mandatory sections of RFC5656 are implemented, specifically the |
| 582 | three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and |
| 583 | ECDSA. Point compression (optional in RFC5656 is NOT implemented). |
| 584 | |
| 585 | Certificate host and user keys using the new ECDSA key types are supported. |
| 586 | |
| 587 | Note that this code has not been tested for interoperability and may be |
| 588 | subject to change. |
| 589 | |
| 590 | feedback and ok markus@ |
Damien Miller | b5a62d0 | 2010-08-31 22:47:15 +1000 | [diff] [blame] | 591 | - (djm) [Makefile.in] Add new ECC files |
Damien Miller | c79ff07 | 2010-08-31 22:50:48 +1000 | [diff] [blame] | 592 | - (djm) [bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] include |
| 593 | includes.h |
Damien Miller | afdae61 | 2010-08-31 22:31:14 +1000 | [diff] [blame] | 594 | |
Darren Tucker | 6889abd | 2010-08-27 10:12:54 +1000 | [diff] [blame] | 595 | 20100827 |
| 596 | - (dtucker) [contrib/redhat/sshd.init] Bug #1810: initlog is deprecated, |
| 597 | remove. Patch from martynas at venck us |
| 598 | |
Damien Miller | a536202 | 2010-08-23 21:20:20 +1000 | [diff] [blame] | 599 | 20100823 |
| 600 | - (djm) Release OpenSSH-5.6p1 |
| 601 | |
Darren Tucker | aa74f67 | 2010-08-16 13:15:23 +1000 | [diff] [blame] | 602 | 20100816 |
| 603 | - (dtucker) [configure.ac openbsd-compat/Makefile.in |
| 604 | openbsd-compat/openbsd-compat.h openbsd-compat/strptime.c] Add strptime to |
| 605 | the compat library which helps on platforms like old IRIX. Based on work |
| 606 | by djm, tested by Tom Christensen. |
Damien Miller | 00d9ae2 | 2010-08-17 01:59:31 +1000 | [diff] [blame] | 607 | - OpenBSD CVS Sync |
| 608 | - djm@cvs.openbsd.org 2010/08/12 21:49:44 |
| 609 | [ssh.c] |
| 610 | close any extra file descriptors inherited from parent at start and |
| 611 | reopen stdin/stdout to /dev/null when forking for ControlPersist. |
| 612 | |
| 613 | prevents tools that fork and run a captive ssh for communication from |
| 614 | failing to exit when the ssh completes while they wait for these fds to |
| 615 | close. The inherited fds may persist arbitrarily long if a background |
| 616 | mux master has been started by ControlPersist. cvs and scp were effected |
| 617 | by this. |
| 618 | |
| 619 | "please commit" markus@ |
Damien Miller | 07ad389 | 2010-08-17 07:04:28 +1000 | [diff] [blame] | 620 | - (djm) [regress/README.regress] typo |
Darren Tucker | aa74f67 | 2010-08-16 13:15:23 +1000 | [diff] [blame] | 621 | |
Tim Rice | 722b8d1 | 2010-08-12 09:43:13 -0700 | [diff] [blame] | 622 | 20100812 |
| 623 | - (tim) [regress/login-timeout.sh regress/reconfigure.sh regress/reexec.sh |
| 624 | regress/test-exec.sh] Under certain conditions when testing with sudo |
| 625 | tests would fail because the pidfile could not be read by a regular user. |
| 626 | "cat: cannot open ...../regress/pidfile: Permission denied (error 13)" |
| 627 | Make sure cat is run by $SUDO. no objection from me. djm@ |
Tim Rice | ad7d547 | 2010-08-12 10:33:01 -0700 | [diff] [blame] | 628 | - (tim) [auth.c] add cast to quiet compiler. Change only affects SVR5 systems. |
Tim Rice | 722b8d1 | 2010-08-12 09:43:13 -0700 | [diff] [blame] | 629 | |
Damien Miller | 7e569b8 | 2010-08-09 02:28:37 +1000 | [diff] [blame] | 630 | 20100809 |
Damien Miller | 2c4b13a | 2010-08-10 12:47:40 +1000 | [diff] [blame] | 631 | - (djm) bz#1561: don't bother setting IFF_UP on tun(4) device if it is |
| 632 | already set. Makes FreeBSD user openable tunnels useful; patch from |
| 633 | richard.burakowski+ossh AT mrburak.net, ok dtucker@ |
Darren Tucker | 02c4734 | 2010-08-10 13:36:09 +1000 | [diff] [blame] | 634 | - (dtucker) bug #1530: strip trailing ":" from hostname in ssh-copy-id. |
| 635 | based in part on a patch from Colin Watson, ok djm@ |
Damien Miller | 2c4b13a | 2010-08-10 12:47:40 +1000 | [diff] [blame] | 636 | |
| 637 | 20100809 |
Damien Miller | 7e569b8 | 2010-08-09 02:28:37 +1000 | [diff] [blame] | 638 | - OpenBSD CVS Sync |
| 639 | - djm@cvs.openbsd.org 2010/08/08 16:26:42 |
| 640 | [version.h] |
| 641 | crank to 5.6 |
Damien Miller | 792010b | 2010-08-09 02:32:05 +1000 | [diff] [blame] | 642 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 643 | [contrib/suse/openssh.spec] Crank version numbers |
Damien Miller | 7e569b8 | 2010-08-09 02:28:37 +1000 | [diff] [blame] | 644 | |
Damien Miller | 8e604ac | 2010-08-09 02:28:10 +1000 | [diff] [blame] | 645 | 20100805 |
Damien Miller | 7fa9660 | 2010-08-05 13:03:13 +1000 | [diff] [blame] | 646 | - OpenBSD CVS Sync |
| 647 | - djm@cvs.openbsd.org 2010/08/04 05:37:01 |
| 648 | [ssh.1 ssh_config.5 sshd.8] |
| 649 | Remove mentions of weird "addr/port" alternate address format for IPv6 |
| 650 | addresses combinations. It hasn't worked for ages and we have supported |
| 651 | the more commen "[addr]:port" format for a long time. ok jmc@ markus@ |
Damien Miller | 1da6388 | 2010-08-05 13:03:51 +1000 | [diff] [blame] | 652 | - djm@cvs.openbsd.org 2010/08/04 05:40:39 |
| 653 | [PROTOCOL.certkeys ssh-keygen.c] |
| 654 | tighten the rules for certificate encoding by requiring that options |
| 655 | appear in lexical order and make our ssh-keygen comply. ok markus@ |
Damien Miller | c158331 | 2010-08-05 13:04:50 +1000 | [diff] [blame] | 656 | - djm@cvs.openbsd.org 2010/08/04 05:42:47 |
| 657 | [auth.c auth2-hostbased.c authfile.c authfile.h ssh-keysign.8] |
| 658 | [ssh-keysign.c ssh.c] |
| 659 | enable certificates for hostbased authentication, from Iain Morgan; |
| 660 | "looks ok" markus@ |
Damien Miller | 5458c4d | 2010-08-05 13:05:15 +1000 | [diff] [blame] | 661 | - djm@cvs.openbsd.org 2010/08/04 05:49:22 |
| 662 | [authfile.c] |
| 663 | commited the wrong version of the hostbased certificate diff; this |
| 664 | version replaces some strlc{py,at} verbosity with xasprintf() at |
| 665 | the request of markus@ |
Damien Miller | 757f34e | 2010-08-05 13:05:31 +1000 | [diff] [blame] | 666 | - djm@cvs.openbsd.org 2010/08/04 06:07:11 |
| 667 | [ssh-keygen.1 ssh-keygen.c] |
| 668 | Support CA keys in PKCS#11 tokens; feedback and ok markus@ |
Damien Miller | b89e6b7 | 2010-08-05 13:06:20 +1000 | [diff] [blame] | 669 | - djm@cvs.openbsd.org 2010/08/04 06:08:40 |
| 670 | [ssh-keysign.c] |
| 671 | clean for -Wuninitialized (Id sync only; portable had this change) |
Damien Miller | 7d45718 | 2010-08-05 23:09:48 +1000 | [diff] [blame] | 672 | - djm@cvs.openbsd.org 2010/08/05 13:08:42 |
| 673 | [channels.c] |
| 674 | Fix a trio of bugs in the local/remote window calculation for datagram |
| 675 | data channels (i.e. TunnelForward): |
| 676 | |
| 677 | Calculate local_consumed correctly in channel_handle_wfd() by measuring |
| 678 | the delta to buffer_len(c->output) from when we start to when we finish. |
| 679 | The proximal problem here is that the output_filter we use in portable |
| 680 | modified the length of the dequeued datagram (to futz with the headers |
| 681 | for !OpenBSD). |
| 682 | |
| 683 | In channel_output_poll(), don't enqueue datagrams that won't fit in the |
| 684 | peer's advertised packet size (highly unlikely to ever occur) or which |
| 685 | won't fit in the peer's remaining window (more likely). |
| 686 | |
| 687 | In channel_input_data(), account for the 4-byte string header in |
| 688 | datagram packets that we accept from the peer and enqueue in c->output. |
| 689 | |
| 690 | report, analysis and testing 2/3 cases from wierbows AT us.ibm.com; |
| 691 | "looks good" markus@ |
Damien Miller | 7fa9660 | 2010-08-05 13:03:13 +1000 | [diff] [blame] | 692 | |
Damien Miller | 8e604ac | 2010-08-09 02:28:10 +1000 | [diff] [blame] | 693 | 20100803 |
Darren Tucker | 8b7a055 | 2010-08-03 15:50:16 +1000 | [diff] [blame] | 694 | - (dtucker) [monitor.c] Bug #1795: Initialize the values to be returned from |
| 695 | PAM to sane values in case the PAM method doesn't write to them. Spotted by |
| 696 | Bitman Zhou, ok djm@. |
Damien Miller | 844cccf | 2010-08-03 16:03:29 +1000 | [diff] [blame] | 697 | - OpenBSD CVS Sync |
| 698 | - djm@cvs.openbsd.org 2010/07/16 04:45:30 |
| 699 | [ssh-keygen.c] |
| 700 | avoid bogus compiler warning |
Damien Miller | 4e8285e | 2010-08-03 16:04:03 +1000 | [diff] [blame] | 701 | - djm@cvs.openbsd.org 2010/07/16 14:07:35 |
| 702 | [ssh-rsa.c] |
| 703 | more timing paranoia - compare all parts of the expected decrypted |
| 704 | data before returning. AFAIK not exploitable in the SSH protocol. |
| 705 | "groovy" deraadt@ |
Damien Miller | c4bb91c | 2010-08-03 16:04:22 +1000 | [diff] [blame] | 706 | - djm@cvs.openbsd.org 2010/07/19 03:16:33 |
| 707 | [sftp-client.c] |
| 708 | bz#1797: fix swapped args in upload_dir_internal(), breaking recursive |
| 709 | upload depth checks and causing verbose printing of transfers to always |
| 710 | be turned on; patch from imorgan AT nas.nasa.gov |
Damien Miller | e11e1ea | 2010-08-03 16:04:46 +1000 | [diff] [blame] | 711 | - djm@cvs.openbsd.org 2010/07/19 09:15:12 |
| 712 | [clientloop.c readconf.c readconf.h ssh.c ssh_config.5] |
| 713 | add a "ControlPersist" option that automatically starts a background |
| 714 | ssh(1) multiplex master when connecting. This connection can stay alive |
| 715 | indefinitely, or can be set to automatically close after a user-specified |
| 716 | duration of inactivity. bz#1330 - patch by dwmw2 AT infradead.org, but |
| 717 | further hacked on by wmertens AT cisco.com, apb AT cequrux.com, |
| 718 | martin-mindrot-bugzilla AT earth.li and myself; "looks ok" markus@ |
Damien Miller | 8c1eb11 | 2010-08-03 16:05:05 +1000 | [diff] [blame] | 719 | - djm@cvs.openbsd.org 2010/07/21 02:10:58 |
| 720 | [misc.c] |
| 721 | sync timingsafe_bcmp() with the one dempsky@ committed to sys/lib/libkern |
Damien Miller | 081f3c7 | 2010-08-03 16:05:25 +1000 | [diff] [blame] | 722 | - dtucker@cvs.openbsd.org 2010/07/23 08:49:25 |
| 723 | [ssh.1] |
| 724 | Ciphers is documented in ssh_config(5) these days |
Darren Tucker | 8b7a055 | 2010-08-03 15:50:16 +1000 | [diff] [blame] | 725 | |
| 726 | 20100819 |
Darren Tucker | 12b29db | 2010-07-19 21:24:13 +1000 | [diff] [blame] | 727 | - (dtucker) [contrib/ssh-copy-ud.1] Bug #1786: update ssh-copy-id.1 with more |
| 728 | details about its behaviour WRT existing directories. Patch from |
| 729 | asguthrie at gmail com, ok djm. |
| 730 | |
Damien Miller | 9308fc7 | 2010-07-16 13:56:01 +1000 | [diff] [blame] | 731 | 20100716 |
| 732 | - (djm) OpenBSD CVS Sync |
| 733 | - djm@cvs.openbsd.org 2010/07/02 04:32:44 |
| 734 | [misc.c] |
| 735 | unbreak strdelim() skipping past quoted strings, e.g. |
| 736 | AllowUsers "blah blah" blah |
| 737 | was broken; report and fix in bz#1757 from bitman.zhou AT centrify.com |
| 738 | ok dtucker; |
Damien Miller | 1f25ab4 | 2010-07-16 13:56:23 +1000 | [diff] [blame] | 739 | - djm@cvs.openbsd.org 2010/07/12 22:38:52 |
| 740 | [ssh.c] |
| 741 | Make ExitOnForwardFailure work with fork-after-authentication ("ssh -f") |
| 742 | for protocol 2. ok markus@ |
Damien Miller | d0244d4 | 2010-07-16 13:56:43 +1000 | [diff] [blame] | 743 | - djm@cvs.openbsd.org 2010/07/12 22:41:13 |
| 744 | [ssh.c ssh_config.5] |
| 745 | expand %h to the hostname in ssh_config Hostname options. While this |
| 746 | sounds useless, it is actually handy for working with unqualified |
| 747 | hostnames: |
| 748 | |
| 749 | Host *.* |
| 750 | Hostname %h |
| 751 | Host * |
| 752 | Hostname %h.example.org |
| 753 | |
| 754 | "I like it" markus@ |
Damien Miller | 8a0268f | 2010-07-16 13:57:51 +1000 | [diff] [blame] | 755 | - djm@cvs.openbsd.org 2010/07/13 11:52:06 |
| 756 | [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c] |
| 757 | [packet.c ssh-rsa.c] |
| 758 | implement a timing_safe_cmp() function to compare memory without leaking |
| 759 | timing information by short-circuiting like memcmp() and use it for |
| 760 | some of the more sensitive comparisons (though nothing high-value was |
| 761 | readily attackable anyway); "looks ok" markus@ |
Damien Miller | ea1651c | 2010-07-16 13:58:37 +1000 | [diff] [blame] | 762 | - djm@cvs.openbsd.org 2010/07/13 23:13:16 |
| 763 | [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c packet.c] |
| 764 | [ssh-rsa.c] |
| 765 | s/timing_safe_cmp/timingsafe_bcmp/g |
Damien Miller | bcfbc48 | 2010-07-16 13:59:11 +1000 | [diff] [blame] | 766 | - jmc@cvs.openbsd.org 2010/07/14 17:06:58 |
| 767 | [ssh.1] |
| 768 | finally ssh synopsis looks nice again! this commit just removes a ton of |
| 769 | hacks we had in place to make it work with old groff; |
Damien Miller | bad5e03 | 2010-07-16 13:59:59 +1000 | [diff] [blame] | 770 | - schwarze@cvs.openbsd.org 2010/07/15 21:20:38 |
| 771 | [ssh-keygen.1] |
| 772 | repair incorrect block nesting, which screwed up indentation; |
| 773 | problem reported and fix OK by jmc@ |
Damien Miller | 9308fc7 | 2010-07-16 13:56:01 +1000 | [diff] [blame] | 774 | |
Tim Rice | cfbdc28 | 2010-07-14 13:42:28 -0700 | [diff] [blame] | 775 | 20100714 |
| 776 | - (tim) [contrib/redhat/openssh.spec] Bug 1796: Test for skip_x11_askpass |
| 777 | (line 77) should have been for no_x11_askpass. |
| 778 | |
Damien Miller | cede1db | 2010-07-02 13:33:48 +1000 | [diff] [blame] | 779 | 20100702 |
| 780 | - (djm) OpenBSD CVS Sync |
| 781 | - jmc@cvs.openbsd.org 2010/06/26 00:57:07 |
| 782 | [ssh_config.5] |
| 783 | tweak previous; |
Damien Miller | b96c441 | 2010-07-02 13:34:24 +1000 | [diff] [blame] | 784 | - djm@cvs.openbsd.org 2010/06/26 23:04:04 |
| 785 | [ssh.c] |
| 786 | oops, forgot to #include <canohost.h>; spotted and patch from chl@ |
Damien Miller | 44b2504 | 2010-07-02 13:35:01 +1000 | [diff] [blame] | 787 | - djm@cvs.openbsd.org 2010/06/29 23:15:30 |
| 788 | [ssh-keygen.1 ssh-keygen.c] |
| 789 | allow import (-i) and export (-e) of PEM and PKCS#8 encoded keys; |
| 790 | bz#1749; ok markus@ |
Damien Miller | 6018a36 | 2010-07-02 13:35:19 +1000 | [diff] [blame] | 791 | - djm@cvs.openbsd.org 2010/06/29 23:16:46 |
| 792 | [auth2-pubkey.c sshd_config.5] |
| 793 | allow key options (command="..." and friends) in AuthorizedPrincipals; |
| 794 | ok markus@ |
Damien Miller | ea72728 | 2010-07-02 13:35:34 +1000 | [diff] [blame] | 795 | - jmc@cvs.openbsd.org 2010/06/30 07:24:25 |
| 796 | [ssh-keygen.1] |
| 797 | tweak previous; |
Damien Miller | 6022f58 | 2010-07-02 13:37:01 +1000 | [diff] [blame] | 798 | - jmc@cvs.openbsd.org 2010/06/30 07:26:03 |
| 799 | [ssh-keygen.c] |
| 800 | sort usage(); |
Damien Miller | d59dab8 | 2010-07-02 13:37:17 +1000 | [diff] [blame] | 801 | - jmc@cvs.openbsd.org 2010/06/30 07:28:34 |
| 802 | [sshd_config.5] |
| 803 | tweak previous; |
Damien Miller | 0979b40 | 2010-07-02 13:37:33 +1000 | [diff] [blame] | 804 | - millert@cvs.openbsd.org 2010/07/01 13:06:59 |
| 805 | [scp.c] |
| 806 | Fix a longstanding problem where if you suspend scp at the |
| 807 | password/passphrase prompt the terminal mode is not restored. |
| 808 | OK djm@ |
Damien Miller | 527ded7 | 2010-07-02 13:40:16 +1000 | [diff] [blame] | 809 | - phessler@cvs.openbsd.org 2010/06/27 19:19:56 |
| 810 | [regress/Makefile] |
| 811 | fix how we run the tests so we can successfully use SUDO='sudo -E' |
| 812 | in our env |
Damien Miller | ab139cd | 2010-07-02 13:42:18 +1000 | [diff] [blame] | 813 | - djm@cvs.openbsd.org 2010/06/29 23:59:54 |
| 814 | [cert-userkey.sh] |
| 815 | regress tests for key options in AuthorizedPrincipals |
Damien Miller | cede1db | 2010-07-02 13:33:48 +1000 | [diff] [blame] | 816 | |
Tim Rice | 3fd307d | 2010-06-26 16:45:15 -0700 | [diff] [blame] | 817 | 20100627 |
| 818 | - (tim) [openbsd-compat/port-uw.c] Reorder includes. auth-options.h now needs |
| 819 | key.h. |
| 820 | |
Damien Miller | 2e77446 | 2010-06-26 09:30:47 +1000 | [diff] [blame] | 821 | 20100626 |
| 822 | - (djm) OpenBSD CVS Sync |
| 823 | - djm@cvs.openbsd.org 2010/05/21 05:00:36 |
| 824 | [misc.c] |
| 825 | colon() returns char*, so s/return (0)/return NULL/ |
Damien Miller | 4fe686d | 2010-06-26 09:36:10 +1000 | [diff] [blame] | 826 | - markus@cvs.openbsd.org 2010/06/08 21:32:19 |
| 827 | [ssh-pkcs11.c] |
| 828 | check length of value returned C_GetAttributValue for != 0 |
| 829 | from mdrtbugzilla@codefive.co.uk; bugzilla #1773; ok dtucker@ |
Damien Miller | c094d1e | 2010-06-26 09:36:34 +1000 | [diff] [blame] | 830 | - djm@cvs.openbsd.org 2010/06/17 07:07:30 |
| 831 | [mux.c] |
| 832 | Correct sizing of object to be allocated by calloc(), replacing |
| 833 | sizeof(state) with sizeof(*state). This worked by accident since |
| 834 | the struct contained a single int at present, but could have broken |
| 835 | in the future. patch from hyc AT symas.com |
Damien Miller | 99ac4e9 | 2010-06-26 09:36:58 +1000 | [diff] [blame] | 836 | - djm@cvs.openbsd.org 2010/06/18 00:58:39 |
| 837 | [sftp.c] |
| 838 | unbreak ls in working directories that contains globbing characters in |
| 839 | their pathnames. bz#1655 reported by vgiffin AT apple.com |
Damien Miller | 7aa46ec | 2010-06-26 09:37:57 +1000 | [diff] [blame] | 840 | - djm@cvs.openbsd.org 2010/06/18 03:16:03 |
| 841 | [session.c] |
| 842 | Missing check for chroot_director == "none" (we already checked against |
| 843 | NULL); bz#1564 from Jan.Pechanec AT Sun.COM |
Damien Miller | 4956631 | 2010-06-26 09:38:23 +1000 | [diff] [blame] | 844 | - djm@cvs.openbsd.org 2010/06/18 04:43:08 |
| 845 | [sftp-client.c] |
| 846 | fix memory leak in do_realpath() error path; bz#1771, patch from |
| 847 | anicka AT suse.cz |
Damien Miller | ab6de35 | 2010-06-26 09:38:45 +1000 | [diff] [blame] | 848 | - djm@cvs.openbsd.org 2010/06/22 04:22:59 |
| 849 | [servconf.c sshd_config.5] |
| 850 | expose some more sshd_config options inside Match blocks: |
| 851 | AuthorizedKeysFile AuthorizedPrincipalsFile |
| 852 | HostbasedUsesNameFromPacketOnly PermitTunnel |
| 853 | bz#1764; feedback from imorgan AT nas.nasa.gov; ok dtucker@ |
Damien Miller | ba3420a | 2010-06-26 09:39:07 +1000 | [diff] [blame] | 854 | - djm@cvs.openbsd.org 2010/06/22 04:32:06 |
| 855 | [ssh-keygen.c] |
| 856 | standardise error messages when attempting to open private key |
| 857 | files to include "progname: filename: error reason" |
| 858 | bz#1783; ok dtucker@ |
Damien Miller | 48147d6 | 2010-06-26 09:39:25 +1000 | [diff] [blame] | 859 | - djm@cvs.openbsd.org 2010/06/22 04:49:47 |
| 860 | [auth.c] |
| 861 | queue auth debug messages for bad ownership or permissions on the user's |
| 862 | keyfiles. These messages will be sent after the user has successfully |
| 863 | authenticated (where our client will display them with LogLevel=debug). |
Damien Miller | 0e76c5e | 2010-06-26 09:39:59 +1000 | [diff] [blame] | 864 | bz#1554; ok dtucker@ |
| 865 | - djm@cvs.openbsd.org 2010/06/22 04:54:30 |
| 866 | [ssh-keyscan.c] |
| 867 | replace verbose and overflow-prone Linebuf code with read_keyfile_line() |
| 868 | based on patch from joachim AT joachimschipper.nl; bz#1565; ok dtucker@ |
Damien Miller | 1b2b61e | 2010-06-26 09:47:43 +1000 | [diff] [blame] | 869 | - djm@cvs.openbsd.org 2010/06/22 04:59:12 |
| 870 | [session.c] |
| 871 | include the user name on "subsystem request for ..." log messages; |
| 872 | bz#1571; ok dtucker@ |
Damien Miller | d834d35 | 2010-06-26 09:48:02 +1000 | [diff] [blame] | 873 | - djm@cvs.openbsd.org 2010/06/23 02:59:02 |
| 874 | [ssh-keygen.c] |
| 875 | fix printing of extensions in v01 certificates that I broke in r1.190 |
Damien Miller | 232cfb1 | 2010-06-26 09:50:30 +1000 | [diff] [blame] | 876 | - djm@cvs.openbsd.org 2010/06/25 07:14:46 |
| 877 | [channels.c mux.c readconf.c readconf.h ssh.h] |
| 878 | bz#1327: remove hardcoded limit of 100 permitopen clauses and port |
| 879 | forwards per direction; ok markus@ stevesk@ |
Damien Miller | 8853ca5 | 2010-06-26 10:00:14 +1000 | [diff] [blame] | 880 | - djm@cvs.openbsd.org 2010/06/25 07:20:04 |
| 881 | [channels.c session.c] |
| 882 | bz#1750: fix requirement for /dev/null inside ChrootDirectory for |
| 883 | internal-sftp accidentally introduced in r1.253 by removing the code |
| 884 | that opens and dup /dev/null to stderr and modifying the channels code |
| 885 | to read stderr but discard it instead; ok markus@ |
Damien Miller | bda3eca | 2010-06-26 10:01:33 +1000 | [diff] [blame] | 886 | - djm@cvs.openbsd.org 2010/06/25 08:46:17 |
| 887 | [auth1.c auth2-none.c] |
| 888 | skip the initial check for access with an empty password when |
| 889 | PermitEmptyPasswords=no; bz#1638; ok markus@ |
Damien Miller | 383ffe6 | 2010-06-26 10:02:03 +1000 | [diff] [blame] | 890 | - djm@cvs.openbsd.org 2010/06/25 23:10:30 |
| 891 | [ssh.c] |
| 892 | log the hostname and address that we connected to at LogLevel=verbose |
| 893 | after authentication is successful to mitigate "phishing" attacks by |
| 894 | servers with trusted keys that accept authentication silently and |
| 895 | automatically before presenting fake password/passphrase prompts; |
| 896 | "nice!" markus@ |
Damien Miller | 1ab6a51 | 2010-06-26 10:02:24 +1000 | [diff] [blame] | 897 | - djm@cvs.openbsd.org 2010/06/25 23:10:30 |
| 898 | [ssh.c] |
| 899 | log the hostname and address that we connected to at LogLevel=verbose |
| 900 | after authentication is successful to mitigate "phishing" attacks by |
| 901 | servers with trusted keys that accept authentication silently and |
| 902 | automatically before presenting fake password/passphrase prompts; |
| 903 | "nice!" markus@ |
Damien Miller | 2e77446 | 2010-06-26 09:30:47 +1000 | [diff] [blame] | 904 | |
Damien Miller | d82a260 | 2010-06-22 15:02:39 +1000 | [diff] [blame] | 905 | 20100622 |
| 906 | - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512 |
| 907 | bz#1579; ok dtucker |
| 908 | |
Damien Miller | ea90979 | 2010-06-18 11:09:24 +1000 | [diff] [blame] | 909 | 20100618 |
| 910 | - (djm) [contrib/ssh-copy-id] Update key file explicitly under ~ |
| 911 | rather than assuming that $CWD == $HOME. bz#1500, patch from |
| 912 | timothy AT gelter.com |
| 913 | |
Tim Rice | b9ae4ec | 2010-06-17 11:11:44 -0700 | [diff] [blame] | 914 | 20100617 |
| 915 | - (tim) [contrib/cygwin/README] Remove a reference to the obsolete |
| 916 | minires-devel package, and to add the reference to the libedit-devel |
| 917 | package since CYgwin now provides libedit. Patch from Corinna Vinschen. |
| 918 | |
Damien Miller | 3bcce80 | 2010-05-21 14:48:16 +1000 | [diff] [blame] | 919 | 20100521 |
| 920 | - (djm) OpenBSD CVS Sync |
| 921 | - djm@cvs.openbsd.org 2010/05/07 11:31:26 |
| 922 | [regress/Makefile regress/cert-userkey.sh] |
| 923 | regress tests for AuthorizedPrincipalsFile and "principals=" key option. |
| 924 | feedback and ok markus@ |
Damien Miller | 3b90382 | 2010-05-21 14:56:25 +1000 | [diff] [blame] | 925 | - djm@cvs.openbsd.org 2010/05/11 02:58:04 |
| 926 | [auth-rsa.c] |
| 927 | don't accept certificates marked as "cert-authority" here; ok markus@ |
Damien Miller | c6afb5f | 2010-05-21 14:56:47 +1000 | [diff] [blame] | 928 | - djm@cvs.openbsd.org 2010/05/14 00:47:22 |
| 929 | [ssh-add.c] |
| 930 | check that the certificate matches the corresponding private key before |
| 931 | grafting it on |
Damien Miller | d530f5f | 2010-05-21 14:57:10 +1000 | [diff] [blame] | 932 | - djm@cvs.openbsd.org 2010/05/14 23:29:23 |
| 933 | [channels.c channels.h mux.c ssh.c] |
| 934 | Pause the mux channel while waiting for reply from aynch callbacks. |
| 935 | Prevents misordering of replies if new requests arrive while waiting. |
| 936 | |
| 937 | Extend channel open confirm callback to allow signalling failure |
| 938 | conditions as well as success. Use this to 1) fix a memory leak, 2) |
| 939 | start using the above pause mechanism and 3) delay sending a success/ |
| 940 | failure message on mux slave session open until we receive a reply from |
| 941 | the server. |
| 942 | |
| 943 | motivated by and with feedback from markus@ |
Damien Miller | 388f6fc | 2010-05-21 14:57:35 +1000 | [diff] [blame] | 944 | - markus@cvs.openbsd.org 2010/05/16 12:55:51 |
| 945 | [PROTOCOL.mux clientloop.h mux.c readconf.c readconf.h ssh.1 ssh.c] |
| 946 | mux support for remote forwarding with dynamic port allocation, |
| 947 | use with |
| 948 | LPORT=`ssh -S muxsocket -R0:localhost:25 -O forward somehost` |
| 949 | feedback and ok djm@ |
Damien Miller | 8439955 | 2010-05-21 14:58:12 +1000 | [diff] [blame] | 950 | - djm@cvs.openbsd.org 2010/05/20 11:25:26 |
| 951 | [auth2-pubkey.c] |
| 952 | fix logspam when key options (from="..." especially) deny non-matching |
| 953 | keys; reported by henning@ also bz#1765; ok markus@ dtucker@ |
Damien Miller | d0e4a8e | 2010-05-21 14:58:32 +1000 | [diff] [blame] | 954 | - djm@cvs.openbsd.org 2010/05/20 23:46:02 |
| 955 | [PROTOCOL.certkeys auth-options.c ssh-keygen.c] |
| 956 | Move the permit-* options to the non-critical "extensions" field for v01 |
| 957 | certificates. The logic is that if another implementation fails to |
| 958 | implement them then the connection just loses features rather than fails |
| 959 | outright. |
| 960 | |
| 961 | ok markus@ |
Damien Miller | 3bcce80 | 2010-05-21 14:48:16 +1000 | [diff] [blame] | 962 | |
Darren Tucker | 5b6d0d0 | 2010-05-12 16:51:38 +1000 | [diff] [blame] | 963 | 20100511 |
| 964 | - (dtucker) [Makefile.in] Bug #1770: Link libopenbsd-compat twice to solve |
| 965 | circular dependency problem on old or odd platforms. From Tom Lane, ok |
| 966 | djm@. |
Damien Miller | 4b1ec83 | 2010-05-12 17:49:59 +1000 | [diff] [blame] | 967 | - (djm) [openbsd-compat/openssl-compat.h] Fix build breakage on older |
| 968 | libcrypto by defining OPENSSL_[DR]SA_MAX_MODULUS_BITS if they aren't |
| 969 | already. ok dtucker@ |
Darren Tucker | 5b6d0d0 | 2010-05-12 16:51:38 +1000 | [diff] [blame] | 970 | |
Damien Miller | 50af79b | 2010-05-10 11:52:00 +1000 | [diff] [blame] | 971 | 20100510 |
| 972 | - OpenBSD CVS Sync |
| 973 | - djm@cvs.openbsd.org 2010/04/23 01:47:41 |
| 974 | [ssh-keygen.c] |
| 975 | bz#1740: display a more helpful error message when $HOME is |
| 976 | inaccessible while trying to create .ssh directory. Based on patch |
| 977 | from jchadima AT redhat.com; ok dtucker@ |
Damien Miller | 85c50d7 | 2010-05-10 11:53:02 +1000 | [diff] [blame] | 978 | - djm@cvs.openbsd.org 2010/04/23 22:27:38 |
| 979 | [mux.c] |
| 980 | set "detach_close" flag when registering channel cleanup callbacks. |
| 981 | This causes the channel to close normally when its fds close and |
| 982 | hangs when terminating a mux slave using ~. bz#1758; ok markus@ |
Damien Miller | 22a2988 | 2010-05-10 11:53:54 +1000 | [diff] [blame] | 983 | - djm@cvs.openbsd.org 2010/04/23 22:42:05 |
| 984 | [session.c] |
| 985 | set stderr to /dev/null for subsystems rather than just closing it. |
| 986 | avoids hangs if a subsystem or shell initialisation writes to stderr. |
| 987 | bz#1750; ok markus@ |
Damien Miller | bebbb7e | 2010-05-10 11:54:38 +1000 | [diff] [blame] | 988 | - djm@cvs.openbsd.org 2010/04/23 22:48:31 |
| 989 | [ssh-keygen.c] |
| 990 | refuse to generate keys longer than OPENSSL_[RD]SA_MAX_MODULUS_BITS, |
| 991 | since we would refuse to use them anyway. bz#1516; ok dtucker@ |
Damien Miller | 79442c0 | 2010-05-10 11:55:38 +1000 | [diff] [blame] | 992 | - djm@cvs.openbsd.org 2010/04/26 22:28:24 |
| 993 | [sshconnect2.c] |
| 994 | bz#1502: authctxt.success is declared as an int, but passed by |
| 995 | reference to function that accepts sig_atomic_t*. Convert it to |
| 996 | the latter; ok markus@ dtucker@ |
Damien Miller | 2725c21 | 2010-05-10 11:56:14 +1000 | [diff] [blame] | 997 | - djm@cvs.openbsd.org 2010/05/01 02:50:50 |
| 998 | [PROTOCOL.certkeys] |
| 999 | typo; jmeltzer@ |
Damien Miller | 099fc16 | 2010-05-10 11:56:50 +1000 | [diff] [blame] | 1000 | - dtucker@cvs.openbsd.org 2010/05/05 04:22:09 |
| 1001 | [sftp.c] |
| 1002 | restore mput and mget which got lost in the tab-completion changes. |
| 1003 | found by Kenneth Whitaker, ok djm@ |
Damien Miller | 30da344 | 2010-05-10 11:58:03 +1000 | [diff] [blame] | 1004 | - djm@cvs.openbsd.org 2010/05/07 11:30:30 |
| 1005 | [auth-options.c auth-options.h auth.c auth.h auth2-pubkey.c] |
| 1006 | [key.c servconf.c servconf.h sshd.8 sshd_config.5] |
| 1007 | add some optional indirection to matching of principal names listed |
| 1008 | in certificates. Currently, a certificate must include the a user's name |
| 1009 | to be accepted for authentication. This change adds the ability to |
| 1010 | specify a list of certificate principal names that are acceptable. |
| 1011 | |
| 1012 | When authenticating using a CA trusted through ~/.ssh/authorized_keys, |
| 1013 | this adds a new principals="name1[,name2,...]" key option. |
| 1014 | |
| 1015 | For CAs listed through sshd_config's TrustedCAKeys option, a new config |
| 1016 | option "AuthorizedPrincipalsFile" specifies a per-user file containing |
| 1017 | the list of acceptable names. |
| 1018 | |
| 1019 | If either option is absent, the current behaviour of requiring the |
| 1020 | username to appear in principals continues to apply. |
| 1021 | |
| 1022 | These options are useful for role accounts, disjoint account namespaces |
| 1023 | and "user@realm"-style naming policies in certificates. |
| 1024 | |
| 1025 | feedback and ok markus@ |
Damien Miller | 81d3fc5 | 2010-05-10 11:58:45 +1000 | [diff] [blame] | 1026 | - jmc@cvs.openbsd.org 2010/05/07 12:49:17 |
| 1027 | [sshd_config.5] |
| 1028 | tweak previous; |
Damien Miller | 50af79b | 2010-05-10 11:52:00 +1000 | [diff] [blame] | 1029 | |
Darren Tucker | 9f8703b | 2010-04-23 11:12:06 +1000 | [diff] [blame] | 1030 | 20100423 |
| 1031 | - (dtucker) [configure.ac] Bug #1756: Check for the existence of a lib64 dir |
| 1032 | in the openssl install directory (some newer openssl versions do this on at |
| 1033 | least some amd64 platforms). |
| 1034 | |
Damien Miller | c4eddee | 2010-04-18 08:07:43 +1000 | [diff] [blame] | 1035 | 20100418 |
| 1036 | - OpenBSD CVS Sync |
| 1037 | - jmc@cvs.openbsd.org 2010/04/16 06:45:01 |
| 1038 | [ssh_config.5] |
| 1039 | tweak previous; ok djm |
Damien Miller | 1f18142 | 2010-04-18 08:08:03 +1000 | [diff] [blame] | 1040 | - jmc@cvs.openbsd.org 2010/04/16 06:47:04 |
| 1041 | [ssh-keygen.1 ssh-keygen.c] |
| 1042 | tweak previous; ok djm |
Damien Miller | c617aa9 | 2010-04-18 08:08:20 +1000 | [diff] [blame] | 1043 | - djm@cvs.openbsd.org 2010/04/16 21:14:27 |
| 1044 | [sshconnect.c] |
| 1045 | oops, %r => remote username, not %u |
Damien Miller | 53f4bb6 | 2010-04-18 08:15:14 +1000 | [diff] [blame] | 1046 | - djm@cvs.openbsd.org 2010/04/16 01:58:45 |
| 1047 | [regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 1048 | regression tests for v01 certificate format |
| 1049 | includes interop tests for v00 certs |
Darren Tucker | e25a9bd | 2010-04-18 13:35:00 +1000 | [diff] [blame] | 1050 | - (dtucker) [contrib/aix/buildbff.sh] Fix creation of ssh_prng_cmds.default |
| 1051 | file. |
Damien Miller | c4eddee | 2010-04-18 08:07:43 +1000 | [diff] [blame] | 1052 | |
Damien Miller | a45f1c0 | 2010-04-16 15:51:34 +1000 | [diff] [blame] | 1053 | 20100416 |
| 1054 | - (djm) Release openssh-5.5p1 |
Damien Miller | d6fc306 | 2010-04-16 15:51:45 +1000 | [diff] [blame] | 1055 | - OpenBSD CVS Sync |
| 1056 | - djm@cvs.openbsd.org 2010/03/26 03:13:17 |
| 1057 | [bufaux.c] |
| 1058 | allow buffer_get_int_ret/buffer_get_int64_ret to take a NULL pointer |
| 1059 | argument to allow skipping past values in a buffer |
Damien Miller | 67f30d7 | 2010-04-16 15:52:03 +1000 | [diff] [blame] | 1060 | - jmc@cvs.openbsd.org 2010/03/26 06:54:36 |
| 1061 | [ssh.1] |
| 1062 | tweak previous; |
Damien Miller | 544378d | 2010-04-16 15:52:24 +1000 | [diff] [blame] | 1063 | - jmc@cvs.openbsd.org 2010/03/27 14:26:55 |
| 1064 | [ssh_config.5] |
| 1065 | tweak previous; ok dtucker |
Damien Miller | deb5a14 | 2010-04-16 15:52:43 +1000 | [diff] [blame] | 1066 | - djm@cvs.openbsd.org 2010/04/10 00:00:16 |
| 1067 | [ssh.c] |
| 1068 | bz#1746 - suppress spurious tty warning when using -O and stdin |
| 1069 | is not a tty; ok dtucker@ markus@ |
Damien Miller | 6728399 | 2010-04-16 15:53:02 +1000 | [diff] [blame] | 1070 | - djm@cvs.openbsd.org 2010/04/10 00:04:30 |
| 1071 | [sshconnect.c] |
| 1072 | fix terminology: we didn't find a certificate in known_hosts, we found |
| 1073 | a CA key |
Damien Miller | 22c97f1 | 2010-04-16 15:53:23 +1000 | [diff] [blame] | 1074 | - djm@cvs.openbsd.org 2010/04/10 02:08:44 |
| 1075 | [clientloop.c] |
| 1076 | bz#1698: kill channel when pty allocation requests fail. Fixed |
| 1077 | stuck client if the server refuses pty allocation. |
| 1078 | ok dtucker@ "think so" markus@ |
Damien Miller | 8868065 | 2010-04-16 15:53:43 +1000 | [diff] [blame] | 1079 | - djm@cvs.openbsd.org 2010/04/10 02:10:56 |
| 1080 | [sshconnect2.c] |
| 1081 | show the key type that we are offering in debug(), helps distinguish |
| 1082 | between certs and plain keys as the path to the private key is usually |
| 1083 | the same. |
Damien Miller | 601a23c | 2010-04-16 15:54:01 +1000 | [diff] [blame] | 1084 | - djm@cvs.openbsd.org 2010/04/10 05:48:16 |
| 1085 | [mux.c] |
| 1086 | fix NULL dereference; from matthew.haub AT alumni.adelaide.edu.au |
Damien Miller | b1b1704 | 2010-04-16 15:54:19 +1000 | [diff] [blame] | 1087 | - djm@cvs.openbsd.org 2010/04/14 22:27:42 |
| 1088 | [ssh_config.5 sshconnect.c] |
| 1089 | expand %r => remote username in ssh_config:ProxyCommand; |
| 1090 | ok deraadt markus |
Damien Miller | 031c910 | 2010-04-16 15:54:44 +1000 | [diff] [blame] | 1091 | - markus@cvs.openbsd.org 2010/04/15 20:32:55 |
| 1092 | [ssh-pkcs11.c] |
| 1093 | retry lookup for private key if there's no matching key with CKA_SIGN |
| 1094 | attribute enabled; this fixes fixes MuscleCard support (bugzilla #1736) |
| 1095 | ok djm@ |
Damien Miller | 4e270b0 | 2010-04-16 15:56:21 +1000 | [diff] [blame] | 1096 | - djm@cvs.openbsd.org 2010/04/16 01:47:26 |
| 1097 | [PROTOCOL.certkeys auth-options.c auth-options.h auth-rsa.c] |
| 1098 | [auth2-pubkey.c authfd.c key.c key.h myproposal.h ssh-add.c] |
| 1099 | [ssh-agent.c ssh-dss.c ssh-keygen.1 ssh-keygen.c ssh-rsa.c] |
| 1100 | [sshconnect.c sshconnect2.c sshd.c] |
| 1101 | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the |
| 1102 | following changes: |
| 1103 | |
| 1104 | move the nonce field to the beginning of the certificate where it can |
| 1105 | better protect against chosen-prefix attacks on the signature hash |
| 1106 | |
| 1107 | Rename "constraints" field to "critical options" |
| 1108 | |
| 1109 | Add a new non-critical "extensions" field |
| 1110 | |
| 1111 | Add a serial number |
| 1112 | |
| 1113 | The older format is still support for authentication and cert generation |
| 1114 | (use "ssh-keygen -t v00 -s ca_key ..." to generate a v00 certificate) |
| 1115 | |
| 1116 | ok markus@ |
Damien Miller | a45f1c0 | 2010-04-16 15:51:34 +1000 | [diff] [blame] | 1117 | |
Darren Tucker | 627337d | 2010-04-10 22:58:01 +1000 | [diff] [blame] | 1118 | 20100410 |
| 1119 | - (dtucker) [configure.ac] Put the check for the existence of getaddrinfo |
| 1120 | back so we disable the IPv6 tests if we don't have it. |
| 1121 | |
Darren Tucker | 537d4dc | 2010-04-09 13:35:23 +1000 | [diff] [blame] | 1122 | 20100409 |
| 1123 | - (dtucker) [contrib/cygwin/Makefile] Don't overwrite files with the wrong |
| 1124 | ones. Based on a patch from Roumen Petrov. |
Darren Tucker | c4ccb12 | 2010-04-09 14:04:35 +1000 | [diff] [blame] | 1125 | - (dtucker) [configure.ac] Bug #1744: use pkg-config for libedit flags if we |
| 1126 | have it and the path is not provided to --with-libedit. Based on a patch |
| 1127 | from Iain Morgan. |
Darren Tucker | 261d93a | 2010-04-09 18:13:27 +1000 | [diff] [blame] | 1128 | - (dtucker) [configure.ac defines.h loginrec.c logintest.c] Bug #1732: enable |
| 1129 | utmpx support on FreeBSD where possible. Patch from Ed Schouten, ok djm@ |
Darren Tucker | 537d4dc | 2010-04-09 13:35:23 +1000 | [diff] [blame] | 1130 | |
Damien Miller | 7d09b8f | 2010-03-26 08:52:02 +1100 | [diff] [blame] | 1131 | 20100326 |
| 1132 | - (djm) [openbsd-compat/bsd-arc4random.c] Fix preprocessor detection |
| 1133 | for arc4random_buf() and arc4random_uniform(); from Josh Gilkerson |
Darren Tucker | a83d90f | 2010-03-26 10:27:33 +1100 | [diff] [blame] | 1134 | - (dtucker) [configure.ac] Bug #1741: Add section for Haiku, patch originally |
| 1135 | by Ingo Weinhold via Scott McCreary, ok djm@ |
Damien Miller | 44451d0 | 2010-03-26 10:40:04 +1100 | [diff] [blame] | 1136 | - (djm) OpenBSD CVS Sync |
| 1137 | - djm@cvs.openbsd.org 2010/03/25 23:38:28 |
| 1138 | [servconf.c] |
| 1139 | from portable: getcwd(NULL, 0) doesn't work on all platforms, so |
| 1140 | use a stack buffer; ok dtucker@ |
Damien Miller | 9c60f24 | 2010-03-26 11:28:35 +1100 | [diff] [blame] | 1141 | - djm@cvs.openbsd.org 2010/03/26 00:26:58 |
| 1142 | [ssh.1] |
| 1143 | mention that -S none disables connection sharing; from Colin Watson |
Damien Miller | 8b90642 | 2010-03-26 11:04:09 +1100 | [diff] [blame] | 1144 | - (djm) [session.c] Allow ChrootDirectory to work on SELinux platforms - |
| 1145 | set up SELinux execution context before chroot() call. From Russell |
| 1146 | Coker via Colin watson; bz#1726 ok dtucker@ |
Damien Miller | 6480c63 | 2010-03-26 11:09:44 +1100 | [diff] [blame] | 1147 | - (djm) [channels.c] Check for EPFNOSUPPORT as a socket() errno; bz#1721 |
| 1148 | ok dtucker@ |
Darren Tucker | ffd1eaa | 2010-03-26 11:16:39 +1100 | [diff] [blame] | 1149 | - (dtucker) Bug #1725: explicitly link libX11 into gnome-ssh-askpass2 using |
| 1150 | pkg-config, patch from Colin Watson. Needed for newer linkers (ie gold). |
Damien Miller | df08341 | 2010-03-26 11:18:27 +1100 | [diff] [blame] | 1151 | - (djm) [contrib/ssh-copy-id] Don't blow up when the agent has no keys; |
| 1152 | bz#1723 patch from Adeodato Simóvia Colin Watson; ok dtucker@ |
Darren Tucker | ce3754b | 2010-03-26 12:09:13 +1100 | [diff] [blame] | 1153 | - (dtucker) OpenBSD CVS Sync |
| 1154 | - dtucker@cvs.openbsd.org 2010/03/26 01:06:13 |
| 1155 | [ssh_config.5] |
| 1156 | Reformat default value of PreferredAuthentications entry (current |
| 1157 | formatting implies ", " is acceptable as a separator, which it's not. |
| 1158 | ok djm@ |
Damien Miller | 7d09b8f | 2010-03-26 08:52:02 +1100 | [diff] [blame] | 1159 | |
Darren Tucker | 62131dc | 2010-03-24 13:03:32 +1100 | [diff] [blame] | 1160 | 20100324 |
| 1161 | - (dtucker) [contrib/cygwin/ssh-host-config] Mount the Windows directory |
| 1162 | containing the services file explicitely case-insensitive. This allows to |
| 1163 | tweak the Windows services file reliably. Patch from vinschen at redhat. |
| 1164 | |
Damien Miller | c59e244 | 2010-03-22 05:50:31 +1100 | [diff] [blame] | 1165 | 20100321 |
| 1166 | - (djm) OpenBSD CVS Sync |
| 1167 | - jmc@cvs.openbsd.org 2010/03/08 09:41:27 |
| 1168 | [ssh-keygen.1] |
| 1169 | sort the list of constraints (to -O); ok djm |
Damien Miller | 77497e1 | 2010-03-22 05:50:51 +1100 | [diff] [blame] | 1170 | - jmc@cvs.openbsd.org 2010/03/10 07:40:35 |
| 1171 | [ssh-keygen.1] |
| 1172 | typos; from Ross Richardson |
| 1173 | closes prs 6334 and 6335 |
Damien Miller | e513a91 | 2010-03-22 05:51:21 +1100 | [diff] [blame] | 1174 | - djm@cvs.openbsd.org 2010/03/10 23:27:17 |
| 1175 | [auth2-pubkey.c] |
| 1176 | correct certificate logging and make it more consistent between |
| 1177 | authorized_keys and TrustedCAKeys; ok markus@ |
Damien Miller | c4cb47b | 2010-03-22 05:52:26 +1100 | [diff] [blame] | 1178 | - djm@cvs.openbsd.org 2010/03/12 01:06:25 |
| 1179 | [servconf.c] |
| 1180 | unbreak AuthorizedKeys option with a $HOME-relative path; reported by |
| 1181 | vinschen AT redhat.com, ok dtucker@ |
Damien Miller | 4a5f0d3 | 2010-03-22 05:53:04 +1100 | [diff] [blame] | 1182 | - markus@cvs.openbsd.org 2010/03/12 11:37:40 |
| 1183 | [servconf.c] |
| 1184 | do not prepend AuthorizedKeysFile with getcwd(), unbreaks relative paths |
| 1185 | free() (not xfree()) the buffer returned by getcwd() |
Damien Miller | 8ddc71c | 2010-03-22 05:54:02 +1100 | [diff] [blame] | 1186 | - djm@cvs.openbsd.org 2010/03/13 21:10:38 |
| 1187 | [clientloop.c] |
| 1188 | protocol conformance fix: send language tag when disconnecting normally; |
| 1189 | spotted by 1.41421 AT gmail.com, ok markus@ deraadt@ |
Damien Miller | 1b61a28 | 2010-03-22 05:55:06 +1100 | [diff] [blame] | 1190 | - djm@cvs.openbsd.org 2010/03/13 21:45:46 |
| 1191 | [ssh-keygen.1] |
| 1192 | Certificates are named *-cert.pub, not *_cert.pub; committing a diff |
| 1193 | from stevesk@ ok me |
Damien Miller | 5a5d94b | 2010-03-22 05:57:49 +1100 | [diff] [blame] | 1194 | - jmc@cvs.openbsd.org 2010/03/13 23:38:13 |
| 1195 | [ssh-keygen.1] |
| 1196 | fix a formatting error (args need quoted); noted by stevesk |
Damien Miller | 1cfbfaf | 2010-03-22 05:58:24 +1100 | [diff] [blame] | 1197 | - stevesk@cvs.openbsd.org 2010/03/15 19:40:02 |
| 1198 | [key.c key.h ssh-keygen.c] |
| 1199 | also print certificate type (user or host) for ssh-keygen -L |
| 1200 | ok djm kettenis |
Damien Miller | 33334b2 | 2010-03-22 05:59:02 +1100 | [diff] [blame] | 1201 | - stevesk@cvs.openbsd.org 2010/03/16 15:46:52 |
| 1202 | [auth-options.c] |
| 1203 | spelling in error message. ok djm kettenis |
Damien Miller | 13a9f72 | 2010-03-22 05:59:22 +1100 | [diff] [blame] | 1204 | - djm@cvs.openbsd.org 2010/03/16 16:36:49 |
| 1205 | [version.h] |
| 1206 | crank version to openssh-5.5 since we have a few fixes since 5.4; |
| 1207 | requested deraadt@ kettenis@ |
Damien Miller | b086d4a | 2010-03-22 06:11:55 +1100 | [diff] [blame] | 1208 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 1209 | [contrib/suse/openssh.spec] Crank version numbers |
Damien Miller | c59e244 | 2010-03-22 05:50:31 +1100 | [diff] [blame] | 1210 | |
Damien Miller | 47f9a41 | 2010-03-14 08:37:49 +1100 | [diff] [blame] | 1211 | 20100314 |
| 1212 | - (djm) [ssh-pkcs11-helper.c] Move #ifdef to after #defines to fix |
| 1213 | compilation failure when !HAVE_DLOPEN. Reported by felix-mindrot |
| 1214 | AT fefe.de |
Damien Miller | 1f574b2 | 2010-03-14 08:41:34 +1100 | [diff] [blame] | 1215 | - (djm) [Makefile.in] Respecify -lssh after -lopenbsd-compat for |
| 1216 | ssh-pkcs11-helper to repair static builds (we do the same for |
| 1217 | ssh-keyscan). Reported by felix-mindrot AT fefe.de |
Damien Miller | 47f9a41 | 2010-03-14 08:37:49 +1100 | [diff] [blame] | 1218 | |
Tim Rice | 2bde3ee | 2010-03-11 22:18:13 -0800 | [diff] [blame] | 1219 | 20100312 |
Tim Rice | ded8fa0 | 2010-03-11 22:32:02 -0800 | [diff] [blame] | 1220 | - (tim) [Makefile.in] Now that scard is gone, no need to make $(datadir) |
| 1221 | - (tim) [Makefile.in] Add missing $(EXEEXT) to install targets. |
| 1222 | Patch from Corinna Vinschen. |
Tim Rice | 4e0cea8 | 2010-03-11 22:35:19 -0800 | [diff] [blame] | 1223 | - (tim) [contrib/cygwin/Makefile] Fix list of documentation files to install |
| 1224 | on a Cygwin installation. Patch from Corinna Vinschen. |
Tim Rice | 2bde3ee | 2010-03-11 22:18:13 -0800 | [diff] [blame] | 1225 | |
Tim Rice | fa233ba | 2010-03-10 16:12:02 -0800 | [diff] [blame] | 1226 | 20100311 |
| 1227 | - (tim) [contrib/suse/openssh.spec] crank version number here too. |
| 1228 | report by imorgan AT nas.nasa.gov |
| 1229 | |
Darren Tucker | c9fe39b | 2010-03-09 20:42:30 +1100 | [diff] [blame] | 1230 | 20100309 |
| 1231 | - (dtucker) [configure.ac] Use a proper AC_CHECK_DECL for BROKEN_GETADDRINFO |
| 1232 | so setting it in CFLAGS correctly skips IPv6 tests. |
| 1233 | |
| 1234 | 20100308 |
Damien Miller | b3bc331 | 2010-03-08 09:03:33 +1100 | [diff] [blame] | 1235 | - (djm) OpenBSD CVS Sync |
Damien Miller | 3e1ee49 | 2010-03-08 09:24:11 +1100 | [diff] [blame] | 1236 | - djm@cvs.openbsd.org 2010/03/07 22:16:01 |
| 1237 | [ssh-keygen.c] |
| 1238 | make internal strptime string match strftime format; |
| 1239 | suggested by vinschen AT redhat.com and markus@ |
Damien Miller | 081c976 | 2010-03-08 11:30:00 +1100 | [diff] [blame] | 1240 | - djm@cvs.openbsd.org 2010/03/08 00:28:55 |
| 1241 | [ssh-keygen.1] |
| 1242 | document permit-agent-forwarding certificate constraint; patch from |
| 1243 | stevesk@ |
Damien Miller | b3bc331 | 2010-03-08 09:03:33 +1100 | [diff] [blame] | 1244 | - djm@cvs.openbsd.org 2010/03/07 22:01:32 |
| 1245 | [version.h] |
| 1246 | openssh-5.4 |
Damien Miller | 6bf3178 | 2010-03-08 09:41:02 +1100 | [diff] [blame] | 1247 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 1248 | crank version numbers |
Damien Miller | 9586787 | 2010-03-08 09:50:17 +1100 | [diff] [blame] | 1249 | - (djm) Release OpenSSH-5.4p1 |
Damien Miller | b3bc331 | 2010-03-08 09:03:33 +1100 | [diff] [blame] | 1250 | |
| 1251 | 20100307 |
Darren Tucker | b3d20a3 | 2010-03-07 11:56:59 +1100 | [diff] [blame] | 1252 | - (dtucker) [auth.c] Bug #1710: call setauthdb on AIX before getpwuid so that |
| 1253 | it gets the passwd struct from the LAM that knows about the user which is |
| 1254 | not necessarily the default. Patch from Alexandre Letourneau. |
Darren Tucker | c738e6c | 2010-03-07 13:21:12 +1100 | [diff] [blame] | 1255 | - (dtucker) [session.c] Bug #1567: move setpcred call to before chroot and |
| 1256 | do not set real uid, since that's needed for the chroot, and will be set |
| 1257 | by permanently_set_uid. |
Darren Tucker | ac0c4c9 | 2010-03-07 13:32:16 +1100 | [diff] [blame] | 1258 | - (dtucker) [session.c] Also initialize creds to NULL for handing to |
| 1259 | setpcred. |
Darren Tucker | cd70e1b | 2010-03-07 23:05:17 +1100 | [diff] [blame] | 1260 | - (dtucker) OpenBSD CVS Sync |
| 1261 | - dtucker@cvs.openbsd.org 2010/03/07 11:57:13 |
| 1262 | [auth-rhosts.c monitor.c monitor_wrap.c session.c auth-options.c sshd.c] |
| 1263 | Hold authentication debug messages until after successful authentication. |
| 1264 | Fixes an info leak of environment variables specified in authorized_keys, |
| 1265 | reported by Jacob Appelbaum. ok djm@ |
Darren Tucker | b3d20a3 | 2010-03-07 11:56:59 +1100 | [diff] [blame] | 1266 | |
Damien Miller | 72b3382 | 2010-03-05 07:39:01 +1100 | [diff] [blame] | 1267 | 20100305 |
| 1268 | - OpenBSD CVS Sync |
| 1269 | - jmc@cvs.openbsd.org 2010/03/04 12:51:25 |
| 1270 | [ssh.1 sshd_config.5] |
| 1271 | tweak previous; |
Damien Miller | f2b70ca | 2010-03-05 07:39:35 +1100 | [diff] [blame] | 1272 | - djm@cvs.openbsd.org 2010/03/04 20:35:08 |
| 1273 | [ssh-keygen.1 ssh-keygen.c] |
| 1274 | Add a -L flag to print the contents of a certificate; ok markus@ |
Damien Miller | 8f6c337 | 2010-03-05 10:41:26 +1100 | [diff] [blame] | 1275 | - jmc@cvs.openbsd.org 2010/03/04 22:52:40 |
| 1276 | [ssh-keygen.1] |
| 1277 | fix Bk/Ek; |
Damien Miller | c6db99e | 2010-03-05 10:41:45 +1100 | [diff] [blame] | 1278 | - djm@cvs.openbsd.org 2010/03/04 23:17:25 |
| 1279 | [sshd_config.5] |
| 1280 | missing word; spotted by jmc@ |
Damien Miller | a7dab8b | 2010-03-05 10:42:05 +1100 | [diff] [blame] | 1281 | - djm@cvs.openbsd.org 2010/03/04 23:19:29 |
| 1282 | [ssh.1 sshd.8] |
| 1283 | move section on CA and revoked keys from ssh.1 to sshd.8's known hosts |
| 1284 | format section and rework it a bit; requested by jmc@ |
Damien Miller | 689b872 | 2010-03-05 10:42:24 +1100 | [diff] [blame] | 1285 | - djm@cvs.openbsd.org 2010/03/04 23:27:25 |
| 1286 | [auth-options.c ssh-keygen.c] |
| 1287 | "force-command" is not spelled "forced-command"; spotted by |
| 1288 | imorgan AT nas.nasa.gov |
Damien Miller | b068d0a | 2010-03-05 14:03:03 +1100 | [diff] [blame] | 1289 | - djm@cvs.openbsd.org 2010/03/05 02:58:11 |
| 1290 | [auth.c] |
| 1291 | make the warning for a revoked key louder and more noticable |
Damien Miller | 9833905 | 2010-03-05 21:30:35 +1100 | [diff] [blame] | 1292 | - jmc@cvs.openbsd.org 2010/03/05 06:50:35 |
| 1293 | [ssh.1 sshd.8] |
| 1294 | tweak previous; |
Damien Miller | 922b541 | 2010-03-05 21:30:54 +1100 | [diff] [blame] | 1295 | - jmc@cvs.openbsd.org 2010/03/05 08:31:20 |
| 1296 | [ssh.1] |
| 1297 | document certificate authentication; help/ok djm |
Damien Miller | 5059d8d | 2010-03-05 21:31:11 +1100 | [diff] [blame] | 1298 | - djm@cvs.openbsd.org 2010/03/05 10:28:21 |
| 1299 | [ssh-add.1 ssh.1 ssh_config.5] |
| 1300 | mention loading of certificate files from [private]-cert.pub when |
| 1301 | they are present; feedback and ok jmc@ |
Tim Rice | 179eee0 | 2010-03-04 12:48:05 -0800 | [diff] [blame] | 1302 | - (tim) [ssh-pkcs11.c] Fix "non-constant initializer" errors in older |
| 1303 | compilers. OK djm@ |
Damien Miller | 48b6021 | 2010-03-05 11:40:19 +1100 | [diff] [blame] | 1304 | - (djm) [ssh-rand-helper.c] declare optind, avoiding compilation failure |
| 1305 | on some platforms |
Damien Miller | 9527f22 | 2010-03-05 15:04:35 +1100 | [diff] [blame] | 1306 | - (djm) [configure.ac] set -fno-strict-aliasing for gcc4; ok dtucker@ |
Damien Miller | 72b3382 | 2010-03-05 07:39:01 +1100 | [diff] [blame] | 1307 | |
Damien Miller | 910f209 | 2010-03-04 14:17:22 +1100 | [diff] [blame] | 1308 | 20100304 |
| 1309 | - (djm) [ssh-keygen.c] Use correct local variable, instead of |
| 1310 | maybe-undefined global "optarg" |
Damien Miller | 661ffc1 | 2010-03-04 21:09:24 +1100 | [diff] [blame] | 1311 | - (djm) [contrib/redhat/openssh.spec] Replace obsolete BuildPreReq |
| 1312 | on XFree86-devel with neutral /usr/include/X11/Xlib.h; |
| 1313 | imorgan AT nas.nasa.gov in bz#1731 |
Damien Miller | d45f3b6 | 2010-03-04 21:09:46 +1100 | [diff] [blame] | 1314 | - (djm) [.cvsignore] Ignore ssh-pkcs11-helper |
Damien Miller | e1abf4d | 2010-03-04 21:41:29 +1100 | [diff] [blame] | 1315 | - (djm) [regress/Makefile] Cleanup sshd_proxy_orig |
Damien Miller | 4139657 | 2010-03-04 21:51:11 +1100 | [diff] [blame] | 1316 | - OpenBSD CVS Sync |
| 1317 | - djm@cvs.openbsd.org 2010/03/03 01:44:36 |
| 1318 | [auth-options.c key.c] |
| 1319 | reject strings with embedded ASCII nul chars in certificate key IDs, |
| 1320 | principal names and constraints |
Damien Miller | cd38c9c | 2010-03-04 21:51:37 +1100 | [diff] [blame] | 1321 | - djm@cvs.openbsd.org 2010/03/03 22:49:50 |
| 1322 | [sshd.8] |
| 1323 | the authorized_keys option for CA keys is "cert-authority", not |
| 1324 | "from=cert-authority". spotted by imorgan AT nas.nasa.gov |
Damien Miller | fe588e3 | 2010-03-04 21:52:00 +1100 | [diff] [blame] | 1325 | - djm@cvs.openbsd.org 2010/03/03 22:50:40 |
| 1326 | [PROTOCOL.certkeys] |
| 1327 | s/similar same/similar/; from imorgan AT nas.nasa.gov |
Damien Miller | 2befbad | 2010-03-04 21:52:18 +1100 | [diff] [blame] | 1328 | - djm@cvs.openbsd.org 2010/03/04 01:44:57 |
| 1329 | [key.c] |
| 1330 | use buffer_get_string_ptr_ret() where we are checking the return |
| 1331 | value explicitly instead of the fatal()-causing buffer_get_string_ptr() |
Damien Miller | 1aed65e | 2010-03-04 21:53:35 +1100 | [diff] [blame] | 1332 | - djm@cvs.openbsd.org 2010/03/04 10:36:03 |
| 1333 | [auth-rh-rsa.c auth-rsa.c auth.c auth.h auth2-hostbased.c auth2-pubkey.c] |
| 1334 | [authfile.c authfile.h hostfile.c hostfile.h servconf.c servconf.h] |
| 1335 | [ssh-keygen.c ssh.1 sshconnect.c sshd_config.5] |
| 1336 | Add a TrustedUserCAKeys option to sshd_config to specify CA keys that |
| 1337 | are trusted to authenticate users (in addition than doing it per-user |
| 1338 | in authorized_keys). |
| 1339 | |
| 1340 | Add a RevokedKeys option to sshd_config and a @revoked marker to |
| 1341 | known_hosts to allow keys to me revoked and banned for user or host |
| 1342 | authentication. |
| 1343 | |
| 1344 | feedback and ok markus@ |
Damien Miller | 017d1e7 | 2010-03-04 21:57:21 +1100 | [diff] [blame] | 1345 | - djm@cvs.openbsd.org 2010/03/03 00:47:23 |
| 1346 | [regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 1347 | add an extra test to ensure that authentication with the wrong |
| 1348 | certificate fails as it should (and it does) |
Damien Miller | 700dcfa | 2010-03-04 21:58:01 +1100 | [diff] [blame] | 1349 | - djm@cvs.openbsd.org 2010/03/04 10:38:23 |
| 1350 | [regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 1351 | additional regression tests for revoked keys and TrustedUserCAKeys |
Damien Miller | 910f209 | 2010-03-04 14:17:22 +1100 | [diff] [blame] | 1352 | |
Damien Miller | 25b97dd | 2010-03-03 10:24:00 +1100 | [diff] [blame] | 1353 | 20100303 |
| 1354 | - (djm) [PROTOCOL.certkeys] Add RCS Ident |
Damien Miller | 15f5b56 | 2010-03-03 10:25:21 +1100 | [diff] [blame] | 1355 | - OpenBSD CVS Sync |
| 1356 | - jmc@cvs.openbsd.org 2010/02/26 22:09:28 |
| 1357 | [ssh-keygen.1 ssh.1 sshd.8] |
| 1358 | tweak previous; |
Damien Miller | 0bd4186 | 2010-03-03 10:25:41 +1100 | [diff] [blame] | 1359 | - otto@cvs.openbsd.org 2010/03/01 11:07:06 |
| 1360 | [ssh-add.c] |
| 1361 | zap what seems to be a left-over debug message; ok markus@ |
Damien Miller | fb84e59 | 2010-03-03 10:26:04 +1100 | [diff] [blame] | 1362 | - djm@cvs.openbsd.org 2010/03/02 23:20:57 |
| 1363 | [ssh-keygen.c] |
| 1364 | POSIX strptime is stricter than OpenBSD's so do a little dance to |
| 1365 | appease it. |
Damien Miller | 386dbc0 | 2010-03-03 13:22:41 +1100 | [diff] [blame] | 1366 | - (djm) [regress/cert-userkey.sh] s/echo -n/echon/ here too |
Damien Miller | 25b97dd | 2010-03-03 10:24:00 +1100 | [diff] [blame] | 1367 | |
Tim Rice | c5b0cb3 | 2010-03-01 15:57:42 -0800 | [diff] [blame] | 1368 | 20100302 |
| 1369 | - (tim) [config.guess config.sub] Bug 1722: Update to latest versions from |
| 1370 | http://git.savannah.gnu.org/gitweb/ (2009-12-30 and 2010-01-22 |
| 1371 | respectively). |
| 1372 | |
Darren Tucker | c614c78 | 2010-03-01 12:49:05 +1100 | [diff] [blame] | 1373 | 20100301 |
| 1374 | - (dtucker) [regress/{cert-hostkey,cfgmatch,cipher-speed}.sh} Replace |
| 1375 | "echo -n" with "echon" for portability. |
Darren Tucker | 9af0cb9 | 2010-03-01 15:52:49 +1100 | [diff] [blame] | 1376 | - (dtucker) [openbsd-compat/port-linux.c] Make failure to write to the OOM |
| 1377 | adjust log at verbose only, since according to cjwatson in bug #1470 |
| 1378 | some virtualization platforms don't allow writes. |
Darren Tucker | c614c78 | 2010-03-01 12:49:05 +1100 | [diff] [blame] | 1379 | |
Damien Miller | acc9b29 | 2010-03-01 04:36:54 +1100 | [diff] [blame] | 1380 | 20100228 |
| 1381 | - (djm) [auth.c] On Cygwin, refuse usernames that have differences in |
| 1382 | case from that matched in the system password database. On this |
| 1383 | platform, passwords are stored case-insensitively, but sshd requires |
| 1384 | exact case matching for Match blocks in sshd_config(5). Based on |
| 1385 | a patch from vinschen AT redhat.com. |
Tim Rice | bff24b8 | 2010-02-28 14:51:56 -0800 | [diff] [blame] | 1386 | - (tim) [ssh-pkcs11-helper.c] Move declarations before calling functions |
| 1387 | to make older compilers (gcc 2.95) happy. |
Damien Miller | acc9b29 | 2010-03-01 04:36:54 +1100 | [diff] [blame] | 1388 | |
Damien Miller | 09a24db | 2010-02-28 03:28:05 +1100 | [diff] [blame] | 1389 | 20100227 |
Damien Miller | d05951f | 2010-02-28 03:29:33 +1100 | [diff] [blame] | 1390 | - (djm) [ssh-pkcs11-helper.c ] Ensure RNG is initialised and seeded |
| 1391 | - (djm) [openbsd-compat/bsd-cygwin_util.c] Reduce the set of environment |
| 1392 | variables copied into sshd child processes. From vinschen AT redhat.com |
Damien Miller | 09a24db | 2010-02-28 03:28:05 +1100 | [diff] [blame] | 1393 | |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 1394 | 20100226 |
| 1395 | - OpenBSD CVS Sync |
| 1396 | - djm@cvs.openbsd.org 2010/02/26 20:29:54 |
| 1397 | [PROTOCOL PROTOCOL.agent PROTOCOL.certkeys addrmatch.c auth-options.c] |
| 1398 | [auth-options.h auth.h auth2-pubkey.c authfd.c dns.c dns.h hostfile.c] |
| 1399 | [hostfile.h kex.h kexdhs.c kexgexs.c key.c key.h match.h monitor.c] |
| 1400 | [myproposal.h servconf.c servconf.h ssh-add.c ssh-agent.c ssh-dss.c] |
| 1401 | [ssh-keygen.1 ssh-keygen.c ssh-rsa.c ssh.1 ssh.c ssh2.h sshconnect.c] |
| 1402 | [sshconnect2.c sshd.8 sshd.c sshd_config.5] |
| 1403 | Add support for certificate key types for users and hosts. |
| 1404 | |
| 1405 | OpenSSH certificate key types are not X.509 certificates, but a much |
| 1406 | simpler format that encodes a public key, identity information and |
| 1407 | some validity constraints and signs it with a CA key. CA keys are |
| 1408 | regular SSH keys. This certificate style avoids the attack surface |
| 1409 | of X.509 certificates and is very easy to deploy. |
| 1410 | |
| 1411 | Certified host keys allow automatic acceptance of new host keys |
| 1412 | when a CA certificate is marked as trusted in ~/.ssh/known_hosts. |
| 1413 | see VERIFYING HOST KEYS in ssh(1) for details. |
| 1414 | |
| 1415 | Certified user keys allow authentication of users when the signing |
| 1416 | CA key is marked as trusted in authorized_keys. See "AUTHORIZED_KEYS |
| 1417 | FILE FORMAT" in sshd(8) for details. |
| 1418 | |
| 1419 | Certificates are minted using ssh-keygen(1), documentation is in |
| 1420 | the "CERTIFICATES" section of that manpage. |
| 1421 | |
| 1422 | Documentation on the format of certificates is in the file |
| 1423 | PROTOCOL.certkeys |
| 1424 | |
| 1425 | feedback and ok markus@ |
Damien Miller | 58ac6de | 2010-02-27 07:57:12 +1100 | [diff] [blame] | 1426 | - djm@cvs.openbsd.org 2010/02/26 20:33:21 |
| 1427 | [Makefile regress/cert-hostkey.sh regress/cert-userkey.sh] |
| 1428 | regression tests for certified keys |
Damien Miller | 0a80ca1 | 2010-02-27 07:55:05 +1100 | [diff] [blame] | 1429 | |
Damien Miller | 05abd2c | 2010-02-24 17:16:08 +1100 | [diff] [blame] | 1430 | 20100224 |
| 1431 | - (djm) [pkcs11.h ssh-pkcs11-client.c ssh-pkcs11-helper.c ssh-pkcs11.c] |
| 1432 | [ssh-pkcs11.h] Add $OpenBSD$ RCS idents so we can sync portable |
Damien Miller | a80f140 | 2010-02-24 17:17:58 +1100 | [diff] [blame] | 1433 | - (djm) OpenBSD CVS Sync |
| 1434 | - djm@cvs.openbsd.org 2010/02/11 20:37:47 |
| 1435 | [pathnames.h] |
| 1436 | correct comment |
Damien Miller | b6bd3c2 | 2010-02-24 17:24:56 +1100 | [diff] [blame] | 1437 | - dtucker@cvs.openbsd.org 2009/11/09 04:20:04 |
| 1438 | [regress/Makefile] |
| 1439 | add regression test for ssh-keygen pubkey conversions |
Damien Miller | 0dff9c7 | 2010-02-24 17:25:58 +1100 | [diff] [blame] | 1440 | - dtucker@cvs.openbsd.org 2010/01/11 02:53:44 |
| 1441 | [regress/forwarding.sh] |
| 1442 | regress test for stdio forwarding |
Damien Miller | bb4ae55 | 2010-02-24 17:26:38 +1100 | [diff] [blame] | 1443 | - djm@cvs.openbsd.org 2010/02/09 04:57:36 |
| 1444 | [regress/addrmatch.sh] |
| 1445 | clean up droppings |
Damien Miller | 8f9492c | 2010-02-24 17:28:45 +1100 | [diff] [blame] | 1446 | - djm@cvs.openbsd.org 2010/02/09 06:29:02 |
| 1447 | [regress/Makefile] |
| 1448 | turn on all the malloc(3) checking options when running regression |
| 1449 | tests. this has caught a few bugs for me in the past; ok dtucker@ |
Damien Miller | c173921 | 2010-02-24 17:29:34 +1100 | [diff] [blame] | 1450 | - djm@cvs.openbsd.org 2010/02/24 06:21:56 |
| 1451 | [regress/test-exec.sh] |
| 1452 | wait for sshd to fully stop in cleanup() function; avoids races in tests |
| 1453 | that do multiple start_sshd/cleanup cycles; "I hate pidfiles" deraadt@ |
Damien Miller | cfa42d2 | 2010-02-24 17:31:20 +1100 | [diff] [blame] | 1454 | - markus@cvs.openbsd.org 2010/02/08 10:52:47 |
| 1455 | [regress/agent-pkcs11.sh] |
| 1456 | test for PKCS#11 support (currently disabled) |
Damien Miller | 43001b3 | 2010-02-24 18:18:51 +1100 | [diff] [blame] | 1457 | - (djm) [Makefile.in ssh-pkcs11-helper.8] Add manpage for PKCS#11 helper |
Damien Miller | d27d85d | 2010-02-24 18:21:45 +1100 | [diff] [blame] | 1458 | - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 1459 | [contrib/suse/openssh.spec] Add PKCS#11 helper binary and manpage |
Damien Miller | 05abd2c | 2010-02-24 17:16:08 +1100 | [diff] [blame] | 1460 | |
Damien Miller | 17751bc | 2010-02-12 07:35:08 +1100 | [diff] [blame] | 1461 | 20100212 |
| 1462 | - (djm) OpenBSD CVS Sync |
| 1463 | - djm@cvs.openbsd.org 2010/02/02 22:49:34 |
| 1464 | [bufaux.c] |
| 1465 | make buffer_get_string_ret() really non-fatal in all cases (it was |
| 1466 | using buffer_get_int(), which could fatal() on buffer empty); |
| 1467 | ok markus dtucker |
Damien Miller | 7ea845e | 2010-02-12 09:21:02 +1100 | [diff] [blame] | 1468 | - markus@cvs.openbsd.org 2010/02/08 10:50:20 |
| 1469 | [pathnames.h readconf.c readconf.h scp.1 sftp.1 ssh-add.1 ssh-add.c] |
| 1470 | [ssh-agent.c ssh-keygen.1 ssh-keygen.c ssh.1 ssh.c ssh_config.5] |
| 1471 | replace our obsolete smartcard code with PKCS#11. |
| 1472 | ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20/pkcs-11v2-20.pdf |
| 1473 | ssh(1) and ssh-keygen(1) use dlopen(3) directly to talk to a PKCS#11 |
| 1474 | provider (shared library) while ssh-agent(1) delegates PKCS#11 to |
| 1475 | a forked a ssh-pkcs11-helper process. |
| 1476 | PKCS#11 is currently a compile time option. |
| 1477 | feedback and ok djm@; inspired by patches from Alon Bar-Lev |
Damien Miller | 048dc93 | 2010-02-12 09:22:04 +1100 | [diff] [blame] | 1478 | - jmc@cvs.openbsd.org 2010/02/08 22:03:05 |
| 1479 | [ssh-add.1 ssh-keygen.1 ssh.1 ssh.c] |
| 1480 | tweak previous; ok markus |
Damien Miller | a183c6e | 2010-02-12 09:22:31 +1100 | [diff] [blame] | 1481 | - djm@cvs.openbsd.org 2010/02/09 00:50:36 |
| 1482 | [ssh-agent.c] |
| 1483 | fallout from PKCS#11: unbreak -D |
Damien Miller | 86cbb44 | 2010-02-12 09:22:57 +1100 | [diff] [blame] | 1484 | - djm@cvs.openbsd.org 2010/02/09 00:50:59 |
| 1485 | [ssh-keygen.c] |
| 1486 | fix -Wall |
Damien Miller | 8922106 | 2010-02-12 09:23:40 +1100 | [diff] [blame] | 1487 | - djm@cvs.openbsd.org 2010/02/09 03:56:28 |
| 1488 | [buffer.c buffer.h] |
| 1489 | constify the arguments to buffer_len, buffer_ptr and buffer_dump |
Damien Miller | 47cf16b | 2010-02-12 09:25:29 +1100 | [diff] [blame] | 1490 | - djm@cvs.openbsd.org 2010/02/09 06:18:46 |
| 1491 | [auth.c] |
| 1492 | unbreak ChrootDirectory+internal-sftp by skipping check for executable |
| 1493 | shell when chrooting; reported by danh AT wzrd.com; ok dtucker@ |
Damien Miller | a761844 | 2010-02-12 09:26:02 +1100 | [diff] [blame] | 1494 | - markus@cvs.openbsd.org 2010/02/10 23:20:38 |
| 1495 | [ssh-add.1 ssh-keygen.1 ssh.1 ssh_config.5] |
| 1496 | pkcs#11 is no longer optional; improve wording; ok jmc@ |
Damien Miller | d400da5 | 2010-02-12 09:26:23 +1100 | [diff] [blame] | 1497 | - jmc@cvs.openbsd.org 2010/02/11 13:23:29 |
| 1498 | [ssh.1] |
| 1499 | libarary -> library; |
Damien Miller | d8f6002 | 2010-02-12 09:34:22 +1100 | [diff] [blame] | 1500 | - (djm) [INSTALL Makefile.in README.smartcard configure.ac scard-opensc.c] |
| 1501 | [scard.c scard.h pkcs11.h scard/Makefile.in scard/Ssh.bin.uu scard/Ssh.java] |
| 1502 | Remove obsolete smartcard support |
Damien Miller | 8ad0fbd | 2010-02-12 09:49:06 +1100 | [diff] [blame] | 1503 | - (djm) [ssh-pkcs11-client.c ssh-pkcs11-helper.c ssh-pkcs11.c] |
| 1504 | Make it compile on OSX |
Damien Miller | dfa4156 | 2010-02-12 10:06:28 +1100 | [diff] [blame] | 1505 | - (djm) [ssh-pkcs11-client.c ssh-pkcs11-helper.c ssh-pkcs11.c] |
| 1506 | Use ssh_get_progname to fill __progname |
Damien Miller | b3c9f78 | 2010-02-12 10:11:34 +1100 | [diff] [blame] | 1507 | - (djm) [configure.ac] Enable PKCS#11 support only when we find a working |
| 1508 | dlopen() |
Damien Miller | 17751bc | 2010-02-12 07:35:08 +1100 | [diff] [blame] | 1509 | |
Damien Miller | 1d2bfc4 | 2010-02-10 10:19:29 +1100 | [diff] [blame] | 1510 | 20100210 |
| 1511 | - (djm) add -lselinux to LIBS before calling AC_CHECK_FUNCS for |
| 1512 | getseuserbyname; patch from calebcase AT gmail.com via |
| 1513 | cjwatson AT debian.org |
| 1514 | |
Damien Miller | 74d9825 | 2010-02-02 17:01:46 +1100 | [diff] [blame] | 1515 | 20100202 |
| 1516 | - (djm) OpenBSD CVS Sync |
| 1517 | - djm@cvs.openbsd.org 2010/01/30 21:08:33 |
| 1518 | [sshd.8] |
| 1519 | debug output goes to stderr, not "the system log"; ok markus dtucker |
Damien Miller | d636943 | 2010-02-02 17:02:07 +1100 | [diff] [blame] | 1520 | - djm@cvs.openbsd.org 2010/01/30 21:12:08 |
| 1521 | [channels.c] |
| 1522 | fake local addr:port when stdio fowarding as some servers (Tectia at |
| 1523 | least) validate that they are well-formed; |
| 1524 | reported by imorgan AT nas.nasa.gov |
| 1525 | ok dtucker |
Damien Miller | 74d9825 | 2010-02-02 17:01:46 +1100 | [diff] [blame] | 1526 | |
Damien Miller | 36f57eb | 2010-01-30 17:28:34 +1100 | [diff] [blame] | 1527 | 20100130 |
| 1528 | - (djm) OpenBSD CVS Sync |
| 1529 | - djm@cvs.openbsd.org 2010/01/28 00:21:18 |
| 1530 | [clientloop.c] |
| 1531 | downgrade an error() to a debug() - this particular case can be hit in |
| 1532 | normal operation for certain sequences of mux slave vs session closure |
| 1533 | and is harmless |
Damien Miller | 133d9d3 | 2010-01-30 17:30:04 +1100 | [diff] [blame] | 1534 | - djm@cvs.openbsd.org 2010/01/29 00:20:41 |
| 1535 | [sshd.c] |
| 1536 | set FD_CLOEXEC on sock_in/sock_out; bz#1706 from jchadima AT redhat.com |
| 1537 | ok dtucker@ |
Damien Miller | 0dac03f | 2010-01-30 17:36:33 +1100 | [diff] [blame] | 1538 | - djm@cvs.openbsd.org 2010/01/29 20:16:17 |
| 1539 | [mux.c] |
| 1540 | kill correct channel (was killing already-dead mux channel, not |
| 1541 | its session channel) |
Damien Miller | c3ca35f | 2010-01-30 17:42:01 +1100 | [diff] [blame] | 1542 | - djm@cvs.openbsd.org 2010/01/30 02:54:53 |
| 1543 | [mux.c] |
| 1544 | don't mark channel as read failed if it is already closing; suppresses |
| 1545 | harmless error messages when connecting to SSH.COM Tectia server |
| 1546 | report by imorgan AT nas.nasa.gov |
Damien Miller | 36f57eb | 2010-01-30 17:28:34 +1100 | [diff] [blame] | 1547 | |
Darren Tucker | 19d32cb | 2010-01-29 10:54:11 +1100 | [diff] [blame] | 1548 | 20100129 |
| 1549 | - (dtucker) [openbsd-compat/openssl-compat.c] Bug #1707: Call OPENSSL_config() |
| 1550 | after registering the hardware engines, which causes the openssl.cnf file to |
| 1551 | be processed. See OpenSSL's man page for OPENSSL_config(3) for details. |
| 1552 | Patch from Solomon Peachy, ok djm@. |
| 1553 | |
Damien Miller | 45a81a0 | 2010-01-28 06:26:20 +1100 | [diff] [blame] | 1554 | 20100128 |
| 1555 | - (djm) OpenBSD CVS Sync |
| 1556 | - djm@cvs.openbsd.org 2010/01/26 02:15:20 |
| 1557 | [mux.c] |
| 1558 | -Wuninitialized and remove a // comment; from portable |
| 1559 | (Id sync only) |
Damien Miller | a21cdfa | 2010-01-28 06:26:59 +1100 | [diff] [blame] | 1560 | - djm@cvs.openbsd.org 2010/01/27 13:26:17 |
| 1561 | [mux.c] |
| 1562 | fix bug introduced in mux rewrite: |
| 1563 | |
| 1564 | In a mux master, when a socket to a mux slave closes before its server |
| 1565 | session (as may occur when the slave has been signalled), gracefully |
| 1566 | close the server session rather than deleting its channel immediately. |
| 1567 | A server may have more messages on that channel to send (e.g. an exit |
| 1568 | message) that will fatal() the client if they are sent to a channel that |
| 1569 | has been prematurely deleted. |
| 1570 | |
| 1571 | spotted by imorgan AT nas.nasa.gov |
Damien Miller | a116298 | 2010-01-28 06:27:54 +1100 | [diff] [blame] | 1572 | - djm@cvs.openbsd.org 2010/01/27 19:21:39 |
| 1573 | [sftp.c] |
| 1574 | add missing "p" flag to getopt optstring; |
| 1575 | bz#1704 from imorgan AT nas.nasa.gov |
Damien Miller | 45a81a0 | 2010-01-28 06:26:20 +1100 | [diff] [blame] | 1576 | |
Damien Miller | 2e68d79 | 2010-01-26 12:51:13 +1100 | [diff] [blame] | 1577 | 20100126 |
| 1578 | - (djm) OpenBSD CVS Sync |
| 1579 | - tedu@cvs.openbsd.org 2010/01/17 21:49:09 |
| 1580 | [ssh-agent.1] |
| 1581 | Correct and clarify ssh-add's password asking behavior. |
| 1582 | Improved text dtucker and ok jmc |
Damien Miller | f589fd1 | 2010-01-26 12:53:06 +1100 | [diff] [blame] | 1583 | - dtucker@cvs.openbsd.org 2010/01/18 01:50:27 |
| 1584 | [roaming_client.c] |
| 1585 | s/long long unsigned/unsigned long long/, from tim via portable |
| 1586 | (Id sync only, change already in portable) |
Damien Miller | e1537f9 | 2010-01-26 13:26:22 +1100 | [diff] [blame] | 1587 | - djm@cvs.openbsd.org 2010/01/26 01:28:35 |
| 1588 | [channels.c channels.h clientloop.c clientloop.h mux.c nchan.c ssh.c] |
| 1589 | rewrite ssh(1) multiplexing code to a more sensible protocol. |
| 1590 | |
| 1591 | The new multiplexing code uses channels for the listener and |
| 1592 | accepted control sockets to make the mux master non-blocking, so |
| 1593 | no stalls when processing messages from a slave. |
| 1594 | |
| 1595 | avoid use of fatal() in mux master protocol parsing so an errant slave |
| 1596 | process cannot take down a running master. |
| 1597 | |
| 1598 | implement requesting of port-forwards over multiplexed sessions. Any |
| 1599 | port forwards requested by the slave are added to those the master has |
| 1600 | established. |
| 1601 | |
| 1602 | add support for stdio forwarding ("ssh -W host:port ...") in mux slaves. |
| 1603 | |
| 1604 | document master/slave mux protocol so that other tools can use it to |
| 1605 | control a running ssh(1). Note: there are no guarantees that this |
| 1606 | protocol won't be incompatibly changed (though it is versioned). |
| 1607 | |
| 1608 | feedback Salvador Fandino, dtucker@ |
| 1609 | channel changes ok markus@ |
Damien Miller | 2e68d79 | 2010-01-26 12:51:13 +1100 | [diff] [blame] | 1610 | |
Tim Rice | 6761c74 | 2010-01-22 10:25:15 -0800 | [diff] [blame] | 1611 | 20100122 |
| 1612 | - (tim) [configure.ac] Due to constraints in Windows Sockets in terms of |
| 1613 | socket inheritance, reduce the default SO_RCVBUF/SO_SNDBUF buffer size |
| 1614 | in Cygwin to 65535. Patch from Corinna Vinschen. |
| 1615 | |
Tim Rice | 7ab7b93 | 2010-01-17 12:48:22 -0800 | [diff] [blame] | 1616 | 20100117 |
| 1617 | - (tim) [configure.ac] OpenServer 5 needs BROKEN_GETADDRINFO too. |
Tim Rice | 7bb7471 | 2010-01-17 22:49:57 -0800 | [diff] [blame] | 1618 | - (tim) [configure.ac] On SVR5 systems, use the C99-conforming functions |
| 1619 | snprintf() and vsnprintf() named _xsnprintf() and _xvsnprintf(). |
Tim Rice | 7ab7b93 | 2010-01-17 12:48:22 -0800 | [diff] [blame] | 1620 | |
Darren Tucker | ca94485 | 2010-01-16 11:48:27 +1100 | [diff] [blame] | 1621 | 20100116 |
| 1622 | - (dtucker) [openbsd-compat/pwcache.c] Pull in includes.h and thus defines.h |
| 1623 | so we correctly detect whether or not we have a native user_from_uid. |
Darren Tucker | 2563e3f | 2010-01-16 11:53:07 +1100 | [diff] [blame] | 1624 | - (dtucker) [openbsd-compat/openbsd-compat.h] Prototypes for user_from_uid |
| 1625 | and group_from_gid. |
Darren Tucker | 69371b5 | 2010-01-16 13:30:30 +1100 | [diff] [blame] | 1626 | - (dtucker) [openbsd-compat/openbsd-compat.h] Fix prototypes, spotted by |
| 1627 | Tim. |
Darren Tucker | dab129b | 2010-01-16 13:43:50 +1100 | [diff] [blame] | 1628 | - (dtucker) OpenBSD CVS Sync |
| 1629 | - markus@cvs.openbsd.org 2010/01/15 09:24:23 |
| 1630 | [sftp-common.c] |
| 1631 | unused |
Darren Tucker | 612e400 | 2010-01-16 13:53:52 +1100 | [diff] [blame] | 1632 | - (dtucker) [openbsd-compat/pwcache.c] Shrink ifdef area to prevent unused |
| 1633 | variable warnings. |
Darren Tucker | 4e21855 | 2010-01-16 23:58:37 +1100 | [diff] [blame] | 1634 | - (dtucker) [openbsd-compat/openbsd-compat.h] Typo. |
Tim Rice | 999aaf4 | 2010-01-16 11:37:53 -0800 | [diff] [blame] | 1635 | - (tim) [regress/portnum.sh] Shell portability fix. |
Tim Rice | 4a7db1c | 2010-01-16 12:23:25 -0800 | [diff] [blame] | 1636 | - (tim) [configure.ac] Define BROKEN_GETADDRINFO on SVR5 systems. The native |
| 1637 | getaddrinfo() is too old and limited for addr_pton() in addrmatch.c. |
Tim Rice | 33e48ac | 2010-01-17 07:12:40 -0800 | [diff] [blame] | 1638 | - (tim) [roaming_client.c] Use of <sys/queue.h> is not really portable so we |
| 1639 | use "openbsd-compat/sys-queue.h". s/long long unsigned/unsigned long long/ |
| 1640 | to keep USL compilers happy. |
Darren Tucker | ca94485 | 2010-01-16 11:48:27 +1100 | [diff] [blame] | 1641 | |
Darren Tucker | 75fe626 | 2010-01-15 11:42:51 +1100 | [diff] [blame] | 1642 | 20100115 |
| 1643 | - (dtucker) OpenBSD CVS Sync |
| 1644 | - jmc@cvs.openbsd.org 2010/01/13 12:48:34 |
| 1645 | [sftp.1 sftp.c] |
| 1646 | sftp.1: put ls -h in the right place |
| 1647 | sftp.c: as above, plus add -p to get/put, and shorten their arg names |
| 1648 | to keep the help usage nicely aligned |
| 1649 | ok djm |
Darren Tucker | 94881d8 | 2010-01-15 11:44:46 +1100 | [diff] [blame] | 1650 | - djm@cvs.openbsd.org 2010/01/13 23:47:26 |
| 1651 | [auth.c] |
| 1652 | when using ChrootDirectory, make sure we test for the existence of the |
| 1653 | user's shell inside the chroot; bz #1679, patch from alex AT rtfs.hu; |
| 1654 | ok dtucker |
Darren Tucker | a788de2 | 2010-01-15 11:45:33 +1100 | [diff] [blame] | 1655 | - dtucker@cvs.openbsd.org 2010/01/14 23:41:49 |
| 1656 | [sftp-common.c] |
| 1657 | use user_from{uid,gid} to lookup up ids since it keeps a small cache. |
| 1658 | ok djm |
Darren Tucker | b8b17e9 | 2010-01-15 11:46:03 +1100 | [diff] [blame] | 1659 | - guenther@cvs.openbsd.org 2010/01/15 00:05:22 |
| 1660 | [sftp.c] |
| 1661 | Reset SIGTERM to SIG_DFL before executing ssh, so that even if sftp |
| 1662 | inherited SIGTERM as ignored it will still be able to kill the ssh it |
| 1663 | starts. |
| 1664 | ok dtucker@ |
Darren Tucker | 7fa3a85 | 2010-01-15 13:12:10 +1100 | [diff] [blame] | 1665 | - (dtucker) [openbsd-compat/pwcache.c] Pull in pwcache.c from OpenBSD (no |
Darren Tucker | 9d1fd5b | 2010-01-15 12:14:45 +1100 | [diff] [blame] | 1666 | changes yet but there will be some to come). |
Darren Tucker | 909a390 | 2010-01-15 12:38:30 +1100 | [diff] [blame] | 1667 | - (dtucker) [configure.ac openbsd-compat/{Makefile.in,pwcache.c} Portability |
| 1668 | for pwcache. Also, added caching of negative hits. |
Darren Tucker | 75fe626 | 2010-01-15 11:42:51 +1100 | [diff] [blame] | 1669 | |
Damien Miller | 6abc9f6 | 2010-01-14 12:44:16 +1100 | [diff] [blame] | 1670 | 20100114 |
| 1671 | - (djm) [platform.h] Add missing prototype for |
| 1672 | platform_krb5_get_principal_name |
| 1673 | |
Darren Tucker | a8f20cf | 2010-01-13 10:54:46 +1100 | [diff] [blame] | 1674 | 20100113 |
| 1675 | - (dtucker) [monitor_fdpass.c] Wrap poll.h include in ifdefs. |
Darren Tucker | ab3c2ca | 2010-01-13 18:27:32 +1100 | [diff] [blame] | 1676 | - (dtucker) [openbsd-compat/readpassphrase.c] Resync against OpenBSD's r1.18: |
| 1677 | missing restore of SIGTTOU and some whitespace. |
Darren Tucker | 1035cb4 | 2010-01-13 18:32:59 +1100 | [diff] [blame] | 1678 | - (dtucker) [openbsd-compat/readpassphrase.c] Update to OpenBSD's r1.21. |
Darren Tucker | d59487a | 2010-01-13 21:32:44 +1100 | [diff] [blame] | 1679 | - (dtucker) [openbsd-compat/readpassphrase.c] Update to OpenBSD's r1.22. |
| 1680 | Fixes bz #1590, where sometimes you could not interrupt a connection while |
| 1681 | ssh was prompting for a passphrase or password. |
Darren Tucker | e2b3674 | 2010-01-13 22:42:34 +1100 | [diff] [blame] | 1682 | - (dtucker) OpenBSD CVS Sync |
| 1683 | - dtucker@cvs.openbsd.org 2010/01/13 00:19:04 |
| 1684 | [sshconnect.c auth.c] |
| 1685 | Fix a couple of typos/mispellings in comments |
Darren Tucker | 561724f | 2010-01-13 22:43:05 +1100 | [diff] [blame] | 1686 | - dtucker@cvs.openbsd.org 2010/01/13 01:10:56 |
| 1687 | [key.c] |
| 1688 | Ignore and log any Protocol 1 keys where the claimed size is not equal to |
| 1689 | the actual size. Noted by Derek Martin, ok djm@ |
Darren Tucker | daaa450 | 2010-01-13 22:43:33 +1100 | [diff] [blame] | 1690 | - dtucker@cvs.openbsd.org 2010/01/13 01:20:20 |
| 1691 | [canohost.c ssh-keysign.c sshconnect2.c] |
| 1692 | Make HostBased authentication work with a ProxyCommand. bz #1569, patch |
| 1693 | from imorgan at nas nasa gov, ok djm@ |
Darren Tucker | 2901e2d | 2010-01-13 22:44:06 +1100 | [diff] [blame] | 1694 | - djm@cvs.openbsd.org 2010/01/13 01:40:16 |
| 1695 | [sftp.c sftp-server.c sftp.1 sftp-common.c sftp-common.h] |
| 1696 | support '-h' (human-readable units) for sftp's ls command, just like |
| 1697 | ls(1); ok dtucker@ |
Darren Tucker | 88b6fb2 | 2010-01-13 22:44:29 +1100 | [diff] [blame] | 1698 | - djm@cvs.openbsd.org 2010/01/13 03:48:13 |
| 1699 | [servconf.c servconf.h sshd.c] |
| 1700 | avoid run-time failures when specifying hostkeys via a relative |
| 1701 | path by prepending the cwd in these cases; bz#1290; ok dtucker@ |
Darren Tucker | 9c3ba07 | 2010-01-13 22:45:03 +1100 | [diff] [blame] | 1702 | - djm@cvs.openbsd.org 2010/01/13 04:10:50 |
| 1703 | [sftp.c] |
| 1704 | don't append a space after inserting a completion of a directory (i.e. |
| 1705 | a path ending in '/') for a slightly better user experience; ok dtucker@ |
Darren Tucker | 096630d | 2010-01-13 23:00:38 +1100 | [diff] [blame] | 1706 | - (dtucker) [sftp-common.c] Wrap include of util.h in an ifdef. |
Tim Rice | d4a7fcb | 2010-01-13 15:44:34 -0800 | [diff] [blame] | 1707 | - (tim) [defines.h] openbsd-compat/readpassphrase.c now needs _NSIG. |
| 1708 | feedback and ok dtucker@ |
Darren Tucker | a8f20cf | 2010-01-13 10:54:46 +1100 | [diff] [blame] | 1709 | |
Darren Tucker | 09aa4c0 | 2010-01-12 19:51:48 +1100 | [diff] [blame] | 1710 | 20100112 |
Darren Tucker | 7ad8dd2 | 2010-01-12 19:40:27 +1100 | [diff] [blame] | 1711 | - (dtucker) OpenBSD CVS Sync |
| 1712 | - dtucker@cvs.openbsd.org 2010/01/11 01:39:46 |
| 1713 | [ssh_config channels.c ssh.1 channels.h ssh.c] |
| 1714 | Add a 'netcat mode' (ssh -W). This connects stdio on the client to a |
| 1715 | single port forward on the server. This allows, for example, using ssh as |
| 1716 | a ProxyCommand to route connections via intermediate servers. |
| 1717 | bz #1618, man page help from jmc@, ok markus@ |
Darren Tucker | d4c86b1 | 2010-01-12 19:41:22 +1100 | [diff] [blame] | 1718 | - dtucker@cvs.openbsd.org 2010/01/11 04:46:45 |
| 1719 | [authfile.c sshconnect2.c] |
| 1720 | Do not prompt for a passphrase if we fail to open a keyfile, and log the |
| 1721 | reason the open failed to debug. |
| 1722 | bz #1693, found by tj AT castaglia org, ok djm@ |
Darren Tucker | d04758d | 2010-01-12 19:41:57 +1100 | [diff] [blame] | 1723 | - djm@cvs.openbsd.org 2010/01/11 10:51:07 |
| 1724 | [ssh-keygen.c] |
| 1725 | when converting keys, truncate key comments at 72 chars as per RFC4716; |
| 1726 | bz#1630 reported by tj AT castaglia.org; ok markus@ |
Darren Tucker | 69c01b1 | 2010-01-12 19:42:29 +1100 | [diff] [blame] | 1727 | - dtucker@cvs.openbsd.org 2010/01/12 00:16:47 |
| 1728 | [authfile.c] |
| 1729 | Fix bug introduced in r1.78 (incorrect brace location) that broke key auth. |
| 1730 | Patch from joachim joachimschipper nl. |
Darren Tucker | e371a13 | 2010-01-12 19:43:12 +1100 | [diff] [blame] | 1731 | - djm@cvs.openbsd.org 2010/01/12 00:58:25 |
| 1732 | [monitor_fdpass.c] |
| 1733 | avoid spinning when fd passing on nonblocking sockets by calling poll() |
| 1734 | in the EINTR/EAGAIN path, much like we do in atomicio; ok dtucker@ |
Darren Tucker | c6cc90b | 2010-01-12 19:43:46 +1100 | [diff] [blame] | 1735 | - djm@cvs.openbsd.org 2010/01/12 00:59:29 |
| 1736 | [roaming_common.c] |
| 1737 | delete with extreme prejudice a debug() that fired with every keypress; |
| 1738 | ok dtucker deraadt |
Darren Tucker | 1b0c245 | 2010-01-12 19:45:26 +1100 | [diff] [blame] | 1739 | - dtucker@cvs.openbsd.org 2010/01/12 01:31:05 |
| 1740 | [session.c] |
| 1741 | Do not allow logins if /etc/nologin exists but is not readable by the user |
| 1742 | logging in. Noted by Jan.Pechanec at Sun, ok djm@ deraadt@ |
Darren Tucker | ebc71d9 | 2010-01-12 19:45:59 +1100 | [diff] [blame] | 1743 | - djm@cvs.openbsd.org 2010/01/12 01:36:08 |
| 1744 | [buffer.h bufaux.c] |
| 1745 | add a buffer_get_string_ptr_ret() that does the same as |
| 1746 | buffer_get_string_ptr() but does not fatal() on error; ok dtucker@ |
Darren Tucker | 09aa4c0 | 2010-01-12 19:51:48 +1100 | [diff] [blame] | 1747 | - dtucker@cvs.openbsd.org 2010/01/12 08:33:17 |
| 1748 | [session.c] |
| 1749 | Add explicit stat so we reliably detect nologin with bad perms. |
| 1750 | ok djm markus |
Darren Tucker | 7ad8dd2 | 2010-01-12 19:40:27 +1100 | [diff] [blame] | 1751 | |
| 1752 | 20100110 |
Darren Tucker | 8c65f64 | 2010-01-10 10:26:57 +1100 | [diff] [blame] | 1753 | - (dtucker) [configure.ac misc.c readconf.c servconf.c ssh-keyscan.c] |
| 1754 | Remove hacks add for RoutingDomain in preparation for its removal. |
Darren Tucker | d330045 | 2010-01-10 19:26:43 +1100 | [diff] [blame] | 1755 | - (dtucker) OpenBSD CVS Sync |
Darren Tucker | 7bd98e7 | 2010-01-10 10:31:12 +1100 | [diff] [blame] | 1756 | - dtucker@cvs.openbsd.org 2010/01/09 23:04:13 |
| 1757 | [channels.c ssh.1 servconf.c sshd_config.5 sshd.c channels.h servconf.h |
| 1758 | ssh-keyscan.1 ssh-keyscan.c readconf.c sshconnect.c misc.c ssh.c |
| 1759 | readconf.h scp.1 sftp.1 ssh_config.5 misc.h] |
| 1760 | Remove RoutingDomain from ssh since it's now not needed. It can be |
| 1761 | replaced with "route exec" or "nc -V" as a proxycommand. "route exec" |
| 1762 | also ensures that trafic such as DNS lookups stays withing the specified |
| 1763 | routingdomain. For example (from reyk): |
| 1764 | # route -T 2 exec /usr/sbin/sshd |
| 1765 | or inherited from the parent process |
| 1766 | $ route -T 2 exec sh |
| 1767 | $ ssh 10.1.2.3 |
| 1768 | ok deraadt@ markus@ stevesk@ reyk@ |
Darren Tucker | d330045 | 2010-01-10 19:26:43 +1100 | [diff] [blame] | 1769 | - dtucker@cvs.openbsd.org 2010/01/10 03:51:17 |
| 1770 | [servconf.c] |
| 1771 | Add ChrootDirectory to sshd.c test-mode output |
Darren Tucker | 4355152 | 2010-01-10 19:27:17 +1100 | [diff] [blame] | 1772 | - dtucker@cvs.openbsd.org 2010/01/10 07:15:56 |
| 1773 | [auth.c] |
| 1774 | Output a debug if we can't open an existing keyfile. bz#1694, ok djm@ |
Darren Tucker | 8c65f64 | 2010-01-10 10:26:57 +1100 | [diff] [blame] | 1775 | |
Darren Tucker | 7ad8dd2 | 2010-01-12 19:40:27 +1100 | [diff] [blame] | 1776 | 20100109 |
Darren Tucker | 9eba40c | 2010-01-09 09:02:07 +1100 | [diff] [blame] | 1777 | - (dtucker) Wrap use of IPPROTO_IPV6 in an ifdef for platforms that don't |
| 1778 | have it. |
Darren Tucker | 709d0ce | 2010-01-09 09:25:54 +1100 | [diff] [blame] | 1779 | - (dtucker) [defines.h] define PRIu64 for platforms that don't have it. |
Darren Tucker | 11b5c07 | 2010-01-09 16:40:48 +1100 | [diff] [blame] | 1780 | - (dtucker) [roaming_client.c] Wrap inttypes.h in an ifdef. |
Darren Tucker | 0b8a226 | 2010-01-09 18:18:04 +1100 | [diff] [blame] | 1781 | - (dtucker) [loginrec.c] Use the SUSv3 specified name for the user name |
| 1782 | when using utmpx. Patch from Ed Schouten. |
Darren Tucker | db7bf82 | 2010-01-09 22:24:33 +1100 | [diff] [blame] | 1783 | - (dtucker) OpenBSD CVS Sync |
| 1784 | - djm@cvs.openbsd.org 2010/01/09 00:20:26 |
| 1785 | [sftp-server.c sftp-server.8] |
| 1786 | add a 'read-only' mode to sftp-server(8) that disables open in write mode |
| 1787 | and all other fs-modifying protocol methods. bz#430 ok dtucker@ |
Darren Tucker | a2e1048 | 2010-01-09 22:25:14 +1100 | [diff] [blame] | 1788 | - djm@cvs.openbsd.org 2010/01/09 00:57:10 |
| 1789 | [PROTOCOL] |
| 1790 | tweak language |
Darren Tucker | 838891f | 2010-01-09 22:25:46 +1100 | [diff] [blame] | 1791 | - jmc@cvs.openbsd.org 2010/01/09 03:36:00 |
| 1792 | [sftp-server.8] |
| 1793 | bad place to forget a comma... |
Darren Tucker | 37c1b3d | 2010-01-09 22:26:23 +1100 | [diff] [blame] | 1794 | - djm@cvs.openbsd.org 2010/01/09 05:04:24 |
| 1795 | [mux.c sshpty.h clientloop.c sshtty.c] |
| 1796 | quell tc[gs]etattr warnings when forcing a tty (ssh -tt), since we |
| 1797 | usually don't actually have a tty to read/set; bz#1686 ok dtucker@ |
Darren Tucker | 4b28251 | 2010-01-09 22:27:06 +1100 | [diff] [blame] | 1798 | - dtucker@cvs.openbsd.org 2010/01/09 05:17:00 |
| 1799 | [roaming_client.c] |
| 1800 | Remove a PRIu64 format string that snuck in with roaming. ok djm@ |
Darren Tucker | 70cc092 | 2010-01-09 22:28:03 +1100 | [diff] [blame] | 1801 | - dtucker@cvs.openbsd.org 2010/01/09 11:13:02 |
| 1802 | [sftp.c] |
| 1803 | Prevent sftp from derefing a null pointer when given a "-" without a |
| 1804 | command. Also, allow whitespace to follow a "-". bz#1691, path from |
| 1805 | Colin Watson via Debian. ok djm@ deraadt@ |
Darren Tucker | 2c671bf | 2010-01-09 22:28:43 +1100 | [diff] [blame] | 1806 | - dtucker@cvs.openbsd.org 2010/01/09 11:17:56 |
| 1807 | [sshd.c] |
| 1808 | Afer sshd receives a SIGHUP, ignore subsequent HUPs while sshd re-execs |
| 1809 | itself. Prevents two HUPs in quick succession from resulting in sshd |
| 1810 | dying. bz#1692, patch from Colin Watson via Ubuntu. |
Darren Tucker | 269275c | 2010-01-09 22:33:37 +1100 | [diff] [blame] | 1811 | - (dtucker) [defines.h] Remove now-undeeded PRIu64 define. |
Darren Tucker | 9eba40c | 2010-01-09 09:02:07 +1100 | [diff] [blame] | 1812 | |
Darren Tucker | 7ad8dd2 | 2010-01-12 19:40:27 +1100 | [diff] [blame] | 1813 | 20100108 |
Darren Tucker | b7b17be | 2010-01-08 16:49:52 +1100 | [diff] [blame] | 1814 | - (dtucker) OpenBSD CVS Sync |
| 1815 | - andreas@cvs.openbsd.org 2009/10/24 11:11:58 |
| 1816 | [roaming.h] |
| 1817 | Declarations needed for upcoming changes. |
| 1818 | ok markus@ |
Darren Tucker | 36331b5 | 2010-01-08 16:50:41 +1100 | [diff] [blame] | 1819 | - andreas@cvs.openbsd.org 2009/10/24 11:13:54 |
| 1820 | [sshconnect2.c kex.h kex.c] |
| 1821 | Let the client detect if the server supports roaming by looking |
| 1822 | for the resume@appgate.com kex algorithm. |
| 1823 | ok markus@ |
Darren Tucker | e32cf43 | 2010-01-08 16:51:40 +1100 | [diff] [blame] | 1824 | - andreas@cvs.openbsd.org 2009/10/24 11:15:29 |
| 1825 | [clientloop.c] |
| 1826 | client_loop() must detect if the session has been suspended and resumed, |
| 1827 | and take appropriate action in that case. |
| 1828 | From Martin Forssen, maf at appgate dot com |
Darren Tucker | f9e6eb8 | 2010-01-08 16:52:32 +1100 | [diff] [blame] | 1829 | - andreas@cvs.openbsd.org 2009/10/24 11:19:17 |
| 1830 | [ssh2.h] |
| 1831 | Define the KEX messages used when resuming a suspended connection. |
Darren Tucker | e32cf43 | 2010-01-08 16:51:40 +1100 | [diff] [blame] | 1832 | ok markus@ |
Darren Tucker | e730118 | 2010-01-08 16:53:31 +1100 | [diff] [blame] | 1833 | - andreas@cvs.openbsd.org 2009/10/24 11:22:37 |
| 1834 | [roaming_common.c] |
| 1835 | Do the actual suspend/resume in the client. This won't be useful until |
| 1836 | the server side supports roaming. |
| 1837 | Most code from Martin Forssen, maf at appgate dot com. Some changes by |
| 1838 | me and markus@ |
| 1839 | ok markus@ |
Darren Tucker | f1de4e5 | 2010-01-08 16:54:59 +1100 | [diff] [blame] | 1840 | - andreas@cvs.openbsd.org 2009/10/24 11:23:42 |
| 1841 | [ssh.c] |
| 1842 | Request roaming to be enabled if UseRoaming is true and the server |
| 1843 | supports it. |
| 1844 | ok markus@ |
Darren Tucker | 34e314d | 2010-01-08 17:03:46 +1100 | [diff] [blame] | 1845 | - reyk@cvs.openbsd.org 2009/10/28 16:38:18 |
| 1846 | [ssh_config.5 sshd.c misc.h ssh-keyscan.1 readconf.h sshconnect.c |
| 1847 | channels.c channels.h servconf.h servconf.c ssh.1 ssh-keyscan.c scp.1 |
| 1848 | sftp.1 sshd_config.5 readconf.c ssh.c misc.c] |
| 1849 | Allow to set the rdomain in ssh/sftp/scp/sshd and ssh-keyscan. |
| 1850 | ok markus@ |
Darren Tucker | cc117f0 | 2010-01-08 17:05:26 +1100 | [diff] [blame] | 1851 | - jmc@cvs.openbsd.org 2009/10/28 21:45:08 |
| 1852 | [sshd_config.5 sftp.1] |
| 1853 | tweak previous; |
Darren Tucker | 78be8c5 | 2010-01-08 17:05:59 +1100 | [diff] [blame] | 1854 | - djm@cvs.openbsd.org 2009/11/10 02:56:22 |
| 1855 | [ssh_config.5] |
| 1856 | explain the constraints on LocalCommand some more so people don't |
| 1857 | try to abuse it. |
Darren Tucker | f788a91 | 2010-01-08 17:06:47 +1100 | [diff] [blame] | 1858 | - djm@cvs.openbsd.org 2009/11/10 02:58:56 |
| 1859 | [sshd_config.5] |
| 1860 | clarify that StrictModes does not apply to ChrootDirectory. Permissions |
| 1861 | and ownership are always checked when chrooting. bz#1532 |
Darren Tucker | 6e7fe1c | 2010-01-08 17:07:22 +1100 | [diff] [blame] | 1862 | - dtucker@cvs.openbsd.org 2009/11/10 04:30:45 |
| 1863 | [sshconnect2.c channels.c sshconnect.c] |
| 1864 | Set close-on-exec on various descriptors so they don't get leaked to |
| 1865 | child processes. bz #1643, patch from jchadima at redhat, ok deraadt. |
Darren Tucker | 876045b | 2010-01-08 17:08:00 +1100 | [diff] [blame] | 1866 | - markus@cvs.openbsd.org 2009/11/11 21:37:03 |
| 1867 | [channels.c channels.h] |
| 1868 | fix race condition in x11/agent channel allocation: don't read after |
| 1869 | the end of the select read/write fdset and make sure a reused FD |
| 1870 | is not touched before the pre-handlers are called. |
| 1871 | with and ok djm@ |
Darren Tucker | 2944082 | 2010-01-08 17:08:35 +1100 | [diff] [blame] | 1872 | - djm@cvs.openbsd.org 2009/11/17 05:31:44 |
| 1873 | [clientloop.c] |
| 1874 | fix incorrect exit status when multiplexing and channel ID 0 is recycled |
| 1875 | bz#1570 reported by peter.oliver AT eon-is.co.uk; ok dtucker |
Darren Tucker | d6b06a9 | 2010-01-08 17:09:11 +1100 | [diff] [blame] | 1876 | - djm@cvs.openbsd.org 2009/11/19 23:39:50 |
| 1877 | [session.c] |
| 1878 | bz#1606: error when an attempt is made to connect to a server |
| 1879 | with ForceCommand=internal-sftp with a shell session (i.e. not a |
| 1880 | subsystem session). Avoids stuck client when attempting to ssh to such a |
| 1881 | service. ok dtucker@ |
Darren Tucker | c3dc404 | 2010-01-08 17:09:50 +1100 | [diff] [blame] | 1882 | - dtucker@cvs.openbsd.org 2009/11/20 00:15:41 |
| 1883 | [session.c] |
| 1884 | Warn but do not fail if stat()ing the subsystem binary fails. This helps |
| 1885 | with chrootdirectory+forcecommand=sftp-server and restricted shells. |
| 1886 | bz #1599, ok djm. |
Darren Tucker | 2106319 | 2010-01-08 17:10:36 +1100 | [diff] [blame] | 1887 | - djm@cvs.openbsd.org 2009/11/20 00:54:01 |
| 1888 | [sftp.c] |
| 1889 | bz#1588 change "Connecting to host..." message to "Connected to host." |
| 1890 | and delay it until after the sftp protocol connection has been established. |
| 1891 | Avoids confusing sequence of messages when the underlying ssh connection |
| 1892 | experiences problems. ok dtucker@ |
Darren Tucker | ab79169 | 2010-01-08 18:48:02 +1100 | [diff] [blame] | 1893 | - dtucker@cvs.openbsd.org 2009/11/20 00:59:36 |
| 1894 | [sshconnect2.c] |
| 1895 | Use the HostKeyAlias when prompting for passwords. bz#1039, ok djm@ |
Darren Tucker | 70d8769 | 2010-01-08 18:49:16 +1100 | [diff] [blame] | 1896 | - djm@cvs.openbsd.org 2009/11/20 03:24:07 |
| 1897 | [misc.c] |
| 1898 | correct off-by-one in percent_expand(): we would fatal() when trying |
| 1899 | to expand EXPAND_MAX_KEYS, allowing only EXPAND_MAX_KEYS-1 to actually |
| 1900 | work. Note that nothing in OpenSSH actually uses close to this limit at |
| 1901 | present. bz#1607 from Jan.Pechanec AT Sun.COM |
Darren Tucker | c4dc4f5 | 2010-01-08 18:50:04 +1100 | [diff] [blame] | 1902 | - halex@cvs.openbsd.org 2009/11/22 13:18:00 |
| 1903 | [sftp.c] |
| 1904 | make passing of zero-length arguments to ssh safe by |
| 1905 | passing "-<switch>" "<value>" rather than "-<switch><value>" |
| 1906 | ok dtucker@, guenther@, djm@ |
Darren Tucker | 5246df4 | 2010-01-08 18:50:46 +1100 | [diff] [blame] | 1907 | - dtucker@cvs.openbsd.org 2009/12/06 23:41:15 |
| 1908 | [sshconnect2.c] |
| 1909 | zap unused variable and strlen; from Steve McClellan, ok djm |
Darren Tucker | 75694db | 2010-01-08 18:51:14 +1100 | [diff] [blame] | 1910 | - djm@cvs.openbsd.org 2009/12/06 23:53:45 |
| 1911 | [roaming_common.c] |
| 1912 | use socklen_t for getsockopt optlen parameter; reported by |
| 1913 | Steve.McClellan AT radisys.com, ok dtucker@ |
Darren Tucker | b5082e9 | 2010-01-08 18:51:47 +1100 | [diff] [blame] | 1914 | - dtucker@cvs.openbsd.org 2009/12/06 23:53:54 |
| 1915 | [sftp.c] |
| 1916 | fix potential divide-by-zero in sftp's "df" output when talking to a server |
| 1917 | that reports zero files on the filesystem (Unix filesystems always have at |
| 1918 | least the root inode). From Steve McClellan at radisys, ok djm@ |
Darren Tucker | 57e0d01 | 2010-01-08 18:52:27 +1100 | [diff] [blame] | 1919 | - markus@cvs.openbsd.org 2009/12/11 18:16:33 |
| 1920 | [key.c] |
| 1921 | switch from 35 to the more common value of RSA_F4 == (2**16)+1 == 65537 |
| 1922 | for the RSA public exponent; discussed with provos; ok djm@ |
Darren Tucker | b8c884a | 2010-01-08 18:53:43 +1100 | [diff] [blame] | 1923 | - guenther@cvs.openbsd.org 2009/12/20 07:28:36 |
| 1924 | [ssh.c sftp.c scp.c] |
| 1925 | When passing user-controlled options with arguments to other programs, |
| 1926 | pass the option and option argument as separate argv entries and |
| 1927 | not smashed into one (e.g., as -l foo and not -lfoo). Also, always |
| 1928 | pass a "--" argument to stop option parsing, so that a positional |
| 1929 | argument that starts with a '-' isn't treated as an option. This |
| 1930 | fixes some error cases as well as the handling of hostnames and |
| 1931 | filenames that start with a '-'. |
| 1932 | Based on a diff by halex@ |
| 1933 | ok halex@ djm@ deraadt@ |
Darren Tucker | f2705c8 | 2010-01-08 18:54:17 +1100 | [diff] [blame] | 1934 | - djm@cvs.openbsd.org 2009/12/20 23:20:40 |
| 1935 | [PROTOCOL] |
| 1936 | fix an incorrect magic number and typo in PROTOCOL; bz#1688 |
| 1937 | report and fix from ueno AT unixuser.org |
Darren Tucker | 75456e8 | 2010-01-08 18:55:58 +1100 | [diff] [blame] | 1938 | - stevesk@cvs.openbsd.org 2009/12/25 19:40:21 |
| 1939 | [readconf.c servconf.c misc.h ssh-keyscan.c misc.c] |
| 1940 | validate routing domain is in range 0-RT_TABLEID_MAX. |
| 1941 | 'Looks right' deraadt@ |
Darren Tucker | 535b5e1 | 2010-01-08 18:56:48 +1100 | [diff] [blame] | 1942 | - stevesk@cvs.openbsd.org 2009/12/29 16:38:41 |
| 1943 | [sshd_config.5 readconf.c ssh_config.5 scp.1 servconf.c sftp.1 ssh.1] |
| 1944 | Rename RDomain config option to RoutingDomain to be more clear and |
| 1945 | consistent with other options. |
| 1946 | NOTE: if you currently use RDomain in the ssh client or server config, |
| 1947 | or ssh/sshd -o, you must update to use RoutingDomain. |
| 1948 | ok markus@ djm@ |
Darren Tucker | 98e5d9a | 2010-01-08 18:57:39 +1100 | [diff] [blame] | 1949 | - jmc@cvs.openbsd.org 2009/12/29 18:03:32 |
| 1950 | [sshd_config.5 ssh_config.5] |
| 1951 | sort previous; |
Darren Tucker | 0c348f5 | 2010-01-08 18:58:05 +1100 | [diff] [blame] | 1952 | - dtucker@cvs.openbsd.org 2010/01/04 01:45:30 |
| 1953 | [sshconnect2.c] |
| 1954 | Don't escape backslashes in the SSH2 banner. bz#1533, patch from |
| 1955 | Michal Gorny via Gentoo. |
Darren Tucker | 909d858 | 2010-01-08 19:02:40 +1100 | [diff] [blame] | 1956 | - djm@cvs.openbsd.org 2010/01/04 02:03:57 |
| 1957 | [sftp.c] |
| 1958 | Implement tab-completion of commands, local and remote filenames for sftp. |
| 1959 | Hacked on and off for some time by myself, mouring, Carlos Silva (via 2009 |
| 1960 | Google Summer of Code) and polished to a fine sheen by myself again. |
| 1961 | It should deal more-or-less correctly with the ikky corner-cases presented |
| 1962 | by quoted filenames, but the UI could still be slightly improved. |
| 1963 | In particular, it is quite slow for remote completion on large directories. |
| 1964 | bz#200; ok markus@ |
Darren Tucker | aaf51d2 | 2010-01-08 19:04:49 +1100 | [diff] [blame] | 1965 | - djm@cvs.openbsd.org 2010/01/04 02:25:15 |
| 1966 | [sftp-server.c] |
| 1967 | bz#1566 don't unnecessarily dup() in and out fds for sftp-server; |
| 1968 | ok markus@ |
Darren Tucker | 340d168 | 2010-01-09 08:54:31 +1100 | [diff] [blame] | 1969 | - dtucker@cvs.openbsd.org 2010/01/08 21:50:49 |
| 1970 | [sftp.c] |
| 1971 | Fix two warnings: possibly used unitialized and use a nul byte instead of |
| 1972 | NULL pointer. ok djm@ |
Darren Tucker | 8cbd403 | 2010-01-08 19:13:25 +1100 | [diff] [blame] | 1973 | - (dtucker) [Makefile.in added roaming_client.c roaming_serv.c] Import new |
| 1974 | files for roaming and add to Makefile. |
Darren Tucker | dce7a92 | 2010-01-08 19:27:57 +1100 | [diff] [blame] | 1975 | - (dtucker) [Makefile.in] .c files do not belong in the OBJ lines. |
Darren Tucker | e67f7db | 2010-01-08 19:50:02 +1100 | [diff] [blame] | 1976 | - (dtucker) [sftp.c] ifdef out the sftp completion bits for platforms that |
| 1977 | don't have libedit. |
Darren Tucker | 1f5e3dc | 2010-01-08 19:53:52 +1100 | [diff] [blame] | 1978 | - (dtucker) [configure.ac misc.c readconf.c servconf.c ssh-keyscan.c] Make |
| 1979 | RoutingDomain an unsupported option on platforms that don't have it. |
Darren Tucker | 843f0fa | 2010-01-08 19:56:33 +1100 | [diff] [blame] | 1980 | - (dtucker) [sftp.c] Expand ifdef for libedit to cover complete_is_remote |
| 1981 | too. |
Darren Tucker | e83c3ea | 2010-01-08 20:03:56 +1100 | [diff] [blame] | 1982 | - (dtucker) [misc.c] Move the routingdomain ifdef to allow the socket to |
| 1983 | be created. |
Darren Tucker | cb5a1b6 | 2010-01-08 20:09:01 +1100 | [diff] [blame] | 1984 | - (dtucker] [misc.c] Shrink the area covered by USE_ROUTINGDOMAIN more |
| 1985 | to eliminate an unused variable warning. |
Darren Tucker | 1a8f535 | 2010-01-08 20:45:42 +1100 | [diff] [blame] | 1986 | - (dtucker) [roaming_serv.c] Include includes.h for u_intXX_t types. |
Darren Tucker | b7b17be | 2010-01-08 16:49:52 +1100 | [diff] [blame] | 1987 | |
Tim Rice | 880ab0d | 2009-12-26 15:40:47 -0800 | [diff] [blame] | 1988 | 20091226 |
| 1989 | - (tim) [contrib/cygwin/Makefile] Install ssh-copy-id and ssh-copy-id.1 |
| 1990 | Gzip all man pages. Patch from Corinna Vinschen. |
| 1991 | |
Darren Tucker | 1bf3503 | 2009-12-21 10:49:21 +1100 | [diff] [blame] | 1992 | 20091221 |
| 1993 | - (dtucker) [auth-krb5.c platform.{c,h} openbsd-compat/port-aix.{c,h}] |
| 1994 | Bug #1583: Use system's kerberos principal name on AIX if it's available. |
| 1995 | Based on a patch from and tested by Miguel Sanders |
| 1996 | |
Darren Tucker | c8802aa | 2009-12-08 13:39:48 +1100 | [diff] [blame] | 1997 | 20091208 |
| 1998 | - (dtucker) Bug #1470: Disable OOM-killing of the listening sshd on Linux, |
| 1999 | based on a patch from Vaclav Ovsik and Colin Watson. ok djm. |
| 2000 | |
Darren Tucker | 1533311 | 2009-12-07 11:15:43 +1100 | [diff] [blame] | 2001 | 20091207 |
| 2002 | - (dtucker) Bug #1160: use pkg-config for opensc config if it's available. |
| 2003 | Tested by Martin Paljak. |
Darren Tucker | d35e0ef | 2009-12-07 11:32:36 +1100 | [diff] [blame] | 2004 | - (dtucker) Bug #1677: add conditionals around the source for ssh-askpass. |
Darren Tucker | 1533311 | 2009-12-07 11:15:43 +1100 | [diff] [blame] | 2005 | |
Tim Rice | 53e9974 | 2009-11-20 19:32:15 -0800 | [diff] [blame] | 2006 | 20091121 |
| 2007 | - (tim) [opensshd.init.in] If PidFile is set in sshd_config, use it. |
| 2008 | Bug 1628. OK dtucker@ |
| 2009 | |
Damien Miller | 409661f | 2009-11-20 15:16:35 +1100 | [diff] [blame] | 2010 | 20091120 |
| 2011 | - (djm) [ssh-rand-helper.c] Print error and usage() when passed command- |
| 2012 | line arguments as none are supported. Exit when passed unrecognised |
| 2013 | commandline flags. bz#1568 from gson AT araneus.fi |
| 2014 | |
| 2015 | 20091118 |
Damien Miller | 04ee0f8 | 2009-11-18 17:48:30 +1100 | [diff] [blame] | 2016 | - (djm) [channels.c misc.c misc.h sshd.c] add missing setsockopt() to |
| 2017 | set IPV6_V6ONLY for local forwarding with GatwayPorts=yes. Unify |
| 2018 | setting IPV6_V6ONLY behind a new function misc.c:sock_set_v6only() |
Damien Miller | 2191e04 | 2009-11-18 17:51:59 +1100 | [diff] [blame] | 2019 | bz#1648, report and fix from jan.kratochvil AT redhat.com |
| 2020 | - (djm) [contrib/gnome-ssh-askpass2.c] Make askpass dialog desktop-modal. |
| 2021 | bz#1645, patch from jchadima AT redhat.com |
Damien Miller | 04ee0f8 | 2009-11-18 17:48:30 +1100 | [diff] [blame] | 2022 | |
| 2023 | 20091107 |
Darren Tucker | df6578b | 2009-11-07 16:03:14 +1100 | [diff] [blame] | 2024 | - (dtucker) [authfile.c] Fall back to 3DES for the encryption of private |
| 2025 | keys when built with OpenSSL versions that don't do AES. |
| 2026 | |
Darren Tucker | e89ed1c | 2009-11-05 20:43:16 +1100 | [diff] [blame] | 2027 | 20091105 |
| 2028 | - (dtucker) [authfile.c] Add OpenSSL compat header so this still builds with |
| 2029 | older versions of OpenSSL. |
| 2030 | |
Darren Tucker | 1b11888 | 2009-10-24 11:40:32 +1100 | [diff] [blame] | 2031 | 20091024 |
| 2032 | - (dtucker) OpenBSD CVS Sync |
| 2033 | - djm@cvs.openbsd.org 2009/10/11 23:03:15 |
| 2034 | [hostfile.c] |
| 2035 | mention the host name that we are looking for in check_host_in_hostfile() |
Darren Tucker | 49b7e23 | 2009-10-24 11:41:05 +1100 | [diff] [blame] | 2036 | - sobrado@cvs.openbsd.org 2009/10/17 12:10:39 |
| 2037 | [sftp-server.c] |
| 2038 | sort flags. |
Darren Tucker | ae69e1d | 2009-10-24 11:41:34 +1100 | [diff] [blame] | 2039 | - sobrado@cvs.openbsd.org 2009/10/22 12:35:53 |
| 2040 | [ssh.1 ssh-agent.1 ssh-add.1] |
| 2041 | use the UNIX-related macros (.At and .Ux) where appropriate. |
| 2042 | ok jmc@ |
Darren Tucker | 98c9aec | 2009-10-24 11:42:44 +1100 | [diff] [blame] | 2043 | - sobrado@cvs.openbsd.org 2009/10/22 15:02:12 |
| 2044 | [ssh-agent.1 ssh-add.1 ssh.1] |
| 2045 | write UNIX-domain in a more consistent way; while here, replace a |
| 2046 | few remaining ".Tn UNIX" macros with ".Ux" ones. |
| 2047 | pointed out by ratchov@, thanks! |
| 2048 | ok jmc@ |
Darren Tucker | dfb9b71 | 2009-10-24 11:46:43 +1100 | [diff] [blame] | 2049 | - djm@cvs.openbsd.org 2009/10/22 22:26:13 |
| 2050 | [authfile.c] |
| 2051 | switch from 3DES to AES-128 for encryption of passphrase-protected |
| 2052 | SSH protocol 2 private keys; ok several |
Darren Tucker | 2f29a8c | 2009-10-24 11:47:58 +1100 | [diff] [blame] | 2053 | - djm@cvs.openbsd.org 2009/10/23 01:57:11 |
| 2054 | [sshconnect2.c] |
| 2055 | disallow a hostile server from checking jpake auth by sending an |
| 2056 | out-of-sequence success message. (doesn't affect code enabled by default) |
Darren Tucker | 199ee6f | 2009-10-24 11:50:17 +1100 | [diff] [blame] | 2057 | - dtucker@cvs.openbsd.org 2009/10/24 00:48:34 |
| 2058 | [ssh-keygen.1] |
| 2059 | ssh-keygen now uses AES-128 for private keys |
Darren Tucker | 6ac91a7 | 2009-10-24 11:52:42 +1100 | [diff] [blame] | 2060 | - (dtucker) [mdoc2man.awk] Teach it to understand the .Ux macro. |
Darren Tucker | 4d6656b | 2009-10-24 15:04:12 +1100 | [diff] [blame] | 2061 | - (dtucker) [session.c openbsd-compat/port-linux.{c,h}] Bug #1637: if selinux |
| 2062 | is enabled set the security context to "sftpd_t" before running the |
| 2063 | internal sftp server Based on a patch from jchadima at redhat. |
Darren Tucker | 1b11888 | 2009-10-24 11:40:32 +1100 | [diff] [blame] | 2064 | |
Darren Tucker | c182d99 | 2009-10-11 21:50:20 +1100 | [diff] [blame] | 2065 | 20091011 |
| 2066 | - (dtucker) [configure.ac sftp-client.c] Remove the gyrations required for |
| 2067 | dirent d_type and DTTOIF as we've switched OpenBSD to the more portable |
| 2068 | lstat. |
Darren Tucker | bad5076 | 2009-10-11 21:51:08 +1100 | [diff] [blame] | 2069 | - (dtucker) OpenBSD CVS Sync |
| 2070 | - markus@cvs.openbsd.org 2009/10/08 14:03:41 |
| 2071 | [sshd_config readconf.c ssh_config.5 servconf.c sshd_config.5] |
| 2072 | disable protocol 1 by default (after a transition period of about 10 years) |
| 2073 | ok deraadt |
Darren Tucker | 7a4a765 | 2009-10-11 21:51:40 +1100 | [diff] [blame] | 2074 | - jmc@cvs.openbsd.org 2009/10/08 20:42:12 |
| 2075 | [sshd_config.5 ssh_config.5 sshd.8 ssh.1] |
| 2076 | some tweaks now that protocol 1 is not offered by default; ok markus |
Darren Tucker | 438b473 | 2009-10-11 21:52:10 +1100 | [diff] [blame] | 2077 | - dtucker@cvs.openbsd.org 2009/10/11 10:41:26 |
| 2078 | [sftp-client.c] |
| 2079 | d_type isn't portable so use lstat to get dirent modes. Suggested by and |
| 2080 | "looks sane" deraadt@ |
Darren Tucker | e23a79c | 2009-10-12 09:37:22 +1100 | [diff] [blame] | 2081 | - markus@cvs.openbsd.org 2009/10/08 18:04:27 |
| 2082 | [regress/test-exec.sh] |
| 2083 | re-enable protocol v1 for the tests. |
Darren Tucker | c182d99 | 2009-10-11 21:50:20 +1100 | [diff] [blame] | 2084 | |
Darren Tucker | 46bbbe3 | 2009-10-07 08:21:48 +1100 | [diff] [blame] | 2085 | 20091007 |
| 2086 | - (dtucker) OpenBSD CVS Sync |
| 2087 | - djm@cvs.openbsd.org 2009/08/12 00:13:00 |
| 2088 | [sftp.c sftp.1] |
| 2089 | support most of scp(1)'s commandline arguments in sftp(1), as a first |
| 2090 | step towards making sftp(1) a drop-in replacement for scp(1). |
| 2091 | One conflicting option (-P) has not been changed, pending further |
| 2092 | discussion. |
| 2093 | Patch from carlosvsilvapt@gmail.com as part of his work in the |
| 2094 | Google Summer of Code |
Darren Tucker | adba1ba | 2009-10-07 08:22:20 +1100 | [diff] [blame] | 2095 | - jmc@cvs.openbsd.org 2009/08/12 06:31:42 |
| 2096 | [sftp.1] |
| 2097 | sort options; |
Darren Tucker | 282b402 | 2009-10-07 08:23:06 +1100 | [diff] [blame] | 2098 | - djm@cvs.openbsd.org 2009/08/13 01:11:19 |
| 2099 | [sftp.1 sftp.c] |
| 2100 | Swizzle options: "-P sftp_server_path" moves to "-D sftp_server_path", |
| 2101 | add "-P port" to match scp(1). Fortunately, the -P option is only really |
| 2102 | used by our regression scripts. |
| 2103 | part of larger patch from carlosvsilvapt@gmail.com for his Google Summer |
| 2104 | of Code work; ok deraadt markus |
Darren Tucker | c07138e | 2009-10-07 08:23:44 +1100 | [diff] [blame] | 2105 | - jmc@cvs.openbsd.org 2009/08/13 13:39:54 |
| 2106 | [sftp.1 sftp.c] |
| 2107 | sync synopsis and usage(); |
Darren Tucker | c22f090 | 2009-10-07 08:24:19 +1100 | [diff] [blame] | 2108 | - djm@cvs.openbsd.org 2009/08/14 18:17:49 |
| 2109 | [sftp-client.c] |
| 2110 | make the "get_handle: ..." error messages vaguely useful by allowing |
| 2111 | callers to specify their own error message strings. |
Darren Tucker | e54a036 | 2009-10-07 08:35:32 +1100 | [diff] [blame] | 2112 | - fgsch@cvs.openbsd.org 2009/08/15 18:56:34 |
| 2113 | [auth.h] |
| 2114 | remove unused define. markus@ ok. |
| 2115 | (Id sync only, Portable still uses this.) |
Darren Tucker | 1477ea1 | 2009-10-07 08:36:05 +1100 | [diff] [blame] | 2116 | - dtucker@cvs.openbsd.org 2009/08/16 23:29:26 |
| 2117 | [sshd_config.5] |
| 2118 | Add PubkeyAuthentication to the list allowed in a Match block (bz #1577) |
Darren Tucker | 1b0dd17 | 2009-10-07 08:37:48 +1100 | [diff] [blame] | 2119 | - djm@cvs.openbsd.org 2009/08/18 18:36:21 |
| 2120 | [sftp-client.h sftp.1 sftp-client.c sftp.c] |
| 2121 | recursive transfer support for get/put and on the commandline |
| 2122 | work mostly by carlosvsilvapt@gmail.com for the Google Summer of Code |
| 2123 | with some tweaks by me; "go for it" deraadt@ |
Darren Tucker | 05016b2 | 2009-10-07 08:38:23 +1100 | [diff] [blame] | 2124 | - djm@cvs.openbsd.org 2009/08/18 21:15:59 |
| 2125 | [sftp.1] |
| 2126 | fix "get" command usage, spotted by jmc@ |
Darren Tucker | b3b40a8 | 2009-10-07 08:39:09 +1100 | [diff] [blame] | 2127 | - jmc@cvs.openbsd.org 2009/08/19 04:56:03 |
| 2128 | [sftp.1] |
| 2129 | ether -> either; |
Darren Tucker | 8ec4fd8 | 2009-10-07 08:39:57 +1100 | [diff] [blame] | 2130 | - dtucker@cvs.openbsd.org 2009/08/20 23:54:28 |
| 2131 | [mux.c] |
| 2132 | subsystem_flag is defined in ssh.c so it's extern; ok djm |
Darren Tucker | 7dc4850 | 2009-10-07 08:44:42 +1100 | [diff] [blame] | 2133 | - djm@cvs.openbsd.org 2009/08/27 17:28:52 |
| 2134 | [sftp-server.c] |
| 2135 | allow setting an explicit umask on the commandline to override whatever |
| 2136 | default the user has. bz#1229; ok dtucker@ deraadt@ markus@ |
Darren Tucker | 9bcd25b | 2009-10-07 08:45:48 +1100 | [diff] [blame] | 2137 | - djm@cvs.openbsd.org 2009/08/27 17:33:49 |
| 2138 | [ssh-keygen.c] |
| 2139 | force use of correct hash function for random-art signature display |
| 2140 | as it was inheriting the wrong one when bubblebabble signatures were |
| 2141 | activated; bz#1611 report and patch from fwojcik+openssh AT besh.com; |
| 2142 | ok markus@ |
Darren Tucker | 6b286a4 | 2009-10-07 08:46:21 +1100 | [diff] [blame] | 2143 | - djm@cvs.openbsd.org 2009/08/27 17:43:00 |
| 2144 | [sftp-server.8] |
| 2145 | allow setting an explicit umask on the commandline to override whatever |
| 2146 | default the user has. bz#1229; ok dtucker@ deraadt@ markus@ |
Darren Tucker | 893d735 | 2009-10-07 08:47:02 +1100 | [diff] [blame] | 2147 | - djm@cvs.openbsd.org 2009/08/27 17:44:52 |
| 2148 | [authfd.c ssh-add.c authfd.h] |
| 2149 | Do not fall back to adding keys without contraints (ssh-add -c / -t ...) |
| 2150 | when the agent refuses the constrained add request. This was a useful |
| 2151 | migration measure back in 2002 when constraints were new, but just |
| 2152 | adds risk now. |
| 2153 | bz #1612, report and patch from dkg AT fifthhorseman.net; ok markus@ |
Darren Tucker | 30359e1 | 2009-10-07 08:47:24 +1100 | [diff] [blame] | 2154 | - djm@cvs.openbsd.org 2009/08/31 20:56:02 |
| 2155 | [sftp-server.c] |
| 2156 | check correct variable for error message, spotted by martynas@ |
Darren Tucker | 7bee06a | 2009-10-07 08:47:47 +1100 | [diff] [blame] | 2157 | - djm@cvs.openbsd.org 2009/08/31 21:01:29 |
| 2158 | [sftp-server.8] |
| 2159 | document -e and -h; prodded by jmc@ |
Darren Tucker | 72473c6 | 2009-10-07 09:01:03 +1100 | [diff] [blame] | 2160 | - djm@cvs.openbsd.org 2009/09/01 14:43:17 |
| 2161 | [ssh-agent.c] |
| 2162 | fix a race condition in ssh-agent that could result in a wedged or |
| 2163 | spinning agent: don't read off the end of the allocated fd_sets, and |
| 2164 | don't issue blocking read/write on agent sockets - just fall back to |
| 2165 | select() on retriable read/write errors. bz#1633 reported and tested |
| 2166 | by "noodle10000 AT googlemail.com"; ok dtucker@ markus@ |
Darren Tucker | 759cb2a | 2009-10-07 09:01:50 +1100 | [diff] [blame] | 2167 | - grunk@cvs.openbsd.org 2009/10/01 11:37:33 |
| 2168 | [dh.c] |
| 2169 | fix a cast |
| 2170 | ok djm@ markus@ |
Darren Tucker | 695ed39 | 2009-10-07 09:02:18 +1100 | [diff] [blame] | 2171 | - djm@cvs.openbsd.org 2009/10/06 04:46:40 |
| 2172 | [session.c] |
| 2173 | bz#1596: fflush(NULL) before exec() to ensure that everying (motd |
| 2174 | in particular) has made it out before the streams go away. |
Darren Tucker | 7023d16 | 2009-10-07 10:30:06 +1100 | [diff] [blame] | 2175 | - djm@cvs.openbsd.org 2008/12/07 22:17:48 |
| 2176 | [regress/addrmatch.sh] |
| 2177 | match string "passwordauthentication" only at start of line, not anywhere |
| 2178 | in sshd -T output |
Darren Tucker | 7988553 | 2009-10-07 10:30:57 +1100 | [diff] [blame] | 2179 | - dtucker@cvs.openbsd.org 2009/05/05 07:51:36 |
| 2180 | [regress/multiplex.sh] |
| 2181 | Always specify ssh_config for multiplex tests: prevents breakage caused |
| 2182 | by options in ~/.ssh/config. From Dan Peterson. |
Darren Tucker | 287b932 | 2009-10-07 10:31:56 +1100 | [diff] [blame] | 2183 | - djm@cvs.openbsd.org 2009/08/13 00:57:17 |
| 2184 | [regress/Makefile] |
| 2185 | regression test for port number parsing. written as part of the a2port |
| 2186 | change that went into 5.2 but I forgot to commit it at the time... |
Darren Tucker | ed6b0c5 | 2009-10-07 10:43:57 +1100 | [diff] [blame] | 2187 | - djm@cvs.openbsd.org 2009/08/13 01:11:55 |
Darren Tucker | b707a24 | 2009-10-07 10:54:31 +1100 | [diff] [blame] | 2188 | [regress/sftp-batch.sh regress/sftp-badcmds.sh regress/sftp.sh |
| 2189 | regress/sftp-cmds.sh regres/sftp-glob.sh] |
Darren Tucker | ed6b0c5 | 2009-10-07 10:43:57 +1100 | [diff] [blame] | 2190 | date: 2009/08/13 01:11:19; author: djm; state: Exp; lines: +10 -7 |
| 2191 | Swizzle options: "-P sftp_server_path" moves to "-D sftp_server_path", |
| 2192 | add "-P port" to match scp(1). Fortunately, the -P option is only really |
| 2193 | used by our regression scripts. |
| 2194 | part of larger patch from carlosvsilvapt@gmail.com for his Google Summer |
| 2195 | of Code work; ok deraadt markus |
Darren Tucker | c863895 | 2009-10-07 10:46:29 +1100 | [diff] [blame] | 2196 | - djm@cvs.openbsd.org 2009/08/20 18:43:07 |
Darren Tucker | b707a24 | 2009-10-07 10:54:31 +1100 | [diff] [blame] | 2197 | [regress/ssh-com-sftp.sh] |
Darren Tucker | c863895 | 2009-10-07 10:46:29 +1100 | [diff] [blame] | 2198 | fix one sftp -D ... => sftp -P ... conversion that I missed; from Carlos |
| 2199 | Silva for Google Summer of Code |
Darren Tucker | b707a24 | 2009-10-07 10:54:31 +1100 | [diff] [blame] | 2200 | - dtucker@cvs.openbsd.org 2009/10/06 23:51:49 |
| 2201 | [regress/ssh2putty.sh] |
| 2202 | Add OpenBSD tag to make syncs easier |
Darren Tucker | a25ab01 | 2009-10-07 11:00:58 +1100 | [diff] [blame] | 2203 | - (dtucker) [regress/portnum.sh] Import new test. |
Darren Tucker | 538738d | 2009-10-07 18:56:10 +1100 | [diff] [blame] | 2204 | - (dtucker) [configure.ac sftp-client.c] DTOTIF is in fs/ffs/dir.h on at |
Darren Tucker | 4adeac7 | 2009-10-07 15:49:48 +1100 | [diff] [blame] | 2205 | least dragonflybsd. |
Darren Tucker | 538738d | 2009-10-07 18:56:10 +1100 | [diff] [blame] | 2206 | - (dtucker) d_type is not mandated by POSIX, so add fallback code using |
| 2207 | stat(), needed on at least cygwin. |
Darren Tucker | 46bbbe3 | 2009-10-07 08:21:48 +1100 | [diff] [blame] | 2208 | |
Damien Miller | 350666d | 2009-10-02 11:50:55 +1000 | [diff] [blame] | 2209 | 20091002 |
| 2210 | - (djm) [Makefile.in] Mention readconf.o in ssh-keysign's make deps. |
| 2211 | spotted by des AT des.no |
| 2212 | |
Damien Miller | ea43742 | 2009-10-02 11:49:03 +1000 | [diff] [blame] | 2213 | 20090926 |
| 2214 | - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 2215 | [contrib/suse/openssh.spec] Update for release |
| 2216 | - (djm) [README] update relnotes URL |
| 2217 | - (djm) [packet.c] Restore EWOULDBLOCK handling that got lost somewhere |
| 2218 | - (djm) Release 5.3p1 |
| 2219 | |
Darren Tucker | e02b49a | 2009-09-11 14:56:08 +1000 | [diff] [blame] | 2220 | 20090911 |
| 2221 | - (dtucker) [configure.ac] Change the -lresolv check so it works on Mac OS X |
| 2222 | 10.6 (which doesn't have BIND8_COMPAT and thus uses res_9_query). Patch |
| 2223 | from jbasney at ncsa uiuc edu. |
| 2224 | |
Damien Miller | e5d5a17 | 2009-09-09 11:07:28 +1000 | [diff] [blame] | 2225 | 20090908 |
| 2226 | - (djm) [serverloop.c] Fix test for server-assigned remote forwarding port |
| 2227 | (-R 0:...); bz#1578, spotted and fix by gavin AT emf.net; ok dtucker@ |
| 2228 | |
Darren Tucker | dad48e7 | 2009-09-01 18:26:00 +1000 | [diff] [blame] | 2229 | 20090901 |
| 2230 | - (dtucker) [configure.ac] Bug #1639: use AC_PATH_PROG to search the path for |
| 2231 | krb5-config if it's not in the location specified by --with-kerberos5. |
| 2232 | Patch from jchadima at redhat. |
| 2233 | |
Darren Tucker | 427adf1 | 2009-08-29 09:14:48 +1000 | [diff] [blame] | 2234 | 20090829 |
| 2235 | - (dtucker) [README.platform] Add text about development packages, based on |
| 2236 | text from Chris Pepper in bug #1631. |
| 2237 | |
Darren Tucker | 28b973e | 2009-08-28 10:16:44 +1000 | [diff] [blame] | 2238 | 20090828 |
| 2239 | - dtucker [auth-sia.c] Roll back the change for bug #1241 as it apparently |
| 2240 | causes problems in some Tru64 configurations. |
Damien Miller | 8aac993 | 2009-08-28 10:40:30 +1000 | [diff] [blame] | 2241 | - (djm) [sshd_config.5] downgrade mention of login.conf to be an example |
| 2242 | and mention PAM as another provider for ChallengeResponseAuthentication; |
| 2243 | bz#1408; ok dtucker@ |
Damien Miller | 0e26551 | 2009-08-28 10:43:13 +1000 | [diff] [blame] | 2244 | - (djm) [sftp-server.c] bz#1535: accept ENOSYS as a fallback error when |
| 2245 | attempting atomic rename(); ok dtucker@ |
Damien Miller | 7d4a268 | 2009-08-28 10:47:38 +1000 | [diff] [blame] | 2246 | - (djm) [Makefile.in] bz#1505: Solaris make(1) doesn't accept make variables |
| 2247 | in argv, so pass them in the environment; ok dtucker@ |
Darren Tucker | 3980b63 | 2009-08-28 11:02:37 +1000 | [diff] [blame] | 2248 | - (dtucker) [channels.c configure.ac] Bug #1528: skip the tcgetattr call on |
| 2249 | the pty master on Solaris, since it never succeeds and can hang if large |
| 2250 | amounts of data is sent to the slave (eg a copy-paste). Based on a patch |
| 2251 | originally from Doke Scott, ok djm@ |
Darren Tucker | 86e30a0 | 2009-08-28 11:21:06 +1000 | [diff] [blame] | 2252 | - (dtucker) [clientloop.c configure.ac defines.h] Make the client's IO buffer |
| 2253 | size a compile-time option and set it to 64k on Cygwin, since Corinna |
| 2254 | reports that it makes a significant difference to performance. ok djm@ |
Darren Tucker | ac9f1b9 | 2009-08-28 15:01:20 +1000 | [diff] [blame] | 2255 | - (dtucker) [configure.ac] Fix the syntax of the Solaris tcgetattr entry. |
Darren Tucker | 28b973e | 2009-08-28 10:16:44 +1000 | [diff] [blame] | 2256 | |
Darren Tucker | 2a5588d | 2009-08-20 16:16:01 +1000 | [diff] [blame] | 2257 | 20090820 |
| 2258 | - (dtucker) [includes.h] Bug #1634: do not include system glob.h if we're not |
| 2259 | using it since the type conflicts can cause problems on FreeBSD. Patch |
| 2260 | from Jonathan Chen. |
Darren Tucker | 82edf23 | 2009-08-20 16:20:50 +1000 | [diff] [blame] | 2261 | - (dtucker) [session.c openbsd-compat/port-aix.h] Bugs #1249 and #1567: move |
| 2262 | the setpcred call on AIX to immediately before the permanently_set_uid(). |
| 2263 | Ensures that we still have privileges when we call chroot and |
| 2264 | pam_open_sesson. Based on a patch from David Leonard. |
Darren Tucker | 2a5588d | 2009-08-20 16:16:01 +1000 | [diff] [blame] | 2265 | |
Darren Tucker | 83d8f28 | 2009-08-17 09:35:22 +1000 | [diff] [blame] | 2266 | 20090817 |
| 2267 | - (dtucker) [configure.ac] Check for headers before libraries for openssl an |
| 2268 | zlib, which should make the errors slightly more meaningful on platforms |
| 2269 | where there's separate "-devel" packages for those. |
Darren Tucker | b5d5ee1 | 2009-08-17 09:40:00 +1000 | [diff] [blame] | 2270 | - (dtucker) [sshlogin.c openbsd-compat/port-aix.{c,h}] Bug #1595: make |
| 2271 | PrintLastLog work on AIX. Based in part on a patch from Miguel Sanders. |
Darren Tucker | 83d8f28 | 2009-08-17 09:35:22 +1000 | [diff] [blame] | 2272 | |
Tim Rice | caeb164 | 2009-07-29 07:21:13 -0700 | [diff] [blame] | 2273 | 20090729 |
| 2274 | - (tim) [contrib/cygwin/ssh-user-config] Change script to call correct error |
| 2275 | function. Patch from Corinna Vinschen. |
| 2276 | |
Darren Tucker | 440089a | 2009-07-13 11:38:23 +1000 | [diff] [blame] | 2277 | 20090713 |
| 2278 | - (dtucker) [openbsd-compat/getrrsetbyname.c] Reduce answer buffer size so it |
| 2279 | fits into 16 bits to work around a bug in glibc's resolver where it masks |
| 2280 | off the buffer size at 16 bits. Patch from Hauke Lampe, ok djm jakob. |
| 2281 | |
Darren Tucker | c4b22ca | 2009-07-12 21:56:29 +1000 | [diff] [blame] | 2282 | 20090712 |
| 2283 | - (dtucker) [configure.ac] Include sys/param.h for the sys/mount.h test, |
| 2284 | prevents configure complaining on older BSDs. |
Darren Tucker | 8fdcba5 | 2009-07-12 21:58:42 +1000 | [diff] [blame] | 2285 | - (dtucker [contrib/cygwin/ssh-{host,user}-config] Add license text. Patch |
| 2286 | from Corinna Vinschen. |
Darren Tucker | 622d5c5 | 2009-07-12 22:07:21 +1000 | [diff] [blame] | 2287 | - (dtucker) [auth-pam.c] Bug #1534: move the deletion of PAM credentials on |
Darren Tucker | 916fdda | 2009-07-12 22:12:28 +1000 | [diff] [blame] | 2288 | logout to after the session close. Patch from Anicka Bernathova, |
| 2289 | originally from Andreas Schwab via Novelll ok djm. |
Darren Tucker | c4b22ca | 2009-07-12 21:56:29 +1000 | [diff] [blame] | 2290 | |
Darren Tucker | 4d4fdc0 | 2009-07-07 21:19:11 +1000 | [diff] [blame] | 2291 | 20090707 |
| 2292 | - (dtucker) [contrib/cygwin/ssh-host-config] better support for automated |
| 2293 | scripts and fix usage of eval. Patch from Corinna Vinschen. |
| 2294 | |
| 2295 | 20090705 |
Darren Tucker | e841eb0 | 2009-07-06 07:11:13 +1000 | [diff] [blame] | 2296 | - (dtucker) OpenBSD CVS Sync |
| 2297 | - andreas@cvs.openbsd.org 2009/06/27 09:29:06 |
| 2298 | [packet.h packet.c] |
| 2299 | packet_bacup_state() and packet_restore_state() will be used to |
| 2300 | temporarily save the current state ren resuming a suspended connection. |
| 2301 | ok markus@ |
Darren Tucker | 466df21 | 2009-07-06 07:11:52 +1000 | [diff] [blame] | 2302 | - andreas@cvs.openbsd.org 2009/06/27 09:32:43 |
| 2303 | [roaming_common.c roaming.h] |
| 2304 | It may be necessary to retransmit some data when resuming, so add it |
| 2305 | to a buffer when roaming is enabled. |
| 2306 | Most of this code was written by Martin Forssen, maf at appgate dot com. |
| 2307 | ok markus@ |
Darren Tucker | 71e4d54 | 2009-07-06 07:12:27 +1000 | [diff] [blame] | 2308 | - andreas@cvs.openbsd.org 2009/06/27 09:35:06 |
| 2309 | [readconf.h readconf.c] |
| 2310 | Add client option UseRoaming. It doesn't do anything yet but will |
| 2311 | control whether the client tries to use roaming if enabled on the |
| 2312 | server. From Martin Forssen. |
| 2313 | ok markus@ |
Darren Tucker | cd6b1a2 | 2009-07-06 07:13:04 +1000 | [diff] [blame] | 2314 | - markus@cvs.openbsd.org 2009/06/30 14:54:40 |
| 2315 | [version.h] |
| 2316 | crank version; ok deraadt |
Darren Tucker | 199b134 | 2009-07-06 07:16:56 +1000 | [diff] [blame] | 2317 | - dtucker@cvs.openbsd.org 2009/07/02 02:11:47 |
| 2318 | [ssh.c] |
| 2319 | allow for long home dir paths (bz #1615). ok deraadt |
| 2320 | (based in part on a patch from jchadima at redhat) |
Darren Tucker | de0c025 | 2009-07-06 07:17:35 +1000 | [diff] [blame] | 2321 | - stevesk@cvs.openbsd.org 2009/07/05 19:28:33 |
| 2322 | [clientloop.c] |
| 2323 | only send SSH2_MSG_DISCONNECT if we're in compat20; from dtucker@ |
| 2324 | ok deraadt@ markus@ |
Darren Tucker | e841eb0 | 2009-07-06 07:11:13 +1000 | [diff] [blame] | 2325 | |
Darren Tucker | 821d3db | 2009-06-22 16:11:06 +1000 | [diff] [blame] | 2326 | 20090622 |
| 2327 | - (dtucker) OpenBSD CVS Sync |
| 2328 | - dtucker@cvs.openbsd.org 2009/06/22 05:39:28 |
| 2329 | [monitor_wrap.c monitor_mm.c ssh-keygen.c auth2.c gss-genr.c sftp-client.c] |
| 2330 | alphabetize includes; reduces diff vs portable and style(9). |
| 2331 | ok stevesk djm |
| 2332 | (Id sync only; these were already in order in -portable) |
| 2333 | |
Darren Tucker | 72efd74 | 2009-06-21 17:48:00 +1000 | [diff] [blame] | 2334 | 20090621 |
| 2335 | - (dtucker) OpenBSD CVS Sync |
| 2336 | - markus@cvs.openbsd.org 2009/03/17 21:37:00 |
| 2337 | [ssh.c] |
| 2338 | pass correct argv[0] to openlog(); ok djm@ |
Darren Tucker | 3a6a51f | 2009-06-21 17:48:52 +1000 | [diff] [blame] | 2339 | - jmc@cvs.openbsd.org 2009/03/19 15:15:09 |
| 2340 | [ssh.1] |
| 2341 | for "Ciphers", just point the reader to the keyword in ssh_config(5), just |
| 2342 | as we do for "MACs": this stops us getting out of sync when the lists |
| 2343 | change; |
| 2344 | fixes documentation/6102, submitted by Peter J. Philipp |
| 2345 | alternative fix proposed by djm |
| 2346 | ok markus |
Darren Tucker | a096450 | 2009-06-21 17:49:36 +1000 | [diff] [blame] | 2347 | - tobias@cvs.openbsd.org 2009/03/23 08:31:19 |
| 2348 | [ssh-agent.c] |
| 2349 | Fixed a possible out-of-bounds memory access if the environment variable |
| 2350 | SHELL is shorter than 3 characters. |
| 2351 | with input by and ok dtucker |
Darren Tucker | 9013323 | 2009-06-21 17:50:15 +1000 | [diff] [blame] | 2352 | - tobias@cvs.openbsd.org 2009/03/23 19:38:04 |
| 2353 | [ssh-agent.c] |
| 2354 | My previous commit didn't fix the problem at all, so stick at my first |
| 2355 | version of the fix presented to dtucker. |
| 2356 | Issue notified by Matthias Barkhoff (matthias dot barkhoff at gmx dot de). |
| 2357 | ok dtucker |
Darren Tucker | 5837b51 | 2009-06-21 17:52:27 +1000 | [diff] [blame] | 2358 | - sobrado@cvs.openbsd.org 2009/03/26 08:38:39 |
| 2359 | [sftp-server.8 sshd.8 ssh-agent.1] |
| 2360 | fix a few typographical errors found by spell(1). |
| 2361 | ok dtucker@, jmc@ |
Darren Tucker | af501cf | 2009-06-21 17:53:04 +1000 | [diff] [blame] | 2362 | - stevesk@cvs.openbsd.org 2009/04/13 19:07:44 |
| 2363 | [sshd_config.5] |
| 2364 | fix possessive; ok djm@ |
Darren Tucker | b62f1a8 | 2009-06-21 17:53:48 +1000 | [diff] [blame] | 2365 | - stevesk@cvs.openbsd.org 2009/04/14 16:33:42 |
| 2366 | [sftp-server.c] |
| 2367 | remove unused option character from getopt() optstring; ok markus@ |
Darren Tucker | 3b59dfa | 2009-06-21 17:54:47 +1000 | [diff] [blame] | 2368 | - jj@cvs.openbsd.org 2009/04/14 21:10:54 |
| 2369 | [servconf.c] |
| 2370 | Fixed a few the-the misspellings in comments. Skipped a bunch in |
| 2371 | binutils,gcc and so on. ok jmc@ |
Darren Tucker | ac46a91 | 2009-06-21 17:55:23 +1000 | [diff] [blame] | 2372 | - stevesk@cvs.openbsd.org 2009/04/17 19:23:06 |
| 2373 | [session.c] |
| 2374 | use INTERNAL_SFTP_NAME for setproctitle() of in-process sftp-server; |
| 2375 | ok djm@ markus@ |
Darren Tucker | 00fcd71 | 2009-06-21 17:56:00 +1000 | [diff] [blame] | 2376 | - stevesk@cvs.openbsd.org 2009/04/17 19:40:17 |
| 2377 | [sshd_config.5] |
| 2378 | clarify that even internal-sftp needs /dev/log for logging to work; ok |
| 2379 | markus@ |
Darren Tucker | f92077f | 2009-06-21 17:56:25 +1000 | [diff] [blame] | 2380 | - jmc@cvs.openbsd.org 2009/04/18 18:39:10 |
| 2381 | [sshd_config.5] |
| 2382 | tweak previous; ok stevesk |
Darren Tucker | 51dbe50 | 2009-06-21 17:56:51 +1000 | [diff] [blame] | 2383 | - stevesk@cvs.openbsd.org 2009/04/21 15:13:17 |
| 2384 | [sshd_config.5] |
| 2385 | clarify we cd to user's home after chroot; ok markus@ on |
| 2386 | earlier version; tweaks and ok jmc@ |
Darren Tucker | f7288d7 | 2009-06-21 18:12:20 +1000 | [diff] [blame] | 2387 | - andreas@cvs.openbsd.org 2009/05/25 06:48:01 |
| 2388 | [channels.c packet.c clientloop.c packet.h serverloop.c monitor_wrap.c |
| 2389 | monitor.c] |
| 2390 | Put the globals in packet.c into a struct and don't access it directly |
| 2391 | from other files. No functional changes. |
| 2392 | ok markus@ djm@ |
| 2393 | - andreas@cvs.openbsd.org 2009/05/27 06:31:25 |
| 2394 | [canohost.h canohost.c] |
| 2395 | Add clear_cached_addr(), needed for upcoming changes allowing the peer |
| 2396 | address to change. |
| 2397 | ok markus@ |
Darren Tucker | 39c7632 | 2009-06-21 18:13:57 +1000 | [diff] [blame] | 2398 | - andreas@cvs.openbsd.org 2009/05/27 06:33:39 |
| 2399 | [clientloop.c] |
| 2400 | Send SSH2_MSG_DISCONNECT when the client disconnects. From a larger |
| 2401 | change from Martin Forssen, maf at appgate dot com. |
| 2402 | ok markus@ |
Darren Tucker | 12b4a65 | 2009-06-21 18:14:48 +1000 | [diff] [blame] | 2403 | - andreas@cvs.openbsd.org 2009/05/27 06:34:36 |
| 2404 | [kex.c kex.h] |
| 2405 | Move the KEX_COOKIE_LEN define to kex.h |
| 2406 | ok markus@ |
Darren Tucker | 5b48cdd | 2009-06-21 18:15:25 +1000 | [diff] [blame] | 2407 | - andreas@cvs.openbsd.org 2009/05/27 06:36:07 |
| 2408 | [packet.h packet.c] |
| 2409 | Add packet_put_int64() and packet_get_int64(), part of a larger change |
| 2410 | from Martin Forssen. |
Darren Tucker | 761c389 | 2009-06-21 18:16:26 +1000 | [diff] [blame] | 2411 | ok markus@ |
| 2412 | - andreas@cvs.openbsd.org 2009/05/27 06:38:16 |
| 2413 | [sshconnect.h sshconnect.c] |
| 2414 | Un-static ssh_exchange_identification(), part of a larger change from |
| 2415 | Martin Forssen and needed for upcoming changes. |
| 2416 | ok markus@ |
Darren Tucker | 1cc55d7 | 2009-06-21 18:17:19 +1000 | [diff] [blame] | 2417 | - andreas@cvs.openbsd.org 2009/05/28 16:50:16 |
| 2418 | [sshd.c packet.c serverloop.c monitor_wrap.c clientloop.c sshconnect.c |
Darren Tucker | c5564e1 | 2009-06-21 18:53:53 +1000 | [diff] [blame] | 2419 | monitor.c Added roaming.h roaming_common.c roaming_dummy.c] |
Darren Tucker | 1cc55d7 | 2009-06-21 18:17:19 +1000 | [diff] [blame] | 2420 | Keep track of number of bytes read and written. Needed for upcoming |
| 2421 | changes. Most code from Martin Forssen, maf at appgate dot com. |
| 2422 | ok markus@ |
Darren Tucker | c5564e1 | 2009-06-21 18:53:53 +1000 | [diff] [blame] | 2423 | Also, applied appropriate changes to Makefile.in |
Darren Tucker | b422afa | 2009-06-21 18:58:46 +1000 | [diff] [blame] | 2424 | - andreas@cvs.openbsd.org 2009/06/12 20:43:22 |
| 2425 | [monitor.c packet.c] |
| 2426 | Fix warnings found by chl@ and djm@ and change roaming_atomicio's |
| 2427 | return type to match atomicio's |
| 2428 | Diff from djm@, ok markus@ |
Darren Tucker | 7b935c7 | 2009-06-21 18:59:36 +1000 | [diff] [blame] | 2429 | - andreas@cvs.openbsd.org 2009/06/12 20:58:32 |
| 2430 | [packet.c] |
| 2431 | Move some more statics into session_state |
| 2432 | ok markus@ djm@ |
Darren Tucker | 6ae35ac | 2009-06-21 19:00:20 +1000 | [diff] [blame] | 2433 | - dtucker@cvs.openbsd.org 2009/06/21 07:37:15 |
| 2434 | [kexdhs.c kexgexs.c] |
| 2435 | abort if key_sign fails, preventing possible null deref. Based on report |
| 2436 | from Paolo Ganci, ok markus@ djm@ |
Darren Tucker | e6b590e | 2009-06-21 19:08:48 +1000 | [diff] [blame] | 2437 | - dtucker@cvs.openbsd.org 2009/06/21 09:04:03 |
| 2438 | [roaming.h roaming_common.c roaming_dummy.c] |
| 2439 | Add tags for the benefit of the sync scripts |
| 2440 | Also: pull in the changes for 1.1->1.2 missed in the previous sync. |
Darren Tucker | 43e7a35 | 2009-06-21 19:50:08 +1000 | [diff] [blame] | 2441 | - (dtucker) [auth2-jpake.c auth2.c canohost.h session.c] Whitespace and |
| 2442 | header-order changes to reduce diff vs OpenBSD. |
Darren Tucker | 64cee36 | 2009-06-21 20:26:17 +1000 | [diff] [blame] | 2443 | - (dtucker) [servconf.c sshd.c] More whitespace sync. |
Darren Tucker | 828c96d | 2009-06-21 22:22:08 +1000 | [diff] [blame] | 2444 | - (dtucker) [roaming_common.c roaming_dummy.c] Wrap #include <inttypes.h> in |
| 2445 | ifdef. |
Darren Tucker | 72efd74 | 2009-06-21 17:48:00 +1000 | [diff] [blame] | 2446 | |
Darren Tucker | 3278062 | 2009-06-16 16:11:02 +1000 | [diff] [blame] | 2447 | 20090616 |
| 2448 | - (dtucker) [configure.ac defines.h] Bug #1607: handle the case where fsid_t |
| 2449 | is a struct with a __val member. Fixes build on, eg, Redhat 6.2. |
| 2450 | |
Darren Tucker | a422d97 | 2009-05-04 12:52:47 +1000 | [diff] [blame] | 2451 | 20090504 |
| 2452 | - (dtucker) [sshlogin.c] Move the NO_SSH_LASTLOG #ifndef line to include |
| 2453 | variable declarations. Should prevent unused warnings anywhere it's set |
| 2454 | (only Crays as far as I can tell) and be a no-op everywhere else. |
| 2455 | |
Tim Rice | a74000e | 2009-03-18 11:25:02 -0700 | [diff] [blame] | 2456 | 20090318 |
| 2457 | - (tim) [configure.ac] Remove setting IP_TOS_IS_BROKEN for Cygwin. The problem |
| 2458 | that setsockopt(IP_TOS) doesn't work on Cygwin has been fixed since 2005. |
| 2459 | Based on patch from vinschen at redhat com. |
| 2460 | |
Darren Tucker | 9d86e5d | 2009-03-08 11:40:27 +1100 | [diff] [blame] | 2461 | 20090308 |
| 2462 | - (dtucker) [auth-passwd.c auth1.c auth2-kbdint.c auth2-none.c auth2-passwd.c |
| 2463 | auth2-pubkey.c session.c openbsd-compat/bsd-cygwin_util.{c,h} |
| 2464 | openbsd-compat/daemon.c] Remove support for Windows 95/98/ME and very old |
| 2465 | version of Cygwin. Patch from vinschen at redhat com. |
| 2466 | |
Darren Tucker | 558d6ca | 2009-03-07 10:22:10 +1100 | [diff] [blame] | 2467 | 20090307 |
| 2468 | - (dtucker) [contrib/aix/buildbff.sh] Only try to rename ssh_prng_cmds if it |
| 2469 | exists (it's not created if OpenSSL's PRNG is self-seeded, eg if the OS |
| 2470 | has a /dev/random). |
Darren Tucker | 8aae6ff | 2009-03-07 12:01:47 +1100 | [diff] [blame] | 2471 | - (dtucker) [schnorr.c openbsd-compat/openssl-compat.{c,h}] Add |
| 2472 | EVP_DigestUpdate to the OLD_EVP compatibility functions and tell schnorr.c |
| 2473 | to use them. Allows building with older OpenSSL versions. |
Darren Tucker | ccfee05 | 2009-03-07 12:32:22 +1100 | [diff] [blame] | 2474 | - (dtucker) [configure.ac defines.h] Check for in_port_t and typedef if needed. |
Darren Tucker | 30ed668 | 2009-03-07 18:06:22 +1100 | [diff] [blame] | 2475 | - (dtucker) [configure.ac] Missing comma in type list. |
Darren Tucker | 3e7e15f | 2009-03-07 22:22:35 +1100 | [diff] [blame] | 2476 | - (dtucker) [configure.ac openbsd-compat/openssl-compat.{c,h}] |
| 2477 | EVP_DigestUpdate does not exactly match the other OLD_EVP functions (eg |
| 2478 | in openssl 0.9.6) so add an explicit test for it. |
Darren Tucker | 558d6ca | 2009-03-07 10:22:10 +1100 | [diff] [blame] | 2479 | |
Damien Miller | cee8523 | 2009-03-06 00:58:22 +1100 | [diff] [blame] | 2480 | 20090306 |
| 2481 | - (djm) OpenBSD CVS Sync |
| 2482 | - djm@cvs.openbsd.org 2009/03/05 07:18:19 |
| 2483 | [auth2-jpake.c jpake.c jpake.h monitor_wrap.c monitor_wrap.h schnorr.c] |
| 2484 | [sshconnect2.c] |
| 2485 | refactor the (disabled) Schnorr proof code to make it a little more |
| 2486 | generally useful |
Damien Miller | 447e387 | 2009-03-06 00:58:39 +1100 | [diff] [blame] | 2487 | - djm@cvs.openbsd.org 2009/03/05 11:30:50 |
| 2488 | [uuencode.c] |
| 2489 | document what these functions do so I don't ever have to recuse into |
| 2490 | b64_pton/ntop to remember their return values |
Damien Miller | cee8523 | 2009-03-06 00:58:22 +1100 | [diff] [blame] | 2491 | |
Damien Miller | 1991384 | 2009-02-23 10:53:58 +1100 | [diff] [blame] | 2492 | 20090223 |
| 2493 | - (djm) OpenBSD CVS Sync |
| 2494 | - djm@cvs.openbsd.org 2009/02/22 23:50:57 |
| 2495 | [ssh_config.5 sshd_config.5] |
| 2496 | don't advertise experimental options |
Damien Miller | 0296ae8 | 2009-02-23 11:00:24 +1100 | [diff] [blame] | 2497 | - djm@cvs.openbsd.org 2009/02/22 23:59:25 |
| 2498 | [sshd_config.5] |
| 2499 | missing period |
Damien Miller | 582ca6b | 2009-02-23 11:09:25 +1100 | [diff] [blame] | 2500 | - djm@cvs.openbsd.org 2009/02/23 00:06:15 |
| 2501 | [version.h] |
| 2502 | openssh-5.2 |
Damien Miller | 5d0d530 | 2009-02-23 11:11:57 +1100 | [diff] [blame] | 2503 | - (djm) [README] update for 5.2 |
Damien Miller | faec50b | 2009-02-23 11:12:29 +1100 | [diff] [blame] | 2504 | - (djm) Release openssh-5.2p1 |
Damien Miller | 1991384 | 2009-02-23 10:53:58 +1100 | [diff] [blame] | 2505 | |
Damien Miller | 9eab956 | 2009-02-22 08:47:02 +1100 | [diff] [blame] | 2506 | 20090222 |
| 2507 | - (djm) OpenBSD CVS Sync |
| 2508 | - tobias@cvs.openbsd.org 2009/02/21 19:32:04 |
| 2509 | [misc.c sftp-server-main.c ssh-keygen.c] |
| 2510 | Added missing newlines in error messages. |
| 2511 | ok dtucker |
| 2512 | |
Damien Miller | e8001d4 | 2009-02-21 12:45:02 +1100 | [diff] [blame] | 2513 | 20090221 |
| 2514 | - (djm) OpenBSD CVS Sync |
| 2515 | - djm@cvs.openbsd.org 2009/02/17 01:28:32 |
| 2516 | [ssh_config] |
| 2517 | sync with revised default ciphers; pointed out by dkrause@ |
Damien Miller | 2591838 | 2009-02-21 12:45:18 +1100 | [diff] [blame] | 2518 | - djm@cvs.openbsd.org 2009/02/18 04:31:21 |
| 2519 | [schnorr.c] |
| 2520 | signature should hash over the entire group, not just the generator |
| 2521 | (this is still disabled code) |
Damien Miller | 7691e5f | 2009-02-21 18:03:04 +1100 | [diff] [blame] | 2522 | - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 2523 | [contrib/suse/openssh.spec] Prepare for 5.2p1 |
Damien Miller | e8001d4 | 2009-02-21 12:45:02 +1100 | [diff] [blame] | 2524 | |
Damien Miller | 3f94aaf | 2009-02-16 15:21:39 +1100 | [diff] [blame] | 2525 | 20090216 |
| 2526 | - (djm) [regress/conch-ciphers.sh regress/putty-ciphers.sh] |
| 2527 | [regress/putty-kex.sh regress/putty-transfer.sh] Downgrade disabled |
| 2528 | interop tests from FATAL error to a warning. Allows some interop |
| 2529 | tests to proceed if others are missing necessary prerequisites. |
Damien Miller | 9055172 | 2009-02-16 15:37:03 +1100 | [diff] [blame] | 2530 | - (djm) [configure.ac] support GNU/kFreeBSD and GNU/kOpensolaris |
| 2531 | systems; patch from Aurelien Jarno via rmh AT aybabtu.com |
Damien Miller | 3f94aaf | 2009-02-16 15:21:39 +1100 | [diff] [blame] | 2532 | |
Damien Miller | fdd66fc | 2009-02-14 16:26:19 +1100 | [diff] [blame] | 2533 | 20090214 |
| 2534 | - (djm) OpenBSD CVS Sync |
| 2535 | - dtucker@cvs.openbsd.org 2009/02/02 11:15:14 |
| 2536 | [sftp.c] |
| 2537 | Initialize a few variables to prevent spurious "may be used |
| 2538 | uninitialized" warnings from newer gcc's. ok djm@ |
Damien Miller | 4bf648f | 2009-02-14 16:28:21 +1100 | [diff] [blame] | 2539 | - djm@cvs.openbsd.org 2009/02/12 03:00:56 |
| 2540 | [canohost.c canohost.h channels.c channels.h clientloop.c readconf.c] |
| 2541 | [readconf.h serverloop.c ssh.c] |
| 2542 | support remote port forwarding with a zero listen port (-R0:...) to |
| 2543 | dyamically allocate a listen port at runtime (this is actually |
| 2544 | specified in rfc4254); bz#1003 ok markus@ |
Damien Miller | 330d585 | 2009-02-14 16:33:09 +1100 | [diff] [blame] | 2545 | - djm@cvs.openbsd.org 2009/02/12 03:16:01 |
| 2546 | [serverloop.c] |
| 2547 | tighten check for -R0:... forwarding: only allow dynamic allocation |
| 2548 | if want_reply is set in the packet |
Damien Miller | 923e8bb | 2009-02-14 16:33:31 +1100 | [diff] [blame] | 2549 | - djm@cvs.openbsd.org 2009/02/12 03:26:22 |
| 2550 | [monitor.c] |
| 2551 | some paranoia: check that the serialised key is really KEY_RSA before |
| 2552 | diddling its internals |
Damien Miller | e2f4cc5 | 2009-02-14 16:33:49 +1100 | [diff] [blame] | 2553 | - djm@cvs.openbsd.org 2009/02/12 03:42:09 |
| 2554 | [ssh.1] |
| 2555 | document -R0:... usage |
Damien Miller | 65fa4ca | 2009-02-14 16:34:05 +1100 | [diff] [blame] | 2556 | - djm@cvs.openbsd.org 2009/02/12 03:44:25 |
| 2557 | [ssh.1] |
| 2558 | consistency: Dq => Ql |
Damien Miller | 85c6d8a | 2009-02-14 16:34:21 +1100 | [diff] [blame] | 2559 | - djm@cvs.openbsd.org 2009/02/12 03:46:17 |
| 2560 | [ssh_config.5] |
| 2561 | document RemoteForward usage with 0 listen port |
Damien Miller | e379e10 | 2009-02-14 16:34:39 +1100 | [diff] [blame] | 2562 | - jmc@cvs.openbsd.org 2009/02/12 07:34:20 |
| 2563 | [ssh_config.5] |
| 2564 | kill trailing whitespace; |
Damien Miller | 61433be | 2009-02-14 16:35:01 +1100 | [diff] [blame] | 2565 | - markus@cvs.openbsd.org 2009/02/13 11:50:21 |
| 2566 | [packet.c] |
| 2567 | check for enc !=NULL in packet_start_discard |
Damien Miller | 6385e75 | 2009-02-14 18:00:52 +1100 | [diff] [blame] | 2568 | - djm@cvs.openbsd.org 2009/02/14 06:35:49 |
| 2569 | [PROTOCOL] |
| 2570 | mention that eow and no-more-sessions extensions are sent only to |
| 2571 | OpenSSH peers |
Damien Miller | fdd66fc | 2009-02-14 16:26:19 +1100 | [diff] [blame] | 2572 | |
| 2573 | 20090212 |
Damien Miller | 2de7624 | 2009-02-12 12:19:20 +1100 | [diff] [blame] | 2574 | - (djm) [sshpty.c] bz#1419: OSX uses cloning ptys that automagically |
| 2575 | set ownership and modes, so avoid explicitly setting them |
Damien Miller | 20e231f | 2009-02-12 13:12:21 +1100 | [diff] [blame] | 2576 | - (djm) [configure.ac loginrec.c] bz#1421: fix lastlog support for OSX. |
| 2577 | OSX provides a getlastlogxbyname function that automates the reading of |
| 2578 | a lastlog file. Also, the pututxline function will update lastlog so |
| 2579 | there is no need for loginrec.c to do it explicitly. Collapse some |
| 2580 | overly verbose code while I'm in there. |
Damien Miller | 2de7624 | 2009-02-12 12:19:20 +1100 | [diff] [blame] | 2581 | |
Darren Tucker | 642ebe5 | 2009-02-01 22:19:54 +1100 | [diff] [blame] | 2582 | 20090201 |
| 2583 | - (dtucker) [defines.h sshconnect.c] INET6_ADDRSTRLEN is now needed in |
| 2584 | channels.c too, so move the definition for non-IP6 platforms to defines.h |
| 2585 | where it can be shared. |
| 2586 | |
Tim Rice | 6a32534 | 2009-01-29 12:30:01 -0800 | [diff] [blame] | 2587 | 20090129 |
| 2588 | - (tim) [contrib/cygwin/ssh-host-config] Patch from Corinna Vinschen. |
| 2589 | If the CYGWIN environment variable is empty, the installer script |
| 2590 | should not install the service with an empty CYGWIN variable, but |
| 2591 | rather without setting CYGWNI entirely. |
Tim Rice | 0d8f2f3 | 2009-01-29 12:40:30 -0800 | [diff] [blame] | 2592 | - (tim) [contrib/cygwin/ssh-host-config] Whitespace cleanup. No code changes. |
Tim Rice | 6a32534 | 2009-01-29 12:30:01 -0800 | [diff] [blame] | 2593 | |
Tim Rice | ca3692d | 2009-01-28 12:50:04 -0800 | [diff] [blame] | 2594 | 20090128 |
| 2595 | - (tim) [contrib/cygwin/ssh-host-config] Patch from Corinna Vinschen. |
| 2596 | Changes to work on Cygwin 1.5.x as well as on the new Cygwin 1.7.x. |
| 2597 | The information given for the setting of the CYGWIN environment variable |
| 2598 | is wrong for both releases so I just removed it, together with the |
| 2599 | unnecessary (Cygwin 1.5.x) or wrong (Cygwin 1.7.x) default setting. |
| 2600 | |
Damien Miller | b53d8a1 | 2009-01-28 16:13:04 +1100 | [diff] [blame] | 2601 | 20081228 |
| 2602 | - (djm) OpenBSD CVS Sync |
| 2603 | - stevesk@cvs.openbsd.org 2008/12/09 03:20:42 |
| 2604 | [channels.c servconf.c] |
| 2605 | channel_print_adm_permitted_opens() should deal with all the printing |
| 2606 | for that config option. suggested by markus@; ok markus@ djm@ |
| 2607 | dtucker@ |
Damien Miller | c30def9 | 2009-01-28 16:13:39 +1100 | [diff] [blame] | 2608 | - djm@cvs.openbsd.org 2008/12/09 04:32:22 |
| 2609 | [auth2-chall.c] |
| 2610 | replace by-hand string building with xasprinf(); ok deraadt@ |
Damien Miller | 62fd18a | 2009-01-28 16:14:09 +1100 | [diff] [blame] | 2611 | - sobrado@cvs.openbsd.org 2008/12/09 15:35:00 |
| 2612 | [sftp.1 sftp.c] |
| 2613 | update for the synopses displayed by the 'help' command, there are a |
| 2614 | few missing flags; add 'bye' to the output of 'help'; sorting and spacing. |
| 2615 | jmc@ suggested replacing .Oo/.Oc with a single .Op macro. |
| 2616 | ok jmc@ |
Damien Miller | b3f2c9f | 2009-01-28 16:15:30 +1100 | [diff] [blame] | 2617 | - stevesk@cvs.openbsd.org 2008/12/09 22:37:33 |
| 2618 | [clientloop.c] |
| 2619 | fix typo in error message |
Damien Miller | 7375fe2 | 2009-01-28 16:16:00 +1100 | [diff] [blame] | 2620 | - stevesk@cvs.openbsd.org 2008/12/10 03:55:20 |
| 2621 | [addrmatch.c] |
| 2622 | o cannot be NULL here but use xfree() to be consistent; ok djm@ |
Damien Miller | b2c17d4 | 2009-01-28 16:18:03 +1100 | [diff] [blame] | 2623 | - stevesk@cvs.openbsd.org 2008/12/29 01:12:36 |
| 2624 | [ssh-keyscan.1] |
| 2625 | fix example, default key type is rsa for 3+ years; from |
| 2626 | frederic.perrin@resel.fr |
Damien Miller | a70ac76 | 2009-01-28 16:19:52 +1100 | [diff] [blame] | 2627 | - stevesk@cvs.openbsd.org 2008/12/29 02:23:26 |
| 2628 | [pathnames.h] |
| 2629 | no need to escape single quotes in comments |
Damien Miller | 1781901 | 2009-01-28 16:20:17 +1100 | [diff] [blame] | 2630 | - okan@cvs.openbsd.org 2008/12/30 00:46:56 |
| 2631 | [sshd_config.5] |
| 2632 | add AllowAgentForwarding to available Match keywords list |
| 2633 | ok djm |
Damien Miller | 7a60621 | 2009-01-28 16:22:34 +1100 | [diff] [blame] | 2634 | - djm@cvs.openbsd.org 2009/01/01 21:14:35 |
| 2635 | [channels.c] |
| 2636 | call channel destroy callbacks on receipt of open failure messages. |
| 2637 | fixes client hangs when connecting to a server that has MaxSessions=0 |
| 2638 | set spotted by imorgan AT nas.nasa.gov; ok markus@ |
Damien Miller | ccf7e22 | 2009-01-28 16:23:06 +1100 | [diff] [blame] | 2639 | - djm@cvs.openbsd.org 2009/01/01 21:17:36 |
| 2640 | [kexgexs.c] |
| 2641 | fix hash calculation for KEXGEX: hash over the original client-supplied |
| 2642 | values and not the sanity checked versions that we acutally use; |
| 2643 | bz#1540 reported by john.smith AT arrows.demon.co.uk |
| 2644 | ok markus@ |
Damien Miller | 1781f53 | 2009-01-28 16:24:41 +1100 | [diff] [blame] | 2645 | - djm@cvs.openbsd.org 2009/01/14 01:38:06 |
| 2646 | [channels.c] |
| 2647 | support SOCKS4A protocol, from dwmw2 AT infradead.org via bz#1482; |
| 2648 | "looks ok" markus@ |
Damien Miller | 5bc6aae | 2009-01-28 16:27:31 +1100 | [diff] [blame] | 2649 | - stevesk@cvs.openbsd.org 2009/01/15 17:38:43 |
| 2650 | [readconf.c] |
| 2651 | 1) use obsolete instead of alias for consistency |
| 2652 | 2) oUserKnownHostsFile not obsolete but oGlobalKnownHostsFile2 is |
| 2653 | so move the comment. |
| 2654 | 3) reorder so like options are together |
| 2655 | ok djm@ |
Damien Miller | a1c1b6c | 2009-01-28 16:29:49 +1100 | [diff] [blame] | 2656 | - djm@cvs.openbsd.org 2009/01/22 09:46:01 |
| 2657 | [channels.c channels.h session.c] |
| 2658 | make Channel->path an allocated string, saving a few bytes here and |
| 2659 | there and fixing bz#1380 in the process; ok markus@ |
Damien Miller | 9576ac4 | 2009-01-28 16:30:33 +1100 | [diff] [blame] | 2660 | - djm@cvs.openbsd.org 2009/01/22 09:49:57 |
| 2661 | [channels.c] |
| 2662 | oops! I committed the wrong version of the Channel->path diff, |
| 2663 | it was missing some tweaks suggested by stevesk@ |
Damien Miller | 3dc71ad | 2009-01-28 16:31:22 +1100 | [diff] [blame] | 2664 | - djm@cvs.openbsd.org 2009/01/22 10:02:34 |
| 2665 | [clientloop.c misc.c readconf.c readconf.h servconf.c servconf.h] |
| 2666 | [serverloop.c ssh-keyscan.c ssh.c sshd.c] |
| 2667 | make a2port() return -1 when it encounters an invalid port number |
| 2668 | rather than 0, which it will now treat as valid (needed for future work) |
| 2669 | adjust current consumers of a2port() to check its return value is <= 0, |
| 2670 | which in turn required some things to be converted from u_short => int |
| 2671 | make use of int vs. u_short consistent in some other places too |
| 2672 | feedback & ok markus@ |
Damien Miller | e37dde0 | 2009-01-28 16:33:01 +1100 | [diff] [blame] | 2673 | - djm@cvs.openbsd.org 2009/01/22 10:09:16 |
| 2674 | [auth-options.c] |
| 2675 | another chunk of a2port() diff that got away. wtfdjm?? |
Damien Miller | 67081b5 | 2009-01-28 16:33:31 +1100 | [diff] [blame] | 2676 | - djm@cvs.openbsd.org 2009/01/23 07:58:11 |
| 2677 | [myproposal.h] |
| 2678 | prefer CTR modes and revised arcfour (i.e w/ discard) modes to CBC |
| 2679 | modes; ok markus@ |
Damien Miller | 9aa72ba | 2009-01-28 16:34:00 +1100 | [diff] [blame] | 2680 | - naddy@cvs.openbsd.org 2009/01/24 17:10:22 |
| 2681 | [ssh_config.5 sshd_config.5] |
| 2682 | sync list of preferred ciphers; ok djm@ |
Damien Miller | 13ae44c | 2009-01-28 16:38:41 +1100 | [diff] [blame] | 2683 | - markus@cvs.openbsd.org 2009/01/26 09:58:15 |
| 2684 | [cipher.c cipher.h packet.c] |
| 2685 | Work around the CPNI-957037 Plaintext Recovery Attack by always |
| 2686 | reading 256K of data on packet size or HMAC errors (in CBC mode only). |
| 2687 | Help, feedback and ok djm@ |
| 2688 | Feedback from Martin Albrecht and Paterson Kenny |
Damien Miller | b53d8a1 | 2009-01-28 16:13:04 +1100 | [diff] [blame] | 2689 | |
Tim Rice | 351529c | 2009-01-07 10:04:12 -0800 | [diff] [blame] | 2690 | 20090107 |
Damien Miller | 1598d6b | 2009-01-21 16:04:24 +1100 | [diff] [blame] | 2691 | - (djm) [uidswap.c] bz#1412: Support >16 supplemental groups in OS X. |
| 2692 | Patch based on one from vgiffin AT apple.com; ok dtucker@ |
Damien Miller | 819dbb6 | 2009-01-21 16:46:26 +1100 | [diff] [blame] | 2693 | - (djm) [channels.c] bz#1419: support "on demand" X11 forwarding via |
| 2694 | launchd on OS X; patch from vgiffin AT apple.com, slightly tweaked; |
| 2695 | ok dtucker@ |
Damien Miller | 0266677 | 2009-01-21 20:29:20 +1100 | [diff] [blame] | 2696 | - (djm) [contrib/ssh-copy-id.1 contrib/ssh-copy-id] bz#1492: Make |
| 2697 | ssh-copy-id copy id_rsa.pub by default (instead of the legacy "identity" |
| 2698 | key). Patch from cjwatson AT debian.org |
Damien Miller | 1598d6b | 2009-01-21 16:04:24 +1100 | [diff] [blame] | 2699 | |
| 2700 | 20090107 |
Tim Rice | 351529c | 2009-01-07 10:04:12 -0800 | [diff] [blame] | 2701 | - (tim) [configure.ac defines.h openbsd-compat/port-uw.c |
| 2702 | openbsd-compat/xcrypt.c] Add SECUREWARE support to OpenServer 6 SVR5 ABI. |
| 2703 | OK djm@ dtucker@ |
Tim Rice | 2676791 | 2009-01-07 20:50:08 -0800 | [diff] [blame] | 2704 | - (tim) [configure.ac] Move check_for_libcrypt_later=1 in *-*-sysv5*) section. |
| 2705 | OpenServer 6 doesn't need libcrypt. |
Tim Rice | 351529c | 2009-01-07 10:04:12 -0800 | [diff] [blame] | 2706 | |
Damien Miller | 586b005 | 2008-12-09 14:11:32 +1100 | [diff] [blame] | 2707 | 20081209 |
| 2708 | - (djm) OpenBSD CVS Sync |
| 2709 | - djm@cvs.openbsd.org 2008/12/09 02:38:18 |
| 2710 | [clientloop.c] |
| 2711 | The ~C escape handler does not work correctly for multiplexed sessions - |
| 2712 | it opens a commandline on the master session, instead of on the slave |
| 2713 | that requested it. Disable it on slave sessions until such time as it |
| 2714 | is fixed; bz#1543 report from Adrian Bridgett via Colin Watson |
| 2715 | ok markus@ |
Damien Miller | 1be2cc4 | 2008-12-09 14:11:49 +1100 | [diff] [blame] | 2716 | - djm@cvs.openbsd.org 2008/12/09 02:39:59 |
| 2717 | [sftp.c] |
| 2718 | Deal correctly with failures in remote stat() operation in sftp, |
| 2719 | correcting fail-on-error behaviour in batchmode. bz#1541 report and |
| 2720 | fix from anedvedicky AT gmail.com; ok markus@ |
Damien Miller | 0d772d9 | 2008-12-09 14:12:05 +1100 | [diff] [blame] | 2721 | - djm@cvs.openbsd.org 2008/12/09 02:58:16 |
| 2722 | [readconf.c] |
| 2723 | don't leave junk (free'd) pointers around in Forward *fwd argument on |
| 2724 | failure; avoids double-free in ~C -L handler when given an invalid |
| 2725 | forwarding specification; bz#1539 report from adejong AT debian.org |
| 2726 | via Colin Watson; ok markus@ dtucker@ |
Damien Miller | 7ebfad7 | 2008-12-09 14:12:33 +1100 | [diff] [blame] | 2727 | - djm@cvs.openbsd.org 2008/12/09 03:02:37 |
| 2728 | [sftp.1 sftp.c] |
| 2729 | correct sftp(1) and corresponding usage syntax; |
| 2730 | bz#1518 patch from imorgan AT nas.nasa.gov; ok deraadt@ improved diff jmc@ |
Damien Miller | 586b005 | 2008-12-09 14:11:32 +1100 | [diff] [blame] | 2731 | |
Damien Miller | 7df2e40 | 2008-12-08 09:35:36 +1100 | [diff] [blame] | 2732 | 20081208 |
| 2733 | - (djm) [configure.ac] bz#1538: better test for ProPolice/SSP: actually |
| 2734 | use some stack in main(). |
| 2735 | Report and suggested fix from vapier AT gentoo.org |
Damien Miller | 8533c78 | 2008-12-08 09:54:40 +1100 | [diff] [blame] | 2736 | - (djm) OpenBSD CVS Sync |
| 2737 | - markus@cvs.openbsd.org 2008/12/02 19:01:07 |
| 2738 | [clientloop.c] |
| 2739 | we have to use the recipient's channel number (RFC 4254) for |
| 2740 | SSH2_MSG_CHANNEL_SUCCESS/SSH2_MSG_CHANNEL_FAILURE messages, |
| 2741 | otherwise we trigger 'Non-public channel' error messages on sshd |
| 2742 | systems with clientkeepalive enabled; noticed by sturm; ok djm; |
Damien Miller | 5a33ec6 | 2008-12-08 09:55:02 +1100 | [diff] [blame] | 2743 | - markus@cvs.openbsd.org 2008/12/02 19:08:59 |
| 2744 | [serverloop.c] |
| 2745 | backout 1.149, since it's not necessary and openssh clients send |
| 2746 | broken CHANNEL_FAILURE/SUCCESS messages since about 2004; ok djm@ |
Damien Miller | 16a7307 | 2008-12-08 09:55:25 +1100 | [diff] [blame] | 2747 | - markus@cvs.openbsd.org 2008/12/02 19:09:38 |
| 2748 | [channels.c] |
| 2749 | s/remote_id/id/ to be more consistent with other code; ok djm@ |
Damien Miller | 7df2e40 | 2008-12-08 09:35:36 +1100 | [diff] [blame] | 2750 | |
Darren Tucker | 83795d6 | 2008-12-01 21:34:28 +1100 | [diff] [blame] | 2751 | 20081201 |
| 2752 | - (dtucker) [contrib/cygwin/{Makefile,ssh-host-config}] Add new doc files |
| 2753 | and tweak the is-sshd-running check in ssh-host-config. Patch from |
| 2754 | vinschen at redhat com. |
Darren Tucker | 99d11a3 | 2008-12-01 21:40:48 +1100 | [diff] [blame] | 2755 | - (dtucker) OpenBSD CVS Sync |
| 2756 | - markus@cvs.openbsd.org 2008/11/21 15:47:38 |
| 2757 | [packet.c] |
| 2758 | packet_disconnect() on padding error, too. should reduce the success |
| 2759 | probability for the CPNI-957037 Plaintext Recovery Attack to 2^-18 |
| 2760 | ok djm@ |
Darren Tucker | 2364564 | 2008-12-01 21:42:13 +1100 | [diff] [blame] | 2761 | - dtucker@cvs.openbsd.org 2008/11/30 11:59:26 |
| 2762 | [monitor_fdpass.c] |
| 2763 | Retry sendmsg/recvmsg on EAGAIN and EINTR; ok djm@ |
Darren Tucker | 83795d6 | 2008-12-01 21:34:28 +1100 | [diff] [blame] | 2764 | |
Darren Tucker | 69087ea | 2008-11-23 14:03:19 +1100 | [diff] [blame] | 2765 | 20081123 |
| 2766 | - (dtucker) [monitor_fdpass.c] Reduce diff vs OpenBSD by moving some |
| 2767 | declarations, removing an unnecessary union member and adding whitespace. |
Darren Tucker | d3782b4 | 2008-11-23 19:05:53 +1100 | [diff] [blame] | 2768 | cmsgbuf.tmp thing spotted by des at des no, ok djm some time ago. |
Darren Tucker | 69087ea | 2008-11-23 14:03:19 +1100 | [diff] [blame] | 2769 | |
Tim Rice | 0f4d2c0 | 2008-11-18 21:26:41 -0800 | [diff] [blame] | 2770 | 20081118 |
| 2771 | - (tim) [addrmatch.c configure.ac] Some platforms do not have sin6_scope_id |
| 2772 | member of sockaddr_in6. Also reported in Bug 1491 by David Leonard. OK and |
| 2773 | feedback by djm@ |
| 2774 | |
Darren Tucker | ff4350e | 2008-11-11 16:31:05 +1100 | [diff] [blame] | 2775 | 20081111 |
| 2776 | - (dtucker) OpenBSD CVS Sync |
| 2777 | - jmc@cvs.openbsd.org 2008/11/05 11:22:54 |
| 2778 | [servconf.c] |
| 2779 | passord -> password; |
| 2780 | fixes user/5975 from Rene Maroufi |
Darren Tucker | e15fb09 | 2008-11-11 16:31:43 +1100 | [diff] [blame] | 2781 | - stevesk@cvs.openbsd.org 2008/11/07 00:42:12 |
| 2782 | [ssh-keygen.c] |
| 2783 | spelling/typo in comment |
Darren Tucker | b57fab6 | 2008-11-11 16:32:25 +1100 | [diff] [blame] | 2784 | - stevesk@cvs.openbsd.org 2008/11/07 18:50:18 |
| 2785 | [nchan.c] |
| 2786 | add space to some log/debug messages for readability; ok djm@ markus@ |
Darren Tucker | c6d744e | 2008-11-11 16:33:03 +1100 | [diff] [blame] | 2787 | - dtucker@cvs.openbsd.org 2008/11/07 23:34:48 |
| 2788 | [auth2-jpake.c] |
| 2789 | Move JPAKE define to make life easier for portable. ok djm@ |
Darren Tucker | 63917bd | 2008-11-11 16:33:48 +1100 | [diff] [blame] | 2790 | - tobias@cvs.openbsd.org 2008/11/09 12:34:47 |
| 2791 | [session.c ssh.1] |
| 2792 | typo fixed (overriden -> overridden) |
| 2793 | ok espie, jmc |
Darren Tucker | 49c31c4 | 2008-11-11 16:39:44 +1100 | [diff] [blame] | 2794 | - stevesk@cvs.openbsd.org 2008/11/11 02:58:09 |
| 2795 | [servconf.c] |
| 2796 | USE_AFS not referenced so remove #ifdef. fixes sshd -T not printing |
| 2797 | kerberosgetafstoken. ok dtucker@ |
| 2798 | (Id sync only, we still want the ifdef in portable) |
Darren Tucker | 22662e8 | 2008-11-11 16:40:22 +1100 | [diff] [blame] | 2799 | - stevesk@cvs.openbsd.org 2008/11/11 03:55:11 |
| 2800 | [channels.c] |
| 2801 | for sshd -T print 'permitopen any' vs. 'permitopen' for case of no |
| 2802 | permitopen's; ok and input dtucker@ |
Darren Tucker | 4a6f62d | 2008-11-11 16:55:25 +1100 | [diff] [blame] | 2803 | - djm@cvs.openbsd.org 2008/11/10 02:06:35 |
| 2804 | [regress/putty-ciphers.sh] |
| 2805 | PuTTY supports AES CTR modes, so interop test against them too |
Darren Tucker | ff4350e | 2008-11-11 16:31:05 +1100 | [diff] [blame] | 2806 | |
Damien Miller | 7fc5c0f | 2008-11-05 16:12:11 +1100 | [diff] [blame] | 2807 | 20081105 |
| 2808 | - OpenBSD CVS Sync |
| 2809 | - djm@cvs.openbsd.org 2008/11/03 08:59:41 |
| 2810 | [servconf.c] |
| 2811 | include MaxSessions in sshd -T output; patch from imorgan AT nas.nasa.gov |
Damien Miller | 6f66d34 | 2008-11-05 16:12:54 +1100 | [diff] [blame] | 2812 | - djm@cvs.openbsd.org 2008/11/04 07:58:09 |
| 2813 | [auth.c] |
| 2814 | need unistd.h for close() prototype |
| 2815 | (ID sync only) |
Damien Miller | 01ed227 | 2008-11-05 16:20:46 +1100 | [diff] [blame] | 2816 | - djm@cvs.openbsd.org 2008/11/04 08:22:13 |
| 2817 | [auth.h auth2.c monitor.c monitor.h monitor_wrap.c monitor_wrap.h] |
| 2818 | [readconf.c readconf.h servconf.c servconf.h ssh2.h ssh_config.5] |
| 2819 | [sshconnect2.c sshd_config.5 jpake.c jpake.h schnorr.c auth2-jpake.c] |
| 2820 | [Makefile.in] |
| 2821 | Add support for an experimental zero-knowledge password authentication |
| 2822 | method using the J-PAKE protocol described in F. Hao, P. Ryan, |
| 2823 | "Password Authenticated Key Exchange by Juggling", 16th Workshop on |
| 2824 | Security Protocols, Cambridge, April 2008. |
| 2825 | |
| 2826 | This method allows password-based authentication without exposing |
| 2827 | the password to the server. Instead, the client and server exchange |
| 2828 | cryptographic proofs to demonstrate of knowledge of the password while |
| 2829 | revealing nothing useful to an attacker or compromised endpoint. |
| 2830 | |
| 2831 | This is experimental, work-in-progress code and is presently |
| 2832 | compiled-time disabled (turn on -DJPAKE in Makefile.inc). |
| 2833 | |
| 2834 | "just commit it. It isn't too intrusive." deraadt@ |
Damien Miller | 1a0442f | 2008-11-05 16:30:06 +1100 | [diff] [blame] | 2835 | - stevesk@cvs.openbsd.org 2008/11/04 19:18:00 |
| 2836 | [readconf.c] |
| 2837 | because parse_forward() is now used to parse all forward types (DLR), |
| 2838 | and it malloc's space for host variables, we don't need to malloc |
| 2839 | here. fixes small memory leaks. |
| 2840 | |
| 2841 | previously dynamic forwards were not parsed in parse_forward() and |
| 2842 | space was not malloc'd in that case. |
| 2843 | |
| 2844 | ok djm@ |
Damien Miller | 0164cb8 | 2008-11-05 16:30:31 +1100 | [diff] [blame] | 2845 | - stevesk@cvs.openbsd.org 2008/11/05 03:23:09 |
| 2846 | [clientloop.c ssh.1] |
| 2847 | add dynamic forward escape command line; ok djm@ |
Damien Miller | 7fc5c0f | 2008-11-05 16:12:11 +1100 | [diff] [blame] | 2848 | |
Damien Miller | 9f6fb56 | 2008-11-03 19:15:44 +1100 | [diff] [blame] | 2849 | 20081103 |
| 2850 | - OpenBSD CVS Sync |
| 2851 | - sthen@cvs.openbsd.org 2008/07/24 23:55:30 |
| 2852 | [ssh-keygen.1] |
| 2853 | Add "ssh-keygen -F -l" to synopsis (displays fingerprint from |
| 2854 | known_hosts). ok djm@ |
| 2855 | - grunk@cvs.openbsd.org 2008/07/25 06:56:35 |
| 2856 | [ssh_config] |
| 2857 | Add VisualHostKey to example file, ok djm@ |
Damien Miller | c6aadd9 | 2008-11-03 19:16:20 +1100 | [diff] [blame] | 2858 | - grunk@cvs.openbsd.org 2008/07/25 07:05:16 |
| 2859 | [key.c] |
| 2860 | In random art visualization, make sure to use the end marker only at the |
| 2861 | end. Initial diff by Dirk Loss, tweaks and ok djm@ |
Damien Miller | c674d58 | 2008-11-03 19:16:57 +1100 | [diff] [blame] | 2862 | - markus@cvs.openbsd.org 2008/07/31 14:48:28 |
| 2863 | [sshconnect2.c] |
| 2864 | don't allocate space for empty banners; report t8m at centrum.cz; |
| 2865 | ok deraadt |
Damien Miller | fa51b16 | 2008-11-03 19:17:33 +1100 | [diff] [blame] | 2866 | - krw@cvs.openbsd.org 2008/08/02 04:29:51 |
| 2867 | [ssh_config.5] |
| 2868 | whitepsace -> whitespace. From Matthew Clarke via bugs@. |
Damien Miller | ad793d5 | 2008-11-03 19:17:57 +1100 | [diff] [blame] | 2869 | - djm@cvs.openbsd.org 2008/08/21 04:09:57 |
| 2870 | [session.c] |
| 2871 | allow ForceCommand internal-sftp with arguments. based on patch from |
| 2872 | michael.barabanov AT gmail.com; ok markus@ |
Damien Miller | 15bce6b | 2008-11-03 19:19:12 +1100 | [diff] [blame] | 2873 | - djm@cvs.openbsd.org 2008/09/06 12:24:13 |
| 2874 | [kex.c] |
| 2875 | OpenSSL 0.9.8h supplies a real EVP_sha256 so we do not need our |
| 2876 | replacement anymore |
| 2877 | (ID sync only for portable - we still need this) |
Damien Miller | 456e6f0 | 2008-11-03 19:20:10 +1100 | [diff] [blame] | 2878 | - markus@cvs.openbsd.org 2008/09/11 14:22:37 |
| 2879 | [compat.c compat.h nchan.c ssh.c] |
| 2880 | only send eow and no-more-sessions requests to openssh 5 and newer; |
| 2881 | fixes interop problems with broken ssh v2 implementations; ok djm@ |
Damien Miller | d58f560 | 2008-11-03 19:20:49 +1100 | [diff] [blame] | 2882 | - millert@cvs.openbsd.org 2008/10/02 14:39:35 |
| 2883 | [session.c] |
| 2884 | Convert an unchecked strdup to xstrdup. OK deraadt@ |
Damien Miller | 49b78d4 | 2008-11-03 19:21:21 +1100 | [diff] [blame] | 2885 | - jmc@cvs.openbsd.org 2008/10/03 13:08:12 |
| 2886 | [sshd.8] |
| 2887 | do not give an example of how to chmod files: we can presume the user |
| 2888 | knows that. removes an ambiguity in the permission of authorized_keys; |
| 2889 | ok deraadt |
Damien Miller | c4d1b36 | 2008-11-03 19:22:09 +1100 | [diff] [blame] | 2890 | - deraadt@cvs.openbsd.org 2008/10/03 23:56:28 |
| 2891 | [sshconnect2.c] |
| 2892 | Repair strnvis() buffersize of 4*n+1, with termination gauranteed by the |
| 2893 | function. |
| 2894 | spotted by des@freebsd, who commited an incorrect fix to the freebsd tree |
| 2895 | and (as is fairly typical) did not report the problem to us. But this fix |
| 2896 | is correct. |
| 2897 | ok djm |
Damien Miller | e272a5b | 2008-11-03 19:22:37 +1100 | [diff] [blame] | 2898 | - djm@cvs.openbsd.org 2008/10/08 23:34:03 |
| 2899 | [ssh.1 ssh.c] |
| 2900 | Add -y option to force logging via syslog rather than stderr. |
| 2901 | Useful for daemonised ssh connection (ssh -f). Patch originally from |
| 2902 | and ok'd by markus@ |
Damien Miller | 51bde60 | 2008-11-03 19:23:10 +1100 | [diff] [blame] | 2903 | - djm@cvs.openbsd.org 2008/10/09 03:50:54 |
| 2904 | [servconf.c sshd_config.5] |
| 2905 | support setting PermitEmptyPasswords in a Match block |
| 2906 | requested in PR3891; ok dtucker@ |
Damien Miller | c13c3ee | 2008-11-03 19:23:28 +1100 | [diff] [blame] | 2907 | - jmc@cvs.openbsd.org 2008/10/09 06:54:22 |
| 2908 | [ssh.c] |
| 2909 | add -y to usage(); |
Damien Miller | b4acb47 | 2008-11-03 19:23:45 +1100 | [diff] [blame] | 2910 | - stevesk@cvs.openbsd.org 2008/10/10 04:55:16 |
| 2911 | [scp.c] |
| 2912 | spelling in comment; ok djm@ |
Damien Miller | 2f54ada | 2008-11-03 19:24:16 +1100 | [diff] [blame] | 2913 | - stevesk@cvs.openbsd.org 2008/10/10 05:00:12 |
| 2914 | [key.c] |
| 2915 | typo in error message; ok djm@ |
Damien Miller | ece92c8 | 2008-11-03 19:25:03 +1100 | [diff] [blame] | 2916 | - stevesk@cvs.openbsd.org 2008/10/10 16:43:27 |
| 2917 | [ssh_config.5] |
| 2918 | use 'Privileged ports can be forwarded only when logging in as root on |
| 2919 | the remote machine.' for RemoteForward just like ssh.1 -R. |
| 2920 | ok djm@ jmc@ |
| 2921 | - stevesk@cvs.openbsd.org 2008/10/14 18:11:33 |
| 2922 | [sshconnect.c] |
| 2923 | use #define ROQUIET here; no binary change. ok dtucker@ |
Damien Miller | a414cd3 | 2008-11-03 19:25:21 +1100 | [diff] [blame] | 2924 | - stevesk@cvs.openbsd.org 2008/10/17 18:36:24 |
| 2925 | [ssh_config.5] |
| 2926 | correct and clarify VisualHostKey; ok jmc@ |
Damien Miller | e7261c7 | 2008-11-03 19:25:40 +1100 | [diff] [blame] | 2927 | - stevesk@cvs.openbsd.org 2008/10/30 19:31:16 |
| 2928 | [clientloop.c sshd.c] |
| 2929 | don't need to #include "monitor_fdpass.h" |
Damien Miller | 2b20a92 | 2008-11-03 19:26:00 +1100 | [diff] [blame] | 2930 | - stevesk@cvs.openbsd.org 2008/10/31 15:05:34 |
| 2931 | [dispatch.c] |
| 2932 | remove unused #define DISPATCH_MIN; ok markus@ |
Damien Miller | f7475d7 | 2008-11-03 19:26:18 +1100 | [diff] [blame] | 2933 | - djm@cvs.openbsd.org 2008/11/01 04:50:08 |
| 2934 | [sshconnect2.c] |
| 2935 | sprinkle ARGSUSED on dispatch handlers |
| 2936 | nuke stale unusued prototype |
Damien Miller | a009433 | 2008-11-03 19:26:35 +1100 | [diff] [blame] | 2937 | - stevesk@cvs.openbsd.org 2008/11/01 06:43:33 |
| 2938 | [channels.c] |
| 2939 | fix some typos in log messages; ok djm@ |
Damien Miller | c1719f7 | 2008-11-03 19:27:07 +1100 | [diff] [blame] | 2940 | - sobrado@cvs.openbsd.org 2008/11/01 11:14:36 |
| 2941 | [ssh-keyscan.1 ssh-keyscan.c] |
| 2942 | the ellipsis is not an optional argument; while here, improve spacing. |
Damien Miller | a699d95 | 2008-11-03 19:27:34 +1100 | [diff] [blame] | 2943 | - stevesk@cvs.openbsd.org 2008/11/01 17:40:33 |
| 2944 | [clientloop.c readconf.c readconf.h ssh.c] |
| 2945 | merge dynamic forward parsing into parse_forward(); |
| 2946 | 'i think this is OK' djm@ |
Damien Miller | 660d7da | 2008-11-03 19:27:52 +1100 | [diff] [blame] | 2947 | - stevesk@cvs.openbsd.org 2008/11/02 00:16:16 |
| 2948 | [ttymodes.c] |
| 2949 | protocol 2 tty modes support is now 7.5 years old so remove these |
| 2950 | debug3()s; ok deraadt@ |
Damien Miller | a279d25 | 2008-11-03 19:28:07 +1100 | [diff] [blame] | 2951 | - stevesk@cvs.openbsd.org 2008/11/03 01:07:02 |
| 2952 | [readconf.c] |
| 2953 | remove valueless comment |
Damien Miller | f4b3953 | 2008-11-03 19:28:21 +1100 | [diff] [blame] | 2954 | - stevesk@cvs.openbsd.org 2008/11/03 02:44:41 |
| 2955 | [readconf.c] |
| 2956 | fix comment |
Damien Miller | 85dec73 | 2008-11-03 20:16:01 +1100 | [diff] [blame] | 2957 | - (djm) [contrib/caldera/ssh-host-keygen contrib/suse/rc.sshd] |
| 2958 | Make example scripts generate keys with default sizes rather than fixed, |
| 2959 | non-default 1024 bits; patch from imorgan AT nas.nasa.gov |
Damien Miller | 250071f | 2008-11-03 20:18:12 +1100 | [diff] [blame] | 2960 | - (djm) [contrib/sshd.pam.generic contrib/caldera/sshd.pam] |
| 2961 | [contrib/redhat/sshd.pam] Move pam_nologin to account group from |
| 2962 | incorrect auth group in example files; |
| 2963 | patch from imorgan AT nas.nasa.gov |
Damien Miller | 9f6fb56 | 2008-11-03 19:15:44 +1100 | [diff] [blame] | 2964 | |
Darren Tucker | c570ff7 | 2008-09-06 18:20:57 +1000 | [diff] [blame] | 2965 | 20080906 |
| 2966 | - (dtucker) [config.guess config.sub] Update to latest versions from |
| 2967 | http://git.savannah.gnu.org/gitweb/ (2008-04-14 and 2008-06-16 |
| 2968 | respectively). |
| 2969 | |
Darren Tucker | 661f63b | 2008-08-30 07:32:37 +1000 | [diff] [blame] | 2970 | 20080830 |
| 2971 | - (dtucker) [openbsd-compat/bsd-poll.c] correctly check for number of FDs |
| 2972 | larger than FD_SETSIZE (OpenSSH only ever uses poll with one fd). Patch |
| 2973 | from Nicholas Marriott. |
| 2974 | |
Damien Miller | aa5f433 | 2008-07-21 18:20:39 +1000 | [diff] [blame] | 2975 | 20080721 |
| 2976 | - (djm) OpenBSD CVS Sync |
Damien Miller | 6ef430d | 2008-07-23 17:40:04 +1000 | [diff] [blame] | 2977 | - djm@cvs.openbsd.org 2008/07/23 07:36:55 |
| 2978 | [servconf.c] |
| 2979 | do not try to print options that have been compile-time disabled |
| 2980 | in config test mode (sshd -T); report from nix-corp AT esperi.org.uk |
| 2981 | ok dtucker@ |
Damien Miller | 212f0b0 | 2008-07-23 17:42:29 +1000 | [diff] [blame] | 2982 | - (djm) [servconf.c] Print UsePAM option in config test mode (when it |
| 2983 | has been compiled in); report from nix-corp AT esperi.org.uk |
| 2984 | ok dtucker@ |
Damien Miller | 6ef430d | 2008-07-23 17:40:04 +1000 | [diff] [blame] | 2985 | |
| 2986 | 20080721 |
| 2987 | - (djm) OpenBSD CVS Sync |
Damien Miller | aa5f433 | 2008-07-21 18:20:39 +1000 | [diff] [blame] | 2988 | - jmc@cvs.openbsd.org 2008/07/18 22:51:01 |
| 2989 | [sftp-server.8] |
| 2990 | no need for .Pp before or after .Sh; |
Damien Miller | aaae43e | 2008-07-21 18:21:05 +1000 | [diff] [blame] | 2991 | - djm@cvs.openbsd.org 2008/07/21 08:19:07 |
| 2992 | [version.h] |
| 2993 | openssh-5.1 |
Damien Miller | 1f8909c | 2008-07-21 18:21:52 +1000 | [diff] [blame] | 2994 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 2995 | [contrib/suse/openssh.spec] Update version number in README and RPM specs |
Damien Miller | 8f42e9b | 2008-07-21 18:22:25 +1000 | [diff] [blame] | 2996 | - (djm) Release OpenSSH-5.1 |
Damien Miller | aa5f433 | 2008-07-21 18:20:39 +1000 | [diff] [blame] | 2997 | |
Damien Miller | 7ba0ca7 | 2008-07-17 18:57:06 +1000 | [diff] [blame] | 2998 | 20080717 |
| 2999 | - (djm) OpenBSD CVS Sync |
| 3000 | - djm@cvs.openbsd.org 2008/07/17 08:48:00 |
| 3001 | [sshconnect2.c] |
| 3002 | strnvis preauth banner; pointed out by mpf@ ok markus@ |
Damien Miller | a1d03a5 | 2008-07-17 18:57:19 +1000 | [diff] [blame] | 3003 | - djm@cvs.openbsd.org 2008/07/17 08:51:07 |
| 3004 | [auth2-hostbased.c] |
| 3005 | strip trailing '.' from hostname when HostbasedUsesNameFromPacketOnly=yes |
| 3006 | report and patch from res AT qoxp.net (bz#1200); ok markus@ |
Darren Tucker | 9a3f2b4 | 2008-07-17 19:03:49 +1000 | [diff] [blame] | 3007 | - (dtucker) [openbsd-compat/bsd-cygwin_util.c] Remove long-unneeded compat |
| 3008 | code, replace with equivalent cygwin library call. Patch from vinschen |
Damien Miller | 2e28d86 | 2008-07-17 19:15:43 +1000 | [diff] [blame] | 3009 | at redhat.com, ok djm@. |
| 3010 | - (djm) [sshconnect2.c] vis.h isn't available everywhere |
Damien Miller | 7ba0ca7 | 2008-07-17 18:57:06 +1000 | [diff] [blame] | 3011 | |
Damien Miller | 94717b0 | 2008-07-16 21:17:23 +1000 | [diff] [blame] | 3012 | 20080716 |
| 3013 | - OpenBSD CVS Sync |
| 3014 | - djm@cvs.openbsd.org 2008/07/15 02:23:14 |
| 3015 | [sftp.1] |
| 3016 | number of pipelined requests is now 64; |
| 3017 | prodded by Iain.Morgan AT nasa.gov |
Damien Miller | b9d3bee | 2008-07-16 22:40:52 +1000 | [diff] [blame] | 3018 | - djm@cvs.openbsd.org 2008/07/16 11:51:14 |
| 3019 | [clientloop.c] |
| 3020 | rename variable first_gc -> last_gc (since it is actually the last |
| 3021 | in the list). |
Damien Miller | 6ef1749 | 2008-07-16 22:42:06 +1000 | [diff] [blame] | 3022 | - djm@cvs.openbsd.org 2008/07/16 11:52:19 |
| 3023 | [channels.c] |
| 3024 | this loop index should be automatic, not static |
Damien Miller | 94717b0 | 2008-07-16 21:17:23 +1000 | [diff] [blame] | 3025 | |
Damien Miller | 81dec05 | 2008-07-14 11:28:29 +1000 | [diff] [blame] | 3026 | 20080714 |
| 3027 | - (djm) OpenBSD CVS Sync |
| 3028 | - sthen@cvs.openbsd.org 2008/07/13 21:22:52 |
| 3029 | [ssh-keygen.c] |
| 3030 | Change "ssh-keygen -F [host] -l" to not display random art unless |
| 3031 | -v is also specified, making it consistent with the manual and other |
| 3032 | uses of -l. |
| 3033 | ok grunk@ |
Damien Miller | 163886f | 2008-07-14 11:28:58 +1000 | [diff] [blame] | 3034 | - djm@cvs.openbsd.org 2008/07/13 22:13:07 |
| 3035 | [channels.c] |
| 3036 | use struct sockaddr_storage instead of struct sockaddr for accept(2) |
| 3037 | address argument. from visibilis AT yahoo.com in bz#1485; ok markus@ |
Damien Miller | 7f980d1 | 2008-07-14 11:29:24 +1000 | [diff] [blame] | 3038 | - djm@cvs.openbsd.org 2008/07/13 22:16:03 |
| 3039 | [sftp.c] |
| 3040 | increase number of piplelined requests so they properly fill the |
| 3041 | (recently increased) channel window. prompted by rapier AT psc.edu; |
| 3042 | ok markus@ |
Damien Miller | 276571c | 2008-07-14 12:09:57 +1000 | [diff] [blame] | 3043 | - djm@cvs.openbsd.org 2008/07/14 01:55:56 |
| 3044 | [sftp-server.8] |
| 3045 | mention requirement for /dev/log inside chroot when using sftp-server |
| 3046 | with ChrootDirectory |
Damien Miller | ce02e5e | 2008-07-14 12:02:24 +1000 | [diff] [blame] | 3047 | - (djm) [openbsd-compat/bindresvport.c] Rename variables s/sin/in/ to |
| 3048 | avoid clash with sin(3) function; reported by |
| 3049 | cristian.ionescu-idbohrn AT axis.com |
Damien Miller | 639ce59 | 2008-07-14 12:03:27 +1000 | [diff] [blame] | 3050 | - (djm) [openbsd-compat/rresvport.c] Add unistd.h for missing close() |
| 3051 | prototype; reported by cristian.ionescu-idbohrn AT axis.com |
Damien Miller | 36d7056 | 2008-07-14 12:04:43 +1000 | [diff] [blame] | 3052 | - (djm) [umac.c] Rename variable s/buffer_ptr/bufp/ to avoid clash; |
| 3053 | reported by cristian.ionescu-idbohrn AT axis.com |
Damien Miller | 1fc231c | 2008-07-14 12:12:52 +1000 | [diff] [blame] | 3054 | - (djm) [contrib/cygwin/Makefile contrib/cygwin/ssh-host-config] |
| 3055 | [contrib/cygwin/ssh-user-config contrib/cygwin/sshd-inetd] |
| 3056 | Revamped and simplified Cygwin ssh-host-config script that uses |
| 3057 | unified csih configuration tool. Requires recent Cygwin. |
| 3058 | Patch from vinschen AT redhat.com |
Damien Miller | 81dec05 | 2008-07-14 11:28:29 +1000 | [diff] [blame] | 3059 | |
Damien Miller | 2bcb866 | 2008-07-12 17:12:29 +1000 | [diff] [blame] | 3060 | 20080712 |
| 3061 | - (djm) OpenBSD CVS Sync |
| 3062 | - djm@cvs.openbsd.org 2008/07/12 04:52:50 |
| 3063 | [channels.c] |
| 3064 | unbreak; move clearing of cctx struct to before first use |
| 3065 | reported by dkrause@ |
Damien Miller | a034baf | 2008-07-12 17:12:49 +1000 | [diff] [blame] | 3066 | - djm@cvs.openbsd.org 2008/07/12 05:33:41 |
| 3067 | [scp.1] |
| 3068 | better description for -i flag: |
| 3069 | s/RSA authentication/public key authentication/ |
Damien Miller | c4657ef | 2008-07-14 21:37:36 +1000 | [diff] [blame] | 3070 | - (djm) [openbsd-compat/fake-rfc2553.c openbsd-compat/fake-rfc2553.h] |
| 3071 | return EAI_FAMILY when trying to lookup unsupported address family; |
| 3072 | from vinschen AT redhat.com |
Damien Miller | 2bcb866 | 2008-07-12 17:12:29 +1000 | [diff] [blame] | 3073 | |
Damien Miller | 2f7faf1 | 2008-07-11 17:34:35 +1000 | [diff] [blame] | 3074 | 20080711 |
| 3075 | - (djm) OpenBSD CVS Sync |
| 3076 | - stevesk@cvs.openbsd.org 2008/07/07 00:31:41 |
| 3077 | [ttymodes.c] |
| 3078 | we don't need arg after the debug3() was removed. from lint. |
| 3079 | ok djm@ |
Damien Miller | 87dd5f2 | 2008-07-11 17:35:09 +1000 | [diff] [blame] | 3080 | - stevesk@cvs.openbsd.org 2008/07/07 23:32:51 |
| 3081 | [key.c] |
| 3082 | /*NOTREACHED*/ for lint warning: |
| 3083 | warning: function key_equal falls off bottom without returning value |
| 3084 | ok djm@ |
Damien Miller | dda5fff | 2008-07-11 17:35:37 +1000 | [diff] [blame] | 3085 | - markus@cvs.openbsd.org 2008/07/10 18:05:58 |
| 3086 | [channels.c] |
| 3087 | missing bzero; from mickey; ok djm@ |
Damien Miller | b61f3fc | 2008-07-11 17:36:48 +1000 | [diff] [blame] | 3088 | - markus@cvs.openbsd.org 2008/07/10 18:08:11 |
| 3089 | [clientloop.c monitor.c monitor_wrap.c packet.c packet.h sshd.c] |
| 3090 | sync v1 and v2 traffic accounting; add it to sshd, too; |
| 3091 | ok djm@, dtucker@ |
Damien Miller | 2f7faf1 | 2008-07-11 17:34:35 +1000 | [diff] [blame] | 3092 | |
Damien Miller | d9648ee | 2008-07-09 00:21:12 +1000 | [diff] [blame] | 3093 | 20080709 |
| 3094 | - (djm) [Makefile.in] Print "all tests passed" when all regress tests pass |
Damien Miller | 773a7b9 | 2008-07-09 20:54:05 +1000 | [diff] [blame] | 3095 | - (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAM |
| 3096 | account check failure path. The vulnerable format buffer is supplied |
| 3097 | from PAM and should not contain attacker-supplied data. |
Damien Miller | 7acf550 | 2008-07-09 20:54:37 +1000 | [diff] [blame] | 3098 | - (djm) [auth.c] Missing unistd.h for close() |
Damien Miller | 73193b3 | 2008-07-09 21:07:19 +1000 | [diff] [blame] | 3099 | - (djm) [configure.ac] Add -Wformat-security to CFLAGS for gcc 3.x and 4.x |
Damien Miller | d9648ee | 2008-07-09 00:21:12 +1000 | [diff] [blame] | 3100 | |
Damien Miller | 22989f1 | 2008-07-05 08:59:43 +1000 | [diff] [blame] | 3101 | 20080705 |
| 3102 | - (djm) [auth.c] Fixed test for locked account on HP/UX with shadowed |
| 3103 | passwords disabled. bz#1083 report & patch from senthilkumar_sen AT |
| 3104 | hotpop.com, w/ dtucker@ |
Damien Miller | 20d1694 | 2008-07-05 09:36:58 +1000 | [diff] [blame] | 3105 | - (djm) [atomicio.c configure.ac] Disable poll() fallback in atomiciov for |
| 3106 | Tru64. readv doesn't seem to be a comparable object there. |
| 3107 | bz#1386, patch from dtucker@ ok me |
Damien Miller | 42743cb | 2008-07-05 09:50:23 +1000 | [diff] [blame] | 3108 | - (djm) [Makefile.in] Pass though pass to conch for interop tests |
Damien Miller | ff2e492 | 2008-07-05 09:52:03 +1000 | [diff] [blame] | 3109 | - (djm) [configure.ac] unbreak: remove extra closing brace |
Damien Miller | d874fa5 | 2008-07-05 09:40:56 +1000 | [diff] [blame] | 3110 | - (djm) OpenBSD CVS Sync |
| 3111 | - djm@cvs.openbsd.org 2008/07/04 23:08:25 |
| 3112 | [packet.c] |
| 3113 | handle EINTR in packet_write_poll()l ok dtucker@ |
Damien Miller | 0b4d48b | 2008-07-05 09:44:53 +1000 | [diff] [blame] | 3114 | - djm@cvs.openbsd.org 2008/07/04 23:30:16 |
| 3115 | [auth1.c auth2.c] |
| 3116 | Make protocol 1 MaxAuthTries logic match protocol 2's. |
| 3117 | Do not treat the first protocol 2 authentication attempt as |
| 3118 | a failure IFF it is for method "none". |
| 3119 | Makes MaxAuthTries' user-visible behaviour identical for |
| 3120 | protocol 1 vs 2. |
| 3121 | ok dtucker@ |
Damien Miller | c9c96f2 | 2008-07-05 15:17:48 +1000 | [diff] [blame] | 3122 | - djm@cvs.openbsd.org 2008/07/05 05:16:01 |
| 3123 | [PROTOCOL] |
| 3124 | grammar |
Damien Miller | 22989f1 | 2008-07-05 08:59:43 +1000 | [diff] [blame] | 3125 | |
Darren Tucker | 7c99b1c | 2008-07-04 12:53:23 +1000 | [diff] [blame] | 3126 | 20080704 |
| 3127 | - (dtucker) OpenBSD CVS Sync |
| 3128 | - djm@cvs.openbsd.org 2008/07/02 13:30:34 |
| 3129 | [auth2.c] |
| 3130 | really really remove the freebie "none" auth try for protocol 2 |
Darren Tucker | 9a2a609 | 2008-07-04 12:53:50 +1000 | [diff] [blame] | 3131 | - djm@cvs.openbsd.org 2008/07/02 13:47:39 |
| 3132 | [ssh.1 ssh.c] |
| 3133 | When forking after authentication ("ssh -f") with ExitOnForwardFailure |
| 3134 | enabled, delay the fork until after replies for any -R forwards have |
| 3135 | been seen. Allows for robust detection of -R forward failure when |
| 3136 | using -f (similar to bz#92); ok dtucker@ |
Darren Tucker | f5cafb0 | 2008-07-04 12:54:25 +1000 | [diff] [blame] | 3137 | - otto@cvs.openbsd.org 2008/07/03 21:46:58 |
| 3138 | [auth2-pubkey.c] |
| 3139 | avoid nasty double free; ok dtucker@ djm@ |
Darren Tucker | b03fd02 | 2008-07-04 13:51:12 +1000 | [diff] [blame] | 3140 | - djm@cvs.openbsd.org 2008/07/04 03:44:59 |
| 3141 | [servconf.c groupaccess.h groupaccess.c] |
| 3142 | support negation of groups in "Match group" block (bz#1315); ok dtucker@ |
Darren Tucker | 2784f1f | 2008-07-04 13:51:45 +1000 | [diff] [blame] | 3143 | - dtucker@cvs.openbsd.org 2008/07/04 03:47:02 |
| 3144 | [monitor.c] |
| 3145 | Make debug a little clearer. ok djm@ |
Darren Tucker | 8c7a14e | 2008-07-04 17:08:58 +1000 | [diff] [blame] | 3146 | - djm@cvs.openbsd.org 2008/06/30 08:07:34 |
| 3147 | [regress/key-options.sh] |
| 3148 | shell portability: use "=" instead of "==" in test(1) expressions, |
| 3149 | double-quote string with backslash escaped / |
Darren Tucker | 5d6d70a | 2008-07-04 17:10:30 +1000 | [diff] [blame] | 3150 | - djm@cvs.openbsd.org 2008/06/30 10:31:11 |
| 3151 | [regress/{putty-transfer,putty-kex,putty-ciphers}.sh] |
| 3152 | remove "set -e" left over from debugging |
Darren Tucker | b01bac1 | 2008-07-04 17:11:30 +1000 | [diff] [blame] | 3153 | - djm@cvs.openbsd.org 2008/06/30 10:43:03 |
| 3154 | [regress/conch-ciphers.sh] |
| 3155 | explicitly disable conch options that could interfere with the test |
Darren Tucker | f7fa706 | 2008-07-04 14:10:19 +1000 | [diff] [blame] | 3156 | - (dtucker) [sftp-server.c] Bug #1447: fall back to racy rename if link |
| 3157 | returns EXDEV. Patch from Mike Garrison, ok djm@ |
Damien Miller | d8968ad | 2008-07-04 23:10:49 +1000 | [diff] [blame] | 3158 | - (djm) [atomicio.c channels.c clientloop.c defines.h includes.h] |
| 3159 | [packet.c scp.c serverloop.c sftp-client.c ssh-agent.c ssh-keyscan.c] |
| 3160 | [sshd.c] Explicitly handle EWOULDBLOCK wherever we handle EAGAIN, on |
| 3161 | some platforms (HP nonstop) it is a distinct errno; |
| 3162 | bz#1467 reported by sconeu AT yahoo.com; ok dtucker@ |
| 3163 | |
Darren Tucker | 00f00f0 | 2008-07-02 22:31:31 +1000 | [diff] [blame] | 3164 | 20080702 |
| 3165 | - (dtucker) OpenBSD CVS Sync |
| 3166 | - djm@cvs.openbsd.org 2008/06/30 08:05:59 |
| 3167 | [PROTOCOL.agent] |
| 3168 | typo: s/constraint_date/constraint_data/ |
Darren Tucker | 8810dd4 | 2008-07-02 22:32:14 +1000 | [diff] [blame] | 3169 | - djm@cvs.openbsd.org 2008/06/30 12:15:39 |
| 3170 | [serverloop.c] |
| 3171 | only pass channel requests on session channels through to the session |
| 3172 | channel handler, avoiding spurious log messages; ok! markus@ |
Darren Tucker | 8748b96 | 2008-07-02 22:32:43 +1000 | [diff] [blame] | 3173 | - djm@cvs.openbsd.org 2008/06/30 12:16:02 |
| 3174 | [nchan.c] |
| 3175 | only send eow@openssh.com notifications for session channels; ok! markus@ |
Darren Tucker | 1f781b1 | 2008-07-02 22:33:16 +1000 | [diff] [blame] | 3176 | - djm@cvs.openbsd.org 2008/06/30 12:18:34 |
| 3177 | [PROTOCOL] |
| 3178 | clarify that eow@openssh.com is only sent on session channels |
Darren Tucker | 068e01f | 2008-07-02 22:33:55 +1000 | [diff] [blame] | 3179 | - dtucker@cvs.openbsd.org 2008/07/01 07:20:52 |
| 3180 | [sshconnect.c] |
| 3181 | Check ExitOnForwardFailure if forwardings are disabled due to a failed |
| 3182 | host key check. ok djm@ |
Darren Tucker | d7bdc0c | 2008-07-02 22:34:30 +1000 | [diff] [blame] | 3183 | - dtucker@cvs.openbsd.org 2008/07/01 07:24:22 |
| 3184 | [sshconnect.c sshd.c] |
| 3185 | Send CR LF during protocol banner exchanges, but only for Protocol 2 only, |
| 3186 | in order to comply with RFC 4253. bz #1443, ok djm@ |
Darren Tucker | f2e21de | 2008-07-02 22:35:00 +1000 | [diff] [blame] | 3187 | - stevesk@cvs.openbsd.org 2008/07/01 23:12:47 |
| 3188 | [PROTOCOL.agent] |
| 3189 | fix some typos; ok djm@ |
Darren Tucker | 7499b0c | 2008-07-02 22:35:43 +1000 | [diff] [blame] | 3190 | - djm@cvs.openbsd.org 2008/07/02 02:24:18 |
| 3191 | [sshd_config sshd_config.5 sshd.8 servconf.c] |
| 3192 | increase default size of ssh protocol 1 ephemeral key from 768 to 1024 |
| 3193 | bits; prodded by & ok dtucker@ ok deraadt@ |
Darren Tucker | 33c787f | 2008-07-02 22:37:30 +1000 | [diff] [blame] | 3194 | - dtucker@cvs.openbsd.org 2008/07/02 12:03:51 |
| 3195 | [auth-rsa.c auth.c auth2-pubkey.c auth.h] |
| 3196 | Merge duplicate host key file checks, based in part on a patch from Rob |
| 3197 | Holland via bz #1348 . Also checks for non-regular files during protocol |
| 3198 | 1 RSA auth. ok djm@ |
Darren Tucker | 4230a5d | 2008-07-02 22:56:09 +1000 | [diff] [blame] | 3199 | - djm@cvs.openbsd.org 2008/07/02 12:36:39 |
| 3200 | [auth2-none.c auth2.c] |
| 3201 | Make protocol 2 MaxAuthTries behaviour a little more sensible: |
| 3202 | Check whether client has exceeded MaxAuthTries before running |
| 3203 | an authentication method and skip it if they have, previously it |
| 3204 | would always allow one try (for "none" auth). |
| 3205 | Preincrement failure count before post-auth test - previously this |
| 3206 | checked and postincremented, also to allow one "none" try. |
| 3207 | Together, these two changes always count the "none" auth method |
| 3208 | which could be skipped by a malicious client (e.g. an SSH worm) |
| 3209 | to get an extra attempt at a real auth method. They also make |
| 3210 | MaxAuthTries=0 a useful way to block users entirely (esp. in a |
| 3211 | sshd_config Match block). |
| 3212 | Also, move sending of any preauth banner from "none" auth method |
| 3213 | to the first call to input_userauth_request(), so worms that skip |
| 3214 | the "none" method get to see it too. |
Darren Tucker | 00f00f0 | 2008-07-02 22:31:31 +1000 | [diff] [blame] | 3215 | |
Damien Miller | 2e80cf2 | 2008-06-30 08:06:25 +1000 | [diff] [blame] | 3216 | 20080630 |
| 3217 | - (djm) OpenBSD CVS Sync |
| 3218 | - dtucker@cvs.openbsd.org 2008/06/10 23:13:43 |
| 3219 | [regress/Makefile regress/key-options.sh] |
| 3220 | Add regress test for key options. ok djm@ |
Damien Miller | d9bfce8 | 2008-06-30 08:06:51 +1000 | [diff] [blame] | 3221 | - dtucker@cvs.openbsd.org 2008/06/11 23:11:40 |
Damien Miller | 4268a13 | 2008-06-30 08:07:56 +1000 | [diff] [blame] | 3222 | [regress/Makefile] |
Damien Miller | d9bfce8 | 2008-06-30 08:06:51 +1000 | [diff] [blame] | 3223 | Don't run cipher-speed test by default; mistakenly enabled by me |
Damien Miller | 4268a13 | 2008-06-30 08:07:56 +1000 | [diff] [blame] | 3224 | - djm@cvs.openbsd.org 2008/06/28 13:57:25 |
| 3225 | [regress/Makefile regress/test-exec.sh regress/conch-ciphers.sh] |
| 3226 | very basic regress test against Twisted Conch in "make interop" |
| 3227 | target (conch is available in ports/devel/py-twisted/conch); |
| 3228 | ok markus@ |
Damien Miller | a766cea | 2008-06-30 08:12:37 +1000 | [diff] [blame] | 3229 | - (djm) [regress/Makefile] search for conch by path, like we do putty |
Damien Miller | 2e80cf2 | 2008-06-30 08:06:25 +1000 | [diff] [blame] | 3230 | |
Damien Miller | f184bcf | 2008-06-29 22:45:13 +1000 | [diff] [blame] | 3231 | 20080629 |
| 3232 | - (djm) OpenBSD CVS Sync |
| 3233 | - martynas@cvs.openbsd.org 2008/06/21 07:46:46 |
| 3234 | [sftp.c] |
| 3235 | use optopt to get invalid flag, instead of return value of getopt, |
| 3236 | which is always '?'; ok djm@ |
Damien Miller | 007132a | 2008-06-29 22:45:37 +1000 | [diff] [blame] | 3237 | - otto@cvs.openbsd.org 2008/06/25 11:13:43 |
| 3238 | [key.c] |
| 3239 | add key length to visual fingerprint; zap magical constants; |
| 3240 | ok grunk@ djm@ |
Damien Miller | 9e72028 | 2008-06-29 22:46:35 +1000 | [diff] [blame] | 3241 | - djm@cvs.openbsd.org 2008/06/26 06:10:09 |
| 3242 | [sftp-client.c sftp-server.c] |
| 3243 | allow the sftp chmod(2)-equivalent operation to set set[ug]id/sticky |
| 3244 | bits. Note that this only affects explicit setting of modes (e.g. via |
| 3245 | sftp(1)'s chmod command) and not file transfers. (bz#1310) |
| 3246 | ok deraadt@ at c2k8 |
Damien Miller | 2e9cf49 | 2008-06-29 22:47:04 +1000 | [diff] [blame] | 3247 | - djm@cvs.openbsd.org 2008/06/26 09:19:40 |
| 3248 | [dh.c dh.h moduli.c] |
| 3249 | when loading moduli from /etc/moduli in sshd(8), check that they |
| 3250 | are of the expected "safe prime" structure and have had |
| 3251 | appropriate primality tests performed; |
| 3252 | feedback and ok dtucker@ |
Damien Miller | 1028824 | 2008-06-30 00:04:03 +1000 | [diff] [blame] | 3253 | - grunk@cvs.openbsd.org 2008/06/26 11:46:31 |
| 3254 | [readconf.c readconf.h ssh.1 ssh_config.5 sshconnect.c] |
| 3255 | Move SSH Fingerprint Visualization away from sharing the config option |
| 3256 | CheckHostIP to an own config option named VisualHostKey. |
| 3257 | While there, fix the behaviour that ssh would draw a random art picture |
| 3258 | on every newly seen host even when the option was not enabled. |
| 3259 | prodded by deraadt@, discussions, |
| 3260 | help and ok markus@ djm@ dtucker@ |
Damien Miller | 8639920 | 2008-06-30 00:04:31 +1000 | [diff] [blame] | 3261 | - jmc@cvs.openbsd.org 2008/06/26 21:11:46 |
| 3262 | [ssh.1] |
| 3263 | add VisualHostKey to the list of options listed in -o; |
Damien Miller | bd45afb | 2008-06-30 00:04:57 +1000 | [diff] [blame] | 3264 | - djm@cvs.openbsd.org 2008/06/28 07:25:07 |
| 3265 | [PROTOCOL] |
| 3266 | spelling fixes |
Damien Miller | 1cfadab | 2008-06-30 00:05:21 +1000 | [diff] [blame] | 3267 | - djm@cvs.openbsd.org 2008/06/28 13:58:23 |
| 3268 | [ssh-agent.c] |
| 3269 | refuse to add a key that has unknown constraints specified; |
| 3270 | ok markus |
Damien Miller | 471db5c | 2008-06-30 00:05:48 +1000 | [diff] [blame] | 3271 | - djm@cvs.openbsd.org 2008/06/28 14:05:15 |
| 3272 | [ssh-agent.c] |
| 3273 | reset global compat flag after processing a protocol 2 signature |
| 3274 | request with the legacy DSA encoding flag set; ok markus |
Damien Miller | 1e18beb | 2008-06-30 00:07:00 +1000 | [diff] [blame] | 3275 | - djm@cvs.openbsd.org 2008/06/28 14:08:30 |
| 3276 | [PROTOCOL PROTOCOL.agent] |
| 3277 | document the protocol used by ssh-agent; "looks ok" markus@ |
Damien Miller | f184bcf | 2008-06-29 22:45:13 +1000 | [diff] [blame] | 3278 | |
Damien Miller | 493f032 | 2008-06-28 16:01:35 +1000 | [diff] [blame] | 3279 | 20080628 |
| 3280 | - (djm) [RFC.nroff contrib/cygwin/Makefile contrib/suse/openssh.spec] |
| 3281 | RFC.nroff lacks a license, remove it (it is long gone in OpenBSD). |
| 3282 | |
Damien Miller | 60dcc62 | 2008-06-26 15:59:32 +1000 | [diff] [blame] | 3283 | 20080626 |
| 3284 | - (djm) [Makefile.in moduli.5] Include moduli(5) manpage from OpenBSD. |
| 3285 | (bz#1372) |
Damien Miller | f299ff8 | 2008-06-26 16:01:56 +1000 | [diff] [blame] | 3286 | - (djm) [ contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 3287 | [contrib/suse/openssh.spec] Include moduli.5 in RPM spec files. |
Damien Miller | 60dcc62 | 2008-06-26 15:59:32 +1000 | [diff] [blame] | 3288 | |
Darren Tucker | ed3cdc0 | 2008-06-16 23:29:18 +1000 | [diff] [blame] | 3289 | 20080616 |
| 3290 | - (dtucker) OpenBSD CVS Sync |
| 3291 | - dtucker@cvs.openbsd.org 2008/06/16 13:22:53 |
| 3292 | [session.c channels.c] |
| 3293 | Rename the isatty argument to is_tty so we don't shadow |
| 3294 | isatty(3). ok markus@ |
Darren Tucker | 1a48aec | 2008-06-16 23:35:56 +1000 | [diff] [blame] | 3295 | - (dtucker) [channels.c] isatty -> is_tty here too. |
Darren Tucker | ed3cdc0 | 2008-06-16 23:29:18 +1000 | [diff] [blame] | 3296 | |
Darren Tucker | 330c93f | 2008-06-16 02:27:48 +1000 | [diff] [blame] | 3297 | 20080615 |
| 3298 | - (dtucker) [configure.ac] Enable -fno-builtin-memset when using gcc. |
Damien Miller | 2a62847 | 2008-06-16 07:50:24 +1000 | [diff] [blame] | 3299 | - OpenBSD CVS Sync |
| 3300 | - dtucker@cvs.openbsd.org 2008/06/14 15:49:48 |
| 3301 | [sshd.c] |
| 3302 | wrap long line at 80 chars |
Damien Miller | 6ca16c6 | 2008-06-16 07:50:58 +1000 | [diff] [blame] | 3303 | - dtucker@cvs.openbsd.org 2008/06/14 17:07:11 |
| 3304 | [sshd.c] |
| 3305 | ensure default umask disallows at least group and world write; ok djm@ |
Damien Miller | 6051c94 | 2008-06-16 07:53:16 +1000 | [diff] [blame] | 3306 | - djm@cvs.openbsd.org 2008/06/14 18:33:43 |
| 3307 | [session.c] |
| 3308 | suppress the warning message from chdir(homedir) failures |
| 3309 | when chrooted (bz#1461); ok dtucker |
Damien Miller | c7ce0da | 2008-06-16 07:55:06 +1000 | [diff] [blame] | 3310 | - dtucker@cvs.openbsd.org 2008/06/14 19:42:10 |
| 3311 | [scp.1] |
| 3312 | Mention that scp follows symlinks during -r. bz #1466, |
| 3313 | from nectar at apple |
Damien Miller | c62a5af | 2008-06-16 07:55:46 +1000 | [diff] [blame] | 3314 | - dtucker@cvs.openbsd.org 2008/06/15 16:55:38 |
| 3315 | [sshd_config.5] |
| 3316 | MaxSessions is allowed in a Match block too |
Damien Miller | 307c1d1 | 2008-06-16 07:56:20 +1000 | [diff] [blame] | 3317 | - dtucker@cvs.openbsd.org 2008/06/15 16:58:40 |
| 3318 | [servconf.c sshd_config.5] |
| 3319 | Allow MaxAuthTries within a Match block. ok djm@ |
Damien Miller | d310d51 | 2008-06-16 07:59:23 +1000 | [diff] [blame] | 3320 | - djm@cvs.openbsd.org 2008/06/15 20:06:26 |
| 3321 | [channels.c channels.h session.c] |
| 3322 | don't call isatty() on a pty master, instead pass a flag down to |
| 3323 | channel_set_fds() indicating that te fds refer to a tty. Fixes a |
| 3324 | hang on exit on Solaris (bz#1463) in portable but is actually |
| 3325 | a generic bug; ok dtucker deraadt markus |
Darren Tucker | 330c93f | 2008-06-16 02:27:48 +1000 | [diff] [blame] | 3326 | |
Damien Miller | 8b7ab96 | 2008-06-15 10:55:34 +1000 | [diff] [blame] | 3327 | 20080614 |
| 3328 | - (djm) [openbsd-compat/sigact.c] Avoid NULL derefs in ancient sigaction |
| 3329 | replacement code; patch from ighighi AT gmail.com in bz#1240; |
| 3330 | ok dtucker |
| 3331 | |
Darren Tucker | 99bb761 | 2008-06-13 22:02:50 +1000 | [diff] [blame] | 3332 | 20080613 |
| 3333 | - (dtucker) OpenBSD CVS Sync |
| 3334 | - deraadt@cvs.openbsd.org 2008/06/13 09:44:36 |
| 3335 | [packet.c] |
| 3336 | compile on older gcc; no decl after code |
Darren Tucker | f2c16d3 | 2008-06-14 08:59:49 +1000 | [diff] [blame] | 3337 | - dtucker@cvs.openbsd.org 2008/06/13 13:56:59 |
| 3338 | [monitor.c] |
| 3339 | Clear key options in the monitor on failed authentication, prevents |
| 3340 | applying additional restrictions to non-pubkey authentications in |
| 3341 | the case where pubkey fails but another method subsequently succeeds. |
| 3342 | bz #1472, found by Colin Watson, ok markus@ djm@ |
Darren Tucker | d9526a5 | 2008-06-14 09:01:24 +1000 | [diff] [blame] | 3343 | - dtucker@cvs.openbsd.org 2008/06/13 14:18:51 |
| 3344 | [auth2-pubkey.c auth-rhosts.c] |
| 3345 | Include unistd.h for close(), prevents warnings in -portable |
Darren Tucker | 47e713b | 2008-06-14 09:01:54 +1000 | [diff] [blame] | 3346 | - dtucker@cvs.openbsd.org 2008/06/13 17:21:20 |
| 3347 | [mux.c] |
| 3348 | Friendlier error messages for mux fallback. ok djm@ |
Darren Tucker | 03ccc9b | 2008-06-14 09:02:25 +1000 | [diff] [blame] | 3349 | - dtucker@cvs.openbsd.org 2008/06/13 18:55:22 |
| 3350 | [scp.c] |
| 3351 | Prevent -Wsign-compare warnings on LP64 systems. bz #1192, ok deraadt@ |
Darren Tucker | f6bffb1 | 2008-06-14 09:04:26 +1000 | [diff] [blame] | 3352 | - grunk@cvs.openbsd.org 2008/06/13 20:13:26 |
| 3353 | [ssh.1] |
| 3354 | Explain the use of SSH fpr visualization using random art, and cite the |
| 3355 | original scientific paper inspiring that technique. |
| 3356 | Much help with English and nroff by jmc@, thanks. |
Darren Tucker | 30fd49e | 2008-06-14 09:14:46 +1000 | [diff] [blame] | 3357 | - (dtucker) [configure.ac] Bug #1276: avoid linking against libgssapi, which |
| 3358 | despite its name doesn't seem to implement all of GSSAPI. Patch from |
| 3359 | Jan Engelhardt, sanity checked by Simon Wilkinson. |
Darren Tucker | 99bb761 | 2008-06-13 22:02:50 +1000 | [diff] [blame] | 3360 | |
Darren Tucker | 1199673 | 2008-06-13 04:32:00 +1000 | [diff] [blame] | 3361 | 20080612 |
| 3362 | - (dtucker) OpenBSD CVS Sync |
| 3363 | - jmc@cvs.openbsd.org 2008/06/11 07:30:37 |
| 3364 | [sshd.8] |
| 3365 | kill trailing whitespace; |
Darren Tucker | 9c16ac9 | 2008-06-13 04:40:35 +1000 | [diff] [blame] | 3366 | - grunk@cvs.openbsd.org 2008/06/11 21:01:35 |
| 3367 | [ssh_config.5 key.h readconf.c readconf.h ssh-keygen.1 ssh-keygen.c key.c |
| 3368 | sshconnect.c] |
| 3369 | Introduce SSH Fingerprint ASCII Visualization, a technique inspired by the |
| 3370 | graphical hash visualization schemes known as "random art", and by |
| 3371 | Dan Kaminsky's musings on the subject during a BlackOp talk at the |
| 3372 | 23C3 in Berlin. |
| 3373 | Scientific publication (original paper): |
| 3374 | "Hash Visualization: a New Technique to improve Real-World Security", |
| 3375 | Perrig A. and Song D., 1999, International Workshop on Cryptographic |
| 3376 | Techniques and E-Commerce (CrypTEC '99) |
| 3377 | http://sparrow.ece.cmu.edu/~adrian/projects/validation/validation.pdf |
| 3378 | The algorithm used here is a worm crawling over a discrete plane, |
| 3379 | leaving a trace (augmenting the field) everywhere it goes. |
| 3380 | Movement is taken from dgst_raw 2bit-wise. Bumping into walls |
| 3381 | makes the respective movement vector be ignored for this turn, |
| 3382 | thus switching to the other color of the chessboard. |
| 3383 | Graphs are not unambiguous for now, because circles in graphs can be |
| 3384 | walked in either direction. |
| 3385 | discussions with several people, |
| 3386 | help, corrections and ok markus@ djm@ |
Darren Tucker | a376a32 | 2008-06-13 04:42:14 +1000 | [diff] [blame] | 3387 | - grunk@cvs.openbsd.org 2008/06/11 21:38:25 |
| 3388 | [ssh-keygen.c] |
| 3389 | ssh-keygen -lv -f /etc/ssh/ssh_host_rsa_key.pub |
| 3390 | would not display you the random art as intended, spotted by canacar@ |
Darren Tucker | 35c4553 | 2008-06-13 04:43:15 +1000 | [diff] [blame] | 3391 | - grunk@cvs.openbsd.org 2008/06/11 22:20:46 |
| 3392 | [ssh-keygen.c ssh-keygen.1] |
| 3393 | ssh-keygen would write fingerprints to STDOUT, and random art to STDERR, |
| 3394 | that is not how it was envisioned. |
| 3395 | Also correct manpage saying that -v is needed along with -l for it to work. |
| 3396 | spotted by naddy@ |
Darren Tucker | 014d76f | 2008-06-13 04:43:51 +1000 | [diff] [blame] | 3397 | - otto@cvs.openbsd.org 2008/06/11 23:02:22 |
| 3398 | [key.c] |
| 3399 | simpler way of computing the augmentations; ok grunk@ |
Darren Tucker | dcc1ab5 | 2008-06-13 04:44:25 +1000 | [diff] [blame] | 3400 | - grunk@cvs.openbsd.org 2008/06/11 23:03:56 |
| 3401 | [ssh_config.5] |
| 3402 | CheckHostIP set to ``fingerprint'' will display both hex and random art |
| 3403 | spotted by naddy@ |
Darren Tucker | d32b28a | 2008-06-13 04:45:50 +1000 | [diff] [blame] | 3404 | - grunk@cvs.openbsd.org 2008/06/11 23:51:57 |
| 3405 | [key.c] |
| 3406 | #define statements that are not atoms need braces around them, else they |
| 3407 | will cause trouble in some cases. |
| 3408 | Also do a computation of -1 once, and not in a loop several times. |
| 3409 | spotted by otto@ |
Darren Tucker | 78913e0 | 2008-06-13 04:47:34 +1000 | [diff] [blame] | 3410 | - dtucker@cvs.openbsd.org 2008/06/12 00:03:49 |
| 3411 | [dns.c canohost.c sshconnect.c] |
| 3412 | Do not pass "0" strings as ports to getaddrinfo because the lookups |
| 3413 | can slow things down and we never use the service info anyway. bz |
| 3414 | #859, patch from YOSHIFUJI Hideaki and John Devitofranceschi. ok |
| 3415 | deraadt@ djm@ |
| 3416 | djm belives that the reason for the "0" strings is to ensure that |
| 3417 | it's not possible to call getaddrinfo with both host and port being |
| 3418 | NULL. In the case of canohost.c host is a local array. In the |
| 3419 | case of sshconnect.c, it's checked for null immediately before use. |
| 3420 | In dns.c it ultimately comes from ssh.c:main() and is guaranteed to |
| 3421 | be non-null but it's not obvious, so I added a warning message in |
| 3422 | case it is ever passed a null. |
| 3423 | - grunk@cvs.openbsd.org 2008/06/12 00:13:55 |
| 3424 | [sshconnect.c] |
| 3425 | Make ssh print the random art also when ssh'ing to a host using IP only. |
| 3426 | spotted by naddy@, ok and help djm@ dtucker@ |
Darren Tucker | 267e28b | 2008-06-13 04:48:11 +1000 | [diff] [blame] | 3427 | - otto@cvs.openbsd.org 2008/06/12 00:13:13 |
| 3428 | [key.c] |
| 3429 | use an odd number of rows and columns and a separate start marker, looks |
| 3430 | better; ok grunk@ |
Darren Tucker | 2fb66ca | 2008-06-13 04:49:33 +1000 | [diff] [blame] | 3431 | - djm@cvs.openbsd.org 2008/06/12 03:40:52 |
| 3432 | [clientloop.h mux.c channels.c clientloop.c channels.h] |
| 3433 | Enable ~ escapes for multiplex slave sessions; give each channel |
| 3434 | its own escape state and hook the escape filters up to muxed |
| 3435 | channels. bz #1331 |
| 3436 | Mux slaves do not currently support the ~^Z and ~& escapes. |
| 3437 | NB. this change cranks the mux protocol version, so a new ssh |
| 3438 | mux client will not be able to connect to a running old ssh |
| 3439 | mux master. |
| 3440 | ok dtucker@ |
Darren Tucker | 9f407c4 | 2008-06-13 04:50:27 +1000 | [diff] [blame] | 3441 | - djm@cvs.openbsd.org 2008/06/12 04:06:00 |
| 3442 | [clientloop.h ssh.c clientloop.c] |
| 3443 | maintain an ordered queue of outstanding global requests that we |
| 3444 | expect replies to, similar to the per-channel confirmation queue. |
| 3445 | Use this queue to verify success or failure for remote forward |
| 3446 | establishment in a race free way. |
| 3447 | ok dtucker@ |
Darren Tucker | 4d5cd33 | 2008-06-13 04:51:14 +1000 | [diff] [blame] | 3448 | - djm@cvs.openbsd.org 2008/06/12 04:17:47 |
| 3449 | [clientloop.c] |
| 3450 | thall shalt not code past the eightieth column |
Darren Tucker | d6173c0 | 2008-06-13 04:52:53 +1000 | [diff] [blame] | 3451 | - djm@cvs.openbsd.org 2008/06/12 04:24:06 |
| 3452 | [ssh.c] |
| 3453 | thal shalt not code past the eightieth column |
Darren Tucker | e5d9829 | 2008-06-13 04:53:27 +1000 | [diff] [blame] | 3454 | - djm@cvs.openbsd.org 2008/06/12 05:15:41 |
| 3455 | [PROTOCOL] |
| 3456 | document tun@openssh.com forwarding method |
Darren Tucker | ba69c7a | 2008-06-13 04:54:05 +1000 | [diff] [blame] | 3457 | - djm@cvs.openbsd.org 2008/06/12 05:32:30 |
| 3458 | [mux.c] |
| 3459 | some more TODO for me |
Darren Tucker | 4b3b977 | 2008-06-13 04:55:10 +1000 | [diff] [blame] | 3460 | - grunk@cvs.openbsd.org 2008/06/12 05:42:46 |
| 3461 | [key.c] |
| 3462 | supply the key type (rsa1, rsa, dsa) as a caption in the frame of the |
| 3463 | random art. while there, stress the fact that the field base should at |
| 3464 | least be 8 characters for the pictures to make sense. |
| 3465 | comment and ok djm@ |
| 3466 | - grunk@cvs.openbsd.org 2008/06/12 06:32:59 |
| 3467 | [key.c] |
| 3468 | We already mark the start of the worm, now also mark the end of the worm |
| 3469 | in our random art drawings. |
| 3470 | ok djm@ |
Darren Tucker | 84c56f5 | 2008-06-13 04:55:46 +1000 | [diff] [blame] | 3471 | - djm@cvs.openbsd.org 2008/06/12 15:19:17 |
| 3472 | [clientloop.h channels.h clientloop.c channels.c mux.c] |
| 3473 | The multiplexing escape char handler commit last night introduced a |
| 3474 | small memory leak per session; plug it. |
Darren Tucker | f6b01b7 | 2008-06-13 04:56:37 +1000 | [diff] [blame] | 3475 | - dtucker@cvs.openbsd.org 2008/06/12 16:35:31 |
| 3476 | [ssh_config.5 ssh.c] |
| 3477 | keyword expansion for localcommand. ok djm@ |
Darren Tucker | f09e825 | 2008-06-13 05:18:03 +1000 | [diff] [blame] | 3478 | - jmc@cvs.openbsd.org 2008/06/12 19:10:09 |
| 3479 | [ssh_config.5 ssh-keygen.1] |
| 3480 | tweak the ascii art text; ok grunk |
Darren Tucker | 3fc464e | 2008-06-13 06:42:45 +1000 | [diff] [blame] | 3481 | - dtucker@cvs.openbsd.org 2008/06/12 20:38:28 |
| 3482 | [sshd.c sshconnect.c packet.h misc.c misc.h packet.c] |
| 3483 | Make keepalive timeouts apply while waiting for a packet, particularly |
| 3484 | during key renegotiation (bz #1363). With djm and Matt Day, ok djm@ |
Darren Tucker | a64ab33 | 2008-06-13 07:01:29 +1000 | [diff] [blame] | 3485 | - djm@cvs.openbsd.org 2008/06/12 20:47:04 |
| 3486 | [sftp-client.c] |
| 3487 | print extension revisions for extensions that we understand |
Darren Tucker | babc1d5 | 2008-06-13 08:56:01 +1000 | [diff] [blame] | 3488 | - djm@cvs.openbsd.org 2008/06/12 21:06:25 |
| 3489 | [clientloop.c] |
| 3490 | I was coalescing expected global request confirmation replies at |
| 3491 | the wrong end of the queue - fix; prompted by markus@ |
Darren Tucker | b68fb4a | 2008-06-13 08:57:27 +1000 | [diff] [blame] | 3492 | - grunk@cvs.openbsd.org 2008/06/12 21:14:46 |
| 3493 | [ssh-keygen.c] |
| 3494 | make ssh-keygen -lf show the key type just as ssh-add -l would do it |
| 3495 | ok djm@ markus@ |
Darren Tucker | 0f0ef0a | 2008-06-13 08:58:05 +1000 | [diff] [blame] | 3496 | - grunk@cvs.openbsd.org 2008/06/12 22:03:36 |
| 3497 | [key.c] |
| 3498 | add my copyright, ok djm@ |
Darren Tucker | ff4454d | 2008-06-13 10:21:51 +1000 | [diff] [blame] | 3499 | - ian@cvs.openbsd.org 2008/06/12 23:24:58 |
| 3500 | [sshconnect.c] |
| 3501 | tweak wording in message, ok deraadt@ jmc@ |
Darren Tucker | f8b7eb7 | 2008-06-13 10:22:54 +1000 | [diff] [blame] | 3502 | - dtucker@cvs.openbsd.org 2008/06/13 00:12:02 |
| 3503 | [sftp.h log.h] |
| 3504 | replace __dead with __attribute__((noreturn)), makes things |
| 3505 | a little easier to port. Also, add it to sigdie(). ok djm@ |
Darren Tucker | ca19bfe | 2008-06-13 10:24:03 +1000 | [diff] [blame] | 3506 | - djm@cvs.openbsd.org 2008/06/13 00:16:49 |
| 3507 | [mux.c] |
| 3508 | fall back to creating a new TCP connection on most multiplexing errors |
| 3509 | (socket connect fail, invalid version, refused permittion, corrupted |
| 3510 | messages, etc.); bz #1329 ok dtucker@ |
Darren Tucker | 1adfd36 | 2008-06-13 10:58:10 +1000 | [diff] [blame] | 3511 | - dtucker@cvs.openbsd.org 2008/06/13 00:47:53 |
| 3512 | [mux.c] |
| 3513 | upcast size_t to u_long to match format arg; ok djm@ |
Darren Tucker | c7e030f | 2008-06-13 10:58:50 +1000 | [diff] [blame] | 3514 | - dtucker@cvs.openbsd.org 2008/06/13 00:51:47 |
| 3515 | [mac.c] |
| 3516 | upcast another size_t to u_long to match format |
Darren Tucker | 7517b5b | 2008-06-13 14:48:59 +1000 | [diff] [blame] | 3517 | - dtucker@cvs.openbsd.org 2008/06/13 01:38:23 |
| 3518 | [misc.c] |
| 3519 | upcast uid to long with matching %ld, prevents warnings in portable |
Darren Tucker | 06db584 | 2008-06-13 14:51:28 +1000 | [diff] [blame] | 3520 | - djm@cvs.openbsd.org 2008/06/13 04:40:22 |
| 3521 | [auth2-pubkey.c auth-rhosts.c] |
| 3522 | refuse to read ~/.shosts or ~/.ssh/authorized_keys that are not |
| 3523 | regular files; report from Solar Designer via Colin Watson in bz#1471 |
| 3524 | ok dtucker@ deraadt |
Darren Tucker | 1cf65ae | 2008-06-13 05:09:18 +1000 | [diff] [blame] | 3525 | - (dtucker) [clientloop.c serverloop.c] channel_register_filter now |
| 3526 | takes 2 more args. with djm@ |
Darren Tucker | 61b0695 | 2008-06-13 10:28:57 +1000 | [diff] [blame] | 3527 | - (dtucker) [defines.h] Bug #1112: __dead is, well dead. Based on a patch |
| 3528 | from Todd Vierling. |
Darren Tucker | 2c1eb82 | 2008-06-13 11:13:13 +1000 | [diff] [blame] | 3529 | - (dtucker) [auth-sia.c] Bug #1241: support password expiry on Tru64 SIA |
| 3530 | systems. Patch from R. Scott Bailey. |
Darren Tucker | 2c91b28 | 2008-06-13 12:40:55 +1000 | [diff] [blame] | 3531 | - (dtucker) [umac.c] STORE_UINT32_REVERSED and endian_convert are never used |
| 3532 | on big endian machines, so ifdef them for little-endian only to prevent |
| 3533 | unused function warnings on big-endians. |
Darren Tucker | f387e59 | 2008-06-13 15:03:14 +1000 | [diff] [blame] | 3534 | - (dtucker) [openbsd-compat/setenv.c] Make offsets size_t to prevent |
| 3535 | compiler warnings on some platforms. Based on a discussion with otto@ |
Darren Tucker | 1199673 | 2008-06-13 04:32:00 +1000 | [diff] [blame] | 3536 | |
Damien Miller | 4401e45 | 2008-06-12 06:05:12 +1000 | [diff] [blame] | 3537 | 20080611 |
| 3538 | - (djm) [channels.c configure.ac] |
| 3539 | Do not set SO_REUSEADDR on wildcard X11 listeners (X11UseLocalhost=no) |
| 3540 | bz#1464; ok dtucker |
| 3541 | |
Darren Tucker | 7a3935d | 2008-06-10 22:59:10 +1000 | [diff] [blame] | 3542 | 20080610 |
| 3543 | - (dtucker) OpenBSD CVS Sync |
| 3544 | - djm@cvs.openbsd.org 2008/06/10 03:57:27 |
| 3545 | [servconf.c match.h sshd_config.5] |
| 3546 | support CIDR address matching in sshd_config "Match address" blocks, with |
| 3547 | full support for negation and fall-back to classic wildcard matching. |
| 3548 | For example: |
| 3549 | Match address 192.0.2.0/24,3ffe:ffff::/32,!10.* |
| 3550 | PasswordAuthentication yes |
| 3551 | addrmatch.c code mostly lifted from flowd's addr.c |
| 3552 | feedback and ok dtucker@ |
Darren Tucker | b06cc4a | 2008-06-10 22:59:53 +1000 | [diff] [blame] | 3553 | - djm@cvs.openbsd.org 2008/06/10 04:17:46 |
| 3554 | [sshd_config.5] |
| 3555 | better reference for pattern-list |
Darren Tucker | e7140f2 | 2008-06-10 23:01:51 +1000 | [diff] [blame] | 3556 | - dtucker@cvs.openbsd.org 2008/06/10 04:50:25 |
| 3557 | [sshd.c channels.h channels.c log.c servconf.c log.h servconf.h sshd.8] |
| 3558 | Add extended test mode (-T) and connection parameters for test mode (-C). |
| 3559 | -T causes sshd to write its effective configuration to stdout and exit. |
| 3560 | -C causes any relevant Match rules to be applied before output. The |
| 3561 | combination allows tesing of the parser and config files. ok deraadt djm |
Darren Tucker | 6a2a400 | 2008-06-10 23:03:04 +1000 | [diff] [blame] | 3562 | - jmc@cvs.openbsd.org 2008/06/10 07:12:00 |
| 3563 | [sshd_config.5] |
| 3564 | tweak previous; |
Darren Tucker | e7f3f75 | 2008-06-10 23:06:01 +1000 | [diff] [blame] | 3565 | - jmc@cvs.openbsd.org 2008/06/10 08:17:40 |
| 3566 | [sshd.8 sshd.c] |
| 3567 | - update usage() |
| 3568 | - fix SYNOPSIS, and sort options |
| 3569 | - some minor additional fixes |
Darren Tucker | d788b7c | 2008-06-10 23:15:54 +1000 | [diff] [blame] | 3570 | - dtucker@cvs.openbsd.org 2008/06/09 18:06:32 |
| 3571 | [regress/test-exec.sh] |
| 3572 | Don't generate putty keys if we're not going to use them. ok djm |
Darren Tucker | 10f9242 | 2008-06-10 23:16:46 +1000 | [diff] [blame] | 3573 | - dtucker@cvs.openbsd.org 2008/06/10 05:23:32 |
| 3574 | [regress/addrmatch.sh regress/Makefile] |
| 3575 | Regress test for Match CIDR rules. ok djm@ |
Darren Tucker | 5f34664 | 2008-06-11 01:38:52 +1000 | [diff] [blame] | 3576 | - dtucker@cvs.openbsd.org 2008/06/10 15:21:41 |
| 3577 | [test-exec.sh] |
| 3578 | Use a more portable construct for checking if we're running a putty test |
Darren Tucker | d8bafea | 2008-06-11 01:39:38 +1000 | [diff] [blame] | 3579 | - dtucker@cvs.openbsd.org 2008/06/10 15:28:49 |
| 3580 | [test-exec.sh] |
| 3581 | Add quotes |
Darren Tucker | c9807e8 | 2008-06-11 09:33:01 +1000 | [diff] [blame] | 3582 | - dtucker@cvs.openbsd.org 2008/06/10 18:21:24 |
| 3583 | [ssh_config.5] |
| 3584 | clarify that Host patterns are space-separated. ok deraadt |
Darren Tucker | 8901fa9 | 2008-06-11 09:34:01 +1000 | [diff] [blame] | 3585 | - djm@cvs.openbsd.org 2008/06/10 22:15:23 |
| 3586 | [PROTOCOL ssh.c serverloop.c] |
| 3587 | Add a no-more-sessions@openssh.com global request extension that the |
| 3588 | client sends when it knows that it will never request another session |
| 3589 | (i.e. when session multiplexing is disabled). This allows a server to |
| 3590 | disallow further session requests and terminate the session. |
| 3591 | Why would a non-multiplexing client ever issue additional session |
| 3592 | requests? It could have been attacked with something like SSH'jack: |
| 3593 | http://www.storm.net.nz/projects/7 |
| 3594 | feedback & ok markus |
Darren Tucker | 896ad5a | 2008-06-11 09:34:46 +1000 | [diff] [blame] | 3595 | - djm@cvs.openbsd.org 2008/06/10 23:06:19 |
| 3596 | [auth-options.c match.c servconf.c addrmatch.c sshd.8] |
| 3597 | support CIDR address matching in .ssh/authorized_keys from="..." stanzas |
| 3598 | ok and extensive testing dtucker@ |
Darren Tucker | 2a8b138 | 2008-06-11 09:35:37 +1000 | [diff] [blame] | 3599 | - dtucker@cvs.openbsd.org 2008/06/10 23:21:34 |
| 3600 | [bufaux.c] |
| 3601 | Use '\0' for a nul byte rather than unadorned 0. ok djm@ |
Darren Tucker | e045e0c | 2008-06-11 09:38:12 +1000 | [diff] [blame] | 3602 | - dtucker@cvs.openbsd.org 2008/06/10 23:13:43 |
| 3603 | [Makefile regress/key-options.sh] |
| 3604 | Add regress test for key options. ok djm@ |
Darren Tucker | 5d37690 | 2008-06-11 04:15:05 +1000 | [diff] [blame] | 3605 | - (dtucker) [openbsd-compat/fake-rfc2553.h] Add sin6_scope_id to sockaddr_in6 |
| 3606 | since the new CIDR code in addmatch.c references it. |
| 3607 | - (dtucker) [Makefile.in configure.ac regress/addrmatch.sh] Skip IPv6 |
| 3608 | specific tests on platforms that don't do IPv6. |
Darren Tucker | 34f49c6 | 2008-06-11 05:15:51 +1000 | [diff] [blame] | 3609 | - (dtucker) [Makefile.in] Define TEST_SSH_IPV6 in make's arguments as well |
| 3610 | as environment. |
Darren Tucker | b8e0500 | 2008-06-11 09:47:59 +1000 | [diff] [blame] | 3611 | - (dtucker) [Makefile.in] Move addrmatch.o to libssh.a where it's needed now. |
Darren Tucker | 7a3935d | 2008-06-10 22:59:10 +1000 | [diff] [blame] | 3612 | |
Darren Tucker | 422c34c | 2008-06-09 22:48:31 +1000 | [diff] [blame] | 3613 | 20080609 |
| 3614 | - (dtucker) OpenBSD CVS Sync |
| 3615 | - dtucker@cvs.openbsd.org 2008/06/08 17:04:41 |
| 3616 | [sftp-server.c] |
| 3617 | Add case for ENOSYS in errno_to_portable; ok deraadt |
Darren Tucker | 7b59889 | 2008-06-09 22:49:36 +1000 | [diff] [blame] | 3618 | - dtucker@cvs.openbsd.org 2008/06/08 20:15:29 |
| 3619 | [sftp.c sftp-client.c sftp-client.h] |
| 3620 | Have the sftp client store the statvfs replies in wire format, |
| 3621 | which prevents problems when the server's native sizes exceed the |
| 3622 | client's. |
| 3623 | Also extends the sizes of the remaining 32bit wire format to 64bit, |
| 3624 | they're specified as unsigned long in the standard. |
Darren Tucker | 3463aca | 2008-06-09 23:06:55 +1000 | [diff] [blame] | 3625 | - dtucker@cvs.openbsd.org 2008/06/09 13:02:39 |
Darren Tucker | 588fe0e | 2008-06-09 23:52:22 +1000 | [diff] [blame] | 3626 | [sftp-server.c] |
Darren Tucker | 3463aca | 2008-06-09 23:06:55 +1000 | [diff] [blame] | 3627 | Extend 32bit -> 64bit values for statvfs extension missed in previous |
| 3628 | commit. |
Darren Tucker | 588fe0e | 2008-06-09 23:52:22 +1000 | [diff] [blame] | 3629 | - dtucker@cvs.openbsd.org 2008/06/09 13:38:46 |
| 3630 | [PROTOCOL] |
| 3631 | Use a $OpenBSD tag so our scripts will sync changes. |
Darren Tucker | 422c34c | 2008-06-09 22:48:31 +1000 | [diff] [blame] | 3632 | |
Darren Tucker | 598eaa6 | 2008-06-09 03:32:29 +1000 | [diff] [blame] | 3633 | 20080608 |
| 3634 | - (dtucker) [configure.ac defines.h sftp-client.c sftp-server.c sftp.c |
| 3635 | openbsd-compat/Makefile.in openbsd-compat/openbsd-compat.h |
| 3636 | openbsd-compat/bsd-statvfs.{c,h}] Add a null implementation of statvfs and |
| 3637 | fstatvfs and remove #defines around statvfs code. ok djm@ |
Darren Tucker | 7700138 | 2008-06-09 06:17:53 +1000 | [diff] [blame] | 3638 | - (dtucker) [configure.ac defines.h sftp-client.c M sftp-server.c] Add a |
| 3639 | macro to convert fsid to unsigned long for platforms where fsid is a |
| 3640 | 2-member array. |
Darren Tucker | 598eaa6 | 2008-06-09 03:32:29 +1000 | [diff] [blame] | 3641 | |
Darren Tucker | ce38d82 | 2008-06-07 06:25:15 +1000 | [diff] [blame] | 3642 | 20080607 |
| 3643 | - (dtucker) [mux.c] Include paths.h inside ifdef HAVE_PATHS_H. |
Darren Tucker | 5b2e2ba | 2008-06-08 09:25:28 +1000 | [diff] [blame] | 3644 | - (dtucker) [configure.ac defines.h sftp-client.c sftp-server.c sftp.c] |
| 3645 | Do not enable statvfs extensions on platforms that do not have statvfs. |
Darren Tucker | 136e56f | 2008-06-08 12:49:30 +1000 | [diff] [blame] | 3646 | - (dtucker) OpenBSD CVS Sync |
| 3647 | - djm@cvs.openbsd.org 2008/05/19 06:14:02 |
| 3648 | [packet.c] unbreak protocol keepalive timeouts bz#1465; ok dtucker@ |
Darren Tucker | dd39264 | 2008-06-08 12:53:20 +1000 | [diff] [blame] | 3649 | - djm@cvs.openbsd.org 2008/05/19 15:45:07 |
| 3650 | [sshtty.c ttymodes.c sshpty.h] |
| 3651 | Fix sending tty modes when stdin is not a tty (bz#1199). Previously |
| 3652 | we would send the modes corresponding to a zeroed struct termios, |
| 3653 | whereas we should have been sending an empty list of modes. |
| 3654 | Based on patch from daniel.ritz AT alcatel.ch; ok dtucker@ markus@ |
Darren Tucker | 0f7e910 | 2008-06-08 12:54:29 +1000 | [diff] [blame] | 3655 | - djm@cvs.openbsd.org 2008/05/19 15:46:31 |
| 3656 | [ssh-keygen.c] |
| 3657 | support -l (print fingerprint) in combination with -F (find host) to |
| 3658 | search for a host in ~/.ssh/known_hosts and display its fingerprint; |
| 3659 | ok markus@ |
Darren Tucker | df189fb | 2008-06-08 12:55:32 +1000 | [diff] [blame] | 3660 | - djm@cvs.openbsd.org 2008/05/19 20:53:52 |
| 3661 | [clientloop.c] |
| 3662 | unbreak tree by committing this bit that I missed from: |
| 3663 | Fix sending tty modes when stdin is not a tty (bz#1199). Previously |
| 3664 | we would send the modes corresponding to a zeroed struct termios, |
| 3665 | whereas we should have been sending an empty list of modes. |
| 3666 | Based on patch from daniel.ritz AT alcatel.ch; ok dtucker@ markus@ |
Darren Tucker | ce38d82 | 2008-06-07 06:25:15 +1000 | [diff] [blame] | 3667 | |
Damien Miller | 58ea61b | 2008-06-04 10:54:00 +1000 | [diff] [blame] | 3668 | 20080604 |
| 3669 | - (djm) [openbsd-compat/bsd-arc4random.c] Fix math bug that caused bias |
| 3670 | in arc4random_uniform with upper_bound in (2^30,2*31). Note that |
| 3671 | OpenSSH did not make requests with upper bounds in this range. |
| 3672 | |
Damien Miller | a7058ec | 2008-05-20 08:57:06 +1000 | [diff] [blame] | 3673 | 20080519 |
| 3674 | - (djm) [configure.ac mux.c sftp.c openbsd-compat/Makefile.in] |
| 3675 | [openbsd-compat/fmt_scaled.c openbsd-compat/openbsd-compat.h] |
| 3676 | Fix compilation on Linux, including pulling in fmt_scaled(3) |
| 3677 | implementation from OpenBSD's libutil. |
| 3678 | |
Damien Miller | 797e3d1 | 2008-05-19 14:27:42 +1000 | [diff] [blame] | 3679 | 20080518 |
| 3680 | - (djm) OpenBSD CVS Sync |
| 3681 | - djm@cvs.openbsd.org 2008/04/04 05:14:38 |
| 3682 | [sshd_config.5] |
| 3683 | ChrootDirectory is supported in Match blocks (in fact, it is most useful |
| 3684 | there). Spotted by Minstrel AT minstrel.org.uk |
Damien Miller | 56f41dd | 2008-05-19 14:28:19 +1000 | [diff] [blame] | 3685 | - djm@cvs.openbsd.org 2008/04/04 06:44:26 |
| 3686 | [sshd_config.5] |
| 3687 | oops, some unrelated stuff crept into that commit - backout. |
| 3688 | spotted by jmc@ |
Damien Miller | 25434de | 2008-05-19 14:29:08 +1000 | [diff] [blame] | 3689 | - djm@cvs.openbsd.org 2008/04/05 02:46:02 |
| 3690 | [sshd_config.5] |
| 3691 | HostbasedAuthentication is supported under Match too |
Damien Miller | a4be7c2 | 2008-05-19 14:47:37 +1000 | [diff] [blame] | 3692 | - (djm) [openbsd-compat/bsd-arc4random.c openbsd-compat/openbsd-compat.c] |
| 3693 | [configure.ac] Implement arc4random_buf(), import implementation of |
| 3694 | arc4random_uniform() from OpenBSD |
Damien Miller | caaed01 | 2008-05-19 15:26:54 +1000 | [diff] [blame] | 3695 | - (djm) [openbsd-compat/bsd-arc4random.c] Warning fixes |
Damien Miller | 9417831 | 2008-05-19 15:28:35 +1000 | [diff] [blame] | 3696 | - (djm) [openbsd-compat/port-tun.c] needs sys/queue.h |
Damien Miller | 354c48c | 2008-05-19 14:50:00 +1000 | [diff] [blame] | 3697 | - (djm) OpenBSD CVS Sync |
| 3698 | - djm@cvs.openbsd.org 2008/04/13 00:22:17 |
| 3699 | [dh.c sshd.c] |
| 3700 | Use arc4random_buf() when requesting more than a single word of output |
| 3701 | Use arc4random_uniform() when the desired random number upper bound |
| 3702 | is not a power of two |
| 3703 | ok deraadt@ millert@ |
Damien Miller | d671e5a | 2008-05-19 14:53:33 +1000 | [diff] [blame] | 3704 | - djm@cvs.openbsd.org 2008/04/18 12:32:11 |
| 3705 | [sftp-client.c sftp-client.h sftp-server.c sftp.1 sftp.c sftp.h] |
| 3706 | introduce sftp extension methods statvfs@openssh.com and |
| 3707 | fstatvfs@openssh.com that implement statvfs(2)-like operations, |
| 3708 | based on a patch from miklos AT szeredi.hu (bz#1399) |
| 3709 | also add a "df" command to the sftp client that uses the |
| 3710 | statvfs@openssh.com to produce a df(1)-like display of filesystem |
| 3711 | space and inode utilisation |
| 3712 | ok markus@ |
Damien Miller | 64058cb | 2008-05-19 14:54:25 +1000 | [diff] [blame] | 3713 | - jmc@cvs.openbsd.org 2008/04/18 17:15:47 |
| 3714 | [sftp.1] |
| 3715 | macro fixage; |
Damien Miller | ff0dd88 | 2008-05-19 14:55:02 +1000 | [diff] [blame] | 3716 | - djm@cvs.openbsd.org 2008/04/18 22:01:33 |
| 3717 | [session.c] |
| 3718 | remove unneccessary parentheses |
Damien Miller | 0b4c165 | 2008-05-19 14:55:29 +1000 | [diff] [blame] | 3719 | - otto@cvs.openbsd.org 2008/04/29 11:20:31 |
| 3720 | [monitor_mm.h] |
| 3721 | garbage collect two unused fields in struct mm_master; ok markus@ |
Damien Miller | bacb7fb | 2008-05-19 14:56:33 +1000 | [diff] [blame] | 3722 | - djm@cvs.openbsd.org 2008/04/30 10:14:03 |
| 3723 | [ssh-keyscan.1 ssh-keyscan.c] |
| 3724 | default to rsa (protocol 2) keys, instead of rsa1 keys; spotted by |
| 3725 | larsnooden AT openoffice.org |
Damien Miller | 4f755cd | 2008-05-19 14:57:41 +1000 | [diff] [blame] | 3726 | - pyr@cvs.openbsd.org 2008/05/07 05:49:37 |
| 3727 | [servconf.c servconf.h session.c sshd_config.5] |
| 3728 | Enable the AllowAgentForwarding option in sshd_config (global and match |
| 3729 | context), to specify if agents should be permitted on the server. |
| 3730 | As the man page states: |
| 3731 | ``Note that disabling Agent forwarding does not improve security |
| 3732 | unless users are also denied shell access, as they can always install |
| 3733 | their own forwarders.'' |
| 3734 | ok djm@, ok and a mild frown markus@ |
Damien Miller | ba3a659 | 2008-05-19 14:58:22 +1000 | [diff] [blame] | 3735 | - pyr@cvs.openbsd.org 2008/05/07 06:43:35 |
| 3736 | [sshd_config] |
| 3737 | push the sshd_config bits in, spotted by ajacoutot@ |
Damien Miller | e989019 | 2008-05-19 14:59:02 +1000 | [diff] [blame] | 3738 | - jmc@cvs.openbsd.org 2008/05/07 08:00:14 |
| 3739 | [sshd_config.5] |
| 3740 | sort; |
Damien Miller | db255ca | 2008-05-19 14:59:37 +1000 | [diff] [blame] | 3741 | - markus@cvs.openbsd.org 2008/05/08 06:59:01 |
| 3742 | [bufaux.c buffer.h channels.c packet.c packet.h] |
| 3743 | avoid extra malloc/copy/free when receiving data over the net; |
| 3744 | ~10% speedup for localhost-scp; ok djm@ |
Damien Miller | b84886b | 2008-05-19 15:05:07 +1000 | [diff] [blame] | 3745 | - djm@cvs.openbsd.org 2008/05/08 12:02:23 |
| 3746 | [auth-options.c auth1.c channels.c channels.h clientloop.c gss-serv.c] |
| 3747 | [monitor.c monitor_wrap.c nchan.c servconf.c serverloop.c session.c] |
| 3748 | [ssh.c sshd.c] |
| 3749 | Implement a channel success/failure status confirmation callback |
| 3750 | mechanism. Each channel maintains a queue of callbacks, which will |
| 3751 | be drained in order (RFC4253 guarantees confirm messages are not |
| 3752 | reordered within an channel). |
| 3753 | Also includes a abandonment callback to clean up if a channel is |
| 3754 | closed without sending confirmation messages. This probably |
| 3755 | shouldn't happen in compliant implementations, but it could be |
| 3756 | abused to leak memory. |
| 3757 | ok markus@ (as part of a larger diff) |
Damien Miller | 7207f64 | 2008-05-19 15:34:50 +1000 | [diff] [blame] | 3758 | - djm@cvs.openbsd.org 2008/05/08 12:21:16 |
| 3759 | [monitor.c monitor_wrap.c session.h servconf.c servconf.h session.c] |
| 3760 | [sshd_config sshd_config.5] |
| 3761 | Make the maximum number of sessions run-time controllable via |
| 3762 | a sshd_config MaxSessions knob. This is useful for disabling |
| 3763 | login/shell/subsystem access while leaving port-forwarding working |
| 3764 | (MaxSessions 0), disabling connection multiplexing (MaxSessions 1) or |
| 3765 | simply increasing the number of allows multiplexed sessions. |
| 3766 | Because some bozos are sure to configure MaxSessions in excess of the |
| 3767 | number of available file descriptors in sshd (which, at peak, might be |
| 3768 | as many as 9*MaxSessions), audit sshd to ensure that it doesn't leak fds |
| 3769 | on error paths, and make it fail gracefully on out-of-fd conditions - |
| 3770 | sending channel errors instead of than exiting with fatal(). |
| 3771 | bz#1090; MaxSessions config bits and manpage from junyer AT gmail.com |
| 3772 | ok markus@ |
Damien Miller | 5771ed7 | 2008-05-19 15:35:33 +1000 | [diff] [blame] | 3773 | - djm@cvs.openbsd.org 2008/05/08 13:06:11 |
| 3774 | [clientloop.c clientloop.h ssh.c] |
| 3775 | Use new channel status confirmation callback system to properly deal |
| 3776 | with "important" channel requests that fail, in particular command exec, |
| 3777 | shell and subsystem requests. Previously we would optimistically assume |
| 3778 | that the requests would always succeed, which could cause hangs if they |
| 3779 | did not (e.g. when the server runs out of fds) or were unimplemented by |
| 3780 | the server (bz #1384) |
| 3781 | Also, properly report failing multiplex channel requests via the mux |
| 3782 | client stderr (subject to LogLevel in the mux master) - better than |
| 3783 | silently failing. |
| 3784 | most bits ok markus@ (as part of a larger diff) |
Damien Miller | bd74025 | 2008-05-19 15:37:09 +1000 | [diff] [blame] | 3785 | - djm@cvs.openbsd.org 2008/05/09 04:55:56 |
| 3786 | [channels.c channels.h clientloop.c serverloop.c] |
| 3787 | Try additional addresses when connecting to a port forward destination |
| 3788 | whose DNS name resolves to more than one address. The previous behaviour |
| 3789 | was to try the first address and give up. |
| 3790 | Reported by stig AT venaas.com in bz#343 |
| 3791 | great feedback and ok markus@ |
Damien Miller | b1cbfa2 | 2008-05-19 16:00:08 +1000 | [diff] [blame] | 3792 | - djm@cvs.openbsd.org 2008/05/09 14:18:44 |
| 3793 | [clientloop.c clientloop.h ssh.c mux.c] |
| 3794 | tidy up session multiplexing code, moving it into its own file and |
| 3795 | making the function names more consistent - making ssh.c and |
| 3796 | clientloop.c a fair bit more readable. |
| 3797 | ok markus@ |
Damien Miller | b3da593 | 2008-05-19 16:02:37 +1000 | [diff] [blame] | 3798 | - djm@cvs.openbsd.org 2008/05/09 14:26:08 |
| 3799 | [ssh.c] |
| 3800 | dingo stole my diff hunk |
Damien Miller | 2ff1ca5 | 2008-05-19 16:04:56 +1000 | [diff] [blame] | 3801 | - markus@cvs.openbsd.org 2008/05/09 16:16:06 |
| 3802 | [session.c] |
| 3803 | re-add the USE_PIPES code and enable it. |
| 3804 | without pipes shutdown-read from the sshd does not trigger |
| 3805 | a SIGPIPE when the forked program does a write. |
| 3806 | ok djm@ |
| 3807 | (Id sync only, USE_PIPES never left portable OpenSSH) |
Damien Miller | d654dd2 | 2008-05-19 16:05:41 +1000 | [diff] [blame] | 3808 | - markus@cvs.openbsd.org 2008/05/09 16:17:51 |
| 3809 | [channels.c] |
| 3810 | error-fd race: don't enable the error fd in the select bitmask |
| 3811 | for channels with both in- and output closed, since the channel |
| 3812 | will go away before we call select(); |
| 3813 | report, lots of debugging help and ok djm@ |
Damien Miller | bab9bd4 | 2008-05-19 16:06:47 +1000 | [diff] [blame] | 3814 | - markus@cvs.openbsd.org 2008/05/09 16:21:13 |
| 3815 | [channels.h clientloop.c nchan.c serverloop.c] |
| 3816 | unbreak |
| 3817 | ssh -2 localhost od /bin/ls | true |
| 3818 | ignoring SIGPIPE by adding a new channel message (EOW) that signals |
| 3819 | the peer that we're not interested in any data it might send. |
| 3820 | fixes bz #85; discussion, debugging and ok djm@ |
Damien Miller | 0f30c87 | 2008-05-19 16:07:45 +1000 | [diff] [blame] | 3821 | - pvalchev@cvs.openbsd.org 2008/05/12 20:52:20 |
| 3822 | [umac.c] |
| 3823 | Ensure nh_result lies on a 64-bit boundary (fixes warnings observed |
| 3824 | on Itanium on Linux); from Dale Talcott (bug #1462); ok djm@ |
Damien Miller | 5159bdd | 2008-05-19 16:08:20 +1000 | [diff] [blame] | 3825 | - djm@cvs.openbsd.org 2008/05/15 23:52:24 |
| 3826 | [nchan2.ms] |
| 3827 | document eow message in ssh protocol 2 channel state machine; |
| 3828 | feedback and ok markus@ |
Damien Miller | a7e0d5a | 2008-05-19 16:08:41 +1000 | [diff] [blame] | 3829 | - djm@cvs.openbsd.org 2008/05/18 21:29:05 |
| 3830 | [sftp-server.c] |
| 3831 | comment extension announcement |
Damien Miller | 58a8114 | 2008-05-19 16:11:56 +1000 | [diff] [blame] | 3832 | - djm@cvs.openbsd.org 2008/05/16 08:30:42 |
| 3833 | [PROTOCOL] |
| 3834 | document our protocol extensions and deviations; ok markus@ |
| 3835 | - djm@cvs.openbsd.org 2008/05/17 01:31:56 |
| 3836 | [PROTOCOL] |
| 3837 | grammar and correctness fixes from stevesk@ |
Damien Miller | 797e3d1 | 2008-05-19 14:27:42 +1000 | [diff] [blame] | 3838 | |
Damien Miller | 5f5cd74 | 2008-04-03 08:43:57 +1100 | [diff] [blame] | 3839 | 20080403 |
Damien Miller | 55754fb | 2008-04-04 16:16:35 +1100 | [diff] [blame] | 3840 | - (djm) [openbsd-compat/bsd-poll.c] Include stdlib.h to avoid compile- |
| 3841 | time warnings on LynxOS. Patch from ops AT iki.fi |
Damien Miller | c575022 | 2008-05-16 10:01:54 +1000 | [diff] [blame] | 3842 | - (djm) Force string arguments to replacement setproctitle() though |
| 3843 | strnvis first. Ok dtucker@ |
Damien Miller | 55754fb | 2008-04-04 16:16:35 +1100 | [diff] [blame] | 3844 | |
| 3845 | 20080403 |
Damien Miller | 5f5cd74 | 2008-04-03 08:43:57 +1100 | [diff] [blame] | 3846 | - (djm) OpenBSD CVS sync: |
| 3847 | - markus@cvs.openbsd.org 2008/04/02 15:36:51 |
| 3848 | [channels.c] |
| 3849 | avoid possible hijacking of x11-forwarded connections (back out 1.183) |
| 3850 | CVE-2008-1483; ok djm@ |
Damien Miller | 13ba9c2 | 2008-04-03 20:52:51 +1100 | [diff] [blame] | 3851 | - jmc@cvs.openbsd.org 2008/03/27 22:37:57 |
| 3852 | [sshd.8] |
| 3853 | remove trailing whitespace; |
Damien Miller | a68d31b | 2008-04-03 20:53:08 +1100 | [diff] [blame] | 3854 | - djm@cvs.openbsd.org 2008/04/03 09:50:14 |
| 3855 | [version.h] |
| 3856 | openssh-5.0 |
Damien Miller | 5a4b646 | 2008-04-03 20:55:44 +1100 | [diff] [blame] | 3857 | - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] |
| 3858 | [contrib/suse/openssh.spec] Crank version numbers in RPM spec files |
Damien Miller | ffa8302 | 2008-04-03 20:56:38 +1100 | [diff] [blame] | 3859 | - (djm) [README] Update link to release notes |
Damien Miller | 79a1bc9 | 2008-04-03 20:57:05 +1100 | [diff] [blame] | 3860 | - (djm) Release 5.0p1 |