| 32b2502a | 26-Jun-2020 |
Damien Miller |
missing ifdef SELINUX; spotted by dtucker |
| e073106f | 26-Jun-2020 |
djm@openbsd.org |
upstream: regress test for ssh-add -d; ok dtucker@
OpenBSD-Regress-ID: 3a2e044be616afc7dd4f56c100179e83b33d8abf |
| c809daaa | 24-Jun-2020 |
markus@openbsd.org |
upstream: add test for mux w/-Oproxy; ok djm
OpenBSD-Regress-ID: 764d5c696e2a259f1316a056e225e50023abb027 |
| 3d06ff4b | 26-Jun-2020 |
djm@openbsd.org |
upstream: handle EINTR in waitfd() and timeout_connect() helpers;
bz#3071; ok dtucker@
OpenBSD-Commit-ID: 08fa87be50070bd8b754d9b1ebb1138d7bc9d8ee |
| fe2ec0b9 | 26-Jun-2020 |
djm@openbsd.org |
upstream: allow "ssh-add -d -" to read keys to be deleted from
stdin bz#3180; ok dtucker@
OpenBSD-Commit-ID: 15c7f10289511eb19fce7905c9cae8954e3857ff |
| a3e0c376 | 26-Jun-2020 |
djm@openbsd.org |
upstream: constify a few things; ok dtucker (as part of another
diff)
OpenBSD-Commit-ID: 7c17fc987085994d752304bd20b1ae267a9bcdf6 |
| 74344c3c | 26-Jun-2020 |
dtucker@openbsd.org |
upstream: Defer creation of ~/.ssh by ssh(1) until we attempt to
write to it so we don't leave an empty .ssh directory when it's not needed.
Use the same function to replace the code in
upstream: Defer creation of ~/.ssh by ssh(1) until we attempt to
write to it so we don't leave an empty .ssh directory when it's not needed.
Use the same function to replace the code in ssh-keygen that does the same
thing. bz#3156, ok djm@
OpenBSD-Commit-ID: 59c073b569be1a60f4de36f491a4339bc4ae870f
show more ...
|
| c9e24daa | 26-Jun-2020 |
dtucker@openbsd.org |
upstream: Expand path to ~/.ssh/rc rather than relying on it
being relative to the current directory, so that it'll still be found if the
shell startup changes its directory. Since the
upstream: Expand path to ~/.ssh/rc rather than relying on it
being relative to the current directory, so that it'll still be found if the
shell startup changes its directory. Since the path is potentially longer,
make the cmd buffer that uses it dynamically sized. bz#3185, with & ok djm@
OpenBSD-Commit-ID: 36e33ff01497af3dc8226d0c4c1526fc3a1e46bf
show more ...
|
| 07f5f369 | 24-Jun-2020 |
markus@openbsd.org |
upstream: fix kex mem-leak in ssh_packet_close; ok djm
OpenBSD-Commit-ID: e2e9533f393620383afd0b68ef435de8d5e8abe4 |
| e3599508 | 24-Jun-2020 |
markus@openbsd.org |
upstream: fix ssh -O proxy w/mux which got broken by no longer
making ssh->kex optional in packet.c revision 1.278 ok djm@
OpenBSD-Commit-ID: 2b65df04a064c2c6277359921d2320c90ab7d917 |
| 250246fe | 24-Jun-2020 |
markus@openbsd.org |
upstream: support loading big sshd_config files w/o realloc; ok
djm
OpenBSD-Commit-ID: ba9238e810074ac907f0cf8cee1737ac04983171 |
| 89b54900 | 24-Jun-2020 |
markus@openbsd.org |
upstream: allow sshd_config longer than 256k; ok djm
OpenBSD-Commit-ID: 83f40dd5457a64c1d3928eb4364461b22766beb3 |
| e3fa6249 | 24-Jun-2020 |
markus@openbsd.org |
upstream: only call sshkey_xmss_init() once for KEY_XMSS_CERT; ok
djm
OpenBSD-Commit-ID: d0002ffb7f20f538b014d1d0735facd5a81ff096 |
| 37f2da06 | 22-Jun-2020 |
djm@openbsd.org |
upstream: some clarifying comments
OpenBSD-Commit-ID: 5268479000fd97bfa30ab819f3517139daa054a2 |
| b659319a | 22-Jun-2020 |
jmc@openbsd.org |
upstream: updated argument name for -P in first synopsis was
missed in previous;
OpenBSD-Commit-ID: 8d84dc3050469884ea91e29ee06a371713f2d0b7 |
| 02a9222c | 22-Jun-2020 |
jmc@openbsd.org |
upstream: supply word missing in previous;
OpenBSD-Commit-ID: 16a38b049f216108f66c8b699aa046063381bd23 |
| 5098b3b6 | 22-Jun-2020 |
Damien Miller |
missing files for webauthn/sshsig unit test |
| 354535ff | 22-Jun-2020 |
djm@openbsd.org |
upstream: add support for verification of webauthn sshsig signature,
and example HTML/JS to generate webauthn signatures in SSH formats (also used
to generate the testdata/* for the test
upstream: add support for verification of webauthn sshsig signature,
and example HTML/JS to generate webauthn signatures in SSH formats (also used
to generate the testdata/* for the test).
OpenBSD-Regress-ID: dc575be5bb1796fdf4b8aaee0ef52a6671a0f6fb
show more ...
|
| bb52e70f | 22-Jun-2020 |
djm@openbsd.org |
upstream: Add support for FIDO webauthn (verification only).
webauthn is a standard for using FIDO keys in web browsers. webauthn
signatures are a slightly different format to plain FIDO
upstream: Add support for FIDO webauthn (verification only).
webauthn is a standard for using FIDO keys in web browsers. webauthn
signatures are a slightly different format to plain FIDO signatures - this
support allows verification of these. Feedback and ok markus@
OpenBSD-Commit-ID: ab7e3a9fb5782d99d574f408614d833379e564ad
show more ...
|
| 64bc1210 | 22-Jun-2020 |
djm@openbsd.org |
upstream: refactor ECDSA-SK verification a little ahead of adding
support for FIDO webauthn signature verification support; ok markus@
OpenBSD-Commit-ID: c9f478fd8e0c1bd17e511ce8694
upstream: refactor ECDSA-SK verification a little ahead of adding
support for FIDO webauthn signature verification support; ok markus@
OpenBSD-Commit-ID: c9f478fd8e0c1bd17e511ce8694f010d8e32043e
show more ...
|
| 12848191 | 22-Jun-2020 |
djm@openbsd.org |
upstream: support for RFC4648 base64url encoding; ok markus
OpenBSD-Commit-ID: 0ef22c55e772dda05c112c88412c0797fec66eb4 |
| 473b4af4 | 22-Jun-2020 |
djm@openbsd.org |
upstream: better terminology for permissions; feedback & ok markus@
OpenBSD-Commit-ID: ff2a71803b5ea57b83cc3fa9b3be42b70e462fb9 |
| fc270baf | 22-Jun-2020 |
djm@openbsd.org |
upstream: better terminology for permissions; feedback & ok markus@
OpenBSD-Commit-ID: ffb220b435610741dcb4de0e7fc68cbbdc876d2c |
| 00531bb4 | 19-Jun-2020 |
dtucker@openbsd.org |
upstream: Correct synopsis and usage for the options accepted when
passing a command to ssh-agent. ok jmc@
OpenBSD-Commit-ID: b36f0679cb0cac0e33b361051b3406ade82ea846 |
| b4556c8a | 19-Jun-2020 |
Darren Tucker |
Add OPENBSD ORIGINAL marker to bcrypt_pbkdf. |