[openssh-commits] [openssh] branch master updated (66bd9fdf -> 1286981d)

git+noreply at mindrot.org git+noreply at mindrot.org
Sat Oct 3 18:31:56 AEST 2020 

This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

      from  66bd9fdf  upstream: split introductory paragraph, and insert ominous words about
       new  e5ed753a  upstream: want time.h here too
       new  12ae8f95  upstream: prefer ed25519 signature algorithm variants to ECDSA; ok
       new  13cee44e  upstream: record when the host key checking code downgrades a
       new  332f2153  upstream: disable UpdateHostkeys when a wildcard hostname pattern
       new  1286981d  upstream: enable UpdateHostkeys by default when the configuration

The 5 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit 1286981d08b8429a64613215ce8bff3f6b32488a
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sat Oct 3 08:30:47 2020 +0000

    upstream: enable UpdateHostkeys by default when the configuration
    
    has not overridden UserKnownHostsFile; ok markus@ "The timing is perfect"
    deraadt@
    
    OpenBSD-Commit-ID: 62df71c9c5242da5763cb473c2a2deefbd0cef60

commit 332f21537293d66508f7342dc643bc7fe45f0f69
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sat Oct 3 08:12:59 2020 +0000

    upstream: disable UpdateHostkeys when a wildcard hostname pattern
    
    is encountered or when a certificate host key is in use. feedback/ok markus@
    
    OpenBSD-Commit-ID: b6e5575af7e6732322be82ec299e09051a5413bd

commit 13cee44ef907824083d89cb9395adbbd552e46c1
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sat Oct 3 08:11:28 2020 +0000

    upstream: record when the host key checking code downgrades a
    
    certificate host key to a plain key. This occurs when the user connects to a
    host with a certificate host key but no corresponding CA key configured in
    known_hosts; feedback and ok markus@
    
    OpenBSD-Commit-ID: 2ada81853ff9ee7824c62f440bcf4ad62030c901

commit 12ae8f95e2e0c273e9e7ef930b01a028ef796a3f
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sat Oct 3 04:15:06 2020 +0000

    upstream: prefer ed25519 signature algorithm variants to ECDSA; ok
    
    markus@
    
    OpenBSD-Commit-ID: 82187926fca96d35a5b5afbc091afa84e0966e5b

commit e5ed753add7aa8eed6b167e44db6240a76404db2
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Sat Oct 3 03:40:38 2020 +0000

    upstream: want time.h here too
    
    OpenBSD-Commit-ID: fafee8f1108c64ad8b282f9a1ed5ea830d8c58a7

Summary of changes:
 clientloop.c  | 33 +++++++++++++++++++++++++++++++--
 kex.h         |  8 +++++---
 myproposal.h  | 14 +++++++-------
 readconf.c    | 10 ++++++++--
 sk-usbhid.c   |  3 ++-
 ssh_config.5  | 31 +++++++++++++++++--------------
 sshconnect.c  | 55 +++++++++++++++++++++++++++++++++++++++++++------------
 sshconnect.h  |  4 ++--
 sshconnect2.c |  9 +++++++--
 sshd_config.5 | 29 ++++++++++++++++-------------
 10 files changed, 138 insertions(+), 58 deletions(-)

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list