summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2024-03-25Show 9.7 branch on ci-status.V_9_7Darren Tucker
2024-03-25Improve detection of -fzero-call-used-regs=used.Darren Tucker
Should better detect problems with gcc 13 on m68k. bz#3673 from Colin Watson via bz#3673 and https://gcc.gnu.org/bugzilla/show_bug.cgi?id=110934 Signed-off-by: Darren Tucker <dtucker@dtucker.net>
2024-03-11version number in READMEV_9_7_P1Damien Miller
2024-03-11crank RPM spec versionsDamien Miller
2024-03-11upstream: openssh-9.7djm@openbsd.org
OpenBSD-Commit-ID: 618ececf58b8cdae016b149787af06240f7b0cbc
2024-03-11Test against current OpenSSL and LibreSSL releases.Darren Tucker
Add LibreSSL 3.9.0, bump older branches to their respective current releases.
2024-03-10quote regexes used to test for algorithm supportDamien Miller
Fixes test failures on Solaris 8 reported by Tom G. Christensen
2024-03-09upstream: avoid logging in signal handler by converting mainloop todjm@openbsd.org
ppoll() bz3670, reported by Ben Hamilton; ok dtucker@ OpenBSD-Commit-ID: e58f18042b86425405ca09e6e9d7dfa1df9f5f7f
2024-03-09upstream: skip more whitespace, fixes find-principals ondjm@openbsd.org
allowed_signers files with blank lines; reported by Wiktor Kwapisiewicz OpenBSD-Commit-ID: b3a22a2afd753d70766f34bc7f309c03706b5298
2024-03-08upstream: Invoke ProxyCommand that uses stderr redirection viadtucker@openbsd.org
$TEST_SHELL. Fixes test when run by a user whose login shell is tcsh. Found by vinschen at redhat.com. OpenBSD-Regress-ID: f68d79e7f00caa8d216ebe00ee5f0adbb944062a
2024-03-07Prefer openssl binary from --with-ssl-dir directory.Darren Tucker
Use openssl in the directory specified by --with-ssl-dir as long as it's functional. Reported by The Doctor.
2024-03-06upstream: fix memory leak in mux proxy mode when requesting forwarding.djm@openbsd.org
found by RASU JSC, reported by Maks Mishin in GHPR#467 OpenBSD-Commit-ID: 97d96a166b1ad4b8d229864a553e3e56d3116860
2024-03-06upstream: wrap a few PKCS#11-specific bits in ENABLE_PKCS11djm@openbsd.org
OpenBSD-Commit-ID: 463e4a69eef3426a43a2b922c4e7b2011885d923
2024-03-06disable RSA tests when algorithm is not supportedDamien Miller
Unbreaks "make test" when compiled --without-openssl. Similar treatment to how we do DSA and ECDSA.
2024-03-06add a --without-retpoline configure optionDamien Miller
discussed with deraadt and dtucker a while ago
2024-03-04upstream: fix leak of CanonicalizePermittedCNAMEs on error path;djm@openbsd.org
spotted by Coverity (CID 438039) OpenBSD-Commit-ID: 208839699939721f452a4418afc028a9f9d3d8af
2024-03-04upstream: Separate parsing of string array options from applying themdjm@openbsd.org
to the active configuration. This fixes the config parser from erroneously rejecting cases like: AuthenticationMethods password Match User ivy AuthenticationMethods any bz3657 ok markus@ OpenBSD-Commit-ID: 7f196cba634c2a3dba115f3fac3c4635a2199491
2024-02-22Add nbsd10 test target.Darren Tucker
2024-02-22more descriptive configure test nameDamien Miller
2024-02-21upstream: explain arguments of internal-sftp GHPR#454 from Niklasdjm@openbsd.org
Hambüchen MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit OpenBSD-Commit-ID: 0335d641ae6b5b6201b9ffd5dd06345ebbd0a3f3
2024-02-21upstream: clarify permissions requirements for ChrootDirectory Partdjm@openbsd.org
of GHPR#454 from Niklas Hambüchen MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit OpenBSD-Commit-ID: d37bc8786317a11649c62ff5e2936441186ef7a0
2024-02-21upstream: .Cm for a keyword. Part of GHPR#454 from Niklas Hambüchendjm@openbsd.org
OpenBSD-Commit-ID: d59c52559f926fa82859035d79749fbb4a3ce18a
2024-02-21upstream: fix typo in match directive predicate (s/tagged/tag) GHPR#462djm@openbsd.org
from Tobias Manske OpenBSD-Commit-ID: 05b23b772677d48aa82eefd7ebebd369ae758908
2024-02-21upstream: fix proxy multiplexing mode, broken when keystroke timingdjm@openbsd.org
obfuscation was added. GHPR#463 from montag451 OpenBSD-Commit-ID: 4e412d59b3f557d431f1d81c715a3bc0491cc677
2024-02-20upstream: don't append a gratuitous space to the end of subsystemdjm@openbsd.org
arguments; bz3667 OpenBSD-Commit-ID: e11023aeb3f30b77a674e37b8292c862926d5dc6
2024-02-19upstream: Always define puttysetup function.dtucker@openbsd.org
OpenBSD-Regress-ID: b4c0ccfa4006a1bc5dfd99ccf21c854d3ce2aee0
2024-02-19upstream: Exapnd PuTTY test coverage.dtucker@openbsd.org
Expand the set of ciphers, MACs and KEX methods in the PuTTY interop tests. OpenBSD-Regress-ID: dd28d97d48efe7329a396d0d505ee2907bf7fc57
2024-02-19upstream: Factor out PuTTY setup.dtucker@openbsd.org
Factor out PuTTY and call only when needed. This allows us to avoid PuTTY key setup when it's not needed, which speeds up the overall test run by a couple of percent. OpenBSD-Regress-ID: c25eaccc3c91bc874400f7c85ce40e9032358c1c
2024-02-19upstream: clean sshd random relinking kit; ok miod@naddy@openbsd.org
OpenBSD-Commit-ID: 509bb19bb9762a4b3b589af98bac2e730541b6d4
2024-02-19upstream: whitespacedjm@openbsd.org
OpenBSD-Commit-ID: b24680bc755b621ea801ff8edf6f0f02b68edae1
2024-02-19Improve error message for OpenSSL header check.Darren Tucker
bz#3668, ok djm@
2024-02-07Interop test against PuTTY snapshot and releases.Darren Tucker
2024-02-06Put privsep dir on OS X on /usr/local.Darren Tucker
On some runners we can't create /var/empty, so put it some place we can write. Should fix test breakage on Max OS X 11.
2024-02-06Add --disable-fd-passing option.Darren Tucker
.. and enable for the minix3 test VM. This will cause it to more reliably skip tests that need FD passing and should fix the current test breakage.
2024-02-06Use "skip" function instead doing it ourselves.Darren Tucker
2024-02-01ignore some vim droppingsDamien Miller
2024-02-01upstream: whitespacedjm@openbsd.org
OpenBSD-Commit-ID: bf9e4a1049562ee4322684fbdce07142f04fdbb7
2024-01-16skip tests that use multiplexing on WindowsDamien Miller
Some tests here use multiplexing, skip these if DISABLE_FD_PASSING is set. Should unbreak tests on Windows.
2024-01-11upstream: don't disable RSA test when DSA is disabled; bug introduceddjm@openbsd.org
in last commit OpenBSD-Regress-ID: 8780a7250bf742b33010e9336359a1c516f2d7b5
2024-01-11upstream: make DSA testing optional, defaulting to ondjm@openbsd.org
ok markus OpenBSD-Regress-ID: dfc27b5574e3f19dc4043395594cea5f90b8572a
2024-01-11upstream: ensure key_fd is filled when DSA is disabled; spotted bydjm@openbsd.org
tb@ OpenBSD-Commit-ID: 9dd417b6eec3cf67e870f147464a8d93f076dce7
2024-01-11upstream: make DSA key support compile-time optional, defaulting todjm@openbsd.org
on ok markus@ OpenBSD-Commit-ID: 4f8e98fc1fd6de399d0921d5b31b3127a03f581d
2024-01-11upstream: fix incorrect capitalisation;jmc@openbsd.org
OpenBSD-Commit-ID: cb07eb06e15fa2334660ac73e98f29b6a1931984
2024-01-10upstream: extend ChannelTimeout regression test to exercise multiplexeddjm@openbsd.org
connections and the new "global" timeout type. ok dtucker@ OpenBSD-Regress-ID: f10d19f697024e9941acad7c2057f73d6eacb8a2
2024-01-10upstream: add a "global" ChannelTimeout type to ssh(1) and sshd(8)djm@openbsd.org
that watches all open channels and will close all open channels if there is no traffic on any of them for the specified interval. This is in addition to the existing per-channel timeouts added a few releases ago. This supports use-cases like having a session + x11 forwarding channel open where one may be idle for an extended period but the other is actively used. The global timeout would allow closing both channels when both have been idle for too long. ok dtucker@ OpenBSD-Commit-ID: 0054157d24d2eaa5dc1a9a9859afefc13d1d7eb3
2024-01-10upstream: adapt ssh_api.c code for kex-strictdjm@openbsd.org
from markus@ ok me OpenBSD-Commit-ID: 4d9f256852af2a5b882b12cae9447f8f00f933ac
2024-01-08nite that recent OSX tun/tap is unsupportedDamien Miller
2024-01-08README.platform: update tuntap urlSevan Janiyan
2024-01-08Fix compilation error in ssh-pcks11-client.cRose
Compilation fails becaus of an undefined reference to helper_by_ec, because we forgot the preprocessor conditional that excludes that function from being called in unsupported configurations.
2024-01-08upstream: Remove outdated note from PROTOCOL.muxdjm@openbsd.org
Port forward close by control master is already implemented by `mux_master_process_close_fwd` in `mux.c` GHPR442 from bigb4ng OpenBSD-Commit-ID: ad0734fe5916d2dc7dd02b588906cea4df0482fb
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-15 06:01:29 +0000