2 - (djm) [configure.ac] Only check for width-specified integer types
3 in headers that actually exist. patch from Tom G. Christensen;
5 - (djm) [configure.ac atomicio.c] Kludge around NetBSD offering
6 different symbols for 'read' when various compiler flags are
7 in use, causing atomicio.c comparisons against it to break and
8 read/write operations to hang; ok dtucker
9 - (djm) Release openssh-6.5p1
12 - (djm) [configure.ac] Fix broken shell test '==' vs '='; patch from
16 - (djm) [configure.ac] Search for inet_ntop in libnsl and libresovl;
18 - (djm) [sshd.c] Use kill(0, ...) instead of killpg(0, ...); the
19 latter being specified to have undefined behaviour in SUSv3;
21 - (tim) [regress/agent.sh regress/agent-ptrace.sh] Assign $? to a variable
22 when used as an error message inside an if statement so we display the
23 correct into. agent.sh patch from Petr Lautrbach.
26 - (dtucker) [Makefile.in] Remove trailing backslash which some make
27 implementations (eg older Solaris) do not cope with.
31 - dtucker@cvs.openbsd.org 2014/01/25 10:12:50
32 [cipher.c cipher.h kex.c kex.h kexgexc.c]
33 Add a special case for the DH group size for 3des-cbc, which has an
34 effective strength much lower than the key size. This causes problems
35 with some cryptlib implementations, which don't support group sizes larger
36 than 4k but also don't use the largest group size it does support as
37 specified in the RFC. Based on a patch from Petr Lautrbach at Redhat,
38 reduced by me with input from Markus. ok djm@ markus@
39 - markus@cvs.openbsd.org 2014/01/25 20:35:37
41 dh_need needs to be set to max(seclen, blocksize, ivlen, mac_len)
42 ok dtucker@, noted by mancha
43 - (djm) [configure.ac sandbox-capsicum.c sandbox-rlimit.c] Disable
44 RLIMIT_NOFILE pseudo-sandbox on FreeBSD. In some configurations,
45 libc will attempt to open additional file descriptors for crypto
46 offload and crash if they cannot be opened.
47 - (djm) [configure.ac] correct AC_DEFINE for previous.
50 - (djm) [configure.ac] Fix detection of capsicum sandbox on FreeBSD
51 - (djm) [configure.ac] Do not attempt to use capsicum sandbox unless
52 sys/capability.h exists and cap_rights_limit is in libc. Fixes
53 build on FreeBSD9x which provides the header but not the libc
55 - (djm) [configure.ac] autoconf sets finds to 'yes' not '1', so test
56 against the correct thing.
59 - (djm) [Makefile.in regress/scp-ssh-wrapper.sh regress/scp.sh] Make
60 the scp regress test actually test the built scp rather than the one
64 - (tim) [session.c] Improve error reporting on set_id().
65 - (dtucker) [configure.ac] NetBSD's (and FreeBSD's) strnvis is gratuitously
66 incompatible with OpenBSD's despite post-dating it by more than a decade.
67 Declare it as broken, and document FreeBSD's as the same. ok djm@
70 - (djm) [openbsd-compat/setproctitle.c] Don't fail to compile if a
71 platform that is expected to use the reuse-argv style setproctitle
72 hack surprises us by providing a setproctitle in libc; ok dtucker
73 - (djm) [configure.ac] Unless specifically requested, only attempt
74 to build Position Independent Executables on gcc >= 4.x; ok dtucker
75 - (djm) [configure.ac aclocal.m4] More tests to detect fallout from
76 platform hardening options: include some long long int arithmatic
77 to detect missing support functions for -ftrapv in libgcc and
78 equivalents, actually test linking when -ftrapv is supplied and
79 set either both -pie/-fPIE or neither. feedback and ok dtucker@
82 - (dtucker) [configure.ac] Make PIE a configure-time option which defaults
83 to on platforms where it's known to be reliably detected and off elsewhere.
84 Works around platforms such as FreeBSD 9.1 where it does not interop with
85 -ftrapv (it seems to work but fails when trying to link ssh). ok djm@
86 - (dtucker) [aclocal.m4] Differentiate between compile-time and link-time
87 tests in the configure output. ok djm.
88 - (tim) [platform.c session.c] Fix bug affecting SVR5 platforms introduced
89 with sftp chroot support. Move set_id call after chroot.
90 - (djm) [aclocal.m4] Flesh out the code run in the OSSH_CHECK_CFLAG_COMPILE
91 and OSSH_CHECK_LDFLAG_LINK tests to give them a better chance of
92 detecting toolchain-related problems; ok dtucker
95 - (dtucker) [gss-serv-krb5.c] Fall back to krb5_cc_gen_new if the Kerberos
96 implementation does not have krb5_cc_new_unique, similar to what we do
98 - (djm) [regress/cert-hostkey.sh] Fix regress failure on platforms that
99 skip one or more key types (e.g. RHEL/CentOS 6.5); ok dtucker@
100 - (djm) OpenBSD CVS Sync
101 - djm@cvs.openbsd.org 2014/01/20 00:08:48
103 memleak; found by Loganaden Velvindron @ AfriNIC; ok markus@
106 - (dtucker) OpenBSD CVS Sync
107 - dtucker@cvs.openbsd.org 2014/01/17 06:23:24
109 fix log message statvfs. ok djm
110 - dtucker@cvs.openbsd.org 2014/01/18 09:36:26
112 explicitly define USE_PIPES to 1 to prevent redefinition warnings in
113 portable on platforms that use pipes for everything. From vinschen at
115 - dtucker@cvs.openbsd.org 2014/01/19 04:17:29
116 [canohost.c addrmatch.c]
117 Cast socklen_t when comparing to size_t and use socklen_t to iterate over
118 the ip options, both to prevent signed/unsigned comparison warnings.
119 Patch from vinschen at redhat via portable openssh, begrudging ok deraadt.
120 - djm@cvs.openbsd.org 2014/01/19 04:48:08
122 fix inverted meaning of 'no' and 'yes' for CanonicalizeFallbackLocal
123 - dtucker@cvs.openbsd.org 2014/01/19 11:21:51
125 Cast the sizeof to socklen_t so it'll work even if the supplied len is
126 negative. Suggested by and ok djm, ok deraadt.
129 - (dtucker) [uidswap.c] Prevent unused variable warnings on Cygwin. Patch
130 from vinschen at redhat.com
131 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] Add missing function
132 declarations that stopped being included when we stopped including
133 <windows.h> from openbsd-compat/bsd-cygwin_util.h. Patch from vinschen at
135 - (dtucker) [configure.ac] On Cygwin the getopt variables (like optargs,
136 optind) are defined in getopt.h already. Unfortunately they are defined as
137 "declspec(dllimport)" for historical reasons, because the GNU linker didn't
138 allow auto-import on PE/COFF targets way back when. The problem is the
139 dllexport attributes collide with the definitions in the various source
140 files in OpenSSH, which obviousy define the variables without
141 declspec(dllimport). The least intrusive way to get rid of these warnings
142 is to disable warnings for GCC compiler attributes when building on Cygwin.
143 Patch from vinschen at redhat.com.
144 - (dtucker) [sandbox-capsicum.c] Correct some error messages and make the
145 return value check for cap_enter() consistent with the other uses in
146 FreeBSD. From by Loganaden Velvindron @ AfriNIC via bz#2140.
149 - (dtucker) [aclocal.m4 configure.ac] Add some additional compiler/toolchain
150 hardening flags including -fstack-protector-strong. These default to on
151 if the toolchain supports them, but there is a configure-time knob
152 (--without-hardening) to disable them if necessary. ok djm@
153 - (djm) [sftp-client.c] signed/unsigned comparison fix
154 - (dtucker) [loginrec.c] Cast to the types specfied in the format
155 specification to prevent warnings.
156 - (dtucker) [crypto_api.h] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
157 - (dtucker) [poly1305.c] Wrap stdlib.h include inside #ifdef HAVE_STDINT_H.
158 - (dtucker) [blocks.c fe25519.c ge25519.c hash.c sc25519.c verify.c] Include
159 includes.h to pull in all of the compatibility stuff.
160 - (dtucker) [openbsd-compat/bcrypt_pbkdf.c] Wrap stdlib.h include inside
161 #ifdef HAVE_STDINT_H.
162 - (dtucker) [defines.h] Add typedefs for uintXX_t types for platforms that
164 - (dtucker) [configure.ac] Split AC_CHECK_FUNCS for OpenSSL functions into
165 separate lines and alphabetize for easier diffing of changes.
166 - (dtucker) OpenBSD CVS Sync
167 - djm@cvs.openbsd.org 2014/01/17 00:21:06
169 signed/unsigned comparison warning fix; from portable (Id sync only)
170 - dtucker@cvs.openbsd.org 2014/01/17 05:26:41
172 remove unused includes. ok djm@
173 - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c]
174 [sandbox-null.c sandbox-rlimit.c sandbox-seccomp-filter.c]
175 [sandbox-systrace.c ssh-sandbox.h sshd.c] Support preauth sandboxing
176 using the Capsicum API introduced in FreeBSD 10. Patch by Dag-Erling
177 Smorgrav, updated by Loganaden Velvindron @ AfriNIC; ok dtucker@
178 - (dtucker) [configure.ac digest.c openbsd-compat/openssl-compat.c
179 openbsd-compat/openssl-compat.h] Add compatibility layer for older
180 openssl versions. ok djm@
181 - (dtucker) Fix typo in #ifndef.
182 - (dtucker) [configure.ac openbsd-compat/bsd-statvfs.c
183 openbsd-compat/bsd-statvfs.h] Implement enough of statvfs on top of statfs
184 to be useful (and for the regression tests to pass) on platforms that
185 have statfs and fstatfs. ok djm@
186 - (dtucker) [openbsd-compat/bsd-statvfs.h] Only start including headers if we
187 need them to cut down on the name collisions.
188 - (dtucker) [configure.ac] Also look in inttypes.h for uintXX_t types.
189 - (dtucker) [configure.ac] Have --without-hardening not turn off
190 stack-protector since that has a separate flag that's been around a while.
191 - (dtucker) [readconf.c] Wrap paths.h inside an ifdef. Allows building on
193 - (dtucker) [defines.h] Move our definitions of uintXX_t types down to after
194 they're defined if we have to define them ourselves. Fixes builds on old
198 - (djm) OpenBSD CVS Sync
199 - djm@cvs.openbsd.org 2014/01/16 07:31:09
201 needless and incorrect cast to size_t can break resumption of
202 large download; patch from tobias@
203 - djm@cvs.openbsd.org 2014/01/16 07:32:00
206 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
207 [contrib/suse/openssh.spec] Crank RPM spec version numbers.
208 - (djm) [README] update release notes URL.
211 - (djm) OpenBSD CVS Sync
212 - djm@cvs.openbsd.org 2014/01/10 05:59:19
214 the /etc/ssh/ssh_host_ed25519_key is loaded by default too
215 - djm@cvs.openbsd.org 2014/01/12 08:13:13
216 [bufaux.c buffer.h kex.c kex.h kexc25519.c kexc25519c.c kexc25519s.c]
217 [kexdhc.c kexdhs.c kexecdhc.c kexecdhs.c kexgexc.c kexgexs.c]
218 avoid use of OpenSSL BIGNUM type and functions for KEX with
219 Curve25519 by adding a buffer_put_bignum2_from_string() that stores
220 a string using the bignum encoding rules. Will make it easier to
221 build a reduced-feature OpenSSH without OpenSSL in the future;
225 - (djm) OpenBSD CVS Sync
226 - tedu@cvs.openbsd.org 2014/01/04 17:50:55
227 [mac.c monitor_mm.c monitor_mm.h xmalloc.c]
228 use standard types and formats for size_t like variables. ok dtucker
229 - guenther@cvs.openbsd.org 2014/01/09 03:26:00
231 When formating the time for "ls -l"-style output, show dates in the future
232 with the year, and rearrange a comparison to avoid a potentional signed
233 arithmetic overflow that would give the wrong result.
235 - djm@cvs.openbsd.org 2014/01/09 23:20:00
236 [digest.c digest.h hostfile.c kex.c kex.h kexc25519.c kexc25519c.c]
237 [kexc25519s.c kexdh.c kexecdh.c kexecdhc.c kexecdhs.c kexgex.c kexgexc.c]
238 [kexgexs.c key.c key.h roaming_client.c roaming_common.c schnorr.c]
239 [schnorr.h ssh-dss.c ssh-ecdsa.c ssh-rsa.c sshconnect2.c]
240 Introduce digest API and use it to perform all hashing operations
241 rather than calling OpenSSL EVP_Digest* directly. Will make it easier
242 to build a reduced-feature OpenSSH without OpenSSL in future;
244 - djm@cvs.openbsd.org 2014/01/09 23:26:48
245 [sshconnect.c sshd.c]
246 ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient,
247 deranged and might make some attacks on KEX easier; ok markus@
250 - (djm) [regress/.cvsignore] Ignore regress test droppings; ok dtucker@
253 - (djm) OpenBSD CVS Sync
254 - djm@cvs.openbsd.org 2013/12/30 23:52:28
255 [auth2-hostbased.c auth2-pubkey.c compat.c compat.h ssh-rsa.c]
256 [sshconnect.c sshconnect2.c sshd.c]
257 refuse RSA keys from old proprietary clients/servers that use the
258 obsolete RSA+MD5 signature scheme. it will still be possible to connect
259 with these clients/servers but only DSA keys will be accepted, and we'll
260 deprecate them entirely in a future release. ok markus@
263 - (djm) [loginrec.c] Check for username truncation when looking up lastlog
265 - (djm) [regress/Makefile] Add some generated files for cleaning
266 - (djm) OpenBSD CVS Sync
267 - djm@cvs.openbsd.org 2013/12/19 00:10:30
269 skip requesting smartcard PIN when removing keys from agent; bz#2187
270 patch from jay AT slushpupie.com; ok dtucker
271 - dtucker@cvs.openbsd.org 2013/12/19 00:19:12
273 Cast client_alive_interval to u_int64_t before assinging to
274 max_time_milliseconds to avoid potential integer overflow in the timeout.
275 bz#2170, patch from Loganaden Velvindron, ok djm@
276 - djm@cvs.openbsd.org 2013/12/19 00:27:57
278 simplify freeing of source-address certificate restriction
279 - djm@cvs.openbsd.org 2013/12/19 01:04:36
281 bz#2147: fix multiple remote forwardings with dynamically assigned
282 listen ports. In the s->c message to open the channel we were sending
283 zero (the magic number to request a dynamic port) instead of the actual
284 listen port. The client therefore had no way of discriminating between
287 Diagnosis and fix by ronf AT timeheart.net
288 - djm@cvs.openbsd.org 2013/12/19 01:19:41
290 bz#2186: don't crash (NULL deref) when deleting PKCS#11 keys from an agent
291 that has a mix of normal and PKCS#11 keys; fix from jay AT slushpupie.com;
293 - djm@cvs.openbsd.org 2013/12/19 22:57:13
294 [poly1305.c poly1305.h]
295 use full name for author, with his permission
296 - tedu@cvs.openbsd.org 2013/12/21 07:10:47
299 - djm@cvs.openbsd.org 2013/12/27 22:30:17
300 [ssh-dss.c ssh-ecdsa.c ssh-rsa.c]
301 make the original RSA and DSA signing/verification code look more like
302 the ECDSA/Ed25519 ones: use key_type_plain() when checking the key type
303 rather than tediously listing all variants, use __func__ for debug/
305 - djm@cvs.openbsd.org 2013/12/27 22:37:18
308 - djm@cvs.openbsd.org 2013/12/29 02:28:10
310 allow ed25519 keys to appear as certificate authorities
311 - djm@cvs.openbsd.org 2013/12/29 02:37:04
313 correct comment for key_to_certified()
314 - djm@cvs.openbsd.org 2013/12/29 02:49:52
316 correct comment for key_drop_cert()
317 - djm@cvs.openbsd.org 2013/12/29 04:20:04
319 to make sure we don't omit any key types as valid CA keys again,
320 factor the valid key type check into a key_type_is_valid_ca()
322 - djm@cvs.openbsd.org 2013/12/29 04:29:25
324 allow deletion of ed25519 keys from the agent
325 - djm@cvs.openbsd.org 2013/12/29 04:35:50
327 don't refuse to load Ed25519 certificates
328 - djm@cvs.openbsd.org 2013/12/29 05:42:16
330 don't forget to load Ed25519 certs too
331 - djm@cvs.openbsd.org 2013/12/29 05:57:02
333 when showing other hostkeys, don't forget Ed25519 keys
336 - (dtucker) [regress/keytype.sh] Actually test ecdsa key types.
339 - (dtucker) [configure.ac] bz#2178: Don't try to use BSM on Solaris versions
340 greater than 11 either rather than just 11. Patch from Tomas Kuthan.
341 - (dtucker) [auth-pam.c] bz#2163: check return value from pam_get_item().
342 Patch from Loganaden Velvindron.
345 - (djm) OpenBSD CVS Sync
346 - djm@cvs.openbsd.org 2013/12/07 08:08:26
348 document -a and -o wrt new key format
349 - naddy@cvs.openbsd.org 2013/12/07 11:58:46
350 [ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8 ssh.1]
351 [ssh_config.5 sshd.8 sshd_config.5]
352 add missing mentions of ed25519; ok djm@
353 - dtucker@cvs.openbsd.org 2013/12/08 09:53:27
355 Use a literal for the default value of KEXAlgorithms. ok deraadt jmc
356 - markus@cvs.openbsd.org 2013/12/09 11:03:45
357 [blocks.c ed25519.c fe25519.c fe25519.h ge25519.c ge25519.h]
358 [ge25519_base.data hash.c sc25519.c sc25519.h verify.c]
359 Add Authors for the public domain ed25519/nacl code.
360 see also http://nacl.cr.yp.to/features.html
361 All of the NaCl software is in the public domain.
362 and http://ed25519.cr.yp.to/software.html
363 The Ed25519 software is in the public domain.
364 - markus@cvs.openbsd.org 2013/12/09 11:08:17
366 remove unused defines
367 - pascal@cvs.openbsd.org 2013/12/15 18:17:26
369 Make ssh-add also add .ssh/id_ed25519; fixes lie in manual page.
371 - djm@cvs.openbsd.org 2013/12/15 21:42:35
372 [cipher-chachapoly.c]
373 add some comments and constify a constant
374 - markus@cvs.openbsd.org 2013/12/17 10:36:38
376 I've assempled the header file by cut&pasting from generated headers
377 and the source files.
380 - (djm) [openbsd-compat/bsd-setres_id.c] Missing header; from Corinna
382 - (djm) [Makefile.in regress/Makefile regress/agent-ptrace.sh]
383 [regress/setuid-allowed.c] Check that ssh-agent is not on a no-setuid
384 filesystem before running agent-ptrace.sh; ok dtucker
387 - (djm) OpenBSD CVS Sync
388 - djm@cvs.openbsd.org 2013/12/05 22:59:45
390 fix memory leak in error path in do_readdir(); pointed out by
391 Loganaden Velvindron @ AfriNIC in bz#2163
392 - djm@cvs.openbsd.org 2013/12/06 03:40:51
394 remove duplicated character ('g') in getopt() string;
395 document the (few) remaining option characters so we don't have to
397 - markus@cvs.openbsd.org 2013/12/06 13:30:08
398 [authfd.c key.c key.h ssh-agent.c]
399 move private key (de)serialization to key.c; ok djm
400 - markus@cvs.openbsd.org 2013/12/06 13:34:54
401 [authfile.c authfile.h cipher.c cipher.h key.c packet.c ssh-agent.c]
402 [ssh-keygen.c PROTOCOL.key] new private key format, bcrypt as KDF by
403 default; details in PROTOCOL.key; feedback and lots help from djm;
405 - markus@cvs.openbsd.org 2013/12/06 13:39:49
406 [authfd.c authfile.c key.c key.h myproposal.h pathnames.h readconf.c]
407 [servconf.c ssh-agent.c ssh-keygen.c ssh-keyscan.1 ssh-keyscan.c]
408 [ssh-keysign.c ssh.c ssh_config.5 sshd.8 sshd.c verify.c ssh-ed25519.c]
409 [sc25519.h sc25519.c hash.c ge25519_base.data ge25519.h ge25519.c]
410 [fe25519.h fe25519.c ed25519.c crypto_api.h blocks.c]
411 support ed25519 keys (hostkeys and user identities) using the public
412 domain ed25519 reference code from SUPERCOP, see
413 http://ed25519.cr.yp.to/software.html
414 feedback, help & ok djm@
415 - jmc@cvs.openbsd.org 2013/12/06 15:29:07
418 - djm@cvs.openbsd.org 2013/12/07 00:19:15
420 set k->cert = NULL after freeing it
421 - markus@cvs.openbsd.org 2013/12/06 13:52:46
422 [regress/Makefile regress/agent.sh regress/cert-hostkey.sh]
423 [regress/cert-userkey.sh regress/keytype.sh]
424 test ed25519 support; from djm@
425 - (djm) [blocks.c ed25519.c fe25519.c fe25519.h ge25519.c ge25519.h]
426 [ge25519_base.data hash.c sc25519.c sc25519.h verify.c] Fix RCS idents
427 - (djm) [Makefile.in] Add ed25519 sources
428 - (djm) [authfile.c] Conditionalise inclusion of util.h
429 - (djm) [configure.ac openbsd-compat/Makefile.in openbsd-compat/bcrypt_pbkdf.c]
430 [openbsd-compat/blf.h openbsd-compat/blowfish.c]
431 [openbsd-compat/openbsd-compat.h] Start at supporting bcrypt_pbkdf in
433 - (djm) [ed25519.c ssh-ed25519.c openbsd-compat/Makefile.in]
434 [openbsd-compat/bcrypt_pbkdf.c] Make ed25519/new key format compile on
436 - (djm) [regress/cert-hostkey.sh] Fix merge botch
437 - (djm) [Makefile.in] PATHSUBS and keygen bits for Ed25519; from
438 Loganaden Velvindron @ AfriNIC in bz#2179
441 - (djm) OpenBSD CVS Sync
442 - jmc@cvs.openbsd.org 2013/11/21 08:05:09
443 [ssh_config.5 sshd_config.5]
444 no need for .Pp before displays;
445 - deraadt@cvs.openbsd.org 2013/11/25 18:04:21
447 improve -Q usage and such. One usage change is that the option is now
449 ok dtucker markus djm
450 - jmc@cvs.openbsd.org 2013/11/26 12:14:54
452 - put -Q in the right place
453 - Ar was a poor choice for the arguments to -Q. i've chosen an
454 admittedly equally poor Cm, at least consistent with the rest
455 of the docs. also no need for multiple instances
456 - zap a now redundant Nm
458 - deraadt@cvs.openbsd.org 2013/11/26 19:15:09
460 cleanup 1 << 31 idioms. Resurrection of this issue pointed out by
461 Eitan Adler ok markus for ssh, implies same change in kerberosV
462 - djm@cvs.openbsd.org 2013/12/01 23:19:05
464 mention curve25519-sha256@libssh.org key exchange algorithm
465 - djm@cvs.openbsd.org 2013/12/02 02:50:27
466 [PROTOCOL.chacha20poly1305]
468 - djm@cvs.openbsd.org 2013/12/02 02:56:17
469 [ssh-pkcs11-helper.c]
470 use-after-free; bz#2175 patch from Loganaden Velvindron @ AfriNIC
471 - djm@cvs.openbsd.org 2013/12/02 03:09:22
473 make key_to_blob() return a NULL blob on failure; part of
474 bz#2175 from Loganaden Velvindron @ AfriNIC
475 - djm@cvs.openbsd.org 2013/12/02 03:13:14
477 correct bzero of chacha20+poly1305 key context. bz#2177 from
478 Loganaden Velvindron @ AfriNIC
480 Also make it a memset for consistency with the rest of cipher.c
481 - djm@cvs.openbsd.org 2013/12/04 04:20:01
483 bz#2171: don't leak local_fd on error; from Loganaden Velvindron @
485 - djm@cvs.openbsd.org 2013/12/05 01:16:41
486 [servconf.c servconf.h]
487 bz#2161 - fix AuthorizedKeysCommand inside a Match block and
488 rearrange things so the same error is harder to make next time;
490 - (dtucker) [configure.ac] bz#2173: use pkg-config --libs to include correct
491 -L location for libedit. Patch from Serge van den Boom.
494 - (djm) OpenBSD CVS Sync
495 - dtucker@cvs.openbsd.org 2013/11/08 11:15:19
496 [bufaux.c bufbn.c buffer.c sftp-client.c sftp-common.c sftp-glob.c]
497 [uidswap.c] Include stdlib.h for free() as per the man page.
498 - markus@cvs.openbsd.org 2013/11/13 13:48:20
500 add missing braces found by pedro
501 - djm@cvs.openbsd.org 2013/11/20 02:19:01
503 delay closure of in/out fds until after "Bad protocol version
504 identification..." message, as get_remote_ipaddr/get_remote_port
506 - deraadt@cvs.openbsd.org 2013/11/20 20:53:10
508 unsigned casts for ctype macros where neccessary
509 ok guenther millert markus
510 - deraadt@cvs.openbsd.org 2013/11/20 20:54:10
511 [canohost.c clientloop.c match.c readconf.c sftp.c]
512 unsigned casts for ctype macros where neccessary
513 ok guenther millert markus
514 - djm@cvs.openbsd.org 2013/11/21 00:45:44
515 [Makefile.in PROTOCOL PROTOCOL.chacha20poly1305 authfile.c chacha.c]
516 [chacha.h cipher-chachapoly.c cipher-chachapoly.h cipher.c cipher.h]
517 [dh.c myproposal.h packet.c poly1305.c poly1305.h servconf.c ssh.1]
518 [ssh.c ssh_config.5 sshd_config.5] Add a new protocol 2 transport
519 cipher "chacha20-poly1305@openssh.com" that combines Daniel
520 Bernstein's ChaCha20 stream cipher and Poly1305 MAC to build an
521 authenticated encryption mode.
523 Inspired by and similar to Adam Langley's proposal for TLS:
524 http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-03
525 but differs in layout used for the MAC calculation and the use of a
526 second ChaCha20 instance to separately encrypt packet lengths.
527 Details are in the PROTOCOL.chacha20poly1305 file.
529 Feedback markus@, naddy@; manpage bits Loganden Velvindron @ AfriNIC
531 - naddy@cvs.openbsd.org 2013/11/18 05:09:32
532 [regress/forward-control.sh]
533 bump timeout to 10 seconds to allow slow machines (e.g. Alpha PC164)
534 to successfully run this; ok djm@
535 - djm@cvs.openbsd.org 2013/11/21 03:15:46
537 add some reminders for additional tests that I'd like to implement
538 - djm@cvs.openbsd.org 2013/11/21 03:16:47
540 use unsigned long long instead of u_int64_t here to avoid warnings
541 on some systems portable OpenSSH is built on.
542 - djm@cvs.openbsd.org 2013/11/21 03:18:51
543 [regress/cipher-speed.sh regress/integrity.sh regress/rekey.sh]
544 [regress/try-ciphers.sh]
545 use new "ssh -Q cipher-auth" query to obtain lists of authenticated
546 encryption ciphers instead of specifying them manually; ensures that
547 the new chacha20poly1305@openssh.com mode is tested;
549 ok markus@ and naddy@ as part of the diff to add
550 chacha20poly1305@openssh.com
553 - (dtucker) [regress/keytype.sh] Populate ECDSA key types to be tested by
554 querying the ones that are compiled in.
557 - (dtucker) OpenBSD CVS Sync
558 - dtucker@cvs.openbsd.org 2013/11/09 05:41:34
559 [regress/test-exec.sh regress/rekey.sh]
560 Use smaller test data files to speed up tests. Grow test datafiles
561 where necessary for a specific test.
562 - (dtucker) [configure.ac kex.c key.c myproposal.h] Test for the presence of
563 NID_X9_62_prime256v1, NID_secp384r1 and NID_secp521r1 and test that the
564 latter actually works before using it. Fedora (at least) has NID_secp521r1
565 that doesn't work (see https://bugzilla.redhat.com/show_bug.cgi?id=1021897).
566 - (dtucker) [configure.ac] Fix brackets in NID_secp521r1 test.
567 - (dtucker) [configure.ac] Add missing "test".
568 - (dtucker) [key.c] Check for the correct defines for NID_secp521r1.
571 - (dtucker) OpenBSD CVS Sync
572 - dtucker@cvs.openbsd.org 2013/11/08 01:06:14
574 Rekey less frequently during tests to speed them up
575 - (djm) OpenBSD CVS Sync
576 - dtucker@cvs.openbsd.org 2013/11/07 11:58:27
577 [cipher.c cipher.h kex.c kex.h mac.c mac.h servconf.c ssh.c]
578 Output the effective values of Ciphers, MACs and KexAlgorithms when
579 the default has not been overridden. ok markus@
580 - djm@cvs.openbsd.org 2013/11/08 00:39:15
581 [auth-options.c auth2-chall.c authfd.c channels.c cipher-3des1.c]
582 [clientloop.c gss-genr.c monitor_mm.c packet.c schnorr.c umac.c]
583 [sftp-client.c sftp-glob.c]
584 use calloc for all structure allocations; from markus@
585 - djm@cvs.openbsd.org 2013/11/08 01:38:11
588 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
589 [contrib/suse/openssh.spec] Update version numbers following release.
590 - (dtucker) [openbsd-compat/openbsd-compat.h] Add null implementation of
591 arc4random_stir for platforms that have arc4random but don't have
592 arc4random_stir (right now this is only OpenBSD -current).
593 - (dtucker) [kex.c] Only enable CURVE25519_SHA256 if we actually have
595 - (dtucker) [myproposal.h] Conditionally enable CURVE25519_SHA256.
596 - (dtucker) [openbsd-compat/bsd-poll.c] Add headers to prevent compile
598 - (dtucker) [Makefile.in configure.ac] Set MALLOC_OPTIONS per platform
599 and pass in TEST_ENV. use stderr to get polluted
600 and the stderr-data test to fail.
601 - (dtucker) [contrib/cygwin/ssh-host-config] Simplify host key generation:
602 rather than testing and generating each key, call ssh-keygen -A.
603 Patch from vinschen at redhat.com.
604 - (dtucker) OpenBSD CVS Sync
605 - dtucker@cvs.openbsd.org 2013/11/09 05:41:34
606 [regress/test-exec.sh regress/rekey.sh]
607 Use smaller test data files to speed up tests. Grow test datafiles
608 where necessary for a specific test.
611 - (djm) [ssh-pkcs11.c] Bring back "non-constant initialiser" fix (rev 1.5)
612 that got lost in recent merge.
613 - (djm) [Makefile.in monitor.c] Missed chunks of curve25519 KEX diff
614 - (djm) [regress/modpipe.c regress/rekey.sh] Never intended to commit these
615 - (djm) [configure.ac defines.h] Skip arc4random_stir() calls on platforms
616 that lack it but have arc4random_uniform()
617 - (djm) OpenBSD CVS Sync
618 - markus@cvs.openbsd.org 2013/11/04 11:51:16
620 fix rekeying for KEX_C25519_SHA256; noted by dtucker@
621 RCSID sync only; I thought this was a merge botch and fixed it already
622 - markus@cvs.openbsd.org 2013/11/06 16:52:11
624 fix rekeying for AES-GCM modes; ok deraadt
625 - djm@cvs.openbsd.org 2013/11/06 23:05:59
627 from portable: s/true/true_val/ to avoid name collisions on dump platforms
629 - (dtucker) OpenBSD CVS Sync
630 - djm@cvs.openbsd.org 2013/10/09 23:44:14
631 [regress/Makefile] (ID sync only)
632 regression test for sftp request white/blacklisting and readonly mode.
633 - markus@cvs.openbsd.org 2013/11/02 22:39:53
635 add curve25519-sha256@libssh.org
636 - dtucker@cvs.openbsd.org 2013/11/04 12:27:42
638 Test rekeying with all KexAlgorithms.
639 - dtucker@cvs.openbsd.org 2013/11/07 00:12:05
641 Test rekeying for every Cipher, MAC and KEX, plus test every KEX with
643 - dtucker@cvs.openbsd.org 2013/11/07 01:12:51
645 Factor out the data transfer rekey tests
646 - dtucker@cvs.openbsd.org 2013/11/07 02:48:38
647 [regress/integrity.sh regress/cipher-speed.sh regress/try-ciphers.sh]
648 Use ssh -Q instead of hardcoding lists of ciphers or MACs.
649 - dtucker@cvs.openbsd.org 2013/11/07 03:55:41
651 Use ssh -Q to get kex types instead of a static list.
652 - dtucker@cvs.openbsd.org 2013/11/07 04:26:56
655 - (dtucker) [Makefile.in configure.ac] Remove TEST_SSH_SHA256 environment
656 variable. It's no longer used now that we get the supported MACs from
660 - (djm) OpenBSD CVS Sync
661 - markus@cvs.openbsd.org 2013/11/02 20:03:54
663 support pkcs#11 tokes that only provide x509 zerts instead of raw pubkeys;
664 fixes bz#1908; based on patch from Laurent Barbe; ok djm
665 - markus@cvs.openbsd.org 2013/11/02 21:59:15
666 [kex.c kex.h myproposal.h ssh-keyscan.c sshconnect2.c sshd.c]
667 use curve25519 for default key exchange (curve25519-sha256@libssh.org);
668 initial patch from Aris Adamantiadis; ok djm@
669 - markus@cvs.openbsd.org 2013/11/02 22:10:15
670 [kexdhs.c kexecdhs.c]
671 no need to include monitor_wrap.h
672 - markus@cvs.openbsd.org 2013/11/02 22:24:24
673 [kexdhs.c kexecdhs.c]
674 no need to include ssh-gss.h
675 - markus@cvs.openbsd.org 2013/11/02 22:34:01
677 no need to include monitor_wrap.h and ssh-gss.h
678 - markus@cvs.openbsd.org 2013/11/02 22:39:19
679 [ssh_config.5 sshd_config.5]
680 the default kex is now curve25519-sha256@libssh.org
681 - djm@cvs.openbsd.org 2013/11/03 10:37:19
683 fix a couple of function definitions foo() -> foo(void)
684 (-Wold-style-definition)
685 - (djm) [kexc25519.c kexc25519c.c kexc25519s.c] Import missed files from
686 KEX/curve25519 change
689 - (dtucker) [openbsd-compat/bsd-misc.c] Include time.h for nanosleep.
690 From OpenSMTPD where it prevents "implicit declaration" warnings (it's
691 a no-op in OpenSSH). From chl at openbsd.
692 - (dtucker) [openbsd-compat/setproctitle.c] Handle error case form the 2nd
693 vsnprintf. From eric at openbsd via chl@.
694 - (dtucker) [configure.ac defines.h] Add typedefs for intmax_t and uintmax_t
695 for platforms that don't have them.
698 - (djm) OpenBSD CVS Sync
699 - djm@cvs.openbsd.org 2013/10/29 09:42:11
701 fix potential stack exhaustion caused by nested certificates;
702 report by Mateusz Kocielski; ok dtucker@ markus@
703 - djm@cvs.openbsd.org 2013/10/29 09:48:02
704 [servconf.c servconf.h session.c sshd_config sshd_config.5]
705 shd_config PermitTTY to disallow TTY allocation, mirroring the
706 longstanding no-pty authorized_keys option;
707 bz#2070, patch from Teran McKinney; ok markus@
708 - jmc@cvs.openbsd.org 2013/10/29 18:49:32
713 - (djm) OpenBSD CVS Sync
714 - djm@cvs.openbsd.org 2013/10/25 23:04:51
716 fix crash when using ProxyCommand caused by previous commit - was calling
717 freeaddrinfo(NULL); spotted by sthen@ and Tim Ruehsen, patch by sthen@
720 - (djm) [ssh-keygen.c ssh-keysign.c sshconnect1.c sshd.c] Remove
721 unnecessary arc4random_stir() calls. The only ones left are to ensure
722 that the PRNG gets a different state after fork() for platforms that
726 - (djm) [auth-krb5.c] bz#2032 - use local username in krb5_kuserok check
727 rather than full client name which may be of form user@REALM;
728 patch from Miguel Sanders; ok dtucker@
729 - (djm) OpenBSD CVS Sync
730 - dtucker@cvs.openbsd.org 2013/10/23 05:40:58
733 - djm@cvs.openbsd.org 2013/10/23 23:35:32
735 include local address and port in "Connection from ..." message (only
736 shown at loglevel>=verbose)
737 - dtucker@cvs.openbsd.org 2013/10/24 00:49:49
739 Periodically print progress and, if possible, expected time to completion
740 when screening moduli for DH groups. ok deraadt djm
741 - dtucker@cvs.openbsd.org 2013/10/24 00:51:48
742 [readconf.c servconf.c ssh_config.5 sshd_config.5]
743 Disallow empty Match statements and add "Match all" which matches
744 everything. ok djm, man page help jmc@
745 - djm@cvs.openbsd.org 2013/10/24 08:19:36
747 fix bug introduced in hostname canonicalisation commit: don't try to
748 resolve hostnames when a ProxyCommand is set unless the user has forced
749 canonicalisation; spotted by Iain Morgan
750 - (tim) [regress/sftp-perm.sh] We need a shell that understands "! somecmd"
753 - (djm) OpenBSD CVS Sync
754 - djm@cvs.openbsd.org 2013/10/20 04:39:28
756 document % expansions performed by "Match command ..."
757 - djm@cvs.openbsd.org 2013/10/20 06:19:28
758 [readconf.c ssh_config.5]
759 rename "command" subclause of the recently-added "Match" keyword to
760 "exec"; it's shorter, clearer in intent and we might want to add the
761 ability to match against the command being executed at the remote end in
763 - djm@cvs.openbsd.org 2013/10/20 09:51:26
765 add canonicalisation options to -o lists
766 - jmc@cvs.openbsd.org 2013/10/20 18:00:13
768 tweak the "exec" description, as worded by djm;
769 - djm@cvs.openbsd.org 2013/10/23 03:03:07
771 Hostname may have %h sequences that should be expanded prior to Match
772 evaluation; spotted by Iain Morgan
773 - djm@cvs.openbsd.org 2013/10/23 03:05:19
776 - djm@cvs.openbsd.org 2013/10/23 04:16:22
778 Make code match documentation: relative-specified certificate expiry time
779 should be relative to current time and not the validity start time.
780 Reported by Petr Lautrbach; ok deraadt@
783 - (djm) OpenBSD CVS Sync
784 - djm@cvs.openbsd.org 2013/10/09 23:44:14
785 [regress/Makefile regress/sftp-perm.sh]
786 regression test for sftp request white/blacklisting and readonly mode.
787 - jmc@cvs.openbsd.org 2013/10/17 07:35:48
790 - djm@cvs.openbsd.org 2013/10/17 22:08:04
792 include remote port in bad banner message; bz#2162
795 - (djm) OpenBSD CVS Sync
796 - jmc@cvs.openbsd.org 2013/10/15 14:10:25
799 - djm@cvs.openbsd.org 2013/10/16 02:31:47
800 [readconf.c readconf.h roaming_client.c ssh.1 ssh.c ssh_config.5]
801 [sshconnect.c sshconnect.h]
802 Implement client-side hostname canonicalisation to allow an explicit
803 search path of domain suffixes to use to convert unqualified host names
804 to fully-qualified ones for host key matching.
805 This is particularly useful for host certificates, which would otherwise
806 need to list unqualified names alongside fully-qualified ones (and this
807 causes a number of problems).
809 - jmc@cvs.openbsd.org 2013/10/16 06:42:25
812 - djm@cvs.openbsd.org 2013/10/16 22:49:39
813 [readconf.c readconf.h ssh.1 ssh.c ssh_config.5]
814 s/canonicalise/canonicalize/ for consistency with existing spelling,
815 e.g. authorized_keys; pointed out by naddy@
816 - djm@cvs.openbsd.org 2013/10/16 22:58:01
818 one I missed in previous: s/isation/ization/
819 - djm@cvs.openbsd.org 2013/10/17 00:30:13
820 [PROTOCOL sftp-client.c sftp-client.h sftp-server.c sftp.1 sftp.c]
821 fsync@openssh.com protocol extension for sftp-server
822 client support to allow calling fsync() faster successful transfer
823 patch mostly by imorgan AT nas.nasa.gov; bz#1798
824 "fine" markus@ "grumble OK" deraadt@ "doesn't sound bad to me" millert@
825 - djm@cvs.openbsd.org 2013/10/17 00:46:49
827 rearrange check to reduce diff against -portable
831 - (djm) OpenBSD CVS Sync
832 - djm@cvs.openbsd.org 2013/10/09 23:42:17
833 [sftp-server.8 sftp-server.c]
834 Add ability to whitelist and/or blacklist sftp protocol requests by name.
835 Refactor dispatch loop and consolidate read-only mode checks.
836 Make global variables static, since sftp-server is linked into sshd(8).
838 - djm@cvs.openbsd.org 2013/10/10 00:53:25
840 add -Q, -P and -p to usage() before jmc@ catches me
841 - djm@cvs.openbsd.org 2013/10/10 01:43:03
843 bz#2139: fix re-exec fallback by ensuring that startup_pipe is correctly
845 - djm@cvs.openbsd.org 2013/10/11 02:45:36
847 rename flag arguments to be more clear and consistent.
848 reorder some internal function arguments to make adding additional flags
851 - djm@cvs.openbsd.org 2013/10/11 02:52:23
853 missed one arg reorder
854 - djm@cvs.openbsd.org 2013/10/11 02:53:45
857 - jmc@cvs.openbsd.org 2013/10/14 14:18:56
858 [sftp-server.8 sftp-server.c]
861 - djm@cvs.openbsd.org 2013/10/14 21:20:52
862 [session.c session.h]
863 Add logging of session starts in a useful format; ok markus@ feedback and
865 - djm@cvs.openbsd.org 2013/10/14 22:22:05
866 [readconf.c readconf.h ssh-keysign.c ssh.c ssh_config.5]
867 add a "Match" keyword to ssh_config that allows matching on hostname,
868 user and result of arbitrary commands. "nice work" markus@
869 - djm@cvs.openbsd.org 2013/10/14 23:28:23
870 [canohost.c misc.c misc.h readconf.c sftp-server.c ssh.c]
871 refactor client config code a little:
872 add multistate option partsing to readconf.c, similar to servconf.c's
874 move checking of options that accept "none" as an argument to readconf.c
875 add a lowercase() function and use it instead of explicit tolower() in
877 part of a larger diff that was ok markus@
878 - djm@cvs.openbsd.org 2013/10/14 23:31:01
880 whitespace at EOL; pointed out by markus@
881 - [ssh.c] g/c unused variable.
884 - (dtucker) OpenBSD CVS Sync
885 - sthen@cvs.openbsd.org 2013/09/16 11:35:43
887 Remove gssapi config parts from ssh_config, as was already done for
888 sshd_config. Req by/ok ajacoutot@
889 ID SYNC ONLY for portable; kerberos/gssapi is still pretty popular
890 - djm@cvs.openbsd.org 2013/09/19 00:24:52
892 store the initial file offset so the progress meter doesn't freak out
893 when resuming sftp transfers. bz#2137; patch from Iain Morgan; ok dtucker@`
894 - djm@cvs.openbsd.org 2013/09/19 00:49:12
896 fix swapped pflag and printflag in sftp upload_dir; from Iain Morgan
897 - djm@cvs.openbsd.org 2013/09/19 01:24:46
899 bz#1297 - tell the client (via packet_send_debug) when their preferred
900 listen address has been overridden by the server's GatewayPorts;
902 - djm@cvs.openbsd.org 2013/09/19 01:26:29
904 bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from
905 swp AT swp.pp.ru; ok dtucker@
906 - dtucker@cvs.openbsd.org 2013/10/08 11:42:13
908 Increase the size of the Diffie-Hellman groups requested for a each
909 symmetric key size. New values from NIST Special Publication 800-57 with
910 the upper limit specified by RFC4419. Pointed out by Peter Backes, ok
914 - (djm) [openbsd-compat/arc4random.c openbsd-compat/chacha_private.h] Pull
915 in OpenBSD implementation of arc4random, shortly to replace the existing
917 - (djm) [openbsd-compat/Makefile.in openbsd-compat/arc4random.c]
918 [openbsd-compat/bsd-arc4random.c] Replace old RC4-based arc4random
919 implementation with recent OpenBSD's ChaCha-based PRNG. ok dtucker@,
923 - (dtucker) [platform.c platform.h sshd.c] bz#2156: restore Linux oom_adj
924 setting when handling SIGHUP to maintain behaviour over retart. Patch
928 - (dtucker) [sshd_config] Trailing whitespace; from jstjohn at purdue edu.
931 - (djm) OpenBSD CVS Sync
932 - djm@cvs.openbsd.org 2013/08/22 19:02:21
934 Stir PRNG after post-accept fork. The child gets a different PRNG state
935 anyway via rexec and explicit privsep reseeds, but it's good to be sure.
937 - mikeb@cvs.openbsd.org 2013/08/28 12:34:27
939 improve batch processing a bit by making use of the quite flag a bit
940 more often and exit with a non zero code if asked to find a hostname
941 in a known_hosts file and it wasn't there;
942 originally from reyk@, ok djm
943 - djm@cvs.openbsd.org 2013/08/31 00:13:54
945 make ^w match ksh behaviour (delete previous word instead of entire line)
946 - deraadt@cvs.openbsd.org 2013/09/02 22:00:34
947 [ssh-keygen.c sshconnect1.c sshd.c]
948 All the instances of arc4random_stir() are bogus, since arc4random()
949 does this itself, inside itself, and has for a very long time.. Actually,
950 this was probably reducing the entropy available.
952 ID SYNC ONLY for portable; we don't trust other arc4random implementations
954 - sthen@cvs.openbsd.org 2013/09/07 13:53:11
956 Remove commented-out kerberos/gssapi config options from sample config,
957 kerberos support is currently not enabled in ssh in OpenBSD. Discussed with
958 various people; ok deraadt@
959 ID SYNC ONLY for portable; kerberos/gssapi is still pretty popular
960 - djm@cvs.openbsd.org 2013/09/12 01:41:12
962 fix connection crash when sending break (~B) on ControlPersist'd session;
964 - djm@cvs.openbsd.org 2013/09/13 06:54:34
966 avoid unaligned access in code that reused a buffer to send a
967 struct in_addr in a reply; simpler just use use buffer_put_int();
968 from portable; spotted by and ok dtucker@
971 - (djm) [openbsd-compat/bsd-snprintf.c] teach our local snprintf code the
972 'j' (intmax_t/uintmax_t) and 'z' (size_t/ssize_t) conversions in case we
973 start to use them in the future.
974 - (djm) [openbsd-compat/bsd-snprintf.c] #ifdef noytet for intmax_t bits
975 until we have configure support.
978 - (djm) OpenBSD CVS Sync
979 - djm@cvs.openbsd.org 2013/08/06 23:03:49
981 fix some whitespace at EOL
982 make list of commands an enum rather than a long list of defines
984 - djm@cvs.openbsd.org 2013/08/06 23:05:01
986 document top-level -a option (the -a option to 'get' was already
988 - djm@cvs.openbsd.org 2013/08/06 23:06:01
990 add cast to avoid format warning; from portable
991 - jmc@cvs.openbsd.org 2013/08/07 06:24:51
994 - djm@cvs.openbsd.org 2013/08/08 04:52:04
996 fix two year old regression: symlinking a file would incorrectly
997 canonicalise the target path. bz#2129 report from delphij AT freebsd.org
998 - djm@cvs.openbsd.org 2013/08/08 05:04:03
999 [sftp-client.c sftp-client.h sftp.c]
1000 add a "-l" flag for the rename command to force it to use the silly
1001 standard SSH_FXP_RENAME command instead of the POSIX-rename- like
1002 posix-rename@openssh.com extension.
1004 intended for use in regress tests, so no documentation.
1005 - djm@cvs.openbsd.org 2013/08/09 03:37:25
1007 do getopt parsing for all sftp commands (with an empty optstring for
1008 commands without arguments) to ensure consistent behaviour
1009 - djm@cvs.openbsd.org 2013/08/09 03:39:13
1011 two problems found by a to-be-committed regress test: 1) msg_id was not
1012 being initialised so was starting at a random value from the heap
1013 (harmless, but confusing). 2) some error conditions were not being
1014 propagated back to the caller
1015 - djm@cvs.openbsd.org 2013/08/09 03:56:42
1017 enable ctrl-left-arrow and ctrl-right-arrow to move forward/back a word;
1018 matching ksh's relatively recent change.
1019 - djm@cvs.openbsd.org 2013/08/13 18:32:08
1021 typo in error message; from Stephan Rickauer
1022 - djm@cvs.openbsd.org 2013/08/13 18:33:08
1024 another of the same typo
1025 - jmc@cvs.openbsd.org 2013/08/14 08:39:27
1027 some Bx/Ox conversion;
1029 - djm@cvs.openbsd.org 2013/08/20 00:11:38
1030 [readconf.c readconf.h ssh_config.5 sshconnect.c]
1031 Add a ssh_config ProxyUseFDPass option that supports the use of
1032 ProxyCommands that establish a connection and then pass a connected
1033 file descriptor back to ssh(1). This allows the ProxyCommand to exit
1034 rather than have to shuffle data back and forth and enables ssh to use
1035 getpeername, etc. to obtain address information just like it does with
1036 regular directly-connected sockets. ok markus@
1037 - jmc@cvs.openbsd.org 2013/08/20 06:56:07
1038 [ssh.1 ssh_config.5]
1039 some proxyusefdpass tweaks;
1042 - (dtucker) [regress/Makefile regress/test-exec.sh] Don't try to use test -nt
1043 since some platforms (eg really old FreeBSD) don't have it. Instead,
1044 run "make clean" before a complete regress run. ok djm.
1045 - (dtucker) [misc.c] Fall back to time(2) at runtime if clock_gettime(
1046 CLOCK_MONOTONIC...) fails. Some older versions of RHEL have the
1047 CLOCK_MONOTONIC define but don't actually support it. Found and tested
1048 by Kevin Brott, ok djm.
1049 - (dtucker) [misc.c] Remove define added for fallback testing that was
1050 mistakenly included in the previous commit.
1051 - (dtucker) [regress/Makefile regress/test-exec.sh] Roll back the -nt
1052 removal. The "make clean" removes modpipe which is built by the top-level
1053 directory before running the tests. Spotted by tim@
1054 - (djm) Release 6.3p1
1057 - (dtucker) [auth-krb5.c configure.ac openbsd-compat/bsd-misc.h] Add support
1058 for building with older Heimdal versions. ok djm.
1061 - (djm) [channels.c channels.h] bz#2135: On Solaris, isatty() on a non-
1062 blocking connecting socket will clear any stored errno that might
1063 otherwise have been retrievable via getsockopt(). A hack to limit writes
1064 to TTYs on AIX was triggering this. Since only AIX needs the hack, wrap
1065 it in an #ifdef. Diagnosis and patch from Ivo Raisr.
1066 - (djm) [sshlogin.h] Fix prototype merge botch from 2006; bz#2134
1069 - (djm) OpenBSD CVS Sync
1070 - djm@cvs.openbsd.org 2013/07/20 22:20:42
1072 fix verification error in (as-yet usused) KRL signature checking path
1073 - djm@cvs.openbsd.org 2013/07/22 05:00:17
1075 make MAC key, data to be hashed and nonce for final hash const;
1076 checked with -Wcast-qual
1077 - djm@cvs.openbsd.org 2013/07/22 12:20:02
1079 oops, forgot to commit corresponding header change;
1080 spotted by jsg and jasper
1081 - djm@cvs.openbsd.org 2013/07/25 00:29:10
1083 daemonise backgrounded (ControlPersist'ed) multiplexing master to ensure
1084 it is fully detached from its controlling terminal. based on debugging
1085 - djm@cvs.openbsd.org 2013/07/25 00:56:52
1086 [sftp-client.c sftp-client.h sftp.1 sftp.c]
1087 sftp support for resuming partial downloads; patch mostly by Loganaden
1088 Velvindron/AfriNIC with some tweaks by me; feedback and ok dtucker@
1089 "Just be careful" deraadt@
1090 - djm@cvs.openbsd.org 2013/07/25 00:57:37
1092 openssh-6.3 for release
1093 - dtucker@cvs.openbsd.org 2013/05/30 20:12:32
1094 [regress/test-exec.sh]
1095 use ssh and sshd as testdata since it needs to be >256k for the rekey test
1096 - dtucker@cvs.openbsd.org 2013/06/10 21:56:43
1097 [regress/forwarding.sh]
1098 Add test for forward config parsing
1099 - djm@cvs.openbsd.org 2013/06/21 02:26:26
1100 [regress/sftp-cmds.sh regress/test-exec.sh]
1101 unbreak sftp-cmds for renamed test data (s/ls/data/)
1102 - (tim) [sftp-client.c] Use of a gcc extension trips up native compilers on
1103 Solaris and UnixWare. Feedback and OK djm@
1104 - (tim) [regress/forwarding.sh] Fix for building outside source tree.
1107 - (djm) OpenBSD CVS Sync
1108 - markus@cvs.openbsd.org 2013/07/19 07:37:48
1109 [auth.h kex.h kexdhs.c kexecdhs.c kexgexs.c monitor.c servconf.c]
1110 [servconf.h session.c sshd.c sshd_config.5]
1111 add ssh-agent(1) support to sshd(8); allows encrypted hostkeys,
1112 or hostkeys on smartcards; most of the work by Zev Weiss; bz #1974
1114 - djm@cvs.openbsd.org 2013/07/20 01:43:46
1116 use a union to ensure correct alignment; ok deraadt
1117 - djm@cvs.openbsd.org 2013/07/20 01:44:37
1118 [ssh-keygen.c ssh.c]
1119 More useful error message on missing current user in /etc/passwd
1120 - djm@cvs.openbsd.org 2013/07/20 01:50:20
1122 call cleanup_handler on SIGINT when in debug mode to ensure sockets
1123 are cleaned up on manual exit; bz#2120
1124 - djm@cvs.openbsd.org 2013/07/20 01:55:13
1125 [auth-krb5.c gss-serv-krb5.c gss-serv.c]
1126 fix kerberos/GSSAPI deprecation warnings and linking; "looks okay" millert@
1129 - (djm) OpenBSD CVS Sync
1130 - dtucker@cvs.openbsd.org 2013/06/10 19:19:44
1132 revert 1.203 while we investigate crashes reported by okan@
1133 - guenther@cvs.openbsd.org 2013/06/17 04:48:42
1135 Handle time_t values as long long's when formatting them and when
1136 parsing them from remote servers.
1137 Improve error checking in parsing of 'T' lines.
1138 ok dtucker@ deraadt@
1139 - markus@cvs.openbsd.org 2013/06/20 19:15:06
1141 don't leak the rdata blob on errors; ok djm@
1142 - djm@cvs.openbsd.org 2013/06/21 00:34:49
1143 [auth-rsa.c auth.h auth2-hostbased.c auth2-pubkey.c monitor.c]
1144 for hostbased authentication, print the client host and user on
1145 the auth success/failure line; bz#2064, ok dtucker@
1146 - djm@cvs.openbsd.org 2013/06/21 00:37:49
1148 explicitly mention that IdentitiesOnly can be used with IdentityFile
1149 to control which keys are offered from an agent.
1150 - djm@cvs.openbsd.org 2013/06/21 05:42:32
1152 sprinkle in some error() to explain moduli(5) parse failures
1153 - djm@cvs.openbsd.org 2013/06/21 05:43:10
1155 make this -Wsign-compare clean after time_t conversion
1156 - djm@cvs.openbsd.org 2013/06/22 06:31:57
1158 improved time_t overflow check suggested by guenther@
1159 - jmc@cvs.openbsd.org 2013/06/27 14:05:37
1160 [ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5]
1161 do not use Sx for sections outwith the man page - ingo informs me that
1162 stuff like html will render with broken links;
1163 issue reported by Eric S. Raymond, via djm
1164 - markus@cvs.openbsd.org 2013/07/02 12:31:43
1166 remove extra whitespace
1167 - djm@cvs.openbsd.org 2013/07/12 00:19:59
1168 [auth-options.c auth-rsa.c bufaux.c buffer.h channels.c hostfile.c]
1169 [hostfile.h mux.c packet.c packet.h roaming_common.c serverloop.c]
1170 fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
1171 - djm@cvs.openbsd.org 2013/07/12 00:20:00
1172 [sftp.c ssh-keygen.c ssh-pkcs11.c]
1173 fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
1174 - djm@cvs.openbsd.org 2013/07/12 00:43:50
1176 in ssh_gai_strerror() don't fallback to strerror for EAI_SYSTEM when
1177 errno == 0. Avoids confusing error message in some broken resolver
1178 cases. bz#2122 patch from plautrba AT redhat.com; ok dtucker
1179 - djm@cvs.openbsd.org 2013/07/12 05:42:03
1181 do_print_resource_record() can never be called with a NULL filename, so
1182 don't attempt (and bungle) asking for one if it has not been specified
1184 - djm@cvs.openbsd.org 2013/07/12 05:48:55
1186 set TCP nodelay for connections started with -N; bz#2124 ok dtucker@
1187 - schwarze@cvs.openbsd.org 2013/07/16 00:07:52
1188 [scp.1 sftp-server.8 ssh-keyscan.1 ssh-keysign.8 ssh-pkcs11-helper.8]
1189 use .Mt for email addresses; from Jan Stary <hans at stare dot cz>; ok jmc@
1190 - djm@cvs.openbsd.org 2013/07/18 01:12:26
1192 be more exact wrt perms for ~/.ssh/config; bz#2078
1195 - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config
1196 contrib/cygwin/ssh-user-config] Modernizes and improve readability of
1197 the Cygwin README file (which hasn't been updated for ages), drop
1198 unsupported OSes from the ssh-host-config help text, and drop an
1199 unneeded option from ssh-user-config. Patch from vinschen at redhat com.
1202 - (djm) OpenBSD CVS Sync
1203 - dtucker@cvs.openbsd.org 2013/06/07 15:37:52
1204 [channels.c channels.h clientloop.c]
1205 Add an "ABANDONED" channel state and use for mux sessions that are
1206 disconnected via the ~. escape sequence. Channels in this state will
1207 be able to close if the server responds, but do not count as active channels.
1208 This means that if you ~. all of the mux clients when using ControlPersist
1209 on a broken network, the backgrounded mux master will exit when the
1210 Control Persist time expires rather than hanging around indefinitely.
1211 bz#1917, also reported and tested by tedu@. ok djm@ markus@.
1212 - (dtucker) [Makefile.in configure.ac fixalgorithms] Remove unsupported
1213 algorithms (Ciphers, MACs and HostKeyAlgorithms) from man pages.
1214 - (dtucker) [myproposal.h] Do not advertise AES GSM ciphers if we don't have
1215 the required OpenSSL support. Patch from naddy at freebsd.
1216 - (dtucker) [myproposal.h] Make the conditional algorithm support consistent
1217 and add some comments so it's clear what goes where.
1220 - (dtucker) [myproposal.h] Enable sha256 kex methods based on the presence of
1221 the necessary functions, not from the openssl version.
1222 - (dtucker) [contrib/ssh-copy-id] bz#2117: Use portable operator in test.
1223 Patch from cjwatson at debian.
1224 - (dtucker) [regress/forwarding.sh] For (as yet unknown) reason, the
1225 forwarding test is extremely slow copying data on some machines so switch
1226 back to copying the much smaller ls binary until we can figure out why
1228 - (dtucker) [Makefile.in] append $CFLAGS to compiler options when building
1229 modpipe in case there's anything in there we need.
1230 - (dtucker) OpenBSD CVS Sync
1231 - dtucker@cvs.openbsd.org 2013/06/02 21:01:51
1234 - dtucker@cvs.openbsd.org 2013/06/02 23:36:29
1235 [clientloop.h clientloop.c mux.c]
1236 No need for the mux cleanup callback to be visible so restore it to static
1237 and call it through the detach_user function pointer. ok djm@
1238 - dtucker@cvs.openbsd.org 2013/06/03 00:03:18
1240 force the MAC output to be 64-bit aligned so umac won't see unaligned
1241 accesses on strict-alignment architectures. bz#2101, patch from
1242 tomas.kuthan at oracle.com, ok djm@
1243 - dtucker@cvs.openbsd.org 2013/06/04 19:12:23
1245 use MAXPATHLEN for buffer size instead of fixed value. ok markus
1246 - dtucker@cvs.openbsd.org 2013/06/04 20:42:36
1248 Make sftp's libedit interface marginally multibyte aware by building up
1249 the quoted string by character instead of by byte. Prevents failures
1250 when linked against a libedit built with wide character support (bz#1990).
1252 - dtucker@cvs.openbsd.org 2013/06/05 02:07:29
1254 fix leaks in mux error paths, from Zhenbo Xu, found by Melton. bz#1967,
1256 - dtucker@cvs.openbsd.org 2013/06/05 02:27:50
1258 When running sshd -D, close stderr unless we have explicitly requesting
1259 logging to stderr. From james.hunt at ubuntu.com via bz#1976, djm's patch
1260 so, err, ok dtucker.
1261 - dtucker@cvs.openbsd.org 2013/06/05 12:52:38
1263 Fix memory leaks found by Zhenbo Xu and the Melton tool. bz#1967, ok djm
1264 - dtucker@cvs.openbsd.org 2013/06/05 22:00:28
1266 plug another memleak. bz#1967, from Zhenbo Xu, detected by Melton, ok djm
1267 - (dtucker) [configure.ac sftp.c openbsd-compat/openbsd-compat.h] Cater for
1268 platforms that don't have multibyte character support (specifically,
1272 - (tim) [Makefile.in] Make Solaris, UnixWare, & OpenServer linkers happy
1273 linking regress/modpipe.
1274 - (dtucker) OpenBSD CVS Sync
1275 - dtucker@cvs.openbsd.org 2013/06/02 13:33:05
1277 Add misc.h for monotime prototype. (ID sync only).
1278 - dtucker@cvs.openbsd.org 2013/06/02 13:35:58
1280 Make parent_alive_interval time_t to avoid signed/unsigned comparison
1281 - (dtucker) [configure.ac] sys/un.h needs sys/socket.h on some platforms
1282 to prevent noise from configure. Patch from Nathan Osman. (bz#2114).
1283 - (dtucker) [configure.ac] bz#2111: don't try to use lastlog on Android.
1284 Patch from Nathan Osman.
1285 - (tim) [configure.ac regress/Makefile] With rev 1.47 of test-exec.sh we
1286 need a shell that can handle "[ file1 -nt file2 ]". Rather than keep
1287 dealing with shell portability issues in regression tests, we let
1288 configure find us a capable shell on those platforms with an old /bin/sh.
1289 - (tim) [aclocal.m4] Enhance OSSH_CHECK_CFLAG_COMPILE to check stderr.
1290 feedback and ok dtucker
1291 - (tim) [regress/sftp-chroot.sh] skip if no sudo. ok dtucker
1292 - (dtucker) [configure.ac] Some platforms need sys/types.h before sys/un.h.
1293 - (dtucker) [configure.ac] Some other platforms need sys/types.h before
1297 - (dtucker) [configure.ac openbsd-compat/xcrypt.c] bz#2112: fall back to
1298 using openssl's DES_crypt function on platorms that don't have a native
1299 one, eg Android. Based on a patch from Nathan Osman.
1300 - (dtucker) [configure.ac defines.h] Test for fd_mask, howmany and NFDBITS
1301 rather than trying to enumerate the plaforms that don't have them.
1302 Based on a patch from Nathan Osman, with help from tim@.
1303 - (dtucker) OpenBSD CVS Sync
1304 - djm@cvs.openbsd.org 2013/05/17 00:13:13
1305 [xmalloc.h cipher.c sftp-glob.c ssh-keyscan.c ssh.c sftp-common.c
1306 ssh-ecdsa.c auth2-chall.c compat.c readconf.c kexgexs.c monitor.c
1307 gss-genr.c cipher-3des1.c kex.c monitor_wrap.c ssh-pkcs11-client.c
1308 auth-options.c rsa.c auth2-pubkey.c sftp.c hostfile.c auth2.c
1309 servconf.c auth.c authfile.c xmalloc.c uuencode.c sftp-client.c
1310 auth2-gss.c sftp-server.c bufaux.c mac.c session.c jpake.c kexgexc.c
1311 sshconnect.c auth-chall.c auth2-passwd.c sshconnect1.c buffer.c
1312 kexecdhs.c kexdhs.c ssh-rsa.c auth1.c ssh-pkcs11.c auth2-kbdint.c
1313 kexdhc.c sshd.c umac.c ssh-dss.c auth2-jpake.c bufbn.c clientloop.c
1314 monitor_mm.c scp.c roaming_client.c serverloop.c key.c auth-rsa.c
1315 ssh-pkcs11-helper.c ssh-keysign.c ssh-keygen.c match.c channels.c
1316 sshconnect2.c addrmatch.c mux.c canohost.c kexecdhc.c schnorr.c
1317 ssh-add.c misc.c auth2-hostbased.c ssh-agent.c bufec.c groupaccess.c
1318 dns.c packet.c readpass.c authfd.c moduli.c]
1319 bye, bye xfree(); ok markus@
1320 - djm@cvs.openbsd.org 2013/05/19 02:38:28
1322 fix failure to recognise cert-authority keys if a key of a different type
1323 appeared in authorized_keys before it; ok markus@
1324 - djm@cvs.openbsd.org 2013/05/19 02:42:42
1325 [auth.h auth.c key.c monitor.c auth-rsa.c auth2.c auth1.c key.h]
1326 Standardise logging of supplemental information during userauth. Keys
1327 and ruser is now logged in the auth success/failure message alongside
1328 the local username, remote host/port and protocol in use. Certificates
1329 contents and CA are logged too.
1330 Pushing all logging onto a single line simplifies log analysis as it is
1331 no longer necessary to relate information scattered across multiple log
1332 entries. "I like it" markus@
1333 - dtucker@cvs.openbsd.org 2013/05/31 12:28:10
1335 Use time_t where appropriate. ok djm
1336 - dtucker@cvs.openbsd.org 2013/06/01 13:15:52
1337 [ssh-agent.c clientloop.c misc.h packet.c progressmeter.c misc.c
1338 channels.c sandbox-systrace.c]
1339 Use clock_gettime(CLOCK_MONOTONIC ...) for ssh timers so that things like
1340 keepalives and rekeying will work properly over clock steps. Suggested by
1341 markus@, "looks good" djm@.
1342 - dtucker@cvs.openbsd.org 2013/06/01 20:59:25
1343 [scp.c sftp-client.c]
1344 Replace S_IWRITE, which isn't standardized, with S_IWUSR, which is. Patch
1345 from Nathan Osman via bz#2085. ok deraadt.
1346 - dtucker@cvs.openbsd.org 2013/06/01 22:34:50
1348 Update progressmeter when data is acked, not when it's sent. bz#2108, from
1349 Debian via Colin Watson, ok djm@
1350 - (dtucker) [M auth-chall.c auth-krb5.c auth-pam.c cipher-aes.c cipher-ctr.c
1351 groupaccess.c loginrec.c monitor.c monitor_wrap.c session.c sshd.c
1352 sshlogin.c uidswap.c openbsd-compat/bsd-cygwin_util.c
1353 openbsd-compat/getrrsetbyname-ldns.c openbsd-compat/port-aix.c
1354 openbsd-compat/port-linux.c] Replace portable-specific instances of xfree
1355 with the equivalent calls to free.
1356 - (dtucker) [configure.ac misc.c] Look for clock_gettime in librt and fall
1357 back to time(NULL) if we can't find it anywhere.
1358 - (dtucker) [sandbox-seccomp-filter.c] Allow clock_gettimeofday.
1361 - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] bz#2087: Add a null
1362 implementation of endgrent for platforms that don't have it (eg Android).
1363 Loosely based on a patch from Nathan Osman, ok djm
1366 - (dtucker) OpenBSD CVS Sync
1367 - djm@cvs.openbsd.org 2013/03/07 00:20:34
1368 [regress/proxy-connect.sh]
1369 repeat test with a style appended to the username
1370 - dtucker@cvs.openbsd.org 2013/03/23 11:09:43
1371 [regress/test-exec.sh]
1372 Only regenerate host keys if they don't exist or if ssh-keygen has changed
1373 since they were. Reduces test runtime by 5-30% depending on machine
1375 - dtucker@cvs.openbsd.org 2013/04/06 06:00:22
1376 [regress/rekey.sh regress/test-exec.sh regress/integrity.sh
1377 regress/multiplex.sh Makefile regress/cfgmatch.sh]
1378 Split the regress log into 3 parts: the debug output from ssh, the debug
1379 log from sshd and the output from the client command (ssh, scp or sftp).
1380 Somewhat functional now, will become more useful when ssh/sshd -E is added.
1381 - dtucker@cvs.openbsd.org 2013/04/07 02:16:03
1382 [regress/Makefile regress/rekey.sh regress/integrity.sh
1383 regress/sshd-log-wrapper.sh regress/forwarding.sh regress/test-exec.sh]
1384 use -E option for ssh and sshd to write debuging logs to ssh{,d}.log and
1385 save the output from any failing tests. If a test fails the debug output
1386 from ssh and sshd for the failing tests (and only the failing tests) should
1387 be available in failed-ssh{,d}.log.
1388 - djm@cvs.openbsd.org 2013/04/18 02:46:12
1389 [regress/Makefile regress/sftp-chroot.sh]
1390 test sshd ChrootDirectory+internal-sftp; feedback & ok dtucker@
1391 - dtucker@cvs.openbsd.org 2013/04/22 07:23:08
1392 [regress/multiplex.sh]
1393 Write mux master logs to regress.log instead of ssh.log to keep separate
1394 - djm@cvs.openbsd.org 2013/05/10 03:46:14
1396 sync some portability changes from portable OpenSSH (id sync only)
1397 - dtucker@cvs.openbsd.org 2013/05/16 02:10:35
1399 Add test for time-based rekeying
1400 - dtucker@cvs.openbsd.org 2013/05/16 03:33:30
1402 test rekeying when there's no data being transferred
1403 - dtucker@cvs.openbsd.org 2013/05/16 04:26:10
1405 add server-side rekey test
1406 - dtucker@cvs.openbsd.org 2013/05/16 05:48:31
1408 add tests for RekeyLimit parsing
1409 - dtucker@cvs.openbsd.org 2013/05/17 00:37:40
1410 [regress/agent.sh regress/keytype.sh regress/cfgmatch.sh
1411 regress/forcecommand.sh regress/proto-version.sh regress/test-exec.sh
1412 regress/cipher-speed.sh regress/cert-hostkey.sh regress/cert-userkey.sh
1414 replace 'echo -n' with 'printf' since it's more portable
1415 also remove "echon" hack.
1416 - dtucker@cvs.openbsd.org 2013/05/17 01:16:09
1417 [regress/agent-timeout.sh]
1418 Pull back some portability changes from -portable:
1419 - TIMEOUT is a read-only variable in some shells
1420 - not all greps have -q so redirect to /dev/null instead.
1422 - dtucker@cvs.openbsd.org 2013/05/17 01:32:11
1423 [regress/integrity.sh]
1424 don't print output from ssh before getting it (it's available in ssh.log)
1425 - dtucker@cvs.openbsd.org 2013/05/17 04:29:14
1426 [regress/sftp.sh regress/putty-ciphers.sh regress/cipher-speed.sh
1427 regress/test-exec.sh regress/sftp-batch.sh regress/dynamic-forward.sh
1428 regress/putty-transfer.sh regress/conch-ciphers.sh regress/sftp-cmds.sh
1429 regress/scp.sh regress/ssh-com-sftp.sh regress/rekey.sh
1430 regress/putty-kex.sh regress/stderr-data.sh regress/stderr-after-eof.sh
1431 regress/sftp-badcmds.sh regress/reexec.sh regress/ssh-com-client.sh
1432 regress/sftp-chroot.sh regress/forwarding.sh regress/transfer.sh
1433 regress/multiplex.sh]
1434 Move the setting of DATA and COPY into test-exec.sh
1435 - dtucker@cvs.openbsd.org 2013/05/17 10:16:26
1436 [regress/try-ciphers.sh]
1437 use expr for math to keep diffs vs portable down
1439 - dtucker@cvs.openbsd.org 2013/05/17 10:23:52
1440 [regress/login-timeout.sh regress/reexec.sh regress/test-exec.sh]
1441 Use SUDO when cat'ing pid files and running the sshd log wrapper so that
1442 it works with a restrictive umask and the pid files are not world readable.
1443 Changes from -portable. (id sync only)
1444 - dtucker@cvs.openbsd.org 2013/05/17 10:24:48
1445 [regress/localcommand.sh]
1446 use backticks for portability. (id sync only)
1447 - dtucker@cvs.openbsd.org 2013/05/17 10:26:26
1448 [regress/sftp-badcmds.sh]
1449 remove unused BATCH variable. (id sync only)
1450 - dtucker@cvs.openbsd.org 2013/05/17 10:28:11
1452 only compare copied data if sftp succeeds. from portable (id sync only)
1453 - dtucker@cvs.openbsd.org 2013/05/17 10:30:07
1454 [regress/test-exec.sh]
1455 wait a bit longer for startup and use case for absolute path.
1456 from portable (id sync only)
1457 - dtucker@cvs.openbsd.org 2013/05/17 10:33:09
1458 [regress/agent-getpeereid.sh]
1459 don't redirect stdout from sudo. from portable (id sync only)
1460 - dtucker@cvs.openbsd.org 2013/05/17 10:34:30
1461 [regress/portnum.sh]
1462 use a more portable negated if structure. from portable (id sync only)
1463 - dtucker@cvs.openbsd.org 2013/05/17 10:35:43
1465 use a file extention that's not special on some platforms. from portable
1467 - (dtucker) [regress/bsd.regress.mk] Remove unused file. We've never used it
1468 in portable and it's long gone in openbsd.
1469 - (dtucker) [regress/integrity.sh]. Force fixed Diffie-Hellman key exchange
1470 methods. When the openssl version doesn't support ECDH then next one on
1471 the list is DH group exchange, but that causes a bit more traffic which can
1472 mean that the tests flip bits in the initial exchange rather than the MACed
1473 traffic and we get different errors to what the tests look for.
1474 - (dtucker) [openbsd-compat/getopt.h] Remove unneeded bits.
1475 - (dtucker) [regress/cfgmatch.sh] Resync config file setup with openbsd.
1476 - (dtucker) [regress/agent-getpeereid.sh] Resync spaces with openbsd.
1477 - (dtucker) [regress/integrity.sh regress/krl.sh regress/test-exec.sh]
1478 Move the jot helper function to portable-specific part of test-exec.sh.
1479 - (dtucker) [regress/test-exec.sh] Move the portable-specific functions
1480 together and add a couple of missing lines from openbsd.
1481 - (dtucker) [regress/stderr-after-eof.sh regress/test-exec.sh] Move the md5
1482 helper function to the portable part of test-exec.sh.
1483 - (dtucker) [regress/runtests.sh] Remove obsolete test driver script.
1484 - (dtucker) [regress/cfgmatch.sh] Remove unneeded sleep renderd obsolete by
1485 rev 1.6 which calls wait.
1488 - (djm) [contrib/ssh-copy-id] Fix bug that could cause "rm *" to be
1489 executed if mktemp failed; bz#2105 ok dtucker@
1490 - (dtucker) OpenBSD CVS Sync
1491 - tedu@cvs.openbsd.org 2013/04/23 17:49:45
1493 use xasprintf instead of a series of strlcats and strdup. ok djm
1494 - tedu@cvs.openbsd.org 2013/04/24 16:01:46
1496 remove extra parens noticed by nicm
1497 - dtucker@cvs.openbsd.org 2013/05/06 07:35:12
1499 Reference the version of the sftp draft we actually implement. ok djm@
1500 - djm@cvs.openbsd.org 2013/05/10 03:40:07
1502 fix bzero(ptr_to_struct, sizeof(ptr_to_struct)); bz#2100 from
1504 - djm@cvs.openbsd.org 2013/05/10 04:08:01
1506 memleak in cert_free(), wasn't actually freeing the struct;
1507 bz#2096 from shm AT digitalsun.pl
1508 - dtucker@cvs.openbsd.org 2013/05/10 10:13:50
1509 [ssh-pkcs11-helper.c]
1510 remove unused extern optarg. ok markus@
1511 - dtucker@cvs.openbsd.org 2013/05/16 02:00:34
1512 [ssh_config sshconnect2.c packet.c readconf.h readconf.c clientloop.c
1513 ssh_config.5 packet.h]
1514 Add an optional second argument to RekeyLimit in the client to allow
1515 rekeying based on elapsed time in addition to amount of traffic.
1516 with djm@ jmc@, ok djm
1517 - dtucker@cvs.openbsd.org 2013/05/16 04:09:14
1518 [sshd_config.5 servconf.c servconf.h packet.c serverloop.c monitor.c sshd_config
1519 sshd.c] Add RekeyLimit to sshd with the same syntax as the client allowing
1520 rekeying based on traffic volume or time. ok djm@, help & ok jmc@ for the man
1522 - djm@cvs.openbsd.org 2013/05/16 04:27:50
1523 [ssh_config.5 readconf.h readconf.c]
1524 add the ability to ignore specific unrecognised ssh_config options;
1526 - jmc@cvs.openbsd.org 2013/05/16 06:28:45
1528 put IgnoreUnknown in the right place;
1529 - jmc@cvs.openbsd.org 2013/05/16 06:30:06
1531 oops! avoid Xr to self;
1532 - dtucker@cvs.openbsd.org 2013/05/16 09:08:41
1533 [log.c scp.c sshd.c serverloop.c schnorr.c sftp.c]
1534 Fix some "unused result" warnings found via clang and -portable.
1536 - dtucker@cvs.openbsd.org 2013/05/16 09:12:31
1537 [readconf.c servconf.c]
1538 switch RekeyLimit traffic volume parsing to scan_scaled. ok djm@
1539 - dtucker@cvs.openbsd.org 2013/05/16 10:43:34
1540 [servconf.c readconf.c]
1541 remove now-unused variables
1542 - dtucker@cvs.openbsd.org 2013/05/16 10:44:06
1544 remove another now-unused variable
1545 - (dtucker) [configure.ac readconf.c servconf.c
1546 openbsd-compat/openbsd-compat.h] Add compat bits for scan_scaled.
1549 - (dtucker) [configure.ac] Enable -Wsizeof-pointer-memaccess if the compiler
1550 supports it. Mentioned by Colin Watson in bz#2100, ok djm.
1551 - (dtucker) [openbsd-compat/getopt.c] Factor out portibility changes to
1552 getopt.c. Preprocessed source is identical other than line numbers.
1553 - (dtucker) [openbsd-compat/getopt_long.c] Import from OpenBSD. No
1554 portability changes yet.
1555 - (dtucker) [openbsd-compat/Makefile.in openbsd-compat/getopt.c
1556 openbsd-compat/getopt_long.c regress/modpipe.c] Remove getopt.c, add
1557 portability code to getopt_long.c and switch over Makefile and the ugly
1558 hack in modpipe.c. Fixes bz#1448.
1559 - (dtucker) [openbsd-compat/getopt.h openbsd-compat/getopt_long.c
1560 openbsd-compat/openbsd-compat.h] pull in getopt.h from openbsd and plumb
1561 in to use it when we're using our own getopt.
1562 - (dtucker) [kex.c] Only include sha256 and ECC key exchange methods when the
1563 underlying libraries support them.
1564 - (dtucker) [configure.ac] Add -Werror to the -Qunused-arguments test so
1565 we don't get a warning on compilers that *don't* support it. Add
1566 -Wno-unknown-warning-option. Move both to the start of the list for
1567 maximum noise suppression. Tested with gcc 4.6.3, gcc 2.95.4 and clang 2.9.
1570 - (djm) [auth.c configure.ac misc.c monitor.c monitor_wrap.c] Support
1571 platforms, such as Android, that lack struct passwd.pw_gecos. Report
1572 and initial patch from Nathan Osman bz#2086; feedback tim@ ok dtucker@
1573 - (djm) OpenBSD CVS Sync
1574 - markus@cvs.openbsd.org 2013/03/05 20:16:09
1576 reset pubkey order on partial success; ok djm@
1577 - djm@cvs.openbsd.org 2013/03/06 23:35:23
1579 fatal() when ChrootDirectory specified by running without root privileges;
1581 - djm@cvs.openbsd.org 2013/03/06 23:36:53
1583 g/c unused variable (-Wunused)
1584 - djm@cvs.openbsd.org 2013/03/07 00:19:59
1585 [auth2-pubkey.c monitor.c]
1586 reconstruct the original username that was sent by the client, which may
1587 have included a style (e.g. "root:skey") when checking public key
1588 signatures. Fixes public key and hostbased auth when the client specified
1590 - markus@cvs.openbsd.org 2013/03/07 19:27:25
1591 [auth.h auth2-chall.c auth2.c monitor.c sshd_config.5]
1592 add submethod support to AuthenticationMethods; ok and freedback djm@
1593 - djm@cvs.openbsd.org 2013/03/08 06:32:58
1595 allow "ssh -f none ..." ok markus@
1596 - djm@cvs.openbsd.org 2013/04/05 00:14:00
1597 [auth2-gss.c krl.c sshconnect2.c]
1598 hush some {unused, printf type} warnings
1599 - djm@cvs.openbsd.org 2013/04/05 00:31:49
1601 use the existing _PATH_SSH_USER_RC define to construct the other
1602 pathnames; bz#2077, ok dtucker@ (no binary change)
1603 - djm@cvs.openbsd.org 2013/04/05 00:58:51
1605 cleanup mux-created channels that are in SSH_CHANNEL_OPENING state too
1606 (in addition to ones already in OPEN); bz#2079, ok dtucker@
1607 - markus@cvs.openbsd.org 2013/04/06 16:07:00
1609 handle ECONNABORTED for accept(); ok deraadt some time ago...
1610 - dtucker@cvs.openbsd.org 2013/04/07 02:10:33
1611 [log.c log.h ssh.1 ssh.c sshd.8 sshd.c]
1612 Add -E option to ssh and sshd to append debugging logs to a specified file
1613 instead of stderr or syslog. ok markus@, man page help jmc@
1614 - dtucker@cvs.openbsd.org 2013/04/07 09:40:27
1616 clarify -e text. suggested by & ok jmc@
1617 - djm@cvs.openbsd.org 2013/04/11 02:27:50
1619 quiet disconnect notifications on the server from error() back to logit()
1620 if it is a normal client closure; bz#2057 ok+feedback dtucker@
1621 - dtucker@cvs.openbsd.org 2013/04/17 09:04:09
1623 revert rev 1.262; it fails because uid is already set here. ok djm@
1624 - djm@cvs.openbsd.org 2013/04/18 02:16:07
1626 make "sftp -q" do what it says on the sticker: hush everything but errors;
1628 - djm@cvs.openbsd.org 2013/04/19 01:00:10
1630 document the requirment that the AuthorizedKeysCommand be owned by root;
1632 - djm@cvs.openbsd.org 2013/04/19 01:01:00
1634 fix some memory leaks; bz#2088 ok dtucker@
1635 - djm@cvs.openbsd.org 2013/04/19 01:03:01
1637 reintroduce 1.262 without the connection-killing bug:
1638 fatal() when ChrootDirectory specified by running without root privileges;
1640 - djm@cvs.openbsd.org 2013/04/19 01:06:50
1641 [authfile.c cipher.c cipher.h kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c]
1642 [key.c key.h mac.c mac.h packet.c ssh.1 ssh.c]
1643 add the ability to query supported ciphers, MACs, key type and KEX
1644 algorithms to ssh. Includes some refactoring of KEX and key type handling
1645 to be table-driven; ok markus@
1646 - djm@cvs.openbsd.org 2013/04/19 11:10:18
1648 add -Q to usage; reminded by jmc@
1649 - djm@cvs.openbsd.org 2013/04/19 12:07:08
1651 remove duplicated list entry pointed out by naddy@
1652 - dtucker@cvs.openbsd.org 2013/04/22 01:17:18
1654 typo in debug output: evitval->exitval
1657 - (djm) [config.guess config.sub] Update to last versions before they switch
1658 to GPL3. ok dtucker@
1659 - (dtucker) [configure.ac] Use -Qunused-arguments to suppress warnings from
1660 unused argument warnings (in particular, -fno-builtin-memset) from clang.
1663 - (dtucker) OpenBSD CVS Sync
1664 - dtucker@cvs.openbsd.org 2013/02/17 23:16:57
1665 [readconf.c ssh.c readconf.h sshconnect2.c]
1666 Keep track of which IndentityFile options were manually supplied and which
1667 were default options, and don't warn if the latter are missing.
1669 - dtucker@cvs.openbsd.org 2013/02/19 02:12:47
1671 Remove bogus include. ok djm
1672 - dtucker@cvs.openbsd.org 2013/02/22 04:45:09
1673 [ssh.c readconf.c readconf.h]
1674 Don't complain if IdentityFiles specified in system-wide configs are
1675 missing. ok djm, deraadt.
1676 - markus@cvs.openbsd.org 2013/02/22 19:13:56
1678 support ProxyCommand=- (stdin/out already point to the proxy); ok djm@
1679 - djm@cvs.openbsd.org 2013/02/22 22:09:01
1681 Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier
1685 - (dtucker) [openbsd-compat/bsd-cygwin_util.{c,h}] Don't include windows.h
1686 to avoid conflicting definitions of __int64, adding the required bits.
1687 Patch from Corinna Vinschen.
1690 - (tim) [Makefile.in] remove some duplication introduced in 20130220 commit.
1693 - (djm) [contrib/ssh-copy-id contrib/ssh-copy-id.1] Updated to Phil
1694 Hands' greatly revised version.
1695 - (djm) Release 6.2p1
1696 - (dtucker) [configure.ac] Add stdlib.h to zlib check for exit() prototype.
1697 - (dtucker) [includes.h] Check if _GNU_SOURCE is already defined before
1698 defining it again. Prevents warnings if someone, eg, sets it in CFLAGS.
1701 - (djm) [configure.ac log.c scp.c sshconnect2.c openbsd-compat/vis.c]
1702 [openbsd-compat/vis.h] FreeBSD's strnvis isn't compatible with OpenBSD's
1703 so mark it as broken. Patch from des AT des.no
1706 - (tim) [configure.ac] OpenServer 5 wants lastlog even though it has none
1707 of the bits the configure test looks for.
1710 - (djm) [configure.ac] Disable utmp, wtmp and/or lastlog if the platform
1711 is unable to successfully compile them. Based on patch from des AT
1713 - (djm) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
1714 Add a usleep replacement for platforms that lack it; ok dtucker
1715 - (djm) [session.c] FreeBSD needs setusercontext(..., LOGIN_SETUMASK) to
1716 occur after UID switch; patch from John Marshall via des AT des.no;
1720 - (dtucker) [regress/Makefile regress/cipher-speed.sh regress/test-exec.sh]
1721 Improve portability of cipher-speed test, based mostly on a patch from
1723 - (dtucker) [auth.c configure.ac platform.c platform.h] Accept uid 2 ("bin")
1724 in addition to root as an owner of system directories on AIX and HP-UX.
1728 - (dtucker) [INSTALL] Bump documented autoconf version to what we're
1730 - (dtucker) [defines.h] Remove SIZEOF_CHAR bits since the test for it
1731 was removed in configure.ac rev 1.481 as it was redundant.
1732 - (tim) [Makefile.in] Add another missing $(EXEEXT) I should have seen 3 days
1734 - (djm) [configure.ac] Add a timeout to the select/rlimit test to give it a
1735 chance to complete on broken systems; ok dtucker@
1738 - (dtucker) [regress/forward-control.sh] Wait longer for the forwarding
1739 connection to start so that the test works on slower machines.
1740 - (dtucker) [configure.ac] test that we can set number of file descriptors
1741 to zero with setrlimit before enabling the rlimit sandbox. This affects
1742 (at least) HPUX 11.11.
1745 - (djm) [regress/modpipe.c] Compilation fix for AIX and parsing fix for
1746 HP/UX. Spotted by Kevin Brott
1747 - (dtucker) [configure.ac] use "=" for shell test and not "==". Spotted by
1748 Amit Kulkarni and Kevin Brott.
1749 - (dtucker) [Makefile.in] Remove trailing "\" on PATHS, which caused obscure
1750 build breakage on (at least) HP-UX 11.11. Found by Amit Kulkarni and Kevin
1752 - (tim) [Makefile.in] Add missing $(EXEEXT). Found by Roumen Petrov.
1755 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
1756 [contrib/suse/openssh.spec] Crank version numbers
1757 - (tim) [regress/forward-control.sh] use sh in case login shell is csh.
1758 - (tim) [regress/integrity.sh] shell portability fix.
1759 - (tim) [regress/integrity.sh] keep old solaris awk from hanging.
1760 - (tim) [regress/krl.sh] keep old solaris awk from hanging.
1764 - djm@cvs.openbsd.org 2013/02/20 08:27:50
1766 Add an option to modpipe that warns if the modification offset it not
1767 reached in it's stream and turn it on for t-integrity. This should catch
1768 cases where the session is not fuzzed for being too short (cf. my last
1770 - (djm) [regress/integrity.sh] Run sshd via $SUDO; fixes tinderbox breakage
1771 for UsePAM=yes configuration
1774 - (dtucker) [configure.ac ssh-gss.h] bz#2073: additional #includes needed
1775 to use Solaris native GSS libs. Patch from Pierre Ossman.
1778 - (djm) [configure.ac includes.h loginrec.c mux.c sftp.c] Prefer
1779 bsd/libutil.h to libutil.h to avoid deprecation warnings on Ubuntu.
1783 - (dtucker) [Makefile.in configure.ac] bz#2072: don't link krb5 libs to
1784 ssh(1) since they're not needed. Patch from Pierre Ossman, ok djm.
1785 - (dtucker) [configure.ac] bz#2073: look for Solaris' differently-named
1786 libgss too. Patch from Pierre Ossman, ok djm.
1787 - (djm) [configure.ac sandbox-seccomp-filter.c] Support for Linux
1788 seccomp-bpf sandbox on ARM. Patch from shawnlandden AT gmail.com;
1792 - (tim) [regress/forward-control.sh] shell portability fix.
1795 - (tim) [regress/cipher-speed.sh regress/try-ciphers.sh] shell portability fix.
1796 - (tim) [krl.c Makefile.in regress/Makefile regress/modpipe.c] remove unneeded
1797 err.h include from krl.c. Additional portability fixes for modpipe. OK djm
1799 - djm@cvs.openbsd.org 2013/02/20 08:27:50
1800 [regress/integrity.sh regress/modpipe.c]
1801 Add an option to modpipe that warns if the modification offset it not
1802 reached in it's stream and turn it on for t-integrity. This should catch
1803 cases where the session is not fuzzed for being too short (cf. my last
1805 - djm@cvs.openbsd.org 2013/02/20 08:29:27
1807 s/Id/OpenBSD/ in RCS tag
1811 - djm@cvs.openbsd.org 2013/02/18 22:26:47
1813 crank the offset yet again; it was still fuzzing KEX one of Darren's
1814 portable test hosts at 2800
1815 - djm@cvs.openbsd.org 2013/02/19 02:14:09
1817 oops, forgot to increase the output of the ssh command to ensure that
1818 we actually reach $offset
1819 - (djm) [regress/integrity.sh] Skip SHA2-based MACs on configurations that
1820 lack support for SHA2.
1821 - (djm) [regress/modpipe.c] Add local err, and errx functions for platforms
1822 that do not have them.
1826 - djm@cvs.openbsd.org 2013/02/17 23:16:55
1828 make the ssh command generates some output to ensure that there are at
1829 least offset+tries bytes in the stream.
1833 - djm@cvs.openbsd.org 2013/02/16 06:08:45
1835 make sure the fuzz offset is actually past the end of KEX for all KEX
1836 types. diffie-hellman-group-exchange-sha256 requires an offset around
1837 2700. Noticed via test failures in portable OpenSSH on platforms that
1838 lack ECC and this the more byte-frugal ECDH KEX algorithms.
1841 - (djm) [contrib/suse/rc.sshd] Use SSHD_BIN consistently; bz#2056 from
1843 - (dtucker) [configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
1844 Use getpgrp() if we don't have getpgid() (old BSDs, maybe others).
1845 - (dtucker) [configure.ac openbsd-compat/Makefile.in openbsd-compat/strtoull.c
1846 openbsd-compat/openbsd-compat.h] Add strtoull to compat library for
1847 platforms that don't have it.
1848 - (dtucker) [openbsd-compat/openbsd-compat.h] Add prototype for strtoul,
1849 group strto* function prototypes together.
1850 - (dtucker) [openbsd-compat/bsd-misc.c] Handle the case where setpgrp() takes
1851 an argument. Pointed out by djm.
1852 - (djm) OpenBSD CVS Sync
1853 - djm@cvs.openbsd.org 2013/02/14 21:35:59
1855 Correct error message that had a typo and was logging the wrong thing;
1856 patch from Petr Lautrbach
1857 - dtucker@cvs.openbsd.org 2013/02/15 00:21:01
1859 Warn more loudly if an IdentityFile provided by the user cannot be read.
1863 - (djm) [regress/krl.sh] Don't use ecdsa keys in environment that lack ECC.
1864 - (djm) [regress/krl.sh] typo; found by Iain Morgan
1865 - (djm) [regress/integrity.sh] Start fuzzing from offset 2500 (instead
1866 of 2300) to avoid clobbering the end of (non-MAC'd) KEX. Verified by
1870 - (djm) OpenBSD CVS Sync
1871 - djm@cvs.openbsd.org 2013/01/24 21:45:37
1873 fix handling of (unused) KRL signatures; skip string in correct buffer
1874 - djm@cvs.openbsd.org 2013/01/24 22:08:56
1876 skip serial lookup when cert's serial number is zero
1877 - krw@cvs.openbsd.org 2013/01/25 05:00:27
1879 Revert last. Breaks due to likely typo. Let djm@ fix later.
1881 - djm@cvs.openbsd.org 2013/01/25 10:22:19
1883 redo last commit without the vi-vomit that snuck in:
1884 skip serial lookup when cert's serial number is zero
1885 (now with 100% better comment)
1886 - djm@cvs.openbsd.org 2013/01/26 06:11:05
1887 [Makefile.in acss.c acss.h cipher-acss.c cipher.c]
1888 [openbsd-compat/openssl-compat.h]
1889 remove ACSS, now that it is gone from libcrypto too
1890 - djm@cvs.openbsd.org 2013/01/27 10:06:12
1892 actually use the xrealloc() return value; spotted by xi.wang AT gmail.com
1893 - dtucker@cvs.openbsd.org 2013/02/06 00:20:42
1894 [servconf.c sshd_config sshd_config.5]
1895 Change default of MaxStartups to 10:30:100 to start doing random early
1896 drop at 10 connections up to 100 connections. This will make it harder
1897 to DoS as CPUs have come a long way since the original value was set
1898 back in 2000. Prompted by nion at debian org, ok markus@
1899 - dtucker@cvs.openbsd.org 2013/02/06 00:22:21
1901 Fix comment, from jfree.e1 at gmail
1902 - djm@cvs.openbsd.org 2013/02/08 00:41:12
1904 fix NULL deref when built without libedit and control characters
1905 entered as command; debugging and patch from Iain Morgan an
1906 Loganaden Velvindron in bz#1956
1907 - markus@cvs.openbsd.org 2013/02/10 21:19:34
1910 - djm@cvs.openbsd.org 2013/02/10 23:32:10
1912 append to moduli file when screening candidates rather than overwriting.
1913 allows resumption of interrupted screen; patch from Christophe Garault
1914 in bz#1957; ok dtucker@
1915 - djm@cvs.openbsd.org 2013/02/10 23:35:24
1917 record "Received disconnect" messages at ERROR rather than INFO priority,
1918 since they are abnormal and result in a non-zero ssh exit status; patch
1919 from Iain Morgan in bz#2057; ok dtucker@
1920 - dtucker@cvs.openbsd.org 2013/02/11 21:21:58
1922 Add openssl version to debug output similar to the client. ok markus@
1923 - djm@cvs.openbsd.org 2013/02/11 23:58:51
1924 [regress/try-ciphers.sh]
1925 remove acss here too
1926 - (djm) [regress/try-ciphers.sh] clean up CVS merge botch
1929 - (djm) [configure.ac openbsd-compat/openssl-compat.h] Repair build on old
1930 libcrypto that lacks EVP_CIPHER_CTX_ctrl
1933 - (djm) [contrib/redhat/sshd.init] treat RETVAL as an integer;
1934 patch from Iain Morgan in bz#2059
1935 - (dtucker) [configure.ac openbsd-compat/sys-tree.h] Test if compiler allows
1936 __attribute__ on return values and work around if necessary. ok djm@
1939 - (djm) [configure.ac] Don't probe seccomp capability of running kernel
1940 at configure time; the seccomp sandbox will fall back to rlimit at
1941 runtime anyway. Patch from plautrba AT redhat.com in bz#2011
1944 - (djm) [cipher-aes.c cipher-ctr.c openbsd-compat/openssl-compat.h]
1945 Move prototypes for replacement ciphers to openssl-compat.h; fix EVP
1946 prototypes for openssl-1.0.0-fips.
1947 - (djm) OpenBSD CVS Sync
1948 - jmc@cvs.openbsd.org 2013/01/18 07:57:47
1951 - jmc@cvs.openbsd.org 2013/01/18 07:59:46
1953 -u before -V in usage();
1954 - jmc@cvs.openbsd.org 2013/01/18 08:00:49
1957 - jmc@cvs.openbsd.org 2013/01/18 08:39:04
1959 add -Q to the options list; ok djm
1960 - jmc@cvs.openbsd.org 2013/01/18 21:48:43
1962 command-line (adj.) -> command line (n.);
1963 - jmc@cvs.openbsd.org 2013/01/19 07:13:25
1965 fix some formatting; ok djm
1966 - markus@cvs.openbsd.org 2013/01/19 12:34:55
1968 RB_INSERT does not remove existing elments; ok djm@
1969 - (djm) [openbsd-compat/sys-tree.h] Sync with OpenBSD. krl.c needs newer
1971 - (djm) [regress/krl.sh] replacement for jot; most platforms lack it
1974 - (djm) OpenBSD CVS Sync
1975 - djm@cvs.openbsd.org 2013/01/17 23:00:01
1976 [auth.c key.c key.h ssh-keygen.1 ssh-keygen.c sshd_config.5]
1977 [krl.c krl.h PROTOCOL.krl]
1978 add support for Key Revocation Lists (KRLs). These are a compact way to
1979 represent lists of revoked keys and certificates, taking as little as
1980 a single bit of incremental cost to revoke a certificate by serial number.
1981 KRLs are loaded via the existing RevokedKeys sshd_config option.
1982 feedback and ok markus@
1983 - djm@cvs.openbsd.org 2013/01/18 00:45:29
1984 [regress/Makefile regress/cert-userkey.sh regress/krl.sh]
1985 Tests for Key Revocation Lists (KRLs)
1986 - djm@cvs.openbsd.org 2013/01/18 03:00:32
1988 fix KRL generation bug for list sections
1991 - (djm) [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh]
1992 check for GCM support before testing GCM ciphers.
1995 - (djm) OpenBSD CVS Sync
1996 - djm@cvs.openbsd.org 2013/01/12 11:22:04
1998 improve error message for integrity failure in AES-GCM modes; ok markus@
1999 - djm@cvs.openbsd.org 2013/01/12 11:23:53
2000 [regress/cipher-speed.sh regress/integrity.sh regress/try-ciphers.sh]
2001 test AES-GCM modes; feedback markus@
2002 - (djm) [regress/integrity.sh] repair botched merge
2005 - (djm) OpenBSD CVS Sync
2006 - dtucker@cvs.openbsd.org 2012/12/14 05:26:43
2008 use correct string in error message; from rustybsd at gmx.fr
2009 - djm@cvs.openbsd.org 2013/01/02 00:32:07
2010 [clientloop.c mux.c]
2011 channel_setup_local_fwd_listener() returns 0 on failure, not -ve
2012 bz#2055 reported by mathieu.lacage AT gmail.com
2013 - djm@cvs.openbsd.org 2013/01/02 00:33:49
2015 correct format description for SSH_AGENTC_ADD_RSA_ID_CONSTRAINED
2016 bz#2051 from david AT lechnology.com
2017 - djm@cvs.openbsd.org 2013/01/03 05:49:36
2019 add a couple of ServerOptions members that should be copied to the privsep
2020 child (for consistency, in this case they happen only to be accessed in
2021 the monitor); ok dtucker@
2022 - djm@cvs.openbsd.org 2013/01/03 12:49:01
2024 fix description of MAC calculation for EtM modes; ok markus@
2025 - djm@cvs.openbsd.org 2013/01/03 12:54:49
2026 [sftp-server.8 sftp-server.c]
2027 allow specification of an alternate start directory for sftp-server(8)
2028 "I like this" markus@
2029 - djm@cvs.openbsd.org 2013/01/03 23:22:58
2031 allow fingerprinting of keys hosted in PKCS#11 tokens: ssh-keygen -lD ...
2033 - jmc@cvs.openbsd.org 2013/01/04 19:26:38
2034 [sftp-server.8 sftp-server.c]
2035 sftp-server.8: add argument name to -d
2036 sftp-server.c: add -d to usage()
2038 - markus@cvs.openbsd.org 2013/01/08 18:49:04
2039 [PROTOCOL authfile.c cipher.c cipher.h kex.c kex.h monitor_wrap.c]
2040 [myproposal.h packet.c ssh_config.5 sshd_config.5]
2041 support AES-GCM as defined in RFC 5647 (but with simpler KEX handling)
2042 ok and feedback djm@
2043 - djm@cvs.openbsd.org 2013/01/09 05:40:17
2045 correctly initialise fingerprint type for fingerprinting PKCS#11 keys
2046 - (djm) [cipher.c configure.ac openbsd-compat/openssl-compat.h]
2047 Fix merge botch, automatically detect AES-GCM in OpenSSL, move a little
2048 cipher compat code to openssl-compat.h
2051 - (dtucker) [Makefile.in] Add some scaffolding so that the new regress
2052 tests will work with VPATH directories.
2055 - (djm) OpenBSD CVS Sync
2056 - markus@cvs.openbsd.org 2012/12/12 16:45:52
2058 reset incoming_packet buffer for each new packet in EtM-case, too;
2059 this happens if packets are parsed only parially (e.g. ignore
2060 messages sent when su/sudo turn off echo); noted by sthen/millert
2061 - naddy@cvs.openbsd.org 2012/12/12 16:46:10
2063 use OpenSSL's EVP_aes_{128,192,256}_ctr() API and remove our hand-rolled
2064 counter mode code; ok djm@
2065 - (djm) [configure.ac cipher-ctr.c] Adapt EVP AES CTR change to retain our
2066 compat code for older OpenSSL
2067 - (djm) [cipher.c] Fix missing prototype for compat code
2070 - (djm) OpenBSD CVS Sync
2071 - markus@cvs.openbsd.org 2012/12/11 22:16:21
2073 drain the log messages after receiving the keystate from the unpriv
2074 child. otherwise it might block while sending. ok djm@
2075 - markus@cvs.openbsd.org 2012/12/11 22:31:18
2076 [PROTOCOL authfile.c cipher.c cipher.h kex.h mac.c myproposal.h]
2077 [packet.c ssh_config.5 sshd_config.5]
2078 add encrypt-then-mac (EtM) modes to openssh by defining new mac algorithms
2079 that change the packet format and compute the MAC over the encrypted
2080 message (including the packet size) instead of the plaintext data;
2081 these EtM modes are considered more secure and used by default.
2082 feedback and ok djm@
2083 - sthen@cvs.openbsd.org 2012/12/11 22:51:45
2085 fix typo, s/tem/etm in hmac-ripemd160-tem. ok markus@
2086 - markus@cvs.openbsd.org 2012/12/11 22:32:56
2087 [regress/try-ciphers.sh]
2089 - markus@cvs.openbsd.org 2012/12/11 22:42:11
2090 [regress/Makefile regress/modpipe.c regress/integrity.sh]
2091 test the integrity of the packets; with djm@
2092 - markus@cvs.openbsd.org 2012/12/11 23:12:13
2094 add hmac-ripemd160-etm@openssh.com
2095 - (djm) [mac.c] fix merge botch
2096 - (djm) [regress/Makefile regress/integrity.sh] Make the integrity.sh test
2097 work on platforms without 'jot'
2098 - (djm) [regress/integrity.sh] Fix awk quoting, packet length skip
2099 - (djm) [regress/Makefile] fix t-exec rule
2102 - (dtucker) OpenBSD CVS Sync
2103 - dtucker@cvs.openbsd.org 2012/12/06 06:06:54
2104 [regress/keys-command.sh]
2105 Fix some problems with the keys-command test:
2106 - use string comparison rather than numeric comparison
2107 - check for existing KEY_COMMAND file and don't clobber if it exists
2108 - clean up KEY_COMMAND file if we do create it.
2109 - check that KEY_COMMAND is executable (which it won't be if eg /var/run
2112 - jmc@cvs.openbsd.org 2012/12/03 08:33:03
2113 [ssh-add.1 sshd_config.5]
2115 - markus@cvs.openbsd.org 2012/12/05 15:42:52
2117 prevent double-free of comment; ok djm@
2118 - dtucker@cvs.openbsd.org 2012/12/07 01:51:35
2120 Cast signal to int for logging. A no-op on openbsd (they're always ints)
2121 but will prevent warnings in portable. ok djm@
2124 - (tim) [defines.h] Some platforms are missing ULLONG_MAX. Feedback djm@.
2127 - (djm) [openbsd-compat/sys-queue.h] Sync with OpenBSD to get
2128 TAILQ_FOREACH_SAFE needed for upcoming changes.
2129 - (djm) OpenBSD CVS Sync
2130 - djm@cvs.openbsd.org 2012/12/02 20:26:11
2131 [ssh_config.5 sshconnect2.c]
2132 Make IdentitiesOnly apply to keys obtained from a PKCS11Provider.
2133 This allows control of which keys are offered from tokens using
2134 IdentityFile. ok markus@
2135 - djm@cvs.openbsd.org 2012/12/02 20:42:15
2136 [ssh-add.1 ssh-add.c]
2137 make deleting explicit keys "ssh-add -d" symmetric with adding keys -
2138 try to delete the corresponding certificate too and respect the -k option
2139 to allow deleting of the key only; feedback and ok markus@
2140 - djm@cvs.openbsd.org 2012/12/02 20:46:11
2141 [auth-options.c channels.c servconf.c servconf.h serverloop.c session.c]
2143 make AllowTcpForwarding accept "local" and "remote" in addition to its
2144 current "yes"/"no" to allow the server to specify whether just local or
2145 remote TCP forwarding is enabled. ok markus@
2146 - dtucker@cvs.openbsd.org 2012/10/05 02:20:48
2147 [regress/cipher-speed.sh regress/try-ciphers.sh]
2148 Add umac-128@openssh.com to the list of MACs to be tested
2149 - djm@cvs.openbsd.org 2012/10/19 05:10:42
2150 [regress/cert-userkey.sh]
2151 include a serial number when generating certs
2152 - djm@cvs.openbsd.org 2012/11/22 22:49:30
2153 [regress/Makefile regress/keys-command.sh]
2154 regress for AuthorizedKeysCommand; hints from markus@
2155 - djm@cvs.openbsd.org 2012/12/02 20:47:48
2156 [Makefile regress/forward-control.sh]
2157 regress for AllowTcpForwarding local/remote; ok markus@
2158 - djm@cvs.openbsd.org 2012/12/03 00:14:06
2159 [auth2-chall.c ssh-keygen.c]
2160 Fix compilation with -Wall -Werror (trivial type fixes)
2161 - (djm) [configure.ac] Turn on -g for gcc compilers. Helps pre-installation
2162 debugging. ok dtucker@
2163 - (djm) [configure.ac] Revert previous. configure.ac already does this
2167 - (djm) OpenBSD CVS Sync
2168 - djm@cvs.openbsd.org 2012/11/14 02:24:27
2170 fix username passed to helper program
2171 prepare stdio fds before closefrom()
2173 - djm@cvs.openbsd.org 2012/11/14 02:32:15
2175 allow the full range of unsigned serial numbers; 'fine' deraadt@
2176 - djm@cvs.openbsd.org 2012/12/02 20:34:10
2177 [auth.c auth.h auth1.c auth2-chall.c auth2-gss.c auth2-jpake.c auth2.c]
2178 [monitor.c monitor.h]
2179 Fixes logging of partial authentication when privsep is enabled
2180 Previously, we recorded "Failed xxx" since we reset authenticated before
2181 calling auth_log() in auth2.c. This adds an explcit "Partial" state.
2183 Add a "submethod" to auth_log() to report which submethod is used
2184 for keyboard-interactive.
2186 Fix multiple authentication when one of the methods is
2187 keyboard-interactive.
2190 - dtucker@cvs.openbsd.org 2012/10/05 02:05:30
2191 [regress/multiplex.sh]
2192 Use 'kill -0' to test for the presence of a pid since it's more portable
2195 - (djm) OpenBSD CVS Sync
2196 - eric@cvs.openbsd.org 2011/11/28 08:46:27
2200 - jmc@cvs.openbsd.org 2012/09/26 17:34:38
2202 last stage of rfc changes, using consistent Rs/Re blocks, and moving the
2203 references into a STANDARDS section;
2206 - (dtucker) [uidswap.c openbsd-compat/Makefile.in
2207 openbsd-compat/bsd-setres_id.c openbsd-compat/bsd-setres_id.h
2208 openbsd-compat/openbsd-compat.h] Move the fallback code for setting uids
2209 and gids from uidswap.c to the compat library, which allows it to work with
2210 the new setresuid calls in auth2-pubkey. with tim@, ok djm@
2211 - (dtucker) [auth2-pubkey.c] wrap paths.h in an ifdef for platforms that
2212 don't have it. Spotted by tim@.
2215 - (djm) OpenBSD CVS Sync
2216 - jmc@cvs.openbsd.org 2012/10/31 08:04:50
2219 - djm@cvs.openbsd.org 2012/11/04 10:38:43
2220 [auth2-pubkey.c sshd.c sshd_config.5]
2221 Remove default of AuthorizedCommandUser. Administrators are now expected
2222 to explicitly specify a user. feedback and ok markus@
2223 - djm@cvs.openbsd.org 2012/11/04 11:09:15
2224 [auth.h auth1.c auth2.c monitor.c servconf.c servconf.h sshd.c]
2226 Support multiple required authentication via an AuthenticationMethods
2227 option. This option lists one or more comma-separated lists of
2228 authentication method names. Successful completion of all the methods in
2229 any list is required for authentication to complete;
2230 feedback and ok markus@
2233 - (djm) OpenBSD CVS Sync
2234 - markus@cvs.openbsd.org 2012/10/05 12:34:39
2236 fix signed vs unsigned warning; feedback & ok: djm@
2237 - djm@cvs.openbsd.org 2012/10/30 21:29:55
2238 [auth-rsa.c auth.c auth.h auth2-pubkey.c servconf.c servconf.h]
2239 [sshd.c sshd_config sshd_config.5]
2240 new sshd_config option AuthorizedKeysCommand to support fetching
2241 authorized_keys from a command in addition to (or instead of) from
2242 the filesystem. The command is run as the target server user unless
2243 another specified via a new AuthorizedKeysCommandUser option.
2245 patch originally by jchadima AT redhat.com, reworked by me; feedback
2249 - (tim) [buildpkg.sh.in] Double up on some backslashes so they end up in
2250 the generated file as intended.
2253 - (dtucker) OpenBSD CVS Sync
2254 - djm@cvs.openbsd.org 2012/09/17 09:54:44
2257 - markus@cvs.openbsd.org 2012/09/17 13:04:11
2259 clear old keys on rekeing; ok djm
2260 - dtucker@cvs.openbsd.org 2012/09/18 10:36:12
2262 Add bounds check on sftp tab-completion. Part of a patch from from
2263 Jean-Marc Robert via tech@, ok djm
2264 - dtucker@cvs.openbsd.org 2012/09/21 10:53:07
2266 Fix improper handling of absolute paths when PWD is part of the completed
2267 path. Patch from Jean-Marc Robert via tech@, ok djm.
2268 - dtucker@cvs.openbsd.org 2012/09/21 10:55:04
2270 Fix handling of filenames containing escaped globbing characters and
2271 escape "#" and "*". Patch from Jean-Marc Robert via tech@, ok djm.
2272 - jmc@cvs.openbsd.org 2012/09/26 16:12:13
2274 last stage of rfc changes, using consistent Rs/Re blocks, and moving the
2275 references into a STANDARDS section;
2276 - naddy@cvs.openbsd.org 2012/10/01 13:59:51
2279 - djm@cvs.openbsd.org 2012/10/02 07:07:45
2281 fix -z option, broken in revision 1.215
2282 - markus@cvs.openbsd.org 2012/10/04 13:21:50
2283 [myproposal.h ssh_config.5 umac.h sshd_config.5 ssh.1 sshd.8 mac.c]
2284 add umac128 variant; ok djm@ at n2k12
2285 - dtucker@cvs.openbsd.org 2012/09/06 04:11:07
2286 [regress/try-ciphers.sh]
2287 Restore missing space. (Id sync only).
2288 - dtucker@cvs.openbsd.org 2012/09/09 11:51:25
2289 [regress/multiplex.sh]
2290 Add test for ssh -Ostop
2291 - dtucker@cvs.openbsd.org 2012/09/10 00:49:21
2292 [regress/multiplex.sh]
2293 Log -O cmd output to the log file and make logging consistent with the
2294 other tests. Test clean shutdown of an existing channel when testing
2296 - dtucker@cvs.openbsd.org 2012/09/10 01:51:19
2297 [regress/multiplex.sh]
2298 use -Ocheck and waiting for completions by PID to make multiplexing test
2299 less racy and (hopefully) more reliable on slow hardware.
2300 - [Makefile umac.c] Add special-case target to build umac128.o.
2301 - [umac.c] Enforce allowed umac output sizes. From djm@.
2302 - [Makefile.in] "Using $< in a non-suffix rule context is a GNUmake idiom".
2305 - (dtucker) OpenBSD CVS Sync
2306 - dtucker@cvs.openbsd.org 2012/09/13 23:37:36
2308 Fix comment line length
2309 - markus@cvs.openbsd.org 2012/09/14 16:51:34
2311 remove unused variable
2314 - (dtucker) OpenBSD CVS Sync
2315 - dtucker@cvs.openbsd.org 2012/09/06 09:50:13
2317 Make the escape command help (~?) context sensitive so that only commands
2318 that will work in the current session are shown. ok markus@
2319 - jmc@cvs.openbsd.org 2012/09/06 13:57:42
2321 missing letter in previous;
2322 - dtucker@cvs.openbsd.org 2012/09/07 00:30:19
2324 Print '^Z' instead of a raw ^Z when the sequence is not supported. ok djm@
2325 - dtucker@cvs.openbsd.org 2012/09/07 01:10:21
2327 Merge escape help text for ~v and ~V; ok djm@
2328 - dtucker@cvs.openbsd.org 2012/09/07 06:34:21
2330 when muxmaster is run with -N, make it shut down gracefully when a client
2331 sends it "-O stop" rather than hanging around (bz#1985). ok djm@
2334 - (dtucker) OpenBSD CVS Sync
2335 - jmc@cvs.openbsd.org 2012/08/15 18:25:50
2337 a little more info on certificate validity;
2338 requested by Ross L Richardson, and provided by djm
2339 - dtucker@cvs.openbsd.org 2012/08/17 00:45:45
2340 [clientloop.c clientloop.h mux.c]
2341 Force a clean shutdown of ControlMaster client sessions when the ~. escape
2342 sequence is used. This means that ~. should now work in mux clients even
2343 if the server is no longer responding. Found by tedu, ok djm.
2344 - djm@cvs.openbsd.org 2012/08/17 01:22:56
2346 add some comments about better handling first-KEX-follows notifications
2347 from the server. Nothing uses these right now. No binary change
2348 - djm@cvs.openbsd.org 2012/08/17 01:25:58
2350 print details of which host lines were deleted when using
2351 "ssh-keygen -R host"; ok markus@
2352 - djm@cvs.openbsd.org 2012/08/17 01:30:00
2353 [compat.c sshconnect.c]
2354 Send client banner immediately, rather than waiting for the server to
2355 move first for SSH protocol 2 connections (the default). Patch based on
2356 one in bz#1999 by tls AT panix.com, feedback dtucker@ ok markus@
2357 - dtucker@cvs.openbsd.org 2012/09/06 04:37:39
2358 [clientloop.c log.c ssh.1 log.h]
2359 Add ~v and ~V escape sequences to raise and lower the logging level
2360 respectively. Man page help from jmc, ok deraadt jmc
2363 - (dtucker) [moduli] Import new moduli file.
2366 - (djm) Release openssh-6.1
2369 - (dtucker) [openbsd-compat/bsd-cygwin_util.h] define WIN32_LEAN_AND_MEAN
2370 for compatibility with future mingw-w64 headers. Patch from vinschen at
2374 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2375 [contrib/suse/openssh.spec] Update version numbers
2378 - (djm) OpenBSD CVS Sync
2379 - jmc@cvs.openbsd.org 2012/07/06 06:38:03
2381 missing full stop in usage();
2382 - djm@cvs.openbsd.org 2012/07/10 02:19:15
2383 [servconf.c servconf.h sshd.c sshd_config]
2384 Turn on systrace sandboxing of pre-auth sshd by default for new installs
2385 by shipping a config that overrides the current UsePrivilegeSeparation=yes
2386 default. Make it easier to flip the default in the future by adding too.
2387 prodded markus@ feedback dtucker@ "get it in" deraadt@
2388 - dtucker@cvs.openbsd.org 2012/07/13 01:35:21
2390 handle long comments in config files better. bz#2025, ok markus
2391 - markus@cvs.openbsd.org 2012/07/22 18:19:21
2396 - (dtucker) Import regened moduli file.
2399 - (djm) [sandbox-seccomp-filter.c] fallback to rlimit if seccomp filter is
2400 not available. Allows use of sshd compiled on host with a filter-capable
2401 kernel on hosts that lack the support. bz#2011 ok dtucker@
2402 - (djm) [configure.ac] Recursively expand $(bindir) to ensure it has no
2403 unexpanded $(prefix) embedded. bz#2007 patch from nix-corp AT
2404 esperi.org.uk; ok dtucker@
2405 - (djm) OpenBSD CVS Sync
2406 - dtucker@cvs.openbsd.org 2012/07/06 00:41:59
2407 [moduli.c ssh-keygen.1 ssh-keygen.c]
2408 Add options to specify starting line number and number of lines to process
2409 when screening moduli candidates. This allows processing of different
2410 parts of a candidate moduli file in parallel. man page help jmc@, ok djm@
2411 - djm@cvs.openbsd.org 2012/07/06 01:37:21
2413 fix memory leak of passed-in environment variables and connection
2414 context when new session message is malformed; bz#2003 from Bert.Wesarg
2416 - djm@cvs.openbsd.org 2012/07/06 01:47:38
2418 move setting of tty_flag to after config parsing so RequestTTY options
2419 are correctly picked up. bz#1995 patch from przemoc AT gmail.com;
2423 - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] Add setlinebuf for
2424 platforms that don't have it. "looks good" tim@
2427 - (dtucker) [configure.ac] Detect platforms that can't use select(2) with
2428 setrlimit(RLIMIT_NOFILE, rl_zero) and disable the rlimit sandbox on those.
2429 - (dtucker) [configure.ac sandbox-rlimit.c] Test whether or not
2430 setrlimit(RLIMIT_FSIZE, rl_zero) and skip it if it's not supported. Its
2431 benefit is minor, so it's not worth disabling the sandbox if it doesn't
2435 - (dtucker) OpenBSD CVS Sync
2436 - naddy@cvs.openbsd.org 2012/06/29 13:57:25
2437 [ssh_config.5 sshd_config.5]
2438 match the documented MAC order of preference to the actual one;
2440 - markus@cvs.openbsd.org 2012/06/30 14:35:09
2441 [sandbox-systrace.c sshd.c]
2442 fix a during the load of the sandbox policies (child can still make
2443 the read-syscall and wait forever for systrace-answers) by replacing
2444 the read/write synchronisation with SIGSTOP/SIGCONT;
2445 report and help hshoexer@; ok djm@, dtucker@
2446 - dtucker@cvs.openbsd.org 2012/07/02 08:50:03
2448 set interactive ToS for forwarded X11 sessions. ok djm@
2449 - dtucker@cvs.openbsd.org 2012/07/02 12:13:26
2450 [ssh-pkcs11-helper.c sftp-client.c]
2451 fix a couple of "assigned but not used" warnings. ok markus@
2452 - dtucker@cvs.openbsd.org 2012/07/02 14:37:06
2453 [regress/connect-privsep.sh]
2454 remove exit from end of test since it prevents reporting failure
2455 - (dtucker) [regress/reexec.sh regress/sftp-cmds.sh regress/test-exec.sh]
2456 Move cygwin detection to test-exec and use to skip reexec test on cygwin.
2457 - (dtucker) [regress/test-exec.sh] Correct uname for cygwin/w2k.
2461 - dtucker@cvs.openbsd.org 2012/06/21 00:16:07
2463 fix strlcpy truncation check. from carsten at debian org, ok markus
2464 - dtucker@cvs.openbsd.org 2012/06/22 12:30:26
2465 [monitor.c sshconnect2.c]
2466 remove dead code following 'for (;;)' loops.
2467 From Steve.McClellan at radisys com, ok markus@
2468 - dtucker@cvs.openbsd.org 2012/06/22 14:36:33
2470 Remove unused variable leftover from tab-completion changes.
2471 From Steve.McClellan at radisys com, ok markus@
2472 - dtucker@cvs.openbsd.org 2012/06/26 11:02:30
2473 [sandbox-systrace.c]
2474 Add mquery to the list of allowed syscalls for "UsePrivilegeSeparation
2475 sandbox" since malloc now uses it. From johnw.mail at gmail com.
2476 - dtucker@cvs.openbsd.org 2012/06/28 05:07:45
2477 [mac.c myproposal.h ssh_config.5 sshd_config.5]
2478 Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed
2479 from draft6 of the spec and will not be in the RFC when published. Patch
2480 from mdb at juniper net via bz#2023, ok markus.
2481 - naddy@cvs.openbsd.org 2012/06/29 13:57:25
2482 [ssh_config.5 sshd_config.5]
2483 match the documented MAC order of preference to the actual one; ok dtucker@
2484 - dtucker@cvs.openbsd.org 2012/05/13 01:42:32
2485 [regress/addrmatch.sh]
2486 Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests
2487 to match. Feedback and ok djm@ markus@.
2488 - djm@cvs.openbsd.org 2012/06/01 00:47:35
2489 [regress/multiplex.sh regress/forwarding.sh]
2490 append to rather than truncate test log; bz#2013 from openssh AT
2492 - djm@cvs.openbsd.org 2012/06/01 00:52:52
2493 [regress/sftp-cmds.sh]
2494 don't delete .* on cleanup due to unintended env expansion; pointed out in
2495 bz#2014 by openssh AT roumenpetrov.info
2496 - dtucker@cvs.openbsd.org 2012/06/26 12:06:59
2497 [regress/connect-privsep.sh]
2498 test sandbox with every malloc option
2499 - dtucker@cvs.openbsd.org 2012/06/28 05:07:45
2500 [regress/try-ciphers.sh regress/cipher-speed.sh]
2501 Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed
2502 from draft6 of the spec and will not be in the RFC when published. Patch
2503 from mdb at juniper net via bz#2023, ok markus.
2504 - (dtucker) [myproposal.h] Remove trailing backslash to fix compile error.
2505 - (dtucker) [key.c] ifdef out sha256 key types on platforms that don't have
2506 the required functions in libcrypto.
2509 - (dtucker) [openbsd-compat/getrrsetbyname-ldns.c] bz #2022: prevent null
2510 pointer deref in the client when built with LDNS and using DNSSEC with a
2511 CNAME. Patch from gregdlg+mr at hochet info.
2514 - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as
2515 can logon as a service. Patch from vinschen at redhat com.
2518 - (djm) OpenBSD CVS Sync
2519 - djm@cvs.openbsd.org 2011/12/02 00:41:56
2521 fix bz#1948: ssh -f doesn't fork for multiplexed connection.
2523 - djm@cvs.openbsd.org 2011/12/04 23:16:12
2527 > date: 2011/12/02 00:41:56; author: djm; state: Exp; lines: +4 -1
2528 > fix bz#1948: ssh -f doesn't fork for multiplexed connection.
2530 it interacts badly with ControlPersist
2531 - djm@cvs.openbsd.org 2012/01/07 21:11:36
2533 fix double-free in new session handler
2535 - djm@cvs.openbsd.org 2012/05/23 03:28:28
2536 [dns.c dns.h key.c key.h ssh-keygen.c]
2537 add support for RFC6594 SSHFP DNS records for ECDSA key types.
2538 patch from bugzilla-m67 AT nulld.me in bz#1978; ok + tweak markus@
2539 (Original authors Ondřej Surý, Ondřej Caletka and Daniel Black)
2540 - djm@cvs.openbsd.org 2012/06/01 00:49:35
2542 correct types of port numbers (integers, not strings); bz#2004 from
2543 bert.wesarg AT googlemail.com
2544 - djm@cvs.openbsd.org 2012/06/01 01:01:22
2546 fix memory leak when mux socket creation fails; bz#2002 from bert.wesarg
2548 - dtucker@cvs.openbsd.org 2012/06/18 11:43:53
2550 correct sizeof usage. patch from saw at online.de, ok deraadt
2551 - dtucker@cvs.openbsd.org 2012/06/18 11:49:58
2553 RSA instead of DSA twice. From Steve.McClellan at radisys com
2554 - dtucker@cvs.openbsd.org 2012/06/18 12:07:07
2556 Remove mention of 'three' key files since there are now four. From
2557 Steve.McClellan at radisys com.
2558 - dtucker@cvs.openbsd.org 2012/06/18 12:17:18
2560 Clarify description of -W. Noted by Steve.McClellan at radisys com,
2562 - markus@cvs.openbsd.org 2012/06/19 18:25:28
2563 [servconf.c servconf.h sshd_config.5]
2564 sshd_config: extend Match to allow AcceptEnv and {Allow,Deny}{Users,Groups}
2565 this allows 'Match LocalPort 1022' combined with 'AllowUser bauer'
2566 ok djm@ (back in March)
2567 - jmc@cvs.openbsd.org 2012/06/19 21:35:54
2569 tweak previous; ok markus
2570 - djm@cvs.openbsd.org 2012/06/20 04:42:58
2571 [clientloop.c serverloop.c]
2572 initialise accept() backoff timer to avoid EINVAL from select(2) in
2576 - (dtucker) [configure.ac] bz#2010: fix non-portable shell construct. Patch
2577 from cjwatson at debian org.
2578 - (dtucker) [configure.ac contrib/Makefile] bz#1996: use AC_PATH_TOOL to find
2579 pkg-config so it does the right thing when cross-compiling. Patch from
2580 cjwatson at debian org.
2581 - (dtucker) OpenBSD CVS Sync
2582 - dtucker@cvs.openbsd.org 2012/05/13 01:42:32
2583 [servconf.h servconf.c sshd.8 sshd.c auth.c sshd_config.5]
2584 Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests
2585 to match. Feedback and ok djm@ markus@.
2586 - dtucker@cvs.openbsd.org 2012/05/19 06:30:30
2588 Document PermitOpen none. bz#2001, patch from Loganaden Velvindron
2591 - (dtucker) [configure.ac] Include <sys/param.h> rather than <sys/types.h>
2592 to fix building on some plaforms. Fom bowman at math utah edu and
2596 - (dtucker) [regress/addrmatch.sh] skip tests when running on a non-ipv6
2597 platform rather than exiting early, so that we still clean up and return
2598 success or failure to test-exec.sh
2601 - (djm) [auth-passwd.c] Handle crypt() returning NULL; from Paul Wouters
2603 - (djm) [auth-krb5.c] Save errno across calls that might modify it;
2608 - djm@cvs.openbsd.org 2012/04/23 08:18:17
2610 fix function proto/source mismatch
2614 - djm@cvs.openbsd.org 2012/02/29 11:21:26
2616 allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@
2617 - guenther@cvs.openbsd.org 2012/03/15 03:10:27
2619 root should always be excluded from the test for /etc/nologin instead
2620 of having it always enforced even when marked as ignorenologin. This
2621 regressed when the logic was incompletely flipped around in rev 1.251
2623 - djm@cvs.openbsd.org 2012/03/28 07:23:22
2625 explain certificate extensions/crit split rationale. Mention requirement
2626 that each appear at most once per cert.
2627 - dtucker@cvs.openbsd.org 2012/03/29 23:54:36
2628 [channels.c channels.h servconf.c]
2629 Add PermitOpen none option based on patch from Loganaden Velvindron
2631 - djm@cvs.openbsd.org 2012/04/11 13:16:19
2632 [channels.c channels.h clientloop.c serverloop.c]
2633 don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a
2634 while; ok deraadt@ markus@
2635 - djm@cvs.openbsd.org 2012/04/11 13:17:54
2637 Support "none" as an argument for AuthorizedPrincipalsFile to indicate
2638 no file should be read.
2639 - djm@cvs.openbsd.org 2012/04/11 13:26:40
2641 don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a
2642 while; ok deraadt@ markus@
2643 - djm@cvs.openbsd.org 2012/04/11 13:34:17
2644 [ssh-keyscan.1 ssh-keyscan.c]
2645 now that sshd defaults to offering ECDSA keys, ssh-keyscan should also
2646 look for them by default; bz#1971
2647 - djm@cvs.openbsd.org 2012/04/12 02:42:32
2648 [servconf.c servconf.h sshd.c sshd_config sshd_config.5]
2649 VersionAddendum option to allow server operators to append some arbitrary
2650 text to the SSH-... banner; ok deraadt@ "don't care" markus@
2651 - djm@cvs.openbsd.org 2012/04/12 02:43:55
2652 [sshd_config sshd_config.5]
2653 mention AuthorizedPrincipalsFile=none default
2654 - djm@cvs.openbsd.org 2012/04/20 03:24:23
2656 setlinebuf(3) is more readable than setvbuf(.., _IOLBF, ...)
2657 - jmc@cvs.openbsd.org 2012/04/20 16:26:22
2659 use "brackets" instead of "braces", for consistency;
2662 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
2663 [contrib/suse/openssh.spec] Update for release 6.0
2664 - (djm) [README] Update URL to release notes.
2665 - (djm) Release openssh-6.0