summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2022-04-29Only run tests when source files change.V_9_0Darren Tucker
Also run tests on changes to V_9_0 branch.
2022-04-12upstream: clear io_want/io_ready flags at start of poll() cycle;djm@openbsd.org
avoids plausible spin during rekeying if channel io_want flags are reused across cycles. ok markus@ deraadt@ OpenBSD-Commit-ID: 91034f855b7c73cd2591657c49ac30f10322b967
2022-04-06update version numbers for releaseV_9_0_P1Damien Miller
2022-04-06upstream: openssh-9.0djm@openbsd.org
OpenBSD-Commit-ID: 0dfb461188f4513ec024c1534da8c1ce14c20b64
2022-04-06upstream: ssh: document sntrup761x25519-sha512@openssh.com asnaddy@openbsd.org
default KEX OpenBSD-Commit-ID: 12545bfa10bcbf552d04d9d9520d0f4e98b0e171
2022-04-06upstream: man pages: add missing commas between subordinate andnaddy@openbsd.org
main clauses jmc@ dislikes a comma before "then" in a conditional, so leave those untouched. ok jmc@ OpenBSD-Commit-ID: 9520801729bebcb3c9fe43ad7f9776ab4dd05ea3
2022-04-04Disable security key on fbsd6 test host.Darren Tucker
2022-04-04Specify TEST_SHELL=bash on AIX.Darren Tucker
The system shells cause the agent-restrict test to fail due to some quoting so explicitly specify bash until we can get configure to autmatically work around that.
2022-04-01Only return events from ppoll that were requested.Darren Tucker
If the underlying system's select() returns bits that were not in the request set, our ppoll() implementation can return revents for events not requested, which can apparently cause a hang. Only return revents for activity in the requested event set. bz#3416, analysis and fix by yaroslav.kuzmin at vmssoftware com, ok djm@
2022-04-01Only run regression tests on slow VMs.Darren Tucker
2022-04-01Increase test timeout to allow slow VMs to finishDarren Tucker
2022-04-01Use bash or ksh if available for SH in Makefile.Darren Tucker
2022-04-01Set Makefile SHELL as determined by configure.Darren Tucker
This should improve compatibility for users with non-POSIX shells. If using Makefile.in directly (eg make -f Makefile.in distprep) then SHELL will need to be specified on the command line (along with MANFMT in that particular case). ok djm@
2022-04-01Skip slow tests on (very) slow test targets.Darren Tucker
2022-03-31dependDamien Miller
2022-03-31upstream: add a sftp client "cp" command that supports server-sidedjm@openbsd.org
copying of files. Useful for this task and for testing the copy-data extension. Patch from Mike Frysinger; ok dtucker@ OpenBSD-Commit-ID: 1bb1b950af0d49f0d5425b1f267e197aa1b57444
2022-03-31upstream: add support for the "corp-data" protocol extension todjm@openbsd.org
allow server-side copies to be performed without having to go via the client. Patch by Mike Frysinger, ok dtucker@ OpenBSD-Commit-ID: 00aa510940fedd66dab1843b58682de4eb7156d5
2022-03-31upstream: select post-quantum KEXdjm@openbsd.org
sntrup761x25519-sha512@openssh.com as the default; ok markus@ OpenBSD-Commit-ID: f02d99cbfce22dffec2e2ab1b60905fbddf48fb9
2022-03-31upstream: fix poll() spin when a channel's output fd closes withoutdjm@openbsd.org
data in the channel buffer. Introduce more exact packing of channel fds into the pollfd array. fixes bz3405 and bz3411; ok deraadt@ markus@ OpenBSD-Commit-ID: 06740737849c9047785622ad5d472cb6a3907d10
2022-03-30upstream: ssh is almost out of getopt() characters; note thedjm@openbsd.org
remaining remaining available ones in a comment OpenBSD-Commit-ID: 48d38cef59d6bc8e84c6c066f6d601875d3253fd
2022-03-30upstream: avoid NULL deref via ssh-keygen -Y find-principals.djm@openbsd.org
bz3409, reported by Mateusz Adamowski OpenBSD-Commit-ID: a3b2c02438052ee858e0ee18e5a288586b5df2c5
2022-03-28Add AIX 5.1 test target.Darren Tucker
2022-03-26Drop leading "v" from release version identifier.Darren Tucker
It's present in the git tags but not in the release tarball names. Also drop extra "/" from URL path.
2022-03-26Use tarballs when testing LibreSSL releases.Darren Tucker
This means they'll still work when the combination of -portable and openbsd github repos no longer match.
2022-03-26Remove now-unused passwd variable.Darren Tucker
2022-03-26Missing semicolon.Darren Tucker
2022-03-26Factor out platform-specific locked account check.Darren Tucker
Also fixes an incorrect free on platforms with both libiaf and shadow passwords (probably only Unixware). Prompted by github PR#284, originally from @c3h2_ctf and stoeckmann@.
2022-03-26Add OpenWRT mips and mipsel test targets.Darren Tucker
2022-03-20upstream: don't leak argument list; bz3404, reported by Baludjm@openbsd.org
Gajjala ok dtucker@ OpenBSD-Commit-ID: fddc32d74e5dd5cff1a49ddd6297b0867eae56a6
2022-03-20upstream: make addargs() and replacearg() a little more robust anddjm@openbsd.org
improve error reporting make freeargs(NULL) a noop like the other free functions ok dtucker as part of bz3403 OpenBSD-Commit-ID: 15f86da83176978b4d1d288caa24c766dfa2983d
2022-03-20upstream: don't try to resolve ListenAddress directives in the sshddjm@openbsd.org
re-exec path - we're never going to use the result and if the operation fails then it can prevent connections from being accepted. Reported by Aaron Poffenberger; with / ok dtucker@ OpenBSD-Commit-ID: 44c53a43909a328e2f5ab26070fdef3594eded60
2022-03-20upstream: remove blank linedjm@openbsd.org
OpenBSD-Commit-ID: d5e0182965b2fbfb03ad5f256d1a1ce5706bcddf
2022-03-18upstream: helpful commentdjm@openbsd.org
OpenBSD-Commit-ID: e3315a45cb04e7feeb614d76ec80a9fe4ca0e8c7
2022-03-18upstream: ssh-keygen -Y check-novalidate requires namespace or SEGVdjm@openbsd.org
will ensue. Patch from Mateusz Adamowski via GHPR#307 OpenBSD-Commit-ID: 99e8ec38f9feb38bce6de240335be34aedeba5fd
2022-03-18upstream: improve DEBUG_CHANNEL_POLL debugging messagedjm@openbsd.org
OpenBSD-Commit-ID: 2275eb7bc4707d019b1a0194b9c92c0b78da848f
2022-03-18upstream: ssh: xstrdup(): use memcpy(3)cheloha@openbsd.org
Copying the given string into the buffer with strlcpy(3) confers no benefit in this context because we have already determined the string's length with strlen(3) in order to allocate that buffer. Thread: https://marc.info/?l=openbsd-tech&m=164687525802691&w=2 ok dtucker@ millert@ OpenBSD-Commit-ID: f8bfc082e36e2d2dc4e1feece02fe274155ca11a
2022-03-11Resync fmt_scaled. with OpenBSD.Darren Tucker
Fixes underflow reported in bz#3401.
2022-03-09Provide killpg implementation.Darren Tucker
Based on github PR#301 for Tandem NonStop.
2022-03-09Check for missing ftruncate prototype.Darren Tucker
From github PR#301 in conjunction with rsbeckerca.
2022-03-08Default to not using sandbox when cross compiling.Darren Tucker
On most systems poll(2) does not work when the number of FDs is reduced with setrlimit, so assume it doesn't when cross compiling and we can't run the test. bz#3398.
2022-03-01upstream: pack pollfd array before server_accept_loop() ppoll()djm@openbsd.org
call, and terminate sshd if ppoll() returns errno==EINVAL avoids spin in ppoll when MaxStartups > RLIMIT_NOFILE, reported by Daniel Micay feedback/ok deraadt OpenBSD-Commit-ID: dbab1c24993ac977ec24d83283b8b7528f7c2c15
2022-03-01upstream: include rejected signature algorithm in error message andnaddy@openbsd.org
not the (useless) key type; ok djm@ OpenBSD-Commit-ID: d0c0f552a4d9161203e07e95d58a76eb602a76ff
2022-03-01upstream: Remove the char * casts from arguments to do_lstat,dtucker@openbsd.org
do_readdir and do_stat paths since the underlying functions now take a const char *. Patch from vapier at gentoo.org. OpenBSD-Commit-ID: 9e4d964dbfb0ed683a2a2900711b88e7f1c0297b
2022-03-01upstream: save an unneccessary alloc/free, based on patch fromdjm@openbsd.org
Martin Vahlensieck; ok dtucker@ OpenBSD-Commit-ID: 90ffbf1f837e509742f2c31a1fbf2c0fd376fd5f
2022-03-01Remove unused ivbits argument from chacha_keysetupDarren Tucker
2022-03-01Add OPENBSD ORIGINAL marker.Darren Tucker
2022-02-28No unused param warnings for clang-12 and gcc-11.Darren Tucker
These have too many false positives in -Werror tests on the github CI since we often provide empty stub functions for functionality not needed for particular configurations.
2022-02-26Add debian-i386 test target.Darren Tucker
2022-02-26Allow ppoll_time64 in seccomp sandbox.Darren Tucker
Should fix sandbox violations on (some? at least i386 and armhf) 32bit Linux platforms. Patch from chutzpahu at gentoo.org and cjwatson at debian.org via bz#3396.
2022-02-25Improve handling of _getshort and _getlong.Darren Tucker
If the system native ones are exactly as required then use them, otherwise use the local versions mapped to another name to prevent name collisions.
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-15 07:47:43 +0000