[openssh-commits] [openssh] branch master updated (3c6ab63b -> 7603ba71)

git+noreply at mindrot.org git+noreply at mindrot.org
Mon Aug 28 13:34:40 AEST 2023 

This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  3c6ab63b  Include Portable version in sshd version string.
       new  9d7193a8  upstream: correct math for ClientAliveInterval that caused the
       new  d2d24793  upstream: Log errors in kex_exchange_identification() with level
       new  dce6d80d  upstream: Introduce a transport-level ping facility
       new  7603ba71  upstream: Add keystroke timing obfuscation to the client.

The 4 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit 7603ba71264e7fa938325c37eca993e2fa61272f
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Aug 28 03:31:16 2023 +0000

    upstream: Add keystroke timing obfuscation to the client.
    
    This attempts to hide inter-keystroke timings by sending interactive
    traffic at fixed intervals (default: every 20ms) when there is only a
    small amount of data being sent. It also sends fake "chaff" keystrokes
    for a random interval after the last real keystroke. These are
    controlled by a new ssh_config ObscureKeystrokeTiming keyword/
    
    feedback/ok markus@
    
    OpenBSD-Commit-ID: 02231ddd4f442212820976068c34a36e3c1b15be

commit dce6d80d2ed3cad2c516082682d5f6ca877ef714
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Aug 28 03:28:43 2023 +0000

    upstream: Introduce a transport-level ping facility
    
    This adds a pair of SSH transport protocol messages SSH2_MSG_PING/PONG
    to implement a ping capability. These messages use numbers in the "local
    extensions" number space and are advertised using a "ping at openssh.com"
    ext-info message with a string version number of "0".
    
    ok markus@
    
    OpenBSD-Commit-ID: b6b3c4cb2084c62f85a8dc67cf74954015eb547f

commit d2d247938b38b928f8a6e1a47a330c5584d3a358
Author: tobhe at openbsd.org <tobhe at openbsd.org>
Date:   Mon Aug 21 21:16:18 2023 +0000

    upstream: Log errors in kex_exchange_identification() with level
    
    verbose instead of error to reduce preauth log spam. All of those get logged
    with a more generic error message by sshpkt_fatal().
    
    feedback from sthen@
    ok djm@
    
    OpenBSD-Commit-ID: bd47dab4695b134a44c379f0e9a39eed33047809

commit 9d7193a8359639801193ad661a59d1ae4dc3d302
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Mon Aug 21 04:59:54 2023 +0000

    upstream: correct math for ClientAliveInterval that caused the
    
    probes to be sent less frequently than configured; from Dawid Majchrzak
    
    OpenBSD-Commit-ID: 641153e7c05117436ddfc58267aa267ca8b80038

Summary of changes:
 PROTOCOL     |  35 +++++++++++++++-
 clientloop.c | 133 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++--
 kex.c        |  55 ++++++++++++++++--------
 kex.h        |   3 +-
 misc.c       |  29 +++++++++----
 misc.h       |   3 +-
 packet.c     |  35 +++++++++++++++-
 packet.h     |   3 +-
 readconf.c   |  64 +++++++++++++++++++++++++++-
 readconf.h   |   8 +++-
 serverloop.c |   4 +-
 ssh2.h       |   6 ++-
 ssh_config.5 |  22 +++++++++-
 13 files changed, 356 insertions(+), 44 deletions(-)

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list