1commit 5c35450a0c901d9375fb23343a8dc82397da5f75 2Author: Damien Miller <djm@mindrot.org> 3Date: Thu Mar 10 05:04:48 2016 +1100 4 5 update versions for release 6 7commit 9d47b8d3f50c3a6282896df8274147e3b9a38c56 8Author: Damien Miller <djm@mindrot.org> 9Date: Thu Mar 10 05:03:39 2016 +1100 10 11 sanitise characters destined for xauth(1) 12 13 reported by github.com/tintinweb 14 15commit 72b061d4ba0f909501c595d709ea76e06b01e5c9 16Author: Darren Tucker <dtucker@zip.com.au> 17Date: Fri Feb 26 14:40:04 2016 +1100 18 19 Add a note about using xlc on AIX. 20 21commit fd4e4f2416baa2e6565ea49d52aade296bad3e28 22Author: Darren Tucker <dtucker@zip.com.au> 23Date: Wed Feb 24 10:44:25 2016 +1100 24 25 Skip PrintLastLog in config dump mode. 26 27 When DISABLE_LASTLOG is set, do not try to include PrintLastLog in the 28 config dump since it'll be reported as UNKNOWN. 29 30commit 99135c764fa250801da5ec3b8d06cbd0111caae8 31Author: Damien Miller <djm@mindrot.org> 32Date: Tue Feb 23 20:17:23 2016 +1100 33 34 update spec/README versions ahead of release 35 36commit b86a334aaaa4d1e643eb1fd71f718573d6d948b5 37Author: Damien Miller <djm@mindrot.org> 38Date: Tue Feb 23 20:16:53 2016 +1100 39 40 put back portable patchlevel to p1 41 42commit 555dd35ff176847e3c6bd068ba2e8db4022eb24f 43Author: djm@openbsd.org <djm@openbsd.org> 44Date: Tue Feb 23 09:14:34 2016 +0000 45 46 upstream commit 47 48 openssh-7.2 49 50 Upstream-ID: 9db776b26014147fc907ece8460ef2bcb0f11e78 51 52commit 1acc058d0a7913838c830ed998a1a1fb5b7864bf 53Author: Damien Miller <djm@mindrot.org> 54Date: Tue Feb 23 16:12:13 2016 +1100 55 56 Disable tests where fs perms are incorrect 57 58 Some tests have strict requirements on the filesystem permissions 59 for certain files and directories. This adds a regress/check-perm 60 tool that copies the relevant logic from sshd to exactly test 61 the paths in question. This lets us skip tests when the local 62 filesystem doesn't conform to our expectations rather than 63 continuing and failing the test run. 64 65 ok dtucker@ 66 67commit 39f303b1f36d934d8410b05625f25c7bcb75db4d 68Author: Damien Miller <djm@mindrot.org> 69Date: Tue Feb 23 12:56:59 2016 +1100 70 71 fix sandbox on OSX Lion 72 73 sshd was failing with: 74 75 ssh_sandbox_child: sandbox_init: dlopen(/usr/lib/libsandbox.1.dylib, 261):cw 76 image not found [preauth] 77 78 caused by chroot before sandboxing. Avoid by explicitly linking libsandbox 79 to sshd. Spotted by Darren. 80 81commit 0d1451a32c7436e6d3d482351e776bc5e7824ce4 82Author: djm@openbsd.org <djm@openbsd.org> 83Date: Tue Feb 23 01:34:14 2016 +0000 84 85 upstream commit 86 87 fix spurious error message when incorrect passphrase 88 entered for keys; reported by espie@ ok deraadt@ 89 90 Upstream-ID: 58b2e46e63ed6912ed1ee780bd3bd8560f9a5899 91 92commit 09d87d79741beb85768b5e788d7dfdf4bc3543dc 93Author: sobrado@openbsd.org <sobrado@openbsd.org> 94Date: Sat Feb 20 23:06:23 2016 +0000 95 96 upstream commit 97 98 set ssh(1) protocol version to 2 only. 99 100 ok djm@ 101 102 Upstream-ID: e168daf9d27d7e392e3c9923826bd8e87b2b3a10 103 104commit 9262e07826ba5eebf8423f7ac9e47ec488c47869 105Author: sobrado@openbsd.org <sobrado@openbsd.org> 106Date: Sat Feb 20 23:02:39 2016 +0000 107 108 upstream commit 109 110 add missing ~/.ssh/id_ecdsa and ~/.ssh/id_ed25519 to 111 IdentityFile. 112 113 ok djm@ 114 115 Upstream-ID: 6ce99466312e4ae7708017c3665e3edb976f70cf 116 117commit c12f0fdce8f985fca8d71829fd64c5b89dc777f5 118Author: sobrado@openbsd.org <sobrado@openbsd.org> 119Date: Sat Feb 20 23:01:46 2016 +0000 120 121 upstream commit 122 123 AddressFamily defaults to any. 124 125 ok djm@ 126 127 Upstream-ID: 0d94aa06a4b889bf57a7f631c45ba36d24c13e0c 128 129commit 907091acb188b1057d50c2158f74c3ecf1c2302b 130Author: Darren Tucker <dtucker@zip.com.au> 131Date: Fri Feb 19 09:05:39 2016 +1100 132 133 Make Solaris privs code build on older systems. 134 135 Not all systems with Solaris privs have priv_basicset so factor that 136 out and provide backward compatibility code. Similarly, not all have 137 PRIV_NET_ACCESS so wrap that in #ifdef. Based on code from 138 alex at cooperi.net and djm@ with help from carson at taltos.org and 139 wieland at purdue.edu. 140 141commit 292a8dee14e5e67dcd1b49ba5c7b9023e8420d59 142Author: djm@openbsd.org <djm@openbsd.org> 143Date: Wed Feb 17 22:20:14 2016 +0000 144 145 upstream commit 146 147 rekey refactor broke SSH1; spotted by Tom G. Christensen 148 149 Upstream-ID: 43f0d57928cc077c949af0bfa71ef574dcb58243 150 151commit 3a13cb543df9919aec2fc6b75f3dd3802facaeca 152Author: djm@openbsd.org <djm@openbsd.org> 153Date: Wed Feb 17 08:57:34 2016 +0000 154 155 upstream commit 156 157 rsa-sha2-512,rsa-sha2-256 cannot be selected explicitly 158 in *KeyTypes options yet. Remove them from the lists of algorithms for now. 159 committing on behalf of markus@ ok djm@ 160 161 Upstream-ID: c6e8820eb8e610ac21551832c0c89684a9a51bb7 162 163commit a685ae8d1c24fb7c712c55a4f3280ee76f5f1e4b 164Author: jmc@openbsd.org <jmc@openbsd.org> 165Date: Wed Feb 17 07:38:19 2016 +0000 166 167 upstream commit 168 169 since these pages now clearly tell folks to avoid v1, 170 normalise the docs from a v2 perspective (i.e. stop pointing out which bits 171 are v2 only); 172 173 ok/tweaks djm ok markus 174 175 Upstream-ID: eb474f8c36fb6a532dc05c282f7965e38dcfa129 176 177commit c5c3f3279a0e4044b8de71b70d3570d692d0f29d 178Author: djm@openbsd.org <djm@openbsd.org> 179Date: Wed Feb 17 05:29:04 2016 +0000 180 181 upstream commit 182 183 make sandboxed privilege separation the default, not just 184 for new installs; "absolutely" deraadt@ 185 186 Upstream-ID: 5221ef3b927d2df044e9aa3f5db74ae91743f69b 187 188commit eb3f7337a651aa01d5dec019025e6cdc124ed081 189Author: jmc@openbsd.org <jmc@openbsd.org> 190Date: Tue Feb 16 07:47:54 2016 +0000 191 192 upstream commit 193 194 no need to state that protocol 2 is the default twice; 195 196 Upstream-ID: b1e4c36b0c2e12e338e5b66e2978f2ac953b95eb 197 198commit e7901efa9b24e5b0c7e74f2c5520d47eead4d005 199Author: djm@openbsd.org <djm@openbsd.org> 200Date: Tue Feb 16 05:11:04 2016 +0000 201 202 upstream commit 203 204 Replace list of ciphers and MACs adjacent to -1/-2 flag 205 descriptions in ssh(1) with a strong recommendation not to use protocol 1. 206 Add a similar warning to the Protocol option descriptions in ssh_config(5) 207 and sshd_config(5); 208 209 prompted by and ok mmcc@ 210 211 Upstream-ID: 961f99e5437d50e636feca023978950a232ead5e 212 213commit 5a0fcb77287342e2fc2ba1cee79b6af108973dc2 214Author: djm@openbsd.org <djm@openbsd.org> 215Date: Tue Feb 16 03:37:48 2016 +0000 216 217 upstream commit 218 219 add a "Close session" log entry (at loglevel=verbose) to 220 correspond to the existing "Starting session" one. Also include the session 221 id number to make multiplexed sessions more apparent. 222 223 feedback and ok dtucker@ 224 225 Upstream-ID: e72d2ac080e02774376325136e532cb24c2e617c 226 227commit 624fd395b559820705171f460dd33d67743d13d6 228Author: djm@openbsd.org <djm@openbsd.org> 229Date: Wed Feb 17 02:24:17 2016 +0000 230 231 upstream commit 232 233 include bad $SSH_CONNECTION in failure output 234 235 Upstream-Regress-ID: b22d72edfde78c403aaec2b9c9753ef633cc0529 236 237commit 60d860e54b4f199e5e89963b1c086981309753cb 238Author: Darren Tucker <dtucker@zip.com.au> 239Date: Wed Feb 17 13:37:09 2016 +1100 240 241 Rollback addition of va_start. 242 243 va_start was added in 0f754e29dd3760fc0b172c1220f18b753fb0957e, however 244 it has the wrong number of args and it's not usable in non-variadic 245 functions anyway so it breaks things (for example Solaris 2.6 as 246 reported by Tom G. Christensen).i ok djm@ 247 248commit 2fee909c3cee2472a98b26eb82696297b81e0d38 249Author: Darren Tucker <dtucker@zip.com.au> 250Date: Wed Feb 17 09:48:15 2016 +1100 251 252 Look for gethostbyname in libresolv and libnsl. 253 254 Should fix build problem on Solaris 2.6 reported by Tom G. Christensen. 255 256commit 5ac712d81a84396aab441a272ec429af5b738302 257Author: Damien Miller <djm@mindrot.org> 258Date: Tue Feb 16 10:45:02 2016 +1100 259 260 make existing ssh_malloc_init only for __OpenBSD__ 261 262commit 24c9bded569d9f2449ded73f92fb6d12db7a9eec 263Author: djm@openbsd.org <djm@openbsd.org> 264Date: Mon Feb 15 23:32:37 2016 +0000 265 266 upstream commit 267 268 memleak of algorithm name in mm_answer_sign; reported by 269 Jakub Jelen 270 271 Upstream-ID: ccd742cd25952240ebd23d7d4d6b605862584d08 272 273commit ffb1e7e896139a42ceb78676f637658f44612411 274Author: dtucker@openbsd.org <dtucker@openbsd.org> 275Date: Mon Feb 15 09:47:49 2016 +0000 276 277 upstream commit 278 279 Add a function to enable security-related malloc_options. 280 With and ok deraadt@, something similar has been in the snaps for a while. 281 282 Upstream-ID: 43a95523b832b7f3b943d2908662191110c380ed 283 284commit ef39e8c0497ff0564990a4f9e8b7338b3ba3507c 285Author: Damien Miller <djm@mindrot.org> 286Date: Tue Feb 16 10:34:39 2016 +1100 287 288 sync ssh-copy-id with upstream 783ef08b0a75 289 290commit d2d772f55b19bb0e8d03c2fe1b9bb176d9779efd 291Author: djm@openbsd.org <djm@openbsd.org> 292Date: Fri Feb 12 00:20:30 2016 +0000 293 294 upstream commit 295 296 avoid fatal() for PKCS11 tokens that present empty key IDs 297 bz#1773, ok markus@ 298 299 Upstream-ID: 044a764fee526f2c4a9d530bd10695422d01fc54 300 301commit e4c918a6c721410792b287c9fd21356a1bed5805 302Author: djm@openbsd.org <djm@openbsd.org> 303Date: Thu Feb 11 02:56:32 2016 +0000 304 305 upstream commit 306 307 sync crypto algorithm lists in ssh_config(5) and 308 sshd_config(5) with current reality. bz#2527 309 310 Upstream-ID: d7fd1b6c1ed848d866236bcb1d7049d2bb9b2ff6 311 312commit e30cabfa4ab456a30b3224f7f545f1bdfc4a2517 313Author: djm@openbsd.org <djm@openbsd.org> 314Date: Thu Feb 11 02:21:34 2016 +0000 315 316 upstream commit 317 318 fix regression in openssh-6.8 sftp client: existing 319 destination directories would incorrectly terminate recursive uploads; 320 bz#2528 321 322 Upstream-ID: 3306be469f41f26758e3d447987ac6d662623e18 323 324commit 714e367226ded4dc3897078be48b961637350b05 325Author: djm@openbsd.org <djm@openbsd.org> 326Date: Tue Feb 9 05:30:04 2016 +0000 327 328 upstream commit 329 330 turn off more old crypto in the client: hmac-md5, ripemd, 331 truncated HMACs, RC4, blowfish. ok markus@ dtucker@ 332 333 Upstream-ID: 96aa11c2c082be45267a690c12f1d2aae6acd46e 334 335commit 5a622844ff7f78dcb75e223399f9ef0977e8d0a3 336Author: djm@openbsd.org <djm@openbsd.org> 337Date: Mon Feb 8 23:40:12 2016 +0000 338 339 upstream commit 340 341 don't attempt to percent_expand() already-canonicalised 342 addresses, avoiding unnecessary failures when attempting to connect to scoped 343 IPv6 addresses (that naturally contain '%' characters) 344 345 Upstream-ID: f24569cffa1a7cbde5f08dc739a72f4d78aa5c6a 346 347commit 19bcf2ea2d17413f2d9730dd2a19575ff86b9b6a 348Author: djm@openbsd.org <djm@openbsd.org> 349Date: Mon Feb 8 10:57:07 2016 +0000 350 351 upstream commit 352 353 refactor activation of rekeying 354 355 This makes automatic rekeying internal to the packet code (previously 356 the server and client loops needed to assist). In doing to it makes 357 application of rekey limits more accurate by accounting for packets 358 about to be sent as well as packets queued during rekeying events 359 themselves. 360 361 Based on a patch from dtucker@ which was in turn based on a patch 362 Aleksander Adamowski in bz#2521; ok markus@ 363 364 Upstream-ID: a441227fd64f9739850ca97b4cf794202860fcd8 365 366commit 603ba41179e4b53951c7b90ee95b6ef3faa3f15d 367Author: naddy@openbsd.org <naddy@openbsd.org> 368Date: Fri Feb 5 13:28:19 2016 +0000 369 370 upstream commit 371 372 Only check errno if read() has returned an error. EOF is 373 not an error. This fixes a problem where the mux master would sporadically 374 fail to notice that the client had exited. ok mikeb@ djm@ 375 376 Upstream-ID: 3c2dadc21fac6ef64665688aac8a75fffd57ae53 377 378commit 56d7dac790693ce420d225119283bc355cff9185 379Author: jsg@openbsd.org <jsg@openbsd.org> 380Date: Fri Feb 5 04:31:21 2016 +0000 381 382 upstream commit 383 384 avoid an uninitialised value when NumberOfPasswordPrompts 385 is 0 ok markus@ djm@ 386 387 Upstream-ID: 11b068d83c2865343aeb46acf1e9eec00f829b6b 388 389commit deae7d52d59c5019c528f977360d87fdda15d20b 390Author: djm@openbsd.org <djm@openbsd.org> 391Date: Fri Feb 5 03:07:06 2016 +0000 392 393 upstream commit 394 395 mention internal DH-GEX fallback groups; bz#2302 396 397 Upstream-ID: e7b395fcca3122cd825515f45a2e41c9a157e09e 398 399commit cac3b6665f884d46192c0dc98a64112e8b11a766 400Author: djm@openbsd.org <djm@openbsd.org> 401Date: Fri Feb 5 02:37:56 2016 +0000 402 403 upstream commit 404 405 better description for MaxSessions; bz#2531 406 407 Upstream-ID: e2c0d74ee185cd1a3e9d4ca1f1b939b745b354da 408 409commit 5ef4b0fdcc7a239577a754829b50022b91ab4712 410Author: Damien Miller <djm@mindrot.org> 411Date: Wed Jan 27 17:45:56 2016 +1100 412 413 avoid FreeBSD RCS Id in comment 414 415 Change old $FreeBSD version string in comment so it doesn't 416 become an RCS ident downstream; requested by des AT des.no 417 418commit 696d12683c90d20a0a9c5f4275fc916b7011fb04 419Author: djm@openbsd.org <djm@openbsd.org> 420Date: Thu Feb 4 23:43:48 2016 +0000 421 422 upstream commit 423 424 printf argument casts to avoid warnings on strict 425 compilers 426 427 Upstream-ID: 7b9f6712cef01865ad29070262d366cf13587c9c 428 429commit 5658ef2501e785fbbdf5de2dc33b1ff7a4dca73a 430Author: millert@openbsd.org <millert@openbsd.org> 431Date: Mon Feb 1 21:18:17 2016 +0000 432 433 upstream commit 434 435 Avoid ugly "DISPLAY "(null)" invalid; disabling X11 436 forwarding" message when DISPLAY is not set. This could also result in a 437 crash on systems with a printf that doesn't handle NULL. OK djm@ 438 439 Upstream-ID: 20ee0cfbda678a247264c20ed75362042b90b412 440 441commit 537f88ec7bcf40bd444ac5584c707c5588c55c43 442Author: dtucker@openbsd.org <dtucker@openbsd.org> 443Date: Fri Jan 29 05:18:15 2016 +0000 444 445 upstream commit 446 447 Add regression test for RekeyLimit parsing of >32bit values 448 (4G and 8G). 449 450 Upstream-Regress-ID: 548390350c62747b6234f522a99c319eee401328 451 452commit 4c6cb8330460f94e6c7ae28a364236d4188156a3 453Author: dtucker@openbsd.org <dtucker@openbsd.org> 454Date: Fri Jan 29 23:04:46 2016 +0000 455 456 upstream commit 457 458 Remove leftover roaming dead code. ok djm markus. 459 460 Upstream-ID: 13d1f9c8b65a5109756bcfd3b74df949d53615be 461 462commit 28136471809806d6246ef41e4341467a39fe2f91 463Author: djm@openbsd.org <djm@openbsd.org> 464Date: Fri Jan 29 05:46:01 2016 +0000 465 466 upstream commit 467 468 include packet type of non-data packets in debug3 output; 469 ok markus dtucker 470 471 Upstream-ID: 034eaf639acc96459b9c5ce782db9fcd8bd02d41 472 473commit 6fd6e28daccafaa35f02741036abe64534c361a1 474Author: dtucker@openbsd.org <dtucker@openbsd.org> 475Date: Fri Jan 29 03:31:03 2016 +0000 476 477 upstream commit 478 479 Revert "account for packets buffered but not yet 480 processed" change as it breaks for very small RekeyLimit values due to 481 continuous rekeying. ok djm@ 482 483 Upstream-ID: 7e03f636cb45ab60db18850236ccf19079182a19 484 485commit 921ff00b0ac429666fb361d2d6cb1c8fff0006cb 486Author: dtucker@openbsd.org <dtucker@openbsd.org> 487Date: Fri Jan 29 02:54:45 2016 +0000 488 489 upstream commit 490 491 Allow RekeyLimits in excess of 4G up to 2**63 bits 492 (limited by the return type of scan_scaled). Part of bz#2521, ok djm. 493 494 Upstream-ID: 13bea82be566b9704821b1ea05bf7804335c7979 495 496commit c0060a65296f01d4634f274eee184c0e93ba0f23 497Author: dtucker@openbsd.org <dtucker@openbsd.org> 498Date: Fri Jan 29 02:42:46 2016 +0000 499 500 upstream commit 501 502 Account for packets buffered but not yet processed when 503 computing whether or not it is time to perform rekeying. bz#2521, based 504 loosely on a patch from olo at fb.com, ok djm@ 505 506 Upstream-ID: 67e268b547f990ed220f3cb70a5624d9bda12b8c 507 508commit 44cf930e670488c85c9efeb373fa5f4b455692ac 509Author: djm@openbsd.org <djm@openbsd.org> 510Date: Wed Jan 27 06:44:58 2016 +0000 511 512 upstream commit 513 514 change old $FreeBSD version string in comment so it doesn't 515 become an RCS ident downstream; requested by des AT des.no 516 517 Upstream-ID: 8ca558c01f184e596b45e4fc8885534b2c864722 518 519commit ebacd377769ac07d1bf3c75169644336056b7060 520Author: djm@openbsd.org <djm@openbsd.org> 521Date: Wed Jan 27 00:53:12 2016 +0000 522 523 upstream commit 524 525 make the debug messages a bit more useful here 526 527 Upstream-ID: 478ccd4e897e0af8486b294aa63aa3f90ab78d64 528 529commit 458abc2934e82034c5c281336d8dc0f910aecad3 530Author: jsg@openbsd.org <jsg@openbsd.org> 531Date: Sat Jan 23 05:31:35 2016 +0000 532 533 upstream commit 534 535 Zero a stack buffer with explicit_bzero() instead of 536 memset() when returning from client_loop() for consistency with 537 buffer_free()/sshbuf_free(). 538 539 ok dtucker@ deraadt@ djm@ 540 541 Upstream-ID: bc9975b2095339811c3b954694d7d15ea5c58f66 542 543commit 65a3c0dacbc7dbb75ddb6a70ebe22d8de084d0b0 544Author: dtucker@openbsd.org <dtucker@openbsd.org> 545Date: Wed Jan 20 09:22:39 2016 +0000 546 547 upstream commit 548 549 Include sys/time.h for gettimeofday. From sortie at 550 maxsi.org. 551 552 Upstream-ID: 6ed0c33b836d9de0a664cd091e86523ecaa2fb3b 553 554commit fc77ccdc2ce6d5d06628b8da5048a6a5f6ffca5a 555Author: markus@openbsd.org <markus@openbsd.org> 556Date: Thu Jan 14 22:56:56 2016 +0000 557 558 upstream commit 559 560 fd leaks; report Qualys Security Advisory team; ok 561 deraadt@ 562 563 Upstream-ID: 4ec0f12b9d8fa202293c9effa115464185aa071d 564 565commit a306863831c57ec5fad918687cc5d289ee8e2635 566Author: markus@openbsd.org <markus@openbsd.org> 567Date: Thu Jan 14 16:17:39 2016 +0000 568 569 upstream commit 570 571 remove roaming support; ok djm@ 572 573 Upstream-ID: 2cab8f4b197bc95776fb1c8dc2859dad0c64dc56 574 575commit 6ef49e83e30688504552ac10875feabd5521565f 576Author: deraadt@openbsd.org <deraadt@openbsd.org> 577Date: Thu Jan 14 14:34:34 2016 +0000 578 579 upstream commit 580 581 Disable experimental client-side roaming support. Server 582 side was disabled/gutted for years already, but this aspect was surprisingly 583 forgotten. Thanks for report from Qualys 584 585 Upstream-ID: 2328004b58f431a554d4c1bf67f5407eae3389df 586 587commit 8d7b523b96d3be180572d9d338cedaafc0570f60 588Author: Damien Miller <djm@mindrot.org> 589Date: Thu Jan 14 11:08:19 2016 +1100 590 591 bump version numbers 592 593commit 8c3d512a1fac8b9c83b4d0c9c3f2376290bd84ca 594Author: Damien Miller <djm@mindrot.org> 595Date: Thu Jan 14 11:04:04 2016 +1100 596 597 openssh-7.1p2 598 599commit e6c85f8889c5c9eb04796fdb76d2807636b9eef5 600Author: Damien Miller <djm@mindrot.org> 601Date: Fri Jan 15 01:30:36 2016 +1100 602 603 forcibly disable roaming support in the client 604 605commit ed4ce82dbfa8a3a3c8ea6fa0db113c71e234416c 606Author: djm@openbsd.org <djm@openbsd.org> 607Date: Wed Jan 13 23:04:47 2016 +0000 608 609 upstream commit 610 611 eliminate fallback from untrusted X11 forwarding to trusted 612 forwarding when the X server disables the SECURITY extension; Reported by 613 Thomas Hoger; ok deraadt@ 614 615 Upstream-ID: f76195bd2064615a63ef9674a0e4096b0713f938 616 617commit 9a728cc918fad67c8a9a71201088b1e150340ba4 618Author: djm@openbsd.org <djm@openbsd.org> 619Date: Tue Jan 12 23:42:54 2016 +0000 620 621 upstream commit 622 623 use explicit_bzero() more liberally in the buffer code; ok 624 deraadt 625 626 Upstream-ID: 0ece37069fd66bc6e4f55eb1321f93df372b65bf 627 628commit 4626cbaf78767fc8e9c86dd04785386c59ae0839 629Author: Damien Miller <djm@mindrot.org> 630Date: Fri Jan 8 14:24:56 2016 +1100 631 632 Support Illumos/Solaris fine-grained privileges 633 634 Includes a pre-auth privsep sandbox and several pledge() 635 emulations. bz#2511, patch by Alex Wilson. 636 637 ok dtucker@ 638 639commit 422d1b3ee977ff4c724b597fb2e437d38fc8de9d 640Author: djm@openbsd.org <djm@openbsd.org> 641Date: Thu Dec 31 00:33:52 2015 +0000 642 643 upstream commit 644 645 fix three bugs in KRL code related to (unused) signature 646 support: verification length was being incorrectly calculated, multiple 647 signatures were being incorrectly processed and a NULL dereference that 648 occurred when signatures were verified. Reported by Carl Jackson 649 650 Upstream-ID: e705e97ad3ccce84291eaa651708dd1b9692576b 651 652commit 6074c84bf95d00f29cc7d5d3cd3798737851aa1a 653Author: djm@openbsd.org <djm@openbsd.org> 654Date: Wed Dec 30 23:46:14 2015 +0000 655 656 upstream commit 657 658 unused prototype 659 660 Upstream-ID: f3eef4389d53ed6c0d5c77dcdcca3060c745da97 661 662commit 6213f0e180e54122bb1ba928e11c784e2b4e5380 663Author: guenther@openbsd.org <guenther@openbsd.org> 664Date: Sat Dec 26 20:51:35 2015 +0000 665 666 upstream commit 667 668 Use pread/pwrite instead separate lseek+read/write for 669 lastlog. Cast to off_t before multiplication to avoid truncation on ILP32 670 671 ok kettenis@ mmcc@ 672 673 Upstream-ID: fc40092568cd195719ddf1a00aa0742340d616cf 674 675commit d7d2bc95045a43dd56ea696cc1d030ac9d77e81f 676Author: semarie@openbsd.org <semarie@openbsd.org> 677Date: Sat Dec 26 07:46:03 2015 +0000 678 679 upstream commit 680 681 adjust pledge promises for ControlMaster: when using 682 "ask" or "autoask", the process will use ssh-askpass for asking confirmation. 683 684 problem found by halex@ 685 686 ok halex@ 687 688 Upstream-ID: 38a58b30ae3eef85051c74d3c247216ec0735f80 689 690commit 271df8185d9689b3fb0523f58514481b858f6843 691Author: djm@openbsd.org <djm@openbsd.org> 692Date: Sun Dec 13 22:42:23 2015 +0000 693 694 upstream commit 695 696 unbreak connections with peers that set 697 first_kex_follows; fix from Matt Johnston va bz#2515 698 699 Upstream-ID: decc88ec4fc7515594fdb42b04aa03189a44184b 700 701commit 43849a47c5f8687699eafbcb5604f6b9c395179f 702Author: doug@openbsd.org <doug@openbsd.org> 703Date: Fri Dec 11 17:41:37 2015 +0000 704 705 upstream commit 706 707 Add "id" to ssh-agent pledge for subprocess support. 708 709 Found the hard way by Jan Johansson when using ssh-agent with X. Also, 710 rearranged proc/exec and retval to match other pledge calls in the tree. 711 712 ok djm@ 713 714 Upstream-ID: 914255f6850e5e7fa830a2de6c38605333b584db 715 716commit 52d7078421844b2f88329f5be3de370b0a938636 717Author: mmcc@openbsd.org <mmcc@openbsd.org> 718Date: Fri Dec 11 04:21:11 2015 +0000 719 720 upstream commit 721 722 Remove NULL-checks before sshbuf_free(). 723 724 ok djm@ 725 726 Upstream-ID: 5ebed00ed5f9f03b119a345085e8774565466917 727 728commit a4b9e0f4e4a6980a0eb8072f76ea611cab5b77e7 729Author: djm@openbsd.org <djm@openbsd.org> 730Date: Fri Dec 11 03:24:25 2015 +0000 731 732 upstream commit 733 734 include remote port number in a few more messages; makes 735 tying log messages together into a session a bit easier; bz#2503 ok dtucker@ 736 737 Upstream-ID: 9300dc354015f7a7368d94a8ff4a4266a69d237e 738 739commit 6091c362e89079397e68744ae30df121b0a72c07 740Author: djm@openbsd.org <djm@openbsd.org> 741Date: Fri Dec 11 03:20:09 2015 +0000 742 743 upstream commit 744 745 don't try to load SSHv1 private key when compiled without 746 SSHv1 support. From Iain Morgan bz#2505 747 748 Upstream-ID: 8b8e7b02a448cf5e5635979df2d83028f58868a7 749 750commit cce6a36bb95e81fa8bfb46daf22eabcf13afc352 751Author: djm@openbsd.org <djm@openbsd.org> 752Date: Fri Dec 11 03:19:09 2015 +0000 753 754 upstream commit 755 756 use SSH_MAX_PUBKEY_BYTES consistently as buffer size when 757 reading key files. Increase it to match the size of the buffers already being 758 used. 759 760 Upstream-ID: 1b60586b484b55a947d99a0b32bd25e0ced56fae 761 762commit 89540b6de025b80404a0cb8418c06377f3f98848 763Author: mmcc@openbsd.org <mmcc@openbsd.org> 764Date: Fri Dec 11 02:31:47 2015 +0000 765 766 upstream commit 767 768 Remove NULL-checks before sshkey_free(). 769 770 ok djm@ 771 772 Upstream-ID: 3e35afe8a25e021216696b5d6cde7f5d2e5e3f52 773 774commit 79394ed6d74572c2d2643d73937dad33727fc240 775Author: dtucker@openbsd.org <dtucker@openbsd.org> 776Date: Fri Dec 11 02:29:03 2015 +0000 777 778 upstream commit 779 780 fflush stdout so that output is seen even when running in 781 debug mode when output may otherwise not be flushed. Patch from dustin at 782 null-ptr.net. 783 784 Upstream-ID: b0c6b4cd2cdb01d7e9eefbffdc522e35b5bc4acc 785 786commit ee607cccb6636eb543282ba90e0677b0604d8b7a 787Author: Darren Tucker <dtucker@zip.com.au> 788Date: Tue Dec 15 15:23:49 2015 +1100 789 790 Increase robustness of redhat/openssh.spec 791 792 - remove configure --with-rsh, because this option isn't supported anymore 793 - replace last occurrence of BuildPreReq by BuildRequires 794 - update grep statement to query the krb5 include directory 795 796 Patch from CarstenGrohmann via github, ok djm. 797 798commit b5fa0cd73555b991a543145603658d7088ec6b60 799Author: Darren Tucker <dtucker@zip.com.au> 800Date: Tue Dec 15 15:10:32 2015 +1100 801 802 Allow --without-ssl-engine with --without-openssl 803 804 Patch from Mike Frysinger via github. 805 806commit c1d7e546f6029024f3257cc25c92f2bddf163125 807Author: Darren Tucker <dtucker@zip.com.au> 808Date: Tue Dec 15 14:27:09 2015 +1100 809 810 Include openssl crypto.h for SSLeay. 811 812 Patch from doughdemon via github. 813 814commit c6f5f01651526e88c00d988ce59d71f481ebac62 815Author: Darren Tucker <dtucker@zip.com.au> 816Date: Tue Dec 15 13:59:12 2015 +1100 817 818 Add sys/time.h for gettimeofday. 819 820 Should allow it it compile with MUSL libc. Based on patch from 821 doughdemon via github. 822 823commit 39736be06c7498ef57d6970f2d85cf066ae57c82 824Author: djm@openbsd.org <djm@openbsd.org> 825Date: Fri Dec 11 02:20:28 2015 +0000 826 827 upstream commit 828 829 correct error messages; from Tomas Kuthan bz#2507 830 831 Upstream-ID: 7454a0affeab772398052954c79300aa82077093 832 833commit 94141b7ade24afceeb6762a3f99e09e47a6c42b6 834Author: mmcc@openbsd.org <mmcc@openbsd.org> 835Date: Fri Dec 11 00:20:04 2015 +0000 836 837 upstream commit 838 839 Pass (char *)NULL rather than (char *)0 to execl and 840 execlp. 841 842 ok dtucker@ 843 844 Upstream-ID: 56c955106cbddba86c3dd9bbf786ac0d1b361492 845 846commit d59ce08811bf94111c2f442184cf7d1257ffae24 847Author: mmcc@openbsd.org <mmcc@openbsd.org> 848Date: Thu Dec 10 17:08:40 2015 +0000 849 850 upstream commit 851 852 Remove NULL-checks before free(). 853 854 ok dtucker@ 855 856 Upstream-ID: e3d3cb1ce900179906af36517b5eea0fb15e6ef8 857 858commit 8e56dd46cb37879c73bce2d6032cf5e7f82d5a71 859Author: mmcc@openbsd.org <mmcc@openbsd.org> 860Date: Thu Dec 10 07:01:35 2015 +0000 861 862 upstream commit 863 864 Fix a couple "the the" typos. ok dtucker@ 865 866 Upstream-ID: ec364c5af32031f013001fd28d1bd3dfacfe9a72 867 868commit 6262a0522ddc2c0f2e9358dcb68d59b46e9c533e 869Author: markus@openbsd.org <markus@openbsd.org> 870Date: Mon Dec 7 20:04:09 2015 +0000 871 872 upstream commit 873 874 stricter encoding type checks for ssh-rsa; ok djm@ 875 876 Upstream-ID: 8cca7c787599a5e8391e184d0b4f36fdc3665650 877 878commit d86a3ba7af160c13496102aed861ae48a4297072 879Author: Damien Miller <djm@mindrot.org> 880Date: Wed Dec 9 09:18:45 2015 +1100 881 882 Don't set IPV6_V6ONLY on OpenBSD 883 884 It isn't necessary and runs afoul of pledge(2) restrictions. 885 886commit da98c11d03d819a15429d8fff9688acd7505439f 887Author: djm@openbsd.org <djm@openbsd.org> 888Date: Mon Dec 7 02:20:46 2015 +0000 889 890 upstream commit 891 892 basic unit tests for rsa-sha2-* signature types 893 894 Upstream-Regress-ID: 7dc4b9db809d578ff104d591b4d86560c3598d3c 895 896commit 3da893fdec9936dd2c23739cdb3c0c9d4c59fca0 897Author: markus@openbsd.org <markus@openbsd.org> 898Date: Sat Dec 5 20:53:21 2015 +0000 899 900 upstream commit 901 902 prefer rsa-sha2-512 over -256 for hostkeys, too; noticed 903 by naddy@ 904 905 Upstream-ID: 685f55f7ec566a8caca587750672723a0faf3ffe 906 907commit 8b56e59714d87181505e4678f0d6d39955caf10e 908Author: tobias@openbsd.org <tobias@openbsd.org> 909Date: Fri Dec 4 21:51:06 2015 +0000 910 911 upstream commit 912 913 Properly handle invalid %-format by calling fatal. 914 915 ok deraadt, djm 916 917 Upstream-ID: 5692bce7d9f6eaa9c488cb93d3b55e758bef1eac 918 919commit 76c9fbbe35aabc1db977fb78e827644345e9442e 920Author: markus@openbsd.org <markus@openbsd.org> 921Date: Fri Dec 4 16:41:28 2015 +0000 922 923 upstream commit 924 925 implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures 926 (user and host auth) based on draft-rsa-dsa-sha2-256-03.txt and 927 draft-ssh-ext-info-04.txt; with & ok djm@ 928 929 Upstream-ID: cf82ce532b2733e5c4b34bb7b7c94835632db309 930 931commit 6064a8b8295cb5a17b5ebcfade53053377714f40 932Author: djm@openbsd.org <djm@openbsd.org> 933Date: Fri Dec 4 00:24:55 2015 +0000 934 935 upstream commit 936 937 clean up agent_fd handling; properly initialise it to -1 938 and make tests consistent 939 940 ok markus@ 941 942 Upstream-ID: ac9554323d5065745caf17b5e37cb0f0d4825707 943 944commit b91926a97620f3e51761c271ba57aa5db790f48d 945Author: semarie@openbsd.org <semarie@openbsd.org> 946Date: Thu Dec 3 17:00:18 2015 +0000 947 948 upstream commit 949 950 pledges ssh client: - mux client: which is used when 951 ControlMaster is in use. will end with "stdio proc tty" (proc is to 952 permit sending SIGWINCH to mux master on window resize) 953 954 - client loop: several levels of pledging depending of your used options 955 956 ok deraadt@ 957 958 Upstream-ID: 21676155a700e51f2ce911e33538e92a2cd1d94b 959 960commit bcce47466bbc974636f588b5e4a9a18ae386f64a 961Author: doug@openbsd.org <doug@openbsd.org> 962Date: Wed Dec 2 08:30:50 2015 +0000 963 964 upstream commit 965 966 Add "cpath" to the ssh-agent pledge so the cleanup 967 handler can unlink(). 968 969 ok djm@ 970 971 Upstream-ID: 9e632991d48241d56db645602d381253a3d8c29d 972 973commit a90d001543f46716b6590c6dcc681d5f5322f8cf 974Author: djm@openbsd.org <djm@openbsd.org> 975Date: Wed Dec 2 08:00:58 2015 +0000 976 977 upstream commit 978 979 ssh-agent pledge needs proc for askpass; spotted by todd@ 980 981 Upstream-ID: 349aa261b29cc0e7de47ef56167769c432630b2a 982 983commit d952162b3c158a8f23220587bb6c8fcda75da551 984Author: djm@openbsd.org <djm@openbsd.org> 985Date: Tue Dec 1 23:29:24 2015 +0000 986 987 upstream commit 988 989 basic pledge() for ssh-agent, more refinement needed 990 991 Upstream-ID: 5b5b03c88162fce549e45e1b6dd833f20bbb5e13 992 993commit f0191d7c8e76e30551084b79341886d9bb38e453 994Author: Damien Miller <djm@mindrot.org> 995Date: Mon Nov 30 10:53:25 2015 +1100 996 997 Revert "stub for pledge(2) for systems that lack it" 998 999 This reverts commit 14c887c8393adde2d9fd437d498be30f8c98535c. 1000 1001 dtucker beat me to it :/ 1002 1003commit 6283cc72eb0e49a3470d30e07ca99a1ba9e89676 1004Author: Damien Miller <djm@mindrot.org> 1005Date: Mon Nov 30 10:37:03 2015 +1100 1006 1007 revert 7d4c7513: bring back S/Key prototypes 1008 1009 (but leave RCSID changes) 1010 1011commit 14c887c8393adde2d9fd437d498be30f8c98535c 1012Author: Damien Miller <djm@mindrot.org> 1013Date: Mon Nov 30 09:45:29 2015 +1100 1014 1015 stub for pledge(2) for systems that lack it 1016 1017commit 452c0b6af5d14c37553e30059bf74456012493f3 1018Author: djm@openbsd.org <djm@openbsd.org> 1019Date: Sun Nov 29 22:18:37 2015 +0000 1020 1021 upstream commit 1022 1023 pledge, better fatal() messages; feedback deraadt@ 1024 1025 Upstream-ID: 3e00f6ccfe2b9a7a2d1dbba5409586180801488f 1026 1027commit 6da413c085dba37127687b2617a415602505729b 1028Author: deraadt@openbsd.org <deraadt@openbsd.org> 1029Date: Sat Nov 28 06:50:52 2015 +0000 1030 1031 upstream commit 1032 1033 do not leak temp file if there is no known_hosts file 1034 from craig leres, ok djm 1035 1036 Upstream-ID: c820497fd5574844c782e79405c55860f170e426 1037 1038commit 3ddd15e1b63a4d4f06c8ab16fbdd8a5a61764f16 1039Author: Darren Tucker <dtucker@zip.com.au> 1040Date: Mon Nov 30 07:23:53 2015 +1100 1041 1042 Add a null implementation of pledge. 1043 1044 Fixes builds on almost everything. 1045 1046commit b1d6b3971ef256a08692efc409fc9ada719111cc 1047Author: djm@openbsd.org <djm@openbsd.org> 1048Date: Sat Nov 28 06:41:03 2015 +0000 1049 1050 upstream commit 1051 1052 don't include port number in tcpip-forward replies for 1053 requests that don't allocate a port; bz#2509 diagnosed by Ron Frederick ok 1054 markus 1055 1056 Upstream-ID: 77efad818addb61ec638b5a2362f1554e21a970a 1057 1058commit 9080bd0b9cf10d0f13b1f642f20cb84285cb8d65 1059Author: deraadt@openbsd.org <deraadt@openbsd.org> 1060Date: Fri Nov 27 00:49:31 2015 +0000 1061 1062 upstream commit 1063 1064 pledge "stdio rpath wpath cpath fattr tty proc exec" 1065 except for the -p option (which sadly has insane semantics...) ok semarie 1066 dtucker 1067 1068 Upstream-ID: 8854bbd58279abe00f6c33f8094bdc02c8c65059 1069 1070commit 4d90625b229cf6b3551d81550a9861897509a65f 1071Author: halex@openbsd.org <halex@openbsd.org> 1072Date: Fri Nov 20 23:04:01 2015 +0000 1073 1074 upstream commit 1075 1076 allow comment change for all supported formats 1077 1078 ok djm@ 1079 1080 Upstream-ID: 5fc477cf2f119b2d44aa9c683af16cb00bb3744b 1081 1082commit 8ca915fc761519dd1f7766a550ec597a81db5646 1083Author: djm@openbsd.org <djm@openbsd.org> 1084Date: Fri Nov 20 01:45:29 2015 +0000 1085 1086 upstream commit 1087 1088 add cast to make -Werror clean 1089 1090 Upstream-ID: 288db4f8f810bd475be01320c198250a04ff064d 1091 1092commit ac9473580dcd401f8281305af98635cdaae9bf96 1093Author: Damien Miller <djm@mindrot.org> 1094Date: Fri Nov 20 12:35:41 2015 +1100 1095 1096 fix multiple authentication using S/Key w/ privsep 1097 1098 bz#2502, patch from Kevin Korb and feandil_ 1099 1100commit 88b6fcdeb87a2fb76767854d9eb15006662dca57 1101Author: djm@openbsd.org <djm@openbsd.org> 1102Date: Thu Nov 19 08:23:27 2015 +0000 1103 1104 upstream commit 1105 1106 ban ConnectionAttempts=0, it makes no sense and would cause 1107 ssh_connect_direct() to print an uninitialised stack variable; bz#2500 1108 reported by dvw AT phas.ubc.ca 1109 1110 Upstream-ID: 32b5134c608270583a90b93a07b3feb3cbd5f7d5 1111 1112commit 964ab3ee7a8f96bdbc963d5b5a91933d6045ebe7 1113Author: djm@openbsd.org <djm@openbsd.org> 1114Date: Thu Nov 19 01:12:32 2015 +0000 1115 1116 upstream commit 1117 1118 trailing whitespace 1119 1120 Upstream-ID: 31fe0ad7c4d08e87f1d69c79372f5e3c5cd79051 1121 1122commit f96516d052dbe38561f6b92b0e4365d8e24bb686 1123Author: djm@openbsd.org <djm@openbsd.org> 1124Date: Thu Nov 19 01:09:38 2015 +0000 1125 1126 upstream commit 1127 1128 print host certificate contents at debug level 1129 1130 Upstream-ID: 39354cdd8a2b32b308fd03f98645f877f540f00d 1131 1132commit 499cf36fecd6040e30e2912dd25655bc574739a7 1133Author: djm@openbsd.org <djm@openbsd.org> 1134Date: Thu Nov 19 01:08:55 2015 +0000 1135 1136 upstream commit 1137 1138 move the certificate validity formatting code to 1139 sshkey.[ch] 1140 1141 Upstream-ID: f05f7c78fab20d02ff1d5ceeda533ef52e8fe523 1142 1143commit bcb7bc77bbb1535d1008c7714085556f3065d99d 1144Author: djm@openbsd.org <djm@openbsd.org> 1145Date: Wed Nov 18 08:37:28 2015 +0000 1146 1147 upstream commit 1148 1149 fix "ssh-keygen -l" of private key, broken in support for 1150 multiple plain keys on stdin 1151 1152 Upstream-ID: 6b3132d2c62d03d0bad6f2bcd7e2d8b7dab5cd9d 1153 1154commit 259adb6179e23195c8f6913635ea71040d1ccd63 1155Author: millert@openbsd.org <millert@openbsd.org> 1156Date: Mon Nov 16 23:47:52 2015 +0000 1157 1158 upstream commit 1159 1160 Replace remaining calls to index(3) with strchr(3). OK 1161 jca@ krw@ 1162 1163 Upstream-ID: 33837d767a0cf1db1489b96055f9e330bc0bab6d 1164 1165commit c56a255162c2166884539c0a1f7511575325b477 1166Author: djm@openbsd.org <djm@openbsd.org> 1167Date: Mon Nov 16 22:53:07 2015 +0000 1168 1169 upstream commit 1170 1171 Allow fingerprinting from standard input "ssh-keygen -lf 1172 -" 1173 1174 Support fingerprinting multiple plain keys in a file and authorized_keys 1175 files too (bz#1319) 1176 1177 ok markus@ 1178 1179 Upstream-ID: 903f8b4502929d6ccf53509e4e07eae084574b77 1180 1181commit 5b4010d9b923cf1b46c9c7b1887c013c2967e204 1182Author: djm@openbsd.org <djm@openbsd.org> 1183Date: Mon Nov 16 22:51:05 2015 +0000 1184 1185 upstream commit 1186 1187 always call privsep_preauth_child() regardless of whether 1188 sshd was started by root; it does important priming before sandboxing and 1189 failing to call it could result in sandbox violations later; ok markus@ 1190 1191 Upstream-ID: c8a6d0d56c42f3faab38460dc917ca0d1705d383 1192 1193commit 3a9f84b58b0534bbb485f1eeab75665e2d03371f 1194Author: djm@openbsd.org <djm@openbsd.org> 1195Date: Mon Nov 16 22:50:01 2015 +0000 1196 1197 upstream commit 1198 1199 improve sshkey_read() semantics; only update *cpp when a 1200 key is successfully read; ok markus@ 1201 1202 Upstream-ID: f371e78e8f4fab366cf69a42bdecedaed5d1b089 1203 1204commit db6f8dc5dd5655b59368efd074994d4568bc3556 1205Author: logan@openbsd.org <logan@openbsd.org> 1206Date: Mon Nov 16 06:13:04 2015 +0000 1207 1208 upstream commit 1209 1210 1) Use xcalloc() instead of xmalloc() to check for 1211 potential overflow. (Feedback from both mmcc@ and djm@) 2) move set_size 1212 just before the for loop. (suggested by djm@) 1213 1214 OK djm@ 1215 1216 Upstream-ID: 013534c308187284756c3141f11d2c0f33c47213 1217 1218commit 383f10fb84a0fee3c01f9d97594f3e22aa3cd5e0 1219Author: djm@openbsd.org <djm@openbsd.org> 1220Date: Mon Nov 16 00:30:02 2015 +0000 1221 1222 upstream commit 1223 1224 Add a new authorized_keys option "restrict" that 1225 includes all current and future key restrictions (no-*-forwarding, etc). Also 1226 add permissive versions of the existing restrictions, e.g. "no-pty" -> "pty". 1227 This simplifies the task of setting up restricted keys and ensures they are 1228 maximally-restricted, regardless of any permissions we might implement in the 1229 future. 1230 1231 Example: 1232 1233 restrict,pty,command="nethack" ssh-ed25519 AAAAC3NzaC1lZDI1... 1234 1235 Idea from Jann Horn; ok markus@ 1236 1237 Upstream-ID: 04ceb9d448e46e67e13887a7ae5ea45b4f1719d0 1238 1239commit e41a071f7bda6af1fb3f081bed0151235fa61f15 1240Author: jmc@openbsd.org <jmc@openbsd.org> 1241Date: Sun Nov 15 23:58:04 2015 +0000 1242 1243 upstream commit 1244 1245 correct section number for ssh-agent; 1246 1247 Upstream-ID: 44be72fd8bcc167635c49b357b1beea8d5674bd6 1248 1249commit 1a11670286acddcc19f5eff0966c380831fc4638 1250Author: jmc@openbsd.org <jmc@openbsd.org> 1251Date: Sun Nov 15 23:54:15 2015 +0000 1252 1253 upstream commit 1254 1255 do not confuse mandoc by presenting "Dd"; 1256 1257 Upstream-ID: 1470fce171c47b60bbc7ecd0fc717a442c2cfe65 1258 1259commit f361df474c49a097bfcf16d1b7b5c36fcd844b4b 1260Author: jcs@openbsd.org <jcs@openbsd.org> 1261Date: Sun Nov 15 22:26:49 2015 +0000 1262 1263 upstream commit 1264 1265 Add an AddKeysToAgent client option which can be set to 1266 'yes', 'no', 'ask', or 'confirm', and defaults to 'no'. When enabled, a 1267 private key that is used during authentication will be added to ssh-agent if 1268 it is running (with confirmation enabled if set to 'confirm'). 1269 1270 Initial version from Joachim Schipper many years ago. 1271 1272 ok markus@ 1273 1274 Upstream-ID: a680db2248e8064ec55f8be72d539458c987d5f4 1275 1276commit d87063d9baf5479b6e813d47dfb694a97df6f6f5 1277Author: djm@openbsd.org <djm@openbsd.org> 1278Date: Fri Nov 13 04:39:35 2015 +0000 1279 1280 upstream commit 1281 1282 send SSH2_MSG_UNIMPLEMENTED replies to unexpected 1283 messages during KEX; bz#2949, ok dtucker@ 1284 1285 Upstream-ID: 2b3abdff344d53c8d505f45c83a7b12e84935786 1286 1287commit 9fd04681a1e9b0af21e08ff82eb674cf0a499bfc 1288Author: djm@openbsd.org <djm@openbsd.org> 1289Date: Fri Nov 13 04:38:06 2015 +0000 1290 1291 upstream commit 1292 1293 Support "none" as an argument for sshd_config 1294 ForceCommand and ChrootDirectory. Useful inside Match blocks to override a 1295 global default. bz#2486 ok dtucker@ 1296 1297 Upstream-ID: 7ef478d6592bc7db5c7376fc33b4443e63dccfa5 1298 1299commit 94bc0b72c29e511cbbc5772190d43282e5acfdfe 1300Author: djm@openbsd.org <djm@openbsd.org> 1301Date: Fri Nov 13 04:34:15 2015 +0000 1302 1303 upstream commit 1304 1305 support multiple certificates (one per line) and 1306 reading from standard input (using "-f -") for "ssh-keygen -L"; ok dtucker@ 1307 1308 Upstream-ID: ecbadeeef3926e5be6281689b7250a32a80e88db 1309 1310commit b6b9108f5b561c83612cb97ece4134eb59fde071 1311Author: djm@openbsd.org <djm@openbsd.org> 1312Date: Fri Nov 13 02:57:46 2015 +0000 1313 1314 upstream commit 1315 1316 list a couple more options usable in Match blocks; 1317 bz#2489 1318 1319 Upstream-ID: e4d03f39d254db4c0cc54101921bb89fbda19879 1320 1321commit a7994b3f5a5a5a33b52b0a6065d08e888f0a99fb 1322Author: djm@openbsd.org <djm@openbsd.org> 1323Date: Wed Nov 11 04:56:39 2015 +0000 1324 1325 upstream commit 1326 1327 improve PEEK/POKE macros: better casts, don't multiply 1328 evaluate arguments; ok deraadt@ 1329 1330 Upstream-ID: 9a1889e19647615ededbbabab89064843ba92d3e 1331 1332commit 7d4c7513a7f209cb303a608ac6e46b3f1dfc11ec 1333Author: djm@openbsd.org <djm@openbsd.org> 1334Date: Wed Nov 11 01:48:01 2015 +0000 1335 1336 upstream commit 1337 1338 remove prototypes for long-gone s/key support; ok 1339 dtucker@ 1340 1341 Upstream-ID: db5bed3c57118af986490ab23d399df807359a79 1342 1343commit 07889c75926c040b8e095949c724e66af26441cb 1344Author: Damien Miller <djm@mindrot.org> 1345Date: Sat Nov 14 18:44:49 2015 +1100 1346 1347 read back from libcrypto RAND when privdropping 1348 1349 makes certain libcrypto implementations cache a /dev/urandom fd 1350 in preparation of sandboxing. Based on patch by Greg Hartman. 1351 1352commit 1560596f44c01bb0cef977816410950ed17b8ecd 1353Author: Darren Tucker <dtucker@zip.com.au> 1354Date: Tue Nov 10 11:14:47 2015 +1100 1355 1356 Fix compiler warnings in the openssl header check. 1357 1358 Noted by Austin English. 1359 1360commit e72a8575ffe1d8adff42c9abe9ca36938acc036b 1361Author: jmc@openbsd.org <jmc@openbsd.org> 1362Date: Sun Nov 8 23:24:03 2015 +0000 1363 1364 upstream commit 1365 1366 -c before -H, in SYNOPSIS and usage(); 1367 1368 Upstream-ID: 25e8c58a69e1f37fcd54ac2cd1699370acb5e404 1369 1370commit 3a424cdd21db08c7b0ded902f97b8f02af5aa485 1371Author: djm@openbsd.org <djm@openbsd.org> 1372Date: Sun Nov 8 22:30:20 2015 +0000 1373 1374 upstream commit 1375 1376 Add "ssh-keyscan -c ..." flag to allow fetching 1377 certificates instead of plain keys; ok markus@ 1378 1379 Upstream-ID: 0947e2177dba92339eced9e49d3c5bf7dda69f82 1380 1381commit 69fead5d7cdaa73bdece9fcba80f8e8e70b90346 1382Author: jmc@openbsd.org <jmc@openbsd.org> 1383Date: Sun Nov 8 22:08:38 2015 +0000 1384 1385 upstream commit 1386 1387 remove slogin links; ok deraadt markus djm 1388 1389 Upstream-ID: 39ba08548acde4c54f2d4520c202c2a863a3c730 1390 1391commit 2fecfd486bdba9f51b3a789277bb0733ca36e1c0 1392Author: djm@openbsd.org <djm@openbsd.org> 1393Date: Sun Nov 8 21:59:11 2015 +0000 1394 1395 upstream commit 1396 1397 fix OOB read in packet code caused by missing return 1398 statement found by Ben Hawkes; ok markus@ deraadt@ 1399 1400 Upstream-ID: a3e3a85434ebfa0690d4879091959591f30efc62 1401 1402commit 5e288923a303ca672b686908320bc5368ebec6e6 1403Author: mmcc@openbsd.org <mmcc@openbsd.org> 1404Date: Fri Nov 6 00:31:41 2015 +0000 1405 1406 upstream commit 1407 1408 1. rlogin and rsh are long gone 2. protocol version isn't 1409 of core relevance here, and v1 is going away 1410 1411 ok markus@, deraadt@ 1412 1413 Upstream-ID: 8b46bc94cf1ca7c8c1a75b1c958b2bb38d7579c8 1414 1415commit 8b29008bbe97f33381d9b4b93fcfa304168d0286 1416Author: jmc@openbsd.org <jmc@openbsd.org> 1417Date: Thu Nov 5 09:48:05 2015 +0000 1418 1419 upstream commit 1420 1421 "commandline" -> "command line", since there are so few 1422 examples of the former in the pages, so many of the latter, and in some of 1423 these pages we had multiple spellings; 1424 1425 prompted by tj 1426 1427 Upstream-ID: 78459d59bff74223f8139d9001ccd56fc4310659 1428 1429commit 996b24cebf20077fbe5db07b3a2c20c2d9db736e 1430Author: Darren Tucker <dtucker@zip.com.au> 1431Date: Thu Oct 29 20:57:34 2015 +1100 1432 1433 (re)wrap SYS_sendsyslog in ifdef. 1434 1435 Replace ifdef that went missing in commit 1436 c61b42f2678f21f05653ac2d3d241b48ab5d59ac. Fixes build on older 1437 OpenBSDs. 1438 1439commit b67e2e76fcf1ae7c802eb27ca927e16c91a513ff 1440Author: djm@openbsd.org <djm@openbsd.org> 1441Date: Thu Oct 29 08:05:17 2015 +0000 1442 1443 upstream commit 1444 1445 regress test for "PubkeyAcceptedKeyTypes +..." inside a 1446 Match block 1447 1448 Upstream-Regress-ID: 246c37ed64a2e5704d4c158ccdca1ff700e10647 1449 1450commit abd9dbc3c0d8c8c7561347cfa22166156e78c077 1451Author: dtucker@openbsd.org <dtucker@openbsd.org> 1452Date: Mon Oct 26 02:50:58 2015 +0000 1453 1454 upstream commit 1455 1456 Fix typo certopt->certopts in shell variable. This would 1457 cause the test to hang at a host key prompt if you have an A or CNAME for 1458 "proxy" in your local domain. 1459 1460 Upstream-Regress-ID: 6ea03bcd39443a83c89e2c5606392ceb9585836a 1461 1462commit ed08510d38aef930a061ae30d10f2a9cf233bafa 1463Author: djm@openbsd.org <djm@openbsd.org> 1464Date: Thu Oct 29 08:05:01 2015 +0000 1465 1466 upstream commit 1467 1468 Fix "PubkeyAcceptedKeyTypes +..." inside a Match block; 1469 ok dtucker@ 1470 1471 Upstream-ID: 853662c4036730b966aab77684390c47b9738c69 1472 1473commit a4aef3ed29071719b2af82fdf1ac3c2514f82bc5 1474Author: djm@openbsd.org <djm@openbsd.org> 1475Date: Tue Oct 27 08:54:52 2015 +0000 1476 1477 upstream commit 1478 1479 fix execv arguments in a way less likely to cause grief 1480 for -portable; ok dtucker@ 1481 1482 Upstream-ID: 5902bf0ea0371f39f1300698dc3b8e4105fc0fc5 1483 1484commit 63d188175accea83305e89fafa011136ff3d96ad 1485Author: djm@openbsd.org <djm@openbsd.org> 1486Date: Tue Oct 27 01:44:45 2015 +0000 1487 1488 upstream commit 1489 1490 log certificate serial in verbose() messages to match the 1491 main auth success/fail message; ok dtucker@ 1492 1493 Upstream-ID: dfc48b417c320b97c36ff351d303c142f2186288 1494 1495commit 2aaba0cfd560ecfe92aa50c00750e6143842cf1f 1496Author: djm@openbsd.org <djm@openbsd.org> 1497Date: Tue Oct 27 00:49:53 2015 +0000 1498 1499 upstream commit 1500 1501 avoid de-const warning & shrink; ok dtucker@ 1502 1503 Upstream-ID: 69a85ef94832378952a22c172009cbf52aaa11db 1504 1505commit 03239c18312b9bab7d1c3b03062c61e8bbc1ca6e 1506Author: dtucker@openbsd.org <dtucker@openbsd.org> 1507Date: Sun Oct 25 23:42:00 2015 +0000 1508 1509 upstream commit 1510 1511 Expand tildes in filenames passed to -i before checking 1512 whether or not the identity file exists. This means that if the shell 1513 doesn't do the expansion (eg because the option and filename were given as a 1514 single argument) then we'll still add the key. bz#2481, ok markus@ 1515 1516 Upstream-ID: db1757178a14ac519e9a3e1a2dbd21113cb3bfc6 1517 1518commit 97e184e508dd33c37860c732c0eca3fc57698b40 1519Author: dtucker@openbsd.org <dtucker@openbsd.org> 1520Date: Sun Oct 25 23:14:03 2015 +0000 1521 1522 upstream commit 1523 1524 Do not prepend "exec" to the shell command run by "Match 1525 exec" in a config file. It's an unnecessary optimization from repurposed 1526 ProxyCommand code and prevents some things working with some shells. 1527 bz#2471, pointed out by res at qoxp.net. ok markus@ 1528 1529 Upstream-ID: a1ead25ae336bfa15fb58d8c6b5589f85b4c33a3 1530 1531commit 8db134e7f457bcb069ec72bc4ee722e2af557c69 1532Author: Darren Tucker <dtucker@zip.com.au> 1533Date: Thu Oct 29 10:48:23 2015 +1100 1534 1535 Prevent name collisions with system glob (bz#2463) 1536 1537 Move glob.h from includes.h to the only caller (sftp) and override the 1538 names for the symbols. This prevents name collisions with the system glob 1539 in the case where something other than ssh uses it (eg kerberos). With 1540 jjelen at redhat.com, ok djm@ 1541 1542commit 86c10dbbef6a5800d2431a66cf7f41a954bb62b5 1543Author: dtucker@openbsd.org <dtucker@openbsd.org> 1544Date: Fri Oct 23 02:22:01 2015 +0000 1545 1546 upstream commit 1547 1548 Update expected group sizes to match recent code changes. 1549 1550 Upstream-Regress-ID: 0004f0ea93428969fe75bcfff0d521c553977794 1551 1552commit 9ada37d36003a77902e90a3214981e417457cf13 1553Author: djm@openbsd.org <djm@openbsd.org> 1554Date: Sat Oct 24 22:56:19 2015 +0000 1555 1556 upstream commit 1557 1558 fix keyscan output for multiple hosts/addrs on one line 1559 when host hashing or a non standard port is in use; bz#2479 ok dtucker@ 1560 1561 Upstream-ID: 5321dabfaeceba343da3c8a8b5754c6f4a0a307b 1562 1563commit 44fc7cd7dcef6c52c6b7e9ff830dfa32879bd319 1564Author: djm@openbsd.org <djm@openbsd.org> 1565Date: Sat Oct 24 22:52:22 2015 +0000 1566 1567 upstream commit 1568 1569 skip "Could not chdir to home directory" message when 1570 chrooted 1571 1572 patch from Christian Hesse in bz#2485 ok dtucker@ 1573 1574 Upstream-ID: 86783c1953da426dff5b03b03ce46e699d9e5431 1575 1576commit a820a8618ec44735dabc688fab96fba38ad66bb2 1577Author: sthen@openbsd.org <sthen@openbsd.org> 1578Date: Sat Oct 24 08:34:09 2015 +0000 1579 1580 upstream commit 1581 1582 Handle the split of tun(4) "link0" into tap(4) in ssh 1583 tun-forwarding. Adapted from portable (using separate devices for this is the 1584 normal case in most OS). ok djm@ 1585 1586 Upstream-ID: 90facf4c59ce73d6741db1bc926e578ef465cd39 1587 1588commit 66d2e229baa9fe57b868c373b05f7ff3bb20055b 1589Author: gsoares@openbsd.org <gsoares@openbsd.org> 1590Date: Wed Oct 21 11:33:03 2015 +0000 1591 1592 upstream commit 1593 1594 fix memory leak in error path ok djm@ 1595 1596 Upstream-ID: dd2f402b0a0029b755df029fc7f0679e1365ce35 1597 1598commit 7d6c0362039ceacdc1366b5df29ad5d2693c13e5 1599Author: mmcc@openbsd.org <mmcc@openbsd.org> 1600Date: Tue Oct 20 23:24:25 2015 +0000 1601 1602 upstream commit 1603 1604 Compare pointers to NULL rather than 0. 1605 1606 ok djm@ 1607 1608 Upstream-ID: 21616cfea27eda65a06e772cc887530b9a1a27f8 1609 1610commit f98a09cacff7baad8748c9aa217afd155a4d493f 1611Author: mmcc@openbsd.org <mmcc@openbsd.org> 1612Date: Tue Oct 20 03:36:35 2015 +0000 1613 1614 upstream commit 1615 1616 Replace a function-local allocation with stack memory. 1617 1618 ok djm@ 1619 1620 Upstream-ID: c09fbbab637053a2ab9f33ca142b4e20a4c5a17e 1621 1622commit ac908c1eeacccfa85659594d92428659320fd57e 1623Author: Damien Miller <djm@mindrot.org> 1624Date: Thu Oct 22 09:35:24 2015 +1100 1625 1626 turn off PrintLastLog when --disable-lastlog 1627 1628 bz#2278 from Brent Paulson 1629 1630commit b56deb847f4a0115a8bf488bf6ee8524658162fd 1631Author: djm@openbsd.org <djm@openbsd.org> 1632Date: Fri Oct 16 22:32:22 2015 +0000 1633 1634 upstream commit 1635 1636 increase the minimum modulus that we will send or accept in 1637 diffie-hellman-group-exchange to 2048 bits; ok markus@ 1638 1639 Upstream-ID: 06dce7a24c17b999a0f5fadfe95de1ed6a1a9b6a 1640 1641commit 5ee0063f024bf5b3f3ffb275b8cd20055d62b4b9 1642Author: djm@openbsd.org <djm@openbsd.org> 1643Date: Fri Oct 16 18:40:49 2015 +0000 1644 1645 upstream commit 1646 1647 better handle anchored FQDNs (e.g. 'cvs.openbsd.org.') in 1648 hostname canonicalisation - treat them as already canonical and remove the 1649 trailing '.' before matching ssh_config; ok markus@ 1650 1651 Upstream-ID: f7619652e074ac3febe8363f19622aa4853b679a 1652 1653commit e92c499a75477ecfe94dd7b4aed89f20b1fac5a7 1654Author: mmcc@openbsd.org <mmcc@openbsd.org> 1655Date: Fri Oct 16 17:07:24 2015 +0000 1656 1657 upstream commit 1658 1659 0 -> NULL when comparing with a char*. 1660 1661 ok dtucker@, djm@. 1662 1663 Upstream-ID: a928e9c21c0a9020727d99738ff64027c1272300 1664 1665commit b1d38a3cc6fe349feb8d16a5f520ef12d1de7cb2 1666Author: djm@openbsd.org <djm@openbsd.org> 1667Date: Thu Oct 15 23:51:40 2015 +0000 1668 1669 upstream commit 1670 1671 fix some signed/unsigned integer type mismatches in 1672 format strings; reported by Nicholas Lemonias 1673 1674 Upstream-ID: 78cd55420a0eef68c4095bdfddd1af84afe5f95c 1675 1676commit 1a2663a15d356bb188196b6414b4c50dc12fd42b 1677Author: djm@openbsd.org <djm@openbsd.org> 1678Date: Thu Oct 15 23:08:23 2015 +0000 1679 1680 upstream commit 1681 1682 argument to sshkey_from_private() and sshkey_demote() 1683 can't be NULL 1684 1685 Upstream-ID: 0111245b1641d387977a9b38da15916820a5fd1f 1686 1687commit 0f754e29dd3760fc0b172c1220f18b753fb0957e 1688Author: Damien Miller <djm@mindrot.org> 1689Date: Fri Oct 16 10:53:14 2015 +1100 1690 1691 need va_copy before va_start 1692 1693 reported by Nicholas Lemonias 1694 1695commit eb6c50d82aa1f0d3fc95f5630ea69761e918bfcd 1696Author: Damien Miller <djm@mindrot.org> 1697Date: Thu Oct 15 15:48:28 2015 -0700 1698 1699 fix compilation on systems without SYMLOOP_MAX 1700 1701commit fafe1d84a210fb3dae7744f268059cc583db8c12 1702Author: Damien Miller <djm@mindrot.org> 1703Date: Wed Oct 14 09:22:15 2015 -0700 1704 1705 s/SANDBOX_TAME/SANDBOX_PLEDGE/g 1706 1707commit 8f22911027ff6c17d7226d232ccd20727f389310 1708Author: Damien Miller <djm@mindrot.org> 1709Date: Wed Oct 14 08:28:19 2015 +1100 1710 1711 upstream commit 1712 1713 revision 1.20 1714 date: 2015/10/13 20:55:37; author: millert; state: Exp; lines: +2 -2; commitid: X39sl5ay1czgFIgp; 1715 In rev 1.15 the sizeof argument was fixed in a strlcat() call but 1716 the truncation check immediately following it was not updated to 1717 match. Not an issue in practice since the buffers are the same 1718 size. OK deraadt@ 1719 1720commit 23fa695bb735f54f04d46123662609edb6c76767 1721Author: Damien Miller <djm@mindrot.org> 1722Date: Wed Oct 14 08:27:51 2015 +1100 1723 1724 upstream commit 1725 1726 revision 1.19 1727 date: 2015/01/16 16:48:51; author: deraadt; state: Exp; lines: +3 -3; commitid: 0DYulI8hhujBHMcR; 1728 Move to the <limits.h> universe. 1729 review by millert, binary checking process with doug, concept with guenther 1730 1731commit c71be375a69af00c2d0a0c24d8752bec12d8fd1b 1732Author: Damien Miller <djm@mindrot.org> 1733Date: Wed Oct 14 08:27:08 2015 +1100 1734 1735 upstream commit 1736 1737 revision 1.18 1738 date: 2014/10/19 03:56:28; author: doug; state: Exp; lines: +9 -9; commitid: U6QxmtbXrGoc02S5; 1739 Revert last commit due to changed semantics found by make release. 1740 1741commit c39ad23b06e9aecc3ff788e92f787a08472905b1 1742Author: Damien Miller <djm@mindrot.org> 1743Date: Wed Oct 14 08:26:24 2015 +1100 1744 1745 upstream commit 1746 1747 revision 1.17 1748 date: 2014/10/18 20:43:52; author: doug; state: Exp; lines: +10 -10; commitid: I74hI1tVZtsspKEt; 1749 Better POSIX compliance in realpath(3). 1750 1751 millert@ made changes to realpath.c based on FreeBSD's version. I merged 1752 Todd's changes into dl_realpath.c. 1753 1754 ok millert@, guenther@ 1755 1756commit e929a43f957dbd1254aca2aaf85c8c00cbfc25f4 1757Author: Damien Miller <djm@mindrot.org> 1758Date: Wed Oct 14 08:25:55 2015 +1100 1759 1760 upstream commit 1761 1762 revision 1.16 1763 date: 2013/04/05 12:59:54; author: kurt; state: Exp; lines: +3 -1; 1764 - Add comments regarding copies of these files also in libexec/ld.so 1765 okay guenther@ 1766 1767commit 5225db68e58a1048cb17f0e36e0d33bc4a8fc410 1768Author: Damien Miller <djm@mindrot.org> 1769Date: Wed Oct 14 08:25:32 2015 +1100 1770 1771 upstream commit 1772 1773 revision 1.15 1774 date: 2012/09/13 15:39:05; author: deraadt; state: Exp; lines: +2 -2; 1775 specify the bounds of the dst to strlcat (both values were static and 1776 equal, but it is more correct) 1777 from Michal Mazurek 1778 1779commit 7365fe5b4859de2305e40ea132da3823830fa710 1780Author: Damien Miller <djm@mindrot.org> 1781Date: Wed Oct 14 08:25:09 2015 +1100 1782 1783 upstream commit 1784 1785 revision 1.14 1786 date: 2011/07/24 21:03:00; author: miod; state: Exp; lines: +35 -13; 1787 Recent Single Unix will malloc memory if the second argument of realpath() 1788 is NULL, and third-party software is starting to rely upon this. 1789 Adapted from FreeBSD via Jona Joachim (jaj ; hcl-club , .lu), with minor 1790 tweaks from nicm@ and yours truly. 1791 1792commit e679c09cd1951f963793aa3d9748d1c3fdcf808f 1793Author: djm@openbsd.org <djm@openbsd.org> 1794Date: Tue Oct 13 16:15:21 2015 +0000 1795 1796 upstream commit 1797 1798 apply PubkeyAcceptedKeyTypes filtering earlier, so all 1799 skipped keys are noted before pubkey authentication starts. ok dtucker@ 1800 1801 Upstream-ID: ba4f52f54268a421a2a5f98bb375403f4cb044b8 1802 1803commit 179c353f564ec7ada64b87730b25fb41107babd7 1804Author: djm@openbsd.org <djm@openbsd.org> 1805Date: Tue Oct 13 00:21:27 2015 +0000 1806 1807 upstream commit 1808 1809 free the correct IV length, don't assume it's always the 1810 cipher blocksize; ok dtucker@ 1811 1812 Upstream-ID: c260d9e5ec73628d9ff4b067fbb060eff5a7d298 1813 1814commit 2539dce2a049a8f6bb0d44cac51f07ad48e691d3 1815Author: deraadt@openbsd.org <deraadt@openbsd.org> 1816Date: Fri Oct 9 01:37:08 2015 +0000 1817 1818 upstream commit 1819 1820 Change all tame callers to namechange to pledge(2). 1821 1822 Upstream-ID: 17e654fc27ceaf523c60f4ffd9ec7ae4e7efc7f2 1823 1824commit 9846a2f4067383bb76b4e31a9d2303e0a9c13a73 1825Author: Damien Miller <djm@mindrot.org> 1826Date: Thu Oct 8 04:30:48 2015 +1100 1827 1828 hook tame(2) sandbox up to build 1829 1830 OpenBSD only for now 1831 1832commit 0c46bbe68b70bdf0d6d20588e5847e71f3739fe6 1833Author: djm@openbsd.org <djm@openbsd.org> 1834Date: Wed Oct 7 15:59:12 2015 +0000 1835 1836 upstream commit 1837 1838 include PubkeyAcceptedKeyTypes in ssh -G config dump 1839 1840 Upstream-ID: 6c097ce6ffebf6fe393fb7988b5d152a5d6b36bb 1841 1842commit bdcb73fb7641b1cf73c0065d1a0dd57b1e8b778e 1843Author: sobrado@openbsd.org <sobrado@openbsd.org> 1844Date: Wed Oct 7 14:45:30 2015 +0000 1845 1846 upstream commit 1847 1848 UsePrivilegeSeparation defaults to sandbox now. 1849 1850 ok djm@ 1851 1852 Upstream-ID: bff136c38bcae89df82e044d2f42de21e1ad914f 1853 1854commit 2905d6f99c837bb699b6ebc61711b19acd030709 1855Author: djm@openbsd.org <djm@openbsd.org> 1856Date: Wed Oct 7 00:54:06 2015 +0000 1857 1858 upstream commit 1859 1860 don't try to change tun device flags if they are already 1861 what we need; makes it possible to use tun/tap networking as non- root user 1862 if device permissions and interface flags are pre-established; based on patch 1863 by Ossi Herrala 1864 1865 Upstream-ID: 89099ac4634cd477b066865acf54cb230780fd21 1866 1867commit 0dc74512bdb105b048883f07de538b37e5e024d4 1868Author: Damien Miller <djm@mindrot.org> 1869Date: Mon Oct 5 18:33:05 2015 -0700 1870 1871 unbreak merge botch 1872 1873commit fdd020e86439afa7f537e2429d29d4b744c94331 1874Author: djm@openbsd.org <djm@openbsd.org> 1875Date: Tue Oct 6 01:20:59 2015 +0000 1876 1877 upstream commit 1878 1879 adapt to recent sshkey_parse_private_fileblob() API 1880 change 1881 1882 Upstream-Regress-ID: 5c0d818da511e33e0abf6a92a31bd7163b7ad988 1883 1884commit 21ae8ee3b630b0925f973db647a1b9aa5fcdd4c5 1885Author: djm@openbsd.org <djm@openbsd.org> 1886Date: Thu Sep 24 07:15:39 2015 +0000 1887 1888 upstream commit 1889 1890 fix command-line option to match what was actually 1891 committed 1892 1893 Upstream-Regress-ID: 3e8c24a2044e8afd37e7ce17b69002ca817ac699 1894 1895commit e14ac43b75e68f1ffbd3e1a5e44143c8ae578dcd 1896Author: djm@openbsd.org <djm@openbsd.org> 1897Date: Thu Sep 24 06:16:53 2015 +0000 1898 1899 upstream commit 1900 1901 regress test for CertificateFile; patch from Meghana Bhat 1902 via bz#2436 1903 1904 Upstream-Regress-ID: e7a6e980cbe0f8081ba2e83de40d06c17be8bd25 1905 1906commit 905b054ed24e0d5b4ef226ebf2c8bfc02ae6d4ad 1907Author: djm@openbsd.org <djm@openbsd.org> 1908Date: Mon Oct 5 17:11:21 2015 +0000 1909 1910 upstream commit 1911 1912 some more bzero->explicit_bzero, from Michael McConville 1913 1914 Upstream-ID: 17f19545685c33327db2efdc357c1c9225ff00d0 1915 1916commit b007159a0acdbcf65814b3ee05dbe2cf4ea46011 1917Author: deraadt@openbsd.org <deraadt@openbsd.org> 1918Date: Fri Oct 2 15:52:55 2015 +0000 1919 1920 upstream commit 1921 1922 fix email 1923 1924 Upstream-ID: 72150f2d54b94de14ebef1ea054ef974281bf834 1925 1926commit b19e1b4ab11884c4f62aee9f8ab53127a4732658 1927Author: deraadt@openbsd.org <deraadt@openbsd.org> 1928Date: Fri Oct 2 01:39:52 2015 +0000 1929 1930 upstream commit 1931 1932 a sandbox using tame ok djm 1933 1934 Upstream-ID: 4ca24e47895e72f5daaa02f3e3d3e5ca2d820fa3 1935 1936commit c61b42f2678f21f05653ac2d3d241b48ab5d59ac 1937Author: deraadt@openbsd.org <deraadt@openbsd.org> 1938Date: Fri Oct 2 01:39:26 2015 +0000 1939 1940 upstream commit 1941 1942 re-order system calls in order of risk, ok i'll be 1943 honest, ordered this way they look like tame... ok djm 1944 1945 Upstream-ID: 42a1e6d251fd8be13c8262bee026059ae6328813 1946 1947commit c5f7c0843cb6e6074a93c8ac34e49ce33a6f5546 1948Author: jmc@openbsd.org <jmc@openbsd.org> 1949Date: Fri Sep 25 18:19:54 2015 +0000 1950 1951 upstream commit 1952 1953 some certificatefile tweaks; ok djm 1954 1955 Upstream-ID: 0e5a7852c28c05fc193419cc7e50e64c1c535af0 1956 1957commit 4e44a79a07d4b88b6a4e5e8c1bed5f58c841b1b8 1958Author: djm@openbsd.org <djm@openbsd.org> 1959Date: Thu Sep 24 06:15:11 2015 +0000 1960 1961 upstream commit 1962 1963 add ssh_config CertificateFile option to explicitly list 1964 a certificate; patch from Meghana Bhat on bz#2436; ok markus@ 1965 1966 Upstream-ID: 58648ec53c510b41c1f46d8fe293aadc87229ab8 1967 1968commit e3cbb06ade83c72b640a53728d362bbefa0008e2 1969Author: sobrado@openbsd.org <sobrado@openbsd.org> 1970Date: Tue Sep 22 08:33:23 2015 +0000 1971 1972 upstream commit 1973 1974 fix two typos. 1975 1976 Upstream-ID: 424402c0d8863a11b51749bacd7f8d932083b709 1977 1978commit 8408218c1ca88cb17d15278174a24a94a6f65fe1 1979Author: djm@openbsd.org <djm@openbsd.org> 1980Date: Mon Sep 21 04:31:00 2015 +0000 1981 1982 upstream commit 1983 1984 fix possible hang on closed output; bz#2469 reported by Tomas 1985 Kuthan ok markus@ 1986 1987 Upstream-ID: f7afd41810f8540f524284f1be6b970859f94fe3 1988 1989commit 0097248f90a00865082e8c146b905a6555cc146f 1990Author: djm@openbsd.org <djm@openbsd.org> 1991Date: Fri Sep 11 04:55:01 2015 +0000 1992 1993 upstream commit 1994 1995 skip if running as root; many systems (inc OpenBSD) allow 1996 root to ptrace arbitrary processes 1997 1998 Upstream-Regress-ID: be2b925df89360dff36f972951fa0fa793769038 1999 2000commit 9c06c814aff925e11a5cc592c06929c258a014f6 2001Author: djm@openbsd.org <djm@openbsd.org> 2002Date: Fri Sep 11 03:44:21 2015 +0000 2003 2004 upstream commit 2005 2006 try all supported key types here; bz#2455 reported by 2007 Jakub Jelen 2008 2009 Upstream-Regress-ID: 188cb7d9031cdbac3a0fa58b428b8fa2b2482bba 2010 2011commit 3c019a936b43f3e2773f3edbde7c114d73caaa4c 2012Author: tim@openbsd.org <tim@openbsd.org> 2013Date: Sun Sep 13 14:39:16 2015 +0000 2014 2015 upstream commit 2016 2017 - Fix error message: passphrase needs to be at least 5 2018 characters, not 4. - Remove unused function argument. - Remove two 2019 unnecessary variables. 2020 2021 OK djm@ 2022 2023 Upstream-ID: 13010c05bfa8b523da1c0dc19e81dd180662bc30 2024 2025commit 2681cdb6e0de7c1af549dac37a9531af202b4434 2026Author: tim@openbsd.org <tim@openbsd.org> 2027Date: Sun Sep 13 13:48:19 2015 +0000 2028 2029 upstream commit 2030 2031 When adding keys to the agent, don't ignore the comment 2032 of keys for which the user is prompted for a passphrase. 2033 2034 Tweak and OK djm@ 2035 2036 Upstream-ID: dc737c620a5a8d282cc4f66e3b9b624e9abefbec 2037 2038commit 14692f7b8251cdda847e648a82735eef8a4d2a33 2039Author: guenther@openbsd.org <guenther@openbsd.org> 2040Date: Fri Sep 11 08:50:04 2015 +0000 2041 2042 upstream commit 2043 2044 Use explicit_bzero() when zeroing before free() 2045 2046 from Michael McConville (mmcconv1 (at) sccs.swarthmore.edu) 2047 ok millert@ djm@ 2048 2049 Upstream-ID: 2e3337db046c3fe70c7369ee31515ac73ec00f50 2050 2051commit 846f6fa4cfa8483a9195971dbdd162220f199d85 2052Author: jmc@openbsd.org <jmc@openbsd.org> 2053Date: Fri Sep 11 06:55:46 2015 +0000 2054 2055 upstream commit 2056 2057 sync -Q in usage() to SYNOPSIS; since it's drastically 2058 shorter, i've reformatted the block to sync with the man (80 cols) and saved 2059 a line; 2060 2061 Upstream-ID: 86e2c65c3989a0777a6258a77e589b9f6f354abd 2062 2063commit 95923e0520a8647417ee6dcdff44694703dfeef0 2064Author: jmc@openbsd.org <jmc@openbsd.org> 2065Date: Fri Sep 11 06:51:39 2015 +0000 2066 2067 upstream commit 2068 2069 tweak previous; 2070 2071 Upstream-ID: f29b3cfcfd9aa31fa140c393e7bd48c1c74139d6 2072 2073commit 86ac462f833b05d8ed9de9c50ccb295d7faa79ff 2074Author: dtucker@openbsd.org <dtucker@openbsd.org> 2075Date: Fri Sep 11 05:27:02 2015 +0000 2076 2077 upstream commit 2078 2079 Update usage to match man page. 2080 2081 Upstream-ID: 9e85aefaecfb6aaf34c7cfd0700cd21783a35675 2082 2083commit 674b3b68c1d36b2562324927cd03857b565e05e8 2084Author: djm@openbsd.org <djm@openbsd.org> 2085Date: Fri Sep 11 03:47:28 2015 +0000 2086 2087 upstream commit 2088 2089 expand %i in ControlPath to UID; bz#2449 2090 2091 patch from Christian Hesse w/ feedback from dtucker@ 2092 2093 Upstream-ID: 2ba8d303e555a84e2f2165ab4b324b41e80ab925 2094 2095commit c0f55db7ee00c8202b05cb4b9ad4ce72cc45df41 2096Author: djm@openbsd.org <djm@openbsd.org> 2097Date: Fri Sep 11 03:42:32 2015 +0000 2098 2099 upstream commit 2100 2101 mention -Q key-plain and -Q key-cert; bz#2455 pointed out 2102 by Jakub Jelen 2103 2104 Upstream-ID: c8f1f8169332e4fa73ac96b0043e3b84e01d4896 2105 2106commit cfffbdb10fdf0f02d3f4232232eef7ec3876c383 2107Author: Darren Tucker <dtucker@zip.com.au> 2108Date: Mon Sep 14 16:24:21 2015 +1000 2109 2110 Use ssh-keygen -A when generating host keys. 2111 2112 Use ssh-keygen -A instead of per-keytype invocations when generating host 2113 keys. Add tests when doing host-key-force since we can't use ssh-keygen -A 2114 since it can't specify alternate locations. bz#2459, ok djm@ 2115 2116commit 366bada1e9e124654aac55b72b6ccf878755b0dc 2117Author: Darren Tucker <dtucker@zip.com.au> 2118Date: Fri Sep 11 13:29:22 2015 +1000 2119 2120 Correct default value for --with-ssh1. 2121 2122 bz#2457, from konto-mindrot.org at walimnieto.com. 2123 2124commit 2bca8a43e7dd9b04d7070824ffebb823c72587b2 2125Author: djm@openbsd.org <djm@openbsd.org> 2126Date: Fri Sep 11 03:13:36 2015 +0000 2127 2128 upstream commit 2129 2130 more clarity on what AuthorizedKeysFile=none does; based 2131 on diff by Thiebaud Weksteen 2132 2133 Upstream-ID: 78ab87f069080f0cc3bc353bb04eddd9e8ad3704 2134 2135commit 61942ea4a01e6db4fdf37ad61de81312ffe310e9 2136Author: djm@openbsd.org <djm@openbsd.org> 2137Date: Wed Sep 9 00:52:44 2015 +0000 2138 2139 upstream commit 2140 2141 openssh_RSA_verify return type is int, so don't make it 2142 size_t within the function itself with only negative numbers or zero assigned 2143 to it. bz#2460 2144 2145 Upstream-ID: b6e794b0c7fc4f9f329509263c8668d35f83ea55 2146 2147commit 4f7cc2f8cc861a21e6dbd7f6c25652afb38b9b96 2148Author: dtucker@openbsd.org <dtucker@openbsd.org> 2149Date: Fri Sep 4 08:21:47 2015 +0000 2150 2151 upstream commit 2152 2153 Plug minor memory leaks when options are used more than 2154 once. bz#2182, patch from Tiago Cunha, ok deraadt djm 2155 2156 Upstream-ID: 5b84d0401e27fe1614c10997010cc55933adb48e 2157 2158commit 7ad8b287c8453a3e61dbc0d34d467632b8b06fc8 2159Author: Darren Tucker <dtucker@zip.com.au> 2160Date: Fri Sep 11 13:11:02 2015 +1000 2161 2162 Force resolution of _res for correct detection. 2163 2164 bz#2259, from sconeu at yahoo.com. 2165 2166commit 26ad18247213ff72b4438abe7fc660c958810fa2 2167Author: Damien Miller <djm@mindrot.org> 2168Date: Thu Sep 10 10:57:41 2015 +1000 2169 2170 allow getrandom syscall; from Felix von Leitner 2171 2172commit 5245bc1e6b129a10a928f73f11c3aa32656c44b4 2173Author: jmc@openbsd.org <jmc@openbsd.org> 2174Date: Fri Sep 4 06:40:45 2015 +0000 2175 2176 upstream commit 2177 2178 full stop belongs outside the brackets, not inside; 2179 2180 Upstream-ID: 99d098287767799ac33d2442a05b5053fa5a551a 2181 2182commit a85768a9321d74b41219eeb3c9be9f1702cbf6a5 2183Author: djm@openbsd.org <djm@openbsd.org> 2184Date: Fri Sep 4 04:56:09 2015 +0000 2185 2186 upstream commit 2187 2188 add a debug2() right before DNS resolution; it's a place 2189 where ssh could previously silently hang for a while. bz#2433 2190 2191 Upstream-ID: 52a1a3e0748db66518e7598352c427145692a6a0 2192 2193commit 46152af8d27aa34d5d26ed1c371dc8aa142d4730 2194Author: djm@openbsd.org <djm@openbsd.org> 2195Date: Fri Sep 4 04:55:24 2015 +0000 2196 2197 upstream commit 2198 2199 correct function name in error messages 2200 2201 Upstream-ID: 92fb2798617ad9561370897f4ab60adef2ff4c0e 2202 2203commit a954cdb799a4d83c2d40fbf3e7b9f187fbfd72fc 2204Author: djm@openbsd.org <djm@openbsd.org> 2205Date: Fri Sep 4 04:47:50 2015 +0000 2206 2207 upstream commit 2208 2209 better document ExitOnForwardFailure; bz#2444, ok 2210 dtucker@ 2211 2212 Upstream-ID: a126209b5a6d9cb3117ac7ab5bc63d284538bfc2 2213 2214commit f54d8ac2474b6fc3afa081cf759b48a6c89d3319 2215Author: djm@openbsd.org <djm@openbsd.org> 2216Date: Fri Sep 4 04:44:08 2015 +0000 2217 2218 upstream commit 2219 2220 don't record hostbased authentication hostkeys as user 2221 keys in test for multiple authentication with the same key 2222 2223 Upstream-ID: 26b368fa2cff481f47f37e01b8da1ae5b57b1adc 2224 2225commit ac3451dd65f27ecf85dc045c46d49e2bbcb8dddd 2226Author: djm@openbsd.org <djm@openbsd.org> 2227Date: Fri Sep 4 03:57:38 2015 +0000 2228 2229 upstream commit 2230 2231 remove extra newline in nethack-mode hostkey; from 2232 Christian Hesse bz#2686 2233 2234 Upstream-ID: 4f56368b1cc47baeea0531912186f66007fd5b92 2235 2236commit 9e3ed9ebb1a7e47c155c28399ddf09b306ea05df 2237Author: djm@openbsd.org <djm@openbsd.org> 2238Date: Fri Sep 4 04:23:10 2015 +0000 2239 2240 upstream commit 2241 2242 trim junk from end of file; bz#2455 from Jakub Jelen 2243 2244 Upstream-Regress-ID: a4e64e8931e40d23874b047074444eff919cdfe6 2245 2246commit f3a3ea180afff080bab82087ee0b60db9fd84f6c 2247Author: jsg@openbsd.org <jsg@openbsd.org> 2248Date: Wed Sep 2 07:51:12 2015 +0000 2249 2250 upstream commit 2251 2252 Fix occurrences of "r = func() != 0" which result in the 2253 wrong error codes being returned due to != having higher precedence than =. 2254 2255 ok deraadt@ markus@ 2256 2257 Upstream-ID: 5fc35c9fc0319cc6fca243632662d2f06b5fd840 2258 2259commit f498a98cf83feeb7ea01c15cd1c98b3111361f3a 2260Author: Damien Miller <djm@mindrot.org> 2261Date: Thu Sep 3 09:11:22 2015 +1000 2262 2263 don't check for yp_match; ok tim@ 2264 2265commit 9690b78b7848b0b376980a61d51b1613e187ddb5 2266Author: djm@openbsd.org <djm@openbsd.org> 2267Date: Fri Aug 21 23:57:48 2015 +0000 2268 2269 upstream commit 2270 2271 Improve printing of KEX offers and decisions 2272 2273 The debug output now labels the client and server offers and the 2274 negotiated options. ok markus@ 2275 2276 Upstream-ID: 8db921b3f92a4565271b1c1fbce6e7f508e1a2cb 2277 2278commit 60a92470e21340e1a3fc10f9c7140d8e1519dc55 2279Author: djm@openbsd.org <djm@openbsd.org> 2280Date: Fri Aug 21 23:53:08 2015 +0000 2281 2282 upstream commit 2283 2284 Fix printing (ssh -G ...) of HostKeyAlgorithms=+... 2285 Reported by Bryan Drewery 2286 2287 Upstream-ID: 19ad20c41bd5971e006289b6f9af829dd46c1293 2288 2289commit 6310f60fffca2d1e464168e7d1f7e3b6b0268897 2290Author: djm@openbsd.org <djm@openbsd.org> 2291Date: Fri Aug 21 23:52:30 2015 +0000 2292 2293 upstream commit 2294 2295 Fix expansion of HostkeyAlgorithms=+... 2296 2297 Reported by Bryan Drewery 2298 2299 Upstream-ID: 70ca1deea39d758ba36d36428ae832e28566f78d 2300 2301commit e774e5ea56237fd626a8161f9005023dff3e76c9 2302Author: deraadt@openbsd.org <deraadt@openbsd.org> 2303Date: Fri Aug 21 23:29:31 2015 +0000 2304 2305 upstream commit 2306 2307 Improve size == 0, count == 0 checking in mm_zalloc, 2308 which is "array" like. Discussed with tedu, millert, otto.... and ok djm 2309 2310 Upstream-ID: 899b021be43b913fad3eca1aef44efe710c53e29 2311 2312commit 189de02d9ad6f3645417c0ddf359b923aae5f926 2313Author: Damien Miller <djm@mindrot.org> 2314Date: Fri Aug 21 15:45:02 2015 +1000 2315 2316 expose POLLHUP and POLLNVAL for netcat.c 2317 2318commit e91346dc2bbf460246df2ab591b7613908c1b0ad 2319Author: Damien Miller <djm@mindrot.org> 2320Date: Fri Aug 21 14:49:03 2015 +1000 2321 2322 we don't use Github for issues/pull-requests 2323 2324commit a4f5b507c708cc3dc2c8dd2d02e4416d7514dc23 2325Author: Damien Miller <djm@mindrot.org> 2326Date: Fri Aug 21 14:43:55 2015 +1000 2327 2328 fix URL for connect.c 2329 2330commit d026a8d3da0f8186598442997c7d0a28e7275414 2331Author: Damien Miller <djm@mindrot.org> 2332Date: Fri Aug 21 13:47:10 2015 +1000 2333 2334 update version numbers for 7.1 2335 2336commit 78f8f589f0ca1c9f41e5a9bae3cda5ce8a6b42ed 2337Author: djm@openbsd.org <djm@openbsd.org> 2338Date: Fri Aug 21 03:45:26 2015 +0000 2339 2340 upstream commit 2341 2342 openssh-7.1 2343 2344 Upstream-ID: ff7b1ef4b06caddfb45e08ba998128c88be3d73f 2345 2346commit 32a181980c62fce94f7f9ffaf6a79d90f0c309cf 2347Author: djm@openbsd.org <djm@openbsd.org> 2348Date: Fri Aug 21 03:42:19 2015 +0000 2349 2350 upstream commit 2351 2352 fix inverted logic that broke PermitRootLogin; reported 2353 by Mantas Mikulenas; ok markus@ 2354 2355 Upstream-ID: 260dd6a904c1bb7e43267e394b1c9cf70bdd5ea5 2356 2357commit ce445b0ed927e45bd5bdce8f836eb353998dd65c 2358Author: deraadt@openbsd.org <deraadt@openbsd.org> 2359Date: Thu Aug 20 22:32:42 2015 +0000 2360 2361 upstream commit 2362 2363 Do not cast result of malloc/calloc/realloc* if stdlib.h 2364 is in scope ok krw millert 2365 2366 Upstream-ID: 5e50ded78cadf3841556649a16cc4b1cb6c58667 2367 2368commit 05291e5288704d1a98bacda269eb5a0153599146 2369Author: naddy@openbsd.org <naddy@openbsd.org> 2370Date: Thu Aug 20 19:20:06 2015 +0000 2371 2372 upstream commit 2373 2374 In the certificates section, be consistent about using 2375 "host_key" and "user_key" for the respective key types. ok sthen@ deraadt@ 2376 2377 Upstream-ID: 9e037ea3b15577b238604c5533e082a3947f13cb 2378 2379commit 8543d4ef6f2e9f98c3e6b77c894ceec30c5e4ae4 2380Author: djm@openbsd.org <djm@openbsd.org> 2381Date: Wed Aug 19 23:21:42 2015 +0000 2382 2383 upstream commit 2384 2385 Better compat matching for WinSCP, add compat matching 2386 for FuTTY (fork of PuTTY); ok markus@ deraadt@ 2387 2388 Upstream-ID: 24001d1ac115fa3260fbdc329a4b9aeb283c5389 2389 2390commit ec6eda16ebab771aa3dfc90629b41953b999cb1e 2391Author: djm@openbsd.org <djm@openbsd.org> 2392Date: Wed Aug 19 23:19:01 2015 +0000 2393 2394 upstream commit 2395 2396 fix double-free() in error path of DSA key generation 2397 reported by Mateusz Kocielski; ok markus@ 2398 2399 Upstream-ID: 4735d8f888b10599a935fa1b374787089116713c 2400 2401commit 45b0eb752c94954a6de046bfaaf129e518ad4b5b 2402Author: djm@openbsd.org <djm@openbsd.org> 2403Date: Wed Aug 19 23:18:26 2015 +0000 2404 2405 upstream commit 2406 2407 fix free() of uninitialised pointer reported by Mateusz 2408 Kocielski; ok markus@ 2409 2410 Upstream-ID: 519552b050618501a06b7b023de5cb104e2c5663 2411 2412commit c837643b93509a3ef538cb6624b678c5fe32ff79 2413Author: djm@openbsd.org <djm@openbsd.org> 2414Date: Wed Aug 19 23:17:51 2015 +0000 2415 2416 upstream commit 2417 2418 fixed unlink([uninitialised memory]) reported by Mateusz 2419 Kocielski; ok markus@ 2420 2421 Upstream-ID: 14a0c4e7d891f5a8dabc4b89d4f6b7c0d5a20109 2422 2423commit 1f8d3d629cd553031021068eb9c646a5f1e50994 2424Author: jmc@openbsd.org <jmc@openbsd.org> 2425Date: Fri Aug 14 15:32:41 2015 +0000 2426 2427 upstream commit 2428 2429 match myproposal.h order; from brian conway (i snuck in a 2430 tweak while here) 2431 2432 ok dtucker 2433 2434 Upstream-ID: 35174a19b5237ea36aa3798f042bf5933b772c67 2435 2436commit 1dc8d93ce69d6565747eb44446ed117187621b26 2437Author: deraadt@openbsd.org <deraadt@openbsd.org> 2438Date: Thu Aug 6 14:53:21 2015 +0000 2439 2440 upstream commit 2441 2442 add prohibit-password as a synonymn for without-password, 2443 since the without-password is causing too many questions. Harden it to ban 2444 all but pubkey, hostbased, and GSSAPI auth (when the latter is enabled) from 2445 djm, ok markus 2446 2447 Upstream-ID: d53317d7b28942153e6236d3fd6e12ceb482db7a 2448 2449commit 90a95a4745a531b62b81ce3b025e892bdc434de5 2450Author: Damien Miller <djm@mindrot.org> 2451Date: Tue Aug 11 13:53:41 2015 +1000 2452 2453 update version in README 2454 2455commit 318c37743534b58124f1bab37a8a0087a3a9bd2f 2456Author: Damien Miller <djm@mindrot.org> 2457Date: Tue Aug 11 13:53:09 2015 +1000 2458 2459 update versions in *.spec 2460 2461commit 5e75f5198769056089fb06c4d738ab0e5abc66f7 2462Author: Damien Miller <djm@mindrot.org> 2463Date: Tue Aug 11 13:34:12 2015 +1000 2464 2465 set sshpam_ctxt to NULL after free 2466 2467 Avoids use-after-free in monitor when privsep child is compromised. 2468 Reported by Moritz Jodeit; ok dtucker@ 2469 2470commit d4697fe9a28dab7255c60433e4dd23cf7fce8a8b 2471Author: Damien Miller <djm@mindrot.org> 2472Date: Tue Aug 11 13:33:24 2015 +1000 2473 2474 Don't resend username to PAM; it already has it. 2475 2476 Pointed out by Moritz Jodeit; ok dtucker@ 2477 2478commit 88763a6c893bf3dfe951ba9271bf09715e8d91ca 2479Author: Darren Tucker <dtucker@zip.com.au> 2480Date: Mon Jul 27 12:14:25 2015 +1000 2481 2482 Import updated moduli file from OpenBSD. 2483 2484commit 55b263fb7cfeacb81aaf1c2036e0394c881637da 2485Author: Damien Miller <djm@mindrot.org> 2486Date: Mon Aug 10 11:13:44 2015 +1000 2487 2488 let principals-command.sh work for noexec /var/run 2489 2490commit 2651e34cd11b1aac3a0fe23b86d8c2ff35c07897 2491Author: Damien Miller <djm@mindrot.org> 2492Date: Thu Aug 6 11:43:42 2015 +1000 2493 2494 work around echo -n / sed behaviour in tests 2495 2496commit d85dad81778c1aa8106acd46930b25fdf0d15b2a 2497Author: djm@openbsd.org <djm@openbsd.org> 2498Date: Wed Aug 5 05:27:33 2015 +0000 2499 2500 upstream commit 2501 2502 adjust for RSA minimum modulus switch; ok deraadt@ 2503 2504 Upstream-Regress-ID: 5a72c83431b96224d583c573ca281cd3a3ebfdae 2505 2506commit 57e8e229bad5fe6056b5f1199665f5f7008192c6 2507Author: djm@openbsd.org <djm@openbsd.org> 2508Date: Tue Aug 4 05:23:06 2015 +0000 2509 2510 upstream commit 2511 2512 backout SSH_RSA_MINIMUM_MODULUS_SIZE increase for this 2513 release; problems spotted by sthen@ ok deraadt@ markus@ 2514 2515 Upstream-ID: d0bd60dde9e8c3cd7030007680371894c1499822 2516 2517commit f097d0ea1e0889ca0fa2e53a00214e43ab7fa22a 2518Author: djm@openbsd.org <djm@openbsd.org> 2519Date: Sun Aug 2 09:56:42 2015 +0000 2520 2521 upstream commit 2522 2523 openssh 7.0; ok deraadt@ 2524 2525 Upstream-ID: c63afdef537f57f28ae84145c5a8e29e9250221f 2526 2527commit 3d5728a0f6874ce4efb16913a12963595070f3a9 2528Author: chris@openbsd.org <chris@openbsd.org> 2529Date: Fri Jul 31 15:38:09 2015 +0000 2530 2531 upstream commit 2532 2533 Allow PermitRootLogin to be overridden by config 2534 2535 ok markus@ deeradt@ 2536 2537 Upstream-ID: 5cf3e26ed702888de84e2dc9d0054ccf4d9125b4 2538 2539commit 6f941396b6835ad18018845f515b0c4fe20be21a 2540Author: djm@openbsd.org <djm@openbsd.org> 2541Date: Thu Jul 30 23:09:15 2015 +0000 2542 2543 upstream commit 2544 2545 fix pty permissions; patch from Nikolay Edigaryev; ok 2546 deraadt 2547 2548 Upstream-ID: 40ff076d2878b916fbfd8e4f45dbe5bec019e550 2549 2550commit f4373ed1e8fbc7c8ce3fc4ea97d0ba2e0c1d7ef0 2551Author: deraadt@openbsd.org <deraadt@openbsd.org> 2552Date: Thu Jul 30 19:23:02 2015 +0000 2553 2554 upstream commit 2555 2556 change default: PermitRootLogin without-password matching 2557 install script changes coming as well ok djm markus 2558 2559 Upstream-ID: 0e2a6c4441daf5498b47a61767382bead5eb8ea6 2560 2561commit 0c30ba91f87fcda7e975e6ff8a057f624e87ea1c 2562Author: Damien Miller <djm@mindrot.org> 2563Date: Thu Jul 30 12:31:39 2015 +1000 2564 2565 downgrade OOM adjustment logging: verbose -> debug 2566 2567commit f9eca249d4961f28ae4b09186d7dc91de74b5895 2568Author: djm@openbsd.org <djm@openbsd.org> 2569Date: Thu Jul 30 00:01:34 2015 +0000 2570 2571 upstream commit 2572 2573 Allow ssh_config and sshd_config kex parameters options be 2574 prefixed by a '+' to indicate that the specified items be appended to the 2575 default rather than replacing it. 2576 2577 approach suggested by dtucker@, feedback dlg@, ok markus@ 2578 2579 Upstream-ID: 0f901137298fc17095d5756ff1561a7028e8882a 2580 2581commit 5cefe769105a2a2e3ca7479d28d9a325d5ef0163 2582Author: djm@openbsd.org <djm@openbsd.org> 2583Date: Wed Jul 29 08:34:54 2015 +0000 2584 2585 upstream commit 2586 2587 fix bug in previous; was printing incorrect string for 2588 failed host key algorithms negotiation 2589 2590 Upstream-ID: 22c0dc6bc61930513065d92e11f0753adc4c6e6e 2591 2592commit f319912b0d0e1675b8bb051ed8213792c788bcb2 2593Author: djm@openbsd.org <djm@openbsd.org> 2594Date: Wed Jul 29 04:43:06 2015 +0000 2595 2596 upstream commit 2597 2598 include the peer's offer when logging a failure to 2599 negotiate a mutual set of algorithms (kex, pubkey, ciphers, etc.) ok markus@ 2600 2601 Upstream-ID: bbb8caabf5c01790bb845f5ce135565248d7c796 2602 2603commit b6ea0e573042eb85d84defb19227c89eb74cf05a 2604Author: djm@openbsd.org <djm@openbsd.org> 2605Date: Tue Jul 28 23:20:42 2015 +0000 2606 2607 upstream commit 2608 2609 add Cisco to the list of clients that choke on the 2610 hostkeys update extension. Pointed out by Howard Kash 2611 2612 Upstream-ID: c9eadde28ecec056c73d09ee10ba4570dfba7e84 2613 2614commit 3f628c7b537291c1019ce86af90756fb4e66d0fd 2615Author: guenther@openbsd.org <guenther@openbsd.org> 2616Date: Mon Jul 27 16:29:23 2015 +0000 2617 2618 upstream commit 2619 2620 Permit kbind(2) use in the sandbox now, to ease testing 2621 of ld.so work using it 2622 2623 reminded by miod@, ok deraadt@ 2624 2625 Upstream-ID: 523922e4d1ba7a091e3824e77a8a3c818ee97413 2626 2627commit ebe27ebe520098bbc0fe58945a87ce8490121edb 2628Author: millert@openbsd.org <millert@openbsd.org> 2629Date: Mon Jul 20 18:44:12 2015 +0000 2630 2631 upstream commit 2632 2633 Move .Pp before .Bl, not after to quiet mandoc -Tlint. 2634 Noticed by jmc@ 2635 2636 Upstream-ID: 59fadbf8407cec4e6931e50c53cfa0214a848e23 2637 2638commit d5d91d0da819611167782c66ab629159169d94d4 2639Author: millert@openbsd.org <millert@openbsd.org> 2640Date: Mon Jul 20 18:42:35 2015 +0000 2641 2642 upstream commit 2643 2644 Sync usage with SYNOPSIS 2645 2646 Upstream-ID: 7a321a170181a54f6450deabaccb6ef60cf3f0b7 2647 2648commit 79ec2142fbc68dd2ed9688608da355fc0b1ed743 2649Author: millert@openbsd.org <millert@openbsd.org> 2650Date: Mon Jul 20 15:39:52 2015 +0000 2651 2652 upstream commit 2653 2654 Better desciption of Unix domain socket forwarding. 2655 bz#2423; ok jmc@ 2656 2657 Upstream-ID: 85e28874726897e3f26ae50dfa2e8d2de683805d 2658 2659commit d56fd1828074a4031b18b8faa0bf949669eb18a0 2660Author: Damien Miller <djm@mindrot.org> 2661Date: Mon Jul 20 11:19:51 2015 +1000 2662 2663 make realpath.c compile -Wsign-compare clean 2664 2665commit c63c9a691dca26bb7648827f5a13668832948929 2666Author: djm@openbsd.org <djm@openbsd.org> 2667Date: Mon Jul 20 00:30:01 2015 +0000 2668 2669 upstream commit 2670 2671 mention that the default of UseDNS=no implies that 2672 hostnames cannot be used for host matching in sshd_config and 2673 authorized_keys; bz#2045, ok dtucker@ 2674 2675 Upstream-ID: 0812705d5f2dfa59aab01f2764ee800b1741c4e1 2676 2677commit 63ebcd0005e9894fcd6871b7b80aeea1fec0ff76 2678Author: djm@openbsd.org <djm@openbsd.org> 2679Date: Sat Jul 18 08:02:17 2015 +0000 2680 2681 upstream commit 2682 2683 don't ignore PKCS#11 hosted keys that return empty 2684 CKA_ID; patch by Jakub Jelen via bz#2429; ok markus 2685 2686 Upstream-ID: 2f7c94744eb0342f8ee8bf97b2351d4e00116485 2687 2688commit b15fd989c8c62074397160147a8d5bc34b3f3c63 2689Author: djm@openbsd.org <djm@openbsd.org> 2690Date: Sat Jul 18 08:00:21 2015 +0000 2691 2692 upstream commit 2693 2694 skip uninitialised PKCS#11 slots; patch from Jakub Jelen 2695 in bz#2427 ok markus@ 2696 2697 Upstream-ID: 744c1e7796e237ad32992d0d02148e8a18f27d29 2698 2699commit 5b64f85bb811246c59ebab70aed331f26ba37b18 2700Author: djm@openbsd.org <djm@openbsd.org> 2701Date: Sat Jul 18 07:57:14 2015 +0000 2702 2703 upstream commit 2704 2705 only query each keyboard-interactive device once per 2706 authentication request regardless of how many times it is listed; ok markus@ 2707 2708 Upstream-ID: d73fafba6e86030436ff673656ec1f33d9ffeda1 2709 2710commit cd7324d0667794eb5c236d8a4e0f236251babc2d 2711Author: djm@openbsd.org <djm@openbsd.org> 2712Date: Fri Jul 17 03:34:27 2015 +0000 2713 2714 upstream commit 2715 2716 remove -u flag to diff (only used for error output) to make 2717 things easier for -portable 2718 2719 Upstream-Regress-ID: a5d6777d2909540d87afec3039d9bb2414ade548 2720 2721commit deb8d99ecba70b67f4af7880b11ca8768df9ec3a 2722Author: djm@openbsd.org <djm@openbsd.org> 2723Date: Fri Jul 17 03:09:19 2015 +0000 2724 2725 upstream commit 2726 2727 direct-streamlocal@openssh.com Unix domain foward 2728 messages do not contain a "reserved for future use" field and in fact, 2729 serverloop.c checks that there isn't one. Remove erroneous mention from 2730 PROTOCOL description. bz#2421 from Daniel Black 2731 2732 Upstream-ID: 3d51a19e64f72f764682f1b08f35a8aa810a43ac 2733 2734commit 356b61f365405b5257f5b2ab446e5d7bd33a7b52 2735Author: djm@openbsd.org <djm@openbsd.org> 2736Date: Fri Jul 17 03:04:27 2015 +0000 2737 2738 upstream commit 2739 2740 describe magic for setting up Unix domain socket fowards 2741 via the mux channel; bz#2422 patch from Daniel Black 2742 2743 Upstream-ID: 943080fe3864715c423bdeb7c920bb30c4eee861 2744 2745commit d3e2aee41487d55b8d7d40f538b84ff1db7989bc 2746Author: Darren Tucker <dtucker@zip.com.au> 2747Date: Fri Jul 17 12:52:34 2015 +1000 2748 2749 Check if realpath works on nonexistent files. 2750 2751 On some platforms the native realpath doesn't work with non-existent 2752 files (this is actually specified in some versions of POSIX), however 2753 the sftp spec says its realpath with "canonicalize any given path name". 2754 On those platforms, use realpath from the compat library. 2755 2756 In addition, when compiling with -DFORTIFY_SOURCE, glibc redefines 2757 the realpath symbol to the checked version, so redefine ours to 2758 something else so we pick up the compat version we want. 2759 2760 bz#2428, ok djm@ 2761 2762commit 25b14610dab655646a109db5ef8cb4c4bf2a48a0 2763Author: djm@openbsd.org <djm@openbsd.org> 2764Date: Fri Jul 17 02:47:45 2015 +0000 2765 2766 upstream commit 2767 2768 fix incorrect test for SSH1 keys when compiled without SSH1 2769 support 2770 2771 Upstream-ID: 6004d720345b8e481c405e8ad05ce2271726e451 2772 2773commit df56a8035d429b2184ee94aaa7e580c1ff67f73a 2774Author: djm@openbsd.org <djm@openbsd.org> 2775Date: Wed Jul 15 08:00:11 2015 +0000 2776 2777 upstream commit 2778 2779 fix NULL-deref when SSH1 reenabled 2780 2781 Upstream-ID: f22fd805288c92b3e9646782d15b48894b2d5295 2782 2783commit 41e38c4d49dd60908484e6703316651333f16b93 2784Author: djm@openbsd.org <djm@openbsd.org> 2785Date: Wed Jul 15 07:19:50 2015 +0000 2786 2787 upstream commit 2788 2789 regen RSA1 test keys; the last batch was missing their 2790 private parts 2791 2792 Upstream-Regress-ID: 7ccf437305dd63ff0b48dd50c5fd0f4d4230c10a 2793 2794commit 5bf0933184cb622ca3f96d224bf3299fd2285acc 2795Author: markus@openbsd.org <markus@openbsd.org> 2796Date: Fri Jul 10 06:23:25 2015 +0000 2797 2798 upstream commit 2799 2800 Adapt tests, now that DSA if off by default; use 2801 PubkeyAcceptedKeyTypes and PubkeyAcceptedKeyTypes to test DSA. 2802 2803 Upstream-Regress-ID: 0ff2a3ff5ac1ce5f92321d27aa07b98656efcc5c 2804 2805commit 7a6e3fd7b41dbd3756b6bf9acd67954c0b1564cc 2806Author: markus@openbsd.org <markus@openbsd.org> 2807Date: Tue Jul 7 14:54:16 2015 +0000 2808 2809 upstream commit 2810 2811 regen test data after mktestdata.sh changes 2812 2813 Upstream-Regress-ID: 3495ecb082b9a7c048a2d7c5c845d3bf181d25a4 2814 2815commit 7c8c174c69f681d4910fa41c37646763692b28e2 2816Author: markus@openbsd.org <markus@openbsd.org> 2817Date: Tue Jul 7 14:53:30 2015 +0000 2818 2819 upstream commit 2820 2821 adapt tests to new minimum RSA size and default FP format 2822 2823 Upstream-Regress-ID: a4b30afd174ce82b96df14eb49fb0b81398ffd0e 2824 2825commit 6a977a4b68747ade189e43d302f33403fd4a47ac 2826Author: djm@openbsd.org <djm@openbsd.org> 2827Date: Fri Jul 3 04:39:23 2015 +0000 2828 2829 upstream commit 2830 2831 legacy v00 certificates are gone; adapt and don't try to 2832 test them; "sure" markus@ dtucker@ 2833 2834 Upstream-Regress-ID: c57321e69b3cd4a3b3396dfcc43f0803d047da12 2835 2836commit 0c4123ad5e93fb90fee9c6635b13a6cdabaac385 2837Author: djm@openbsd.org <djm@openbsd.org> 2838Date: Wed Jul 1 23:11:18 2015 +0000 2839 2840 upstream commit 2841 2842 don't expect SSH v.1 in unittests 2843 2844 Upstream-Regress-ID: f8812b16668ba78e6a698646b2a652b90b653397 2845 2846commit 3c099845798a817cdde513c39074ec2063781f18 2847Author: djm@openbsd.org <djm@openbsd.org> 2848Date: Mon Jun 15 06:38:50 2015 +0000 2849 2850 upstream commit 2851 2852 turn SSH1 back on to match src/usr.bin/ssh being tested 2853 2854 Upstream-Regress-ID: 6c4f763a2f0cc6893bf33983919e9030ae638333 2855 2856commit b1dc2b33689668c75e95f873a42d5aea1f4af1db 2857Author: dtucker@openbsd.org <dtucker@openbsd.org> 2858Date: Mon Jul 13 04:57:14 2015 +0000 2859 2860 upstream commit 2861 2862 Add "PuTTY_Local:" to the clients to which we do not 2863 offer DH-GEX. This was the string that was used for development versions 2864 prior to September 2014 and they don't do RFC4419 DH-GEX, but unfortunately 2865 there are some extant products based on those versions. bx2424 from Jay 2866 Rouman, ok markus@ djm@ 2867 2868 Upstream-ID: be34d41e18b966832fe09ca243d275b81882e1d5 2869 2870commit 3a1638dda19bbc73d0ae02b4c251ce08e564b4b9 2871Author: markus@openbsd.org <markus@openbsd.org> 2872Date: Fri Jul 10 06:21:53 2015 +0000 2873 2874 upstream commit 2875 2876 Turn off DSA by default; add HostKeyAlgorithms to the 2877 server and PubkeyAcceptedKeyTypes to the client side, so it still can be 2878 tested or turned back on; feedback and ok djm@ 2879 2880 Upstream-ID: 8450a9e6d83f80c9bfed864ff061dfc9323cec21 2881 2882commit 16db0a7ee9a87945cc594d13863cfcb86038db59 2883Author: markus@openbsd.org <markus@openbsd.org> 2884Date: Thu Jul 9 09:49:46 2015 +0000 2885 2886 upstream commit 2887 2888 re-enable ed25519-certs if compiled w/o openssl; ok djm 2889 2890 Upstream-ID: e10c90808b001fd2c7a93778418e9b318f5c4c49 2891 2892commit c355bf306ac33de6545ce9dac22b84a194601e2f 2893Author: markus@openbsd.org <markus@openbsd.org> 2894Date: Wed Jul 8 20:24:02 2015 +0000 2895 2896 upstream commit 2897 2898 no need to include the old buffer/key API 2899 2900 Upstream-ID: fb13c9f7c0bba2545f3eb0a0e69cb0030819f52b 2901 2902commit a3cc48cdf9853f1e832d78cb29bedfab7adce1ee 2903Author: markus@openbsd.org <markus@openbsd.org> 2904Date: Wed Jul 8 19:09:25 2015 +0000 2905 2906 upstream commit 2907 2908 typedefs for Cipher&CipherContext are unused 2909 2910 Upstream-ID: 50e6a18ee92221d23ad173a96d5b6c42207cf9a7 2911 2912commit a635bd06b5c427a57c3ae760d3a2730bb2c863c0 2913Author: markus@openbsd.org <markus@openbsd.org> 2914Date: Wed Jul 8 19:04:21 2015 +0000 2915 2916 upstream commit 2917 2918 xmalloc.h is unused 2919 2920 Upstream-ID: afb532355b7fa7135a60d944ca1e644d1d63cb58 2921 2922commit 2521cf0e36c7f3f6b19f206da0af134f535e4a31 2923Author: markus@openbsd.org <markus@openbsd.org> 2924Date: Wed Jul 8 19:01:15 2015 +0000 2925 2926 upstream commit 2927 2928 compress.c is gone 2929 2930 Upstream-ID: 174fa7faa9b9643cba06164b5e498591356fbced 2931 2932commit c65a7aa6c43aa7a308ee1ab8a96f216169ae9615 2933Author: djm@openbsd.org <djm@openbsd.org> 2934Date: Fri Jul 3 04:05:54 2015 +0000 2935 2936 upstream commit 2937 2938 another SSH_RSA_MINIMUM_MODULUS_SIZE that needed 2939 cranking 2940 2941 Upstream-ID: 9d8826cafe96aab4ae8e2f6fd22800874b7ffef1 2942 2943commit b1f383da5cd3cb921fc7776f17a14f44b8a31757 2944Author: djm@openbsd.org <djm@openbsd.org> 2945Date: Fri Jul 3 03:56:25 2015 +0000 2946 2947 upstream commit 2948 2949 add an XXX reminder for getting correct key paths from 2950 sshd_config 2951 2952 Upstream-ID: feae52b209d7782ad742df04a4260e9fe41741db 2953 2954commit 933935ce8d093996c34d7efa4d59113163080680 2955Author: djm@openbsd.org <djm@openbsd.org> 2956Date: Fri Jul 3 03:49:45 2015 +0000 2957 2958 upstream commit 2959 2960 refuse to generate or accept RSA keys smaller than 1024 2961 bits; feedback and ok dtucker@ 2962 2963 Upstream-ID: 7ea3d31271366ba264f06e34a3539bf1ac30f0ba 2964 2965commit bdfd29f60b74f3e678297269dc6247a5699583c1 2966Author: djm@openbsd.org <djm@openbsd.org> 2967Date: Fri Jul 3 03:47:00 2015 +0000 2968 2969 upstream commit 2970 2971 turn off 1024 bit diffie-hellman-group1-sha1 key 2972 exchange method (already off in server, this turns it off in the client by 2973 default too) ok dtucker@ 2974 2975 Upstream-ID: f59b88f449210ab7acf7d9d88f20f1daee97a4fa 2976 2977commit c28fc62d789d860c75e23a9fa9fb250eb2beca57 2978Author: djm@openbsd.org <djm@openbsd.org> 2979Date: Fri Jul 3 03:43:18 2015 +0000 2980 2981 upstream commit 2982 2983 delete support for legacy v00 certificates; "sure" 2984 markus@ dtucker@ 2985 2986 Upstream-ID: b5b9bb5f9202d09e88f912989d74928601b6636f 2987 2988commit 564d63e1b4a9637a209d42a9d49646781fc9caef 2989Author: djm@openbsd.org <djm@openbsd.org> 2990Date: Wed Jul 1 23:10:47 2015 +0000 2991 2992 upstream commit 2993 2994 Compile-time disable SSH v.1 again 2995 2996 Upstream-ID: 1d4b513a3a06232f02650b73bad25100d1b800af 2997 2998commit 868109b650504dd9bcccdb1f51d0906f967c20ff 2999Author: djm@openbsd.org <djm@openbsd.org> 3000Date: Wed Jul 1 02:39:06 2015 +0000 3001 3002 upstream commit 3003 3004 twiddle PermitRootLogin back 3005 3006 Upstream-ID: 2bd23976305d0512e9f84d054e1fc23cd70b89f2 3007 3008commit 7de4b03a6e4071d454b72927ffaf52949fa34545 3009Author: djm@openbsd.org <djm@openbsd.org> 3010Date: Wed Jul 1 02:32:17 2015 +0000 3011 3012 upstream commit 3013 3014 twiddle; (this commit marks the openssh-6.9 release) 3015 3016 Upstream-ID: 78500582819f61dd8adee36ec5cc9b9ac9351234 3017 3018commit 1bf477d3cdf1a864646d59820878783d42357a1d 3019Author: djm@openbsd.org <djm@openbsd.org> 3020Date: Wed Jul 1 02:26:31 2015 +0000 3021 3022 upstream commit 3023 3024 better refuse ForwardX11Trusted=no connections attempted 3025 after ForwardX11Timeout expires; reported by Jann Horn 3026 3027 Upstream-ID: bf0fddadc1b46a0334e26c080038313b4b6dea21 3028 3029commit 47aa7a0f8551b471fcae0447c1d78464f6dba869 3030Author: djm@openbsd.org <djm@openbsd.org> 3031Date: Wed Jul 1 01:56:13 2015 +0000 3032 3033 upstream commit 3034 3035 put back default PermitRootLogin=no 3036 3037 Upstream-ID: 7bdedd5cead99c57ed5571f3b6b7840922d5f728 3038 3039commit 984b064fe2a23733733262f88d2e1b2a1a501662 3040Author: djm@openbsd.org <djm@openbsd.org> 3041Date: Wed Jul 1 01:55:13 2015 +0000 3042 3043 upstream commit 3044 3045 openssh-6.9 3046 3047 Upstream-ID: 6cfe8e1904812531080e6ab6e752d7001b5b2d45 3048 3049commit d921082ed670f516652eeba50705e1e9f6325346 3050Author: djm@openbsd.org <djm@openbsd.org> 3051Date: Wed Jul 1 01:55:00 2015 +0000 3052 3053 upstream commit 3054 3055 reset default PermitRootLogin to 'yes' (momentarily, for 3056 release) 3057 3058 Upstream-ID: cad8513527066e65dd7a1c16363d6903e8cefa24 3059 3060commit 66295e0e1ba860e527f191b6325d2d77dec4dbce 3061Author: Damien Miller <djm@mindrot.org> 3062Date: Wed Jul 1 11:49:12 2015 +1000 3063 3064 crank version numbers for release 3065 3066commit 37035c07d4f26bb1fbe000d2acf78efdb008681d 3067Author: Damien Miller <djm@mindrot.org> 3068Date: Wed Jul 1 10:49:37 2015 +1000 3069 3070 s/--with-ssh1/--without-ssh1/ 3071 3072commit 629df770dbadc2accfbe1c81b3f31f876d0acd84 3073Author: djm@openbsd.org <djm@openbsd.org> 3074Date: Tue Jun 30 05:25:07 2015 +0000 3075 3076 upstream commit 3077 3078 fatal() when a remote window update causes the window 3079 value to overflow. Reported by Georg Wicherski, ok markus@ 3080 3081 Upstream-ID: ead397a9aceb3bf74ebfa5fcaf259d72e569f351 3082 3083commit f715afebe735d61df3fd30ad72d9ac1c8bd3b5f2 3084Author: djm@openbsd.org <djm@openbsd.org> 3085Date: Tue Jun 30 05:23:25 2015 +0000 3086 3087 upstream commit 3088 3089 Fix math error in remote window calculations that causes 3090 eventual stalls for datagram channels. Reported by Georg Wicherski, ok 3091 markus@ 3092 3093 Upstream-ID: be54059d11bf64e0d85061f7257f53067842e2ab 3094 3095commit 52fb6b9b034fcfd24bf88cc7be313e9c31de9889 3096Author: Damien Miller <djm@mindrot.org> 3097Date: Tue Jun 30 16:05:40 2015 +1000 3098 3099 skip IPv6-related portions on hosts without IPv6 3100 3101 with Tim Rice 3102 3103commit 512caddf590857af6aa12218461b5c0441028cf5 3104Author: djm@openbsd.org <djm@openbsd.org> 3105Date: Mon Jun 29 22:35:12 2015 +0000 3106 3107 upstream commit 3108 3109 add getpid to sandbox, reachable by grace_alarm_handler 3110 3111 reported by Jakub Jelen; bz#2419 3112 3113 Upstream-ID: d0da1117c16d4c223954995d35b0f47c8f684cd8 3114 3115commit 78c2a4f883ea9aba866358e2acd9793a7f42ca93 3116Author: djm@openbsd.org <djm@openbsd.org> 3117Date: Fri Jun 26 05:13:20 2015 +0000 3118 3119 upstream commit 3120 3121 Fix \-escaping bug that caused forward path parsing to skip 3122 two characters and skip past the end of the string. 3123 3124 Based on patch by Salvador Fandino; ok dtucker@ 3125 3126 Upstream-ID: 7b879dc446335677cbe4cb549495636a0535f3bd 3127 3128commit bc20205c91c9920361d12b15d253d4997dba494a 3129Author: Damien Miller <djm@mindrot.org> 3130Date: Thu Jun 25 09:51:39 2015 +1000 3131 3132 add missing pselect6 3133 3134 patch from Jakub Jelen 3135 3136commit 9d27fb73b4a4e5e99cb880af790d5b1ce44f720a 3137Author: djm@openbsd.org <djm@openbsd.org> 3138Date: Wed Jun 24 23:47:23 2015 +0000 3139 3140 upstream commit 3141 3142 correct test to sshkey_sign(); spotted by Albert S. 3143 3144 Upstream-ID: 5f7347f40f0ca6abdaca2edb3bd62f4776518933 3145 3146commit 7ed01a96a1911d8b4a9ef4f3d064e1923bfad7e3 3147Author: dtucker@openbsd.org <dtucker@openbsd.org> 3148Date: Wed Jun 24 01:49:19 2015 +0000 3149 3150 upstream commit 3151 3152 Revert previous commit. We still want to call setgroups 3153 in the case where there are zero groups to remove any that we might otherwise 3154 inherit (as pointed out by grawity at gmail.com) and since the 2nd argument 3155 to setgroups is always a static global it's always valid to dereference in 3156 this case. ok deraadt@ djm@ 3157 3158 Upstream-ID: 895b5ac560a10befc6b82afa778641315725fd01 3159 3160commit 882f8bf94f79528caa65b0ba71c185d705bb7195 3161Author: dtucker@openbsd.org <dtucker@openbsd.org> 3162Date: Wed Jun 24 01:49:19 2015 +0000 3163 3164 upstream commit 3165 3166 Revert previous commit. We still want to call setgroups in 3167 the case where there are zero groups to remove any that we might otherwise 3168 inherit (as pointed out by grawity at gmail.com) and since the 2nd argument 3169 to setgroups is always a static global it's always valid to dereference in 3170 this case. ok deraadt@ djm@ 3171 3172 Upstream-ID: 895b5ac560a10befc6b82afa778641315725fd01 3173 3174commit 9488538a726951e82b3a4374f3c558d72c80a89b 3175Author: djm@openbsd.org <djm@openbsd.org> 3176Date: Mon Jun 22 23:42:16 2015 +0000 3177 3178 upstream commit 3179 3180 Don't count successful partial authentication as failures 3181 in monitor; this may have caused the monitor to refuse multiple 3182 authentications that would otherwise have successfully completed; ok markus@ 3183 3184 Upstream-ID: eb74b8e506714d0f649bd5c300f762a527af04a3 3185 3186commit 63b78d003bd8ca111a736e6cea6333da50f5f09b 3187Author: dtucker@openbsd.org <dtucker@openbsd.org> 3188Date: Mon Jun 22 12:29:57 2015 +0000 3189 3190 upstream commit 3191 3192 Don't call setgroups if we have zero groups; there's no 3193 guarantee that it won't try to deref the pointer. Based on a patch from mail 3194 at quitesimple.org, ok djm deraadt 3195 3196 Upstream-ID: 2fff85e11d7a9a387ef7fddf41fbfaf566708ab1 3197 3198commit 5c15e22c691c79a47747bcf5490126656f97cecd 3199Author: Damien Miller <djm@mindrot.org> 3200Date: Thu Jun 18 15:07:56 2015 +1000 3201 3202 fix syntax error 3203 3204commit 596dbca82f3f567fb3d2d69af4b4e1d3ba1e6403 3205Author: jsing@openbsd.org <jsing@openbsd.org> 3206Date: Mon Jun 15 18:44:22 2015 +0000 3207 3208 upstream commit 3209 3210 If AuthorizedPrincipalsCommand is specified, however 3211 AuthorizedPrincipalsFile is not (or is set to "none"), authentication will 3212 potentially fail due to key_cert_check_authority() failing to locate a 3213 principal that matches the username, even though an authorized principal has 3214 already been matched in the output of the subprocess. Fix this by using the 3215 same logic to determine if pw->pw_name should be passed, as is used to 3216 determine if a authorized principal must be matched earlier on. 3217 3218 ok djm@ 3219 3220 Upstream-ID: 43b42302ec846b0ea68aceb40677245391b9409d 3221 3222commit aff3e94c0d75d0d0fa84ea392b50ab04f8c57905 3223Author: jsing@openbsd.org <jsing@openbsd.org> 3224Date: Mon Jun 15 18:42:19 2015 +0000 3225 3226 upstream commit 3227 3228 Make the arguments to match_principals_command() similar 3229 to match_principals_file(), by changing the last argument a struct 3230 sshkey_cert * and dereferencing key->cert in the caller. 3231 3232 No functional change. 3233 3234 ok djm@ 3235 3236 Upstream-ID: 533f99b844b21b47342b32b62e198dfffcf8651c 3237 3238commit 97e2e1596c202a4693468378b16b2353fd2d6c5e 3239Author: Damien Miller <djm@mindrot.org> 3240Date: Wed Jun 17 14:36:54 2015 +1000 3241 3242 trivial optimisation for seccomp-bpf 3243 3244 When doing arg inspection and the syscall doesn't match, skip 3245 past the instruction that reloads the syscall into the accumulator, 3246 since the accumulator hasn't been modified at this point. 3247 3248commit 99f33d7304893bd9fa04d227cb6e870171cded19 3249Author: Damien Miller <djm@mindrot.org> 3250Date: Wed Jun 17 10:50:51 2015 +1000 3251 3252 aarch64 support for seccomp-bpf sandbox 3253 3254 Also resort and tidy syscall list. Based on patches by Jakub Jelen 3255 bz#2361; ok dtucker@ 3256 3257commit 4ef702e1244633c1025ec7cfe044b9ab267097bf 3258Author: djm@openbsd.org <djm@openbsd.org> 3259Date: Mon Jun 15 01:32:50 2015 +0000 3260 3261 upstream commit 3262 3263 return failure on RSA signature error; reported by Albert S 3264 3265 Upstream-ID: e61bb93dbe0349625807b0810bc213a6822121fa 3266 3267commit a170f22baf18af0b1acf2788b8b715605f41a1f9 3268Author: Tim Rice <tim@multitalents.net> 3269Date: Tue Jun 9 22:41:13 2015 -0700 3270 3271 Fix t12 rules for out of tree builds. 3272 3273commit ec04dc4a5515c913121bc04ed261857e68fa5c18 3274Author: millert@openbsd.org <millert@openbsd.org> 3275Date: Fri Jun 5 15:13:13 2015 +0000 3276 3277 upstream commit 3278 3279 For "ssh -L 12345:/tmp/sock" don't fail with "No forward host 3280 name." (we have a path, not a host name). Based on a diff from Jared 3281 Yanovich. OK djm@ 3282 3283 Upstream-ID: 2846b0a8c7de037e33657f95afbd282837fc213f 3284 3285commit 732d61f417a6aea0aa5308b59cb0f563bcd6edd6 3286Author: djm@openbsd.org <djm@openbsd.org> 3287Date: Fri Jun 5 03:44:14 2015 +0000 3288 3289 upstream commit 3290 3291 typo: accidental repetition; bz#2386 3292 3293 Upstream-ID: 45e620d99f6bc301e5949d34a54027374991c88b 3294 3295commit adfb24c69d1b6f5e758db200866c711e25a2ba73 3296Author: Darren Tucker <dtucker@zip.com.au> 3297Date: Fri Jun 5 14:51:40 2015 +1000 3298 3299 Add Linux powerpc64le and powerpcle entries. 3300 3301 Stopgap to resolve bz#2409 because we are so close to release and will 3302 update config.guess and friends shortly after the release. ok djm@ 3303 3304commit a1195a0fdc9eddddb04d3e9e44c4775431cb77da 3305Merge: 6397eed d2480bc 3306Author: Tim Rice <tim@multitalents.net> 3307Date: Wed Jun 3 21:43:13 2015 -0700 3308 3309 Merge branch 'master' of git.mindrot.org:/var/git/openssh 3310 3311commit 6397eedf953b2b973d2d7cbb504ab501a07f8ddc 3312Author: Tim Rice <tim@multitalents.net> 3313Date: Wed Jun 3 21:41:11 2015 -0700 3314 3315 Remove unneeded backslashes. Patch from Ángel González 3316 3317commit d2480bcac1caf31b03068de877a47d6e1027bf6d 3318Author: Darren Tucker <dtucker@zip.com.au> 3319Date: Thu Jun 4 14:10:55 2015 +1000 3320 3321 Remove redundant include of stdarg.h. bz#2410 3322 3323commit 5e67859a623826ccdf2df284cbb37e2d8e2787eb 3324Author: djm@openbsd.org <djm@openbsd.org> 3325Date: Tue Jun 2 09:10:40 2015 +0000 3326 3327 upstream commit 3328 3329 mention CheckHostIP adding addresses to known_hosts; 3330 bz#1993; ok dtucker@ 3331 3332 Upstream-ID: fd44b68440fd0dc29abf9f2d3f703d74a2396cb7 3333 3334commit d7a58bbac6583e33fd5eca8e2c2cc70c57617818 3335Author: Darren Tucker <dtucker@zip.com.au> 3336Date: Tue Jun 2 20:15:26 2015 +1000 3337 3338 Replace strcpy with strlcpy. 3339 3340 ok djm, sanity check by Corinna Vinschen. 3341 3342commit 51a1c2115265c6e80ede8a5c9dccada9aeed7143 3343Author: Damien Miller <djm@mindrot.org> 3344Date: Fri May 29 18:27:21 2015 +1000 3345 3346 skip, rather than fatal when run without SUDO set 3347 3348commit 599f01142a376645b15cbc9349d7e8975e1cf245 3349Author: Damien Miller <djm@mindrot.org> 3350Date: Fri May 29 18:03:15 2015 +1000 3351 3352 fix merge botch that left ",," in KEX algs 3353 3354commit 0c2a81dfc21822f2423edd30751e5ec53467b347 3355Author: Damien Miller <djm@mindrot.org> 3356Date: Fri May 29 17:08:28 2015 +1000 3357 3358 re-enable SSH protocol 1 at compile time 3359 3360commit db438f9285d64282d3ac9e8c0944f59f037c0151 3361Author: djm@openbsd.org <djm@openbsd.org> 3362Date: Fri May 29 03:05:13 2015 +0000 3363 3364 upstream commit 3365 3366 make this work without SUDO set; ok dtucker@ 3367 3368 Upstream-Regress-ID: bca88217b70bce2fe52b23b8e06bdeb82d98c715 3369 3370commit 1d9a2e2849c9864fe75daabf433436341c968e14 3371Author: djm@openbsd.org <djm@openbsd.org> 3372Date: Thu May 28 07:37:31 2015 +0000 3373 3374 upstream commit 3375 3376 wrap all moduli-related code in #ifdef WITH_OPENSSL. 3377 based on patch from Reuben Hawkins; bz#2388 feedback and ok dtucker@ 3378 3379 Upstream-ID: d80cfc8be3e6ec65b3fac9e87c4466533b31b7cf 3380 3381commit 496aeb25bc2d6c434171292e4714771b594bd00e 3382Author: dtucker@openbsd.org <dtucker@openbsd.org> 3383Date: Thu May 28 05:41:29 2015 +0000 3384 3385 upstream commit 3386 3387 Increase the allowed length of the known host file name 3388 in the log message to be consistent with other cases. Part of bz#1993, ok 3389 deraadt. 3390 3391 Upstream-ID: a9e97567be49f25daf286721450968251ff78397 3392 3393commit dd2cfeb586c646ff8d70eb93567b2e559ace5b14 3394Author: dtucker@openbsd.org <dtucker@openbsd.org> 3395Date: Thu May 28 05:09:45 2015 +0000 3396 3397 upstream commit 3398 3399 Fix typo (keywork->keyword) 3400 3401 Upstream-ID: 8aacd0f4089c0a244cf43417f4f9045dfaeab534 3402 3403commit 9cc6842493fbf23025ccc1edab064869640d3bec 3404Author: djm@openbsd.org <djm@openbsd.org> 3405Date: Thu May 28 04:50:53 2015 +0000 3406 3407 upstream commit 3408 3409 add error message on ftruncate failure; bz#2176 3410 3411 Upstream-ID: cbcc606e0b748520c74a210d8f3cc9718d3148cf 3412 3413commit d1958793a0072c22be26d136dbda5ae263e717a0 3414Author: djm@openbsd.org <djm@openbsd.org> 3415Date: Thu May 28 04:40:13 2015 +0000 3416 3417 upstream commit 3418 3419 make ssh-keygen default to ed25519 keys when compiled 3420 without OpenSSL; bz#2388, ok dtucker@ 3421 3422 Upstream-ID: 85a471fa6d3fa57a7b8e882d22cfbfc1d84cdc71 3423 3424commit 3ecde664c9fc5fb3667aedf9e6671462600f6496 3425Author: dtucker@openbsd.org <dtucker@openbsd.org> 3426Date: Wed May 27 23:51:10 2015 +0000 3427 3428 upstream commit 3429 3430 Reorder client proposal to prefer 3431 diffie-hellman-group-exchange-sha1 over diffie-hellman-group14-sha1. ok djm@ 3432 3433 Upstream-ID: 552c08d47347c3ee1a9a57d88441ab50abe17058 3434 3435commit 40f64292b907afd0a674fdbf3e4c2356d17a7d68 3436Author: dtucker@openbsd.org <dtucker@openbsd.org> 3437Date: Wed May 27 23:39:18 2015 +0000 3438 3439 upstream commit 3440 3441 Add a stronger (4k bit) fallback group that sshd can use 3442 when the moduli file is missing or broken, sourced from RFC3526. bz#2302, ok 3443 markus@ (earlier version), djm@ 3444 3445 Upstream-ID: b635215746a25a829d117673d5e5a76d4baee7f4 3446 3447commit 5ab7d5fa03ad55bc438fab45dfb3aeb30a3c237a 3448Author: Darren Tucker <dtucker@zip.com.au> 3449Date: Thu May 28 10:03:40 2015 +1000 3450 3451 New moduli file from OpenBSD, removing 1k groups. 3452 3453 Remove 1k bit groups. ok deraadt@, markus@ 3454 3455commit a71ba58adf34e599f30cdda6e9b93ae6e3937eea 3456Author: djm@openbsd.org <djm@openbsd.org> 3457Date: Wed May 27 05:15:02 2015 +0000 3458 3459 upstream commit 3460 3461 support PKCS#11 devices with external PIN entry devices 3462 bz#2240, based on patch from Dirk-Willem van Gulik; feedback and ok dtucker@ 3463 3464 Upstream-ID: 504568992b55a8fc984375242b1bd505ced61b0d 3465 3466commit b282fec1aa05246ed3482270eb70fc3ec5f39a00 3467Author: dtucker@openbsd.org <dtucker@openbsd.org> 3468Date: Tue May 26 23:23:40 2015 +0000 3469 3470 upstream commit 3471 3472 Cap DH-GEX group size at 4kbits for Cisco implementations. 3473 Some of them will choke when asked for preferred sizes >4k instead of 3474 returning the 4k group that they do have. bz#2209, ok djm@ 3475 3476 Upstream-ID: 54b863a19713446b7431f9d06ad0532b4fcfef8d 3477 3478commit 3e91b4e8b0dc2b4b7e7d42cf6e8994a32e4cb55e 3479Author: djm@openbsd.org <djm@openbsd.org> 3480Date: Sun May 24 23:39:16 2015 +0000 3481 3482 upstream commit 3483 3484 add missing 'c' option to getopt(), case statement was 3485 already there; from Felix Bolte 3486 3487 Upstream-ID: 9b19b4e2e0b54d6fefa0dfac707c51cf4bae3081 3488 3489commit 64a89ec07660abba4d0da7c0095b7371c98bab62 3490Author: jsg@openbsd.org <jsg@openbsd.org> 3491Date: Sat May 23 14:28:37 2015 +0000 3492 3493 upstream commit 3494 3495 fix a memory leak in an error path ok markus@ dtucker@ 3496 3497 Upstream-ID: bc1da0f205494944918533d8780fde65dff6c598 3498 3499commit f948737449257d2cb83ffcfe7275eb79b677fd4a 3500Author: djm@openbsd.org <djm@openbsd.org> 3501Date: Fri May 22 05:28:45 2015 +0000 3502 3503 upstream commit 3504 3505 mention ssh-keygen -E for comparing legacy MD5 3506 fingerprints; bz#2332 3507 3508 Upstream-ID: 079a3669549041dbf10dbc072d9563f0dc3b2859 3509 3510commit 0882332616e4f0272c31cc47bf2018f9cb258a4e 3511Author: djm@openbsd.org <djm@openbsd.org> 3512Date: Fri May 22 04:45:52 2015 +0000 3513 3514 upstream commit 3515 3516 Reorder EscapeChar option parsing to avoid a single-byte 3517 out- of-bounds read. bz#2396 from Jaak Ristioja; ok dtucker@ 3518 3519 Upstream-ID: 1dc6b5b63d1c8d9a88619da0b27ade461d79b060 3520 3521commit d7c31da4d42c115843edee2074d7d501f8804420 3522Author: djm@openbsd.org <djm@openbsd.org> 3523Date: Fri May 22 03:50:02 2015 +0000 3524 3525 upstream commit 3526 3527 add knob to relax GSSAPI host credential check for 3528 multihomed hosts bz#928, patch by Simon Wilkinson; ok dtucker 3529 (kerberos/GSSAPI is not compiled by default on OpenBSD) 3530 3531 Upstream-ID: 15ddf1c6f7fd9d98eea9962f480079ae3637285d 3532 3533commit aa72196a00be6e0b666215edcffbc10af234cb0e 3534Author: Darren Tucker <dtucker@zip.com.au> 3535Date: Fri May 22 17:49:46 2015 +1000 3536 3537 Include signal.h for sig_atomic_t, used by kex.h. 3538 3539 bz#2402, from tomas.kuthan at oracle com. 3540 3541commit 8b02481143d75e91c49d1bfae0876ac1fbf9511a 3542Author: Darren Tucker <dtucker@zip.com.au> 3543Date: Fri May 22 12:47:24 2015 +1000 3544 3545 Import updated moduli file from OpenBSD. 3546 3547commit 4739e8d5e1c0be49624082bd9f6b077e9e758db9 3548Author: djm@openbsd.org <djm@openbsd.org> 3549Date: Thu May 21 12:01:19 2015 +0000 3550 3551 upstream commit 3552 3553 Support "ssh-keygen -lF hostname" to find search known_hosts 3554 and print key hashes. Already advertised by ssh-keygen(1), but not delivered 3555 by code; ok dtucker@ 3556 3557 Upstream-ID: 459e0e2bf39825e41b0811c336db2d56a1c23387 3558 3559commit e97201feca10b5196da35819ae516d0b87cf3a50 3560Author: Damien Miller <djm@mindrot.org> 3561Date: Thu May 21 17:55:15 2015 +1000 3562 3563 conditionalise util.h inclusion 3564 3565commit 13640798c7dd011ece0a7d02841fe48e94cfa0e0 3566Author: djm@openbsd.org <djm@openbsd.org> 3567Date: Thu May 21 06:44:25 2015 +0000 3568 3569 upstream commit 3570 3571 regress test for AuthorizedPrincipalsCommand 3572 3573 Upstream-Regress-ID: c658fbf1ab6b6011dc83b73402322e396f1e1219 3574 3575commit 84452c5d03c21f9bfb28c234e0dc1dc67dd817b1 3576Author: djm@openbsd.org <djm@openbsd.org> 3577Date: Thu May 21 06:40:02 2015 +0000 3578 3579 upstream commit 3580 3581 regress test for AuthorizedKeysCommand arguments 3582 3583 Upstream-Regress-ID: bbd65c13c6b3be9a442ec115800bff9625898f12 3584 3585commit bcc50d816187fa9a03907ac1f3a52f04a52e10d1 3586Author: djm@openbsd.org <djm@openbsd.org> 3587Date: Thu May 21 06:43:30 2015 +0000 3588 3589 upstream commit 3590 3591 add AuthorizedPrincipalsCommand that allows getting 3592 authorized_principals from a subprocess rather than a file, which is quite 3593 useful in deployments with large userbases 3594 3595 feedback and ok markus@ 3596 3597 Upstream-ID: aa1bdac7b16fc6d2fa3524ef08f04c7258d247f6 3598 3599commit 24232a3e5ab467678a86aa67968bbb915caffed4 3600Author: djm@openbsd.org <djm@openbsd.org> 3601Date: Thu May 21 06:38:35 2015 +0000 3602 3603 upstream commit 3604 3605 support arguments to AuthorizedKeysCommand 3606 3607 bz#2081 loosely based on patch by Sami Hartikainen 3608 feedback and ok markus@ 3609 3610 Upstream-ID: b080387a14aa67dddd8ece67c00f268d626541f7 3611 3612commit d80fbe41a57c72420c87a628444da16d09d66ca7 3613Author: djm@openbsd.org <djm@openbsd.org> 3614Date: Thu May 21 04:55:51 2015 +0000 3615 3616 upstream commit 3617 3618 refactor: split base64 encoding of pubkey into its own 3619 sshkey_to_base64() function and out of sshkey_write(); ok markus@ 3620 3621 Upstream-ID: 54fc38f5832e9b91028900819bda46c3959a0c1a 3622 3623commit 7cc44ef74133a473734bbcbd3484f24d6a7328c5 3624Author: deraadt@openbsd.org <deraadt@openbsd.org> 3625Date: Mon May 18 15:06:05 2015 +0000 3626 3627 upstream commit 3628 3629 getentropy() and sendsyslog() have been around long 3630 enough. openssh-portable may want the #ifdef's but not base. discussed with 3631 djm few weeks back 3632 3633 Upstream-ID: 0506a4334de108e3fb6c66f8d6e0f9c112866926 3634 3635commit 9173d0fbe44de7ebcad8a15618e13a8b8d78902e 3636Author: dtucker@openbsd.org <dtucker@openbsd.org> 3637Date: Fri May 15 05:44:21 2015 +0000 3638 3639 upstream commit 3640 3641 Use a salted hash of the lock passphrase instead of plain 3642 text and do constant-time comparisons of it. Should prevent leaking any 3643 information about it via timing, pointed out by Ryan Castellucci. Add a 0.1s 3644 incrementing delay for each failed unlock attempt up to 10s. ok markus@ 3645 (earlier version), djm@ 3646 3647 Upstream-ID: c599fcc325aa1cc65496b25220b622d22208c85f 3648 3649commit d028d5d3a697c71b21e4066d8672cacab3caa0a8 3650Author: Damien Miller <djm@mindrot.org> 3651Date: Tue May 5 19:10:58 2015 +1000 3652 3653 upstream commit 3654 3655 - tedu@cvs.openbsd.org 2015/01/12 03:20:04 3656 [bcrypt_pbkdf.c] 3657 rename blocks to words. bcrypt "blocks" are unrelated to blowfish blocks, 3658 nor are they the same size. 3659 3660commit f6391d4e59b058984163ab28f4e317e7a72478f1 3661Author: Damien Miller <djm@mindrot.org> 3662Date: Tue May 5 19:10:23 2015 +1000 3663 3664 upstream commit 3665 3666 - deraadt@cvs.openbsd.org 2015/01/08 00:30:07 3667 [bcrypt_pbkdf.c] 3668 declare a local version of MIN(), call it MINIMUM() 3669 3670commit 8ac6b13cc9113eb47cd9e86c97d7b26b4b71b77f 3671Author: Damien Miller <djm@mindrot.org> 3672Date: Tue May 5 19:09:46 2015 +1000 3673 3674 upstream commit 3675 3676 - djm@cvs.openbsd.org 2014/12/30 01:41:43 3677 [bcrypt_pbkdf.c] 3678 typo in comment: ouput => output 3679 3680commit 1f792489d5cf86a4f4e3003e6e9177654033f0f2 3681Author: djm@openbsd.org <djm@openbsd.org> 3682Date: Mon May 4 06:10:48 2015 +0000 3683 3684 upstream commit 3685 3686 Remove pattern length argument from match_pattern_list(), we 3687 only ever use it for strlen(pattern). 3688 3689 Prompted by hanno AT hboeck.de pointing an out-of-bound read 3690 error caused by an incorrect pattern length found using AFL 3691 and his own tools. 3692 3693 ok markus@ 3694 3695commit 639d6bc57b1942393ed12fb48f00bc05d4e093e4 3696Author: djm@openbsd.org <djm@openbsd.org> 3697Date: Fri May 1 07:10:01 2015 +0000 3698 3699 upstream commit 3700 3701 refactor ssh_dispatch_run_fatal() to use sshpkt_fatal() 3702 to better report error conditions. Teach sshpkt_fatal() about ECONNRESET. 3703 3704 Improves error messages on TCP connection resets. bz#2257 3705 3706 ok dtucker@ 3707 3708commit 9559d7de34c572d4d3fd990ca211f8ec99f62c4d 3709Author: djm@openbsd.org <djm@openbsd.org> 3710Date: Fri May 1 07:08:08 2015 +0000 3711 3712 upstream commit 3713 3714 a couple of parse targets were missing activep checks, 3715 causing them to be misapplied in match context; bz#2272 diagnosis and 3716 original patch from Sami Hartikainen ok dtucker@ 3717 3718commit 7e8528cad04b2775c3b7db08abf8fb42e47e6b2a 3719Author: djm@openbsd.org <djm@openbsd.org> 3720Date: Fri May 1 04:17:51 2015 +0000 3721 3722 upstream commit 3723 3724 make handling of AuthorizedPrincipalsFile=none more 3725 consistent with other =none options; bz#2288 from Jakub Jelen; ok dtucker@ 3726 3727commit ca430d4d9cc0f62eca3b1fb1e2928395b7ce80f7 3728Author: djm@openbsd.org <djm@openbsd.org> 3729Date: Fri May 1 04:03:20 2015 +0000 3730 3731 upstream commit 3732 3733 remove failed remote forwards established by muliplexing 3734 from the list of active forwards; bz#2363, patch mostly by Yoann Ricordel; ok 3735 dtucker@ 3736 3737commit 8312cfb8ad88657517b3e23ac8c56c8e38eb9792 3738Author: djm@openbsd.org <djm@openbsd.org> 3739Date: Fri May 1 04:01:58 2015 +0000 3740 3741 upstream commit 3742 3743 reduce stderr spam when using ssh -S /path/mux -O forward 3744 -R 0:... ok dtucker@ 3745 3746commit 179be0f5e62f1f492462571944e45a3da660d82b 3747Author: djm@openbsd.org <djm@openbsd.org> 3748Date: Fri May 1 03:23:51 2015 +0000 3749 3750 upstream commit 3751 3752 prevent authorized_keys options picked up on public key 3753 tests without a corresponding private key authentication being applied to 3754 other authentication methods. Reported by halex@, ok markus@ 3755 3756commit a42d67be65b719a430b7fcaba2a4e4118382723a 3757Author: djm@openbsd.org <djm@openbsd.org> 3758Date: Fri May 1 03:20:54 2015 +0000 3759 3760 upstream commit 3761 3762 Don't make parsing of authorized_keys' environment= 3763 option conditional on PermitUserEnv - always parse it, but only use the 3764 result if the option is enabled. This prevents the syntax of authorized_keys 3765 changing depending on which sshd_config options were enabled. 3766 3767 bz#2329; based on patch from coladict AT gmail.com, ok dtucker@ 3768 3769commit e661a86353e11592c7ed6a847e19a83609f49e77 3770Author: djm@openbsd.org <djm@openbsd.org> 3771Date: Mon May 4 06:10:48 2015 +0000 3772 3773 upstream commit 3774 3775 Remove pattern length argument from match_pattern_list(), we 3776 only ever use it for strlen(pattern). 3777 3778 Prompted by hanno AT hboeck.de pointing an out-of-bound read 3779 error caused by an incorrect pattern length found using AFL 3780 and his own tools. 3781 3782 ok markus@ 3783 3784commit 0ef1de742be2ee4b10381193fe90730925b7f027 3785Author: dtucker@openbsd.org <dtucker@openbsd.org> 3786Date: Thu Apr 23 05:01:19 2015 +0000 3787 3788 upstream commit 3789 3790 Add a simple regression test for sshd's configuration 3791 parser. Right now, all it does is run the output of sshd -T back through 3792 itself and ensure the output is valid and invariant. 3793 3794commit 368f83c793275faa2c52f60eaa9bdac155c4254b 3795Author: djm@openbsd.org <djm@openbsd.org> 3796Date: Wed Apr 22 01:38:36 2015 +0000 3797 3798 upstream commit 3799 3800 use correct key for nested certificate test 3801 3802commit 8d4d1bfddbbd7d21f545dc6997081d1ea1fbc99a 3803Author: djm@openbsd.org <djm@openbsd.org> 3804Date: Fri May 1 07:11:47 2015 +0000 3805 3806 upstream commit 3807 3808 mention that the user's shell from /etc/passwd is used 3809 for commands too; bz#1459 ok dtucker@ 3810 3811commit 5ab283d0016bbc9d4d71e8e5284d011bc5a930cf 3812Author: djm@openbsd.org <djm@openbsd.org> 3813Date: Fri May 8 07:29:00 2015 +0000 3814 3815 upstream commit 3816 3817 whitespace 3818 3819 Upstream-Regress-ID: 6b708a3e709d5b7fd37890f874bafdff1f597519 3820 3821commit 8377d5008ad260048192e1e56ad7d15a56d103dd 3822Author: djm@openbsd.org <djm@openbsd.org> 3823Date: Fri May 8 07:26:13 2015 +0000 3824 3825 upstream commit 3826 3827 whitespace at EOL 3828 3829 Upstream-Regress-ID: 9c48911643d5b05173b36a012041bed4080b8554 3830 3831commit c28a3436fa8737709ea88e4437f8f23a6ab50359 3832Author: djm@openbsd.org <djm@openbsd.org> 3833Date: Fri May 8 06:45:13 2015 +0000 3834 3835 upstream commit 3836 3837 moar whitespace at eol 3838 3839 Upstream-ID: 64eaf872a3ba52ed41e494287e80d40aaba4b515 3840 3841commit 2b64c490468fd4ca35ac8d5cc31c0520dc1508bb 3842Author: djm@openbsd.org <djm@openbsd.org> 3843Date: Fri May 8 06:41:56 2015 +0000 3844 3845 upstream commit 3846 3847 whitespace at EOL 3848 3849 Upstream-ID: 57bcf67d666c6fc1ad798aee448fdc3f70f7ec2c 3850 3851commit 4e636cf201ce6e7e3b9088568218f9d4e2c51712 3852Author: djm@openbsd.org <djm@openbsd.org> 3853Date: Fri May 8 03:56:51 2015 +0000 3854 3855 upstream commit 3856 3857 whitespace at EOL 3858 3859commit 38b8272f823dc1dd4e29dbcee83943ed48bb12fa 3860Author: dtucker@openbsd.org <dtucker@openbsd.org> 3861Date: Mon May 4 01:47:53 2015 +0000 3862 3863 upstream commit 3864 3865 Use diff w/out -u for better portability 3866 3867commit 297060f42d5189a4065ea1b6f0afdf6371fb0507 3868Author: dtucker@openbsd.org <dtucker@openbsd.org> 3869Date: Fri May 8 03:25:07 2015 +0000 3870 3871 upstream commit 3872 3873 Use xcalloc for permitted_adm_opens instead of xmalloc to 3874 ensure it's zeroed. Fixes post-auth crash with permitopen=none. bz#2355, ok 3875 djm@ 3876 3877commit 63ebf019be863b2d90492a85e248cf55a6e87403 3878Author: djm@openbsd.org <djm@openbsd.org> 3879Date: Fri May 8 03:17:49 2015 +0000 3880 3881 upstream commit 3882 3883 don't choke on new-format private keys encrypted with an 3884 AEAD cipher; bz#2366, patch from Ron Frederick; ok markus@ 3885 3886commit f8484dac678ab3098ae522a5f03bb2530f822987 3887Author: dtucker@openbsd.org <dtucker@openbsd.org> 3888Date: Wed May 6 05:45:17 2015 +0000 3889 3890 upstream commit 3891 3892 Clarify pseudo-terminal request behaviour and use 3893 "pseudo-terminal" consistently. bz#1716, ok jmc@ "I like it" deraadt@. 3894 3895commit ea139507bef8bad26e86ed99a42c7233ad115c38 3896Author: dtucker@openbsd.org <dtucker@openbsd.org> 3897Date: Wed May 6 04:07:18 2015 +0000 3898 3899 upstream commit 3900 3901 Blacklist DH-GEX for specific PuTTY versions known to 3902 send non-RFC4419 DH-GEX messages rather than all versions of PuTTY. 3903 According to Simon Tatham, 0.65 and newer versions will send RFC4419 DH-GEX 3904 messages. ok djm@ 3905 3906commit b58234f00ee3872eb84f6e9e572a9a34e902e36e 3907Author: dtucker@openbsd.org <dtucker@openbsd.org> 3908Date: Tue May 5 10:17:49 2015 +0000 3909 3910 upstream commit 3911 3912 WinSCP doesn't implement RFC4419 DH-GEX so flag it so we 3913 don't offer that KEX method. ok markus@ 3914 3915commit d5b1507a207253b39e810e91e68f9598691b7a29 3916Author: jsg@openbsd.org <jsg@openbsd.org> 3917Date: Tue May 5 02:48:17 2015 +0000 3918 3919 upstream commit 3920 3921 use the sizeof the struct not the sizeof a pointer to the 3922 struct in ssh_digest_start() 3923 3924 This file is only used if ssh is built with OPENSSL=no 3925 3926 ok markus@ 3927 3928commit a647b9b8e616c231594b2710c925d31b1b8afea3 3929Author: Darren Tucker <dtucker@zip.com.au> 3930Date: Fri May 8 11:07:27 2015 +1000 3931 3932 Put brackets around mblen() compat constant. 3933 3934 This might help with the reported problem cross compiling for Android 3935 ("error: expected identifier or '(' before numeric constant") but 3936 shouldn't hurt in any case. 3937 3938commit d1680d36e17244d9af3843aeb5025cb8e40d6c07 3939Author: Darren Tucker <dtucker@zip.com.au> 3940Date: Thu Apr 30 09:18:11 2015 +1000 3941 3942 xrealloc -> xreallocarray in portable code too. 3943 3944commit 531a57a3893f9fcd4aaaba8c312b612bbbcc021e 3945Author: dtucker@openbsd.org <dtucker@openbsd.org> 3946Date: Wed Apr 29 03:48:56 2015 +0000 3947 3948 upstream commit 3949 3950 Allow ListenAddress, Port and AddressFamily in any 3951 order. bz#68, ok djm@, jmc@ (for the man page bit). 3952 3953commit c1d5bcf1aaf1209af02f79e48ba1cbc76a87b56f 3954Author: jmc@openbsd.org <jmc@openbsd.org> 3955Date: Tue Apr 28 13:47:38 2015 +0000 3956 3957 upstream commit 3958 3959 enviroment -> environment: apologies to darren for not 3960 spotting that first time round... 3961 3962commit 43beea053db191cac47c2cd8d3dc1930158aff1a 3963Author: dtucker@openbsd.org <dtucker@openbsd.org> 3964Date: Tue Apr 28 10:25:15 2015 +0000 3965 3966 upstream commit 3967 3968 Fix typo in previous 3969 3970commit 85b96ef41374f3ddc9139581f87da09b2cd9199e 3971Author: dtucker@openbsd.org <dtucker@openbsd.org> 3972Date: Tue Apr 28 10:17:58 2015 +0000 3973 3974 upstream commit 3975 3976 Document that the TERM environment variable is not 3977 subject to SendEnv and AcceptEnv. bz#2386, based loosely on a patch from 3978 jjelen at redhat, help and ok jmc@ 3979 3980commit 88a7c598a94ff53f76df228eeaae238d2d467565 3981Author: djm@openbsd.org <djm@openbsd.org> 3982Date: Mon Apr 27 21:42:48 2015 +0000 3983 3984 upstream commit 3985 3986 Make sshd default to PermitRootLogin=no; ok deraadt@ 3987 rpe@ 3988 3989commit 734226b4480a6c736096c729fcf6f391400599c7 3990Author: djm@openbsd.org <djm@openbsd.org> 3991Date: Mon Apr 27 01:52:30 2015 +0000 3992 3993 upstream commit 3994 3995 fix compilation with OPENSSL=no; ok dtucker@ 3996 3997commit a4b9d2ce1eb7703eaf0809b0c8a82ded8aa4f1c6 3998Author: dtucker@openbsd.org <dtucker@openbsd.org> 3999Date: Mon Apr 27 00:37:53 2015 +0000 4000 4001 upstream commit 4002 4003 Include stdio.h for FILE (used in sshkey.h) so it 4004 compiles with OPENSSL=no. 4005 4006commit dbcc652f4ca11fe04e5930c7ef18a219318c6cda 4007Author: djm@openbsd.org <djm@openbsd.org> 4008Date: Mon Apr 27 00:21:21 2015 +0000 4009 4010 upstream commit 4011 4012 allow "sshd -f none" to skip reading the config file, 4013 much like "ssh -F none" does. ok dtucker 4014 4015commit b7ca276fca316c952f0b90f5adb1448c8481eedc 4016Author: jmc@openbsd.org <jmc@openbsd.org> 4017Date: Fri Apr 24 06:26:49 2015 +0000 4018 4019 upstream commit 4020 4021 combine -Dd onto one line and update usage(); 4022 4023commit 2ea974630d7017e4c7666d14d9dc939707613e96 4024Author: djm@openbsd.org <djm@openbsd.org> 4025Date: Fri Apr 24 05:26:44 2015 +0000 4026 4027 upstream commit 4028 4029 add ssh-agent -D to leave ssh-agent in foreground 4030 without enabling debug mode; bz#2381 ok dtucker@ 4031 4032commit 8ac2ffd7aa06042f6b924c87139f2fea5c5682f7 4033Author: deraadt@openbsd.org <deraadt@openbsd.org> 4034Date: Fri Apr 24 01:36:24 2015 +0000 4035 4036 upstream commit 4037 4038 2*len -> use xreallocarray() ok djm 4039 4040commit 657a5fbc0d0aff309079ff8fb386f17e964963c2 4041Author: deraadt@openbsd.org <deraadt@openbsd.org> 4042Date: Fri Apr 24 01:36:00 2015 +0000 4043 4044 upstream commit 4045 4046 rename xrealloc() to xreallocarray() since it follows 4047 that form. ok djm 4048 4049commit 1108ae242fdd2c304307b68ddf46aebe43ebffaa 4050Author: dtucker@openbsd.org <dtucker@openbsd.org> 4051Date: Thu Apr 23 04:59:10 2015 +0000 4052 4053 upstream commit 4054 4055 Two small fixes for sshd -T: ListenAddress'es are added 4056 to a list head so reverse the order when printing them to ensure the 4057 behaviour remains the same, and print StreamLocalBindMask as octal with 4058 leading zero. ok deraadt@ 4059 4060commit bd902b8473e1168f19378d5d0ae68d0c203525df 4061Author: dtucker@openbsd.org <dtucker@openbsd.org> 4062Date: Thu Apr 23 04:53:53 2015 +0000 4063 4064 upstream commit 4065 4066 Check for and reject missing arguments for 4067 VersionAddendum and ForceCommand. bz#2281, patch from plautrba at redhat com, 4068 ok djm@ 4069 4070commit ca42c1758575e592239de1d5755140e054b91a0d 4071Author: djm@openbsd.org <djm@openbsd.org> 4072Date: Wed Apr 22 01:24:01 2015 +0000 4073 4074 upstream commit 4075 4076 unknown certificate extensions are non-fatal, so don't 4077 fatal when they are encountered; bz#2387 reported by Bob Van Zant; ok 4078 dtucker@ 4079 4080commit 39bfbf7caad231cc4bda6909fb1af0705bca04d8 4081Author: jsg@openbsd.org <jsg@openbsd.org> 4082Date: Tue Apr 21 07:01:00 2015 +0000 4083 4084 upstream commit 4085 4086 Add back a backslash removed in rev 1.42 so 4087 KEX_SERVER_ENCRYPT will include aes again. 4088 4089 ok deraadt@ 4090 4091commit 6b0d576bb87eca3efd2b309fcfe4edfefc289f9c 4092Author: djm@openbsd.org <djm@openbsd.org> 4093Date: Fri Apr 17 13:32:09 2015 +0000 4094 4095 upstream commit 4096 4097 s/recommended/required/ that private keys be og-r this 4098 wording change was made a while ago but got accidentally reverted 4099 4100commit 44a8e7ce6f3ab4c2eb1ae49115c210b98e53c4df 4101Author: djm@openbsd.org <djm@openbsd.org> 4102Date: Fri Apr 17 13:25:52 2015 +0000 4103 4104 upstream commit 4105 4106 don't try to cleanup NULL KEX proposals in 4107 kex_prop_free(); found by Jukka Taimisto and Markus Hietava 4108 4109commit 3038a191872d2882052306098c1810d14835e704 4110Author: djm@openbsd.org <djm@openbsd.org> 4111Date: Fri Apr 17 13:19:22 2015 +0000 4112 4113 upstream commit 4114 4115 use error/logit/fatal instead of fprintf(stderr, ...) 4116 and exit(0), fix a few errors that were being printed to stdout instead of 4117 stderr and a few non-errors that were going to stderr instead of stdout 4118 bz#2325; ok dtucker 4119 4120commit a58be33cb6cd24441fa7e634db0e5babdd56f07f 4121Author: djm@openbsd.org <djm@openbsd.org> 4122Date: Fri Apr 17 13:16:48 2015 +0000 4123 4124 upstream commit 4125 4126 debug log missing DISPLAY environment when X11 4127 forwarding requested; bz#1682 ok dtucker@ 4128 4129commit 17d4d9d9fbc8fb80e322f94d95eecc604588a474 4130Author: djm@openbsd.org <djm@openbsd.org> 4131Date: Fri Apr 17 04:32:31 2015 +0000 4132 4133 upstream commit 4134 4135 don't call record_login() in monitor when UseLogin is 4136 enabled; bz#278 reported by drk AT sgi.com; ok dtucker 4137 4138commit 40132ff87b6cbc3dc05fb5df2e9d8e3afa06aafd 4139Author: dtucker@openbsd.org <dtucker@openbsd.org> 4140Date: Fri Apr 17 04:12:35 2015 +0000 4141 4142 upstream commit 4143 4144 Add some missing options to sshd -T and fix the output 4145 of VersionAddendum HostCertificate. bz#2346, patch from jjelen at redhat 4146 com, ok djm. 4147 4148commit 6cc7cfa936afde2d829e56ee6528c7ea47a42441 4149Author: dtucker@openbsd.org <dtucker@openbsd.org> 4150Date: Thu Apr 16 23:25:50 2015 +0000 4151 4152 upstream commit 4153 4154 Document "none" for PidFile XAuthLocation 4155 TrustedUserCAKeys and RevokedKeys. bz#2382, feedback from jmc@, ok djm@ 4156 4157commit 15fdfc9b1c6808b26bc54d4d61a38b54541763ed 4158Author: dtucker@openbsd.org <dtucker@openbsd.org> 4159Date: Wed Apr 15 23:23:25 2015 +0000 4160 4161 upstream commit 4162 4163 Plug leak of address passed to logging. bz#2373, patch 4164 from jjelen at redhat, ok markus@ 4165 4166commit bb2289e2a47d465eaaaeff3dee2a6b7777b4c291 4167Author: dtucker@openbsd.org <dtucker@openbsd.org> 4168Date: Tue Apr 14 04:17:03 2015 +0000 4169 4170 upstream commit 4171 4172 Output remote username in debug output since with Host 4173 and Match it's not always obvious what it will be. bz#2368, ok djm@ 4174 4175commit 70860b6d07461906730632f9758ff1b7c98c695a 4176Author: Darren Tucker <dtucker@zip.com.au> 4177Date: Fri Apr 17 10:56:13 2015 +1000 4178 4179 Format UsePAM setting when using sshd -T. 4180 4181 Part of bz#2346, patch from jjelen at redhat com. 4182 4183commit ee15d9c9f0720f5a8b0b34e4b10ecf21f9824814 4184Author: Darren Tucker <dtucker@zip.com.au> 4185Date: Fri Apr 17 10:40:23 2015 +1000 4186 4187 Wrap endian.h include inside ifdef (bz#2370). 4188 4189commit 408f4c2ad4a4c41baa7b9b2b7423d875abbfa70b 4190Author: Darren Tucker <dtucker@zip.com.au> 4191Date: Fri Apr 17 09:39:58 2015 +1000 4192 4193 Look for '${host}-ar' before 'ar'. 4194 4195 This changes configure.ac to look for '${host}-ar' as set by 4196 AC_CANONICAL_HOST before looking for the unprefixed 'ar'. 4197 Useful when cross-compiling when all your binutils are prefixed. 4198 4199 Patch from moben at exherbo org via astrand at lysator liu se and 4200 bz#2352. 4201 4202commit 673a1c16ad078d41558247ce739fe812c960acc8 4203Author: Damien Miller <djm@google.com> 4204Date: Thu Apr 16 11:40:20 2015 +1000 4205 4206 remove dependency on arpa/telnet.h 4207 4208commit 202d443eeda1829d336595a3cfc07827e49f45ed 4209Author: Darren Tucker <dtucker@zip.com.au> 4210Date: Wed Apr 15 15:59:49 2015 +1000 4211 4212 Remove duplicate include of pwd.h. bz#2337, patch from Mordy Ovits. 4213 4214commit 597986493412c499f2bc2209420cb195f97b3668 4215Author: Damien Miller <djm@google.com> 4216Date: Thu Apr 9 10:14:48 2015 +1000 4217 4218 platform's with openpty don't need pty_release 4219 4220commit 318be28cda1fd9108f2e6f2f86b0b7589ba2aed0 4221Author: djm@openbsd.org <djm@openbsd.org> 4222Date: Mon Apr 13 02:04:08 2015 +0000 4223 4224 upstream commit 4225 4226 deprecate ancient, pre-RFC4419 and undocumented 4227 SSH2_MSG_KEX_DH_GEX_REQUEST_OLD message; ok markus@ deraadt@ "seems 4228 reasonable" dtucker@ 4229 4230commit d8f391caef62378463a0e6b36f940170dadfe605 4231Author: dtucker@openbsd.org <dtucker@openbsd.org> 4232Date: Fri Apr 10 05:16:50 2015 +0000 4233 4234 upstream commit 4235 4236 Don't send hostkey advertisments 4237 (hostkeys-00@openssh.com) to current versions of Tera Term as they can't 4238 handle them. Newer versions should be OK. Patch from Bryan Drewery and 4239 IWAMOTO Kouichi, ok djm@ 4240 4241commit 2c2cfe1a1c97eb9a08cc9817fd0678209680c636 4242Author: djm@openbsd.org <djm@openbsd.org> 4243Date: Fri Apr 10 00:08:55 2015 +0000 4244 4245 upstream commit 4246 4247 include port number if a non-default one has been 4248 specified; based on patch from Michael Handler 4249 4250commit 4492a4f222da4cf1e8eab12689196322e27b08c4 4251Author: djm@openbsd.org <djm@openbsd.org> 4252Date: Tue Apr 7 23:00:42 2015 +0000 4253 4254 upstream commit 4255 4256 treat Protocol=1,2|2,1 as Protocol=2 when compiled 4257 without SSH1 support; ok dtucker@ millert@ 4258 4259commit c265e2e6e932efc6d86f6cc885dea33637a67564 4260Author: miod@openbsd.org <miod@openbsd.org> 4261Date: Sun Apr 5 15:43:43 2015 +0000 4262 4263 upstream commit 4264 4265 Do not use int for sig_atomic_t; spotted by 4266 christos@netbsd; ok markus@ 4267 4268commit e7bf3a5eda6a1b02bef6096fed78527ee11e54cc 4269Author: Darren Tucker <dtucker@zip.com.au> 4270Date: Tue Apr 7 10:48:04 2015 +1000 4271 4272 Use do{}while(0) for no-op functions. 4273 4274 From FreeBSD. 4275 4276commit bb99844abae2b6447272f79e7fa84134802eb4df 4277Author: Darren Tucker <dtucker@zip.com.au> 4278Date: Tue Apr 7 10:47:15 2015 +1000 4279 4280 Wrap blf.h include in ifdef. From FreeBSD. 4281 4282commit d9b9b43656091cf0ad55c122f08fadb07dad0abd 4283Author: Darren Tucker <dtucker@zip.com.au> 4284Date: Tue Apr 7 09:10:00 2015 +1000 4285 4286 Fix misspellings of regress CONFOPTS env variables. 4287 4288 Patch from Bryan Drewery. 4289 4290commit 3f4ea3c9ab1d32d43c9222c4351f58ca11144156 4291Author: djm@openbsd.org <djm@openbsd.org> 4292Date: Fri Apr 3 22:17:27 2015 +0000 4293 4294 upstream commit 4295 4296 correct return value in pubkey parsing, spotted by Ben Hawkes 4297 ok markus@ 4298 4299commit 7da2be0cb9601ed25460c83aa4d44052b967ba0f 4300Author: djm@openbsd.org <djm@openbsd.org> 4301Date: Tue Mar 31 22:59:01 2015 +0000 4302 4303 upstream commit 4304 4305 adapt to recent hostfile.c change: when parsing 4306 known_hosts without fully parsing the keys therein, hostkeys_foreach() will 4307 now correctly identify KEY_RSA1 keys; ok markus@ miod@ 4308 4309commit 9e1777a0d1c706714b055811c12ab8cc21033e4a 4310Author: markus@openbsd.org <markus@openbsd.org> 4311Date: Tue Mar 24 20:19:15 2015 +0000 4312 4313 upstream commit 4314 4315 use ${SSH} for -Q instead of installed ssh 4316 4317commit ce1b358ea414a2cc88e4430cd5a2ea7fecd9de57 4318Author: djm@openbsd.org <djm@openbsd.org> 4319Date: Mon Mar 16 22:46:14 2015 +0000 4320 4321 upstream commit 4322 4323 make CLEANFILES clean up more of the tests' droppings 4324 4325commit 398f9ef192d820b67beba01ec234d66faca65775 4326Author: djm@openbsd.org <djm@openbsd.org> 4327Date: Tue Mar 31 22:57:06 2015 +0000 4328 4329 upstream commit 4330 4331 downgrade error() for known_hosts parse errors to debug() 4332 to quiet warnings from ssh1 keys present when compiled !ssh1. 4333 4334 also identify ssh1 keys when scanning, even when compiled !ssh1 4335 4336 ok markus@ miod@ 4337 4338commit 9a47ab80030a31f2d122b8fd95bd48c408b9fcd9 4339Author: djm@openbsd.org <djm@openbsd.org> 4340Date: Tue Mar 31 22:55:50 2015 +0000 4341 4342 upstream commit 4343 4344 fd leak for !ssh1 case; found by unittests; ok markus@ 4345 4346commit c9a0805a6280681901c270755a7cd630d7c5280e 4347Author: djm@openbsd.org <djm@openbsd.org> 4348Date: Tue Mar 31 22:55:24 2015 +0000 4349 4350 upstream commit 4351 4352 don't fatal when a !ssh1 sshd is reexeced from a w/ssh1 4353 listener; reported by miod@; ok miod@ markus@ 4354 4355commit 704d8c88988cae38fb755a6243b119731d223222 4356Author: tobias@openbsd.org <tobias@openbsd.org> 4357Date: Tue Mar 31 11:06:49 2015 +0000 4358 4359 upstream commit 4360 4361 Comments are only supported for RSA1 keys. If a user 4362 tried to add one and entered his passphrase, explicitly clear it before exit. 4363 This is done in all other error paths, too. 4364 4365 ok djm 4366 4367commit 78de1673c05ea2c33e0d4a4b64ecb5186b6ea2e9 4368Author: jmc@openbsd.org <jmc@openbsd.org> 4369Date: Mon Mar 30 18:28:37 2015 +0000 4370 4371 upstream commit 4372 4373 ssh-askpass(1) is the default, overridden by SSH_ASKPASS; 4374 diff originally from jiri b; 4375 4376commit 26e0bcf766fadb4a44fb6199386fb1dcab65ad00 4377Author: djm@openbsd.org <djm@openbsd.org> 4378Date: Mon Mar 30 00:00:29 2015 +0000 4379 4380 upstream commit 4381 4382 fix uninitialised memory read when parsing a config file 4383 consisting of a single nul byte. Found by hanno AT hboeck.de using AFL; ok 4384 dtucker 4385 4386commit fecede00a76fbb33a349f5121c0b2f9fbc04a777 4387Author: markus@openbsd.org <markus@openbsd.org> 4388Date: Thu Mar 26 19:32:19 2015 +0000 4389 4390 upstream commit 4391 4392 sigp and lenp are not optional in ssh_agent_sign(); ok 4393 djm@ 4394 4395commit 1b0ef3813244c78669e6d4d54c624f600945327d 4396Author: naddy@openbsd.org <naddy@openbsd.org> 4397Date: Thu Mar 26 12:32:38 2015 +0000 4398 4399 upstream commit 4400 4401 don't try to load .ssh/identity by default if SSH1 is 4402 disabled; ok markus@ 4403 4404commit f9b78852379b74a2d14e6fc94fe52af30b7e9c31 4405Author: djm@openbsd.org <djm@openbsd.org> 4406Date: Thu Mar 26 07:00:04 2015 +0000 4407 4408 upstream commit 4409 4410 ban all-zero curve25519 keys as recommended by latest 4411 CFRG curves draft; ok markus 4412 4413commit b8afbe2c1aaf573565e4da775261dfafc8b1ba9c 4414Author: djm@openbsd.org <djm@openbsd.org> 4415Date: Thu Mar 26 06:59:28 2015 +0000 4416 4417 upstream commit 4418 4419 relax bits needed check to allow 4420 diffie-hellman-group1-sha1 key exchange to complete for chacha20-poly1305 was 4421 selected as symmetric cipher; ok markus 4422 4423commit 47842f71e31da130555353c1d57a1e5a8937f1c0 4424Author: markus@openbsd.org <markus@openbsd.org> 4425Date: Wed Mar 25 19:29:58 2015 +0000 4426 4427 upstream commit 4428 4429 ignore v1 errors on ssh-add -D; only try v2 keys on 4430 -l/-L (unless WITH_SSH1) ok djm@ 4431 4432commit 5f57e77f91bf2230c09eca96eb5ecec39e5f2da6 4433Author: markus@openbsd.org <markus@openbsd.org> 4434Date: Wed Mar 25 19:21:48 2015 +0000 4435 4436 upstream commit 4437 4438 unbreak ssh_agent_sign (lenp vs *lenp) 4439 4440commit 4daeb67181054f2a377677fac919ee8f9ed3490e 4441Author: markus@openbsd.org <markus@openbsd.org> 4442Date: Tue Mar 24 20:10:08 2015 +0000 4443 4444 upstream commit 4445 4446 don't leak 'setp' on error; noted by Nicholas Lemonias; 4447 ok djm@ 4448 4449commit 7d4f96f9de2a18af0d9fa75ea89a4990de0344f5 4450Author: markus@openbsd.org <markus@openbsd.org> 4451Date: Tue Mar 24 20:09:11 2015 +0000 4452 4453 upstream commit 4454 4455 consistent check for NULL as noted by Nicholas 4456 Lemonias; ok djm@ 4457 4458commit df100be51354e447d9345cf1ec22e6013c0eed50 4459Author: markus@openbsd.org <markus@openbsd.org> 4460Date: Tue Mar 24 20:03:44 2015 +0000 4461 4462 upstream commit 4463 4464 correct fmt-string for size_t as noted by Nicholas 4465 Lemonias; ok djm@ 4466 4467commit a22b9ef21285e81775732436f7c84a27bd3f71e0 4468Author: djm@openbsd.org <djm@openbsd.org> 4469Date: Tue Mar 24 09:17:21 2015 +0000 4470 4471 upstream commit 4472 4473 promote chacha20-poly1305@openssh.com to be the default 4474 cipher; ok markus 4475 4476commit 2aa9da1a3b360cf7b13e96fe1521534b91501fb5 4477Author: djm@openbsd.org <djm@openbsd.org> 4478Date: Tue Mar 24 01:29:19 2015 +0000 4479 4480 upstream commit 4481 4482 Compile-time disable SSH protocol 1. You can turn it 4483 back on using the Makefile.inc knob if you need it to talk to ancient 4484 devices. 4485 4486commit 53097b2022154edf96b4e8526af5666f979503f7 4487Author: djm@openbsd.org <djm@openbsd.org> 4488Date: Tue Mar 24 01:11:12 2015 +0000 4489 4490 upstream commit 4491 4492 fix double-negative error message "ssh1 is not 4493 unsupported" 4494 4495commit 5c27e3b6ec2db711dfcd40e6359c0bcdd0b62ea9 4496Author: djm@openbsd.org <djm@openbsd.org> 4497Date: Mon Mar 23 06:06:38 2015 +0000 4498 4499 upstream commit 4500 4501 for ssh-keygen -A, don't try (and fail) to generate ssh 4502 v.1 keys when compiled without SSH1 support RSA/DSA/ECDSA keys when compiled 4503 without OpenSSL based on patch by Mike Frysinger; bz#2369 4504 4505commit 725fd22a8c41db7de73a638539a5157b7e4424ae 4506Author: djm@openbsd.org <djm@openbsd.org> 4507Date: Wed Mar 18 01:44:21 2015 +0000 4508 4509 upstream commit 4510 4511 KRL support doesn't need OpenSSL anymore, remove #ifdefs 4512 from around call 4513 4514commit b07011c18e0b2e172c5fd09d21fb159a0bf5fcc7 4515Author: djm@openbsd.org <djm@openbsd.org> 4516Date: Mon Mar 16 11:09:52 2015 +0000 4517 4518 upstream commit 4519 4520 #if 0 some more arrays used only for decrypting (we don't 4521 use since we only need encrypt for AES-CTR) 4522 4523commit 1cb3016635898d287e9d58b50c430995652d5358 4524Author: jsg@openbsd.org <jsg@openbsd.org> 4525Date: Wed Mar 11 00:48:39 2015 +0000 4526 4527 upstream commit 4528 4529 add back the changes from rev 1.206, djm reverted this by 4530 mistake in rev 1.207 4531 4532commit 4d24b3b6a4a6383e05e7da26d183b79fa8663697 4533Author: Damien Miller <djm@mindrot.org> 4534Date: Fri Mar 20 09:11:59 2015 +1100 4535 4536 remove error() accidentally inserted for debugging 4537 4538 pointed out by Christian Hesse 4539 4540commit 9f82e5a9042f2d872e98f48a876fcab3e25dd9bb 4541Author: Tim Rice <tim@multitalents.net> 4542Date: Mon Mar 16 22:49:20 2015 -0700 4543 4544 portability fix: Solaris systems may not have a grep that understands -q 4545 4546commit 8ef691f7d9ef500257a549d0906d78187490668f 4547Author: Damien Miller <djm@google.com> 4548Date: Wed Mar 11 10:35:26 2015 +1100 4549 4550 fix compile with clang 4551 4552commit 4df590cf8dc799e8986268d62019b487a8ed63ad 4553Author: Damien Miller <djm@google.com> 4554Date: Wed Mar 11 10:02:39 2015 +1100 4555 4556 make unit tests work for !OPENSSH_HAS_ECC 4557 4558commit 307bb40277ca2c32e97e61d70d1ed74b571fd6ba 4559Author: djm@openbsd.org <djm@openbsd.org> 4560Date: Sat Mar 7 04:41:48 2015 +0000 4561 4562 upstream commit 4563 4564 unbreak for w/SSH1 (default) case; ok markus@ deraadt@ 4565 4566commit b44ee0c998fb4c5f3c3281f2398af5ce42840b6f 4567Author: Damien Miller <djm@mindrot.org> 4568Date: Thu Mar 5 18:39:20 2015 -0800 4569 4570 unbreak hostkeys test for w/ SSH1 case 4571 4572commit 55e5bdeb519cb60cc18b7ba0545be581fb8598b4 4573Author: djm@openbsd.org <djm@openbsd.org> 4574Date: Fri Mar 6 01:40:56 2015 +0000 4575 4576 upstream commit 4577 4578 fix sshkey_certify() return value for unsupported key types; 4579 ok markus@ deraadt@ 4580 4581commit be8f658e550a434eac04256bfbc4289457a24e99 4582Author: Damien Miller <djm@mindrot.org> 4583Date: Wed Mar 4 15:38:03 2015 -0800 4584 4585 update version numbers to match version.h 4586 4587commit ac5e8acefa253eb5e5ba186e34236c0e8007afdc 4588Author: djm@openbsd.org <djm@openbsd.org> 4589Date: Wed Mar 4 23:22:35 2015 +0000 4590 4591 upstream commit 4592 4593 make these work with !SSH1; ok markus@ deraadt@ 4594 4595commit 2f04af92f036b0c87a23efb259c37da98cd81fe6 4596Author: djm@openbsd.org <djm@openbsd.org> 4597Date: Wed Mar 4 21:12:59 2015 +0000 4598 4599 upstream commit 4600 4601 make ssh-add -D work with !SSH1 agent 4602 4603commit a05adf95d2af6abb2b7826ddaa7a0ec0cdc1726b 4604Author: Damien Miller <djm@mindrot.org> 4605Date: Wed Mar 4 00:55:48 2015 -0800 4606 4607 netcat needs poll.h portability goop 4608 4609commit dad2b1892b4c1b7e58df483a8c5b983c4454e099 4610Author: markus@openbsd.org <markus@openbsd.org> 4611Date: Tue Mar 3 22:35:19 2015 +0000 4612 4613 upstream commit 4614 4615 make it possible to run tests w/o ssh1 support; ok djm@ 4616 4617commit d48a22601bdd3eec054794c535f4ae8d8ae4c6e2 4618Author: djm@openbsd.org <djm@openbsd.org> 4619Date: Wed Mar 4 18:53:53 2015 +0000 4620 4621 upstream commit 4622 4623 crank; ok markus, deraadt 4624 4625commit bbffb23daa0b002dd9f296e396a9ab8a5866b339 4626Author: Damien Miller <djm@mindrot.org> 4627Date: Tue Mar 3 13:50:27 2015 -0800 4628 4629 more --without-ssh1 fixes 4630 4631commit 6c2039286f503e2012a58a1d109e389016e7a99b 4632Author: Damien Miller <djm@mindrot.org> 4633Date: Tue Mar 3 13:48:48 2015 -0800 4634 4635 fix merge both that broke --without-ssh1 compile 4636 4637commit 111dfb225478a76f89ecbcd31e96eaf1311b59d3 4638Author: djm@openbsd.org <djm@openbsd.org> 4639Date: Tue Mar 3 21:21:13 2015 +0000 4640 4641 upstream commit 4642 4643 add SSH1 Makefile knob to make it easier to build without 4644 SSH1 support; ok markus@ 4645 4646commit 3f7f5e6c5d2aa3f6710289c1a30119e534e56c5c 4647Author: djm@openbsd.org <djm@openbsd.org> 4648Date: Tue Mar 3 20:42:49 2015 +0000 4649 4650 upstream commit 4651 4652 expand __unused to full __attribute__ for better portability 4653 4654commit 2fab9b0f8720baf990c931e3f68babb0bf9949c6 4655Author: Damien Miller <djm@mindrot.org> 4656Date: Wed Mar 4 07:41:27 2015 +1100 4657 4658 avoid warning 4659 4660commit d1bc844322461f882b4fd2277ba9a8d4966573d2 4661Author: Damien Miller <djm@mindrot.org> 4662Date: Wed Mar 4 06:31:45 2015 +1100 4663 4664 Revert "define __unused to nothing if not already defined" 4665 4666 This reverts commit 1598419e38afbaa8aa5df8dd6b0af98301e2c908. 4667 4668 Some system headers have objects named __unused 4669 4670commit 00797e86b2d98334d1bb808f65fa1fd47f328ff1 4671Author: Damien Miller <djm@mindrot.org> 4672Date: Wed Mar 4 05:02:45 2015 +1100 4673 4674 check for crypt and DES_crypt in openssl block 4675 4676 fixes builds on systems that use DES_crypt; based on patch 4677 from Roumen Petrov 4678 4679commit 1598419e38afbaa8aa5df8dd6b0af98301e2c908 4680Author: Damien Miller <djm@mindrot.org> 4681Date: Wed Mar 4 04:59:13 2015 +1100 4682 4683 define __unused to nothing if not already defined 4684 4685 fixes builds on BSD/OS 4686 4687commit d608a51daad4f14ad6ab43d7cf74ef4801cc3fe9 4688Author: djm@openbsd.org <djm@openbsd.org> 4689Date: Tue Mar 3 17:53:40 2015 +0000 4690 4691 upstream commit 4692 4693 reorder logic for better portability; patch from Roumen 4694 Petrov 4695 4696commit 68d2dfc464fbcdf8d6387884260f9801f4352393 4697Author: djm@openbsd.org <djm@openbsd.org> 4698Date: Tue Mar 3 06:48:58 2015 +0000 4699 4700 upstream commit 4701 4702 Allow "ssh -Q protocol-version" to list supported SSH 4703 protocol versions. Useful for detecting builds without SSH v.1 support; idea 4704 and ok markus@ 4705 4706commit 39e2f1229562e1195169905607bc12290d21f021 4707Author: millert@openbsd.org <millert@openbsd.org> 4708Date: Sun Mar 1 15:44:40 2015 +0000 4709 4710 upstream commit 4711 4712 Make sure we only call getnameinfo() for AF_INET or AF_INET6 4713 sockets. getpeername() of a Unix domain socket may return without error on 4714 some systems without actually setting ss_family so getnameinfo() was getting 4715 called with ss_family set to AF_UNSPEC. OK djm@ 4716 4717commit e47536ba9692d271b8ad89078abdecf0a1c11707 4718Author: Damien Miller <djm@mindrot.org> 4719Date: Sat Feb 28 08:20:11 2015 -0800 4720 4721 portability fixes for regress/netcat.c 4722 4723 Mostly avoiding "err(1, NULL)" 4724 4725commit 02973ad5f6f49d8420e50a392331432b0396c100 4726Author: Damien Miller <djm@mindrot.org> 4727Date: Sat Feb 28 08:05:27 2015 -0800 4728 4729 twiddle another test for portability 4730 4731 from Tom G. Christensen 4732 4733commit f7f3116abf2a6e2f309ab096b08c58d19613e5d0 4734Author: Damien Miller <djm@mindrot.org> 4735Date: Fri Feb 27 15:52:49 2015 -0800 4736 4737 twiddle test for portability 4738 4739commit 1ad3a77cc9d5568f5437ff99d377aa7a41859b83 4740Author: Damien Miller <djm@mindrot.org> 4741Date: Thu Feb 26 20:33:22 2015 -0800 4742 4743 make regress/netcat.c fd passing (more) portable 4744 4745commit 9e1cfca7e1fe9cf8edb634fc894e43993e4da1ea 4746Author: Damien Miller <djm@mindrot.org> 4747Date: Thu Feb 26 20:32:58 2015 -0800 4748 4749 create OBJ/valgrind-out before running unittests 4750 4751commit bd58853102cee739f0e115e6d4b5334332ab1442 4752Author: Damien Miller <djm@mindrot.org> 4753Date: Wed Feb 25 16:58:22 2015 -0800 4754 4755 valgrind support 4756 4757commit f43d17269194761eded9e89f17456332f4c83824 4758Author: djm@openbsd.org <djm@openbsd.org> 4759Date: Thu Feb 26 20:45:47 2015 +0000 4760 4761 upstream commit 4762 4763 don't printf NULL key comments; reported by Tom Christensen 4764 4765commit 6e6458b476ec854db33e3e68ebf4f489d0ab3df8 4766Author: djm@openbsd.org <djm@openbsd.org> 4767Date: Wed Feb 25 23:05:47 2015 +0000 4768 4769 upstream commit 4770 4771 zero cmsgbuf before use; we initialise the bits we use 4772 but valgrind still spams warning on it 4773 4774commit a63cfa26864b93ab6afefad0b630e5358ed8edfa 4775Author: djm@openbsd.org <djm@openbsd.org> 4776Date: Wed Feb 25 19:54:02 2015 +0000 4777 4778 upstream commit 4779 4780 fix small memory leak when UpdateHostkeys=no 4781 4782commit e6b950341dd75baa8526f1862bca39e52f5b879b 4783Author: Tim Rice <tim@multitalents.net> 4784Date: Wed Feb 25 09:56:48 2015 -0800 4785 4786 Revert "Work around finicky USL linker so netcat will build." 4787 4788 This reverts commit d1db656021d0cd8c001a6692f772f1de29b67c8b. 4789 4790 No longer needed with commit 678e473e2af2e4802f24dd913985864d9ead7fb3 4791 4792commit 6f621603f9cff2a5d6016a404c96cb2f8ac2dec0 4793Author: djm@openbsd.org <djm@openbsd.org> 4794Date: Wed Feb 25 17:29:38 2015 +0000 4795 4796 upstream commit 4797 4798 don't leak validity of user in "too many authentication 4799 failures" disconnect message; reported by Sebastian Reitenbach 4800 4801commit 6288e3a935494df12519164f52ca5c8c65fc3ca5 4802Author: naddy@openbsd.org <naddy@openbsd.org> 4803Date: Tue Feb 24 15:24:05 2015 +0000 4804 4805 upstream commit 4806 4807 add -v (show ASCII art) to -l's synopsis; ok djm@ 4808 4809commit 678e473e2af2e4802f24dd913985864d9ead7fb3 4810Author: Darren Tucker <dtucker@zip.com.au> 4811Date: Thu Feb 26 04:12:58 2015 +1100 4812 4813 Remove dependency on xmalloc. 4814 4815 Remove ssh_get_progname's dependency on xmalloc, which should reduce 4816 link order problems. ok djm@ 4817 4818commit 5d5ec165c5b614b03678afdad881f10e25832e46 4819Author: Darren Tucker <dtucker@zip.com.au> 4820Date: Wed Feb 25 15:32:49 2015 +1100 4821 4822 Restrict ECDSA and ECDH tests. 4823 4824 ifdef out some more ECDSA and ECDH tests when built against an OpenSSL 4825 that does not have eliptic curve functionality. 4826 4827commit 1734e276d99b17e92d4233fac7aef3a3180aaca7 4828Author: Darren Tucker <dtucker@zip.com.au> 4829Date: Wed Feb 25 13:40:45 2015 +1100 4830 4831 Move definition of _NSIG. 4832 4833 _NSIG is only unsed in one file, so move it there prevent redefinition 4834 warnings reported by Kevin Brott. 4835 4836commit a47ead7c95cfbeb72721066c4da2312e5b1b9f3d 4837Author: Darren Tucker <dtucker@zip.com.au> 4838Date: Wed Feb 25 13:17:40 2015 +1100 4839 4840 Add includes.h for compatibility stuff. 4841 4842commit 38806bda6d2e48ad32812b461eebe17672ada771 4843Author: Damien Miller <djm@mindrot.org> 4844Date: Tue Feb 24 16:50:06 2015 -0800 4845 4846 include netdb.h to look for MAXHOSTNAMELEN; ok tim 4847 4848commit d1db656021d0cd8c001a6692f772f1de29b67c8b 4849Author: Tim Rice <tim@multitalents.net> 4850Date: Tue Feb 24 10:42:08 2015 -0800 4851 4852 Work around finicky USL linker so netcat will build. 4853 4854commit cb030ce25f555737e8ba97bdd7883ac43f3ff2a3 4855Author: Damien Miller <djm@mindrot.org> 4856Date: Tue Feb 24 09:23:04 2015 -0800 4857 4858 include includes.h to avoid build failure on AIX 4859 4860commit 13af342458f5064144abbb07e5ac9bbd4eb42567 4861Author: Tim Rice <tim@multitalents.net> 4862Date: Tue Feb 24 07:56:47 2015 -0800 4863 4864 Original portability patch from djm@ for platforms missing err.h. 4865 Fix name space clash on Solaris 10. Still more to do for Solaris 10 4866 to deal with msghdr structure differences. ok djm@ 4867 4868commit 910209203d0cd60c5083901cbcc0b7b44d9f48d2 4869Author: Tim Rice <tim@multitalents.net> 4870Date: Mon Feb 23 22:06:56 2015 -0800 4871 4872 cleaner way fix dispatch.h portion of commit 4873 a88dd1da119052870bb2654c1a32c51971eade16 4874 (some systems have sig_atomic_t in signal.h, some in sys/signal.h) 4875 Sounds good to me djm@ 4876 4877commit 676c38d7cbe65b76bbfff796861bb6615cc6a596 4878Author: Tim Rice <tim@multitalents.net> 4879Date: Mon Feb 23 21:51:33 2015 -0800 4880 4881 portability fix: if we can't dind a better define for HOST_NAME_MAX, use 255 4882 4883commit 1221b22023dce38cbc90ba77eae4c5d78c77a5e6 4884Author: Tim Rice <tim@multitalents.net> 4885Date: Mon Feb 23 21:50:34 2015 -0800 4886 4887 portablity fix: s/__inline__/inline/ 4888 4889commit 4c356308a88d309c796325bb75dce90ca16591d5 4890Author: Darren Tucker <dtucker@zip.com.au> 4891Date: Tue Feb 24 13:49:31 2015 +1100 4892 4893 Wrap stdint.h includes in HAVE_STDINT_H. 4894 4895commit c9c88355c6a27a908e7d1e5003a2b35ea99c1614 4896Author: Darren Tucker <dtucker@zip.com.au> 4897Date: Tue Feb 24 13:43:57 2015 +1100 4898 4899 Add AI_NUMERICSERV to fake-rfc2553. 4900 4901 Our getaddrinfo implementation always returns numeric values already. 4902 4903commit ef342ab1ce6fb9a4b30186c89c309d0ae9d0eeb4 4904Author: Darren Tucker <dtucker@zip.com.au> 4905Date: Tue Feb 24 13:39:57 2015 +1100 4906 4907 Include OpenSSL's objects.h before bn.h. 4908 4909 Prevents compile errors on some platforms (at least old GCCs and AIX's 4910 XLC compilers). 4911 4912commit dcc8997d116f615195aa7c9ec019fb36c28c6228 4913Author: Darren Tucker <dtucker@zip.com.au> 4914Date: Tue Feb 24 12:30:59 2015 +1100 4915 4916 Convert two macros into functions. 4917 4918 Convert packet_send_debug and packet_disconnect from macros to 4919 functions. Some older GCCs (2.7.x, 2.95.x) see to have problems with 4920 variadic macros with only one argument so we convert these two into 4921 functions. ok djm@ 4922 4923commit 2285c30d51b7e2052c6526445abe7e7cc7e170a1 4924Author: djm@openbsd.org <djm@openbsd.org> 4925Date: Mon Feb 23 22:21:21 2015 +0000 4926 4927 upstream commit 4928 4929 further silence spurious error message even when -v is 4930 specified (e.g. to get visual host keys); reported by naddy@ 4931 4932commit 9af21979c00652029e160295e988dea40758ece2 4933Author: Damien Miller <djm@mindrot.org> 4934Date: Tue Feb 24 09:04:32 2015 +1100 4935 4936 don't include stdint.h unless HAVE_STDINT_H set 4937 4938commit 62f678dd51660d6f8aee1da33d3222c5de10a89e 4939Author: Damien Miller <djm@mindrot.org> 4940Date: Tue Feb 24 09:02:54 2015 +1100 4941 4942 nother sys/queue.h -> sys-queue.h fix 4943 4944 spotted by Tom Christensen 4945 4946commit b3c19151cba2c0ed01b27f55de0d723ad07ca98f 4947Author: djm@openbsd.org <djm@openbsd.org> 4948Date: Mon Feb 23 20:32:15 2015 +0000 4949 4950 upstream commit 4951 4952 fix a race condition by using a mux socket rather than an 4953 ineffectual wait statement 4954 4955commit a88dd1da119052870bb2654c1a32c51971eade16 4956Author: Damien Miller <djm@mindrot.org> 4957Date: Tue Feb 24 06:30:29 2015 +1100 4958 4959 various include fixes for portable 4960 4961commit 5248429b5ec524d0a65507cff0cdd6e0cb99effd 4962Author: djm@openbsd.org <djm@openbsd.org> 4963Date: Mon Feb 23 16:55:51 2015 +0000 4964 4965 upstream commit 4966 4967 add an XXX to remind me to improve sshkey_load_public 4968 4969commit e94e4b07ef2eaead38b085a60535df9981cdbcdb 4970Author: djm@openbsd.org <djm@openbsd.org> 4971Date: Mon Feb 23 16:55:31 2015 +0000 4972 4973 upstream commit 4974 4975 silence a spurious error message when listing 4976 fingerprints for known_hosts; bz#2342 4977 4978commit f2293a65392b54ac721f66bc0b44462e8d1d81f8 4979Author: djm@openbsd.org <djm@openbsd.org> 4980Date: Mon Feb 23 16:33:25 2015 +0000 4981 4982 upstream commit 4983 4984 fix setting/clearing of TTY raw mode around 4985 UpdateHostKeys=ask confirmation question; reported by Herb Goldman 4986 4987commit f2004cd1adf34492eae0a44b1ef84e0e31b06088 4988Author: Darren Tucker <dtucker@zip.com.au> 4989Date: Mon Feb 23 05:04:21 2015 +1100 4990 4991 Repair for non-ECC OpenSSL. 4992 4993 Ifdef out the ECC parts when building with an OpenSSL that doesn't have 4994 it. 4995 4996commit 37f9220db8d1a52c75894c3de1e5f2ae5bd71b6f 4997Author: Darren Tucker <dtucker@zip.com.au> 4998Date: Mon Feb 23 03:07:24 2015 +1100 4999 5000 Wrap stdint.h includes in ifdefs. 5001 5002commit f81f1bbc5b892c8614ea740b1f92735652eb43f0 5003Author: Tim Rice <tim@multitalents.net> 5004Date: Sat Feb 21 18:12:10 2015 -0800 5005 5006 out of tree build fix 5007 5008commit 2e13a1e4d22f3b503c3bfc878562cc7386a1d1ae 5009Author: Tim Rice <tim@multitalents.net> 5010Date: Sat Feb 21 18:08:51 2015 -0800 5011 5012 mkdir kex unit test directory so testing out of tree builds works 5013 5014commit 1797f49b1ba31e8700231cd6b1d512d80bb50d2c 5015Author: halex@openbsd.org <halex@openbsd.org> 5016Date: Sat Feb 21 21:46:57 2015 +0000 5017 5018 upstream commit 5019 5020 make "ssh-add -d" properly remove a corresponding 5021 certificate, and also not whine and fail if there is none 5022 5023 ok djm@ 5024 5025commit 7faaa32da83a609059d95dbfcb0649fdb04caaf6 5026Author: Damien Miller <djm@mindrot.org> 5027Date: Sun Feb 22 07:57:27 2015 +1100 5028 5029 mkdir hostkey and bitmap unit test directories 5030 5031commit bd49da2ef197efac5e38f5399263a8b47990c538 5032Author: djm@openbsd.org <djm@openbsd.org> 5033Date: Fri Feb 20 23:46:01 2015 +0000 5034 5035 upstream commit 5036 5037 sort options useable under Match case-insensitively; prodded 5038 jmc@ 5039 5040commit 1a779a0dd6cd8b4a1a40ea33b5415ab8408128ac 5041Author: djm@openbsd.org <djm@openbsd.org> 5042Date: Sat Feb 21 20:51:02 2015 +0000 5043 5044 upstream commit 5045 5046 correct paths to configuration files being written/updated; 5047 they live in $OBJ not cwd; some by Roumen Petrov 5048 5049commit 28ba006c1acddff992ae946d0bc0b500b531ba6b 5050Author: Darren Tucker <dtucker@zip.com.au> 5051Date: Sat Feb 21 15:41:07 2015 +1100 5052 5053 More correct checking of HAVE_DECL_AI_NUMERICSERV. 5054 5055commit e50e8c97a9cecae1f28febccaa6ca5ab3bc10f54 5056Author: Darren Tucker <dtucker@zip.com.au> 5057Date: Sat Feb 21 15:10:33 2015 +1100 5058 5059 Add null declaration of AI_NUMERICINFO. 5060 5061 Some platforms (older FreeBSD and DragonFly versions) do have 5062 getaddrinfo() but do not have AI_NUMERICINFO. so define it to zero 5063 in those cases. 5064 5065commit 18a208d6a460d707a45916db63a571e805f5db46 5066Author: djm@openbsd.org <djm@openbsd.org> 5067Date: Fri Feb 20 22:40:32 2015 +0000 5068 5069 upstream commit 5070 5071 more options that are available under Match; bz#2353 reported 5072 by calestyo AT scientia.net 5073 5074commit 44732de06884238049f285f1455b2181baa7dc82 5075Author: djm@openbsd.org <djm@openbsd.org> 5076Date: Fri Feb 20 22:17:21 2015 +0000 5077 5078 upstream commit 5079 5080 UpdateHostKeys fixes: 5081 5082 I accidentally changed the format of the hostkeys@openssh.com messages 5083 last week without changing the extension name, and this has been causing 5084 connection failures for people who are running -current. First reported 5085 by sthen@ 5086 5087 s/hostkeys@openssh.com/hostkeys-00@openssh.com/ 5088 Change the name of the proof message too, and reorder it a little. 5089 5090 Also, UpdateHostKeys=ask is incompatible with ControlPersist (no TTY 5091 available to read the response) so disable UpdateHostKeys if it is in 5092 ask mode and ControlPersist is active (and document this) 5093 5094commit 13a39414d25646f93e6d355521d832a03aaaffe2 5095Author: djm@openbsd.org <djm@openbsd.org> 5096Date: Tue Feb 17 00:14:05 2015 +0000 5097 5098 upstream commit 5099 5100 Regression: I broke logging of public key fingerprints in 5101 1.46. Pointed out by Pontus Lundkvist 5102 5103commit 773dda25e828c4c9a52f7bdce6e1e5924157beab 5104Author: Damien Miller <djm@mindrot.org> 5105Date: Fri Jan 30 23:10:17 2015 +1100 5106 5107 repair --without-openssl; broken in refactor 5108 5109commit e89c780886b23600de1e1c8d74aabd1ff61f43f0 5110Author: Damien Miller <djm@google.com> 5111Date: Tue Feb 17 10:04:55 2015 +1100 5112 5113 hook up hostkeys unittest to portable Makefiles 5114 5115commit 0abf41f99aa16ff09b263bead242d6cb2dbbcf99 5116Author: djm@openbsd.org <djm@openbsd.org> 5117Date: Mon Feb 16 22:21:03 2015 +0000 5118 5119 upstream commit 5120 5121 enable hostkeys unit tests 5122 5123commit 68a5d647ccf0fb6782b2f749433a1eee5bc9044b 5124Author: djm@openbsd.org <djm@openbsd.org> 5125Date: Mon Feb 16 22:20:50 2015 +0000 5126 5127 upstream commit 5128 5129 check string/memory compare arguments aren't NULL 5130 5131commit ef575ef20d09f20722e26b45dab80b3620469687 5132Author: djm@openbsd.org <djm@openbsd.org> 5133Date: Mon Feb 16 22:18:34 2015 +0000 5134 5135 upstream commit 5136 5137 unit tests for hostfile.c code, just hostkeys_foreach so 5138 far 5139 5140commit 8ea3365e6aa2759ccf5c76eaea62cbc8a280b0e7 5141Author: markus@openbsd.org <markus@openbsd.org> 5142Date: Sat Feb 14 12:43:16 2015 +0000 5143 5144 upstream commit 5145 5146 test server rekey limit 5147 5148commit ce63c4b063c39b2b22d4ada449c9e3fbde788cb3 5149Author: djm@openbsd.org <djm@openbsd.org> 5150Date: Mon Feb 16 22:30:03 2015 +0000 5151 5152 upstream commit 5153 5154 partial backout of: 5155 5156 revision 1.441 5157 date: 2015/01/31 20:30:05; author: djm; state: Exp; lines: +17 -10; commitid 5158 : x8klYPZMJSrVlt3O; 5159 Let sshd load public host keys even when private keys are missing. 5160 Allows sshd to advertise additional keys for future key rotation. 5161 Also log fingerprint of hostkeys loaded; ok markus@ 5162 5163 hostkey updates now require access to the private key, so we can't 5164 load public keys only. The improved log messages (fingerprints of keys 5165 loaded) are kept. 5166 5167commit 523463a3a2a9bfc6cfc5afa01bae9147f76a37cc 5168Author: djm@openbsd.org <djm@openbsd.org> 5169Date: Mon Feb 16 22:13:32 2015 +0000 5170 5171 upstream commit 5172 5173 Revise hostkeys@openssh.com hostkey learning extension. 5174 5175 The client will not ask the server to prove ownership of the private 5176 halves of any hitherto-unseen hostkeys it offers to the client. 5177 5178 Allow UpdateHostKeys option to take an 'ask' argument to let the 5179 user manually review keys offered. 5180 5181 ok markus@ 5182 5183commit 6c5c949782d86a6e7d58006599c7685bfcd01685 5184Author: djm@openbsd.org <djm@openbsd.org> 5185Date: Mon Feb 16 22:08:57 2015 +0000 5186 5187 upstream commit 5188 5189 Refactor hostkeys_foreach() and dependent code Deal with 5190 IP addresses (i.e. CheckHostIP) Don't clobber known_hosts when nothing 5191 changed ok markus@ as part of larger commit 5192 5193commit 51b082ccbe633dc970df1d1f4c9c0497115fe721 5194Author: miod@openbsd.org <miod@openbsd.org> 5195Date: Mon Feb 16 18:26:26 2015 +0000 5196 5197 upstream commit 5198 5199 Declare ge25519_base as extern, to prevent it from 5200 becoming a common. Gets us rid of ``lignment 4 of symbol 5201 `crypto_sign_ed25519_ref_ge25519_base' in mod_ge25519.o is smaller than 16 in 5202 mod_ed25519.o'' warnings at link time. 5203 5204commit 02db468bf7e3281a8e3c058ced571b38b6407c34 5205Author: markus@openbsd.org <markus@openbsd.org> 5206Date: Fri Feb 13 18:57:00 2015 +0000 5207 5208 upstream commit 5209 5210 make rekey_limit for sshd w/privsep work; ok djm@ 5211 dtucker@ 5212 5213commit 8ec67d505bd23c8bf9e17b7a364b563a07a58ec8 5214Author: dtucker@openbsd.org <dtucker@openbsd.org> 5215Date: Thu Feb 12 20:34:19 2015 +0000 5216 5217 upstream commit 5218 5219 Prevent sshd spamming syslog with 5220 "ssh_dispatch_run_fatal: disconnected". ok markus@ 5221 5222commit d4c0295d1afc342057ba358237acad6be8af480b 5223Author: djm@openbsd.org <djm@openbsd.org> 5224Date: Wed Feb 11 01:20:38 2015 +0000 5225 5226 upstream commit 5227 5228 Some packet error messages show the address of the peer, 5229 but might be generated after the socket to the peer has suffered a TCP reset. 5230 In these cases, getpeername() won't work so cache the address earlier. 5231 5232 spotted in the wild via deraadt@ and tedu@ 5233 5234commit 4af1709cf774475ce5d1bc3ddcc165f6c222897d 5235Author: jsg@openbsd.org <jsg@openbsd.org> 5236Date: Mon Feb 9 23:22:37 2015 +0000 5237 5238 upstream commit 5239 5240 fix some leaks in error paths ok markus@ 5241 5242commit fd36834871d06a03e1ff8d69e41992efa1bbf85f 5243Author: millert@openbsd.org <millert@openbsd.org> 5244Date: Fri Feb 6 23:21:59 2015 +0000 5245 5246 upstream commit 5247 5248 SIZE_MAX is standard, we should be using it in preference to 5249 the obsolete SIZE_T_MAX. OK miod@ beck@ 5250 5251commit 1910a286d7771eab84c0b047f31c0a17505236fa 5252Author: millert@openbsd.org <millert@openbsd.org> 5253Date: Thu Feb 5 12:59:57 2015 +0000 5254 5255 upstream commit 5256 5257 Include stdint.h, not limits.h to get SIZE_MAX. OK guenther@ 5258 5259commit ce4f59b2405845584f45e0b3214760eb0008c06c 5260Author: deraadt@openbsd.org <deraadt@openbsd.org> 5261Date: Tue Feb 3 08:07:20 2015 +0000 5262 5263 upstream commit 5264 5265 missing ; djm and mlarkin really having great 5266 interactions recently 5267 5268commit 5d34aa94938abb12b877a25be51862757f25d54b 5269Author: halex@openbsd.org <halex@openbsd.org> 5270Date: Tue Feb 3 00:34:14 2015 +0000 5271 5272 upstream commit 5273 5274 slightly extend the passphrase prompt if running with -c 5275 in order to give the user a chance to notice if unintentionally running 5276 without it 5277 5278 wording tweak and ok djm@ 5279 5280commit cb3bde373e80902c7d5d0db429f85068d19b2918 5281Author: djm@openbsd.org <djm@openbsd.org> 5282Date: Mon Feb 2 22:48:53 2015 +0000 5283 5284 upstream commit 5285 5286 handle PKCS#11 C_Login returning 5287 CKR_USER_ALREADY_LOGGED_IN; based on patch from Yuri Samoilenko; ok markus@ 5288 5289commit 15ad750e5ec3cc69765b7eba1ce90060e7083399 5290Author: djm@openbsd.org <djm@openbsd.org> 5291Date: Mon Feb 2 07:41:40 2015 +0000 5292 5293 upstream commit 5294 5295 turn UpdateHostkeys off by default until I figure out 5296 mlarkin@'s warning message; requested by deraadt@ 5297 5298commit 3cd5103c1e1aaa59bd66f7f52f6ebbcd5deb12f9 5299Author: deraadt@openbsd.org <deraadt@openbsd.org> 5300Date: Mon Feb 2 01:57:44 2015 +0000 5301 5302 upstream commit 5303 5304 increasing encounters with difficult DNS setups in 5305 darknets has convinced me UseDNS off by default is better ok djm 5306 5307commit 6049a548a8a68ff0bbe581ab1748ea6a59ecdc38 5308Author: djm@openbsd.org <djm@openbsd.org> 5309Date: Sat Jan 31 20:30:05 2015 +0000 5310 5311 upstream commit 5312 5313 Let sshd load public host keys even when private keys are 5314 missing. Allows sshd to advertise additional keys for future key rotation. 5315 Also log fingerprint of hostkeys loaded; ok markus@ 5316 5317commit 46347ed5968f582661e8a70a45f448e0179ca0ab 5318Author: djm@openbsd.org <djm@openbsd.org> 5319Date: Fri Jan 30 11:43:14 2015 +0000 5320 5321 upstream commit 5322 5323 Add a ssh_config HostbasedKeyType option to control which 5324 host public key types are tried during hostbased authentication. 5325 5326 This may be used to prevent too many keys being sent to the server, 5327 and blowing past its MaxAuthTries limit. 5328 5329 bz#2211 based on patch by Iain Morgan; ok markus@ 5330 5331commit 802660cb70453fa4d230cb0233bc1bbdf8328de1 5332Author: djm@openbsd.org <djm@openbsd.org> 5333Date: Fri Jan 30 10:44:49 2015 +0000 5334 5335 upstream commit 5336 5337 set a timeout to prevent hangs when talking to busted 5338 servers; ok markus@ 5339 5340commit 86936ec245a15c7abe71a0722610998b0a28b194 5341Author: djm@openbsd.org <djm@openbsd.org> 5342Date: Fri Jan 30 01:11:39 2015 +0000 5343 5344 upstream commit 5345 5346 regression test for 'wildcard CA' serial/key ID revocations 5347 5348commit 4509b5d4a4fa645a022635bfa7e86d09b285001f 5349Author: djm@openbsd.org <djm@openbsd.org> 5350Date: Fri Jan 30 01:13:33 2015 +0000 5351 5352 upstream commit 5353 5354 avoid more fatal/exit in the packet.c paths that 5355 ssh-keyscan uses; feedback and "looks good" markus@ 5356 5357commit 669aee994348468af8b4b2ebd29b602cf2860b22 5358Author: djm@openbsd.org <djm@openbsd.org> 5359Date: Fri Jan 30 01:10:33 2015 +0000 5360 5361 upstream commit 5362 5363 permit KRLs that revoke certificates by serial number or 5364 key ID without scoping to a particular CA; ok markus@ 5365 5366commit 7a2c368477e26575d0866247d3313da4256cb2b5 5367Author: djm@openbsd.org <djm@openbsd.org> 5368Date: Fri Jan 30 00:59:19 2015 +0000 5369 5370 upstream commit 5371 5372 missing parentheses after if in do_convert_from() broke 5373 private key conversion from other formats some time in 2010; bz#2345 reported 5374 by jjelen AT redhat.com 5375 5376commit 25f5f78d8bf5c22d9cea8b49de24ebeee648a355 5377Author: djm@openbsd.org <djm@openbsd.org> 5378Date: Fri Jan 30 00:22:25 2015 +0000 5379 5380 upstream commit 5381 5382 fix ssh protocol 1, spotted by miod@ 5383 5384commit 9ce86c926dfa6e0635161b035e3944e611cbccf0 5385Author: djm@openbsd.org <djm@openbsd.org> 5386Date: Wed Jan 28 22:36:00 2015 +0000 5387 5388 upstream commit 5389 5390 update to new API (key_fingerprint => sshkey_fingerprint) 5391 check sshkey_fingerprint return values; ok markus 5392 5393commit 9125525c37bf73ad3ee4025520889d2ce9d10f29 5394Author: djm@openbsd.org <djm@openbsd.org> 5395Date: Wed Jan 28 22:05:31 2015 +0000 5396 5397 upstream commit 5398 5399 avoid fatal() calls in packet code makes ssh-keyscan more 5400 reliable against server failures ok dtucker@ markus@ 5401 5402commit fae7bbe544cba7a9e5e4ab47ff6faa3d978646eb 5403Author: djm@openbsd.org <djm@openbsd.org> 5404Date: Wed Jan 28 21:15:47 2015 +0000 5405 5406 upstream commit 5407 5408 avoid fatal() calls in packet code makes ssh-keyscan more 5409 reliable against server failures ok dtucker@ markus@ 5410 5411commit 1a3d14f6b44a494037c7deab485abe6496bf2c60 5412Author: djm@openbsd.org <djm@openbsd.org> 5413Date: Wed Jan 28 11:07:25 2015 +0000 5414 5415 upstream commit 5416 5417 remove obsolete comment 5418 5419commit 80c25b7bc0a71d75c43a4575d9a1336f589eb639 5420Author: okan@openbsd.org <okan@openbsd.org> 5421Date: Tue Jan 27 12:54:06 2015 +0000 5422 5423 upstream commit 5424 5425 Since r1.2 removed the use of PRI* macros, inttypes.h is 5426 no longer required. 5427 5428 ok djm@ 5429 5430commit 69ff64f69615c2a21c97cb5878a0996c21423257 5431Author: Damien Miller <djm@mindrot.org> 5432Date: Tue Jan 27 23:07:43 2015 +1100 5433 5434 compile on systems without TCP_MD5SIG (e.g. OSX) 5435 5436commit 358964f3082fb90b2ae15bcab07b6105cfad5a43 5437Author: Damien Miller <djm@mindrot.org> 5438Date: Tue Jan 27 23:07:25 2015 +1100 5439 5440 use ssh-keygen under test rather than system's 5441 5442commit a2c95c1bf33ea53038324d1fdd774bc953f98236 5443Author: Damien Miller <djm@mindrot.org> 5444Date: Tue Jan 27 23:06:59 2015 +1100 5445 5446 OSX lacks HOST_NAME_MAX, has _POSIX_HOST_NAME_MAX 5447 5448commit ade31d7b6f608a19b85bee29a7a00b1e636a2919 5449Author: Damien Miller <djm@mindrot.org> 5450Date: Tue Jan 27 23:06:23 2015 +1100 5451 5452 these need active_state defined to link on OSX 5453 5454 temporary measure until active_state goes away entirely 5455 5456commit e56aa87502f22c5844918c10190e8b4f785f067b 5457Author: djm@openbsd.org <djm@openbsd.org> 5458Date: Tue Jan 27 12:01:36 2015 +0000 5459 5460 upstream commit 5461 5462 use printf instead of echo -n to reduce diff against 5463 -portable 5464 5465commit 9f7637f56eddfaf62ce3c0af89c25480f2cf1068 5466Author: jmc@openbsd.org <jmc@openbsd.org> 5467Date: Mon Jan 26 13:55:29 2015 +0000 5468 5469 upstream commit 5470 5471 sort previous; 5472 5473commit 3076ee7d530d5b16842fac7a6229706c7e5acd26 5474Author: djm@openbsd.org <djm@openbsd.org> 5475Date: Mon Jan 26 13:36:53 2015 +0000 5476 5477 upstream commit 5478 5479 properly restore umask 5480 5481commit d411d395556b73ba1b9e451516a0bd6697c4b03d 5482Author: djm@openbsd.org <djm@openbsd.org> 5483Date: Mon Jan 26 06:12:18 2015 +0000 5484 5485 upstream commit 5486 5487 regression test for host key rotation 5488 5489commit fe8a3a51699afbc6407a8fae59b73349d01e49f8 5490Author: djm@openbsd.org <djm@openbsd.org> 5491Date: Mon Jan 26 06:11:28 2015 +0000 5492 5493 upstream commit 5494 5495 adapt to sshkey API tweaks 5496 5497commit 7dd355fb1f0038a3d5cdca57ebab4356c7a5b434 5498Author: miod@openbsd.org <miod@openbsd.org> 5499Date: Sat Jan 24 10:39:21 2015 +0000 5500 5501 upstream commit 5502 5503 Move -lz late in the linker commandline for things to 5504 build on static arches. 5505 5506commit 0dad3b806fddb93c475b30853b9be1a25d673a33 5507Author: miod@openbsd.org <miod@openbsd.org> 5508Date: Fri Jan 23 21:21:23 2015 +0000 5509 5510 upstream commit 5511 5512 -Wpointer-sign is supported by gcc 4 only. 5513 5514commit 2b3b1c1e4bd9577b6e780c255c278542ea66c098 5515Author: djm@openbsd.org <djm@openbsd.org> 5516Date: Tue Jan 20 22:58:57 2015 +0000 5517 5518 upstream commit 5519 5520 use SUBDIR to recuse into unit tests; makes "make obj" 5521 actually work 5522 5523commit 1d1092bff8db27080155541212b420703f8b9c92 5524Author: djm@openbsd.org <djm@openbsd.org> 5525Date: Mon Jan 26 12:16:36 2015 +0000 5526 5527 upstream commit 5528 5529 correct description of UpdateHostKeys in ssh_config.5 and 5530 add it to -o lists for ssh, scp and sftp; pointed out by jmc@ 5531 5532commit 5104db7cbd6cdd9c5971f4358e74414862fc1022 5533Author: djm@openbsd.org <djm@openbsd.org> 5534Date: Mon Jan 26 06:10:03 2015 +0000 5535 5536 upstream commit 5537 5538 correctly match ECDSA subtype (== curve) for 5539 offered/recevied host keys. Fixes connection-killing host key mismatches when 5540 a server offers multiple ECDSA keys with different curve type (an extremely 5541 unlikely configuration). 5542 5543 ok markus, "looks mechanical" deraadt@ 5544 5545commit 8d4f87258f31cb6def9b3b55b6a7321d84728ff2 5546Author: djm@openbsd.org <djm@openbsd.org> 5547Date: Mon Jan 26 03:04:45 2015 +0000 5548 5549 upstream commit 5550 5551 Host key rotation support. 5552 5553 Add a hostkeys@openssh.com protocol extension (global request) for 5554 a server to inform a client of all its available host key after 5555 authentication has completed. The client may record the keys in 5556 known_hosts, allowing it to upgrade to better host key algorithms 5557 and a server to gracefully rotate its keys. 5558 5559 The client side of this is controlled by a UpdateHostkeys config 5560 option (default on). 5561 5562 ok markus@ 5563 5564commit 60b1825262b1f1e24fc72050b907189c92daf18e 5565Author: djm@openbsd.org <djm@openbsd.org> 5566Date: Mon Jan 26 02:59:11 2015 +0000 5567 5568 upstream commit 5569 5570 small refactor and add some convenience functions; ok 5571 markus 5572 5573commit a5a3e3328ddce91e76f71ff479022d53e35c60c9 5574Author: jmc@openbsd.org <jmc@openbsd.org> 5575Date: Thu Jan 22 21:00:42 2015 +0000 5576 5577 upstream commit 5578 5579 heirarchy -> hierarchy; 5580 5581commit dcff5810a11195c57e1b3343c0d6b6f2b9974c11 5582Author: deraadt@openbsd.org <deraadt@openbsd.org> 5583Date: Thu Jan 22 20:24:41 2015 +0000 5584 5585 upstream commit 5586 5587 Provide a warning about chroot misuses (which sadly, seem 5588 to have become quite popular because shiny). sshd cannot detect/manage/do 5589 anything about these cases, best we can do is warn in the right spot in the 5590 man page. ok markus 5591 5592commit 087266ec33c76fc8d54ac5a19efacf2f4a4ca076 5593Author: deraadt@openbsd.org <deraadt@openbsd.org> 5594Date: Tue Jan 20 23:14:00 2015 +0000 5595 5596 upstream commit 5597 5598 Reduce use of <sys/param.h> and transition to <limits.h> 5599 throughout. ok djm markus 5600 5601commit 57e783c8ba2c0797f93977e83b2a8644a03065d8 5602Author: markus@openbsd.org <markus@openbsd.org> 5603Date: Tue Jan 20 20:16:21 2015 +0000 5604 5605 upstream commit 5606 5607 kex_setup errors are fatal() 5608 5609commit 1d6424a6ff94633c221297ae8f42d54e12a20912 5610Author: djm@openbsd.org <djm@openbsd.org> 5611Date: Tue Jan 20 08:02:33 2015 +0000 5612 5613 upstream commit 5614 5615 this test would accidentally delete agent.sh if run without 5616 obj/ 5617 5618commit 12b5f50777203e12575f1b08568281e447249ed3 5619Author: djm@openbsd.org <djm@openbsd.org> 5620Date: Tue Jan 20 07:56:44 2015 +0000 5621 5622 upstream commit 5623 5624 make this compile with KERBEROS5 enabled 5625 5626commit e2cc6bef08941256817d44d146115b3478586ad4 5627Author: djm@openbsd.org <djm@openbsd.org> 5628Date: Tue Jan 20 07:55:33 2015 +0000 5629 5630 upstream commit 5631 5632 fix hostkeys in agent; ok markus@ 5633 5634commit 1ca3e2155aa5d3801a7ae050f85c71f41fcb95b1 5635Author: Damien Miller <djm@mindrot.org> 5636Date: Tue Jan 20 10:11:31 2015 +1100 5637 5638 fix kex test 5639 5640commit c78a578107c7e6dcf5d30a2f34cb6581bef14029 5641Author: markus@openbsd.org <markus@openbsd.org> 5642Date: Mon Jan 19 20:45:25 2015 +0000 5643 5644 upstream commit 5645 5646 finally enable the KEX tests I wrote some years ago... 5647 5648commit 31821d7217e686667d04935aeec99e1fc4a46e7e 5649Author: markus@openbsd.org <markus@openbsd.org> 5650Date: Mon Jan 19 20:42:31 2015 +0000 5651 5652 upstream commit 5653 5654 adapt to new error message (SSH_ERR_MAC_INVALID) 5655 5656commit d3716ca19e510e95d956ae14d5b367e364bff7f1 5657Author: djm@openbsd.org <djm@openbsd.org> 5658Date: Mon Jan 19 17:31:13 2015 +0000 5659 5660 upstream commit 5661 5662 this test was broken in at least two ways, such that it 5663 wasn't checking that a KRL was not excluding valid keys 5664 5665commit 3f797653748e7c2b037dacb57574c01d9ef3b4d3 5666Author: markus@openbsd.org <markus@openbsd.org> 5667Date: Mon Jan 19 20:32:39 2015 +0000 5668 5669 upstream commit 5670 5671 switch ssh-keyscan from setjmp to multiple ssh transport 5672 layer instances ok djm@ 5673 5674commit f582f0e917bb0017b00944783cd5f408bf4b0b5e 5675Author: markus@openbsd.org <markus@openbsd.org> 5676Date: Mon Jan 19 20:30:23 2015 +0000 5677 5678 upstream commit 5679 5680 add experimental api for packet layer; ok djm@ 5681 5682commit 48b3b2ba75181f11fca7f327058a591f4426cade 5683Author: markus@openbsd.org <markus@openbsd.org> 5684Date: Mon Jan 19 20:20:20 2015 +0000 5685 5686 upstream commit 5687 5688 store compat flags in struct ssh; ok djm@ 5689 5690commit 57d10cbe861a235dd269c74fb2fe248469ecee9d 5691Author: markus@openbsd.org <markus@openbsd.org> 5692Date: Mon Jan 19 20:16:15 2015 +0000 5693 5694 upstream commit 5695 5696 adapt kex to sshbuf and struct ssh; ok djm@ 5697 5698commit 3fdc88a0def4f86aa88a5846ac079dc964c0546a 5699Author: markus@openbsd.org <markus@openbsd.org> 5700Date: Mon Jan 19 20:07:45 2015 +0000 5701 5702 upstream commit 5703 5704 move dispatch to struct ssh; ok djm@ 5705 5706commit 091c302829210c41e7f57c3f094c7b9c054306f0 5707Author: markus@openbsd.org <markus@openbsd.org> 5708Date: Mon Jan 19 19:52:16 2015 +0000 5709 5710 upstream commit 5711 5712 update packet.c & isolate, introduce struct ssh a) switch 5713 packet.c to buffer api and isolate per-connection info into struct ssh b) 5714 (de)serialization of the state is moved from monitor to packet.c c) the old 5715 packet.c API is implemented in opacket.[ch] d) compress.c/h is removed and 5716 integrated into packet.c with and ok djm@ 5717 5718commit 4e62cc68ce4ba20245d208b252e74e91d3785b74 5719Author: djm@openbsd.org <djm@openbsd.org> 5720Date: Mon Jan 19 17:35:48 2015 +0000 5721 5722 upstream commit 5723 5724 fix format strings in (disabled) debugging 5725 5726commit d85e06245907d49a2cd0cfa0abf59150ad616f42 5727Author: djm@openbsd.org <djm@openbsd.org> 5728Date: Mon Jan 19 06:01:32 2015 +0000 5729 5730 upstream commit 5731 5732 be a bit more careful in these tests to ensure that 5733 known_hosts is clean 5734 5735commit 7947810eab5fe0ad311f32a48f4d4eb1f71be6cf 5736Author: djm@openbsd.org <djm@openbsd.org> 5737Date: Sun Jan 18 22:00:18 2015 +0000 5738 5739 upstream commit 5740 5741 regression test for known_host file editing using 5742 ssh-keygen (-H / -R / -F) after hostkeys_foreach() change; feedback and ok 5743 markus@ 5744 5745commit 3a2b09d147a565d8a47edf37491e149a02c0d3a3 5746Author: djm@openbsd.org <djm@openbsd.org> 5747Date: Sun Jan 18 19:54:46 2015 +0000 5748 5749 upstream commit 5750 5751 more and better key tests 5752 5753 test signatures and verification 5754 test certificate generation 5755 flesh out nested cert test 5756 5757 removes most of the XXX todo markers 5758 5759commit 589e69fd82724cfc9738f128e4771da2e6405d0d 5760Author: djm@openbsd.org <djm@openbsd.org> 5761Date: Sun Jan 18 19:53:58 2015 +0000 5762 5763 upstream commit 5764 5765 make the signature fuzzing test much more rigorous: 5766 ensure that the fuzzed input cases do not match the original (using new 5767 fuzz_matches_original() function) and check that the verification fails in 5768 each case 5769 5770commit 80603c0daa2538c349c1c152405580b164d5475f 5771Author: djm@openbsd.org <djm@openbsd.org> 5772Date: Sun Jan 18 19:52:44 2015 +0000 5773 5774 upstream commit 5775 5776 add a fuzz_matches_original() function to the fuzzer to 5777 detect fuzz cases that are identical to the original data. Hacky 5778 implementation, but very useful when you need the fuzz to be different, e.g. 5779 when verifying signature 5780 5781commit 87d5495bd337e358ad69c524fcb9495208c0750b 5782Author: djm@openbsd.org <djm@openbsd.org> 5783Date: Sun Jan 18 19:50:55 2015 +0000 5784 5785 upstream commit 5786 5787 better dumps from the fuzzer (shown on errors) - 5788 include the original data as well as the fuzzed copy. 5789 5790commit d59ec478c453a3fff05badbbfd96aa856364f2c2 5791Author: djm@openbsd.org <djm@openbsd.org> 5792Date: Sun Jan 18 19:47:55 2015 +0000 5793 5794 upstream commit 5795 5796 enable hostkey-agent.sh test 5797 5798commit 26b3425170bf840e4b095e1c10bf25a0a3e3a105 5799Author: djm@openbsd.org <djm@openbsd.org> 5800Date: Sat Jan 17 18:54:30 2015 +0000 5801 5802 upstream commit 5803 5804 unit test for hostkeys in ssh-agent 5805 5806commit 9e06a0fb23ec55d9223b26a45bb63c7649e2f2f2 5807Author: markus@openbsd.org <markus@openbsd.org> 5808Date: Thu Jan 15 23:41:29 2015 +0000 5809 5810 upstream commit 5811 5812 add kex unit tests 5813 5814commit d2099dec6da21ae627f6289aedae6bc1d41a22ce 5815Author: deraadt@openbsd.org <deraadt@openbsd.org> 5816Date: Mon Jan 19 00:32:54 2015 +0000 5817 5818 upstream commit 5819 5820 djm, your /usr/include tree is old 5821 5822commit 2b3c3c76c30dc5076fe09d590f5b26880f148a54 5823Author: djm@openbsd.org <djm@openbsd.org> 5824Date: Sun Jan 18 21:51:19 2015 +0000 5825 5826 upstream commit 5827 5828 some feedback from markus@: comment hostkeys_foreach() 5829 context and avoid a member in it. 5830 5831commit cecb30bc2ba6d594366e657d664d5c494b6c8a7f 5832Author: djm@openbsd.org <djm@openbsd.org> 5833Date: Sun Jan 18 21:49:42 2015 +0000 5834 5835 upstream commit 5836 5837 make ssh-keygen use hostkeys_foreach(). Removes some 5838 horrendous code; ok markus@ 5839 5840commit ec3d065df3a9557ea96b02d061fd821a18c1a0b9 5841Author: djm@openbsd.org <djm@openbsd.org> 5842Date: Sun Jan 18 21:48:09 2015 +0000 5843 5844 upstream commit 5845 5846 convert load_hostkeys() (hostkey ordering and 5847 known_host matching) to use the new hostkey_foreach() iterator; ok markus 5848 5849commit c29811cc480a260e42fd88849fc86a80c1e91038 5850Author: djm@openbsd.org <djm@openbsd.org> 5851Date: Sun Jan 18 21:40:23 2015 +0000 5852 5853 upstream commit 5854 5855 introduce hostkeys_foreach() to allow iteration over a 5856 known_hosts file or controlled subset thereof. This will allow us to pull out 5857 some ugly and duplicated code, and will be used to implement hostkey rotation 5858 later. 5859 5860 feedback and ok markus 5861 5862commit f101d8291da01bbbfd6fb8c569cfd0cc61c0d346 5863Author: deraadt@openbsd.org <deraadt@openbsd.org> 5864Date: Sun Jan 18 14:01:00 2015 +0000 5865 5866 upstream commit 5867 5868 string truncation due to sizeof(size) ok djm markus 5869 5870commit 35d6022b55b7969fc10c261cb6aa78cc4a5fcc41 5871Author: djm@openbsd.org <djm@openbsd.org> 5872Date: Sun Jan 18 13:33:34 2015 +0000 5873 5874 upstream commit 5875 5876 avoid trailing ',' in host key algorithms 5877 5878commit 7efb455789a0cb76bdcdee91c6060a3dc8f5c007 5879Author: djm@openbsd.org <djm@openbsd.org> 5880Date: Sun Jan 18 13:22:28 2015 +0000 5881 5882 upstream commit 5883 5884 infer key length correctly when user specified a fully- 5885 qualified key name instead of using the -b bits option; ok markus@ 5886 5887commit 83f8ffa6a55ccd0ce9d8a205e3e7439ec18fedf5 5888Author: djm@openbsd.org <djm@openbsd.org> 5889Date: Sat Jan 17 18:53:34 2015 +0000 5890 5891 upstream commit 5892 5893 fix hostkeys on ssh agent; found by unit test I'm about 5894 to commit 5895 5896commit 369d61f17657b814124268f99c033e4dc6e436c1 5897Author: schwarze@openbsd.org <schwarze@openbsd.org> 5898Date: Fri Jan 16 16:20:23 2015 +0000 5899 5900 upstream commit 5901 5902 garbage collect empty .No macros mandoc warns about 5903 5904commit bb8b442d32dbdb8521d610e10d8b248d938bd747 5905Author: djm@openbsd.org <djm@openbsd.org> 5906Date: Fri Jan 16 15:55:07 2015 +0000 5907 5908 upstream commit 5909 5910 regression: incorrect error message on 5911 otherwise-successful ssh-keygen -A. Reported by Dmitry Orlov, via deraadt@ 5912 5913commit 9010902954a40b59d0bf3df3ccbc3140a653e2bc 5914Author: djm@openbsd.org <djm@openbsd.org> 5915Date: Fri Jan 16 07:19:48 2015 +0000 5916 5917 upstream commit 5918 5919 when hostname canonicalisation is enabled, try to parse 5920 hostnames as addresses before looking them up for canonicalisation. fixes 5921 bz#2074 and avoids needless DNS lookups in some cases; ok markus 5922 5923commit 2ae4f337b2a5fb2841b6b0053b49496fef844d1c 5924Author: deraadt@openbsd.org <deraadt@openbsd.org> 5925Date: Fri Jan 16 06:40:12 2015 +0000 5926 5927 upstream commit 5928 5929 Replace <sys/param.h> with <limits.h> and other less 5930 dirty headers where possible. Annotate <sys/param.h> lines with their 5931 current reasons. Switch to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, 5932 LOGIN_NAME_MAX, etc. Change MIN() and MAX() to local definitions of 5933 MINIMUM() and MAXIMUM() where sensible to avoid pulling in the pollution. 5934 These are the files confirmed through binary verification. ok guenther, 5935 millert, doug (helped with the verification protocol) 5936 5937commit 3c4726f4c24118e8f1bb80bf75f1456c76df072c 5938Author: markus@openbsd.org <markus@openbsd.org> 5939Date: Thu Jan 15 21:38:50 2015 +0000 5940 5941 upstream commit 5942 5943 remove xmalloc, switch to sshbuf 5944 5945commit e17ac01f8b763e4b83976b9e521e90a280acc097 5946Author: markus@openbsd.org <markus@openbsd.org> 5947Date: Thu Jan 15 21:37:14 2015 +0000 5948 5949 upstream commit 5950 5951 switch to sshbuf 5952 5953commit ddef9995a1fa6c7a8ff3b38bfe6cf724bebf13d0 5954Author: naddy@openbsd.org <naddy@openbsd.org> 5955Date: Thu Jan 15 18:32:54 2015 +0000 5956 5957 upstream commit 5958 5959 handle UMAC128 initialization like UMAC; ok djm@ markus@ 5960 5961commit f14564c1f7792446bca143580aef0e7ac25dcdae 5962Author: djm@openbsd.org <djm@openbsd.org> 5963Date: Thu Jan 15 11:04:36 2015 +0000 5964 5965 upstream commit 5966 5967 fix regression reported by brad@ for passworded keys without 5968 agent present 5969 5970commit 45c0fd70bb2a88061319dfff20cb12ef7b1bc47e 5971Author: Damien Miller <djm@mindrot.org> 5972Date: Thu Jan 15 22:08:23 2015 +1100 5973 5974 make bitmap test compile 5975 5976commit d333f89abf7179021e5c3f28673f469abe032062 5977Author: djm@openbsd.org <djm@openbsd.org> 5978Date: Thu Jan 15 07:36:28 2015 +0000 5979 5980 upstream commit 5981 5982 unit tests for KRL bitmap 5983 5984commit 7613f828f49c55ff356007ae9645038ab6682556 5985Author: markus@openbsd.org <markus@openbsd.org> 5986Date: Wed Jan 14 09:58:21 2015 +0000 5987 5988 upstream commit 5989 5990 re-add comment about full path 5991 5992commit 6c43b48b307c41cd656b415621a644074579a578 5993Author: markus@openbsd.org <markus@openbsd.org> 5994Date: Wed Jan 14 09:54:38 2015 +0000 5995 5996 upstream commit 5997 5998 don't reset to the installed sshd; connect before 5999 reconfigure, too 6000 6001commit 771bb47a1df8b69061f09462e78aa0b66cd594bf 6002Author: djm@openbsd.org <djm@openbsd.org> 6003Date: Tue Jan 13 14:51:51 2015 +0000 6004 6005 upstream commit 6006 6007 implement a SIGINFO handler so we can discern a stuck 6008 fuzz test from a merely glacial one; prompted by and ok markus 6009 6010commit cfaa57962f8536f3cf0fd7daf4d6a55d6f6de45f 6011Author: djm@openbsd.org <djm@openbsd.org> 6012Date: Tue Jan 13 08:23:26 2015 +0000 6013 6014 upstream commit 6015 6016 use $SSH instead of installed ssh to allow override; 6017 spotted by markus@ 6018 6019commit 0920553d0aee117a596b03ed5b49b280d34a32c5 6020Author: djm@openbsd.org <djm@openbsd.org> 6021Date: Tue Jan 13 07:49:49 2015 +0000 6022 6023 upstream commit 6024 6025 regress test for PubkeyAcceptedKeyTypes; ok markus@ 6026 6027commit 27ca1a5c0095eda151934bca39a77e391f875d17 6028Author: markus@openbsd.org <markus@openbsd.org> 6029Date: Mon Jan 12 20:13:27 2015 +0000 6030 6031 upstream commit 6032 6033 unbreak parsing of pubkey comments; with gerhard; ok 6034 djm/deraadt 6035 6036commit 55358f0b4e0b83bc0df81c5f854c91b11e0bb4dc 6037Author: djm@openbsd.org <djm@openbsd.org> 6038Date: Mon Jan 12 11:46:32 2015 +0000 6039 6040 upstream commit 6041 6042 fatal if soft-PKCS11 library is missing rather (rather 6043 than continue and fail with a more cryptic error) 6044 6045commit c3554cdd2a1a62434b8161017aa76fa09718a003 6046Author: djm@openbsd.org <djm@openbsd.org> 6047Date: Mon Jan 12 11:12:38 2015 +0000 6048 6049 upstream commit 6050 6051 let this test all supporte key types; pointed out/ok 6052 markus@ 6053 6054commit 1129dcfc5a3e508635004bcc05a3574cb7687167 6055Author: djm@openbsd.org <djm@openbsd.org> 6056Date: Thu Jan 15 09:40:00 2015 +0000 6057 6058 upstream commit 6059 6060 sync ssh-keysign, ssh-keygen and some dependencies to the 6061 new buffer/key API; mostly mechanical, ok markus@ 6062 6063commit e4ebf5586452bf512da662ac277aaf6ecf0efe7c 6064Author: djm@openbsd.org <djm@openbsd.org> 6065Date: Thu Jan 15 07:57:08 2015 +0000 6066 6067 upstream commit 6068 6069 remove commented-out test code now that it has moved to a 6070 proper unit test 6071 6072commit e81cba066c1e9eb70aba0f6e7c0ff220611b370f 6073Author: djm@openbsd.org <djm@openbsd.org> 6074Date: Wed Jan 14 20:54:29 2015 +0000 6075 6076 upstream commit 6077 6078 whitespace 6079 6080commit 141efe49542f7156cdbc2e4cd0a041d8b1aab622 6081Author: djm@openbsd.org <djm@openbsd.org> 6082Date: Wed Jan 14 20:05:27 2015 +0000 6083 6084 upstream commit 6085 6086 move authfd.c and its tentacles to the new buffer/key 6087 API; ok markus@ 6088 6089commit 0088c57af302cda278bd26d8c3ae81d5b6f7c289 6090Author: djm@openbsd.org <djm@openbsd.org> 6091Date: Wed Jan 14 19:33:41 2015 +0000 6092 6093 upstream commit 6094 6095 fix small regression: ssh-agent would return a success 6096 message but an empty signature if asked to sign using an unknown key; ok 6097 markus@ 6098 6099commit b03ebe2c22b8166e4f64c37737f4278676e3488d 6100Author: Damien Miller <djm@mindrot.org> 6101Date: Thu Jan 15 03:08:58 2015 +1100 6102 6103 more --without-openssl 6104 6105 fix some regressions caused by upstream merges 6106 6107 enable KRLs now that they no longer require BIGNUMs 6108 6109commit bc42cc6fe784f36df225c44c93b74830027cb5a2 6110Author: Damien Miller <djm@mindrot.org> 6111Date: Thu Jan 15 03:08:29 2015 +1100 6112 6113 kludge around tun API mismatch betterer 6114 6115commit c332110291089b624fa0951fbf2d1ee6de525b9f 6116Author: Damien Miller <djm@mindrot.org> 6117Date: Thu Jan 15 02:59:51 2015 +1100 6118 6119 some systems lack SO_REUSEPORT 6120 6121commit 83b9678a62cbdc74eb2031cf1e1e4ffd58e233ae 6122Author: Damien Miller <djm@mindrot.org> 6123Date: Thu Jan 15 02:35:50 2015 +1100 6124 6125 fix merge botch 6126 6127commit 0cdc5a3eb6fb383569a4da2a30705d9b90428d6b 6128Author: Damien Miller <djm@mindrot.org> 6129Date: Thu Jan 15 02:35:33 2015 +1100 6130 6131 unbreak across API change 6132 6133commit 6e2549ac2b5e7f96cbc2d83a6e0784b120444b47 6134Author: Damien Miller <djm@mindrot.org> 6135Date: Thu Jan 15 02:30:18 2015 +1100 6136 6137 need includes.h for portable OpenSSH 6138 6139commit 72ef7c148c42db7d5632a29f137f8b87b579f2d9 6140Author: Damien Miller <djm@mindrot.org> 6141Date: Thu Jan 15 02:21:31 2015 +1100 6142 6143 support --without-openssl at configure time 6144 6145 Disables and removes dependency on OpenSSL. Many features don't 6146 work and the set of crypto options is greatly restricted. This 6147 will only work on system with native arc4random or /dev/urandom. 6148 6149 Considered highly experimental for now. 6150 6151commit 4f38c61c68ae7e3f9ee4b3c38bc86cd39f65ece9 6152Author: Damien Miller <djm@mindrot.org> 6153Date: Thu Jan 15 02:28:00 2015 +1100 6154 6155 add files missed in last commit 6156 6157commit a165bab605f7be55940bb8fae977398e8c96a46d 6158Author: djm@openbsd.org <djm@openbsd.org> 6159Date: Wed Jan 14 15:02:39 2015 +0000 6160 6161 upstream commit 6162 6163 avoid BIGNUM in KRL code by using a simple bitmap; 6164 feedback and ok markus 6165 6166commit 7d845f4a0b7ec97887be204c3760e44de8bf1f32 6167Author: djm@openbsd.org <djm@openbsd.org> 6168Date: Wed Jan 14 13:54:13 2015 +0000 6169 6170 upstream commit 6171 6172 update sftp client and server to new buffer API. pretty 6173 much just mechanical changes; with & ok markus 6174 6175commit 139ca81866ec1b219c717d17061e5e7ad1059e2a 6176Author: markus@openbsd.org <markus@openbsd.org> 6177Date: Wed Jan 14 13:09:09 2015 +0000 6178 6179 upstream commit 6180 6181 switch to sshbuf/sshkey; with & ok djm@ 6182 6183commit 81bfbd0bd35683de5d7f2238b985e5f8150a9180 6184Author: Damien Miller <djm@mindrot.org> 6185Date: Wed Jan 14 21:48:18 2015 +1100 6186 6187 support --without-openssl at configure time 6188 6189 Disables and removes dependency on OpenSSL. Many features don't 6190 work and the set of crypto options is greatly restricted. This 6191 will only work on system with native arc4random or /dev/urandom. 6192 6193 Considered highly experimental for now. 6194 6195commit 54924b53af15ccdcbb9f89984512b5efef641a31 6196Author: djm@openbsd.org <djm@openbsd.org> 6197Date: Wed Jan 14 10:46:28 2015 +0000 6198 6199 upstream commit 6200 6201 avoid an warning for the !OPENSSL case 6202 6203commit ae8b463217f7c9b66655bfc3945c050ffdaeb861 6204Author: markus@openbsd.org <markus@openbsd.org> 6205Date: Wed Jan 14 10:30:34 2015 +0000 6206 6207 upstream commit 6208 6209 swith auth-options to new sshbuf/sshkey; ok djm@ 6210 6211commit 540e891191b98b89ee90aacf5b14a4a68635e763 6212Author: djm@openbsd.org <djm@openbsd.org> 6213Date: Wed Jan 14 10:29:45 2015 +0000 6214 6215 upstream commit 6216 6217 make non-OpenSSL aes-ctr work on sshd w/ privsep; ok 6218 markus@ 6219 6220commit 60c2c4ea5e1ad0ddfe8b2877b78ed5143be79c53 6221Author: markus@openbsd.org <markus@openbsd.org> 6222Date: Wed Jan 14 10:24:42 2015 +0000 6223 6224 upstream commit 6225 6226 remove unneeded includes, sync my copyright across files 6227 & whitespace; ok djm@ 6228 6229commit 128343bcdb0b60fc826f2733df8cf979ec1627b4 6230Author: markus@openbsd.org <markus@openbsd.org> 6231Date: Tue Jan 13 19:31:40 2015 +0000 6232 6233 upstream commit 6234 6235 adapt mac.c to ssherr.h return codes (de-fatal) and 6236 simplify dependencies ok djm@ 6237 6238commit e7fd952f4ea01f09ceb068721a5431ac2fd416ed 6239Author: djm@openbsd.org <djm@openbsd.org> 6240Date: Tue Jan 13 19:04:35 2015 +0000 6241 6242 upstream commit 6243 6244 sync changes from libopenssh; prepared by markus@ mostly 6245 debug output tweaks, a couple of error return value changes and some other 6246 minor stuff 6247 6248commit 76c0480a85675f03a1376167cb686abed01a3583 6249Author: Damien Miller <djm@mindrot.org> 6250Date: Tue Jan 13 19:38:18 2015 +1100 6251 6252 add --without-ssh1 option to configure 6253 6254 Allows disabling support for SSH protocol 1. 6255 6256commit 1f729f0614d1376c3332fa1edb6a5e5cec7e9e03 6257Author: djm@openbsd.org <djm@openbsd.org> 6258Date: Tue Jan 13 07:39:19 2015 +0000 6259 6260 upstream commit 6261 6262 add sshd_config HostbasedAcceptedKeyTypes and 6263 PubkeyAcceptedKeyTypes options to allow sshd to control what public key types 6264 will be accepted. Currently defaults to all. Feedback & ok markus@ 6265 6266commit 816d1538c24209a93ba0560b27c4fda57c3fff65 6267Author: markus@openbsd.org <markus@openbsd.org> 6268Date: Mon Jan 12 20:13:27 2015 +0000 6269 6270 upstream commit 6271 6272 unbreak parsing of pubkey comments; with gerhard; ok 6273 djm/deraadt 6274 6275commit 0097565f849851812df610b7b6b3c4bd414f6c62 6276Author: markus@openbsd.org <markus@openbsd.org> 6277Date: Mon Jan 12 19:22:46 2015 +0000 6278 6279 upstream commit 6280 6281 missing error assigment on sshbuf_put_string() 6282 6283commit a7f49dcb527dd17877fcb8d5c3a9a6f550e0bba5 6284Author: djm@openbsd.org <djm@openbsd.org> 6285Date: Mon Jan 12 15:18:07 2015 +0000 6286 6287 upstream commit 6288 6289 apparently memcpy(x, NULL, 0) is undefined behaviour 6290 according to C99 (cf. sections 7.21.1 and 7.1.4), so check skip memcpy calls 6291 when length==0; ok markus@ 6292 6293commit 905fe30fca82f38213763616d0d26eb6790bde33 6294Author: markus@openbsd.org <markus@openbsd.org> 6295Date: Mon Jan 12 14:05:19 2015 +0000 6296 6297 upstream commit 6298 6299 free->sshkey_free; ok djm@ 6300 6301commit f067cca2bc20c86b110174c3fef04086a7f57b13 6302Author: markus@openbsd.org <markus@openbsd.org> 6303Date: Mon Jan 12 13:29:27 2015 +0000 6304 6305 upstream commit 6306 6307 allow WITH_OPENSSL w/o WITH_SSH1; ok djm@ 6308 6309commit c4bfafcc2a9300d9cfb3c15e75572d3a7d74670d 6310Author: djm@openbsd.org <djm@openbsd.org> 6311Date: Thu Jan 8 13:10:58 2015 +0000 6312 6313 upstream commit 6314 6315 adjust for sshkey_load_file() API change 6316 6317commit e752c6d547036c602b89e9e704851463bd160e32 6318Author: djm@openbsd.org <djm@openbsd.org> 6319Date: Thu Jan 8 13:44:36 2015 +0000 6320 6321 upstream commit 6322 6323 fix ssh_config FingerprintHash evaluation order; from Petr 6324 Lautrbach 6325 6326commit ab24ab847b0fc94c8d5e419feecff0bcb6d6d1bf 6327Author: djm@openbsd.org <djm@openbsd.org> 6328Date: Thu Jan 8 10:15:45 2015 +0000 6329 6330 upstream commit 6331 6332 reorder hostbased key attempts to better match the 6333 default hostkey algorithms order in myproposal.h; ok markus@ 6334 6335commit 1195f4cb07ef4b0405c839293c38600b3e9bdb46 6336Author: djm@openbsd.org <djm@openbsd.org> 6337Date: Thu Jan 8 10:14:08 2015 +0000 6338 6339 upstream commit 6340 6341 deprecate key_load_private_pem() and 6342 sshkey_load_private_pem() interfaces. Refactor the generic key loading API to 6343 not require pathnames to be specified (they weren't really used). 6344 6345 Fixes a few other things en passant: 6346 6347 Makes ed25519 keys work for hostbased authentication (ssh-keysign 6348 previously used the PEM-only routines). 6349 6350 Fixes key comment regression bz#2306: key pathnames were being lost as 6351 comment fields. 6352 6353 ok markus@ 6354 6355commit febbe09e4e9aff579b0c5cc1623f756862e4757d 6356Author: tedu@openbsd.org <tedu@openbsd.org> 6357Date: Wed Jan 7 18:15:07 2015 +0000 6358 6359 upstream commit 6360 6361 workaround for the Meyer, et al, Bleichenbacher Side 6362 Channel Attack. fake up a bignum key before RSA decryption. discussed/ok djm 6363 markus 6364 6365commit 5191df927db282d3123ca2f34a04d8d96153911a 6366Author: djm@openbsd.org <djm@openbsd.org> 6367Date: Tue Dec 23 22:42:48 2014 +0000 6368 6369 upstream commit 6370 6371 KNF and add a little more debug() 6372 6373commit 8abd80315d3419b20e6938f74d37e2e2b547f0b7 6374Author: jmc@openbsd.org <jmc@openbsd.org> 6375Date: Mon Dec 22 09:26:31 2014 +0000 6376 6377 upstream commit 6378 6379 add fingerprinthash to the options list; 6380 6381commit 296ef0560f60980da01d83b9f0e1a5257826536f 6382Author: jmc@openbsd.org <jmc@openbsd.org> 6383Date: Mon Dec 22 09:24:59 2014 +0000 6384 6385 upstream commit 6386 6387 tweak previous; 6388 6389commit 462082eacbd37778a173afb6b84c6f4d898a18b5 6390Author: Damien Miller <djm@google.com> 6391Date: Tue Dec 30 08:16:11 2014 +1100 6392 6393 avoid uninitialised free of ldns_res 6394 6395 If an invalid rdclass was passed to getrrsetbyname() then 6396 this would execute a free on an uninitialised pointer. 6397 OpenSSH only ever calls this with a fixed and valid rdclass. 6398 6399 Reported by Joshua Rogers 6400 6401commit 01b63498801053f131a0740eb9d13faf35d636c8 6402Author: Damien Miller <djm@google.com> 6403Date: Mon Dec 29 18:10:18 2014 +1100 6404 6405 pull updated OpenBSD BCrypt PBKDF implementation 6406 6407 Includes fix for 1 byte output overflow for large key length 6408 requests (not reachable in OpenSSH). 6409 6410 Pointed out by Joshua Rogers 6411 6412commit c528c1b4af2f06712177b3de9b30705752f7cbcb 6413Author: Damien Miller <djm@google.com> 6414Date: Tue Dec 23 15:26:13 2014 +1100 6415 6416 fix variable name for IPv6 case in construct_utmpx 6417 6418 patch from writeonce AT midipix.org via bz#2296 6419 6420commit 293cac52dcda123244b2e594d15592e5e481c55e 6421Author: Damien Miller <djm@google.com> 6422Date: Mon Dec 22 16:30:42 2014 +1100 6423 6424 include and use OpenBSD netcat in regress/ 6425 6426commit 8f6784f0cb56dc4fd00af3e81a10050a5785228d 6427Author: djm@openbsd.org <djm@openbsd.org> 6428Date: Mon Dec 22 09:05:17 2014 +0000 6429 6430 upstream commit 6431 6432 mention ssh -Q feature to list supported { MAC, cipher, 6433 KEX, key } algorithms in more places and include the query string used to 6434 list the relevant information; bz#2288 6435 6436commit 449e11b4d7847079bd0a2daa6e3e7ea03d8ef700 6437Author: jmc@openbsd.org <jmc@openbsd.org> 6438Date: Mon Dec 22 08:24:17 2014 +0000 6439 6440 upstream commit 6441 6442 tweak previous; 6443 6444commit 4bea0ab3290c0b9dd2aa199e932de8e7e18062d6 6445Author: djm@openbsd.org <djm@openbsd.org> 6446Date: Mon Dec 22 08:06:03 2014 +0000 6447 6448 upstream commit 6449 6450 regression test for multiple required pubkey authentication; 6451 ok markus@ 6452 6453commit f1c4d8ec52158b6f57834b8cd839605b0a33e7f2 6454Author: djm@openbsd.org <djm@openbsd.org> 6455Date: Mon Dec 22 08:04:23 2014 +0000 6456 6457 upstream commit 6458 6459 correct description of what will happen when a 6460 AuthorizedKeysCommand is specified but AuthorizedKeysCommandUser is not (sshd 6461 will refuse to start) 6462 6463commit 161cf419f412446635013ac49e8c660cadc36080 6464Author: djm@openbsd.org <djm@openbsd.org> 6465Date: Mon Dec 22 07:55:51 2014 +0000 6466 6467 upstream commit 6468 6469 make internal handling of filename arguments of "none" 6470 more consistent with ssh. "none" arguments are now replaced with NULL when 6471 the configuration is finalised. 6472 6473 Simplifies checking later on (just need to test not-NULL rather than 6474 that + strcmp) and cleans up some inconsistencies. ok markus@ 6475 6476commit f69b69b8625be447b8826b21d87713874dac25a6 6477Author: djm@openbsd.org <djm@openbsd.org> 6478Date: Mon Dec 22 07:51:30 2014 +0000 6479 6480 upstream commit 6481 6482 remember which public keys have been used for 6483 authentication and refuse to accept previously-used keys. 6484 6485 This allows AuthenticationMethods=publickey,publickey to require 6486 that users authenticate using two _different_ pubkeys. 6487 6488 ok markus@ 6489 6490commit 46ac2ed4677968224c4ca825bc98fc68dae183f0 6491Author: djm@openbsd.org <djm@openbsd.org> 6492Date: Mon Dec 22 07:24:11 2014 +0000 6493 6494 upstream commit 6495 6496 fix passing of wildcard forward bind addresses when 6497 connection multiplexing is in use; patch from Sami Hartikainen via bz#2324; 6498 ok dtucker@ 6499 6500commit 0d1b241a262e4d0a6bbfdd595489ab1b853c43a1 6501Author: djm@openbsd.org <djm@openbsd.org> 6502Date: Mon Dec 22 06:14:29 2014 +0000 6503 6504 upstream commit 6505 6506 make this slightly easier to diff against portable 6507 6508commit 0715bcdddbf68953964058f17255bf54734b8737 6509Author: Damien Miller <djm@mindrot.org> 6510Date: Mon Dec 22 13:47:07 2014 +1100 6511 6512 add missing regress output file 6513 6514commit 1e30483c8ad2c2f39445d4a4b6ab20c241e40593 6515Author: djm@openbsd.org <djm@openbsd.org> 6516Date: Mon Dec 22 02:15:52 2014 +0000 6517 6518 upstream commit 6519 6520 adjust for new SHA256 key fingerprints and 6521 slightly-different MD5 hex fingerprint format 6522 6523commit 6b40567ed722df98593ad8e6a2d2448fc2b4b151 6524Author: djm@openbsd.org <djm@openbsd.org> 6525Date: Mon Dec 22 01:14:49 2014 +0000 6526 6527 upstream commit 6528 6529 poll changes to netcat (usr.bin/netcat.c r1.125) broke 6530 this test; fix it by ensuring more stdio fds are sent to devnull 6531 6532commit a5375ccb970f49dddf7d0ef63c9b713ede9e7260 6533Author: jmc@openbsd.org <jmc@openbsd.org> 6534Date: Sun Dec 21 23:35:14 2014 +0000 6535 6536 upstream commit 6537 6538 tweak previous; 6539 6540commit b79efde5c3badf5ce4312fe608d8307eade533c5 6541Author: djm@openbsd.org <djm@openbsd.org> 6542Date: Sun Dec 21 23:12:42 2014 +0000 6543 6544 upstream commit 6545 6546 document FingerprintHash here too 6547 6548commit d16bdd8027dd116afa01324bb071a4016cdc1a75 6549Author: Damien Miller <djm@mindrot.org> 6550Date: Mon Dec 22 10:18:09 2014 +1100 6551 6552 missing include for base64 encoding 6553 6554commit 56d1c83cdd1ac76f1c6bd41e01e80dad834f3994 6555Author: djm@openbsd.org <djm@openbsd.org> 6556Date: Sun Dec 21 22:27:55 2014 +0000 6557 6558 upstream commit 6559 6560 Add FingerprintHash option to control algorithm used for 6561 key fingerprints. Default changes from MD5 to SHA256 and format from hex to 6562 base64. 6563 6564 Feedback and ok naddy@ markus@ 6565 6566commit 058f839fe15c51be8b3a844a76ab9a8db550be4f 6567Author: djm@openbsd.org <djm@openbsd.org> 6568Date: Thu Dec 18 23:58:04 2014 +0000 6569 6570 upstream commit 6571 6572 don't count partial authentication success as a failure 6573 against MaxAuthTries; ok deraadt@ 6574 6575commit c7219f4f54d64d6dde66dbcf7a2699daa782d2a1 6576Author: djm@openbsd.org <djm@openbsd.org> 6577Date: Fri Dec 12 00:02:17 2014 +0000 6578 6579 upstream commit 6580 6581 revert chunk I didn't mean to commit yet; via jmc@ 6582 6583commit 7de5991aa3997e2981440f39c1ea01273a0a2c7b 6584Author: Damien Miller <djm@mindrot.org> 6585Date: Thu Dec 18 11:44:06 2014 +1100 6586 6587 upstream libc change 6588 6589 revision 1.2 6590 date: 2014/12/08 03:45:00; author: bcook; state: Exp; lines: +2 -2; commitid: 7zWEBgJJOCZ2hvTV; 6591 avoid left shift overflow in reallocarray. 6592 6593 Some 64-bit platforms (e.g. Windows 64) have a 32-bit long. So, shifting 6594 1UL 32-bits to the left causes an overflow. This replaces the constant 1UL with 6595 (size_t)1 so that we get the correct constant size for the platform. 6596 6597 discussed with tedu@ & deraadt@ 6598 6599commit 2048f85a5e6da8bc6e0532efe02ecfd4e63c978c 6600Author: Damien Miller <djm@mindrot.org> 6601Date: Thu Dec 18 10:15:49 2014 +1100 6602 6603 include CFLAGS in gnome askpass targets 6604 6605 from Fedora 6606 6607commit 48b68ce19ca42fa488960028048dec023f7899bb 6608Author: djm@openbsd.org <djm@openbsd.org> 6609Date: Thu Dec 11 08:20:09 2014 +0000 6610 6611 upstream commit 6612 6613 explicitly include sys/param.h in files that use the 6614 howmany() macro; from portable 6615 6616commit d663bea30a294d440fef4398e5cd816317bd4518 6617Author: djm@openbsd.org <djm@openbsd.org> 6618Date: Thu Dec 11 05:25:06 2014 +0000 6619 6620 upstream commit 6621 6622 mention AuthorizedKeysCommandUser must be set for 6623 AuthorizedKeysCommand to be run; bz#2287 6624 6625commit 17bf3d81e00f2abb414a4fd271118cf4913f049f 6626Author: djm@openbsd.org <djm@openbsd.org> 6627Date: Thu Dec 11 05:13:28 2014 +0000 6628 6629 upstream commit 6630 6631 show in debug output which hostkeys are being tried when 6632 attempting hostbased auth; patch from Iain Morgan 6633 6634commit da0277e3717eadf5b15e03379fc29db133487e94 6635Author: djm@openbsd.org <djm@openbsd.org> 6636Date: Thu Dec 11 04:16:14 2014 +0000 6637 6638 upstream commit 6639 6640 Make manual reflect reality: sftp-server's -d option 6641 accepts a "%d" option, not a "%h" one. 6642 6643 bz#2316; reported by Kirk Wolf 6644 6645commit 4cf87f4b81fa9380bce5fcff7b0f8382ae3ad996 6646Author: djm@openbsd.org <djm@openbsd.org> 6647Date: Wed Dec 10 01:24:09 2014 +0000 6648 6649 upstream commit 6650 6651 better error value for invalid signature length 6652 6653commit 4bfad14ca56f8ae04f418997816b4ba84e2cfc3c 6654Author: Darren Tucker <dtucker@zip.com.au> 6655Date: Wed Dec 10 02:12:51 2014 +1100 6656 6657 Resync more with OpenBSD's rijndael.c, in particular "#if 0"-ing out some 6658 unused code. Should fix compile error reported by plautrba at redhat. 6659 6660commit 642652d280499691c8212ec6b79724b50008ce09 6661Author: Darren Tucker <dtucker@zip.com.au> 6662Date: Wed Dec 10 01:32:23 2014 +1100 6663 6664 Add reallocarray to compat library 6665 6666commit 3dfd8d93dfcc69261f5af99df56f3ff598581979 6667Author: djm@openbsd.org <djm@openbsd.org> 6668Date: Thu Dec 4 22:31:50 2014 +0000 6669 6670 upstream commit 6671 6672 add tests for new client RevokedHostKeys option; refactor 6673 to make it a bit more readable 6674 6675commit a31046cad1aed16a0b55171192faa6d02665ccec 6676Author: krw@openbsd.org <krw@openbsd.org> 6677Date: Wed Nov 19 13:35:37 2014 +0000 6678 6679 upstream commit 6680 6681 Nuke yet more obvious #include duplications. 6682 6683 ok deraadt@ 6684 6685commit a7c762e5b2c1093542c0bc1df25ccec0b4cf479f 6686Author: djm@openbsd.org <djm@openbsd.org> 6687Date: Thu Dec 4 20:47:36 2014 +0000 6688 6689 upstream commit 6690 6691 key_in_file() wrapper is no longer used 6692 6693commit 5e39a49930d885aac9c76af3129332b6e772cd75 6694Author: djm@openbsd.org <djm@openbsd.org> 6695Date: Thu Dec 4 02:24:32 2014 +0000 6696 6697 upstream commit 6698 6699 add RevokedHostKeys option for the client 6700 6701 Allow textfile or KRL-based revocation of hostkeys. 6702 6703commit 74de254bb92c684cf53461da97f52d5ba34ded80 6704Author: djm@openbsd.org <djm@openbsd.org> 6705Date: Thu Dec 4 01:49:59 2014 +0000 6706 6707 upstream commit 6708 6709 convert KRL code to new buffer API 6710 6711 ok markus@ 6712 6713commit db995f2eed5fc432598626fa3e30654503bf7151 6714Author: millert@openbsd.org <millert@openbsd.org> 6715Date: Wed Nov 26 18:34:51 2014 +0000 6716 6717 upstream commit 6718 6719 Prefer setvbuf() to setlinebuf() for portability; ok 6720 deraadt@ 6721 6722commit 72bba3d179ced8b425272efe6956a309202a91f3 6723Author: jsg@openbsd.org <jsg@openbsd.org> 6724Date: Mon Nov 24 03:39:22 2014 +0000 6725 6726 upstream commit 6727 6728 Fix crashes in the handling of the sshd config file found 6729 with the afl fuzzer. 6730 6731 ok deraadt@ djm@ 6732 6733commit 867f49c666adcfe92bf539d9c37c1accdea08bf6 6734Author: Damien Miller <djm@mindrot.org> 6735Date: Wed Nov 26 13:22:41 2014 +1100 6736 6737 Avoid Cygwin ssh-host-config reading /etc/group 6738 6739 Patch from Corinna Vinschen 6740 6741commit 8b66f36291a721b1ba7c44f24a07fdf39235593e 6742Author: Damien Miller <djm@mindrot.org> 6743Date: Wed Nov 26 13:20:35 2014 +1100 6744 6745 allow custom service name for sshd on Cygwin 6746 6747 Permits the use of multiple sshd running with different service names. 6748 6749 Patch by Florian Friesdorf via Corinna Vinschen 6750 6751commit 08c0eebf55d70a9ae1964399e609288ae3186a0c 6752Author: jmc@openbsd.org <jmc@openbsd.org> 6753Date: Sat Nov 22 19:21:03 2014 +0000 6754 6755 upstream commit 6756 6757 restore word zapped in previous, and remove some useless 6758 "No" macros; 6759 6760commit a1418a0033fba43f061513e992e1cbcc3343e563 6761Author: deraadt@openbsd.org <deraadt@openbsd.org> 6762Date: Sat Nov 22 18:15:41 2014 +0000 6763 6764 upstream commit 6765 6766 /dev/random has created the same effect as /dev/arandom 6767 (and /dev/urandom) for quite some time. Mop up the last few, by using 6768 /dev/random where we actually want it, or not even mentioning arandom where 6769 it is irrelevant. 6770 6771commit b6de5ac9ed421362f479d1ad4fa433d2e25dad5b 6772Author: djm@openbsd.org <djm@openbsd.org> 6773Date: Fri Nov 21 01:00:38 2014 +0000 6774 6775 upstream commit 6776 6777 fix NULL pointer dereference crash on invalid timestamp 6778 6779 found using Michal Zalewski's afl fuzzer 6780 6781commit a1f8110cd5ed818d59b3a2964fab7de76e92c18e 6782Author: mikeb@openbsd.org <mikeb@openbsd.org> 6783Date: Tue Nov 18 22:38:48 2014 +0000 6784 6785 upstream commit 6786 6787 Sync AES code to the one shipped in OpenSSL/LibreSSL. 6788 6789 This includes a commit made by Andy Polyakov <appro at openssl ! org> 6790 to the OpenSSL source tree on Wed, 28 Jun 2006 with the following 6791 message: "Mitigate cache-collision timing attack on last round." 6792 6793 OK naddy, miod, djm 6794 6795commit 335c83d5f35d8620e16b8aa26592d4f836e09ad2 6796Author: krw@openbsd.org <krw@openbsd.org> 6797Date: Tue Nov 18 20:54:28 2014 +0000 6798 6799 upstream commit 6800 6801 Nuke more obvious #include duplications. 6802 6803 ok deraadt@ millert@ tedu@ 6804 6805commit 51b64e44121194ae4bf153dee391228dada2abcb 6806Author: djm@openbsd.org <djm@openbsd.org> 6807Date: Mon Nov 17 00:21:40 2014 +0000 6808 6809 upstream commit 6810 6811 fix KRL generation when multiple CAs are in use 6812 6813 We would generate an invalid KRL when revoking certs by serial 6814 number for multiple CA keys due to a section being written out 6815 twice. 6816 6817 Also extend the regress test to catch this case by having it 6818 produce a multi-CA KRL. 6819 6820 Reported by peter AT pean.org 6821 6822commit d2d51003a623e21fb2b25567c4878d915e90aa2a 6823Author: djm@openbsd.org <djm@openbsd.org> 6824Date: Tue Nov 18 01:02:25 2014 +0000 6825 6826 upstream commit 6827 6828 fix NULL pointer dereference crash in key loading 6829 6830 found by Michal Zalewski's AFL fuzzer 6831 6832commit 9f9fad0191028edc43d100d0ded39419b6895fdf 6833Author: djm@openbsd.org <djm@openbsd.org> 6834Date: Mon Nov 17 00:21:40 2014 +0000 6835 6836 upstream commit 6837 6838 fix KRL generation when multiple CAs are in use 6839 6840 We would generate an invalid KRL when revoking certs by serial 6841 number for multiple CA keys due to a section being written out 6842 twice. 6843 6844 Also extend the regress test to catch this case by having it 6845 produce a multi-CA KRL. 6846 6847 Reported by peter AT pean.org 6848 6849commit da8af83d3f7ec00099963e455010e0ed1d7d0140 6850Author: bentley@openbsd.org <bentley@openbsd.org> 6851Date: Sat Nov 15 14:41:03 2014 +0000 6852 6853 upstream commit 6854 6855 Reduce instances of `` '' in manuals. 6856 6857 troff displays these as typographic quotes, but nroff implementations 6858 almost always print them literally, which rarely has the intended effect 6859 with modern fonts, even in stock xterm. 6860 6861 These uses of `` '' can be replaced either with more semantic alternatives 6862 or with Dq, which prints typographic quotes in a UTF-8 locale (but will 6863 automatically fall back to `` '' in an ASCII locale). 6864 6865 improvements and ok schwarze@ 6866 6867commit fc302561369483bb755b17f671f70fb894aec01d 6868Author: djm@openbsd.org <djm@openbsd.org> 6869Date: Mon Nov 10 22:25:49 2014 +0000 6870 6871 upstream commit 6872 6873 mux-related manual tweaks 6874 6875 mention ControlPersist=0 is the same as ControlPersist=yes 6876 6877 recommend that ControlPath sockets be placed in a og-w directory 6878 6879commit 0e4cff5f35ed11102fe3783779960ef07e0cd381 6880Author: Damien Miller <djm@google.com> 6881Date: Wed Nov 5 11:01:31 2014 +1100 6882 6883 Prepare scripts for next Cygwin release 6884 6885 Makes the Cygwin-specific ssh-user-config script independent of the 6886 existence of /etc/passwd. The next Cygwin release will allow to 6887 generate passwd and group entries from the Windows account DBs, so the 6888 scripts have to adapt. 6889 6890 from Corinna Vinschen 6891 6892commit 7d0ba5336651731949762eb8877ce9e3b52df436 6893Author: Damien Miller <djm@mindrot.org> 6894Date: Thu Oct 30 10:45:41 2014 +1100 6895 6896 include version number in OpenSSL-too-old error 6897 6898commit 3bcb92e04d9207e9f78d82f7918c6d3422054ce9 6899Author: lteo@openbsd.org <lteo@openbsd.org> 6900Date: Fri Oct 24 02:01:20 2014 +0000 6901 6902 upstream commit 6903 6904 Remove unnecessary include: netinet/in_systm.h is not needed 6905 by these programs. 6906 6907 NB. skipped for portable 6908 6909 ok deraadt@ millert@ 6910 6911commit 6fdcaeb99532e28a69f1a1599fbd540bb15b70a0 6912Author: djm@openbsd.org <djm@openbsd.org> 6913Date: Mon Oct 20 03:43:01 2014 +0000 6914 6915 upstream commit 6916 6917 whitespace 6918 6919commit 165bc8786299e261706ed60342985f9de93a7461 6920Author: daniel@openbsd.org <daniel@openbsd.org> 6921Date: Tue Oct 14 03:09:59 2014 +0000 6922 6923 upstream commit 6924 6925 plug a memory leak; from Maxime Villard. 6926 6927 ok djm@ 6928 6929commit b1ba15f3885947c245c2dbfaad0a04ba050abea0 6930Author: jmc@openbsd.org <jmc@openbsd.org> 6931Date: Thu Oct 9 06:21:31 2014 +0000 6932 6933 upstream commit 6934 6935 tweak previous; 6936 6937commit 259a02ebdf74ad90b41d116ecf70aa823fa4c6e7 6938Author: djm@openbsd.org <djm@openbsd.org> 6939Date: Mon Oct 13 00:38:35 2014 +0000 6940 6941 upstream commit 6942 6943 whitespace 6944 6945commit 957fbceb0f3166e41b76fdb54075ab3b9cc84cba 6946Author: djm@openbsd.org <djm@openbsd.org> 6947Date: Wed Oct 8 22:20:25 2014 +0000 6948 6949 upstream commit 6950 6951 Tweak config reparsing with host canonicalisation 6952 6953 Make the second pass through the config files always run when 6954 hostname canonicalisation is enabled. 6955 6956 Add a "Match canonical" criteria that allows ssh_config Match 6957 blocks to trigger only in the second config pass. 6958 6959 Add a -G option to ssh that causes it to parse its configuration 6960 and dump the result to stdout, similar to "sshd -T" 6961 6962 Allow ssh_config Port options set in the second config parse 6963 phase to be applied (they were being ignored). 6964 6965 bz#2267 bz#2286; ok markus 6966 6967commit 5c0dafd38bf66feeeb45fa0741a5baf5ad8039ba 6968Author: djm@openbsd.org <djm@openbsd.org> 6969Date: Wed Oct 8 22:15:27 2014 +0000 6970 6971 upstream commit 6972 6973 another -Wpointer-sign from clang 6974 6975commit bb005dc815ebda9af3ae4b39ca101c4da918f835 6976Author: djm@openbsd.org <djm@openbsd.org> 6977Date: Wed Oct 8 22:15:06 2014 +0000 6978 6979 upstream commit 6980 6981 fix a few -Wpointer-sign warnings from clang 6982 6983commit 3cc1fbb4fb0e804bfb873fd363cea91b27fc8188 6984Author: djm@openbsd.org <djm@openbsd.org> 6985Date: Wed Oct 8 21:45:48 2014 +0000 6986 6987 upstream commit 6988 6989 parse cert sections using nested buffers to reduce 6990 copies; ok markus 6991 6992commit 4a45922aebf99164e2fc83d34fe55b11ae1866ef 6993Author: djm@openbsd.org <djm@openbsd.org> 6994Date: Mon Oct 6 00:47:15 2014 +0000 6995 6996 upstream commit 6997 6998 correct options in usage(); from mancha1 AT zoho.com 6999 7000commit 48dffd5bebae6fed0556dc5c36cece0370690618 7001Author: djm@openbsd.org <djm@openbsd.org> 7002Date: Tue Sep 9 09:45:36 2014 +0000 7003 7004 upstream commit 7005 7006 mention permissions on tun(4) devices in PermitTunnel 7007 documentation; bz#2273 7008 7009commit a5883d4eccb94b16c355987f58f86a7dee17a0c2 7010Author: djm@openbsd.org <djm@openbsd.org> 7011Date: Wed Sep 3 18:55:07 2014 +0000 7012 7013 upstream commit 7014 7015 tighten permissions on pty when the "tty" group does 7016 not exist; pointed out by Corinna Vinschen; ok markus 7017 7018commit 180bcb406b58bf30723c01a6b010e48ee626dda8 7019Author: sobrado@openbsd.org <sobrado@openbsd.org> 7020Date: Sat Aug 30 16:32:25 2014 +0000 7021 7022 upstream commit 7023 7024 typo. 7025 7026commit f70b22bcdd52f6bf127047b3584371e6e5d45627 7027Author: sobrado@openbsd.org <sobrado@openbsd.org> 7028Date: Sat Aug 30 15:33:50 2014 +0000 7029 7030 upstream commit 7031 7032 improve capitalization for the Ed25519 public-key 7033 signature system. 7034 7035 ok djm@ 7036 7037commit 7df8818409c752cf3f0c3f8044fe9aebed8647bd 7038Author: doug@openbsd.org <doug@openbsd.org> 7039Date: Thu Aug 21 01:08:52 2014 +0000 7040 7041 upstream commit 7042 7043 Free resources on error in mkstemp and fdopen 7044 7045 ok djm@ 7046 7047commit 40ba4c9733aaed08304714faeb61529f18da144b 7048Author: deraadt@openbsd.org <deraadt@openbsd.org> 7049Date: Wed Aug 20 01:28:55 2014 +0000 7050 7051 upstream commit 7052 7053 djm how did you make a typo like that... 7054 7055commit 57d378ec9278ba417a726f615daad67d157de666 7056Author: djm@openbsd.org <djm@openbsd.org> 7057Date: Tue Aug 19 23:58:28 2014 +0000 7058 7059 upstream commit 7060 7061 When dumping the server configuration (sshd -T), print 7062 correct KEX, MAC and cipher defaults. Spotted by Iain Morgan 7063 7064commit 7ff880ede5195d0b17e7f1e3b6cfbc4cb6f85240 7065Author: djm@openbsd.org <djm@openbsd.org> 7066Date: Tue Aug 19 23:57:18 2014 +0000 7067 7068 upstream commit 7069 7070 ~-expand lcd paths 7071 7072commit 4460a7ad0c78d4cd67c467f6e9f4254d0404ed59 7073Author: Damien Miller <djm@mindrot.org> 7074Date: Sun Oct 12 12:35:48 2014 +1100 7075 7076 remove duplicated KEX_DH1 entry 7077 7078commit c9b8426a616138d0d762176c94f51aff3faad5ff 7079Author: Damien Miller <djm@mindrot.org> 7080Date: Thu Oct 9 10:34:06 2014 +1100 7081 7082 remove ChangeLog file 7083 7084 Commit logs will be generated from git at release time. 7085 7086commit 81d18ff7c93a04affbf3903e0963859763219aed 7087Author: Damien Miller <djm@google.com> 7088Date: Tue Oct 7 21:24:25 2014 +1100 7089 7090 delete contrib/caldera directory 7091 7092commit 0ec9e87d3638206456968202f05bb5123670607a 7093Author: Damien Miller <djm@google.com> 7094Date: Tue Oct 7 19:57:27 2014 +1100 7095 7096 test commit 7097 7098commit 8fb65a44568701b779f3d77326bceae63412d28d 7099Author: Damien Miller <djm@mindrot.org> 7100Date: Tue Oct 7 09:21:49 2014 +1100 7101 7102 - (djm) Release OpenSSH-6.7 7103 7104commit e8c9f2602c46f6781df5e52e6cd8413dab4602a3 7105Author: Damien Miller <djm@mindrot.org> 7106Date: Fri Oct 3 09:24:56 2014 +1000 7107 7108 - (djm) [sshd_config.5] typo; from Iain Morgan 7109 7110commit 703b98a26706f5083801d11059486d77491342ae 7111Author: Damien Miller <djm@mindrot.org> 7112Date: Wed Oct 1 09:43:07 2014 +1000 7113 7114 - (djm) [openbsd-compat/Makefile.in openbsd-compat/kludge-fd_set.c] 7115 [openbsd-compat/openbsd-compat.h] Kludge around bad glibc 7116 _FORTIFY_SOURCE check that doesn't grok heap-allocated fd_sets; 7117 ok dtucker@ 7118 7119commit 0fa0ed061bbfedb0daa705e220748154a84c3413 7120Author: Damien Miller <djm@mindrot.org> 7121Date: Wed Sep 10 08:15:34 2014 +1000 7122 7123 - (djm) [sandbox-seccomp-filter.c] Allow mremap and exit for DietLibc; 7124 patch from Felix von Leitner; ok dtucker 7125 7126commit ad7d23d461c3b7e1dcb15db13aee5f4b94dc1a95 7127Author: Darren Tucker <dtucker@zip.com.au> 7128Date: Tue Sep 9 12:23:10 2014 +1000 7129 7130 20140908 7131 - (dtucker) [INSTALL] Update info about egd. ok djm@ 7132 7133commit 2a8699f37cc2515e3bc60e0c677ba060f4d48191 7134Author: Damien Miller <djm@mindrot.org> 7135Date: Thu Sep 4 03:46:05 2014 +1000 7136 7137 - (djm) [openbsd-compat/arc4random.c] Zero seed after keying PRNG 7138 7139commit 44988defb1f5e3afe576d86000365e1f07a1b494 7140Author: Damien Miller <djm@mindrot.org> 7141Date: Wed Sep 3 05:35:32 2014 +1000 7142 7143 - (djm) [contrib/cygwin/ssh-host-config] Fix old code leading to 7144 permissions/ACLs; from Corinna Vinschen 7145 7146commit 23f269562b7537b2f6f5014e50a25e5dcc55a837 7147Author: Damien Miller <djm@mindrot.org> 7148Date: Wed Sep 3 05:33:25 2014 +1000 7149 7150 - (djm) [defines.h sshbuf.c] Move __predict_true|false to defines.h and 7151 conditionalise to avoid duplicate definition. 7152 7153commit 41c8de2c0031cf59e7cf0c06b5bcfbf4852c1fda 7154Author: Damien Miller <djm@mindrot.org> 7155Date: Sat Aug 30 16:23:06 2014 +1000 7156 7157 - (djm) [Makefile.in] Make TEST_SHELL a variable; "good idea" tim@ 7158 7159commit d7c81e216a7bd9eed6e239c970d9261bb1651947 7160Author: Damien Miller <djm@mindrot.org> 7161Date: Sat Aug 30 04:18:28 2014 +1000 7162 7163 - (djm) [openbsd-compat/openssl-compat.h] add include guard 7164 7165commit 4687802dda57365b984b897fc3c8e2867ea09b22 7166Author: Damien Miller <djm@mindrot.org> 7167Date: Sat Aug 30 03:29:19 2014 +1000 7168 7169 - (djm) [misc.c] Missing newline between functions 7170 7171commit 51c77e29220dee87c53be2dc47092934acab26fe 7172Author: Damien Miller <djm@mindrot.org> 7173Date: Sat Aug 30 02:30:30 2014 +1000 7174 7175 - (djm) [openbsd-compat/openssl-compat.h] add 7176 OPENSSL_[RD]SA_MAX_MODULUS_BITS defines for OpenSSL that lacks them 7177 7178commit 3d673d103bad35afaec6e7ef73e5277216ce33a3 7179Author: Damien Miller <djm@mindrot.org> 7180Date: Wed Aug 27 06:32:01 2014 +1000 7181 7182 - (djm) [openbsd-compat/explicit_bzero.c] implement explicit_bzero() 7183 using memset_s() where possible; improve fallback to indirect bzero 7184 via a volatile pointer to give it more of a chance to avoid being 7185 optimised away. 7186 7187commit 146218ac11a1eb0dcade6f793d7acdef163b5ddc 7188Author: Damien Miller <djm@mindrot.org> 7189Date: Wed Aug 27 04:11:55 2014 +1000 7190 7191 - (djm) [monitor.c sshd.c] SIGXFSZ needs to be ignored in postauth 7192 monitor, not preauth; bz#2263 7193 7194commit 1b215c098b3b37e38aa4e4c91bb908eee41183b1 7195Author: Damien Miller <djm@mindrot.org> 7196Date: Wed Aug 27 04:04:40 2014 +1000 7197 7198 - (djm) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c] 7199 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] 7200 [regress/unittests/sshkey/common.c] 7201 [regress/unittests/sshkey/test_file.c] 7202 [regress/unittests/sshkey/test_fuzz.c] 7203 [regress/unittests/sshkey/test_sshkey.c] Don't include openssl/ec.h 7204 on !ECC OpenSSL systems 7205 7206commit ad013944af0a19e3f612089d0099bb397cf6502d 7207Author: Damien Miller <djm@mindrot.org> 7208Date: Tue Aug 26 09:27:28 2014 +1000 7209 7210 - (djm) [INSTALL] Recommend libcrypto be built -fPIC, mention LibreSSL, 7211 update OpenSSL version requirement. 7212 7213commit ed126de8ee04c66640a0ea2697c4aaf36801f100 7214Author: Damien Miller <djm@mindrot.org> 7215Date: Tue Aug 26 08:37:47 2014 +1000 7216 7217 - (djm) [bufec.c] Skip this file on !ECC OpenSSL 7218 7219commit 9c1dede005746864a4fdb36a7cdf6c51296ca909 7220Author: Damien Miller <djm@mindrot.org> 7221Date: Sun Aug 24 03:01:06 2014 +1000 7222 7223 - (djm) [sftp-server.c] Some systems (e.g. Irix) have prctl() but not 7224 PR_SET_DUMPABLE, so adjust ifdef; reported by Tom Christensen 7225 7226commit d244a5816fd1312a33404b436e4dd83594f1119e 7227Author: Damien Miller <djm@mindrot.org> 7228Date: Sat Aug 23 17:06:49 2014 +1000 7229 7230 - (djm) [configure.ac] We now require a working vsnprintf everywhere (not 7231 just for systems that lack asprintf); check for it always and extend 7232 test to catch more brokenness. Fixes builds on Solaris <= 9 7233 7234commit 4cec036362a358e398e6a2e6d19d8e5780558634 7235Author: Damien Miller <djm@mindrot.org> 7236Date: Sat Aug 23 03:11:09 2014 +1000 7237 7238 - (djm) [sshd.c] Ignore SIGXFSZ in preauth monitor child; can explode on 7239 lastlog writing on platforms with high UIDs; bz#2263 7240 7241commit 394a60f2598d28b670d934b93942a3370b779b39 7242Author: Damien Miller <djm@mindrot.org> 7243Date: Fri Aug 22 18:06:20 2014 +1000 7244 7245 - (djm) [configure.ac] double braces to appease autoconf 7246 7247commit 4d69aeabd6e60afcdc7cca177ca751708ab79a9d 7248Author: Damien Miller <djm@mindrot.org> 7249Date: Fri Aug 22 17:48:27 2014 +1000 7250 7251 - (djm) [openbsd-compat/bsd-snprintf.c] Fix compilation failure (prototype/ 7252 definition mismatch) and warning for broken/missing snprintf case. 7253 7254commit 0c11f1ac369d2c0aeb0ab0458a7cd04c72fe5e9e 7255Author: Damien Miller <djm@mindrot.org> 7256Date: Fri Aug 22 17:36:56 2014 +1000 7257 7258 - (djm) [sshbuf-getput-crypto.c] Fix compilation when OpenSSL lacks ECC 7259 7260commit 6d62784b8973340b251fea6b04890f471adf28db 7261Author: Damien Miller <djm@mindrot.org> 7262Date: Fri Aug 22 17:36:19 2014 +1000 7263 7264 - (djm) [configure.ac] include leading zero characters in OpenSSL version 7265 number; fixes test for unsupported versions 7266 7267commit 4f1ff1ed782117f5d5204d4e91156ed5da07cbb7 7268Author: Damien Miller <djm@mindrot.org> 7269Date: Thu Aug 21 15:54:50 2014 +1000 7270 7271 - (djm) [regress/unittests/test_helper/test_helper.c] Fix for systems that 7272 don't set __progname. Diagnosed by Tom Christensen. 7273 7274commit 005a64da0f457410045ef0bfa93c863c2450447d 7275Author: Damien Miller <djm@mindrot.org> 7276Date: Thu Aug 21 10:48:41 2014 +1000 7277 7278 - (djm) [key.h] Fix ifdefs for no-ECC OpenSSL 7279 7280commit aa6598ebb3343c7380e918388e10e8ca5852b613 7281Author: Damien Miller <djm@mindrot.org> 7282Date: Thu Aug 21 10:47:54 2014 +1000 7283 7284 - (djm) [Makefile.in] fix reference to libtest_helper.a in sshkey test too. 7285 7286commit 54703e3cf63f0c80d4157e5ad7dbc2b363ee2c56 7287Author: Damien Miller <djm@mindrot.org> 7288Date: Wed Aug 20 11:10:51 2014 +1000 7289 7290 - (djm) [contrib/cygwin/README] Correct build instructions; from Corinna 7291 7292commit f0935698f0461f24d8d1f1107b476ee5fd4db1cb 7293Author: Damien Miller <djm@mindrot.org> 7294Date: Wed Aug 20 11:06:50 2014 +1000 7295 7296 - (djm) [sshkey.h] Fix compilation when OpenSSL lacks ECC 7297 7298commit c5089ecaec3b2c02f014f4e67518390702a4ba14 7299Author: Damien Miller <djm@mindrot.org> 7300Date: Wed Aug 20 11:06:20 2014 +1000 7301 7302 - (djm) [Makefile.in] refer to libtest_helper.a by explicit path rather than 7303 -L/-l; fixes linking problems on some platforms 7304 7305commit 2195847e503a382f83ee969b0a8bd3dfe0e55c18 7306Author: Damien Miller <djm@mindrot.org> 7307Date: Wed Aug 20 11:05:03 2014 +1000 7308 7309 - (djm) [configure.ac] Check OpenSSL version is supported at configure time; 7310 suggested by Kevin Brott 7311 7312commit a75aca1bbc989aa9f8b1b08489d37855f3d24d1a 7313Author: Damien Miller <djm@mindrot.org> 7314Date: Tue Aug 19 11:36:07 2014 +1000 7315 7316 - (djm) [INSTALL contrib/caldera/openssh.spec contrib/cygwin/README] 7317 [contrib/redhat/openssh.spec contrib/suse/openssh.spec] Remove mentions 7318 of TCP wrappers. 7319 7320commit 3f022b5a9477abceeb1bbeab04b055f3cc7ca8f6 7321Author: Damien Miller <djm@mindrot.org> 7322Date: Tue Aug 19 11:32:34 2014 +1000 7323 7324 - (djm) [ssh-dss.c] Include openssl/dsa.h for DSA_SIG 7325 7326commit 88137902632aceb923990e98cf5dc923bb3ef2f5 7327Author: Damien Miller <djm@mindrot.org> 7328Date: Tue Aug 19 11:28:11 2014 +1000 7329 7330 - (djm) [sshbuf.h] Fix compilation on systems without OPENSSL_HAS_ECC. 7331 7332commit 2f3d1e7fb2eabd3cfbfd8d0f7bdd2f9a1888690b 7333Author: Damien Miller <djm@mindrot.org> 7334Date: Tue Aug 19 11:14:36 2014 +1000 7335 7336 - (djm) [myproposal.h] Make curve25519 KEX dependent on 7337 HAVE_EVP_SHA256 instead of OPENSSL_HAS_ECC. 7338 7339commit d4e7d59d01a6c7f59e8c1f94a83c086e9a33d8aa 7340Author: Damien Miller <djm@mindrot.org> 7341Date: Tue Aug 19 11:14:17 2014 +1000 7342 7343 - (djm) [serverloop.c] Fix syntax error on Cygwin; from Corinna Vinschen 7344 7345commit 9eaeea2cf2b6af5f166cfa9ad3c7a90711a147a9 7346Author: Damien Miller <djm@mindrot.org> 7347Date: Sun Aug 10 11:35:05 2014 +1000 7348 7349 - (djm) [README contrib/caldera/openssh.spec] 7350 [contrib/redhat/openssh.spec contrib/suse/openssh.spec] Update versions 7351 7352commit f8988fbef0c9801d19fa2f8f4f041690412bec37 7353Author: Damien Miller <djm@mindrot.org> 7354Date: Fri Aug 1 13:31:52 2014 +1000 7355 7356 - (djm) [regress/multiplex.sh] Use -d (detach stdin) flag to disassociate 7357 nc from stdin, it's more portable 7358 7359commit 5b3879fd4b7a4e3d43bab8f40addda39bc1169d0 7360Author: Damien Miller <djm@mindrot.org> 7361Date: Fri Aug 1 12:28:31 2014 +1000 7362 7363 - (djm) [regress/multiplex.sh] Instruct nc not to quit as soon as stdin 7364 is closed; avoid regress failures when stdin is /dev/null 7365 7366commit a9c46746d266f8a1b092a72b2150682d1af8ebfc 7367Author: Damien Miller <djm@mindrot.org> 7368Date: Fri Aug 1 12:26:49 2014 +1000 7369 7370 - (djm) [regress/multiplex.sh] Skip test for non-OpenBSD netcat. We need 7371 a better solution, but this will have to do for now. 7372 7373commit 426117b2e965e43f47015942b5be8dd88fe74b88 7374Author: Damien Miller <djm@mindrot.org> 7375Date: Wed Jul 30 12:33:20 2014 +1000 7376 7377 - schwarze@cvs.openbsd.org 2014/07/28 15:40:08 7378 [sftp-server.8 sshd_config.5] 7379 some systems no longer need /dev/log; 7380 issue noticed by jirib; 7381 ok deraadt 7382 7383commit f497794b6962eaf802ab4ac2a7b22ae591cca1d5 7384Author: Damien Miller <djm@mindrot.org> 7385Date: Wed Jul 30 12:32:46 2014 +1000 7386 7387 - dtucker@cvs.openbsd.org 2014/07/25 21:22:03 7388 [ssh-agent.c] 7389 Clear buffer used for handling messages. This prevents keys being 7390 left in memory after they have been expired or deleted in some cases 7391 (but note that ssh-agent is setgid so you would still need root to 7392 access them). Pointed out by Kevin Burns, ok deraadt 7393 7394commit a8a0f65c57c8ecba94d65948e9090da54014dfef 7395Author: Damien Miller <djm@mindrot.org> 7396Date: Wed Jul 30 12:32:28 2014 +1000 7397 7398 - OpenBSD CVS Sync 7399 - millert@cvs.openbsd.org 2014/07/24 22:57:10 7400 [ssh.1] 7401 Mention UNIX-domain socket forwarding too. OK jmc@ deraadt@ 7402 7403commit 56b840f2b81e14a2f95c203403633a72566736f8 7404Author: Damien Miller <djm@mindrot.org> 7405Date: Fri Jul 25 08:11:30 2014 +1000 7406 7407 - (djm) [regress/multiplex.sh] restore incorrectly deleted line; 7408 pointed out by Christian Hesse 7409 7410commit dd417b60d5ca220565d1014e92b7f8f43dc081eb 7411Author: Darren Tucker <dtucker@zip.com.au> 7412Date: Wed Jul 23 10:41:21 2014 +1000 7413 7414 - dtucker@cvs.openbsd.org 2014/07/22 23:35:38 7415 [regress/unittests/sshkey/testdata/*] 7416 Regenerate test keys with certs signed with ed25519 instead of ecdsa. 7417 These can be used in -portable on platforms that don't support ECDSA. 7418 7419commit 40e50211896369dba8f64f3b5e5fd58b76f5ac3f 7420Author: Darren Tucker <dtucker@zip.com.au> 7421Date: Wed Jul 23 10:35:45 2014 +1000 7422 7423 - dtucker@cvs.openbsd.org 2014/07/22 23:57:40 7424 [regress/unittests/sshkey/mktestdata.sh] 7425 Add $OpenBSD tag to make syncs easier 7426 7427commit 07e644251e809b1d4c062cf85bd1146a7e3f5a8a 7428Author: Darren Tucker <dtucker@zip.com.au> 7429Date: Wed Jul 23 10:34:26 2014 +1000 7430 7431 - dtucker@cvs.openbsd.org 2014/07/22 23:23:22 7432 [regress/unittests/sshkey/mktestdata.sh] 7433 Sign test certs with ed25519 instead of ecdsa so that they'll work in 7434 -portable on platforms that don't have ECDSA in their OpenSSL. ok djm 7435 7436commit cea099a7c4eaecb01b001e5453bb4e5c25006c22 7437Author: Darren Tucker <dtucker@zip.com.au> 7438Date: Wed Jul 23 10:04:02 2014 +1000 7439 7440 - djm@cvs.openbsd.org 2014/07/22 01:32:12 7441 [regress/multiplex.sh] 7442 change the test for still-open Unix domain sockets to be robust against 7443 nc implementations that produce error messages. from -portable 7444 (Id sync only) 7445 7446commit 31eb78078d349b32ea41952ecc944b3ad6cb0d45 7447Author: Darren Tucker <dtucker@zip.com.au> 7448Date: Wed Jul 23 09:43:42 2014 +1000 7449 7450 - guenther@cvs.openbsd.org 2014/07/22 07:13:42 7451 [umac.c] 7452 Convert from <sys/endian.h> to the shiney new <endian.h> 7453 ok dtucker@, who also confirmed that -portable handles this already 7454 (ID sync only, includes.h pulls in endian.h if available.) 7455 7456commit 820763efef2d19d965602533036c2b4badc9d465 7457Author: Darren Tucker <dtucker@zip.com.au> 7458Date: Wed Jul 23 09:40:46 2014 +1000 7459 7460 - dtucker@cvs.openbsd.org 2014/07/22 01:18:50 7461 [key.c] 7462 Prevent spam from key_load_private_pem during hostbased auth. ok djm@ 7463 7464commit c4ee219a66f3190fa96cbd45b4d11015685c6306 7465Author: Darren Tucker <dtucker@zip.com.au> 7466Date: Wed Jul 23 04:27:50 2014 +1000 7467 7468 - (dtucker) [regress/unittests/sshkey/test_{file,fuzz,sshkey}.c] Wrap ecdsa- 7469 specific tests inside OPENSSL_HAS_ECC. 7470 7471commit 04f4824940ea3edd60835416ececbae16438968a 7472Author: Damien Miller <djm@mindrot.org> 7473Date: Tue Jul 22 11:31:47 2014 +1000 7474 7475 - (djm) [regress/multiplex.sh] change the test for still-open Unix 7476 domain sockets to be robust against nc implementations that produce 7477 error messages. 7478 7479commit 5ea4fe00d55453aaa44007330bb4c3181bd9b796 7480Author: Damien Miller <djm@mindrot.org> 7481Date: Tue Jul 22 09:39:19 2014 +1000 7482 7483 - (djm) [regress/multiplex.sh] ssh mux master lost -N somehow; 7484 put it back 7485 7486commit 948a1774a79a85f9deba6d74db95f402dee32c69 7487Author: Darren Tucker <dtucker@zip.com.au> 7488Date: Tue Jul 22 01:07:11 2014 +1000 7489 7490 - (dtucker) [sshkey.c] ifdef out unused variable when compiling without 7491 OPENSSL_HAS_ECC. 7492 7493commit c8f610f6cc57ae129758052439d9baf13699097b 7494Author: Damien Miller <djm@mindrot.org> 7495Date: Mon Jul 21 10:23:27 2014 +1000 7496 7497 - (djm) [regress/multiplex.sh] Not all netcat accept the -N option. 7498 7499commit 0e4e95566cd95c887f69272499b8f3880b3ec0f5 7500Author: Damien Miller <djm@mindrot.org> 7501Date: Mon Jul 21 09:52:54 2014 +1000 7502 7503 - millert@cvs.openbsd.org 2014/07/15 15:54:15 7504 [forwarding.sh multiplex.sh] 7505 Add support for Unix domain socket forwarding. A remote TCP port 7506 may be forwarded to a local Unix domain socket and vice versa or 7507 both ends may be a Unix domain socket. This is a reimplementation 7508 of the streamlocal patches by William Ahern from: 7509 http://www.25thandclement.com/~william/projects/streamlocal.html 7510 OK djm@ markus@ 7511 7512commit 93a87ab27ecdc709169fb24411133998f81e2761 7513Author: Darren Tucker <dtucker@zip.com.au> 7514Date: Mon Jul 21 06:30:25 2014 +1000 7515 7516 - (dtucker) [regress/unittests/sshkey/ 7517 {common,test_file,test_fuzz,test_sshkey}.c] Wrap stdint.h includes in 7518 ifdefs. 7519 7520commit 5573171352ea23df2dc6d2fe0324d023b7ba697c 7521Author: Darren Tucker <dtucker@zip.com.au> 7522Date: Mon Jul 21 02:24:59 2014 +1000 7523 7524 - (dtucker) [cipher.c openbsd-compat/openssl-compat.h] Restore the bits 7525 needed to build AES CTR mode against OpenSSL 0.9.8f and above. ok djm 7526 7527commit 74e28682711d005026c7c8f15f96aea9d3c8b5a3 7528Author: Tim Rice <tim@multitalents.net> 7529Date: Fri Jul 18 20:00:11 2014 -0700 7530 7531 - (tim) [openbsd-compat/port-uw.c] Include misc.h for fwd_opts, used 7532 in servconf.h. 7533 7534commit d1a0421f8e5e933fee6fb58ee6b9a22c63c8a613 7535Author: Darren Tucker <dtucker@zip.com.au> 7536Date: Sat Jul 19 07:23:55 2014 +1000 7537 7538 - (dtucker) [key.c sshkey.c] Put new ecdsa bits inside ifdef OPENSSL_HAS_ECC. 7539 7540commit f0fe9ea1be62227c130b317769de3d1e736b6dc1 7541Author: Darren Tucker <dtucker@zip.com.au> 7542Date: Sat Jul 19 06:33:12 2014 +1000 7543 7544 - (dtucker) [Makefile.in] Add a t-exec target to run just the executable 7545 tests. 7546 7547commit 450bc1180d4b061434a4b733c5c8814fa30b022b 7548Author: Darren Tucker <dtucker@zip.com.au> 7549Date: Sat Jul 19 06:23:18 2014 +1000 7550 7551 - (dtucker) [auth2-gss.c gss-serv-krb5.c] Include misc.h for fwd_opts, used 7552 in servconf.h. 7553 7554commit ab2ec586baad122ed169285c31927ccf58bc7b28 7555Author: Damien Miller <djm@mindrot.org> 7556Date: Fri Jul 18 15:04:47 2014 +1000 7557 7558 - djm@cvs.openbsd.org 2014/07/18 02:46:01 7559 [ssh-agent.c] 7560 restore umask around listener socket creation (dropped in streamlocal patch 7561 merge) 7562 7563commit 357610d15946381ae90c271837dcdd0cdce7145f 7564Author: Damien Miller <djm@mindrot.org> 7565Date: Fri Jul 18 15:04:10 2014 +1000 7566 7567 - djm@cvs.openbsd.org 2014/07/17 07:22:19 7568 [mux.c ssh.c] 7569 reflect stdio-forward ("ssh -W host:port ...") failures in exit status. 7570 previously we were always returning 0. bz#2255 reported by Brendan 7571 Germain; ok dtucker 7572 7573commit dad9a4a0b7c2b5d78605f8df28718f116524134e 7574Author: Damien Miller <djm@mindrot.org> 7575Date: Fri Jul 18 15:03:49 2014 +1000 7576 7577 - djm@cvs.openbsd.org 2014/07/17 00:12:03 7578 [key.c] 7579 silence "incorrect passphrase" error spam; reported and ok dtucker@ 7580 7581commit f42f7684ecbeec6ce50e0310f80b3d6da2aaf533 7582Author: Damien Miller <djm@mindrot.org> 7583Date: Fri Jul 18 15:03:27 2014 +1000 7584 7585 - djm@cvs.openbsd.org 2014/07/17 00:10:18 7586 [mux.c] 7587 preserve errno across syscall 7588 7589commit 1b83320628cb0733e3688b85bfe4d388a7c51909 7590Author: Damien Miller <djm@mindrot.org> 7591Date: Fri Jul 18 15:03:02 2014 +1000 7592 7593 - djm@cvs.openbsd.org 2014/07/17 00:10:56 7594 [sandbox-systrace.c] 7595 ifdef SYS_sendsyslog so this will compile without patching on -stable 7596 7597commit 6d57656331bcd754d912950e4a18ad259d596e61 7598Author: Damien Miller <djm@mindrot.org> 7599Date: Fri Jul 18 15:02:06 2014 +1000 7600 7601 - jmc@cvs.openbsd.org 2014/07/16 14:48:57 7602 [ssh.1] 7603 add the streamlocal* options to ssh's -o list; millert says they're 7604 irrelevant for scp/sftp; 7605 7606 ok markus millert 7607 7608commit 7acefbbcbeab725420ea07397ae35992f505f702 7609Author: Damien Miller <djm@mindrot.org> 7610Date: Fri Jul 18 14:11:24 2014 +1000 7611 7612 - millert@cvs.openbsd.org 2014/07/15 15:54:14 7613 [PROTOCOL auth-options.c auth-passwd.c auth-rh-rsa.c auth-rhosts.c] 7614 [auth-rsa.c auth.c auth1.c auth2-hostbased.c auth2-kbdint.c auth2-none.c] 7615 [auth2-passwd.c auth2-pubkey.c auth2.c canohost.c channels.c channels.h] 7616 [clientloop.c misc.c misc.h monitor.c mux.c packet.c readconf.c] 7617 [readconf.h servconf.c servconf.h serverloop.c session.c ssh-agent.c] 7618 [ssh.c ssh_config.5 sshconnect.c sshconnect1.c sshconnect2.c sshd.c] 7619 [sshd_config.5 sshlogin.c] 7620 Add support for Unix domain socket forwarding. A remote TCP port 7621 may be forwarded to a local Unix domain socket and vice versa or 7622 both ends may be a Unix domain socket. This is a reimplementation 7623 of the streamlocal patches by William Ahern from: 7624 http://www.25thandclement.com/~william/projects/streamlocal.html 7625 OK djm@ markus@ 7626 7627commit 6262d760e00714523633bd989d62e273a3dca99a 7628Author: Damien Miller <djm@mindrot.org> 7629Date: Thu Jul 17 09:52:07 2014 +1000 7630 7631 - tedu@cvs.openbsd.org 2014/07/11 13:54:34 7632 [myproposal.h] 7633 by popular demand, add back hamc-sha1 to server proposal for better compat 7634 with many clients still in use. ok deraadt 7635 7636commit 9d69d937b46ecba17f16d923e538ceda7b705c7a 7637Author: Damien Miller <djm@mindrot.org> 7638Date: Thu Jul 17 09:49:37 2014 +1000 7639 7640 - deraadt@cvs.openbsd.org 2014/07/11 08:09:54 7641 [sandbox-systrace.c] 7642 Permit use of SYS_sendsyslog from inside the sandbox. Clock is ticking, 7643 update your kernels and sshd soon.. libc will start using sendsyslog() 7644 in about 4 days. 7645 7646commit f6293a0b4129826fc2e37e4062f96825df43c326 7647Author: Damien Miller <djm@mindrot.org> 7648Date: Thu Jul 17 09:01:25 2014 +1000 7649 7650 - (djm) [digest-openssl.c] Preserve array order when disabling digests. 7651 Reported by Petr Lautrbach. 7652 7653commit 00f9cd230709c04399ef5ff80492d70a55230694 7654Author: Damien Miller <djm@mindrot.org> 7655Date: Tue Jul 15 10:41:38 2014 +1000 7656 7657 - (djm) [configure.ac] Delay checks for arc4random* until after libcrypto 7658 has been located; fixes builds agains libressl-portable 7659 7660commit 1d0df3249c87019556b83306c28d4769375c2edc 7661Author: Damien Miller <djm@mindrot.org> 7662Date: Fri Jul 11 09:19:04 2014 +1000 7663 7664 - OpenBSD CVS Sync 7665 - benno@cvs.openbsd.org 2014/07/09 14:15:56 7666 [ssh-add.c] 7667 fix ssh-add crash while loading more than one key 7668 ok markus@ 7669 7670commit 7a57eb3d105aa4ced15fb47001092c58811e6d9d 7671Author: Damien Miller <djm@mindrot.org> 7672Date: Wed Jul 9 13:22:31 2014 +1000 7673 7674 - djm@cvs.openbsd.org 2014/07/07 08:15:26 7675 [multiplex.sh] 7676 remove forced-fatal that I stuck in there to test the new cleanup 7677 logic and forgot to remove... 7678 7679commit 612f965239a30fe536b11ece1834d9f470aeb029 7680Author: Damien Miller <djm@mindrot.org> 7681Date: Wed Jul 9 13:22:03 2014 +1000 7682 7683 - djm@cvs.openbsd.org 2014/07/06 07:42:03 7684 [multiplex.sh test-exec.sh] 7685 add a hook to the cleanup() function to kill $SSH_PID if it is set 7686 7687 use it to kill the mux master started in multiplex.sh (it was being left 7688 around on fatal failures) 7689 7690commit d0bb950485ba121e43a77caf434115ed6417b46f 7691Author: Damien Miller <djm@mindrot.org> 7692Date: Wed Jul 9 13:07:28 2014 +1000 7693 7694 - djm@cvs.openbsd.org 2014/07/09 03:02:15 7695 [key.c] 7696 downgrade more error() to debug() to better match what old authfile.c 7697 did; suppresses spurious errors with hostbased authentication enabled 7698 7699commit 0070776a038655c57f57e70cd05e4c38a5de9d84 7700Author: Damien Miller <djm@mindrot.org> 7701Date: Wed Jul 9 13:07:06 2014 +1000 7702 7703 - djm@cvs.openbsd.org 2014/07/09 01:45:10 7704 [sftp.c] 7705 more useful error message when GLOB_NOSPACE occurs; 7706 bz#2254, patch from Orion Poplawski 7707 7708commit 079bac2a43c74ef7cf56850afbab3b1932534c50 7709Author: Damien Miller <djm@mindrot.org> 7710Date: Wed Jul 9 13:06:25 2014 +1000 7711 7712 - djm@cvs.openbsd.org 2014/07/07 08:19:12 7713 [ssh_config.5] 7714 mention that ProxyCommand is executed using shell "exec" to avoid 7715 a lingering process; bz#1977 7716 7717commit 3a48cc090096cf99b9de592deb5f90e444edebfb 7718Author: Damien Miller <djm@mindrot.org> 7719Date: Sun Jul 6 09:32:49 2014 +1000 7720 7721 - djm@cvs.openbsd.org 2014/07/05 23:11:48 7722 [channels.c] 7723 fix remote-forward cancel regression; ok markus@ 7724 7725commit 48bae3a38cb578713e676708164f6e7151cc64fa 7726Author: Damien Miller <djm@mindrot.org> 7727Date: Sun Jul 6 09:27:06 2014 +1000 7728 7729 - djm@cvs.openbsd.org 2014/07/03 23:18:35 7730 [authfile.h] 7731 remove leakmalloc droppings 7732 7733commit 72e6b5c9ed5e72ca3a6ccc3177941b7c487a0826 7734Author: Damien Miller <djm@mindrot.org> 7735Date: Fri Jul 4 09:00:04 2014 +1000 7736 7737 - djm@cvs.openbsd.org 2014/07/03 22:40:43 7738 [servconf.c servconf.h session.c sshd.8 sshd_config.5] 7739 Add a sshd_config PermitUserRC option to control whether ~/.ssh/rc is 7740 executed, mirroring the no-user-rc authorized_keys option; 7741 bz#2160; ok markus@ 7742 7743commit 602943d1179a08dfa70af94f62296ea5e3d6ebb8 7744Author: Damien Miller <djm@mindrot.org> 7745Date: Fri Jul 4 08:59:41 2014 +1000 7746 7747 - djm@cvs.openbsd.org 2014/07/03 22:33:41 7748 [channels.c] 7749 allow explicit ::1 and 127.0.0.1 forwarding bind addresses when 7750 GatewayPorts=no; allows client to choose address family; 7751 bz#2222 ok markus@ 7752 7753commit 6b37fbb7921d156b31e2c8f39d9e1b6746c34983 7754Author: Damien Miller <djm@mindrot.org> 7755Date: Fri Jul 4 08:59:24 2014 +1000 7756 7757 - djm@cvs.openbsd.org 2014/07/03 22:23:46 7758 [sshconnect.c] 7759 when rekeying, skip file/DNS lookup if it is the same as the key sent 7760 during initial key exchange. bz#2154 patch from Iain Morgan; ok markus@ 7761 7762commit d2c3cd5f2e47ee24cf7093ce8e948c2e79dfc3fd 7763Author: Damien Miller <djm@mindrot.org> 7764Date: Fri Jul 4 08:59:01 2014 +1000 7765 7766 - jsing@cvs.openbsd.org 2014/07/03 12:42:16 7767 [cipher-chachapoly.c] 7768 Call chacha_ivsetup() immediately before chacha_encrypt_bytes() - this 7769 makes it easier to verify that chacha_encrypt_bytes() is only called once 7770 per chacha_ivsetup() call. 7771 ok djm@ 7772 7773commit 686feb560ec43a06ba04da82b50f3c183c947309 7774Author: Damien Miller <djm@mindrot.org> 7775Date: Thu Jul 3 21:29:38 2014 +1000 7776 7777 - djm@cvs.openbsd.org 2014/07/03 11:16:55 7778 [auth.c auth.h auth1.c auth2.c] 7779 make the "Too many authentication failures" message include the 7780 user, source address, port and protocol in a format similar to the 7781 authentication success / failure messages; bz#2199, ok dtucker 7782 7783commit 0f12341402e18fd9996ec23189b9418d2722453f 7784Author: Damien Miller <djm@mindrot.org> 7785Date: Thu Jul 3 21:28:09 2014 +1000 7786 7787 - jmc@cvs.openbsd.org 2014/07/03 07:45:27 7788 [ssh_config.5] 7789 escape %C since groff thinks it part of an Rs/Re block; 7790 7791commit 9c38643c5cd47a19db2cc28279dcc28abadc22b3 7792Author: Damien Miller <djm@mindrot.org> 7793Date: Thu Jul 3 21:27:46 2014 +1000 7794 7795 - djm@cvs.openbsd.org 2014/07/03 06:39:19 7796 [ssh.c ssh_config.5] 7797 Add a %C escape sequence for LocalCommand and ControlPath that expands 7798 to a unique identifer based on a has of the tuple of (local host, 7799 remote user, hostname, port). 7800 7801 Helps avoid exceeding sockaddr_un's miserly pathname limits for mux 7802 control paths. 7803 7804 bz#2220, based on patch from mancha1 AT zoho.com; ok markus@ 7805 7806commit 49d9bfe2b2f3e90cc158a215dffa7675e57e7830 7807Author: Damien Miller <djm@mindrot.org> 7808Date: Thu Jul 3 21:26:42 2014 +1000 7809 7810 - djm@cvs.openbsd.org 2014/07/03 05:38:17 7811 [ssh.1] 7812 document that -g will only work in the multiplexed case if applied to 7813 the mux master 7814 7815commit ef9f13ba4c58057b2166d1f2e790535da402fbe5 7816Author: Damien Miller <djm@mindrot.org> 7817Date: Thu Jul 3 21:26:21 2014 +1000 7818 7819 - djm@cvs.openbsd.org 2014/07/03 05:32:36 7820 [ssh_config.5] 7821 mention '%%' escape sequence in HostName directives and how it may 7822 be used to specify IPv6 link-local addresses 7823 7824commit e6a407789e5432dd2e53336fb73476cc69048c54 7825Author: Damien Miller <djm@mindrot.org> 7826Date: Thu Jul 3 21:25:03 2014 +1000 7827 7828 - djm@cvs.openbsd.org 2014/07/03 04:36:45 7829 [digest.h] 7830 forward-declare struct sshbuf so consumers don't need to include sshbuf.h 7831 7832commit 4a1d3d50f02d0a8a4ef95ea4749293cbfb89f919 7833Author: Damien Miller <djm@mindrot.org> 7834Date: Thu Jul 3 21:24:40 2014 +1000 7835 7836 - djm@cvs.openbsd.org 2014/07/03 03:47:27 7837 [ssh-keygen.c] 7838 When hashing or removing hosts using ssh-keygen, don't choke on 7839 @revoked markers and don't remove @cert-authority markers; 7840 bz#2241, reported by mlindgren AT runelind.net 7841 7842commit e5c0d52ceb575c3db8c313e0b1aa3845943d7ba8 7843Author: Damien Miller <djm@mindrot.org> 7844Date: Thu Jul 3 21:24:19 2014 +1000 7845 7846 - djm@cvs.openbsd.org 2014/07/03 03:34:09 7847 [gss-serv.c session.c ssh-keygen.c] 7848 standardise on NI_MAXHOST for gethostname() string lengths; about 7849 1/2 the cases were using it already. Fixes bz#2239 en passant 7850 7851commit c174a3b7c14e0d178c61219de2aa1110e209950c 7852Author: Damien Miller <djm@mindrot.org> 7853Date: Thu Jul 3 21:23:24 2014 +1000 7854 7855 - djm@cvs.openbsd.org 2014/07/03 03:26:43 7856 [digest-openssl.c] 7857 use EVP_Digest() for one-shot hash instead of creating, updating, 7858 finalising and destroying a context. 7859 bz#2231, based on patch from Timo Teras 7860 7861commit d7ca2cd31ecc4d63a055e2dcc4bf35c13f2db4c5 7862Author: Damien Miller <djm@mindrot.org> 7863Date: Thu Jul 3 21:23:01 2014 +1000 7864 7865 - djm@cvs.openbsd.org 2014/07/03 03:15:01 7866 [ssh-add.c] 7867 make stdout line-buffered; saves partial output getting lost when 7868 ssh-add fatal()s part-way through (e.g. when listing keys from an 7869 agent that supports key types that ssh-add doesn't); 7870 bz#2234, reported by Phil Pennock 7871 7872commit b1e967c8d7c7578dd0c172d85b3046cf54ea42ba 7873Author: Damien Miller <djm@mindrot.org> 7874Date: Thu Jul 3 21:22:40 2014 +1000 7875 7876 - djm@cvs.openbsd.org 2014/07/03 03:11:03 7877 [ssh-agent.c] 7878 Only cleanup agent socket in the main agent process and not in any 7879 subprocesses it may have started (e.g. forked askpass). Fixes 7880 agent sockets being zapped when askpass processes fatal(); 7881 bz#2236 patch from Dmitry V. Levin 7882 7883commit 61e28e55c3438d796b02ef878bcd28620d452670 7884Author: Damien Miller <djm@mindrot.org> 7885Date: Thu Jul 3 21:22:22 2014 +1000 7886 7887 - djm@cvs.openbsd.org 2014/07/03 01:45:38 7888 [sshkey.c] 7889 make Ed25519 keys' title fit properly in the randomart border; bz#2247 7890 based on patch from Christian Hesse 7891 7892commit 9eb4cd9a32c32d40d36450b68ed93badc6a94c68 7893Author: Damien Miller <djm@mindrot.org> 7894Date: Thu Jul 3 13:29:50 2014 +1000 7895 7896 - (djm) [monitor_fdpass.c] Use sys/poll.h if poll.h doesn't exist; 7897 bz#2237 7898 7899commit 8da0fa24934501909408327298097b1629b89eaa 7900Author: Damien Miller <djm@mindrot.org> 7901Date: Thu Jul 3 11:54:19 2014 +1000 7902 7903 - (djm) [digest-openssl.c configure.ac] Disable RIPEMD160 if libcrypto 7904 doesn't support it. 7905 7906commit 81309c857dd0dbc0a1245a16d621c490ad48cfbb 7907Author: Damien Miller <djm@mindrot.org> 7908Date: Wed Jul 2 17:45:55 2014 +1000 7909 7910 - (djm) [regress/Makefile] fix execution of sshkey unit/fuzz test 7911 7912commit 82b2482ce68654815ee049b9bf021bb362a35ff2 7913Author: Damien Miller <djm@mindrot.org> 7914Date: Wed Jul 2 17:43:41 2014 +1000 7915 7916 - (djm) [sshkey.c] Conditionalise inclusion of util.h 7917 7918commit dd8b1dd7933eb6f5652641b0cdced34a387f2e80 7919Author: Damien Miller <djm@mindrot.org> 7920Date: Wed Jul 2 17:38:31 2014 +1000 7921 7922 - djm@cvs.openbsd.org 2014/06/24 01:14:17 7923 [Makefile.in regress/Makefile regress/unittests/Makefile] 7924 [regress/unittests/sshkey/Makefile] 7925 [regress/unittests/sshkey/common.c] 7926 [regress/unittests/sshkey/common.h] 7927 [regress/unittests/sshkey/mktestdata.sh] 7928 [regress/unittests/sshkey/test_file.c] 7929 [regress/unittests/sshkey/test_fuzz.c] 7930 [regress/unittests/sshkey/test_sshkey.c] 7931 [regress/unittests/sshkey/tests.c] 7932 [regress/unittests/sshkey/testdata/dsa_1] 7933 [regress/unittests/sshkey/testdata/dsa_1-cert.fp] 7934 [regress/unittests/sshkey/testdata/dsa_1-cert.pub] 7935 [regress/unittests/sshkey/testdata/dsa_1.fp] 7936 [regress/unittests/sshkey/testdata/dsa_1.fp.bb] 7937 [regress/unittests/sshkey/testdata/dsa_1.param.g] 7938 [regress/unittests/sshkey/testdata/dsa_1.param.priv] 7939 [regress/unittests/sshkey/testdata/dsa_1.param.pub] 7940 [regress/unittests/sshkey/testdata/dsa_1.pub] 7941 [regress/unittests/sshkey/testdata/dsa_1_pw] 7942 [regress/unittests/sshkey/testdata/dsa_2] 7943 [regress/unittests/sshkey/testdata/dsa_2.fp] 7944 [regress/unittests/sshkey/testdata/dsa_2.fp.bb] 7945 [regress/unittests/sshkey/testdata/dsa_2.pub] 7946 [regress/unittests/sshkey/testdata/dsa_n] 7947 [regress/unittests/sshkey/testdata/dsa_n_pw] 7948 [regress/unittests/sshkey/testdata/ecdsa_1] 7949 [regress/unittests/sshkey/testdata/ecdsa_1-cert.fp] 7950 [regress/unittests/sshkey/testdata/ecdsa_1-cert.pub] 7951 [regress/unittests/sshkey/testdata/ecdsa_1.fp] 7952 [regress/unittests/sshkey/testdata/ecdsa_1.fp.bb] 7953 [regress/unittests/sshkey/testdata/ecdsa_1.param.curve] 7954 [regress/unittests/sshkey/testdata/ecdsa_1.param.priv] 7955 [regress/unittests/sshkey/testdata/ecdsa_1.param.pub] 7956 [regress/unittests/sshkey/testdata/ecdsa_1.pub] 7957 [regress/unittests/sshkey/testdata/ecdsa_1_pw] 7958 [regress/unittests/sshkey/testdata/ecdsa_2] 7959 [regress/unittests/sshkey/testdata/ecdsa_2.fp] 7960 [regress/unittests/sshkey/testdata/ecdsa_2.fp.bb] 7961 [regress/unittests/sshkey/testdata/ecdsa_2.param.curve] 7962 [regress/unittests/sshkey/testdata/ecdsa_2.param.priv] 7963 [regress/unittests/sshkey/testdata/ecdsa_2.param.pub] 7964 [regress/unittests/sshkey/testdata/ecdsa_2.pub] 7965 [regress/unittests/sshkey/testdata/ecdsa_n] 7966 [regress/unittests/sshkey/testdata/ecdsa_n_pw] 7967 [regress/unittests/sshkey/testdata/ed25519_1] 7968 [regress/unittests/sshkey/testdata/ed25519_1-cert.fp] 7969 [regress/unittests/sshkey/testdata/ed25519_1-cert.pub] 7970 [regress/unittests/sshkey/testdata/ed25519_1.fp] 7971 [regress/unittests/sshkey/testdata/ed25519_1.fp.bb] 7972 [regress/unittests/sshkey/testdata/ed25519_1.pub] 7973 [regress/unittests/sshkey/testdata/ed25519_1_pw] 7974 [regress/unittests/sshkey/testdata/ed25519_2] 7975 [regress/unittests/sshkey/testdata/ed25519_2.fp] 7976 [regress/unittests/sshkey/testdata/ed25519_2.fp.bb] 7977 [regress/unittests/sshkey/testdata/ed25519_2.pub] 7978 [regress/unittests/sshkey/testdata/pw] 7979 [regress/unittests/sshkey/testdata/rsa1_1] 7980 [regress/unittests/sshkey/testdata/rsa1_1.fp] 7981 [regress/unittests/sshkey/testdata/rsa1_1.fp.bb] 7982 [regress/unittests/sshkey/testdata/rsa1_1.param.n] 7983 [regress/unittests/sshkey/testdata/rsa1_1.pub] 7984 [regress/unittests/sshkey/testdata/rsa1_1_pw] 7985 [regress/unittests/sshkey/testdata/rsa1_2] 7986 [regress/unittests/sshkey/testdata/rsa1_2.fp] 7987 [regress/unittests/sshkey/testdata/rsa1_2.fp.bb] 7988 [regress/unittests/sshkey/testdata/rsa1_2.param.n] 7989 [regress/unittests/sshkey/testdata/rsa1_2.pub] 7990 [regress/unittests/sshkey/testdata/rsa_1] 7991 [regress/unittests/sshkey/testdata/rsa_1-cert.fp] 7992 [regress/unittests/sshkey/testdata/rsa_1-cert.pub] 7993 [regress/unittests/sshkey/testdata/rsa_1.fp] 7994 [regress/unittests/sshkey/testdata/rsa_1.fp.bb] 7995 [regress/unittests/sshkey/testdata/rsa_1.param.n] 7996 [regress/unittests/sshkey/testdata/rsa_1.param.p] 7997 [regress/unittests/sshkey/testdata/rsa_1.param.q] 7998 [regress/unittests/sshkey/testdata/rsa_1.pub] 7999 [regress/unittests/sshkey/testdata/rsa_1_pw] 8000 [regress/unittests/sshkey/testdata/rsa_2] 8001 [regress/unittests/sshkey/testdata/rsa_2.fp] 8002 [regress/unittests/sshkey/testdata/rsa_2.fp.bb] 8003 [regress/unittests/sshkey/testdata/rsa_2.param.n] 8004 [regress/unittests/sshkey/testdata/rsa_2.param.p] 8005 [regress/unittests/sshkey/testdata/rsa_2.param.q] 8006 [regress/unittests/sshkey/testdata/rsa_2.pub] 8007 [regress/unittests/sshkey/testdata/rsa_n] 8008 [regress/unittests/sshkey/testdata/rsa_n_pw] 8009 unit and fuzz tests for new key API 8010 8011commit c1dc24b71f087f385b92652b9673f52af64e0428 8012Author: Damien Miller <djm@mindrot.org> 8013Date: Wed Jul 2 17:02:03 2014 +1000 8014 8015 - djm@cvs.openbsd.org 2014/06/24 01:04:43 8016 [regress/krl.sh] 8017 regress test for broken consecutive revoked serial number ranges 8018 8019commit 43d3ed2dd3feca6d0326c7dc82588d2faa115e92 8020Author: Damien Miller <djm@mindrot.org> 8021Date: Wed Jul 2 17:01:08 2014 +1000 8022 8023 - djm@cvs.openbsd.org 2014/05/21 07:04:21 8024 [regress/integrity.sh] 8025 when failing because of unexpected output, show the offending output 8026 8027commit 5a96707ffc8d227c2e7d94fa6b0317f8a152cf4e 8028Author: Damien Miller <djm@mindrot.org> 8029Date: Wed Jul 2 15:38:05 2014 +1000 8030 8031 - djm@cvs.openbsd.org 2014/04/30 05:32:00 8032 [regress/Makefile] 8033 unit tests for new buffer API; including basic fuzz testing 8034 NB. Id sync only. 8035 8036commit 3ff92ba756aee48e4ae3e0aeff7293517b3dd185 8037Author: Damien Miller <djm@mindrot.org> 8038Date: Wed Jul 2 15:33:09 2014 +1000 8039 8040 - djm@cvs.openbsd.org 2014/06/30 12:54:39 8041 [key.c] 8042 suppress spurious error message when loading key with a passphrase; 8043 reported by kettenis@ ok markus@ 8044 - djm@cvs.openbsd.org 2014/07/02 04:59:06 8045 [cipher-3des1.c] 8046 fix ssh protocol 1 on the server that regressed with the sshkey change 8047 (sometimes fatal() after auth completed), make file return useful status 8048 codes. 8049 NB. Id sync only for these two. They were bundled into the sshkey merge 8050 above, since it was easier to sync the entire file and then apply 8051 portable-specific changed atop it. 8052 8053commit ec3d0e24a1e46873d80507f5cd8ee6d0d03ac5dc 8054Author: Damien Miller <djm@mindrot.org> 8055Date: Wed Jul 2 15:30:00 2014 +1000 8056 8057 - markus@cvs.openbsd.org 2014/06/27 18:50:39 8058 [ssh-add.c] 8059 fix loading of private keys 8060 8061commit 4b3ed647d5b328cf68e6a8ffbee490d8e0683e82 8062Author: Damien Miller <djm@mindrot.org> 8063Date: Wed Jul 2 15:29:40 2014 +1000 8064 8065 - markus@cvs.openbsd.org 2014/06/27 16:41:56 8066 [channels.c channels.h clientloop.c ssh.c] 8067 fix remote fwding with same listen port but different listen address 8068 with gerhard@, ok djm@ 8069 8070commit 9e01ff28664921ce9b6500681333e42fb133b4d0 8071Author: Damien Miller <djm@mindrot.org> 8072Date: Wed Jul 2 15:29:21 2014 +1000 8073 8074 - deraadt@cvs.openbsd.org 2014/06/25 14:16:09 8075 [sshbuf.c] 8076 unblock SIGSEGV before raising it 8077 ok djm 8078 8079commit 1845fe6bda0729e52f4c645137f4fc3070b5438a 8080Author: Damien Miller <djm@mindrot.org> 8081Date: Wed Jul 2 15:29:01 2014 +1000 8082 8083 - djm@cvs.openbsd.org 2014/06/24 02:21:01 8084 [scp.c] 8085 when copying local->remote fails during read, don't send uninitialised 8086 heap to the remote end. Reported by Jann Horn 8087 8088commit 19439e9a2a0ac0b4b3b1210e89695418beb1c883 8089Author: Damien Miller <djm@mindrot.org> 8090Date: Wed Jul 2 15:28:40 2014 +1000 8091 8092 - djm@cvs.openbsd.org 2014/06/24 02:19:48 8093 [ssh.c] 8094 don't fatal() when hostname canonicalisation fails with a 8095 ProxyCommand in use; continue and allow the ProxyCommand to 8096 connect anyway (e.g. to a host with a name outside the DNS 8097 behind a bastion) 8098 8099commit 8668706d0f52654fe64c0ca41a96113aeab8d2b8 8100Author: Damien Miller <djm@mindrot.org> 8101Date: Wed Jul 2 15:28:02 2014 +1000 8102 8103 - djm@cvs.openbsd.org 2014/06/24 01:13:21 8104 [Makefile.in auth-bsdauth.c auth-chall.c auth-options.c auth-rsa.c 8105 [auth2-none.c auth2-pubkey.c authfile.c authfile.h cipher-3des1.c 8106 [cipher-chachapoly.c cipher-chachapoly.h cipher.c cipher.h 8107 [digest-libc.c digest-openssl.c digest.h dns.c entropy.c hmac.h 8108 [hostfile.c key.c key.h krl.c monitor.c packet.c rsa.c rsa.h 8109 [ssh-add.c ssh-agent.c ssh-dss.c ssh-ecdsa.c ssh-ed25519.c 8110 [ssh-keygen.c ssh-pkcs11-client.c ssh-pkcs11-helper.c ssh-pkcs11.c 8111 [ssh-rsa.c sshbuf-misc.c sshbuf.h sshconnect.c sshconnect1.c 8112 [sshconnect2.c sshd.c sshkey.c sshkey.h 8113 [openbsd-compat/openssl-compat.c openbsd-compat/openssl-compat.h] 8114 New key API: refactor key-related functions to be more library-like, 8115 existing API is offered as a set of wrappers. 8116 8117 with and ok markus@ 8118 8119 Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew 8120 Dempsky and Ron Bowes for a detailed review a few months ago. 8121 8122 NB. This commit also removes portable OpenSSH support for OpenSSL 8123 <0.9.8e. 8124 8125commit 2cd7929250cf9e9f658d70dcd452f529ba08c942 8126Author: Damien Miller <djm@mindrot.org> 8127Date: Wed Jul 2 12:48:30 2014 +1000 8128 8129 - djm@cvs.openbsd.org 2014/06/24 00:52:02 8130 [krl.c] 8131 fix bug in KRL generation: multiple consecutive revoked certificate 8132 serial number ranges could be serialised to an invalid format. 8133 8134 Readers of a broken KRL caused by this bug will fail closed, so no 8135 should-have-been-revoked key will be accepted. 8136 8137commit 99db840ee8dbbd2b3fbc6c45d0ee2f6a65e96898 8138Author: Damien Miller <djm@mindrot.org> 8139Date: Wed Jul 2 12:48:04 2014 +1000 8140 8141 - naddy@cvs.openbsd.org 2014/06/18 15:42:09 8142 [sshbuf-getput-crypto.c] 8143 The ssh_get_bignum functions must accept the same range of bignums 8144 the corresponding ssh_put_bignum functions create. This fixes the 8145 use of 16384-bit RSA keys (bug reported by Eivind Evensen). 8146 ok djm@ 8147 8148commit 84a89161a9629239b64171ef3e22ef6a3e462d51 8149Author: Damien Miller <djm@mindrot.org> 8150Date: Wed Jul 2 12:47:48 2014 +1000 8151 8152 - matthew@cvs.openbsd.org 2014/06/18 02:59:13 8153 [sandbox-systrace.c] 8154 Now that we have a dedicated getentropy(2) system call for 8155 arc4random(3), we can disallow __sysctl(2) in OpenSSH's systrace 8156 sandbox. 8157 8158 ok djm 8159 8160commit 51504ceec627c0ad57b9f75585c7b3d277f326be 8161Author: Damien Miller <djm@mindrot.org> 8162Date: Wed Jul 2 12:47:25 2014 +1000 8163 8164 - deraadt@cvs.openbsd.org 2014/06/13 08:26:29 8165 [sandbox-systrace.c] 8166 permit SYS_getentropy 8167 from matthew 8168 8169commit a261b8df59117f7dc52abb3a34b35a40c2c9fa88 8170Author: Tim Rice <tim@multitalents.net> 8171Date: Wed Jun 18 16:17:28 2014 -0700 8172 8173 - (tim) [openssh/session.c] Work around to get chroot sftp working on UnixWare 8174 8175commit 316fac6f18f87262a315c79bcf68b9f92c9337e4 8176Author: Darren Tucker <dtucker@zip.com.au> 8177Date: Tue Jun 17 23:06:07 2014 +1000 8178 8179 - (dtucker) [entropy.c openbsd-compat/openssl-compat.{c,h} 8180 openbsd-compat/regress/{.cvsignore,Makefile.in,opensslvertest.c}] 8181 Move the OpenSSL header/library version test into its own function and add 8182 tests for it. Fix it to allow fix version upgrades (but not downgrades). 8183 Prompted by chl@ via OpenSMTPD (issue #462) and Debian (bug #748150). 8184 ok djm@ chl@ 8185 8186commit af665bb7b092a59104db1e65577851cf35b86e32 8187Author: Darren Tucker <dtucker@zip.com.au> 8188Date: Mon Jun 16 22:50:55 2014 +1000 8189 8190 - (dtucker) [defines.h] Fix undef of _PATH_MAILDIR. From rak at debian via 8191 OpenSMTPD and chl@ 8192 8193commit f9696566fb41320820f3b257ab564fa321bb3751 8194Author: Darren Tucker <dtucker@zip.com.au> 8195Date: Fri Jun 13 11:06:04 2014 +1000 8196 8197 - (dtucker) [configure.ac] Remove tcpwrappers support, support has already 8198 been removed from sshd.c. 8199 8200commit 5e2b8894b0b24af4ad0a2f7aa33ebf255df7a8bc 8201Author: Tim Rice <tim@multitalents.net> 8202Date: Wed Jun 11 18:31:10 2014 -0700 8203 8204 - (tim) [regress/unittests/test_helper/test_helper.h] Add includes.h for 8205 u_intXX_t types. 8206 8207commit 985ee2cbc3e43bc65827c3c0d4df3faa99160c37 8208Author: Darren Tucker <dtucker@zip.com.au> 8209Date: Thu Jun 12 05:32:29 2014 +1000 8210 8211 - (dtucker) [regress/unittests/sshbuf/*.c regress/unittests/test_helper/*] 8212 Wrap stdlib.h include an ifdef for platforms that don't have it. 8213 8214commit cf5392c2db2bb1dbef9818511d34056404436109 8215Author: Darren Tucker <dtucker@zip.com.au> 8216Date: Thu Jun 12 05:22:49 2014 +1000 8217 8218 - (dtucker) [defines.h] Add va_copy if we don't already have it, taken from 8219 openbsd-compat/bsd-asprintf.c. 8220 8221commit 58538d795e0b662f2f4e5a7193f1204bbe992ddd 8222Author: Darren Tucker <dtucker@zip.com.au> 8223Date: Wed Jun 11 13:39:24 2014 +1000 8224 8225 - (dtucker) [bufaux.c bufbn.c bufec.c buffer.c] Pull in includes.h for 8226 compat stuff, specifically whether or not OpenSSL has ECC. 8227 8228commit eb012ac581fd0abc16ee86ee3a68cf07c8ce4d08 8229Author: Darren Tucker <dtucker@zip.com.au> 8230Date: Wed Jun 11 13:10:00 2014 +1000 8231 8232 - (dtucker) [openbsd-compat/arc4random.c] Use explicit_bzero instead of an 8233 assigment that might get optimized out. ok djm@ 8234 8235commit b9609fd86c623d6d440e630f5f9a63295f7aea20 8236Author: Darren Tucker <dtucker@zip.com.au> 8237Date: Wed Jun 11 08:04:02 2014 +1000 8238 8239 - (dtucker) [sshbuf.h] Only declare ECC functions if building without 8240 OpenSSL or if OpenSSL has ECC. 8241 8242commit a54a040f66944c6e8913df8635a01a2327219be9 8243Author: Darren Tucker <dtucker@zip.com.au> 8244Date: Wed Jun 11 07:58:35 2014 +1000 8245 8246 - dtucker@cvs.openbsd.org 2014/06/10 21:46:11 8247 [sshbuf.h] 8248 Group ECC functions together to make things a little easier in -portable. 8249 "doesn't bother me" deraadt@ 8250 8251commit 9f92c53bad04a89067756be8198d4ec2d8a08875 8252Author: Darren Tucker <dtucker@zip.com.au> 8253Date: Wed Jun 11 07:57:58 2014 +1000 8254 8255 - djm@cvs.openbsd.org 2014/06/05 22:17:50 8256 [sshconnect2.c] 8257 fix inverted test that caused PKCS#11 keys that were explicitly listed 8258 not to be preferred. Reported by Dirk-Willem van Gulik 8259 8260commit 15c254a25394f96643da2ad0f674acdc51e89856 8261Author: Darren Tucker <dtucker@zip.com.au> 8262Date: Wed Jun 11 07:38:49 2014 +1000 8263 8264 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] ifdef 8265 ECC variable too. 8266 8267commit d7af0cc5bf273eeed0897a99420bc26841d07d8f 8268Author: Darren Tucker <dtucker@zip.com.au> 8269Date: Wed Jun 11 07:37:25 2014 +1000 8270 8271 - (dtucker) [myprosal.h] Don't include curve25519-sha256@libssh.org in 8272 the proposal if the version of OpenSSL we're using doesn't support ECC. 8273 8274commit 67508ac2563c33d582be181a3e777c65f549d22f 8275Author: Darren Tucker <dtucker@zip.com.au> 8276Date: Wed Jun 11 06:27:16 2014 +1000 8277 8278 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c 8279 regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] Only do NISTP256 8280 curve tests if OpenSSL has them. 8281 8282commit 6482d90a65459a88c18c925368525855832272b3 8283Author: Damien Miller <djm@mindrot.org> 8284Date: Tue May 27 14:34:42 2014 +1000 8285 8286 - (djm) [configure.ac openbsd-compat/bsd-cygwin_util.c] 8287 [openbsd-compat/bsd-cygwin_util.h] On Cygwin, determine privilege 8288 separation user at runtime, since it may need to be a domain account. 8289 Patch from Corinna Vinschen. 8290 8291commit f9eb5e0734f7a7f6e975809eb54684d2a06a7ffc 8292Author: Damien Miller <djm@mindrot.org> 8293Date: Tue May 27 14:31:58 2014 +1000 8294 8295 - (djm) [contrib/cygwin/ssh-host-config] Updated Cygwin ssh-host-config 8296 from Corinna Vinschen, fixing a number of bugs and preparing for 8297 Cygwin 1.7.30. 8298 8299commit eae88744662e6b149f43ef071657727f1a157d95 8300Author: Damien Miller <djm@mindrot.org> 8301Date: Tue May 27 14:27:02 2014 +1000 8302 8303 - (djm) [cipher.c] Fix merge botch. 8304 8305commit 564b5e253c1d95c26a00e8288f0089a2571661c3 8306Author: Damien Miller <djm@mindrot.org> 8307Date: Thu May 22 08:23:59 2014 +1000 8308 8309 - (djm) [Makefile.in] typo in path 8310 8311commit e84d10302aeaf7a1acb05c451f8718143656856a 8312Author: Damien Miller <djm@mindrot.org> 8313Date: Wed May 21 17:13:36 2014 +1000 8314 8315 revert a diff I didn't mean to commit 8316 8317commit 795b86313f1f1aab9691666c4f2d5dae6e4acd50 8318Author: Damien Miller <djm@mindrot.org> 8319Date: Wed May 21 17:12:53 2014 +1000 8320 8321 - (djm) [misc.c] Use CLOCK_BOOTTIME in preference to CLOCK_MONOTONIC 8322 when it is available. It takes into account time spent suspended, 8323 thereby ensuring timeouts (e.g. for expiring agent keys) fire 8324 correctly. bz#2228 reported by John Haxby 8325 8326commit 18912775cb97c0b1e75e838d3c7d4b56648137b5 8327Author: Damien Miller <djm@mindrot.org> 8328Date: Wed May 21 17:06:46 2014 +1000 8329 8330 - (djm) [commit configure.ac defines.h sshpty.c] don't attempt to use 8331 vhangup on Linux. It doens't work for non-root users, and for them 8332 it just messes up the tty settings. 8333 8334commit 7f1c264d3049cd95234e91970ccb5406e1d15b27 8335Author: Damien Miller <djm@mindrot.org> 8336Date: Thu May 15 18:01:52 2014 +1000 8337 8338 - (djm) [sshbuf.c] need __predict_false 8339 8340commit e7429f2be8643e1100380a8a7389d85cc286c8fe 8341Author: Damien Miller <djm@mindrot.org> 8342Date: Thu May 15 18:01:01 2014 +1000 8343 8344 - (djm) [regress/Makefile Makefile.in] 8345 [regress/unittests/sshbuf/test_sshbuf.c 8346 [regress/unittests/sshbuf/test_sshbuf_fixed.c] 8347 [regress/unittests/sshbuf/test_sshbuf_fuzz.c] 8348 [regress/unittests/sshbuf/test_sshbuf_getput_basic.c] 8349 [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c] 8350 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] 8351 [regress/unittests/sshbuf/test_sshbuf_misc.c] 8352 [regress/unittests/sshbuf/tests.c] 8353 [regress/unittests/test_helper/fuzz.c] 8354 [regress/unittests/test_helper/test_helper.c] 8355 Hook new unit tests into the build and "make tests" 8356 8357commit def1de086707b0e6b046fe7e115c60aca0227a99 8358Author: Damien Miller <djm@mindrot.org> 8359Date: Thu May 15 15:17:15 2014 +1000 8360 8361 - (djm) [regress/unittests/Makefile] 8362 [regress/unittests/Makefile.inc] 8363 [regress/unittests/sshbuf/Makefile] 8364 [regress/unittests/sshbuf/test_sshbuf.c] 8365 [regress/unittests/sshbuf/test_sshbuf_fixed.c] 8366 [regress/unittests/sshbuf/test_sshbuf_fuzz.c] 8367 [regress/unittests/sshbuf/test_sshbuf_getput_basic.c] 8368 [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c] 8369 [regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] 8370 [regress/unittests/sshbuf/test_sshbuf_misc.c] 8371 [regress/unittests/sshbuf/tests.c] 8372 [regress/unittests/test_helper/Makefile] 8373 [regress/unittests/test_helper/fuzz.c] 8374 [regress/unittests/test_helper/test_helper.c] 8375 [regress/unittests/test_helper/test_helper.h] 8376 Import new unit tests from OpenBSD; not yet hooked up to build. 8377 8378commit 167685756fde8bc213a8df2c8e1848e312db0f46 8379Author: Damien Miller <djm@mindrot.org> 8380Date: Thu May 15 15:08:40 2014 +1000 8381 8382 - logan@cvs.openbsd.org 2014/05/04 10:40:59 8383 [connect-privsep.sh] 8384 Remove the Z flag from the list of malloc options as it 8385 was removed from malloc.c 10 days ago. 8386 8387 OK from miod@ 8388 8389commit d0b69fe90466920d69c96069312e24b581771bd7 8390Author: Damien Miller <djm@mindrot.org> 8391Date: Thu May 15 15:08:19 2014 +1000 8392 8393 - dtucker@cvs.openbsd.org 2014/05/03 18:46:14 8394 [proxy-connect.sh] 8395 Add tests for with and without compression, with and without privsep. 8396 8397commit edb1af50441d19fb2dd9ccb4d75bf14473fca584 8398Author: Damien Miller <djm@mindrot.org> 8399Date: Thu May 15 15:07:53 2014 +1000 8400 8401 - djm@cvs.openbsd.org 2014/04/21 22:15:37 8402 [dhgex.sh integrity.sh kextype.sh rekey.sh try-ciphers.sh] 8403 repair regress tests broken by server-side default cipher/kex/mac changes 8404 by ensuring that the option under test is included in the server's 8405 algorithm list 8406 8407commit 54343e95c70994695f8842fb22836321350198d3 8408Author: Damien Miller <djm@mindrot.org> 8409Date: Thu May 15 15:07:33 2014 +1000 8410 8411 - djm@cvs.openbsd.org 2014/03/13 20:44:49 8412 [login-timeout.sh] 8413 this test is a sorry mess of race conditions; add another sleep 8414 to avoid a failure on slow machines (at least until I find a 8415 better way) 8416 8417commit e5b9f0f2ee6e133894307e44e862b66426990733 8418Author: Damien Miller <djm@mindrot.org> 8419Date: Thu May 15 14:58:07 2014 +1000 8420 8421 - (djm) [Makefile.in configure.ac sshbuf-getput-basic.c] 8422 [sshbuf-getput-crypto.c sshbuf.c] compilation and portability fixes 8423 8424commit b9c566788a9ebd6a9d466f47a532124f111f0542 8425Author: Damien Miller <djm@mindrot.org> 8426Date: Thu May 15 14:43:37 2014 +1000 8427 8428 - (djm) [configure.ac] Unconditionally define WITH_OPENSSL until we write 8429 portability glue to support building without libcrypto 8430 8431commit 3dc27178b42234b653a32f7a87292d7994045ee3 8432Author: Damien Miller <djm@mindrot.org> 8433Date: Thu May 15 14:37:59 2014 +1000 8434 8435 - logan@cvs.openbsd.org 2014/05/05 07:02:30 8436 [sftp.c] 8437 Zap extra whitespace. 8438 8439 OK from djm@ and dtucker@ 8440 8441commit c31a0cd5b31961f01c5b731f62a6cb9d4f767472 8442Author: Damien Miller <djm@mindrot.org> 8443Date: Thu May 15 14:37:39 2014 +1000 8444 8445 - markus@cvs.openbsd.org 2014/05/03 17:20:34 8446 [monitor.c packet.c packet.h] 8447 unbreak compression, by re-init-ing the compression code in the 8448 post-auth child. the new buffer code is more strict, and requires 8449 buffer_init() while the old code was happy after a bzero(); 8450 originally from djm@ 8451 8452commit 686c7d9ee6f44b2be4128d7860b6b37adaeba733 8453Author: Damien Miller <djm@mindrot.org> 8454Date: Thu May 15 14:37:03 2014 +1000 8455 8456 - djm@cvs.openbsd.org 2014/05/02 03:27:54 8457 [chacha.h cipher-chachapoly.h digest.h hmac.h kex.h kexc25519.c] 8458 [misc.h poly1305.h ssh-pkcs11.c defines.h] 8459 revert __bounded change; it causes way more problems for portable than 8460 it solves; pointed out by dtucker@ 8461 8462commit 294c58a007cfb2f3bddc4fc3217e255857ffb9bf 8463Author: Damien Miller <djm@mindrot.org> 8464Date: Thu May 15 14:35:03 2014 +1000 8465 8466 - naddy@cvs.openbsd.org 2014/04/30 19:07:48 8467 [mac.c myproposal.h umac.c] 8468 UMAC can use our local fallback implementation of AES when OpenSSL isn't 8469 available. Glue code straight from Ted Krovetz's original umac.c. 8470 ok markus@ 8471 8472commit 05e82c3b963c33048128baf72a6f6b3a1c10b4c1 8473Author: Damien Miller <djm@mindrot.org> 8474Date: Thu May 15 14:33:43 2014 +1000 8475 8476 - djm@cvs.openbsd.org 2014/04/30 05:29:56 8477 [bufaux.c bufbn.c bufec.c buffer.c buffer.h sshbuf-getput-basic.c] 8478 [sshbuf-getput-crypto.c sshbuf-misc.c sshbuf.c sshbuf.h ssherr.c] 8479 [ssherr.h] 8480 New buffer API; the first installment of the conversion/replacement 8481 of OpenSSH's internals to make them usable as a standalone library. 8482 8483 This includes a set of wrappers to make it compatible with the 8484 existing buffer API so replacement can occur incrementally. 8485 8486 With and ok markus@ 8487 8488 Thanks also to Ben Hawkes, David Tomaschik, Ivan Fratric, Matthew 8489 Dempsky and Ron Bowes for a detailed review. 8490 8491commit 380948180f847a26f2d0c85b4dad3dca2ed2fd8b 8492Author: Damien Miller <djm@mindrot.org> 8493Date: Thu May 15 14:25:18 2014 +1000 8494 8495 - dtucker@cvs.openbsd.org 2014/04/29 20:36:51 8496 [sftp.c] 8497 Don't attempt to append a nul quote char to the filename. Should prevent 8498 fatal'ing with "el_insertstr failed" when there's a single quote char 8499 somewhere in the string. bz#2238, ok markus@ 8500 8501commit d7fd8bedd4619a2ec7fd02aae4c4e1db4431ad9f 8502Author: Damien Miller <djm@mindrot.org> 8503Date: Thu May 15 14:24:59 2014 +1000 8504 8505 - dtucker@cvs.openbsd.org 2014/04/29 19:58:50 8506 [sftp.c] 8507 Move nulling of variable next to where it's freed. ok markus@ 8508 8509commit 1f0311c7c7d10c94ff7f823de9c5b2ed79368b14 8510Author: Damien Miller <djm@mindrot.org> 8511Date: Thu May 15 14:24:09 2014 +1000 8512 8513 - markus@cvs.openbsd.org 2014/04/29 18:01:49 8514 [auth.c authfd.c authfile.c bufaux.c cipher.c cipher.h hostfile.c] 8515 [kex.c key.c mac.c monitor.c monitor_wrap.c myproposal.h packet.c] 8516 [roaming_client.c ssh-agent.c ssh-keygen.c ssh-keyscan.c ssh-keysign.c] 8517 [ssh-pkcs11.h ssh.c sshconnect.c sshconnect2.c sshd.c] 8518 make compiling against OpenSSL optional (make OPENSSL=no); 8519 reduces algorithms to curve25519, aes-ctr, chacha, ed25519; 8520 allows us to explore further options; with and ok djm 8521 8522commit c5893785564498cea73cb60d2cf199490483e080 8523Author: Damien Miller <djm@mindrot.org> 8524Date: Thu May 15 13:48:49 2014 +1000 8525 8526 - djm@cvs.openbsd.org 2014/04/29 13:10:30 8527 [clientloop.c serverloop.c] 8528 bz#1818 - don't send channel success/failre replies on channels that 8529 have sent a close already; analysis and patch from Simon Tatham; 8530 ok markus@ 8531 8532commit 633de33b192d808d87537834c316dc8b75fe1880 8533Author: Damien Miller <djm@mindrot.org> 8534Date: Thu May 15 13:48:26 2014 +1000 8535 8536 - djm@cvs.openbsd.org 2014/04/28 03:09:18 8537 [authfile.c bufaux.c buffer.h channels.c krl.c mux.c packet.c packet.h] 8538 [ssh-keygen.c] 8539 buffer_get_string_ptr's return should be const to remind 8540 callers that futzing with it will futz with the actual buffer 8541 contents 8542 8543commit 15271907843e4ae50dcfc83b3594014cf5e9607b 8544Author: Damien Miller <djm@mindrot.org> 8545Date: Thu May 15 13:47:56 2014 +1000 8546 8547 - djm@cvs.openbsd.org 2014/04/23 12:42:34 8548 [readconf.c] 8549 don't record duplicate IdentityFiles 8550 8551commit 798a02568b13a2e46efebd81f08c8f4bb33a6dc7 8552Author: Damien Miller <djm@mindrot.org> 8553Date: Thu May 15 13:47:37 2014 +1000 8554 8555 - jmc@cvs.openbsd.org 2014/04/22 14:16:30 8556 [sftp.1] 8557 zap eol whitespace; 8558 8559commit d875ff78d2b8436807381051de112f0ebf9b9ae1 8560Author: Damien Miller <djm@mindrot.org> 8561Date: Thu May 15 13:47:15 2014 +1000 8562 8563 - logan@cvs.openbsd.org 2014/04/22 12:42:04 8564 [sftp.1] 8565 Document sftp upload resume. 8566 OK from djm@, with feedback from okan@. 8567 8568commit b15cd7bb097fd80dc99520f45290ef775da1ef19 8569Author: Damien Miller <djm@mindrot.org> 8570Date: Thu May 15 13:46:52 2014 +1000 8571 8572 - logan@cvs.openbsd.org 2014/04/22 10:07:12 8573 [sftp.c] 8574 Sort the sftp command list. 8575 OK from djm@ 8576 8577commit d8accc0aa72656ba63d50937165c5ae49db1dcd6 8578Author: Damien Miller <djm@mindrot.org> 8579Date: Thu May 15 13:46:25 2014 +1000 8580 8581 - logan@cvs.openbsd.org 2014/04/21 14:36:16 8582 [sftp-client.c sftp-client.h sftp.c] 8583 Implement sftp upload resume support. 8584 OK from djm@, with input from guenther@, mlarkin@ and 8585 okan@ 8586 8587commit 16cd3928a87d20c77b13592a74b60b08621d3ce6 8588Author: Damien Miller <djm@mindrot.org> 8589Date: Thu May 15 13:45:58 2014 +1000 8590 8591 - logan@cvs.openbsd.org 2014/04/20 09:24:26 8592 [dns.c dns.h ssh-keygen.c] 8593 Add support for SSHFP DNS records for ED25519 key types. 8594 OK from djm@ 8595 8596commit ec0b67eb3b4e12f296ced1fafa01860c374f7eea 8597Author: Damien Miller <djm@mindrot.org> 8598Date: Thu May 15 13:45:26 2014 +1000 8599 8600 - (djm) [rijndael.c rijndael.h] Sync with newly-ressurected versions ine 8601 OpenBSD 8602 8603commit f028460d0b2e5a584355321015cde69bf6fd933e 8604Author: Darren Tucker <dtucker@zip.com.au> 8605Date: Thu May 1 02:24:35 2014 +1000 8606 8607 - (dtucker) [defines.h] Define __GNUC_PREREQ__ macro if we don't already 8608 have it. Only attempt to use __attribute__(__bounded__) for gcc. 8609 8610commit b628cc4c3e4a842bab5e4584d18c2bc5fa4d0edf 8611Author: Damien Miller <djm@mindrot.org> 8612Date: Sun Apr 20 13:33:58 2014 +1000 8613 8614 - djm@cvs.openbsd.org 2014/04/20 02:49:32 8615 [compat.c] 8616 add a canonical 6.6 + curve25519 bignum fix fake version that I can 8617 recommend people use ahead of the openssh-6.7 release 8618 8619commit 888566913933a802f3a329ace123ebcb7154cf78 8620Author: Damien Miller <djm@mindrot.org> 8621Date: Sun Apr 20 13:33:19 2014 +1000 8622 8623 - djm@cvs.openbsd.org 2014/04/20 02:30:25 8624 [misc.c misc.h umac.c] 8625 use get/put_u32 to load values rather than *((UINT32 *)p) that breaks on 8626 strict-alignment architectures; reported by and ok stsp@ 8627 8628commit 16f85cbc7e5139950e6a38317e7c8b368beafa5d 8629Author: Damien Miller <djm@mindrot.org> 8630Date: Sun Apr 20 13:29:28 2014 +1000 8631 8632 - tedu@cvs.openbsd.org 2014/04/19 18:42:19 8633 [ssh.1] 8634 delete .xr to hosts.equiv. there's still an unfortunate amount of 8635 documentation referring to rhosts equivalency in here. 8636 8637commit 69cb24b7356ec3f0fc5ff04a68f98f2c55c766f4 8638Author: Damien Miller <djm@mindrot.org> 8639Date: Sun Apr 20 13:29:06 2014 +1000 8640 8641 - tedu@cvs.openbsd.org 2014/04/19 18:15:16 8642 [sshd.8] 8643 remove some really old rsh references 8644 8645commit 84c1e7bca8c4ceaccf4d5557e39a833585a3c77e 8646Author: Damien Miller <djm@mindrot.org> 8647Date: Sun Apr 20 13:27:53 2014 +1000 8648 8649 - tedu@cvs.openbsd.org 2014/04/19 14:53:48 8650 [ssh-keysign.c sshd.c] 8651 Delete futile calls to RAND_seed. ok djm 8652 NB. Id sync only. This only applies to OpenBSD's libcrypto slashathon 8653 8654commit 0e6b67423b8662f9ca4c92750309e144fd637ef1 8655Author: Damien Miller <djm@mindrot.org> 8656Date: Sun Apr 20 13:27:01 2014 +1000 8657 8658 - djm@cvs.openbsd.org 2014/04/19 05:54:59 8659 [compat.c] 8660 missing wildcard; pointed out by naddy@ 8661 8662commit 9395b28223334826837c15e8c1bb4dfb3b0d2ca5 8663Author: Damien Miller <djm@mindrot.org> 8664Date: Sun Apr 20 13:25:30 2014 +1000 8665 8666 - djm@cvs.openbsd.org 2014/04/18 23:52:25 8667 [compat.c compat.h sshconnect2.c sshd.c version.h] 8668 OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections 8669 using the curve25519-sha256@libssh.org KEX exchange method to fail 8670 when connecting with something that implements the spec properly. 8671 8672 Disable this KEX method when speaking to one of the affected 8673 versions. 8674 8675 reported by Aris Adamantiadis; ok markus@ 8676 8677commit 8c492da58f8ceb85cf5f7066f23e26fb813a963d 8678Author: Damien Miller <djm@mindrot.org> 8679Date: Sun Apr 20 13:25:09 2014 +1000 8680 8681 - djm@cvs.openbsd.org 2014/04/16 23:28:12 8682 [ssh-agent.1] 8683 remove the identity files from this manpage - ssh-agent doesn't deal 8684 with them at all and the same information is duplicated in ssh-add.1 8685 (which does deal with them); prodded by deraadt@ 8686 8687commit adbfdbbdccc70c9bd70d81ae096db115445c6e26 8688Author: Damien Miller <djm@mindrot.org> 8689Date: Sun Apr 20 13:24:49 2014 +1000 8690 8691 - djm@cvs.openbsd.org 2014/04/16 23:22:45 8692 [bufaux.c] 8693 skip leading zero bytes in buffer_put_bignum2_from_string(); 8694 reported by jan AT mojzis.com; ok markus@ 8695 8696commit 75c62728dc87af6805696eeb520b9748faa136c8 8697Author: Damien Miller <djm@mindrot.org> 8698Date: Sun Apr 20 13:24:31 2014 +1000 8699 8700 - djm@cvs.openbsd.org 2014/04/12 04:55:53 8701 [sshd.c] 8702 avoid crash at exit: check that pmonitor!=NULL before dereferencing; 8703 bz#2225, patch from kavi AT juniper.net 8704 8705commit 2a328437fb1b0976f2f4522d8645803d5a5d0967 8706Author: Damien Miller <djm@mindrot.org> 8707Date: Sun Apr 20 13:24:01 2014 +1000 8708 8709 - djm@cvs.openbsd.org 2014/04/01 05:32:57 8710 [packet.c] 8711 demote a debug3 to PACKET_DEBUG; ok markus@ 8712 8713commit 7d6a9fb660c808882d064e152d6070ffc3844c3f 8714Author: Damien Miller <djm@mindrot.org> 8715Date: Sun Apr 20 13:23:43 2014 +1000 8716 8717 - djm@cvs.openbsd.org 2014/04/01 03:34:10 8718 [sshconnect.c] 8719 When using VerifyHostKeyDNS with a DNSSEC resolver, down-convert any 8720 certificate keys to plain keys and attempt SSHFP resolution. 8721 8722 Prevents a server from skipping SSHFP lookup and forcing a new-hostkey 8723 dialog by offering only certificate keys. 8724 8725 Reported by mcv21 AT cam.ac.uk 8726 8727commit fcd62c0b66b8415405ed0af29c236329eb88cc0f 8728Author: Damien Miller <djm@mindrot.org> 8729Date: Sun Apr 20 13:23:21 2014 +1000 8730 8731 - djm@cvs.openbsd.org 2014/04/01 02:05:27 8732 [ssh-keysign.c] 8733 include fingerprint of key not found 8734 use arc4random_buf() instead of loop+arc4random() 8735 8736commit 43b156cf72f900f88065b0a1c1ebd09ab733ca46 8737Author: Damien Miller <djm@mindrot.org> 8738Date: Sun Apr 20 13:23:03 2014 +1000 8739 8740 - jmc@cvs.openbsd.org 2014/03/31 13:39:34 8741 [ssh-keygen.1] 8742 the text for the -K option was inserted in the wrong place in -r1.108; 8743 fix From: Matthew Clarke 8744 8745commit c1621c84f2dc1279065ab9fde2aa9327af418900 8746Author: Damien Miller <djm@mindrot.org> 8747Date: Sun Apr 20 13:22:46 2014 +1000 8748 8749 - naddy@cvs.openbsd.org 2014/03/28 05:17:11 8750 [ssh_config.5 sshd_config.5] 8751 sync available and default algorithms, improve algorithm list formatting 8752 help from jmc@ and schwarze@, ok deraadt@ 8753 8754commit f2719b7c2b8a3b14d778d8a6d8dc729b5174b054 8755Author: Damien Miller <djm@mindrot.org> 8756Date: Sun Apr 20 13:22:18 2014 +1000 8757 8758 - tedu@cvs.openbsd.org 2014/03/26 19:58:37 8759 [sshd.8 sshd.c] 8760 remove libwrap support. ok deraadt djm mfriedl 8761 8762commit 4f40209aa4060b9c066a2f0d9332ace7b8dfb391 8763Author: Damien Miller <djm@mindrot.org> 8764Date: Sun Apr 20 13:21:22 2014 +1000 8765 8766 - djm@cvs.openbsd.org 2014/03/26 04:55:35 8767 [chacha.h cipher-chachapoly.h digest.h hmac.h kex.h kexc25519.c 8768 [misc.h poly1305.h ssh-pkcs11.c] 8769 use __bounded(...) attribute recently added to sys/cdefs.h instead of 8770 longform __attribute__(__bounded(...)); 8771 8772 for brevity and a warning free compilation with llvm/clang 8773 8774commit 9235a030ad1b16903fb495d81544e0f7c7449523 8775Author: Damien Miller <djm@mindrot.org> 8776Date: Sun Apr 20 13:17:20 2014 +1000 8777 8778 Three commits in one (since they touch the same heavily-diverged file 8779 repeatedly): 8780 8781 - markus@cvs.openbsd.org 2014/03/25 09:40:03 8782 [myproposal.h] 8783 trimm default proposals. 8784 8785 This commit removes the weaker pre-SHA2 hashes, the broken ciphers 8786 (arcfour), and the broken modes (CBC) from the default configuration 8787 (the patch only changes the default, all the modes are still available 8788 for the config files). 8789 8790 ok djm@, reminded by tedu@ & naddy@ and discussed with many 8791 - deraadt@cvs.openbsd.org 2014/03/26 17:16:26 8792 [myproposal.h] 8793 The current sharing of myproposal[] between both client and server code 8794 makes the previous diff highly unpallatable. We want to go in that 8795 direction for the server, but not for the client. Sigh. 8796 Brought up by naddy. 8797 - markus@cvs.openbsd.org 2014/03/27 23:01:27 8798 [myproposal.h ssh-keyscan.c sshconnect2.c sshd.c] 8799 disable weak proposals in sshd, but keep them in ssh; ok djm@ 8800 8801commit 6e1777f592f15f4559728c78204617537b1ac076 8802Author: Damien Miller <djm@mindrot.org> 8803Date: Sun Apr 20 13:02:58 2014 +1000 8804 8805 - tedu@cvs.openbsd.org 2014/03/19 14:42:44 8806 [scp.1] 8807 there is no need for rcp anymore 8808 ok deraadt millert 8809 8810commit eb1b7c514d2a7b1802ccee8cd50e565a4d419887 8811Author: Damien Miller <djm@mindrot.org> 8812Date: Sun Apr 20 13:02:26 2014 +1000 8813 8814 - tedu@cvs.openbsd.org 2014/03/17 19:44:10 8815 [ssh.1] 8816 old descriptions of des and blowfish are old. maybe ok deraadt 8817 8818commit f0858de6e1324ec730752387074b111b8551081e 8819Author: Damien Miller <djm@mindrot.org> 8820Date: Sun Apr 20 13:01:30 2014 +1000 8821 8822 - deraadt@cvs.openbsd.org 2014/03/15 17:28:26 8823 [ssh-agent.c ssh-keygen.1 ssh-keygen.c] 8824 Improve usage() and documentation towards the standard form. 8825 In particular, this line saves a lot of man page reading time. 8826 usage: ssh-keygen [-q] [-b bits] [-t dsa | ecdsa | ed25519 | rsa | rsa1] 8827 [-N new_passphrase] [-C comment] [-f output_keyfile] 8828 ok schwarze jmc 8829 8830commit 94bfe0fbd6e91a56b5b0ab94ac955d2a67d101aa 8831Author: Damien Miller <djm@mindrot.org> 8832Date: Sun Apr 20 13:00:51 2014 +1000 8833 8834 - naddy@cvs.openbsd.org 2014/03/12 13:06:59 8835 [ssh-keyscan.1] 8836 scan for Ed25519 keys by default too 8837 8838commit 3819519288b2b3928c6882f5883b0f55148f4fc0 8839Author: Damien Miller <djm@mindrot.org> 8840Date: Sun Apr 20 13:00:28 2014 +1000 8841 8842 - djm@cvs.openbsd.org 2014/03/12 04:51:12 8843 [authfile.c] 8844 correct test that kdf name is not "none" or "bcrypt" 8845 8846commit 8f9cd709c7cf0655d414306a0ed28306b33802be 8847Author: Damien Miller <djm@mindrot.org> 8848Date: Sun Apr 20 13:00:11 2014 +1000 8849 8850 - djm@cvs.openbsd.org 2014/03/12 04:50:32 8851 [auth-bsdauth.c ssh-keygen.c] 8852 don't count on things that accept arguments by reference to clear 8853 things for us on error; most things do, but it's unsafe form. 8854 8855commit 1c7ef4be83f6dec84509a312518b9df00ab491d9 8856Author: Damien Miller <djm@mindrot.org> 8857Date: Sun Apr 20 12:59:46 2014 +1000 8858 8859 - djm@cvs.openbsd.org 2014/03/12 04:44:58 8860 [ssh-keyscan.c] 8861 scan for Ed25519 keys by default too 8862 8863commit c10bf4d051c97939b30a1616c0499310057d07da 8864Author: Damien Miller <djm@mindrot.org> 8865Date: Sun Apr 20 12:58:04 2014 +1000 8866 8867 - djm@cvs.openbsd.org 2014/03/03 22:22:30 8868 [session.c] 8869 ignore enviornment variables with embedded '=' or '\0' characters; 8870 spotted by Jann Horn; ok deraadt@ 8871 Id sync only - portable already has this. 8872 8873commit c2e49062faccbcd7135c40d1c78c5c329c58fc2e 8874Author: Damien Miller <djm@mindrot.org> 8875Date: Tue Apr 1 14:42:46 2014 +1100 8876 8877 - (djm) Use full release (e.g. 6.5p1) in debug output rather than just 8878 version. From des@des.no 8879 8880commit 14928b7492abec82afa4c2b778fc03f78cd419b6 8881Author: Damien Miller <djm@mindrot.org> 8882Date: Tue Apr 1 14:38:07 2014 +1100 8883 8884 - (djm) On platforms that support it, use prctl() to prevent sftp-server 8885 from accessing /proc/self/{mem,maps}; patch from jann AT thejh.net 8886 8887commit 48abc47e60048461fe9117e108a7e99ea1ac2bb8 8888Author: Damien Miller <djm@mindrot.org> 8889Date: Mon Mar 17 14:45:56 2014 +1100 8890 8891 - (djm) [sandbox-seccomp-filter.c] Soft-fail stat() syscalls. Add XXX to 8892 remind myself to add sandbox violation logging via the log socket. 8893 8894commit 9c36698ca2f554ec221dc7ef29c7a89e97c88705 8895Author: Tim Rice <tim@multitalents.net> 8896Date: Fri Mar 14 12:45:01 2014 -0700 8897 8898 20140314 8899 - (tim) [opensshd.init.in] Add support for ed25519 8900 8901commit 19158b2447e35838d69b2b735fb640d1e86061ea 8902Author: Damien Miller <djm@mindrot.org> 8903Date: Thu Mar 13 13:14:21 2014 +1100 8904 8905 - (djm) Release OpenSSH 6.6 8906