summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* upstream commitmarkus@openbsd.org2017-05-311-12/+15
| | | | | | switch sshconnect.c to modern APIs; ok djm@ Upstream-ID: 27be17f84b950d5e139b7a9b281aa487187945ad
* upstream commitmarkus@openbsd.org2017-05-315-112/+148
| | | | | | switch auth2-pubkey.c to modern APIs; with & ok djm@ Upstream-ID: 8f08d4316eb1b0c4ffe4a206c05cdd45ed1daf07
* upstream commitmarkus@openbsd.org2017-05-3114-103/+110
| | | | | | switch from Key typedef with struct sshkey; ok djm@ Upstream-ID: 3067d33e04efbe5131ce8f70668c47a58e5b7a1f
* upstream commitmarkus@openbsd.org2017-05-312-3/+3
| | | | | | remove ssh1 references; ok djm@ Upstream-ID: fc23b7578e7b0a8daaec72946d7f5e58ffff5a3d
* upstream commitmarkus@openbsd.org2017-05-311-23/+21
| | | | | | | | revise sshkey_load_public(): remove ssh1 related comments, remove extra open()/close() on keyfile, prevent leak of 'pub' if 'keyp' is NULL, replace strlcpy+cat with asprintf; ok djm@ Upstream-ID: 6175e47cab5b4794dcd99c1175549a483ec673ca
* upstream commitmarkus@openbsd.org2017-05-271-1/+4
| | | | | | sshbuf_consume: reset empty buffer; ok djm@ Upstream-ID: 0d4583ba57f69e369d38bbd7843d85cac37fa821
* upstream commitmarkus@openbsd.org2017-05-272-14/+2
| | | | | | remove SSH_CHANNEL_XXX_DRAINING (ssh1 only); ok djm@ Upstream-ID: e2e225b6ac67b84dd024f38819afff2554fafe42
* upstream commitmarkus@openbsd.org2017-05-272-24/+2
| | | | | | | remove channel_input_close_confirmation (ssh1 only); ok djm@ Upstream-ID: 8e7c8c38f322d255bb0294a5c0ebef53fdf576f1
* upstream commitdjm@openbsd.org2017-05-271-3/+3
| | | | | | | fix references to obsolete v00 cert format; spotted by Jakub Jelen Upstream-ID: 7600ce193ab8fd19451acfe24fc2eb39d46b2c4f
* configure: actually set cache vars when cross-compilingMike Frysinger2017-05-251-2/+4
| | | | | | The cross-compiling fallback message says it's assuming the test passed, but it didn't actually set the cache var which causes later tests to fail.
* upstream commitdjm@openbsd.org2017-05-201-3/+3
| | | | | | | there's no reason to artificially limit the key path here, just check that it fits PATH_MAX; spotted by Matthew Patton Upstream-ID: 858addaf2009c9cf04d80164a41b2088edb30b58
* upstream commitdjm@openbsd.org2017-05-201-582/+3
| | | | | | | | | | Now that we no longer support SSHv1, replace the contents of this file with a pointer to https://tools.ietf.org/html/draft-miller-ssh-agent-00 It's better edited, doesn't need to document stuff we no longer implement and does document stuff that we do implement (RSA SHA256/512 signature flags) Upstream-ID: da8cdc46bbcc266efabd565ddddd0d8e556f846e
* upstream commitdjm@openbsd.org2017-05-176-25/+32
| | | | | | | allow LogLevel in sshd_config Match blocks; ok dtucker bz#2717 Upstream-ID: 662e303be63148f47db1aa78ab81c5c2e732baa8
* upstream commitdjm@openbsd.org2017-05-171-5/+1
| | | | | | remove duplicate check; spotted by Jakub Jelen Upstream-ID: 30c2996c1767616a8fdc49d4cee088efac69c3b0
* upstream commitdjm@openbsd.org2017-05-171-7/+8
| | | | | | | mention that Ed25519 keys are valid as CA keys; spotted by Jakub Jelen Upstream-ID: d3f6db58b30418cb1c3058211b893a1ffed3dfd4
* clean up regress files and add a .gitignoreDamien Miller2017-05-103-24/+54
|
* upstream commitdjm@openbsd.org2017-05-104-28/+9
| | | | | | remove hmac-ripemd160; ok dtucker Upstream-ID: 896e737ea0bad6e23327d1c127e02d5e9e9c654d
* upstream commitdjm@openbsd.org2017-05-101-3/+4
| | | | | | | make requesting bad ECDSA bits yield the same error (SSH_ERR_KEY_LENGTH) as the same mistake for RSA/DSA Upstream-ID: bf40d3fee567c271e33f05ef8e4e0fa0b6f0ece6
* upstream commitdjm@openbsd.org2017-05-081-6/+6
| | | | | | fix for new SSH_ERR_KEY_LENGTH error value Upstream-Regress-ID: c38a6e6174d4c3feca3518df150d4fbae0dca8dc
* upstream commitdjm@openbsd.org2017-05-081-1/+2
| | | | | | | helps if I commit the correct version of the file. fix missing return statement. Upstream-ID: c86394a3beeb1ec6611e659bfa830254f325546c
* upstream commitdjm@openbsd.org2017-05-083-6/+5
| | | | | | remove arcfour, blowfish and CAST here too Upstream-Regress-ID: c613b3bcbef75df1fe84ca4dc2d3ef253dc5e920
* upstream commitdjm@openbsd.org2017-05-081-3/+4
| | | | | | | I was too aggressive with the scalpel in the last commit; unbreak sshd, spotted quickly by naddy@ Upstream-ID: fb7e75d2b2c7e6ca57dee00ca645e322dd49adbf
* upstream commitdjm@openbsd.org2017-05-087-25/+54
| | | | | | | Refuse RSA keys <1024 bits in length. Improve reporting for keys that do not meet this requirement. ok markus@ Upstream-ID: b385e2a7b13b1484792ee681daaf79e1e203df6c
* upstream commitdjm@openbsd.org2017-05-081-3/+2
| | | | | | | Don't offer CBC ciphers by default in the client. ok markus@ Upstream-ID: 94c9ce8d0d1a085052e11c7f3307950fdc0901ef
* upstream commitdjm@openbsd.org2017-05-087-110/+32
| | | | | | | As promised in last release announcement: remove support for Blowfish, RC4 and CAST ciphers. ok markus@ deraadt@ Upstream-ID: 21f8facdba3fd8da248df6417000867cec6ba222
* upstream commitnaddy@openbsd.org2017-05-085-76/+44
| | | | | | | more simplification and removal of SSHv1-related code; ok djm@ Upstream-ID: d2f041aa0b79c0ebd98c68a01e5a0bfab2cf3b55
* upstream commitnaddy@openbsd.org2017-05-083-15/+14
| | | | | | remove superfluous protocol 2 mentions; ok jmc@ Upstream-ID: 0aaf7567c9f2e50fac5906b6a500a39c33c4664d
* upstream commitdjm@openbsd.org2017-05-082-2/+11
| | | | | | | | since a couple of people have asked, leave a comment explaining why we retain SSH v.1 support in the "delete all keys from agent" path. Upstream-ID: 4b42dcfa339813c15fe9248a2c1b7ed41c21bbb4
* upstream commitdjm@openbsd.org2017-05-082-26/+2
| | | | | | | another tentacle: cipher_set_key_string() was only ever used for SSHv1 Upstream-ID: 7fd31eb6c48946f7e7cc12af0699fe8eb637e94a
* upstream commitnaddy@openbsd.org2017-05-084-5/+13
| | | | | | | restore mistakenly deleted description of the ConnectionAttempts option ok markus@ Upstream-ID: 943002b1b7c470caea3253ba7b7348c359de0348
* upstream commitnaddy@openbsd.org2017-05-089-49/+12
| | | | | | remove miscellaneous SSH1 leftovers; ok markus@ Upstream-ID: af23696022ae4d45a1abc2fb8b490d8d9dd63b7c
* upstream commitjmc@openbsd.org2017-05-081-3/+1
| | | | | | more protocol 1 bits removed; ok djm Upstream-ID: b5b977eaf756915acb56aef3604a650e27f7c2b9
* upstream commitjmc@openbsd.org2017-05-084-47/+13
| | | | | | more protocol 1 stuff to go; ok djm Upstream-ID: 307a30441d2edda480fd1661d998d36665671e47
* upstream commitjmc@openbsd.org2017-05-082-14/+8
| | | | | | rsa1 is no longer valid; Upstream-ID: 9953d09ed9841c44b7dcf7019fa874783a709d89
* upstream commitjmc@openbsd.org2017-05-081-1/+2
| | | | | | | add PubKeyAcceptedKeyTypes to the -o list: scp(1) has it, so i guess this should too; Upstream-ID: 7fab32e869ca5831d09ab0c40d210b461d527a2c
* upstream commitjmc@openbsd.org2017-05-083-19/+5
| | | | | | | remove now obsolete protocol1 options from the -o lists; Upstream-ID: 828e478a440bc5f9947672c392420510a362b3dd
* upstream commitjmc@openbsd.org2017-05-081-2/+3
| | | | | | more -O shuffle; ok djm Upstream-ID: c239991a3a025cdbb030b73e990188dd9bfbeceb
* upstream commitdjm@openbsd.org2017-05-082-9/+5
| | | | | | remove -1 / -2 options; pointed out by jmc@ Upstream-ID: 65d2a816000741a95df1c7cfdb5fa8469fcc7daa
* upstream commitjmc@openbsd.org2017-05-082-4/+4
| | | | | | remove options -12 from usage(); Upstream-ID: db7ceef25132e63b50ed05289bf447fece1d1270
* upstream commitjmc@openbsd.org2017-05-081-27/+34
| | | | | | tidy up -O somewhat; ok djm Upstream-ID: 804405f716bf7ef15c1f36ab48581ca16aeb4d52
* upstream commitdjm@openbsd.org2017-05-021-1/+2
| | | | | | | when freeing a bitmap, zero all it bytes; spotted by Ilya Kaliman Upstream-ID: 834ac024f2c82389d6ea6b1c7d6701b3836e28e4
* upstream commitdjm@openbsd.org2017-05-021-0/+1
| | | | | | this one I did forget to "cvs rm" Upstream-ID: 5781670c0578fe89663c9085ed3ba477cf7e7913
* upstream commitdjm@openbsd.org2017-05-021-0/+0
| | | | | | | | | don't know why cvs didn't exterminate these the first time around, I use rm -f and everuthing... pointed out by sobrado@ Upstream-ID: a6c44a0c2885330d322ee01fcfd7f6f209b1e15d
* Define INT32_MAX and INT64_MAX if needed.Darren Tucker2017-05-011-0/+22
|
* Wrap stdint.h in HAVE_STDINT_HDarren Tucker2017-05-011-0/+2
|
* upstream commitdjm@openbsd.org2017-05-011-3/+1
| | | | | | remove unused variable Upstream-ID: 66011f00819d0e71b14700449a98414033284516
* upstream commitdjm@openbsd.org2017-05-0139-649/+482
| | | | | | | eliminate explicit specification of protocol in tests and loops over protocol. We only support SSHv2 now. Upstream-Regress-ID: 0082838a9b8a382b7ee9cbf0c1b9db727784fadd
* upstream commitdjm@openbsd.org2017-05-018-379/+76
| | | | | | remove SSHv1 support from unit tests Upstream-Regress-ID: 395ca2aa48f1f7d23eefff6cb849ea733ca8bbfe
* upstream commitdjm@openbsd.org2017-05-011-2/+2
| | | | | | | fixup setting ciphercontext->plaintext (lost in SSHv1 purge), though it isn't really used for much anymore. Upstream-ID: 859b8bce84ff4865b32097db5430349d04b9b747
* remove configure --with-ssh1Damien Miller2017-05-011-28/+0
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-04 04:02:37 +0100