| Age | Commit message (Collapse) | Author |
|---|
|
ok beck jsing
|
|
emit matched principals one per line to stdout rather than as comma-
separated and with a free-text preamble (easy confusion opportunity)
emit "not found" error to stderr
fix up argument testing for -Y operations and improve error message for
unsupported operations
|
|
ok markus
|
|
algorithm (rsa-sha-512) if not is explicitly specified by the user;
ok markus@
|
|
ok markus@
|
|
use "principals" instead of principal, as allowed_signers lines may list
multiple.
When the signing key is a certificate, emit only principals that match
the certificate principal list.
NB. the command -Y name changes: "find-principal" => "find-principals"
ok markus@
|
|
|
|
|
|
building without zlib compression and associated options. With feedback
from markus@, ok djm@
|
|
they make them needlessly more difficult to cut and paste without
error; ok markus@ & dtucker@
|
|
|
|
This wrapper blocks all other signals during the handler preventing
races between handlers, and sets SA_RESTART which should reduce the
potential for short read/write operations.
|
|
worker process instead of the helper process. It is simpler this way
and allows the worker to properly log which device is being used.
|
|
The MIDI protocol requires the status byte to be resent after common
messages, including system exclusive messages. But, some MIDI clients
forget to resend it; we workaround this restoring the status byte
after sysex messages.
|
|
|
|
SSL_pending implementation is correct.
annoying jsing@
|
|
remove ifdef and distinct settings for OPENSSL=no case.
This will make things much simpler for -portable where the exact set
of algos depends on the configuration of both OpenSSH and the libcrypto
it's linked against (if any). ok djm@
|
|
principal associated with a signature from an allowed-signers
file. Work by Sebastian Kinne; ok dtucker@
|
|
ok tedu
|
|
key using the fingerprint itself, ignore leading and trailing whitespace.
ok deraadt@ djm@
|
|
ok beck@
|
|
general mostly ok
|
|
comment. This makes copy-paste of fingerprints into ssh easier.
OK djm@
|
|
peeks data before reading, compares to subsequent read.
ok jsing@
|
|
|
|
|
|
clause, this was poorly documented as "immediately", and "after the last line"
which is inaccurate there are other causes. Explain this a bit better.
ok millert claudio
|
|
|
|
along with the MaxStartups limit in the proctitle;
suggestion from Philipp Marek, w/ feedback from Craig Miskell
ok dtucker@
|
|
|
|
the untrusted comment. In this case, don't ignore -t but rather make
it work as expected.
ok tedu
|
|
support; it works just fine and disabling it breaks a few tests.
ok dtucker@
|
|
for misconfigured helper paths
|
|
|
|
jtesta@positronsecurity.com via github PR#151.
|
|
reported by jmc@
|
|
|
|
correctly. This would break ftp when the handshake doesn't complete in one
shot. (noticed when making tls 1.3 connections to cloudflare.cdn)
ok jsing@
|
|
symbolic constants for tagging priorities.
This review also made me find a minor bug: do not upgrade
TAG_FALLBACK to TAG_WEAK when there is trailing whitespace.
|
|
as defining a term. Please only use it when automatic tagging does
not work. Manual page authors will not be required to add the new
macro; using it remains optional. HTML output is still rudimentary
in this version and will be polished later.
Thanks to kn@ for reminding me that i have been considering since
BSDCan 2014 whether something like this might be useful. Given
that possibilities of making automatic tagging better are running
out and there are still several situations where automatic tagging
cannot do the job, i think the time is now ripe.
Feedback and no objection from millert@; OK espie@ inoguchi@ kn@.
|
|
without an argument, use the empty string, and always concatenate
all arguments, no matter their number.
This allows reducing the number of arguments of mandoc_normdate()
and some other simplifications, at the same time polishing some
error messages by adding the name of the macro in question.
|
|
|
|
|
|
|
|
* Rename -O to -K to keep "-O option" available.
* Document -K.
* Trim usage() message down to synopsis, like all other commands.
ok markus@
|
|
|
|
df(1) format.
OK jan@
General positive sounds from the hackroom and Michael W Lucas
|
|
Now we can see proper nosuchinstance and endofmibtree messages.
OK jan@
|
|
This option allows you to skip subsections of a tree and allows for faster
walking with less (undesired) clutter on screen.
OK florian@ jan@
Happy sounds from Michael W. Lucas
|
|
Change several instances, most of them to the usual -width Ds.
|
