| 7be4ac81 | 18-May-2021 |
djm@openbsd.org |
upstream: restore blocking status on stdio fds before close
ssh(1) needs to set file descriptors to non-blocking mode to operate
but it was not restoring the original state on exit. This could cause
upstream: restore blocking status on stdio fds before close
ssh(1) needs to set file descriptors to non-blocking mode to operate
but it was not restoring the original state on exit. This could cause
problems with fds shared with other programs via the shell, e.g.
> $ cat > test.sh << _EOF
> #!/bin/sh
> {
> ssh -Fnone -oLogLevel=verbose ::1 hostname
> cat /usr/share/dict/words
> } | sleep 10
> _EOF
> $ ./test.sh
> Authenticated to ::1 ([::1]:22).
> Transferred: sent 2352, received 2928 bytes, in 0.1 seconds
> Bytes per second: sent 44338.9, received 55197.4
> cat: stdout: Resource temporarily unavailable
This restores the blocking status for fds 0,1,2 (stdio) before ssh(1)
abandons/closes them.
This was reported as bz3280 and GHPR246; ok dtucker@
OpenBSD-Commit-ID: 8cc67346f05aa85a598bddf2383fcfcc3aae61ce
show more ...
|
| c4902e1a | 17-May-2021 |
djm@openbsd.org |
upstream: fix breakage of -W forwaring introduced in 1.554; reported by
naddy@ and sthen@, ok sthen@
OpenBSD-Commit-ID: f72558e643a26dc4150cff6e5097b5502f6c85fd |
| afea0138 | 17-May-2021 |
dtucker@openbsd.org |
upstream: Regenerate moduli.
OpenBSD-Commit-ID: 83c93a2a07c584c347ac6114d6329b18ce515557 |
| be2866d6 | 16-May-2021 |
Damien Miller |
Handle Android libc returning NULL pw->pw_passwd
Reported by Luke Dashjr |
| 5953c143 | 14-May-2021 |
djm@openbsd.org |
upstream: fix previous: test saved no_shell_flag, not the one that just
got clobbered
OpenBSD-Commit-ID: b8deace085d9d941b2d02f810243b9c302e5355d |
| 1e9fa55f | 13-May-2021 |
djm@openbsd.org |
upstream: Fix ssh started with ControlPersist incorrectly executing a
shell when the -N (no shell) option was specified. bz3290 reported by Richard
Schwab; patch from markus@ ok me
OpenBSD-Commit-I
upstream: Fix ssh started with ControlPersist incorrectly executing a
shell when the -N (no shell) option was specified. bz3290 reported by Richard
Schwab; patch from markus@ ok me
OpenBSD-Commit-ID: ea1ea4af16a95687302f7690bdbe36a6aabf87e1
show more ...
|
| d1320c49 | 12-May-2021 |
dtucker@openbsd.org |
upstream: Clarify language about moduli. While both ends of the
connection do need to use the same parameters (ie groups), the DH-GEX
protocol takes care of that and both ends do not need the same c
upstream: Clarify language about moduli. While both ends of the
connection do need to use the same parameters (ie groups), the DH-GEX
protocol takes care of that and both ends do not need the same contents in
the moduli file, which is what the previous text suggested. ok djm@ jmc@
OpenBSD-Commit-ID: f0c18cc8e79c2fbf537a432a9070ed94e96a622a
show more ...
|
| d3cc4d65 | 07-May-2021 |
djm@openbsd.org |
upstream: include pid in LogVerbose spam
OpenBSD-Commit-ID: aacb86f96ee90c7cb84ec27452374285f89a7f00 |
| e3c03233 | 06-May-2021 |
djm@openbsd.org |
upstream: don't sigdie() in signal handler in privsep child process;
this can end up causing sandbox violations per bz3286; ok dtucker@
OpenBSD-Commit-ID: a7f40b2141dca4287920da68ede812bff7ccfdda |
| a4039724 | 07-May-2021 |
dtucker@openbsd.org |
upstream: Increase ConnectionAttempts from 4 to 10 as the tests
occasionally time out on heavily loaded hosts.
OpenBSD-Regress-ID: 29a8cdef354fc9da471a301f7f65184770434f3a |
| c0d7e36e | 06-May-2021 |
djm@openbsd.org |
upstream: dump out a usable private key string too; inspired by Tyson
Whitehead
OpenBSD-Regress-ID: 65572d5333801cb2f650ebc778cbdc955e372058 |
| 24fee897 | 06-May-2021 |
djm@openbsd.org |
upstream: correct mistake in spec - the private key blobs are encoded
verbatim and not as strings (i.e. no 4-byte length header)
OpenBSD-Commit-ID: 3606b5d443d72118c5b76c4af6dd87a5d5a4f837 |
| f4385915 | 04-May-2021 |
dtucker@openbsd.org |
upstream: Don't pass NULL as a string in debugging as it does not work
on some platforms in -portable. ok djm@
OpenBSD-Commit-ID: 937c892c99aa3c9c272a8ed78fa7c2aba3a44fc9 |
| ac31aa3c | 02-May-2021 |
djm@openbsd.org |
upstream: more debugging for UpdateHostKeys signature failures
OpenBSD-Commit-ID: 1ee95f03875e1725df15d5e4bea3e73493d57d36 |
| 8e32e97e | 01-May-2021 |
Darren Tucker |
Add obsd69 test target. |
| f0689306 | 30-Apr-2021 |
djm@openbsd.org |
upstream: a little debugging in the main mux process for status
confirmation failures in multiplexed sessions
OpenBSD-Commit-ID: 6e27b87c95176107597035424e1439c3232bcb49 |
| e65cf00d | 30-Apr-2021 |
dtucker@openbsd.org |
upstream: Remove now-unused skey function prototypes leftover from
skey removal.
OpenBSD-Commit-ID: 2fc36d519fd37c6f10ce74854c628561555a94c3 |
| ae5f9b0d | 28-Apr-2021 |
Darren Tucker |
Wrap sntrup761x25519 inside ifdef.
From balu.gajjala at gmail.com via bz#3306. |
| 70a8dc13 | 28-Apr-2021 |
Darren Tucker |
Add status badges for Actions-based tests. |
| 40b59024 | 27-Apr-2021 |
Darren Tucker |
Add obsdsnap (OpenBSD snapshot) test target. |
| e627067e | 27-Apr-2021 |
Darren Tucker |
Add test building upstream OpenBSD source. |
| 1b8108eb | 27-Apr-2021 |
Darren Tucker |
Test against OpenSSL 1.1.0h instead of 1.1.0g.
1.1.0g requires a perl glob module that's not installed by default. |
| 9bc20efd | 26-Apr-2021 |
Darren Tucker |
Use the default VM type for libcrypto ver tests. |
| 9f79e80d | 26-Apr-2021 |
Darren Tucker |
Always build OpenSSL shared.
This is the default for current versions but we need it to test against
earlier versions. |
| b3cc9fbd | 26-Apr-2021 |
Darren Tucker |
Fix custom OpenSSL tests.
Check out specified OpenSSL version. Install custom libcrypto where
configure expects to find it. Remove unneeded OpenSSL config time
options. Older OpenSSL versions wer
Fix custom OpenSSL tests.
Check out specified OpenSSL version. Install custom libcrypto where
configure expects to find it. Remove unneeded OpenSSL config time
options. Older OpenSSL versions were not make -j safe so remove it.
show more ...
|