[Bug 2682] ssh-agent is unable to remove smartcard after introducing whitelist
https://bugzilla.mindrot.org/show_bug.cgi?id=2682 Damien Miller changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|--- |FIXED --- Comment #2 from Damien Miller --- Applied - this will be in OpenSSH 7.5, due next week. -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2647] Tracking bug for OpenSSH 7.5 release
https://bugzilla.mindrot.org/show_bug.cgi?id=2647 Bug 2647 depends on bug 2682, which changed state. Bug 2682 Summary: ssh-agent is unable to remove smartcard after introducing whitelist https://bugzilla.mindrot.org/show_bug.cgi?id=2682 What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|--- |FIXED -- You are receiving this mail because: You are watching the assignee of the bug. You are watching the reporter of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2647] Tracking bug for OpenSSH 7.5 release
https://bugzilla.mindrot.org/show_bug.cgi?id=2647 Bug 2647 depends on bug 2686, which changed state. Bug 2686 Summary: SSHD segfaults when trying to load RSA1 host keys https://bugzilla.mindrot.org/show_bug.cgi?id=2686 What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|--- |FIXED -- You are receiving this mail because: You are watching the reporter of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2686] SSHD segfaults when trying to load RSA1 host keys
https://bugzilla.mindrot.org/show_bug.cgi?id=2686 Damien Miller changed: What|Removed |Added Status|ASSIGNED|RESOLVED Resolution|--- |FIXED --- Comment #4 from Damien Miller --- Applied. This will be in OpenSSH 7.5, due next week. -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2682] ssh-agent is unable to remove smartcard after introducing whitelist
https://bugzilla.mindrot.org/show_bug.cgi?id=2682 Darren Tucker changed: What|Removed |Added Attachment #2946|ok?(dtuc...@zip.com.au) |ok+ Flags|| -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2686] SSHD segfaults when trying to load RSA1 host keys
https://bugzilla.mindrot.org/show_bug.cgi?id=2686 Darren Tucker changed: What|Removed |Added Attachment #2963|ok?(dtuc...@zip.com.au) |ok+ Flags|| -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2647] Tracking bug for OpenSSH 7.5 release
https://bugzilla.mindrot.org/show_bug.cgi?id=2647 Damien Miller changed: What|Removed |Added Depends on||2682 Referenced Bugs: https://bugzilla.mindrot.org/show_bug.cgi?id=2682 [Bug 2682] ssh-agent is unable to remove smartcard after introducing whitelist -- You are receiving this mail because: You are watching the assignee of the bug. You are watching the reporter of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2682] ssh-agent is unable to remove smartcard after introducing whitelist
https://bugzilla.mindrot.org/show_bug.cgi?id=2682 Damien Miller changed: What|Removed |Added Blocks||2647 Status|NEW |ASSIGNED Referenced Bugs: https://bugzilla.mindrot.org/show_bug.cgi?id=2647 [Bug 2647] Tracking bug for OpenSSH 7.5 release -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2682] ssh-agent is unable to remove smartcard after introducing whitelist
https://bugzilla.mindrot.org/show_bug.cgi?id=2682 Damien Miller changed: What|Removed |Added CC||d...@mindrot.org, ||dtuc...@zip.com.au Attachment #2946||ok?(dtuc...@zip.com.au) Flags|| --- Comment #1 from Damien Miller --- Comment on attachment 2946 --> https://bugzilla.mindrot.org/attachment.cgi?id=2946 proposed patch looks ok to me -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2647] Tracking bug for OpenSSH 7.5 release
https://bugzilla.mindrot.org/show_bug.cgi?id=2647 Damien Miller changed: What|Removed |Added Depends on||2686 Referenced Bugs: https://bugzilla.mindrot.org/show_bug.cgi?id=2686 [Bug 2686] SSHD segfaults when trying to load RSA1 host keys -- You are receiving this mail because: You are watching the assignee of the bug. You are watching the reporter of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2686] SSHD segfaults when trying to load RSA1 host keys
https://bugzilla.mindrot.org/show_bug.cgi?id=2686 Damien Miller changed: What|Removed |Added Blocks||2647 Referenced Bugs: https://bugzilla.mindrot.org/show_bug.cgi?id=2647 [Bug 2647] Tracking bug for OpenSSH 7.5 release -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2686] SSHD segfaults when trying to load RSA1 host keys
https://bugzilla.mindrot.org/show_bug.cgi?id=2686 Damien Miller changed: What|Removed |Added Attachment #2952|0 |1 is obsolete|| Status|NEW |ASSIGNED Assignee|unassigned-b...@mindrot.org |d...@mindrot.org CC||d...@mindrot.org, ||dtuc...@zip.com.au Attachment #2963||ok?(dtuc...@zip.com.au) Flags|| --- Comment #3 from Damien Miller --- Created attachment 2963 --> https://bugzilla.mindrot.org/attachment.cgi?id=2963&action=edit don't load RSA1 hostkeys This skips RSA1 keys when they are loaded. -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2142] Make seccomp-bpf sandbox work for Linux/X32
https://bugzilla.mindrot.org/show_bug.cgi?id=2142 Damien Miller changed: What|Removed |Added Status|REOPENED|RESOLVED Resolution|--- |FIXED --- Comment #12 from Damien Miller --- Patch is applied and the refactoring of that file will make it easier to permit other syscalls with the X32 bit masked off in future if necessary. This will be in the OpenSSH 7.5 release, due very soon. -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2647] Tracking bug for OpenSSH 7.5 release
https://bugzilla.mindrot.org/show_bug.cgi?id=2647 Bug 2647 depends on bug 2142, which changed state. Bug 2142 Summary: Make seccomp-bpf sandbox work for Linux/X32 https://bugzilla.mindrot.org/show_bug.cgi?id=2142 What|Removed |Added Status|REOPENED|RESOLVED Resolution|--- |FIXED -- You are receiving this mail because: You are watching the assignee of the bug. You are watching the reporter of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2142] Make seccomp-bpf sandbox work for Linux/X32
https://bugzilla.mindrot.org/show_bug.cgi?id=2142 Damien Miller changed: What|Removed |Added Summary|openssh sandboxing using|Make seccomp-bpf sandbox |libseccomp |work for Linux/X32 -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2142] openssh sandboxing using libseccomp
https://bugzilla.mindrot.org/show_bug.cgi?id=2142 Darren Tucker changed: What|Removed |Added Attachment #2962|ok?(dtuc...@zip.com.au) |ok+ Flags|| -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 2142] openssh sandboxing using libseccomp
https://bugzilla.mindrot.org/show_bug.cgi?id=2142 Damien Miller changed: What|Removed |Added Attachment #2927|0 |1 is obsolete|| Attachment #2962||ok?(dtuc...@zip.com.au) Flags|| --- Comment #11 from Damien Miller --- Created attachment 2962 --> https://bugzilla.mindrot.org/attachment.cgi?id=2962&action=edit updated diff I've refactored that file a bit to make the manual expansion of SC_ALLOW() unnecessary here. Here's an updated and simpler diff that just allows the clock_gettime syscall with the X32 bit masked off. -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug. ___ openssh-bugs mailing list openssh-bugs@mindrot.org https://lists.mindrot.org/mailman/listinfo/openssh-bugs