[openssh-commits] [openssh] annotated tag V_8_4_P1 created (now 3001ef05)
git+noreply at mindrot.org
git+noreply at mindrot.org
Sun Sep 27 19:38:13 AEST 2020
This is an automated email from the git hooks/post-receive script.
djm pushed a change to annotated tag V_8_4_P1
in repository openssh.
at 3001ef05 (tag)
tagging 279261e1ea8150c7c64ab5fe7cb4a4ea17acbb29 (commit)
replaces V_8_2_P1
tagged by Damien Miller
on Sun Sep 27 17:39:42 2020 +1000
- Log -----------------------------------------------------------------
openssh-8.4p1
-----BEGIN PGP SIGNATURE-----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=d8M3
-----END PGP SIGNATURE-----
Andreas Schwab (1):
Add support for AUDIT_ARCH_RISCV64
Damien Miller (34):
spelling mistakes
another spelling error in comment
sync fnmatch.c with upstream to fix another typo
prefer libcrypto chacha20-poly1305 where possible
fix inverted test for LibreSSL version
sys/sysctl.h is only used on OpenBSD
wrap sha2.h inclusion in #ifdef HAVE_SHA2_H
fix reversed test
sync config.guess/config.sub with latest versions
prepare for 8.3 release
revert removal of .depend before makedepend
make depend
explicitly manage .depend and .depend.bak
prefer ln to cp for temporary copy of sshd
depend
missing files for webauthn/sshsig unit test
missing ifdef SELINUX; spotted by dtucker
document a PAM spec problem in a frustrated comment
sync sys-queue.h with OpenBSD upstream
add check for fido_cred_set_prot() to configure
detect Linux/X32 systems
Add ssh-sk-helper and manpage to RPM spec file
undef TAILQ_CONCAT and friends
wrap a declaration in the same ifdefs as its use
support NetBSD's utmpx.ut_ss address field
sync memmem.c with OpenBSD
degrade semi-gracefully when libfido2 is too old
tweak back-compat for older libfido2
focus improvement for gnome-ssh-askpass[23]
control over the colours in gnome-ssh-askpass[23]
libfido2 1.5.0 is recommended
.depend
sync with upstream ssh-copy-id rev f0da1a1b7
update version numbers
Darren Tucker (50):
Check if getpeereid is actually declared.
Prevent unused variable warning.
Check if TILDE is already defined and undef.
Constify aix_krb5_get_principal_name.
Remove unused variable warning.
Import regenerated moduli.
Include fido.h when checking for fido/credman.h.
Use /usr/bin/xp4g/id if necessary.
Include openssl-compat.h before checking ifdefs.
Add sys/syscall.h for syscall numbers.
Sync rev 1.49.
Remove unneeded env vars from t-exec invocation.
Pass configure's egrep through to test-exec.sh.
Put the values from env vars back.
Mailing list is now closed to non-subscribers.
Update .depend.
Error out if given RDomain if unsupported.
Fix conditional for openssl-based chacha20.
Include sys/byteorder.h for htons and friends.
See if SA_RESTART signals will interrupt select().
Use LONG_LONG_MAX and friends if available.
Remove use of tail for 'make depend'.
Update .depend.
Skip security key tests if ENABLE_SK not set.
Check if -D_REENTRANT is needed for localtime_r.
Ensure SA_SIGNAL test only signals itself.
Skip building sk-dummy library if no SK support.
Actually skip pty tests when needed.
Document that libfido2 >= 1.4.0 is needed.
Omit ToS setting if we don't have IPV6_TCLASS too.
Test fallthrough in OSSH_CHECK_CFLAG_COMPILE.
Hook sshsig tests up to Portable Makefiles.
Skip OpenSSL specific tests w/out OpenSSL.
Add includes.h to new test.
Extra brackets around sizeof() in bcrypt.
Add OPENBSD ORIGINAL marker to bcrypt_pbkdf.
Wrap stdint.h in ifdef HAVE_STDINT_H.
Adjust portable code to match changes in 939d787d,
Skip ECDSA-SK webauthn test when built w/out ECC
Use argv in OSSH_CHECK_CFLAG_COMPILE test.
Remove AC_REVISION.
Add without-openssl without-zlib test target.
Document --without-openssl and --without-zlib.
Add ability to specify exact test target.
Output test debug logs on failure.
Always send any PAM account messages.
Wrap stdint.h include in ifdef HAVE_STDINT_H.
Remove check for 'ent' command.
Add aclocal.m4 and config.h.in~ to .gitignore.
New config-build-time dependency on automake.
HARUYAMA Seigo (1):
Fix typos in INSTALL: s/avilable/available/ s/suppports/supports/
Nico Kadel-Garcia (1):
Switch %define to %global for redhat/openssh.spec
Sebastian Andrzej Siewior (3):
Remove HAVE_MMAP and BROKEN_MMAP
Move the local m4 macros
Quote the definition of OSSH_CHECK_HEADER_FOR_FIELD
Stefan Schindler (1):
Add CI with prepare script
bket at openbsd.org (1):
upstream: Replace TAILQ concatenation loops with TAILQ_CONCAT
cheloha at openbsd.org (1):
upstream: ssh-keyscan(1): simplify conloop() with timercmp(3),
chl (1):
partial sync of regress/netcat.c with upstream
deraadt at openbsd.org (3):
upstream: we are still aiming for pre-C99 ...
upstream: correct recently broken comments
upstream: clang -Wimplicit-fallthrough does not recognise /*
djm at openbsd.org (124):
upstream: better error message when trying to use a FIDO key
upstream: no-touch-required certificate option should be an
upstream: when downloading FIDO2 resident keys from a token, don't
upstream: spelling errors in comments; no code change from
upstream: use sshpkt_fatal() for kex_exchange_identification()
upstream: improve error messages for some common PKCS#11 C_Login
upstream: some more speeling mistakes from
upstream: add allocating variant of the safe utf8 printer; ok
upstream: give ssh-keygen the ability to dump the contents of a
upstream: make failures when establishing "Tunnel" forwarding terminate
upstream: the tunnel-forwarding vs ExitOnForwardFailure fix that I
upstream: fix debug statement
upstream: make Chacha20-POLY1305 context struct opaque; ok tb@ as
upstream: chacha20-poly1305 AEAD using libcrypto EVP_chacha20
upstream: Add a flag to re-enable verbose output when in batch
upstream: fix format string (use %llu for uint64, not %lld). spotted by
upstream: this needs utf8.c too
upstream: avoid another compiler warning spotted in -portable
upstream: r1.522 deleted one too many lines; repair
upstream: refactor private key parsing a little
upstream: check that pubkey in private key envelope matches actual
upstream: check private key type against requested key type in
upstream: simplify sshkey_parse_private_fileblob_type()
upstream: add sshkey_parse_pubkey_from_private_fileblob_type()
upstream: simplify sshkey_try_load_public()
upstream: let sshkey_try_load_public() load public keys from the
upstream: Refactor private key parsing. Eliminates a fair bit of
upstream: allow the IgnoreRhosts directive to appear anywhere in a
upstream: make IgnoreRhosts a tri-state option: "yes" ignore
upstream: mention that /etc/hosts.equiv and /etc/shosts.equiv are
upstream: fix reversed test that caused IdentitiesOnly=yes to not
upstream: auth2-pubkey r1.89 changed the order of operations to
upstream: refactor out some duplicate private key loading code;
upstream: repair private key fingerprint printing to also print
upstream: fix a bug I introduced in r1.406: when printing private key
upstream: regression test for printing of private key fingerprints and
upstream: when signing a challenge using a FIDO toke, perform the
upstream: adapt dummy FIDO middleware to API change; ok markus@
upstream: avoid NULL dereference when attempting to convert invalid
upstream: expose vasnmprintf(); ok (as part of other commit) markus
upstream: when receving a file in sink(), be careful to send at
upstream: we have a sshkey_save_public() function to save public keys;
upstream: remove obsolete RSA1 test keys; spotted by Michael Forney
upstream: portability fix for sed that always emil a newline even
upstream: make mktestdata.sh generate old/new format keys that we
upstream: sure enough, some of the test data that we though were in
upstream: another case where a utimes() failure could make scp send
upstream: openssh-8.3; ok deraadt@
upstream: fix compilation with DEBUG_KEXDH; bz#3160 ok dtucker@
upstream: clarify role of FIDO tokens in multi-factor
upstream: fix non-ASCII quote that snuck in; spotted by Gabriel
upstream: when ordering the hostkey algorithms to request from a
upstream: preserve group/world read permission on known_hosts
upstream: always call fido_init(); previous behaviour only called
upstream: Enable credProtect extension when generating a resident
upstream: fix off-by-one error that caused sftp downloads to make
upstream: avoid possible NULL deref; from Pedro Martelletto
upstream: add fmt_timeframe() (from bgpd) to format a time
upstream: improve logging for MaxStartups connection throttling:
upstream: Restrict ssh-agent from signing web challenges for FIDO
upstream: fix memleak of signature; from Pedro Martelletto
upstream: two new tests for Include in sshd_config, checking whether
upstream: fix crash in recallocarray when deleting SendEnv
upstream: Do not call process_queued_listen_addrs() for every
upstream: fix Include before Match in sshd_config; bz#3122 patch
upstream: fix exit status for downloading of FIDO resident keys;
upstream: fix compilation on !HAVE_DLOPEN platforms; stub function
upstream: mention that wildcards are processed in lexical order;
upstream: wrap long line
upstream: make sshbuf_dump() args const
upstream: make sshbuf_putb(b, NULL) a no-op
upstream: unbreak "sshd -ddd" - close of config passing fd happened too
upstream: correct RFC number; from HARUYAMA Seigo via GH PR191
upstream: avoid spurious "Unable to load host key" message when
upstream: check public host key matches private; ok markus@ (as
upstream: basic unit test for FIDO kep parsing
upstream: basic unit test for sshsig.[ch], including FIDO keys
upstream: run sshsig unit tests
upstream: better terminology for permissions; feedback & ok markus@
upstream: better terminology for permissions; feedback & ok markus@
upstream: support for RFC4648 base64url encoding; ok markus
upstream: refactor ECDSA-SK verification a little ahead of adding
upstream: Add support for FIDO webauthn (verification only).
upstream: add support for verification of webauthn sshsig signature,
upstream: some clarifying comments
upstream: constify a few things; ok dtucker (as part of another
upstream: allow "ssh-add -d -" to read keys to be deleted from
upstream: handle EINTR in waitfd() and timeout_connect() helpers;
upstream: regress test for ssh-add -d; ok dtucker@
upstream: avoid spurious error message when ssh-keygen creates files
upstream: fix memory leak of mux_ctx; patch from Sergiy Lozovsky
upstream: start ClientAliveInterval bookkeeping before first pass
upstream: when redirecting sshd's log output to a file, undo this
upstream: avoid tilde_expand_filename() in expanding ~/.ssh/rc - if
upstream: revert r1.399 - the lifetime of c->mux_ctx is more complex;
upstream: put back the mux_ctx memleak fix, but only for channels of
upstream: some language improvements; ok markus
upstream: allow some additional control over the use of ssh-askpass
upstream: log error message for process_write() write failures
upstream: allow -A to explicitly enable agent forwarding in scp and
upstream: ensure that certificate extensions are lexically sorted.
upstream: let the "Confirm user presence for key ..." ssh-askpass
upstream: let ssh_config(5)'s AddKeysToAgent keyword accept a time
upstream: support for user-verified FIDO keys
upstream: support for requiring user verified FIDO keys in sshd
upstream: major rework of FIDO token selection logic
upstream: preserve verify-required for resident FIDO keys
upstream: Request PIN ahead of time for certain FIDO actions
upstream: remove unreachable code I forgot to delete in r1.334
upstream: dummy firmware needs to match API version numner crank (for
upstream: adapt to API changes
upstream: skip a bit more FIDO token selection logic when only a
upstream: debug()-print a little info about FIDO-specific key
upstream: Add RCS IDs to the few files that are missing them; from
upstream: refuse to add verify-required (PINful) FIDO keys to
upstream: when writing an attestation blob for a FIDO key, record all
upstream: adapt to SSH_SK_VERSION_MAJOR crank
upstream: For the hostkey confirmation message:
upstream: tweak the client hostkey preference ordering algorithm to
upstream: handle multiple messages in a single read()
upstream: cap channel input buffer size at 16MB; avoids high memory use
upstream: close stdout/stderr after "ssh -f ..." forking
upstream: close stdin when forking after authentication too; ok markus
upstream: openssh 8.4
dtucker at openbsd.org (55):
upstream: Detect and prevent simple configuration loops when using
upstream: Ensure that the key lifetime provided fits within the
upstream: Import regenerated moduli.
upstream: Update moduli generation script to new ssh-keygen
upstream: Fix some typos and an incorrect word in docs. Patch from
upstream: Fix typo. Patch from itoama at live.jp via github PR#173.
upstream: Remove obsolete XXX comment. ok deraadt@
upstream: Have sftp reject "-1" in the same way as ssh(1) and
upstream: Drop leading space from line count that was confusing
upstream: Don't clear alarm timers in listening sshd. Previously
upstream: Cast lifetime to u_long for comparison to prevent unsigned
upstream: Make with config keywords support which
upstream: Add regression test for percent expansions where possible.
upstream: %C expansion just added to Match Exec should include
upstream: Add percent_expand test for 'Match Exec'.
upstream: Temporarily remove tests for '%C' since the hash contains the
upstream: Compute hash locally and re-enable %C tests.
upstream: Some platforms don't have "hostname -s", so use cut to trim
upstream: Indicate if we're using a cached key in trace output.
upstream: Add TOKEN percent expansion to LocalFoward and RemoteForward
upstream: Add utf8.c for asmprintf used by krl.c
upstream: Add tests for TOKEN expansion of LocalForward and
upstream: Backslash '$' at then end of string. Prevents warning on
upstream: Remove leave_non_blocking() which is now dead code
upstream: Fix incorrect error message for "too many known hosts files."
upstream: We've standardized on memset over bzero, replace a couple
upstream: Fix comment typo. Patch from mforney at mforney.org.
upstream: Fix multiplier in convtime when handling seconds after
upstream: Allow some keywords to expand shell-style ${ENV}
upstream: Unit test for convtime. ok djm@
upstream: Add regression and unit tests for ${ENV} style
upstream: Pass a NULL instead of zeroed out va_list from
upstream: Make dollar_expand variadic and pass a real va_list to
upstream: Remove now-unused proto_spec and associated definitions.
upstream: Import regenerated moduli file.
upstream: Import regenerated moduli file.
upstream: Correct historical comment: provos@ modified OpenSSH to
upstream: Test that ssh-agent exits when running as as subprocess
upstream: Correct synopsis and usage for the options accepted when
upstream: Expand path to ~/.ssh/rc rather than relying on it
upstream: Defer creation of ~/.ssh by ssh(1) until we attempt to
upstream: Only reset the serveralive check when we receive traffic from
upstream: Use $OBJ to find key files. Fixes test when run on an obj
upstream: Add default for number of rounds (-a). ok djm@
upstream: Update test to match recent change in match.c
upstream: Fix previous by calling the correct function.
upstream: Add %-TOKEN, environment variable and tilde expansion to
upstream: Add a '%k' TOKEN that expands to the effective HostKey of
upstream: Add tests for expansions on UserKnownHostsFile.
upstream: Add test for '%k' (HostKeyAlias) TOKEN.
upstream: Add %k to the TOKENs for Match Exec for consistency with
upstream: Also compare username when checking for JumpHost loops.
upstream: Check that the addresses supplied to Match Address and
upstream: Ensure that address/mask mismatches are flagged at
upstream: Remove unused buf, last user was removed when switching
jca (1):
partial sync of regress/netcat.c with upstream
jmc at openbsd.org (12):
upstream: sort -N and add it to usage();
upstream: add space between macro arg and punctuation;
upstream: add space beteen macro arg and punctuation;
upstream: ce examples of "Ar arg Ar arg" with "Ar arg arg" and
upstream: tweak previous; ok markus
upstream: remove a stray .El;
upstream: supply word missing in previous;
upstream: updated argument name for -P in first synopsis was
upstream: start sentence with capital letter;
upstream: fix macro slip in previous;
upstream: tweak previous;
upstream: sentence fix; from pedro martelletto
jsg at openbsd.org (1):
upstream: change explicit_bzero();free() to freezero()
markus at openbsd.org (35):
upstream: sshpkt_fatal() does not return; ok djm
upstream: vasnmprintf allocates str and returns -1; ok djm
upstream: sshsig: return correct error, fix null-deref; ok djm
upstream: pkcs11_register_provider: return < 0 on error; ok djm
upstream: exit if ssh_krl_revoke_key_sha256 fails; ok djm
upstream: fix null-deref on calloc failure; ok djm
upstream: exit on parse failures in input_service_request; ok djm
upstream: fix uninitialized pointers for forward_cancel; ok djm
upstream: initialize cname in case ai_canonname is NULL or too
upstream: consistently check packet_timeout_ms against 0; ok djm
upstream: passphrase depends on kdfname, not ciphername (possible
upstream: sshkey_cert_check_authority requires reason to be set;
upstream: ssh_fetch_identitylist() returns the return value from
upstream: fix possible null-deref in check_key_not_revoked; ok
upstream: return correct error in sshsk_ed25519_sig; ok djm
upstream: remove unused variables in ssh-pkcs11-helper; ok djm
upstream: principalsp is optional, pubkey required; ok djm
upstream: correct return code; ok djm
upstream: initialize seconds for debug message; ok djm
upstream: do not leak oprincipals; ok djm
upstream: fix use-after-free in do_download_sk; ok djm
upstream: fix relative includes in sshd_config; ok djm
upstream: run the 2nd ssh with BatchMode for scp -3
upstream: bring back debug() removed in rev 1.74; noted by pradeep
upstream: sshd listener must not block if reexecd sshd exits
upstream: only call sshkey_xmss_init() once for KEY_XMSS_CERT; ok
upstream: allow sshd_config longer than 256k; ok djm
upstream: support loading big sshd_config files w/o realloc; ok
upstream: fix ssh -O proxy w/mux which got broken by no longer
upstream: fix kex mem-leak in ssh_packet_close; ok djm
upstream: add test for mux w/-Oproxy; ok djm
upstream: free kex in ssh_packet_close; ok djm semarie
upstream: don't exit the listener on send_rexec_state errors; ok
upstream: keep ignoring HUP after fork+exec; ok djm
upstream: update setproctitle after re-exec; ok djm
millert at openbsd.org (1):
upstream: Fix error message on close(2) and add printf format
mkontani (1):
fix some typos and sentence
naddy at openbsd.org (1):
upstream: document -F none; with jmc@
pedro martelletto (2):
configure.ac: fix libfido2 back-compat
configure.ac: add missing includes
semarie at openbsd.org (1):
upstream: backout 1.293 fix kex mem-leak in ssh_packet_close at markus
sobrado (1):
partial sync of regress/netcat.c with upstream
solene at openbsd.org (1):
upstream: - Add [-a rounds] in ssh-keygen man page and usage() -
tobias (2):
partial sync of regress/netcat.c with upstream
partial sync of regress/netcat.c with upstream
-----------------------------------------------------------------------
No new revisions were added by this update.
--
To stop receiving notification emails like this one, please contact
djm at mindrot.org.
More information about the openssh-commits
mailing list