[openssh-commits] [openssh] branch master updated (0d1b241 -> 4bea0ab)

git+noreply at mindrot.org git+noreply at mindrot.org
Mon Dec 22 19:13:46 EST 2014


This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  0d1b241   upstream commit
       new  46ac2ed   upstream commit
       new  f69b69b   upstream commit
       new  161cf41   upstream commit
       new  f1c4d8e   upstream commit
       new  4bea0ab   upstream commit

The 5 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit 4bea0ab3290c0b9dd2aa199e932de8e7e18062d6
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Dec 22 08:06:03 2014 +0000

    upstream commit
    
    regression test for multiple required pubkey authentication;
     ok markus@

commit f1c4d8ec52158b6f57834b8cd839605b0a33e7f2
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Dec 22 08:04:23 2014 +0000

    upstream commit
    
    correct description of what will happen when a
     AuthorizedKeysCommand is specified but AuthorizedKeysCommandUser is not (sshd
     will refuse to start)

commit 161cf419f412446635013ac49e8c660cadc36080
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Dec 22 07:55:51 2014 +0000

    upstream commit
    
    make internal handling of filename arguments of "none"
     more consistent with ssh. "none" arguments are now replaced with NULL when
     the configuration is finalised.
    
    Simplifies checking later on (just need to test not-NULL rather than
    that + strcmp) and cleans up some inconsistencies. ok markus@

commit f69b69b8625be447b8826b21d87713874dac25a6
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Dec 22 07:51:30 2014 +0000

    upstream commit
    
    remember which public keys have been used for
     authentication and refuse to accept previously-used keys.
    
    This allows AuthenticationMethods=publickey,publickey to require
    that users authenticate using two _different_ pubkeys.
    
    ok markus@

commit 46ac2ed4677968224c4ca825bc98fc68dae183f0
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Dec 22 07:24:11 2014 +0000

    upstream commit
    
    fix passing of wildcard forward bind addresses when
     connection multiplexing is in use; patch from Sami Hartikainen via bz#2324;
     ok dtucker@

Summary of changes:
 auth.h                 |  9 ++++++-
 auth2-pubkey.c         | 42 ++++++++++++++++++++++++++++++--
 auth2.c                |  6 ++---
 monitor.c              | 10 ++++++--
 mux.c                  |  5 ++--
 regress/Makefile       |  5 ++--
 regress/multipubkey.sh | 66 ++++++++++++++++++++++++++++++++++++++++++++++++++
 servconf.c             | 38 ++++++++++++++++++++++++++---
 session.c              |  4 +--
 sshd.c                 | 15 ++++++------
 sshd_config.5          | 24 +++++++++++++++---
 11 files changed, 194 insertions(+), 30 deletions(-)
 create mode 100644 regress/multipubkey.sh

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.


More information about the openssh-commits mailing list