from:"Damien Miller"

Re: CVS: cvs.openbsd.org: src

2020-06-25 Thread Damien Miller

On Thu, 25 Jun 2020, Damien Miller wrote: > CVSROOT: /cvs > Module name: src > Changes by: d...@cvs.openbsd.org2020/06/25 23:16:38 > > Modified files: > usr.bin/ssh: misc.c > > Log message: > handle EINTR in waitfd() and timeout_connect() hel

CVS: cvs.openbsd.org: src

2020-06-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/25 23:16:38 Modified files: usr.bin/ssh: misc.c Log message: handle EINTR in waitfd() and timeout_connect() helpers; bz#3071; ok dtucker@

CVS: cvs.openbsd.org: src

2020-06-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/25 23:12:21 Modified files: regress/usr.bin/ssh: agent.sh Log message: regress test for ssh-add -d; ok dtucker@

CVS: cvs.openbsd.org: src

2020-06-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/25 23:04:07 Modified files: usr.bin/ssh: ssh-add.1 ssh-add.c Log message: allow "ssh-add -d -" to read keys to be deleted from stdin bz#3180; ok dtucker@

CVS: cvs.openbsd.org: src

2020-06-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/25 23:03:36 Modified files: usr.bin/ssh: authfd.c authfd.h Log message: constify a few things; ok dtucker (as part of another diff)

CVS: cvs.openbsd.org: src

2020-06-22 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/22 17:44:27 Modified files: usr.bin/ssh: ssh-ecdsa-sk.c Log message: some clarifying comments

CVS: cvs.openbsd.org: src

2020-06-22 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/22 00:00:06 Modified files: regress/usr.bin/ssh/unittests/sshsig: tests.c Added files: regress/usr.bin/ssh/unittests/sshsig: webauthn.html

CVS: cvs.openbsd.org: src

2020-06-21 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/21 23:58:35 Modified files: usr.bin/ssh: PROTOCOL.u2f ssh-ecdsa-sk.c sshkey.c Log message: Add support for FIDO webauthn (verification only). webauthn is a standard for using FIDO keys in web

CVS: cvs.openbsd.org: src

2020-06-21 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/21 23:56:23 Modified files: usr.bin/ssh: ssh-ecdsa-sk.c Log message: refactor ECDSA-SK verification a little ahead of adding support for FIDO webauthn signature verification support; ok markus@

CVS: cvs.openbsd.org: src

2020-06-21 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/21 23:54:10 Modified files: usr.bin/ssh: sshbuf-misc.c sshbuf.h Log message: support for RFC4648 base64url encoding; ok markus

CVS: cvs.openbsd.org: src

2020-06-21 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/21 23:53:26 Modified files: usr.bin/ssh: sftp-server.8 Log message: better terminology for permissions; feedback & ok markus@

CVS: cvs.openbsd.org: src

2020-06-21 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/21 23:52:05 Modified files: usr.bin/ssh: sftp-server.c ssh-agent.1 ssh-agent.c Log message: better terminology for permissions; feedback & ok markus@

CVS: cvs.openbsd.org: www

2020-06-21 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/06/21 23:51:04 Modified files: openssh: legacy.html Log message: fix an inaccuracy and expand on other lists of permitted algorithms that may cause trouble (host-based, pubkey allow-lists).

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 22:34:21 Modified files: regress/usr.bin/ssh/unittests: Makefile Log message: run sshsig unit tests

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 22:32:09 Added files: regress/usr.bin/ssh/unittests/sshsig: Makefile mktestdata.sh tests.c regress/usr.bin/ssh/unittests/sshsig/testdata: dsa

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 22:30:26 src/regress/usr.bin/ssh/unittests/sshsig Update of /cvs/src/regress/usr.bin/ssh/unittests/sshsig In directory cvs.openbsd.org:/tmp/cvs-serv0/sshsig Log Message: Directory

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 22:30:34 src/regress/usr.bin/ssh/unittests/sshsig/testdata Update of /cvs/src/regress/usr.bin/ssh/unittests/sshsig/testdata In directory cvs.openbsd.org:/tmp/cvs-serv75469/testdata Log Message: Directory

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 21:48:49 Modified files: regress/usr.bin/ssh/unittests/sshkey: mktestdata.sh test_file.c Added files: regress/usr.bin/ssh/unittests/sshkey/testdata: ecdsa_sk1

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 17:34:19 Modified files: usr.bin/ssh: sshd.c Log message: check public host key matches private; ok markus@ (as part of previous diff)

CVS: cvs.openbsd.org: src

2020-06-18 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/18 17:33:38 Modified files: usr.bin/ssh: authfile.c Log message: avoid spurious "Unable to load host key" message when sshd can load a private key but no public counterpart; with & ok markus@

CVS: cvs.openbsd.org: src

2020-06-11 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/11 23:26:37 Modified files: usr.bin/ssh: PROTOCOL.sshsig Log message: correct RFC number; from HARUYAMA Seigo via GH PR191

CVS: cvs.openbsd.org: src

2020-06-05 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/05 00:18:07 Modified files: usr.bin/ssh: sshd.c Log message: unbreak "sshd -ddd" - close of config passing fd happened too early. ok markus@

CVS: cvs.openbsd.org: src

2020-06-04 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/04 21:25:35 Modified files: usr.bin/ssh: sshbuf-getput-basic.c Log message: make sshbuf_putb(b, NULL) a no-op

CVS: cvs.openbsd.org: src

2020-06-04 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/04 21:24:36 Modified files: usr.bin/ssh: sshbuf-misc.c sshbuf.h Log message: make sshbuf_dump() args const

CVS: cvs.openbsd.org: src

2020-06-04 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/06/04 21:24:16 Modified files: usr.bin/ssh: sshconnect2.c Log message: wrap long line

CVS: cvs.openbsd.org: src

2020-05-28 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/28 23:37:03 Modified files: usr.bin/ssh: sshd_config.5 ssh_config.5 Log message: mention that wildcards are processed in lexical order; bz#3165

CVS: cvs.openbsd.org: src

2020-05-28 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/28 21:14:02 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: fix compilation on !HAVE_DLOPEN platforms; stub function was not updated to match API change. From Dale Rahn via beck@ ok

CVS: cvs.openbsd.org: src

2020-05-28 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/28 21:11:54 Modified files: usr.bin/ssh: ssh-keygen.c Log message: fix exit status for downloading of FIDO resident keys; from Pedro Martelletto, ok markus@

CVS: cvs.openbsd.org: src

2020-05-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/27 16:37:53 Modified files: usr.bin/ssh: servconf.c Log message: fix Include before Match in sshd_config; bz#3122 patch from Jakub Jelen

CVS: cvs.openbsd.org: src

2020-05-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/27 16:35:19 Modified files: regress/usr.bin/ssh: servcfginclude.sh Log message: two new tests for Include in sshd_config, checking whether Port directives are processed correctly and handling of

CVS: cvs.openbsd.org: src

2020-05-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/27 15:59:12 Modified files: usr.bin/ssh: servconf.c Log message: Do not call process_queued_listen_addrs() for every included file from sshd_config; patch from Jakub Jelen

CVS: cvs.openbsd.org: src

2020-05-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/27 15:25:18 Modified files: usr.bin/ssh: readconf.c Log message: fix crash in recallocarray when deleting SendEnv variables; spotted by & ok sthen@

CVS: cvs.openbsd.org: www

2020-05-26 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/05/26 23:48:16 Modified files: build : Makefile build/mirrors : openssh-ftp.html.head openssh: ftp.html index.html openbsd.html Log message: openssh-8.3

CVS: cvs.openbsd.org: www

2020-05-26 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/05/26 21:14:17 Added files: openssh/txt: release-8.3 Log message: release notes for OpenSSH 8.3

CVS: cvs.openbsd.org: src

2020-05-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/25 19:59:46 Modified files: usr.bin/ssh: ssh-sk-helper.c Log message: fix memleak of signature; from Pedro Martelletto

CVS: cvs.openbsd.org: src

2020-05-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/25 19:26:58 Modified files: usr.bin/ssh: ssh-agent.c Log message: Restrict ssh-agent from signing web challenges for FIDO keys. When signing messages in ssh-agent using a FIDO key that has an

CVS: cvs.openbsd.org: src

2020-05-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/25 19:09:05 Modified files: usr.bin/ssh: sshd.c Log message: improve logging for MaxStartups connection throttling: have sshd log when it starts and stops throttling and periodically while in

CVS: cvs.openbsd.org: src

2020-05-25 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/25 19:06:52 Modified files: usr.bin/ssh: misc.c misc.h Log message: add fmt_timeframe() (from bgpd) to format a time interval in a human- friendly format. Switch copyright for this file from BSD

CVS: cvs.openbsd.org: src

2020-05-17 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/17 22:29:35 Modified files: usr.bin/ssh: ssh-keygen.c Log message: avoid possible NULL deref; from Pedro Martelletto

CVS: cvs.openbsd.org: src

2020-05-14 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/14 21:57:33 Modified files: usr.bin/ssh: sftp-client.c Log message: fix off-by-one error that caused sftp downloads to make one more concurrent request that desired. This prevented using sftp(1)

CVS: cvs.openbsd.org: src

2020-05-13 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/13 04:08:02 Modified files: usr.bin/ssh: sk-usbhid.c Log message: Enable credProtect extension when generating a resident key. The FIDO 2.1 Client to Authenticator Protocol introduced a

CVS: cvs.openbsd.org: src

2020-05-13 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/13 03:57:17 Modified files: usr.bin/ssh: sk-usbhid.c Log message: always call fido_init(); previous behaviour only called fido_init() when SK_DEBUG was defined. Harmless with current libfido2,

CVS: cvs.openbsd.org: src

2020-05-13 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/13 03:55:57 Modified files: usr.bin/ssh: ssh-keygen.c Log message: preserve group/world read permission on known_hosts file across runs of "ssh-keygen -Rf /path". The old behaviour was to remove

CVS: cvs.openbsd.org: src

2020-05-13 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/13 03:52:41 Modified files: usr.bin/ssh: hostfile.c hostfile.h sshconnect2.c Log message: when ordering the hostkey algorithms to request from a server, prefer certificate types if the

CVS: cvs.openbsd.org: src

2020-05-11 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/11 19:41:32 Modified files: usr.bin/ssh: PROTOCOL.u2f Log message: fix non-ASCII quote that snuck in; spotted by Gabriel Kihlman

CVS: cvs.openbsd.org: src

2020-05-10 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/10 20:11:29 Modified files: usr.bin/ssh: PROTOCOL.u2f Log message: clarify role of FIDO tokens in multi-factor authentictation; mostly from Pedro Martelletto

CVS: cvs.openbsd.org: src

2020-05-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/07 23:13:14 Modified files: usr.bin/ssh: kexdh.c sshd.c Log message: fix compilation with DEBUG_KEXDH; bz#3160 ok dtucker@

CVS: cvs.openbsd.org: src

2020-05-06 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/06 14:58:01 Modified files: usr.bin/ssh: version.h Log message: openssh-8.3; ok deraadt@

CVS: cvs.openbsd.org: src

2020-05-06 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/06 14:57:38 Modified files: usr.bin/ssh: scp.c Log message: another case where a utimes() failure could make scp send a desynchronising error; reminded by Aymeric Vincent ok deraadt markus

CVS: cvs.openbsd.org: src

2020-05-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/02 01:19:44 Modified files: usr.bin/ssh: ssh-keygen.c Log message: we have a sshkey_save_public() function to save public keys; use it and save a bunch of redundant code. Patch from loic AT

CVS: cvs.openbsd.org: src

2020-05-01 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/01 00:31:42 Modified files: usr.bin/ssh: scp.c Log message: when receving a file in sink(), be careful to send at most a single error response after the file has been opened. Otherwise the

CVS: cvs.openbsd.org: src

2020-05-01 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/05/01 00:28:52 Modified files: usr.bin/ssh: utf8.c utf8.h Log message: expose vasnmprintf(); ok (as part of other commit) markus deraadt

CVS: cvs.openbsd.org: src

2020-04-30 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/30 22:23:11 Modified files: usr.bin/ssh: ssh-keygen.c Log message: avoid NULL dereference when attempting to convert invalid ssh.com private keys using "ssh-keygen -i"; spotted by Michael Forney

CVS: cvs.openbsd.org: src

2020-04-30 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/30 22:03:14 Modified files: regress/usr.bin/ssh/unittests/sshkey: mktestdata.sh regress/usr.bin/ssh/unittests/sshkey/testdata: dsa_n ecdsa_n

CVS: cvs.openbsd.org: src

2020-04-30 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/30 22:00:29 Modified files: regress/usr.bin/ssh/unittests/sshkey: mktestdata.sh Log message: make mktestdata.sh generate old/new format keys that we expect. This script was written before OpenSSH

CVS: cvs.openbsd.org: src

2020-04-30 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/30 21:58:02 Modified files: regress/usr.bin/ssh/unittests/sshkey: mktestdata.sh Log message: portability fix for sed that always emil a newline even if the input does not contain one; from Michael

CVS: cvs.openbsd.org: src

2020-04-30 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/30 21:36:25 Removed files: regress/usr.bin/ssh/unittests/sshkey/testdata: rsa1_1 rsa1_1.fp rsa1_1.fp.bb

CVS: cvs.openbsd.org: src

2020-04-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/27 22:59:29 Modified files: regress/usr.bin/ssh/misc/sk-dummy: sk-dummy.c Log message: adapt dummy FIDO middleware to API change; ok markus@

CVS: cvs.openbsd.org: src

2020-04-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/27 22:02:29 Modified files: usr.bin/ssh: PROTOCOL.u2f sk-api.h sk-usbhid.c ssh-sk.c Log message: when signing a challenge using a FIDO toke, perform the hashing in the middleware layer rather

CVS: cvs.openbsd.org: src

2020-04-19 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/19 22:44:47 Modified files: regress/usr.bin/ssh: Makefile Added files: regress/usr.bin/ssh: keygen-comment.sh Log message: regression test for printing of private key fingerprints and key

CVS: cvs.openbsd.org: src

2020-04-19 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/19 22:43:57 Modified files: usr.bin/ssh: ssh-keygen.c Log message: fix a bug I introduced in r1.406: when printing private key fingerprint of old-format key, key comments were not being

CVS: cvs.openbsd.org: src

2020-04-17 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/17 01:16:07 Modified files: usr.bin/ssh: ssh-keygen.c Log message: repair private key fingerprint printing to also print comment after regression caused by my recent pubkey loading refactor.

CVS: cvs.openbsd.org: src

2020-04-17 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/17 01:15:12 Modified files: usr.bin/ssh: authfile.c Log message: refactor out some duplicate private key loading code; based on patch from loic AT venez.fr, ok dtucker@

CVS: cvs.openbsd.org: src

2020-04-16 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/16 22:27:03 Modified files: usr.bin/ssh: sshd_config.5 Log message: auth2-pubkey r1.89 changed the order of operations to checking AuthorizedKeysFile first and falling back to

CVS: cvs.openbsd.org: src

2020-04-16 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/16 21:38:47 Modified files: usr.bin/ssh: sshconnect2.c Log message: fix reversed test that caused IdentitiesOnly=yes to not apply to keys loaded from a PKCS11Provider; bz3141, ok dtucker@

CVS: cvs.openbsd.org: src

2020-04-16 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/16 21:34:43 Modified files: usr.bin/ssh: ssh.1 Log message: mention that /etc/hosts.equiv and /etc/shosts.equiv are not considered for HostbasedAuthentication when the target user is root;

CVS: cvs.openbsd.org: src

2020-04-16 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/16 21:30:05 Modified files: usr.bin/ssh: auth-rhosts.c servconf.c servconf.h sshd_config.5 Log message: make IgnoreRhosts a tri-state option: "yes" ignore

CVS: cvs.openbsd.org: src

2020-04-16 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/16 21:23:13 Modified files: usr.bin/ssh: servconf.c sshd_config.5 Log message: allow the IgnoreRhosts directive to appear anywhere in a sshd_config, not just before any Match blocks; bz3148, ok

CVS: cvs.openbsd.org: src

2020-04-11 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/11 04:16:11 Modified files: usr.bin/ssh: sshkey.c Log message: Refactor private key parsing. Eliminates a fair bit of duplicated code and fixes oss-fuzz#20074 (NULL deref) caused by a missing

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:10:37 Modified files: usr.bin/ssh: authfile.c Log message: let sshkey_try_load_public() load public keys from the unencrypted envelope of private key files if not sidecar public key file

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:09:24 Modified files: usr.bin/ssh: authfile.c Log message: simplify sshkey_try_load_public() ok markus@

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:08:46 Modified files: usr.bin/ssh: sshkey.c sshkey.h Log message: add sshkey_parse_pubkey_from_private_fileblob_type() Extracts a public key from the unencrypted envelope of a new-style

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:07:20 Modified files: usr.bin/ssh: sshkey.c Log message: simplify sshkey_parse_private_fileblob_type() Try new format parser for all key types first, fall back to PEM parser only for

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:05:59 Modified files: usr.bin/ssh: sshkey.c Log message: check private key type against requested key type in new-style private decoding; ok markus@

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:04:32 Modified files: usr.bin/ssh: sshkey.c Log message: check that pubkey in private key envelope matches actual private key (this public key is currently unusued) ok markus@

CVS: cvs.openbsd.org: src

2020-04-07 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/07 18:01:52 Modified files: usr.bin/ssh: sshkey.c Log message: refactor private key parsing a little Split out the base64 decoding and private section decryption steps in to separate functions.

CVS: cvs.openbsd.org: src

2020-04-03 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/03 00:07:57 Modified files: usr.bin/ssh: ssh.c Log message: r1.522 deleted one too many lines; repair

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 23:48:58 Modified files: usr.bin/ssh: krl.c Log message: avoid another compiler warning spotted in -portable

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:43:24 Modified files: usr.bin/ssh: krl.c Log message: fix format string (use %llu for uint64, not %lld). spotted by Darren and his tinderbox tests

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:34:16 Modified files: usr.bin/ssh: sftp.1 sftp.c Log message: Add a flag to re-enable verbose output when in batch mode; requested in bz3135; ok dtucker

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:32:21 Modified files: usr.bin/ssh: Makefile.inc Added files: usr.bin/ssh: cipher-chachapoly-libcrypto.c Log message: chacha20-poly1305 AEAD using libcrypto EVP_chacha20 Based

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:27:03 Modified files: usr.bin/ssh: cipher-chachapoly.c cipher-chachapoly.h cipher.c Log message: make Chacha20-POLY1305 context struct opaque; ok tb@ as part of a

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:07:48 Modified files: regress/usr.bin/ssh/misc/kexfuzz: Makefile Log message: this needs utf8.c too

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:06:26 Modified files: usr.bin/ssh: ssh.c Log message: fix debug statement

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 22:03:52 Modified files: usr.bin/ssh: ssh.c Log message: the tunnel-forwarding vs ExitOnForwardFailure fix that I committed earlier had an off-by-one. Fix this and add some debugging that

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 20:40:32 Modified files: usr.bin/ssh: clientloop.c clientloop.h ssh.c Log message: make failures when establishing "Tunnel" forwarding terminate the connection when ExitOnForwardFailure is

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 20:26:56 Modified files: usr.bin/ssh: krl.c krl.h ssh-keygen.1 ssh-keygen.c usr.bin/ssh/ssh-add: Makefile usr.bin/ssh/ssh-agent: Makefile usr.bin/ssh/ssh-keysign:

CVS: cvs.openbsd.org: src

2020-04-02 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/04/02 20:25:21 Modified files: usr.bin/ssh: utf8.c utf8.h Log message: add allocating variant of the safe utf8 printer; ok dtucker as part of a larger diff

CVS: cvs.openbsd.org: src

2020-03-12 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/03/12 22:16:27 Modified files: usr.bin/ssh: ssh-pkcs11.c Log message: improve error messages for some common PKCS#11 C_Login failure cases; based on patch from Jacob Hoffman-Andrews in bz3130; ok

CVS: cvs.openbsd.org: src

2020-03-12 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/03/12 22:01:57 Modified files: usr.bin/ssh: kex.c sshconnect.c sshd.c Log message: use sshpkt_fatal() for kex_exchange_identification() errors. This ensures that the logged errors are consistent

CVS: cvs.openbsd.org: src

2020-03-12 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/03/12 21:25:45 Modified files: lib/libc/gen : fnmatch.c Log message: typo in comment spotted at https://fossies.org/linux/misc/openssh-8.2p1.tar.gz/codespell.html

CVS: cvs.openbsd.org: src

2020-03-12 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/03/12 21:18:45 Modified files: regress/usr.bin/ssh: addrmatch.sh sftp-badcmds.sh sshsig.sh Log message: some more speeling mistakes from

CVS: cvs.openbsd.org: src

2020-03-12 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/03/12 21:17:07 Modified files: usr.bin/ssh: cipher.c gss-serv.c monitor.c session.c ssh-keygen.c sshbuf.h sshd.c umac.c PROTOCOL.mux Log message:

CVS: cvs.openbsd.org: src

2020-03-12 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/03/12 21:12:17 Modified files: usr.bin/ssh: ssh-keygen.c Log message: when downloading FIDO2 resident keys from a token, don't prompt for a PIN until the token has told us that it needs one. Avoids

CVS: cvs.openbsd.org: www

2020-03-05 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/03/05 23:08:47 Modified files: openssh: releasenotes.html Log message: the last commit truncated releasenotes.html; regen

CVS: cvs.openbsd.org: src

2020-02-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/02/27 18:07:28 Modified files: usr.bin/ssh: ssh-keygen.c Log message: no-touch-required certificate option should be an extension, not a critical option.

CVS: cvs.openbsd.org: src

2020-02-27 Thread Damien Miller

CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2020/02/27 18:06:05 Modified files: usr.bin/ssh: ssh-sk.c Log message: better error message when trying to use a FIDO key function and SecurityKeyProvider is empty

CVS: cvs.openbsd.org: www

2020-02-16 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/02/16 03:31:53 Modified files: openssh: releasenotes.html openssh/txt: release-8.2 Log message: the openssh-8.2.tar.gz release tarball contained a stale version.h file and

CVS: cvs.openbsd.org: www

2020-02-14 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/02/14 19:09:21 Modified files: openssh: releasenotes.html openssh/txt: release-8.2 Log message: use https instead of http for links; pointed out by Mike Frysinger

CVS: cvs.openbsd.org: www

2020-02-14 Thread Damien Miller

CVSROOT:/cvs Module name:www Changes by: d...@cvs.openbsd.org2020/02/14 05:28:21 Modified files: openssh: openbsd.html Log message: s/8.1/8.2/ where it matters; spotted by benno@

< 4 5 6 7 8 9 10 11 12 13 >

801 - 900 of 2942 matches

Mail list logo