[openssh-commits] [openssh] branch master updated (d4c0295 -> 0abf41f)
git+noreply at mindrot.org
git+noreply at mindrot.org
Tue Feb 17 09:39:12 AEDT 2015
This is an automated email from the git hooks/post-receive script.
djm pushed a change to branch master
in repository openssh.
from d4c0295 upstream commit
new 8ec67d5 upstream commit
new 02db468 upstream commit
new 51b082c upstream commit
new 6c5c949 upstream commit
new 523463a upstream commit
new ce63c4b upstream commit
new 8ea3365 upstream commit
new ef575ef upstream commit
new 68a5d64 upstream commit
new 0abf41f upstream commit
The 10 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Detailed log of new commits:
commit 0abf41f99aa16ff09b263bead242d6cb2dbbcf99
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Feb 16 22:21:03 2015 +0000
upstream commit
enable hostkeys unit tests
commit 68a5d647ccf0fb6782b2f749433a1eee5bc9044b
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Feb 16 22:20:50 2015 +0000
upstream commit
check string/memory compare arguments aren't NULL
commit ef575ef20d09f20722e26b45dab80b3620469687
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Feb 16 22:18:34 2015 +0000
upstream commit
unit tests for hostfile.c code, just hostkeys_foreach so
far
commit 8ea3365e6aa2759ccf5c76eaea62cbc8a280b0e7
Author: markus at openbsd.org <markus at openbsd.org>
Date: Sat Feb 14 12:43:16 2015 +0000
upstream commit
test server rekey limit
commit ce63c4b063c39b2b22d4ada449c9e3fbde788cb3
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Feb 16 22:30:03 2015 +0000
upstream commit
partial backout of:
revision 1.441
date: 2015/01/31 20:30:05; author: djm; state: Exp; lines: +17 -10; commitid
: x8klYPZMJSrVlt3O;
Let sshd load public host keys even when private keys are missing.
Allows sshd to advertise additional keys for future key rotation.
Also log fingerprint of hostkeys loaded; ok markus@
hostkey updates now require access to the private key, so we can't
load public keys only. The improved log messages (fingerprints of keys
loaded) are kept.
commit 523463a3a2a9bfc6cfc5afa01bae9147f76a37cc
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Feb 16 22:13:32 2015 +0000
upstream commit
Revise hostkeys at openssh.com hostkey learning extension.
The client will not ask the server to prove ownership of the private
halves of any hitherto-unseen hostkeys it offers to the client.
Allow UpdateHostKeys option to take an 'ask' argument to let the
user manually review keys offered.
ok markus@
commit 6c5c949782d86a6e7d58006599c7685bfcd01685
Author: djm at openbsd.org <djm at openbsd.org>
Date: Mon Feb 16 22:08:57 2015 +0000
upstream commit
Refactor hostkeys_foreach() and dependent code Deal with
IP addresses (i.e. CheckHostIP) Don't clobber known_hosts when nothing
changed ok markus@ as part of larger commit
commit 51b082ccbe633dc970df1d1f4c9c0497115fe721
Author: miod at openbsd.org <miod at openbsd.org>
Date: Mon Feb 16 18:26:26 2015 +0000
upstream commit
Declare ge25519_base as extern, to prevent it from
becoming a common. Gets us rid of ``lignment 4 of symbol
`crypto_sign_ed25519_ref_ge25519_base' in mod_ge25519.o is smaller than 16 in
mod_ed25519.o'' warnings at link time.
commit 02db468bf7e3281a8e3c058ced571b38b6407c34
Author: markus at openbsd.org <markus at openbsd.org>
Date: Fri Feb 13 18:57:00 2015 +0000
upstream commit
make rekey_limit for sshd w/privsep work; ok djm@
dtucker@
commit 8ec67d505bd23c8bf9e17b7a364b563a07a58ec8
Author: dtucker at openbsd.org <dtucker at openbsd.org>
Date: Thu Feb 12 20:34:19 2015 +0000
upstream commit
Prevent sshd spamming syslog with
"ssh_dispatch_run_fatal: disconnected". ok markus@
Summary of changes:
PROTOCOL | 53 +-
auth.h | 7 +-
clientloop.c | 351 ++++++-
dispatch.c | 6 +-
ge25519.h | 4 +-
hostfile.c | 219 ++--
hostfile.h | 31 +-
kex.h | 6 +-
monitor.c | 50 +-
monitor_wrap.c | 7 +-
monitor_wrap.h | 4 +-
opacket.h | 2 -
packet.c | 18 +-
readconf.c | 6 +-
readconf.h | 8 +-
regress/rekey.sh | 24 +-
regress/unittests/Makefile | 5 +-
regress/unittests/{sshkey => hostkeys}/Makefile | 7 +-
regress/unittests/hostkeys/mktestdata.sh | 94 ++
regress/unittests/hostkeys/test_iterate.c | 1141 +++++++++++++++++++++
regress/unittests/hostkeys/testdata/dsa_1.pub | 1 +
regress/unittests/hostkeys/testdata/dsa_2.pub | 1 +
regress/unittests/hostkeys/testdata/dsa_3.pub | 1 +
regress/unittests/hostkeys/testdata/dsa_4.pub | 1 +
regress/unittests/hostkeys/testdata/dsa_5.pub | 1 +
regress/unittests/hostkeys/testdata/dsa_6.pub | 1 +
regress/unittests/hostkeys/testdata/ecdsa_1.pub | 1 +
regress/unittests/hostkeys/testdata/ecdsa_2.pub | 1 +
regress/unittests/hostkeys/testdata/ecdsa_3.pub | 1 +
regress/unittests/hostkeys/testdata/ecdsa_4.pub | 1 +
regress/unittests/hostkeys/testdata/ecdsa_5.pub | 1 +
regress/unittests/hostkeys/testdata/ecdsa_6.pub | 1 +
regress/unittests/hostkeys/testdata/ed25519_1.pub | 1 +
regress/unittests/hostkeys/testdata/ed25519_2.pub | 1 +
regress/unittests/hostkeys/testdata/ed25519_3.pub | 1 +
regress/unittests/hostkeys/testdata/ed25519_4.pub | 1 +
regress/unittests/hostkeys/testdata/ed25519_5.pub | 1 +
regress/unittests/hostkeys/testdata/ed25519_6.pub | 1 +
regress/unittests/hostkeys/testdata/known_hosts | 61 ++
regress/unittests/hostkeys/testdata/rsa1_1.pub | 1 +
regress/unittests/hostkeys/testdata/rsa1_2.pub | 1 +
regress/unittests/hostkeys/testdata/rsa1_3.pub | 1 +
regress/unittests/hostkeys/testdata/rsa1_4.pub | 1 +
regress/unittests/hostkeys/testdata/rsa1_5.pub | 1 +
regress/unittests/hostkeys/testdata/rsa1_6.pub | 1 +
regress/unittests/hostkeys/testdata/rsa_1.pub | 1 +
regress/unittests/hostkeys/testdata/rsa_2.pub | 1 +
regress/unittests/hostkeys/testdata/rsa_3.pub | 1 +
regress/unittests/hostkeys/testdata/rsa_4.pub | 1 +
regress/unittests/hostkeys/testdata/rsa_5.pub | 1 +
regress/unittests/hostkeys/testdata/rsa_6.pub | 1 +
regress/unittests/hostkeys/tests.c | 16 +
regress/unittests/test_helper/test_helper.c | 24 +-
serverloop.c | 88 +-
ssh-keygen.c | 71 +-
ssh_api.c | 7 +-
ssh_config.5 | 15 +-
sshd.c | 48 +-
ssherr.c | 4 +-
59 files changed, 2156 insertions(+), 251 deletions(-)
copy regress/unittests/{sshkey => hostkeys}/Makefile (57%)
create mode 100644 regress/unittests/hostkeys/mktestdata.sh
create mode 100644 regress/unittests/hostkeys/test_iterate.c
create mode 100644 regress/unittests/hostkeys/testdata/dsa_1.pub
create mode 100644 regress/unittests/hostkeys/testdata/dsa_2.pub
create mode 100644 regress/unittests/hostkeys/testdata/dsa_3.pub
create mode 100644 regress/unittests/hostkeys/testdata/dsa_4.pub
create mode 100644 regress/unittests/hostkeys/testdata/dsa_5.pub
create mode 100644 regress/unittests/hostkeys/testdata/dsa_6.pub
create mode 100644 regress/unittests/hostkeys/testdata/ecdsa_1.pub
create mode 100644 regress/unittests/hostkeys/testdata/ecdsa_2.pub
create mode 100644 regress/unittests/hostkeys/testdata/ecdsa_3.pub
create mode 100644 regress/unittests/hostkeys/testdata/ecdsa_4.pub
create mode 100644 regress/unittests/hostkeys/testdata/ecdsa_5.pub
create mode 100644 regress/unittests/hostkeys/testdata/ecdsa_6.pub
create mode 100644 regress/unittests/hostkeys/testdata/ed25519_1.pub
create mode 100644 regress/unittests/hostkeys/testdata/ed25519_2.pub
create mode 100644 regress/unittests/hostkeys/testdata/ed25519_3.pub
create mode 100644 regress/unittests/hostkeys/testdata/ed25519_4.pub
create mode 100644 regress/unittests/hostkeys/testdata/ed25519_5.pub
create mode 100644 regress/unittests/hostkeys/testdata/ed25519_6.pub
create mode 100644 regress/unittests/hostkeys/testdata/known_hosts
create mode 100644 regress/unittests/hostkeys/testdata/rsa1_1.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa1_2.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa1_3.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa1_4.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa1_5.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa1_6.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa_1.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa_2.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa_3.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa_4.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa_5.pub
create mode 100644 regress/unittests/hostkeys/testdata/rsa_6.pub
create mode 100644 regress/unittests/hostkeys/tests.c
--
To stop receiving notification emails like this one, please contact
djm at mindrot.org.
More information about the openssh-commits
mailing list