CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: n...@cvs.openbsd.org2018/11/15 23:41:58 Modified files: bin/ksh: main.c misc.c Log message: Include "id" in pledge (for setres[ug]id, setgroups) if the shell is privileged and remove it when dropping privileges (set +p), setting a flag to make sure we don't do it again. ok deraadt millert
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 23:17:38 Modified files: usr.bin/ssh: sshconnect.c Log message: redirect stderr of ProxyCommands to /dev/null when ssh is started with ControlPersist; based on patch from Steffen Prohaska
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 23:10:29 Modified files: usr.bin/ssh: sshbuf.c Log message: make grandparent-parent-child sshbuf chains robust to use-after-free faults if the ancestors are freed before the descendents. Nothing in OpenSSH uses this deallocation pattern. Reported by Jann Horn
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2018/11/15 22:05:44 Modified files: libexec/ld.so : resolve.c Log message: Borrow an idea from DragonFly BSD: factor out the "does this symbol match what we're looking up?" logic from _dl_find_symbol_obj() into matched_symbol(), so that the former is just the "iterate across the hash" logic. matched_symbol() returns zero on "not found", one on "found strong symbol", and negative one on "found weak symbol". The last of those lets the caller give up on this object after finding a weak symbol, as there's no point in continuing to search for a strong symbol in the same object. ok mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 20:26:01 Modified files: usr.bin/ssh: auth.c misc.c misc.h readconf.c servconf.c session.c sftp.c sshd.c Log message: use path_absolute() for pathname checks; from Manoj Ampalam
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 20:03:10 Modified files: usr.bin/ssh: scp.c Log message: disallow empty incoming filename or ones that refer to the current directory; based on report/patch from Harry Sintonen
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 19:46:21 Modified files: usr.bin/ssh: sshconnect2.c Log message: fix bug in client that was keeping a redundant ssh-agent socket around for the life of the connection; bz#2912; reported by Simon Tatham; ok dtucker@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 19:43:56 Modified files: usr.bin/ssh: monitor.c Log message: fix bug in HostbasedAcceptedKeyTypes and PubkeyAcceptedKeyTypes options. If only RSA-SHA2 siganture types were specified, then authentication would always fail for RSA keys as the monitor checks only the base key (not the signature algorithm) type against *AcceptedKeyTypes. bz#2746; reported by Jakub Jelen; ok dtucker
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: b...@cvs.openbsd.org2018/11/15 19:41:16 Modified files: lib/libssl : ssl_cert.c ssl_clnt.c ssl_sigalgs.c ssl_sigalgs.h Log message: Unbreak legacy ciphers for prior to 1.1 by setting having a legacy sigalg for MD5_SHA1 and using it as the non sigalgs default ok jsing@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 19:30:20 Modified files: usr.bin/ssh: sftp.1 sftp.c Log message: support a prefix of '@' to suppress echo of sftp batch commands; bz#2926; ok dtucker@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: t...@cvs.openbsd.org2018/11/15 19:16:17 Modified files: lib/libfuse: fuse.c fuse_private.h Log message: Handle signals that get sent to any thread from Rian Hunter
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 18:21:12 Modified files: share/man/man4 : gre.4 eoip.4 Log message: document txprio ioctl support
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 18:10:51 Modified files: sbin/ifconfig : ifconfig.8 Log message: document txprio
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 17:58:17 Modified files: sbin/ifconfig : ifconfig.8 Log message: gre has a few siblings now
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 16:05:10 Modified files: share/man/man4 : gre.4 Log message: admin that eoip(4) comes from the gre pseudo device driver
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 16:01:19 Modified files: share/man/man4 : gre.4 Log message: spell an ioctl command better. from markus@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: d...@cvs.openbsd.org2018/11/15 15:22:03 Modified files: sys/net: if_vxlan.c Log message: add support for txprio configuration
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2018/11/15 14:27:31 Modified files: sys/arch/hppa/hppa: fpemu.S Log message: one more typo noticed while pasting miod a reply;
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: guent...@cvs.openbsd.org2018/11/15 14:25:44 Modified files: libexec/ld.so : resolve.c Log message: Put all the symbol lookup parameters (except the object being searched) and the return pointers into a structure and pass that to _dl_find_symbol_obj(). Set sl->sl_obj_out in _dl_find_symbol_obj() so that the callers don't need to each record the object. ok mpi@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: j...@cvs.openbsd.org2018/11/15 14:24:48 Modified files: sys/arch/hppa/hppa: fpemu.S Log message: fix typos in comments; from miod
CVS: cvs.openbsd.org: src
CVSROOT:/cvs Module name:src Changes by: henn...@cvs.openbsd.org 2018/11/15 06:16:37 Modified files: sys/net: pf.c Log message: in the "pf: key search" debug message, add the direction. interface *and* dir make debugging much easier than the if alone.
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: lan...@cvs.openbsd.org 2018/11/15 06:06:42 Modified files: openssh: users.html Log message: Remove broken link, e-smith is now known as koozali sme server but that's "just" an sme-oriented linux distro like many others. ok dtucker@
CVS: cvs.openbsd.org: src
CVSROOT:/cvs
Module name:src
Changes by: k...@cvs.openbsd.org2018/11/15 03:38:53
Modified files:
usr.bin/tmux : cmd-choose-tree.c cmd-display-panes.c
Log message:
Add [template] to display-panes and choose-{buffer,client,tree} usage
OK nicm
CVS: cvs.openbsd.org: www
CVSROOT:/cvs Module name:www Changes by: dtuc...@cvs.openbsd.org 2018/11/15 02:10:33 Modified files: openssh: users.html Log message: Add Windows to user list. ok djm@
