src - OpenBSD base system

Age	Commit message (Collapse)	Author
2022-11-29	Add void to client_repledge args to fix compiler warning. ok djm@	Darren Tucker

2022-11-28	tighten pledge(2) after session establishment	Damien Miller
	feedback, ok & testing in snaps deraadt@
2022-11-28	New EnableEscapeCommandline ssh_config(5) option	Damien Miller
	This option (default "no") controls whether the ~C escape is available. Turning it off by default means we will soon be able to use a stricter default pledge(2) in the client. feedback deraadt@ dtucker@; tested in snaps for a while
2022-11-27	Move UVM "swpgonly" from Daemon Counters to Swap Counters	Klemens Nanni
	Put it below "swpginuse" as systat(1) and uvm_init(9) already have it. (uvm.c struct uvmline uvmline[] makes it easy to misplace counters without double-checking against actual systat output.)
2022-11-27	Zap nonexistent "vnodepages" and "vtextpages" UVM Page Counters	Klemens Nanni
	Those members exists with an XXX comment in struct uvmexp/uvm_init(9), but the kernel does not use them at all and systat(1) does not print them.
2022-11-18	In channel_request_remote_forwarding the parameters for permission_set_add	Moritz Buhl
	are leaked as they are also duplicated in the call. Found by CodeChecker. ok djm
2022-11-18	Add four new SI prefixes.	Florian Obser
	This is resolution 3 "Sur lâextension de la liste des prÃ©fixes du SI", passed by the 27th meeting of the ConfÃ©rence gÃ©nÃ©rale des poids et mesures. OK deraadt, daniel, sthen
2022-11-11	Clean up openssl(1) command execution.	joshua
	This cleans up the code that handles command execution for openssl(1), displays the help message when 'openssl help' is executed, and exits with code 1 when an invalid command is executed, matching the behaviour of OpenSSL version 1.1+ and above. ok tb@
2022-11-11	Remove the legacy interactive mode from openssl(1).	joshua
	This removes the legacy interactive mode from openssl(1) since it is rarely used, complicates the code, and has also been removed from OpenSSL in version 3.x.x. ok tb@ jsing@
2022-11-11	Tweak previous to set and log the feature instead of just setting the	Nicholas Marriott
	flag.
2022-11-11	Parse primary device attributes as well as secondary and add a SIXEL	Nicholas Marriott
	flag (not used yet), from Anindya Mukherjee.
2022-11-11	Document alternative delimiters for substitution, from Jim Wisniewski.	Nicholas Marriott

2022-11-10	Handle dynamic remote port forwarding in escape commandline's -R processing.	Darren Tucker
	bz#3499, ok djm@
2022-11-10	- sort options; from josiah frentsos	Jason McIntyre
	ok nicm - add -N to SYNOPSIS - sort usage()
2022-11-09	ndp, route, netstat: adjust ipv6 address width	Klemens Nanni
	It has been annoying me for too long that fully specififed GUAs (2001:0db8:3333:4444:5555:6666:7777:8888) mess up alignment. systat(1)'s netstat is the only view that has a big enough limit and thus never misaligns. Unify ndp(8), route(8) and netstat(1) views to always align nicely. Feedback OK claudio
2022-11-09	Before printing the redirect URI pass it through stravis since it is	Claudio Jeker
	untrusted input. OK tb@ kn@ millert@
2022-11-09	Strip spaces at end of header lines and in chunked encoding headers.	Claudio Jeker
	HTTP standard allows for spaces in too many places OK millert@ tb@
2022-11-09	Fix typo in fatal error message. Patch from vapier at chromium.org.	Darren Tucker

2022-11-09	Remove errant colon and simplify format string in error messages.	Darren Tucker
	Patch from vapier at chromium.org.
2022-11-09	rename client_global_hostkeys_private_confirm() to	Damien Miller
	client_global_hostkeys_prove_confirm(), as it handles the "hostkeys-prove00@openssh.com" message; no functional change
2022-11-09	typo in comment	Damien Miller

2022-11-08	Fix C-S-Tab without extended keys, from Aaron Jensen.	Nicholas Marriott

2022-11-07	The IdentityFile option in ssh_config can also be used to specify a	Darren Tucker
	public key file, as documented in ssh.1 for the -i option. Document this also for IdentityFile in ssh_config.5, for documentation completeness. From laalsaas at systemli.org via portable github PR#352, ok jmc@ djm@
2022-11-07	Remove some set but otherwise unused variables, spotted in -portable by	Darren Tucker
	clang 16's -Wunused-but-set-variable. ok djm@
2022-11-07	Check for and disallow MaxStartups values less than or equal to zero	Darren Tucker
	during config parsing, rather than faling later at runtime. bz#3489, ok djm@
2022-11-07	fix parsing of hex cert expiry time; was checking whether the	Damien Miller
	start time began with "0x", not the expiry time. from Ed Maste
2022-11-07	Import regenerated moduli.	Darren Tucker

2022-11-07	Fix typo. From pablomh via -portable github PR#344.	Darren Tucker

2022-11-04	Unescape the string for the literal operator (l:) so special characters	Nicholas Marriott
	work.
2022-11-03	replace recently-added valid_domain() check for hostnames going to	Damien Miller
	known_hosts with a more relaxed check for bad characters; previous commit broke address literals. Reported by/feedback from florian@
2022-11-03	If there are no buffers, reset mode as soon as any key pressed. Fixes	Nicholas Marriott
	crash reported by Gaoyang Zhang in GitHub issue 3373.
2022-11-03	Add a -l flag to display-message to disable format expansion, from Aaron	Nicholas Marriott
	Jensen. GitHub issue 3372.
2022-11-02	Instead of always setting the extended flag, set it only when searching.	Nicholas Marriott
	Allows send-keys to work. From Aaron Jensen.
2022-11-01	Add modified Tab key sequences, from Aaron Jensen, GitHub issue 3368.	Nicholas Marriott

2022-11-01	Use active pane in target window not current window for +/-. GitHub	Nicholas Marriott
	issue 3370.
2022-10-28	Add paste-buffer-deleted notification and fix name of paste-buffer-changed.	Nicholas Marriott

2022-10-28	Do not send focus sequences when reporting is enabled, matches other	Nicholas Marriott
	terminals behaviour.
2022-10-28	put sshkey_check_rsa_length() back in sshkey.c to unbreak	Damien Miller
	OPENSSL=no builds
2022-10-28	allow ssh-keyscan(1) to accept CIDR address ranges, e.g.	Damien Miller
	ssh-keyscan 192.168.0.0/24 If a CIDR range is passed, then it will be expanded to all possible addresses in the range including the all-0s and all-1s addresses. bz#976 feedback/ok markus@
2022-10-28	refactor sshkey_private_deserialize	Damien Miller
	feedback/ok markus@
2022-10-28	refactor sshkey_private_serialize_opt()	Damien Miller
	feedback/ok markus@
2022-10-28	refactor certify	Damien Miller
	feedback/ok markus@
2022-10-28	refactor sshkey_sign() and sshkey_verify()	Damien Miller
	feedback/ok markus@
2022-10-28	refactor sshkey_from_blob_internal()	Damien Miller
	feedback/ok markus@
2022-10-28	refactor sshkey_from_private()	Damien Miller
	feedback/ok markus@
2022-10-28	factor out key generation	Damien Miller
	feedback/ok markus@
2022-10-28	refactor and simplify sshkey_read()	Damien Miller
	feedback/ok markus@
2022-10-28	factor out public key serialization	Damien Miller
	feedback/ok markus@
2022-10-28	factor out sshkey_equal_public()	Damien Miller
	feedback/ok markus@
2022-10-28	begin big refactor of sshkey	Damien Miller
	Move keytype data and some of the type-specific code (allocation, cleanup, etc) out into each key type's implementation. Subsequent commits will move more, with the goal of having each key-*.c file owning as much of its keytype's implementation as possible. lots of feedback + ok markus@