[openssh-commits] [openssh] annotated tag V_8_4_P1 created (now 3001ef05)

git+noreply at mindrot.org git+noreply at mindrot.org
Sun Sep 27 19:38:13 AEST 2020

This is an automated email from the git hooks/post-receive script.

djm pushed a change to annotated tag V_8_4_P1
in repository openssh.

        at  3001ef05  (tag)
   tagging  279261e1ea8150c7c64ab5fe7cb4a4ea17acbb29 (commit)
  replaces  V_8_2_P1
 tagged by  Damien Miller
        on  Sun Sep 27 17:39:42 2020 +1000

- Log -----------------------------------------------------------------


Andreas Schwab (1):
      Add support for AUDIT_ARCH_RISCV64

Damien Miller (34):
      spelling mistakes
      another spelling error in comment
      sync fnmatch.c with upstream to fix another typo
      prefer libcrypto chacha20-poly1305 where possible
      fix inverted test for LibreSSL version
      sys/sysctl.h is only used on OpenBSD
      wrap sha2.h inclusion in #ifdef HAVE_SHA2_H
      fix reversed test
      sync config.guess/config.sub with latest versions
      prepare for 8.3 release
      revert removal of .depend before makedepend
      make depend
      explicitly manage .depend and .depend.bak
      prefer ln to cp for temporary copy of sshd
      missing files for webauthn/sshsig unit test
      missing ifdef SELINUX; spotted by dtucker
      document a PAM spec problem in a frustrated comment
      sync sys-queue.h with OpenBSD upstream
      add check for fido_cred_set_prot() to configure
      detect Linux/X32 systems
      Add ssh-sk-helper and manpage to RPM spec file
      undef TAILQ_CONCAT and friends
      wrap a declaration in the same ifdefs as its use
      support NetBSD's utmpx.ut_ss address field
      sync memmem.c with OpenBSD
      degrade semi-gracefully when libfido2 is too old
      tweak back-compat for older libfido2
      focus improvement for gnome-ssh-askpass[23]
      control over the colours in gnome-ssh-askpass[23]
      libfido2 1.5.0 is recommended
      sync with upstream ssh-copy-id rev f0da1a1b7
      update version numbers

Darren Tucker (50):
      Check if getpeereid is actually declared.
      Prevent unused variable warning.
      Check if TILDE is already defined and undef.
      Constify aix_krb5_get_principal_name.
      Remove unused variable warning.
      Import regenerated moduli.
      Include fido.h when checking for fido/credman.h.
      Use /usr/bin/xp4g/id if necessary.
      Include openssl-compat.h before checking ifdefs.
      Add sys/syscall.h for syscall numbers.
      Sync rev 1.49.
      Remove unneeded env vars from t-exec invocation.
      Pass configure's egrep through to test-exec.sh.
      Put the values from env vars back.
      Mailing list is now closed to non-subscribers.
      Update .depend.
      Error out if given RDomain if unsupported.
      Fix conditional for openssl-based chacha20.
      Include sys/byteorder.h for htons and friends.
      See if SA_RESTART signals will interrupt select().
      Use LONG_LONG_MAX and friends if available.
      Remove use of tail for 'make depend'.
      Update .depend.
      Skip security key tests if ENABLE_SK not set.
      Check if -D_REENTRANT is needed for localtime_r.
      Ensure SA_SIGNAL test only signals itself.
      Skip building sk-dummy library if no SK support.
      Actually skip pty tests when needed.
      Document that libfido2 >= 1.4.0 is needed.
      Omit ToS setting if we don't have IPV6_TCLASS too.
      Test fallthrough in OSSH_CHECK_CFLAG_COMPILE.
      Hook sshsig tests up to Portable Makefiles.
      Skip OpenSSL specific tests w/out OpenSSL.
      Add includes.h to new test.
      Extra brackets around sizeof() in bcrypt.
      Add OPENBSD ORIGINAL marker to bcrypt_pbkdf.
      Wrap stdint.h in ifdef HAVE_STDINT_H.
      Adjust portable code to match changes in 939d787d,
      Skip ECDSA-SK webauthn test when built w/out ECC
      Use argv in OSSH_CHECK_CFLAG_COMPILE test.
      Remove AC_REVISION.
      Add without-openssl without-zlib test target.
      Document --without-openssl and --without-zlib.
      Add ability to specify exact test target.
      Output test debug logs on failure.
      Always send any PAM account messages.
      Wrap stdint.h include in ifdef HAVE_STDINT_H.
      Remove check for 'ent' command.
      Add aclocal.m4 and config.h.in~ to .gitignore.
      New config-build-time dependency on automake.

HARUYAMA Seigo (1):
      Fix typos in INSTALL: s/avilable/available/ s/suppports/supports/

Nico Kadel-Garcia (1):
      Switch %define to %global for redhat/openssh.spec

Sebastian Andrzej Siewior (3):
      Remove HAVE_MMAP and BROKEN_MMAP
      Move the local m4 macros
      Quote the definition of OSSH_CHECK_HEADER_FOR_FIELD

Stefan Schindler (1):
      Add CI with prepare script

bket at openbsd.org (1):
      upstream: Replace TAILQ concatenation loops with TAILQ_CONCAT

cheloha at openbsd.org (1):
      upstream: ssh-keyscan(1): simplify conloop() with timercmp(3),

chl (1):
      partial sync of regress/netcat.c with upstream

deraadt at openbsd.org (3):
      upstream: we are still aiming for pre-C99 ...
      upstream: correct recently broken comments
      upstream: clang -Wimplicit-fallthrough does not recognise /*

djm at openbsd.org (124):
      upstream: better error message when trying to use a FIDO key
      upstream: no-touch-required certificate option should be an
      upstream: when downloading FIDO2 resident keys from a token, don't
      upstream: spelling errors in comments; no code change from
      upstream: use sshpkt_fatal() for kex_exchange_identification()
      upstream: improve error messages for some common PKCS#11 C_Login
      upstream: some more speeling mistakes from
      upstream: add allocating variant of the safe utf8 printer; ok
      upstream: give ssh-keygen the ability to dump the contents of a
      upstream: make failures when establishing "Tunnel" forwarding terminate
      upstream: the tunnel-forwarding vs ExitOnForwardFailure fix that I
      upstream: fix debug statement
      upstream: make Chacha20-POLY1305 context struct opaque; ok tb@ as
      upstream: chacha20-poly1305 AEAD using libcrypto EVP_chacha20
      upstream: Add a flag to re-enable verbose output when in batch
      upstream: fix format string (use %llu for uint64, not %lld). spotted by
      upstream: this needs utf8.c too
      upstream: avoid another compiler warning spotted in -portable
      upstream: r1.522 deleted one too many lines; repair
      upstream: refactor private key parsing a little
      upstream: check that pubkey in private key envelope matches actual
      upstream: check private key type against requested key type in
      upstream: simplify sshkey_parse_private_fileblob_type()
      upstream: add sshkey_parse_pubkey_from_private_fileblob_type()
      upstream: simplify sshkey_try_load_public()
      upstream: let sshkey_try_load_public() load public keys from the
      upstream: Refactor private key parsing. Eliminates a fair bit of
      upstream: allow the IgnoreRhosts directive to appear anywhere in a
      upstream: make IgnoreRhosts a tri-state option: "yes" ignore
      upstream: mention that /etc/hosts.equiv and /etc/shosts.equiv are
      upstream: fix reversed test that caused IdentitiesOnly=yes to not
      upstream: auth2-pubkey r1.89 changed the order of operations to
      upstream: refactor out some duplicate private key loading code;
      upstream: repair private key fingerprint printing to also print
      upstream: fix a bug I introduced in r1.406: when printing private key
      upstream: regression test for printing of private key fingerprints and
      upstream: when signing a challenge using a FIDO toke, perform the
      upstream: adapt dummy FIDO middleware to API change; ok markus@
      upstream: avoid NULL dereference when attempting to convert invalid
      upstream: expose vasnmprintf(); ok (as part of other commit) markus
      upstream: when receving a file in sink(), be careful to send at
      upstream: we have a sshkey_save_public() function to save public keys;
      upstream: remove obsolete RSA1 test keys; spotted by Michael Forney
      upstream: portability fix for sed that always emil a newline even
      upstream: make mktestdata.sh generate old/new format keys that we
      upstream: sure enough, some of the test data that we though were in
      upstream: another case where a utimes() failure could make scp send
      upstream: openssh-8.3; ok deraadt@
      upstream: fix compilation with DEBUG_KEXDH; bz#3160 ok dtucker@
      upstream: clarify role of FIDO tokens in multi-factor
      upstream: fix non-ASCII quote that snuck in; spotted by Gabriel
      upstream: when ordering the hostkey algorithms to request from a
      upstream: preserve group/world read permission on known_hosts
      upstream: always call fido_init(); previous behaviour only called
      upstream: Enable credProtect extension when generating a resident
      upstream: fix off-by-one error that caused sftp downloads to make
      upstream: avoid possible NULL deref; from Pedro Martelletto
      upstream: add fmt_timeframe() (from bgpd) to format a time
      upstream: improve logging for MaxStartups connection throttling:
      upstream: Restrict ssh-agent from signing web challenges for FIDO
      upstream: fix memleak of signature; from Pedro Martelletto
      upstream: two new tests for Include in sshd_config, checking whether
      upstream: fix crash in recallocarray when deleting SendEnv
      upstream: Do not call process_queued_listen_addrs() for every
      upstream: fix Include before Match in sshd_config; bz#3122 patch
      upstream: fix exit status for downloading of FIDO resident keys;
      upstream: fix compilation on !HAVE_DLOPEN platforms; stub function
      upstream: mention that wildcards are processed in lexical order;
      upstream: wrap long line
      upstream: make sshbuf_dump() args const
      upstream: make sshbuf_putb(b, NULL) a no-op
      upstream: unbreak "sshd -ddd" - close of config passing fd happened too
      upstream: correct RFC number; from HARUYAMA Seigo via GH PR191
      upstream: avoid spurious "Unable to load host key" message when
      upstream: check public host key matches private; ok markus@ (as
      upstream: basic unit test for FIDO kep parsing
      upstream: basic unit test for sshsig.[ch], including FIDO keys
      upstream: run sshsig unit tests
      upstream: better terminology for permissions; feedback & ok markus@
      upstream: better terminology for permissions; feedback & ok markus@
      upstream: support for RFC4648 base64url encoding; ok markus
      upstream: refactor ECDSA-SK verification a little ahead of adding
      upstream: Add support for FIDO webauthn (verification only).
      upstream: add support for verification of webauthn sshsig signature,
      upstream: some clarifying comments
      upstream: constify a few things; ok dtucker (as part of another
      upstream: allow "ssh-add -d -" to read keys to be deleted from
      upstream: handle EINTR in waitfd() and timeout_connect() helpers;
      upstream: regress test for ssh-add -d; ok dtucker@
      upstream: avoid spurious error message when ssh-keygen creates files
      upstream: fix memory leak of mux_ctx; patch from Sergiy Lozovsky
      upstream: start ClientAliveInterval bookkeeping before first pass
      upstream: when redirecting sshd's log output to a file, undo this
      upstream: avoid tilde_expand_filename() in expanding ~/.ssh/rc - if
      upstream: revert r1.399 - the lifetime of c->mux_ctx is more complex;
      upstream: put back the mux_ctx memleak fix, but only for channels of
      upstream: some language improvements; ok markus
      upstream: allow some additional control over the use of ssh-askpass
      upstream: log error message for process_write() write failures
      upstream: allow -A to explicitly enable agent forwarding in scp and
      upstream: ensure that certificate extensions are lexically sorted.
      upstream: let the "Confirm user presence for key ..." ssh-askpass
      upstream: let ssh_config(5)'s AddKeysToAgent keyword accept a time
      upstream: support for user-verified FIDO keys
      upstream: support for requiring user verified FIDO keys in sshd
      upstream: major rework of FIDO token selection logic
      upstream: preserve verify-required for resident FIDO keys
      upstream: Request PIN ahead of time for certain FIDO actions
      upstream: remove unreachable code I forgot to delete in r1.334
      upstream: dummy firmware needs to match API version numner crank (for
      upstream: adapt to API changes
      upstream: skip a bit more FIDO token selection logic when only a
      upstream: debug()-print a little info about FIDO-specific key
      upstream: Add RCS IDs to the few files that are missing them; from
      upstream: refuse to add verify-required (PINful) FIDO keys to
      upstream: when writing an attestation blob for a FIDO key, record all
      upstream: adapt to SSH_SK_VERSION_MAJOR crank
      upstream: For the hostkey confirmation message:
      upstream: tweak the client hostkey preference ordering algorithm to
      upstream: handle multiple messages in a single read()
      upstream: cap channel input buffer size at 16MB; avoids high memory use
      upstream: close stdout/stderr after "ssh -f ..." forking
      upstream: close stdin when forking after authentication too; ok markus
      upstream: openssh 8.4

dtucker at openbsd.org (55):
      upstream: Detect and prevent simple configuration loops when using
      upstream: Ensure that the key lifetime provided fits within the
      upstream: Import regenerated moduli.
      upstream: Update moduli generation script to new ssh-keygen
      upstream: Fix some typos and an incorrect word in docs. Patch from
      upstream: Fix typo. Patch from itoama at live.jp via github PR#173.
      upstream: Remove obsolete XXX comment. ok deraadt@
      upstream: Have sftp reject "-1" in the same way as ssh(1) and
      upstream: Drop leading space from line count that was confusing
      upstream: Don't clear alarm timers in listening sshd. Previously
      upstream: Cast lifetime to u_long for comparison to prevent unsigned
      upstream: Make with config keywords support which
      upstream: Add regression test for percent expansions where possible.
      upstream: %C expansion just added to Match Exec should include
      upstream: Add percent_expand test for 'Match Exec'.
      upstream: Temporarily remove tests for '%C' since the hash contains the
      upstream: Compute hash locally and re-enable %C tests.
      upstream: Some platforms don't have "hostname -s", so use cut to trim
      upstream: Indicate if we're using a cached key in trace output.
      upstream: Add TOKEN percent expansion to LocalFoward and RemoteForward
      upstream: Add utf8.c for asmprintf used by krl.c
      upstream: Add tests for TOKEN expansion of LocalForward and
      upstream: Backslash '$' at then end of string. Prevents warning on
      upstream: Remove leave_non_blocking() which is now dead code
      upstream: Fix incorrect error message for "too many known hosts files."
      upstream: We've standardized on memset over bzero, replace a couple
      upstream: Fix comment typo. Patch from mforney at mforney.org.
      upstream: Fix multiplier in convtime when handling seconds after
      upstream: Allow some keywords to expand shell-style ${ENV}
      upstream: Unit test for convtime. ok djm@
      upstream: Add regression and unit tests for ${ENV} style
      upstream: Pass a NULL instead of zeroed out va_list from
      upstream: Make dollar_expand variadic and pass a real va_list to
      upstream: Remove now-unused proto_spec and associated definitions.
      upstream: Import regenerated moduli file.
      upstream: Import regenerated moduli file.
      upstream: Correct historical comment: provos@ modified OpenSSH to
      upstream: Test that ssh-agent exits when running as as subprocess
      upstream: Correct synopsis and usage for the options accepted when
      upstream: Expand path to ~/.ssh/rc rather than relying on it
      upstream: Defer creation of ~/.ssh by ssh(1) until we attempt to
      upstream: Only reset the serveralive check when we receive traffic from
      upstream: Use $OBJ to find key files. Fixes test when run on an obj
      upstream: Add default for number of rounds (-a). ok djm@
      upstream: Update test to match recent change in match.c
      upstream: Fix previous by calling the correct function.
      upstream: Add %-TOKEN, environment variable and tilde expansion to
      upstream: Add a '%k' TOKEN that expands to the effective HostKey of
      upstream: Add tests for expansions on UserKnownHostsFile.
      upstream: Add test for '%k' (HostKeyAlias) TOKEN.
      upstream: Add %k to the TOKENs for Match Exec for consistency with
      upstream: Also compare username when checking for JumpHost loops.
      upstream: Check that the addresses supplied to Match Address and
      upstream: Ensure that address/mask mismatches are flagged at
      upstream: Remove unused buf, last user was removed when switching

jca (1):
      partial sync of regress/netcat.c with upstream

jmc at openbsd.org (12):
      upstream: sort -N and add it to usage();
      upstream: add space between macro arg and punctuation;
      upstream: add space beteen macro arg and punctuation;
      upstream: ce examples of "Ar arg Ar arg" with "Ar arg arg" and
      upstream: tweak previous; ok markus
      upstream: remove a stray .El;
      upstream: supply word missing in previous;
      upstream: updated argument name for -P in first synopsis was
      upstream: start sentence with capital letter;
      upstream: fix macro slip in previous;
      upstream: tweak previous;
      upstream: sentence fix; from pedro martelletto

jsg at openbsd.org (1):
      upstream: change explicit_bzero();free() to freezero()

markus at openbsd.org (35):
      upstream: sshpkt_fatal() does not return; ok djm
      upstream: vasnmprintf allocates str and returns -1; ok djm
      upstream: sshsig: return correct error, fix null-deref; ok djm
      upstream: pkcs11_register_provider: return < 0 on error; ok djm
      upstream: exit if ssh_krl_revoke_key_sha256 fails; ok djm
      upstream: fix null-deref on calloc failure; ok djm
      upstream: exit on parse failures in input_service_request; ok djm
      upstream: fix uninitialized pointers for forward_cancel; ok djm
      upstream: initialize cname in case ai_canonname is NULL or too
      upstream: consistently check packet_timeout_ms against 0; ok djm
      upstream: passphrase depends on kdfname, not ciphername (possible
      upstream: sshkey_cert_check_authority requires reason to be set;
      upstream: ssh_fetch_identitylist() returns the return value from
      upstream: fix possible null-deref in check_key_not_revoked; ok
      upstream: return correct error in sshsk_ed25519_sig; ok djm
      upstream: remove unused variables in ssh-pkcs11-helper; ok djm
      upstream: principalsp is optional, pubkey required; ok djm
      upstream: correct return code; ok djm
      upstream: initialize seconds for debug message; ok djm
      upstream: do not leak oprincipals; ok djm
      upstream: fix use-after-free in do_download_sk; ok djm
      upstream: fix relative includes in sshd_config; ok djm
      upstream: run the 2nd ssh with BatchMode for scp -3
      upstream: bring back debug() removed in rev 1.74; noted by pradeep
      upstream: sshd listener must not block if reexecd sshd exits
      upstream: only call sshkey_xmss_init() once for KEY_XMSS_CERT; ok
      upstream: allow sshd_config longer than 256k; ok djm
      upstream: support loading big sshd_config files w/o realloc; ok
      upstream: fix ssh -O proxy w/mux which got broken by no longer
      upstream: fix kex mem-leak in ssh_packet_close; ok djm
      upstream: add test for mux w/-Oproxy; ok djm
      upstream: free kex in ssh_packet_close; ok djm semarie
      upstream: don't exit the listener on send_rexec_state errors; ok
      upstream: keep ignoring HUP after fork+exec; ok djm
      upstream: update setproctitle after re-exec; ok djm

millert at openbsd.org (1):
      upstream: Fix error message on close(2) and add printf format

mkontani (1):
      fix some typos and sentence

naddy at openbsd.org (1):
      upstream: document -F none; with jmc@

pedro martelletto (2):
      configure.ac: fix libfido2 back-compat
      configure.ac: add missing includes

semarie at openbsd.org (1):
      upstream: backout 1.293 fix kex mem-leak in ssh_packet_close at markus

sobrado (1):
      partial sync of regress/netcat.c with upstream

solene at openbsd.org (1):
      upstream: - Add [-a rounds] in ssh-keygen man page and usage() -

tobias (2):
      partial sync of regress/netcat.c with upstream
      partial sync of regress/netcat.c with upstream


No new revisions were added by this update.

To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list