| Age | Commit message (Collapse) | Author |
|---|
|
we leak memory internally used by zlib to keep compression state.
Bug reported by Wolfgang Mueller <vehk at vehk dot de> who also
provided an incomplete patch, part of which i'm using in this commit.
|
|
|
|
some of them with an optional variable name following:
- .Ft
- .Fa in the SYNOPSIS
- .Fn second and later arguments in the SYNOPSIS
So add these to the .Vt macro table in the mandoc.db(5) database.
During my LibreSSL work, i'm getting really tired of typing
$ man -k Vt,Ft,Fa=some_type_name
over and over again; now, this becomes just:
$ man -k Vt=some_type_name
|
|
The code is not compiled in by default (see WITH_XMSS in Makefile.inc)
Joint work with stefan-lukas_gazdag at genua.eu
See https://tools.ietf.org/html/draft-irtf-cfrg-xmss-hash-based-signatures-12
ok djm@
|
|
|
|
bz#2821, ok dtucker@
|
|
Caught by the tinderbox's -Werror=misleading-indentation, ok djm@
|
|
to ssh(1) that directs it to bind its outgoing connection to the
address of the specified network interface.
BindInterface prefers to use addresses that aren't loopback or link-
local, but will fall back to those if no other addresses of the
required family are available on that interface.
Based on patch by Mike Manning in bz#2820, ok dtucker@
|
|
|
|
set. GitHub issue 1239.
|
|
|
|
|
|
|
|
may not support, and that the client should simply disregard such keys
(this is what ssh does already).
|
|
|
|
performance cost with a large history. Instead change back to using a
second grid and copying modified lines over which is much faster (this
doesn't revert to the old code however which didn't support UTF-8
properly). GitHub issue 1249.
|
|
Some SSH servers eg "ConfD" drop the connection if the client sends the
new IUTF8 (RFC8160) terminal mode even if it's not set. Add a bug bit
for such servers and avoid sending IUTF8 to them. ok djm@
|
|
diffie-hellman-group14-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
From Jakub Jelen via bz#2826
|
|
bits; from Colin Watson via bz#2662, ok dtucker@
|
|
|
|
This avoids a potential side channel timing leak.
ok djm@ markus@
|
|
This also zeros an ed25519_pk when it was not being zeroed previously.
ok djm@ dtucker@
|
|
|
|
to sometimes mean "character set", which conflicts with the normal
meaning of "optional element" in manual pages. While here, add a
few related clarifications and tweak a few details.
Triggered by a minor bug report from <trondd at kagu-tsuchi dot com>,
and by bentley@ subsequently pointing out the abuse of [].
Patch using input from jmc@, who also agreed with some previous versions.
|
|
The signal handlers from the original ssh1 code on which OpenSSH
is based assume unreliable signals and reinstall their handlers.
Since OpenBSD (and pretty much every current system) has reliable
signals this is not needed. In the unlikely even that -portable
is still being used on such systems we will deal with it in the
compat layer. ok deraadt@
|
|
|
|
|
|
shown columns. There's still parts that could do with a good polishing,
but it's an improvement.
OK tedu@
|
|
https://github.com/openssh/openssh-portable/pull/56 by Vincent Brillault
|
|
Christoph Anton Mitterer via github
|
|
Christoph Anton Mitterer.
|
|
without the confusing example. Prompted by Christoph Anton Mitterer
via github and bz#2293.
|
|
If a session file is specified via the `-S session=...', ftp(1) will
attempt to resume TLS sessions based on the session data contained within
this file. Upon completion of a successful TLS handshake the session file
will be updated with new session data, if available.
Discussed with deraadt@ and beck@.
Requested by and input from espie@.
|
|
scp. sftp is already doing this. From Camden Narzt via github;
ok dtucker
|
|
Prompted by gdestuynder via github
|
|
would silently ignore errors writing the comment and terminating
newline. Prompted by github PR from WillerZ; ok dtucker
|
|
|
|
e.g., "leave 1530" goes off closer to 15:30:00.
Timezone-related bug caught by tb@ in review.
ok tb@ tedu@
|
|
pull req #11, ok djm@
|
|
Prompted by and OK otto@
|
|
ok beck@ inoguchi@
|
|
This command shows the available orderings for the current view, which
ordering is active, their shortcuts, and if they're in reverse order.
manpage nits jmc@
OK tedu@
|
|
complain about two symbols with the same name having differing
sizes. ok djm@
|
|
it. In main assert that the tfd was actually invalidated. This avoids
closing an invalid fd.
ok deraadt on earlier version, tweak & ok schwarze
|
|
ok tb@ deraadt@
|
|
ok tb@ deraadt@
|
|
callers. ok djm@
|
|
An extreme example of how rogue files could mess up apropos(1) output
was reported by bentley@: qwtlicense(3) in the x11/qwt port.
|
|
safe so far, but implementing it with an unchecked memcpy(3) is just
wrong and quite dangerous.
|
|
the intent is more obvious.
|
