[openssh-commits] [openssh] branch master updated (1ec0a64c -> 339c4fc6)
git+noreply at mindrot.org
git+noreply at mindrot.org
Thu Aug 15 12:21:00 AEST 2024
This is an automated email from the git hooks/post-receive script.
djm pushed a change to branch master
in repository openssh.
from 1ec0a64c Explicitly install libssl-devel cygwin.
new 2865f5b7 upstream: document the reduced logingrace penalty
new 487faaed upstream: add a random amount of time (up to 4 seconds) to the
new 1ff6907e upstream: Fix typo in comment
new fc48ddf6 upstream: Use freezero for better readability
new 56ce0aa3 upstream: Extend sshbuf validation
new 0af06e2c upstream: Reorder calloc arguments
new 7bdfc205 upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
new 63a94f99 upstream: test transfers in mux proxy mode too
new 339c4fc6 upstream: adapt to EVP_PKEY conversion
The 9 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Detailed log of new commits:
commit 339c4fc60a6250429d41fa8713f783d82aad4551
Author: djm at openbsd.org <djm at openbsd.org>
Date: Thu Aug 15 00:52:23 2024 +0000
upstream: adapt to EVP_PKEY conversion
OpenBSD-Regress-ID: 0e2d4efb0ed0e392e23cd8fda183fe56531ac446
commit 63a94f99b9d7c8a48182a40192e45879d1ba8791
Author: djm at openbsd.org <djm at openbsd.org>
Date: Fri Jul 19 04:33:36 2024 +0000
upstream: test transfers in mux proxy mode too
OpenBSD-Regress-ID: 2edfc980628cfef3550649cab8d69fa23b5cd6c4
commit 7bdfc20516e288b58c8c847958059c7b141eeff9
Author: djm at openbsd.org <djm at openbsd.org>
Date: Thu Aug 15 00:51:51 2024 +0000
upstream: Convert RSA and ECDSA key to the libcrypto EVP_PKEY API.
DSA remains unconverted as it will be removed within six months.
Based on patches originally from Dmitry Belyavskiy, but significantly
reworked based on feedback from Bob Beck, Joel Sing and especially
Theo Buehler (apologies to anyone I've missed).
ok tb@
OpenBSD-Commit-ID: d098744e89f1dc7e5952a6817bef234eced648b5
commit 0af06e2c5b898992a18c74333e75a0136506acc6
Author: tobias at openbsd.org <tobias at openbsd.org>
Date: Wed Aug 14 15:42:18 2024 +0000
upstream: Reorder calloc arguments
The first argument should be the amount, the second argument should be the
element size. Fixing this also silences some gcc compiler warnings for
portable.
Spotted with Benny Baumann (BenBE at geshi dot org).
ok djm@
OpenBSD-Commit-ID: 711ad6f7bd7fb48bf52208f2cf9f108cddb6d41a
commit 56ce0aa3c6cf28d9fcbce3207457abeac91b5050
Author: tobias at openbsd.org <tobias at openbsd.org>
Date: Wed Aug 14 15:40:30 2024 +0000
upstream: Extend sshbuf validation
Multiple sshbuf structs can be linked through a parent/child relationship.
Make sure that a single sshbuf cannot be its own parent. If this would ever
happen, it would result in reference counting issues.
This is a cheap way of testing this with very little overhead. It does not
detect A->B->A linkages though for performance reason and the fact that it
takes a programming error for this to occur anyway.
Authored with Benny Baumann (BenBE at geshi dot org).
ok djm@
OpenBSD-Commit-ID: fb3fa9ee2cad3c7e842ebadfd7f5db220c4aaf16
commit fc48ddf6998188517af42dce807e2088b6a0c0be
Author: tobias at openbsd.org <tobias at openbsd.org>
Date: Wed Aug 14 15:37:11 2024 +0000
upstream: Use freezero for better readability
It has the same meaning as the current pair of calling explicit_bzero
and free. Spotted with Benny Baumann (BenBE at geshi dot org).
ok djm@
OpenBSD-Commit-ID: 939fbe9ccf52d0d48c5fa53694d6f3bb9927970c
commit 1ff6907ec26dac6ac59fe9fe232899a63b4c14d8
Author: tobias at openbsd.org <tobias at openbsd.org>
Date: Wed Aug 14 15:35:23 2024 +0000
upstream: Fix typo in comment
Spotted with Benny Baumann (BenBE at geshi dot org).
ok djm@
OpenBSD-Commit-ID: 829160ac8ef3ad3409695ce3a3ade835061cae57
commit 487faaed8f3bb9ffb19e8f807a3da72895b16421
Author: dlg at openbsd.org <dlg at openbsd.org>
Date: Wed Jul 31 12:00:18 2024 +0000
upstream: add a random amount of time (up to 4 seconds) to the
grace login time.
ok deraadt@ djm@
OpenBSD-Commit-ID: abd3c57aaa5861517529b322df79b6be35ee67f4
commit 2865f5b7520bed3e74fbbb5f8d7a44193d7a4314
Author: naddy at openbsd.org <naddy at openbsd.org>
Date: Fri Jul 26 15:24:49 2024 +0000
upstream: document the reduced logingrace penalty
OpenBSD-Commit-ID: 9b63e0e3599d524ddc10edc4f978081382c3548b
Summary of changes:
cipher.c | 4 +-
packet.c | 9 +-
packet.h | 6 +-
regress/multiplex.sh | 29 +--
regress/unittests/sshkey/common.c | 18 +-
regress/unittests/sshkey/test_file.c | 11 +-
regress/unittests/sshkey/test_sshkey.c | 26 ++-
ssh-ecdsa-sk.c | 49 ++++-
ssh-ecdsa.c | 258 +++++++++++++++-------
ssh-keygen.c | 61 ++++--
ssh-pkcs11-client.c | 83 +++++--
ssh-pkcs11-helper.c | 83 ++++---
ssh-pkcs11.c | 42 ++--
ssh-rsa.c | 385 +++++++++++----------------------
ssh-sk.c | 29 ++-
sshbuf-getput-crypto.c | 11 +-
sshbuf.c | 18 +-
sshbuf.h | 4 +-
sshd-session.c | 21 +-
sshd_config.5 | 6 +-
sshkey.c | 225 +++++++++++++------
sshkey.h | 26 ++-
22 files changed, 825 insertions(+), 579 deletions(-)
--
To stop receiving notification emails like this one, please contact
djm at mindrot.org.
More information about the openssh-commits
mailing list