| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-06-30 | fatal() when a remote window update causes the window value to | Damien Miller | |
| overflow. Reported by Georg Wicherski, ok markus@ | |||
| 2015-06-30 | Fix math error in remote window calculations that causes eventual stalls | Damien Miller | |
| for datagram channels. Reported by Georg Wicherski, ok markus@ | |||
| 2015-06-29 | add getpid to sandbox, reachable by grace_alarm_handler | Damien Miller | |
| reported by Jakub Jelen; bz#2419 | |||
| 2015-06-27 | Ignore blank characters at the beginning of a conditional block, | Ingo Schwarze | |
| that is, after "\{". Issue found by Markus <Waldeck at gmx dot de> in bash(1). | |||
| 2015-06-26 | Fix \-escaping bug that caused forward path parsing to skip two | Damien Miller | |
| characters and skip past the end of the string. Based on patch by Salvador Fandino; ok dtucker@ | |||
| 2015-06-25 | Put fts_close() where missing. | Masao Uebayashi | |
| Not bugs in short-lived commands that call exit() -> _exit() immediately, but for idempotency. Originally found in ls(1) by Valgrind. Changes for other commands are from deraadt@. Reviewed by me, tested in snapshots. OK deraadt@ | |||
| 2015-06-24 | correct test to sshkey_sign(); spotted by Albert S. | Damien Miller | |
| 2015-06-24 | Revert previous commit. We still want to call setgroups in the case where | Darren Tucker | |
| there are zero groups to remove any that we might otherwise inherit (as pointed out by grawity at gmail.com) and since the 2nd argument to setgroups is always a static global it's always valid to dereference in this case. ok deraadt@ djm@ | |||
| 2015-06-23 | POSIX specifies that that multiple '!' characters preceding a | Todd C. Miller | |
| function should be treated as a single negation. From FreeBSD via Liviu Daia. | |||
| 2015-06-23 | This patch ensure that when an error is detected, the freed variables in | semarie | |
| elf_symloadx() are reinitialised. Else show_file() in nm.c will used these variables, even if they has just been freed. (nm.c +689). Problem found by afl. ok miod@ | |||
| 2015-06-23 | This patch ensure that e_shentsize (sections header's size in bytes) is | semarie | |
| big enough to fill at least one Elf_Shdr. While here, inverts calloc() arguments to be calloc(nmemb, size), according to fread() call after. This problem was found with afl, with e_shentsize=1. ok miod@ | |||
| 2015-06-23 | corrects a read after bound that occurs in strcmp (line just | semarie | |
| after the added bound check). Found with afl. ok miod@ | |||
| 2015-06-23 | add some check before accessing data: | semarie | |
| - if section header table is be present - consistency of section header table size ok miod@ | |||
| 2015-06-22 | Don't count successful partial authentication as failures in monitor; | Damien Miller | |
| this may have caused the monitor to refuse multiple authentications that would otherwise have successfully completed; ok markus@ | |||
| 2015-06-22 | Don't call setgroups if we have zero groups; there's no guarantee that it | Darren Tucker | |
| won't try to deref the pointer. Based on a patch from mail at quitesimple.org, ok djm deraadt | |||
| 2015-06-21 | There is no need to include sys/ucred.h. Only sys/file.h is needed for the | Claudio Jeker | |
| DTYPE defines. | |||
| 2015-06-20 | Handle NIST curve names in openssl(1) ecparam. | Joel Sing | |
| From OpenSSL. | |||
| 2015-06-20 | Less mdc2. | Joel Sing | |
| 2015-06-20 | Remove obsolete MDC-2DES from libcrypto. | Doug Hogan | |
| ok deraadt@ jsing@ miod@ | |||
| 2015-06-19 | Add missing message digests to function table. | Joel Sing | |
| Diff from kinichiro via github. ok doug@ | |||
| 2015-06-19 | Remove fallback dynamic engine loading support. | Brent Cook | |
| Since we no longer have dynamic engines, don't bother falling back to them if a builtin engine is not found first. Before: $ openssl dgst -engine unknown invalid engine "unknown" 27256010481532:error:2606A074:engine routines:ENGINE_by_id:no such engine:/usr/src/lib/libcrypto/crypto/../../libssl/src/crypto/engine/eng_list.c:384:id=unknown 27256010481532:error:2606A074:engine routines:ENGINE_by_id:no such engine:/usr/src/lib/libcrypto/crypto/../../libssl/src/crypto/engine/eng_list.c:384:id=dynamic After: $ openssl dgst -engine unknown invalid engine "unknown" 27256010481532:error:2606A074:engine routines:ENGINE_by_id:no such engine:/usr/src/lib/libcrypto/crypto/../../libssl/src/crypto/engine/eng_list.c:384:id=unknown ok doug@ | |||
| 2015-06-18 | Use the SRCDST define for usage. | Nicholas Marriott | |
| 2015-06-18 | Use xsnprintf. | Nicholas Marriott | |
| 2015-06-18 | Remove a stray : and tweak paragraph. | Nicholas Marriott | |
| 2015-06-18 | spelling fixes from theo buehler; | Jason McIntyre | |
| 2015-06-17 | Use strdup in xstrdup; from Fritjof Bornebusch. | Nicholas Marriott | |
| 2015-06-17 | Change break-pane to take target and source panes (-t and -s) in line | Nicholas Marriott | |
| with other commands, from Thomas Adam. | |||
| 2015-06-17 | Use strdup in xstrdup from Fritjof Bornebusch. While here, remove xfree | Nicholas Marriott | |
| which is unused. | |||
| 2015-06-17 | Break cmdq_continue inner loop into a helper function. | Nicholas Marriott | |
| 2015-06-17 | Move the shuffle code from new-window -a into a function and add a -a | Nicholas Marriott | |
| flag for move-window too. From Thomas Adam. | |||
| 2015-06-17 | Use an explicit job state instead of avoid closing our side of the | Nicholas Marriott | |
| socketpair and setting it to -1 to mark when the other side is closed. This avoids closing it while the libevent bufferevent still has it (it could try to add it to the polled set which some mechanisms don't like). Fixes part a problem reported by Bruno Sutic. | |||
| 2015-06-17 | Remove NULL check before free; Fritjof Bornebusch. | Nicholas Marriott | |
| 2015-06-16 | Add support for OPTION_DISCARD. | Doug Hogan | |
| ok jsing@ | |||
| 2015-06-15 | If AuthorizedPrincipalsCommand is specified, however | Joel Sing | |
| AuthorizedPrincipalsFile is not (or is set to "none"), authentication will potentially fail due to key_cert_check_authority() failing to locate a principal that matches the username, even though an authorized principal has already been matched in the output of the subprocess. Fix this by using the same logic to determine if pw->pw_name should be passed, as is used to determine if a authorized principal must be matched earlier on. ok djm@ | |||
| 2015-06-15 | Make the arguments to match_principals_command() similar to | Joel Sing | |
| match_principals_file(), by changing the last argument a struct sshkey_cert * and dereferencing key->cert in the caller. No functional change. ok djm@ | |||
| 2015-06-15 | Add window_activity format, from Thomas Adam based on a diff originally | Nicholas Marriott | |
| from propos6 at gmail dot com. | |||
| 2015-06-15 | Remove ancient compat hack SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG. | Doug Hogan | |
| This was imported into OpenSSL from SSLeay. It was recently deleted in OpenSSL commit 7a4dadc3a6a487db92619622b820eb4f7be512c9 | |||
| 2015-06-15 | return failure on RSA signature error; reported by Albert S | Damien Miller | |
| 2015-06-14 | Add a format for client PID (client_pid) and server PID (pid). Diff for | Nicholas Marriott | |
| client_pid from Thomas Adam. | |||
| 2015-06-13 | Convert xfree to free. From Fritjof Bornebusch. ok deraadt | Nicholas Marriott | |
| 2015-06-10 | wp->tty is a char [] not a char * so it can't be NULL. From Thomas Adam. | Nicholas Marriott | |
| 2015-06-09 | Fix loop comparison broken in last commit, from Thomas Adam. | Nicholas Marriott | |
| 2015-06-07 | Add -E flag when attaching or switching client to bypass | Nicholas Marriott | |
| update-environment, from Steven Lu. | |||
| 2015-06-05 | Use ints for the calculations rather than u_char, they could end up | Nicholas Marriott | |
| signed. | |||
| 2015-06-05 | Handle the RGB colour escape sequence (\033[38;2;<r>;<g>;<b>m and 48;2) | Nicholas Marriott | |
| like xterm(1) does, by mapping to the nearest in the 256 colour palette. | |||
| 2015-06-05 | Use fixed colour tables rather than generated and do a quick search for | Nicholas Marriott | |
| exact match before doing the distance comparison. | |||
| 2015-06-05 | Similarly, for sessions use a callback to free rather than checking | Nicholas Marriott | |
| every loop. | |||
| 2015-06-05 | Change deref to the more sensible unref, and add a couple I missed before. | Nicholas Marriott | |
| 2015-06-05 | Instead of putting dead clients on a list and checking it every loop, | Nicholas Marriott | |
| use event_once to queue a callback to deal with them. Also dead clients with references would never actually be freed because the wrap-up functions (the callback for stdin, or status_prompt_clear) would never be called. So call them in server_client_lost. | |||
| 2015-06-05 | For "ssh -L 12345:/tmp/sock" don't fail with "No forward host name." | Todd C. Miller | |
| (we have a path, not a host name). Based on a diff from Jared Yanovich. OK djm@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |