| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2023-03-03 | Check return values of dup2. Spotted by Coverity, ok djm@ | Darren Tucker | |
| 2023-03-03 | Use time_t for x11_refuse_time timeout. We need SSH_TIME_T_MAX for | Darren Tucker | |
| this, so move from misc.c to misc.h so it's available. Fixes a Coverity warning for 64bit time_t safety, ok djm@ | |||
| 2023-03-03 | Check return value from fctnl and warn on failure. Spotted by Coverity, | Darren Tucker | |
| ok djm@ | |||
| 2023-03-02 | Ensure we always call fclose when writing checkpoints. In the case of | Darren Tucker | |
| an fprintf failure we would not call fclose which would leak the FILE pointer. While we're there, try to clean up the temp file on failure. Spotted by Coverity, ok djm@ | |||
| 2023-02-28 | fatal out if allocating banner string fails to avoid potential null | Darren Tucker | |
| deref later in sscanf. Spotted by Coverity, ok deraadt@ | |||
| 2023-02-28 | Explicitly ignore return from fchmod similar to other calls to | Darren Tucker | |
| prevent warning. | |||
| 2023-02-27 | Plug mem leak on globbed ls error path. Spotted by Coverity, ok deraadt@ | Darren Tucker | |
| 2023-02-23 | openssl speed: avoid bad plural | Theo Buehler | |
| Remedy a case of twitching eyes caused by seeing "Doing ... rsa's for 10s". If this breaks someone's script, so be it. ok jsing sthen | |||
| 2023-02-22 | fix progressmeter corruption on wide displays; bz3534 | Damien Miller | |
| feedback/ok dtucker@ | |||
| 2023-02-21 | for process kills due to execve from non-pinned syscall address, export | Theo de Raadt | |
| a new AEXECVE bit to acct(4), and print it in lastcomm(8) ok bluhm | |||
| 2023-02-21 | fseek to end of known_hosts before writing to it. POSIX and ANSI C | Darren Tucker | |
| require that applications call fseek or similar between read and writing to a RW file. OpenBSD doesn't enforce this, but some (System V derived) platforms need this to prevent it from writing a spurious extra byte (in this case, a newline). ok djm@ deraadt@ | |||
| 2023-02-17 | KTRC_CODE__SYSCALL is never set anymore, because __syscall() is gone. | Theo de Raadt | |
| 2023-02-17 | Remove redundant assignment; ok millert@ | Miod Vallat | |
| 2023-02-17 | Remove unused variables; ok millert@ | Miod Vallat | |
| 2023-02-17 | Remove now-unused compat bit SSH_BUG_RSASIGMD5. The code to set this | Darren Tucker | |
| was removed in OpenSSH 7.7 when support for SSH implementations dating back to before RFC standardization were removed. "burn it all" djm@ | |||
| 2023-02-17 | Remove now-unused compat bit SSH_BUG_BIGENDIANAES. This was | Darren Tucker | |
| previously set for OpenSSH 2.3 (released in 2000) but this check was removed in OpenSSH 7.7 (2018). ok djm@ deraadt@ | |||
| 2023-02-16 | Remove SSH_BUG_PASSWORDPAD compat bit since it's no longer used. | Darren Tucker | |
| ok markus@ | |||
| 2023-02-16 | Remove SSH_BUG_IGNOREMSG compat flag since it's only applicable to SSH1 | Darren Tucker | |
| and thus no longer used. ok markus@ "kill it with fire" djm@ | |||
| 2023-02-14 | Fix handling of port numbers in rsync://host[:port]/module URLs | Job Snijders | |
| With and OK tb@ | |||
| 2023-02-10 | Fix cursor position after zero width space, GitHub issue 3469. | Nicholas Marriott | |
| 2023-02-10 | space between macro and punctuation; | Jason McIntyre | |
| sort usage(); | |||
| 2023-02-10 | space between macro and punctuation; | Jason McIntyre | |
| 2023-02-10 | sort SYNOPSIS; | Jason McIntyre | |
| 2023-02-10 | let ssh-keygen and ssh-keyscan accept -Ohashalg=sha1|sha256 when | Damien Miller | |
| outputting SSHFP fingerprints to allow algorithm selection. bz3493 ok dtucker@ | |||
| 2023-02-10 | add a `sshd -G` option that parses and prints the effective | Damien Miller | |
| configuration without attempting to load private keys and perform other checks. This allows usage of the option before keys have been generated. bz3460 feedback/ok dtucker@ | |||
| 2023-02-10 | make `ssh -Q CASignatureAlgorithms` work as the manpage says it should | Damien Miller | |
| bz3532 | |||
| 2023-02-09 | Ensure that there is a terminating newline when adding a new entry | Darren Tucker | |
| to known_hosts. bz#3529, with git+openssh at limpsquid.nl, ok deraadt@ markus@ | |||
| 2023-02-08 | Use _nc_tparm_analyze() instead of trying to do it ourselves in process(). | Todd C. Miller | |
| This fixes tput when used with a capability that uses push/pop. OK gkoehler@ | |||
| 2023-02-08 | finger/mail: two trivial functions were missed in earlier ansi passes | Theo Buehler | |
| 2023-02-08 | telnet: fix prototypes for two signal handlers to make clang 15 happy | Theo Buehler | |
| 2023-02-08 | sed: add missing void to avoid -Wstrict-prototype with clang 15 | Theo Buehler | |
| 2023-02-08 | openssl(1) pkcs7 avoid crash on malformed files | Theo Buehler | |
| When printing certificates or CRLs, check signed and signedAndEnveloped before dereferencing them. Prevents crash on inspecting malformed PKCS7 files. ok jsing | |||
| 2023-02-07 | Remove old buffer when renaming rather than complaining, GitHub issue | Nicholas Marriott | |
| 3467 from Jean-Philippe Paradis. | |||
| 2023-02-07 | Add an L modifier like P, W, S to loop over clients. Also fix some long | Nicholas Marriott | |
| lines in tmux(1). | |||
| 2023-02-06 | Add -f to list-clients like the other list commands, from Andy Walker in | Nicholas Marriott | |
| GitHub issue 3449. | |||
| 2023-02-05 | Do not allow multiple line separators in a row. | Nicholas Marriott | |
| 2023-02-05 | Extend display-message to work for control clients. GitHub issue 3449. | Nicholas Marriott | |
| 2023-02-03 | Fix tput when compiled with clang-15 -O2 | Theo Buehler | |
| For some reason clang-15 doesn't like passing the uninitialized array of pointers nargv[] to the vararg function tparm(). With -O2 it optimizes the for loop preceding the tparm() call strangely, with the result that the argv[i] == NULL error is hit in most real-world usage. This broke naddy's fancy shell prompt among other things. Initialize nargv[] to appease the insatiable undefined behavior exploiter. ok jca millert | |||
| 2023-02-03 | Add ASPA to Looking Glass | Job Snijders | |
| OK claudio@ | |||
| 2023-02-02 | openssh-9.2 | Damien Miller | |
| 2023-02-02 | fix double-free caused by compat_kex_proposal(); bz3522 | Damien Miller | |
| by dtucker@, ok me | |||
| 2023-02-02 | Add a missing error message which causes an invalid layout name to crash. | Nicholas Marriott | |
| 2023-02-02 | Tweak note for D key binding, from Clark Wang. | Nicholas Marriott | |
| 2023-02-01 | Print the pid in lastcomm(1) output for post mortem analysis. Put | Alexander Bluhm | |
| it in brackets after the command name, like syslogd does it in log files. A while ago the process id was added to process accounting in the kernel, so no ABI break this time. OK deraadt@ | |||
| 2023-01-31 | Fix a typo in a comment and spacing | Alexandre Ratchov | |
| from weerd@ | |||
| 2023-01-29 | Fix ^^D and 0^D description; pointed out by Tomas Rippl; ok jmc@ | Otto Moerbeek | |
| 2023-01-25 | Fix CVE-2023-24056, unbounded variable expansion in pkg-config. | Todd C. Miller | |
| We now die with an error when trying to expand a variable that is already longer than 64K. This was never a buffer overflow in our pkg-config, but rather an unbounded memory allocation that would eventually run up against resource limits. OK sthen@ jasper@ | |||
| 2023-01-23 | Too many \s in example, GitHub issue 3445. | Nicholas Marriott | |
| 2023-01-20 | Add a flag to display-menu to select the manu item chosen first, GitHub | Nicholas Marriott | |
| issue 3442. | |||
| 2023-01-18 | delete useless dependency | Theo de Raadt | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |