CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/09/29 20:56:40
Modified files:
. : 76.html
Log message:
openssh
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/26 19:05:54
Modified files:
regress/usr.bin/ssh: cfginclude.sh cfgmatch.sh servcfginclude.sh
Log message:
test some more Match syntax, including criteria=arg and negations
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/26 17:55:08
Modified files:
usr.bin/ssh: readconf.c
Log message:
fix previous change to ssh_config Match, which broken on negated
Matches; spotted by phessler@ ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/24 19:24:04
Modified files:
usr.bin/ssh: misc.c misc.h readconf.c servconf.c
Log message:
fix regression introduced when I switched the "Match" criteria tokeniser
to a more shell-like one. Appare
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/23 20:28:17
Modified files:
usr.bin/ssh: ssh-agent.c
Log message:
some extra paranoia, reminded by jsg@
CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/09/19 17:58:58
Modified files:
build : Makefile
build/mirrors : openssh-ftp.html.head
openssh: ftp.html index.html openbsd.html
releasenotes.h
CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/09/19 17:58:29
Added files:
openssh/txt: release-9.9
Log message:
OpenSSH 9.9 release notes
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/19 16:17:44
Modified files:
usr.bin/ssh: version.h
Log message:
openssh-9.9
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/15 23:37:05
Modified files:
usr.bin/ssh: sntrup761.c sntrup761.sh
Log message:
use 64 bit math to avoid signed underflow. upstream code relies on
using -fwrapv to provide defined over/underflow b
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 21:09:44
Modified files:
usr.bin/ssh: servconf.c
Log message:
bad whitespace in config dump output
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 20:20:51
Modified files:
usr.bin/ssh: kexsntrup761x25519.c sntrup761.c sntrup761.sh
Log message:
update the Streamlined NTRU Prime code from the "ref" implementation
in SUPERCOP 20201130 to th
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 19:19:56
Modified files:
usr.bin/ssh: sshd.8
Log message:
document Match invalid-user
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 19:18:26
Modified files:
usr.bin/ssh: auth.c servconf.c servconf.h sshd_config.5
Log message:
add a "Match invalid-user" predicate to sshd_config Match options.
This allows writing Match cond
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 19:11:26
Modified files:
usr.bin/ssh: servconf.c servconf.h srclimit.c srclimit.h
sshd.c sshd_config.5
Log message:
Add a "refuseconnection" penalty class to sshd_con
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 19:09:40
Modified files:
usr.bin/ssh: monitor.c servconf.c servconf.h srclimit.h
sshd_config.5
Log message:
Add a sshd_config "RefuseConnection" option
If set, this
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 18:58:01
Modified files:
usr.bin/ssh: servconf.c
Log message:
switch sshd_config Match processing to the argv tokeniser too;
ok markus@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 18:57:36
Modified files:
usr.bin/ssh: readconf.c
Log message:
switch "Match" directive processing over to the argv string
tokeniser, making it possible to use shell-like quoting in Match
direc
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 18:47:01
Modified files:
usr.bin/ssh: ssh-keygen.c
Log message:
include pathname in some of the ssh-keygen passphrase prompts. Helps
the user know what's going on when ssh-keygen is invoked vi
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/14 18:41:18
Modified files:
usr.bin/ssh: monitor.c
Log message:
Do not apply authorized_keys options when signature verification
fails. Prevents restrictive key options being incorrectly applied
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/08 21:13:39
Modified files:
regress/usr.bin/ssh/unittests/kex: Makefile test_kex.c
Log message:
test mlkem768x25519-sha256
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/08 20:39:57
Modified files:
usr.bin/ssh: Makefile.inc kex-names.c kexgen.c monitor.c
myproposal.h ssh-keyscan.c ssh_api.c
sshconnect2.c sshd-sess
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/05 20:30:44
Modified files:
usr.bin/ssh: match.c ssh-add.c
Log message:
make parsing user@host consistently look for the last '@' in the
string rather than the first. This makes it possible to us
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/03 23:33:34
Modified files:
usr.bin/ssh: ssh-keygen.c ssh-keyscan.c sshkey.c sshkey.h
Log message:
be more strict in parsing key type names. Only allow shortnames (e.g
"rsa") in user-interface co
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/03 23:11:33
Modified files:
usr.bin/ssh: mlkem768.sh
Log message:
fix RCSID in output
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/02 23:58:56
Modified files:
regress/usr.bin/ssh: cfginclude.sh
Log message:
regression test for Include variable expansion
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/02 23:29:56
Modified files:
usr.bin/ssh: readconf.c ssh_config.5
Log message:
allow the "Include" directive to expand the same set of %-tokens
that "Match Exec" and environment variables.
ok dtu
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/02 06:18:35
Modified files:
usr.bin/ssh: sshd-session.c
Log message:
missing ifdef
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/09/02 06:13:56
Modified files:
usr.bin/ssh: Makefile.inc crypto_api.h kex-names.c kex.h
kexc25519.c kexgen.c monitor.c ssh-keyscan.c
ssh_api.c sshco
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/28 06:08:26
Modified files:
regress/usr.bin/ssh: rekey.sh
Log message:
fix test: -F is the argument to specify a non-default ssh_config,
not -f (this is sadly not a new bug)
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/22 17:11:30
Modified files:
usr.bin/ssh: kex-names.c kex.h myproposal.h ssh_config.5
sshd_config.5
Log message:
sntrup761x25519-sha512 now has an IANA codepoint assigned
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/20 05:10:04
Modified files:
usr.bin/ssh: sshkey.c
Log message:
actually use the length parameter that was passed in rather than a
constant (this makes no difference in practice because the length
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/17 02:35:04
Modified files:
usr.bin/ssh: ssh-keygen.1
Log message:
mention that ed25519 is the default key type generated and
clarify that rsa-sha2-512 is the default signature scheme when RSA
is
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/17 02:23:04
Modified files:
usr.bin/ssh: servconf.c
Log message:
fix minor memory leak in Subsystem option parsing;
from Antonio Larrosa via GHPR515
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/17 02:09:50
Modified files:
usr.bin/ssh: sshd.c
Log message:
fix swapping of source and destination addresses in some sshd log messages
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/14 18:52:23
Modified files:
regress/usr.bin/ssh/unittests/sshkey: common.c test_file.c
test_sshkey.c
Log message:
adapt to EVP_PKEY conversion
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/08/14 18:51:51
Modified files:
usr.bin/ssh: packet.c packet.h ssh-ecdsa-sk.c ssh-ecdsa.c
ssh-keygen.c ssh-pkcs11-client.c
ssh-pkcs11-helper.c ssh-pk
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/25 17:44:01
Modified files:
usr.bin/ssh: servconf.c
Log message:
reduce logingrace penalty.
A single forgotton login that times out should be below the penalty
threshold.
ok deraadt/claudio
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/25 16:40:08
Modified files:
usr.bin/ssh: channels.c channels.h mux.c nchan.c
Log message:
Fix proxy multiplexing (-O proxy) bug
If a mux started with ControlPersist then later has a forwarding a
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/18 22:33:36
Modified files:
regress/usr.bin/ssh: multiplex.sh
Log message:
test transfers in mux proxy mode too
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/17 19:47:27
Modified files:
usr.bin/ssh: ssh.1
Log message:
mention mux proxy mode
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/10 15:58:34
Modified files:
usr.bin/ssh: sshd_config.5
Log message:
correct keyword; from Yatao Su via GHPR509
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/07 21:04:34
Modified files:
usr.bin/ssh: sshd-session.c
Log message:
don't need return at end of void function
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/07/04 16:53:59
Modified files:
usr.bin/ssh: sshd_config.5 ssh_config.5
Log message:
fix grammar: "a pattern lists" -> "one or more pattern lists"
CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/07/01 02:46:45
Modified files:
openssh: security.html
Log message:
link to Qualys advisory
CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/07/01 02:25:35
Modified files:
build/openssh : releases.pl
openssh: releasenotes.html
Log message:
regen
CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/07/01 02:23:26
Modified files:
openssh/txt: release-9.8
Log message:
clarify
CVSROOT:/cvs
Module name:www
Changes by: d...@cvs.openbsd.org2024/07/01 01:57:17
Modified files:
build : Makefile
build/mirrors : openssh-ftp.html.head
build/openssh : releases.pl
openssh: ftp.html index.html openbsd.html
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/30 22:31:59
Modified files:
usr.bin/ssh: version.h
Log message:
openssh-9.8
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/30 22:31:17
Modified files:
usr.bin/ssh: clientloop.c
Log message:
when sending ObscureKeystrokeTiming chaff packets, we can't
rely on channel_did_enqueue to tell that there is data to send.
This
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/27 17:01:15
Modified files:
usr.bin/ssh: sshd.c
Log message:
delete obsolete comment
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/27 16:36:44
Modified files:
usr.bin/ssh: log.c log.h
Log message:
retire unused API
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/23 22:05:11
Modified files:
usr.bin/ssh: sshd_config.5
Log message:
mention SshdSessionPath option
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/19 18:18:05
Modified files:
usr.bin/ssh: srclimit.c
Log message:
stricter check for overfull tables in penalty record path
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/19 17:24:47
Modified files:
usr.bin/ssh: monitor_wrap.c
Log message:
put back reaping of preauth child process when writes from the monitor
fail. Not sure how this got lost in the avalanche of pa
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/17 02:30:29
Modified files:
usr.bin/ssh: Makefile.inc ssh-add.1 ssh-keygen.1
ssh-keyscan.1 ssh-keysign.8 ssh.1 ssh_config.5
sshd.8
Log message:
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/17 02:28:31
Modified files:
usr.bin/ssh: serverloop.c
Log message:
promote connection-closed messages from verbose to info log level;
they could be the only record of the connection terminating i
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/16 05:54:49
Modified files:
regress/usr.bin/ssh: penalty-expire.sh
Log message:
same treatment for this test
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/16 02:18:06
Modified files:
regress/usr.bin/ssh: penalty.sh
Log message:
penalty test is still a bit racy
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/14 21:59:10
Modified files:
regress/usr.bin/ssh: penalty.sh
Log message:
crank up penalty timeouts so this should work on even the slowest of
test builders
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/13 23:01:22
Modified files:
usr.bin/ssh: ssh_config.5 sshd_config.5
Log message:
clarify KEXAlgorithms supported vs available. Inspired by bz3701
from Colin Watson.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/13 22:43:11
Modified files:
regress/usr.bin/ssh: Makefile penalty.sh
Added files:
regress/usr.bin/ssh: penalty-expire.sh
Log message:
split the PerSourcePenalties test in two: one tests pena
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/13 18:26:12
Modified files:
regress/usr.bin/ssh: penalty.sh
Log message:
don't redirect stderr for ssh-keyscan we expect to succeed
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/13 18:25:25
Modified files:
usr.bin/ssh: ssh-keyscan.c
Log message:
make host/banner comments go to stderr instead of stdout, so they
are useful as comments without extra shell redirection and so
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/12 16:36:00
Modified files:
usr.bin/ssh: servconf.c servconf.h srclimit.c sshd_config.5
Log message:
split PerSourcePenalties address tracking. Previously it used one
shared table and overflow po
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 20:54:51
Modified files:
usr.bin/ssh: monitor_wrap.c
Log message:
reap preauth net child if it hangs up during privsep message send, not
just message receive
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 20:00:30
Modified files:
usr.bin/ssh: monitor_wrap.c
Log message:
reap the pre-auth [net] child if it hangs up during privsep message
sending, not just receiving
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 19:58:27
Modified files:
regress/usr.bin/ssh: test-exec.sh
Log message:
fix PIDFILE handling, broken for SUDO=doas in last commit here
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 19:23:25
Modified files:
usr.bin/ssh: srclimit.c
Log message:
a little more RB_TREE paranoia
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 19:22:25
Modified files:
usr.bin/ssh: srclimit.c
Log message:
fix off-by-one comparison for PerSourcePenalty overflow:deny-all mode
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 19:21:41
Modified files:
usr.bin/ssh: srclimit.c
Log message:
move tree init before possible early return
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 19:07:35
Modified files:
usr.bin/ssh: sshd_config.5
Log message:
update to mention that PerSourcePenalties default to being enabled
and document the default values for each parameter.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 18:44:52
Modified files:
usr.bin/ssh: monitor_wrap.c
Log message:
reap the [net] child if it hangs up while writing privsep message
payloads, not just the message header
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 18:40:21
Modified files:
usr.bin/ssh: monitor_wrap.c
Log message:
log waitpid() status for abnormal exits
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/10 18:36:20
Modified files:
usr.bin/ssh: servconf.c
Log message:
correct error message
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 14:25:48
Modified files:
usr.bin/ssh: servconf.c
Log message:
enable PerSourcePenalties by default.
ok markus
NB. if you run a sshd that accepts connections from behind large NAT
blocks, pro
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 14:20:43
Modified files:
usr.bin/ssh: sshd_config.5
Log message:
mention that PerSourcePenalties don't affect concurrent in-progress
connections.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 13:50:02
Modified files:
usr.bin/ssh: sshd.c
Log message:
disable stderr redirection before closing fds
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 13:49:25
Modified files:
regress/usr.bin/ssh: Makefile
Added files:
regress/usr.bin/ssh: penalty.sh
Log message:
regress test for PerSourcePenalties
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 13:48:40
Modified files:
regress/usr.bin/ssh: test-exec.sh
Log message:
make sure logs are saved from sshd run via start_sshd
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 13:47:48
Modified files:
regress/usr.bin/ssh: test-exec.sh
Log message:
simplify
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 12:48:13
Modified files:
regress/usr.bin/ssh: test-exec.sh
Log message:
prepare for PerSourcePenalties being enabled by default in future
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/06/06 11:15:26
Modified files:
usr.bin/ssh: misc.c misc.h monitor.c monitor_wrap.c
servconf.c servconf.h srclimit.c srclimit.h
sshd-session.c sshd.c
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/31 03:01:08
Modified files:
usr.bin/ssh: sshd.c
Log message:
warn when -r (deprecated option to disable re-exec) is passed
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/31 02:49:35
Modified files:
usr.bin/ssh: auth2-methods.c packet.c
Log message:
typos
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/26 19:52:26
Modified files:
usr.bin/ssh: auth2-methods.c
Log message:
don't need sys/queue.h here
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/21 22:20:00
Modified files:
regress/usr.bin/ssh: rekey.sh
Log message:
this test has been broken since 2014, and has been testing the same
key exchange algorithm repeatedly instead of testing all of
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/16 22:42:13
Modified files:
usr.bin/ssh: auth2-gss.c
Log message:
g/c unused variable
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/16 19:45:22
Modified files:
regress/usr.bin/ssh: test-exec.sh
Log message:
allow overriding the sshd-session binary path
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/16 19:17:40
Modified files:
usr.bin/ssh: servconf.c
Log message:
fix incorrect debug option name introduce in previous commit
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/16 18:30:24
Modified files:
usr.bin/ssh: Makefile Makefile.inc auth-rhosts.c auth.c
auth.h auth2-gss.c auth2-hostbased.c
auth2-kbdint.c auth2-non
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/16 18:22:02
src/usr.bin/ssh/sshd-session
Update of /cvs/src/usr.bin/ssh/sshd-session
In directory cvs.openbsd.org:/tmp/cvs-serv70148/sshd-session
Log Message:
Directory /cvs/src/usr.bin/ssh/sshd-session adde
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/09 03:46:47
Modified files:
usr.bin/ssh: clientloop.c
Log message:
simplify exit message handling, which was more complicated than
it needed to be because of unexpunged ssh1 remnants. ok markus@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/05/07 17:40:53
Modified files:
lib/libc/asr : getrrsetbyname_async.c
Log message:
avoid memcpy(malloc(0), ..., 0), which is not portable.
ok florian@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/04/30 00:23:51
Modified files:
usr.bin/ssh: sftp-server.c
Log message:
fix home-directory extension implementation, it always returned
the current user's home directory contrary to the spec.
Patch
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/04/30 00:16:55
Modified files:
usr.bin/ssh: sftp.c
Log message:
flush stdout after writing "sftp>" prompt when not using editline.
>From Alpine Linux via GHPR480
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/04/29 23:53:03
Modified files:
usr.bin/ssh: ssh-keysign.c
Log message:
stricter validation of messaging socket fd number; disallow usage of
stderr. Based on GHPR492 by RealHurrison
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/04/29 23:45:56
Modified files:
usr.bin/ssh: PROTOCOL.agent
Log message:
add missing reserved fields to key constraint protocol documentation.
from Wiktor Kwapisiewicz via GHPR487
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/04/29 20:14:10
Modified files:
usr.bin/ssh: clientloop.c serverloop.c
Log message:
correctly restore sigprocmask around ppoll()
reported by Tõivo Leedjärv; ok deraadt@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/04/29 20:10:49
Modified files:
usr.bin/ssh: clientloop.c sshconnect.c sshconnect.h
Log message:
add explict check for server hostkey type against HostkeyAlgorithms.
Allows HostkeyAlgorithms to disab
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2024/03/29 23:56:22
Modified files:
usr.bin/ssh: PROTOCOL.key
Log message:
in OpenSSH private key format, correct type for subsequent private
keys in blob. From Jakub Jelen via GHPR430
1 - 100 of 1566 matches
Mail list logo