CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 02:49:37
Modified files:
usr.bin/ssh: kexc25519.c
Log message:
fix all-zero check in kexc25519_shared_key
from markus@ ok djm@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:24:09
Modified files:
usr.bin/ssh: Makefile.inc kex.h kexc25519.c kexkemc.c
kexkems.c monitor.c ssh-keyscan.c ssh_api.c
sshconnect2.c
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:20:12
Modified files:
usr.bin/ssh: Makefile.inc crypto_api.h kex.c kex.h
kexc25519.c kexc25519c.c kexc25519s.c monitor.c
ssh-keyscan.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 03:44:08
Modified files:
lib/libssl : tls13_handshake.c tls13_internal.h
Log message:
The main handshake loop can be shared between client and server.
Pull the shared code up into a function
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:44:21
Removed files:
usr.bin/ssh: kexecdhc.c kexkemc.c
Log message:
nothing shall escape this purge
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:00:23
Modified files:
usr.bin/ssh: kex.h kexdh.c kexdhc.c kexdhs.c
Log message:
factor out DH keygen; it's identical between the client and the server
from markus@ ok djm@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:35:09
Modified files:
usr.bin/ssh: kex.h kexc25519.c kexdh.c kexecdh.c kexkemc.c
kexkems.c kexsntrup4591761x25519.c packet.c
packet.h
CVSROOT:/cvs
Module name:src
Changes by: k...@cvs.openbsd.org2019/01/21 04:40:20
Modified files:
sbin/dhclient : dhclient.c
Log message:
Allocate buffer before using it.
Encountered, diagnosed, fix tested and ok jca@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 02:54:11
Modified files:
usr.bin/ssh: kexdhc.c kexdhs.c kexgexc.c kexgexs.c
monitor_wrap.c packet.c packet.h ssh-ecdsa.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 04:05:41
Modified files:
usr.sbin/ntpd : constraint.c
Log message:
Explicitly check timegm() return value.
Spotted by tb@
ok deraadt@ tb@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:28:02
Modified files:
usr.bin/ssh: Makefile.inc kex.h kexdh.c kexkemc.c kexkems.c
monitor.c ssh-keyscan.c ssh_api.c sshconnect2.c
sshd.c
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 03:28:52
Modified files:
lib/libssl : Makefile ssl_locl.h
Added files:
lib/libssl : ssl_ciphers.c
Log message:
Add ssl_cipher_is_permitted(), an internal helper function that
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 04:24:05
Modified files:
sys/dev/fdt: sxirtc.c
Log message:
Adapt to allwinner device tree changes in linux >= 5.0-rc1
"allwinner,sun6i-a31-rtc" has been removed from h3/h5/r40/a64
ok
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 02:10:58
Modified files:
lib/libssl : Makefile tls13_internal.h
Added files:
lib/libssl : tls13_lib.c
Log message:
Provide TLS 1.3 cipher AEAD/hash and legacy I/O handling
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 02:52:25
Modified files:
usr.bin/ssh: sshbuf-getput-crypto.c sshbuf.h
Log message:
remove obsolete (SSH v.1) sshbuf_get/put_bignum1 functions
from markus@ ok djm@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:03:37
Modified files:
usr.bin/ssh: kex.h kexdh.c kexdhc.c kexdhs.c kexgex.c
kexgexc.c kexgexs.c
Log message:
factor out kex_dh_compute_key() - it's shared between
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 03:24:25
Modified files:
lib/libssl : tls13_lib.c
Log message:
Correct some rwstate handling that I broke when refactoring.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 04:22:00
Added files:
usr.bin/ssh: kexgen.c
Log message:
forgot to cvs add this file in previous series of commits; grrr
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 02:55:52
Modified files:
usr.bin/ssh: kex.c kexc25519c.c kexc25519s.c kexdhc.c
kexdhs.c kexecdhc.c kexecdhs.c kexgexc.c
kexgexs.c
Log
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:07:22
Modified files:
usr.bin/ssh: kex.c kex.h kexc25519c.c kexdhc.c kexecdhc.c
kexgexc.c
Log message:
factor out kex_verify_hostkey() - again, duplicated almost
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:05:09
Modified files:
usr.bin/ssh: kex.c kex.h kexc25519s.c kexdhs.c kexecdhs.c
kexgexs.c
Log message:
factor out kex_load_hostkey() - this is duplicated in both
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 03:32:58
Modified files:
lib/libssl : ssl_lib.c
Log message:
Use ssl_cipher_is_permitted() in ssl_cipher_list_to_bytes().
ok jsing
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:33:49
Modified files:
usr.bin/ssh: kex.c kex.h
Log message:
remove kex_derive_keys_bn wrapper; no unused since the DH-like KEX
methods have moved to KEM
from markus@ ok djm@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 02:13:41
Modified files:
regress/usr.bin/ssh: agent-pkcs11.sh
Log message:
remove hack to use non-system libcrypto
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:29:56
Modified files:
usr.bin/ssh: Makefile.inc kex.h kexecdh.c kexkemc.c
kexkems.c monitor.c ssh-keyscan.c ssh_api.c
sshconnect2.c sshd.c
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:40:11
Modified files:
usr.bin/ssh: kex.c kex.h kexc25519.c kexdh.c kexecdh.c
kexsntrup4591761x25519.c
Log message:
rename kex->kem_client_pub -> kex->client_pub
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 03:38:54
Modified files:
usr.bin/ssh: Makefile.inc kex.h kexc25519.c monitor.c
ssh-keyscan.c ssh_api.c sshconnect2.c sshd.c
Removed files:
usr.bin/ssh:
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 04:08:37
Modified files:
usr.sbin/ntpd : constraint.c
Log message:
Improve logging for TLS certificate validity checking.
Actually specify whether the certificate is not yet valid or has
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 01:38:22
Modified files:
usr.sbin/ntpd : constraint.c
Log message:
Perform manual validity checking of the X.509 certificate for constraints.
Given that we're getting a constraint so that we
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 02:58:40
Modified files:
share/man/man4 : iwm.4
Log message:
- add 7265D-16 firmware
- while there, knock out one .Tn and reformat the text around it
ok stsp
CVSROOT:/cvs
Module name:src
Changes by: su...@cvs.openbsd.org 2019/01/21 04:27:30
Modified files:
usr.sbin/smtpd : mail.lmtp.c
Log message:
While using buffered stdio over a socket, fflush(3) command before
reading the response.
Ok eric@ jung@
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 05:08:13
Modified files:
usr.bin/ssh: kex.c
Log message:
fix reversed arguments to kex_load_hostkey(); manifested as errors in
cert-hostkey.sh regress failures.
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 07:12:13
Modified files:
lib/libssl : ssl_ciphers.c ssl_lib.c
Log message:
Move ssl_cipher_list_to_bytes() and ssl_bytes_to_cipher_list() to
a more appropriately licenced file. jsing and
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 07:19:51
Modified files:
lib/libssl : tls13_handshake.c
Log message:
Use the actual handshake message type in the certificate request handler.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 06:13:46
Modified files:
lib/libssl : tls13_handshake.c tls13_internal.h
Log message:
Wire up the handshake message send and recv actions.
This means that we actually receive and send
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 05:50:12
Modified files:
regress/usr.bin/ssh/misc/kexfuzz: Makefile kexfuzz.c
Log message:
adapt to changes in KEX APIs and file removals
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/01/21 06:45:58
Modified files:
lib/libssl : Makefile tls13_handshake.c tls13_internal.h
tls13_lib.c
Added files:
lib/libssl : tls13_client.c
Log message:
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 05:35:20
Modified files:
regress/usr.bin/ssh/unittests/kex: Makefile test_kex.c
Log message:
adapt to changes in KEX API and file removals
CVSROOT:/cvs
Module name:src
Changes by: schwa...@cvs.openbsd.org2019/01/21 05:35:33
Modified files:
lib/libssl/man : SSL_get_version.3
Log message:
In ssl_lib.c rev. 1.197, jsing@ added TLSv1.3 support to SSL_get_version(3).
Document it.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 05:53:35
Modified files:
usr.bin/ssh: ssh-add.1 ssh-add.c ssh-pkcs11-client.c
ssh-pkcs11-helper.8 ssh-pkcs11-helper.c
Log message:
add "-v" flags to ssh-add and
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 05:29:35
Modified files:
regress/usr.bin/ssh/unittests/sshbuf:
test_sshbuf_getput_crypto.c
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 13:46:52
Modified files:
sys/kern : kern_unveil.c vfs_syscalls.c
Log message:
sometimes we don't call unveil_add, which means memory allocated by namei
doesn't get freed. move the free
CVSROOT:/cvs
Module name:src
Changes by: an...@cvs.openbsd.org 2019/01/21 11:09:21
Modified files:
sys/kern : vfs_lockf.c vfs_subr.c
sys/msdosfs: denode.h
sys/nfs: nfsnode.h
sys/sys: fcntl.h lockf.h specdev.h
CVSROOT:/cvs
Module name:src
Changes by: lan...@cvs.openbsd.org 2019/01/21 13:10:12
Modified files:
lib/libc/sys : pledge.2
Log message:
Document 'video' promise.
looks fine to jmc@
CVSROOT:/cvs
Module name:src
Changes by: lan...@cvs.openbsd.org 2019/01/21 13:09:37
Modified files:
sys/sys: pledge.h
sys/kern : kern_pledge.c
Log message:
Add "video" promise.
Allows a subset of ioctls on video(4) devices, subset selected from
CVSROOT:/cvs
Module name:src
Changes by: o...@cvs.openbsd.org2019/01/21 13:34:14
Modified files:
lib/libc/stdlib: qsort.3
Log message:
Add example showing a proper comparison function, as many examples show
the wrong idiom. ok tedu@ but probably needs some tweakin
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 13:43:27
Modified files:
lib/libc/stdlib: qsort.3
Log message:
a few tweaks
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 15:18:24
Modified files:
usr.bin/ssh: sntrup4591761.c sntrup4591761.sh
Log message:
switch sntrup implementation source from supercop to libpqcrypto;
the latter is almost identical but
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 16:55:12
Modified files:
usr.bin/ssh: scp.1
Log message:
Forgot to add -J to the synopsis.
CVSROOT:/cvs
Module name:src
Changes by: dera...@cvs.openbsd.org 2019/01/21 17:59:31
Modified files:
sys/kern : kern_pledge.c
Log message:
#ifdef video junk as required.
CVSROOT:/cvs
Module name:src
Changes by: d...@cvs.openbsd.org2019/01/21 17:59:21
Modified files:
lib/libcrypto : Symbols.list
lib/libcrypto/chacha: chacha-merged.c chacha.c chacha.h
lib/libcrypto/evp: e_chacha20poly1305.c evp.h
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 18:06:45
Modified files:
lib/libcrypto : Symbols.list
Log message:
Add missing symbols from the EC_KEY_METHOD port.
Reported by bcook and sthen
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 14:37:15
Modified files:
bin/date : date.1 date.c
Log message:
add a -f pformat flag to parse the given time with strptime.
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 15:50:42
Modified files:
usr.bin/ssh: scp.1 scp.c sftp.1 sftp.c
Log message:
Add a -J option as a shortcut for -o Proxyjump= to scp(1) and sftp(1)
to match ssh(1)'s interface.
ok djm
CVSROOT:/cvs
Module name:src
Changes by: chel...@cvs.openbsd.org 2019/01/21 16:41:26
Modified files:
sys/kern : sys_generic.c
Log message:
select(2), pselect(2), poll(2), ppoll(2): Support full timeout range.
Remove the arbitrary and undocumented 24hr limits for
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 18:12:18
Modified files:
lib/libssl : Symbols.list ssl.h ssl_lib.c
Log message:
Provide SSL_get_client_ciphers().
Part of OpenSSL 1.1 API, pre-licence change.
ok jsing
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 18:19:40
Modified files:
lib/libcrypto : shlib_version
lib/libssl : shlib_version
lib/libtls : shlib_version
Log message:
bump minors after symbol addition
Ted Unangst wrote:
> CVSROOT: /cvs
> Module name: src
> Changes by: t...@cvs.openbsd.org2019/01/21 14:35:58
>
> Modified files:
> lib/libc/time : strptime.3 strptime.c
>
> Log message:
> strftime can print epoch seconds with %s, so allow strptime to parse it.
> ok cheloha
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 16:20:31
Modified files:
lib/libcrypto/sha: sha256.c
lib/libcrypto/des/asm: des_enc.m4
Log message:
lenght -> length
CVSROOT:/cvs
Module name:src
Changes by: ajacou...@cvs.openbsd.org 2019/01/21 16:50:36
Modified files:
usr.sbin/syspatch: syspatch.sh
Log message:
Don't return 1 if we rollback and there's no installed patches.
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 18:15:37
Modified files:
lib/libssl : Symbols.list ssl.h ssl_lib.c
Log message:
Add a re-implementation of SSL_get1_supported_ciphers().
Part of OpenSSL 1.1 API (pre-licence-change).
input
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 18:20:52
Modified files:
distrib/sets/lists/base: mi
Log message:
sync
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 14:35:58
Modified files:
lib/libc/time : strptime.3 strptime.c
Log message:
strftime can print epoch seconds with %s, so allow strptime to parse it.
ok cheloha
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 16:06:28
Modified files:
distrib/miniroot: install.sub
Log message:
lenght -> length
CVSROOT:/cvs
Module name:src
Changes by: jmatt...@cvs.openbsd.org2019/01/21 16:47:10
Modified files:
share/man/man4 : umct.4
Log message:
this driver does actually work
CVSROOT:/cvs
Module name:src
Changes by: ajacou...@cvs.openbsd.org 2019/01/21 17:04:26
Modified files:
lib/libc/sys : sysctl.2
Log message:
Point people to ipcomp(4) instead of ipsecctl(8) for
net.inet.ipcomp.enable.
ok deraadt@ bluhm@
CVSROOT:/cvs
Module name:src
Changes by: ajacou...@cvs.openbsd.org 2019/01/21 16:44:26
Modified files:
usr.sbin/syspatch: syspatch.sh
Log message:
Warn user to reboot the machine when a new kernel is installed and let him know
where to look on the local machine for
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 18:18:24
Modified files:
lib/libssl/man : SSL_get_ciphers.3
Log message:
Document SSL_get1_supported_ciphers(3) and SSL_get_client_ciphers(3).
The text comes from OpenSSL, where it was still
CVSROOT:/cvs
Module name:www
Changes by: t...@cvs.openbsd.org2019/01/21 18:25:02
Modified files:
. : 65.html
Log message:
dlg added support for xchacha20 and xchacha20-poly1305
CVSROOT:/cvs
Module name:src
Changes by: jmatt...@cvs.openbsd.org2019/01/21 19:04:30
Modified files:
sys/dev/pci: if_bnxt.c
Log message:
Increase max mtu to match the linux driver; tested against ixl, which can
go larger still.
CVSROOT:/cvs
Module name:src
Changes by: t...@cvs.openbsd.org2019/01/21 22:44:40
Modified files:
share/zoneinfo : Makefile
Log message:
Make zoneinfo directories have permissions 0755 instead of 0555
so this matches the entries in 4.4BSD.dist that ware changed a
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 23:49:17
Modified files:
lib/libc/stdlib: qsort.3
Log message:
sort sections, and add a missing verb to the EXAMPLES text;
CVSROOT:/cvs
Module name:src
Changes by: jmatt...@cvs.openbsd.org2019/01/21 18:57:03
Modified files:
sys/dev/pci: if_ixl.c
Log message:
Add and remove mac filters for multicast addresses.
ok dlg@
CVSROOT:/cvs
Module name:src
Changes by: phess...@cvs.openbsd.org2019/01/21 19:36:30
Modified files:
sys/arch/amd64/include: apmvar.h
sys/arch/arm/include: apmvar.h
sys/arch/i386/include: apmvar.h
sys/arch/loongson/include: apmvar.h
CVSROOT:/cvs
Module name:src
Changes by: o...@cvs.openbsd.org2019/01/21 23:44:46
Modified files:
lib/libc/stdlib: qsort.3
Log message:
Wrap long line
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 23:53:30
Modified files:
bin/date : date.1
Log message:
-p got changed to -f;
CVSROOT:/cvs
Module name:src
Changes by: j...@cvs.openbsd.org2019/01/21 23:58:31
Modified files:
usr.bin/ssh: scp.1 sftp.1
Log message:
tweak previous;
CVSROOT:/cvs
Module name:src
Changes by: phess...@cvs.openbsd.org2019/01/21 18:48:55
Modified files:
sys/arch/amd64/include: apmvar.h
sys/arch/arm/include: apmvar.h
sys/arch/i386/include: apmvar.h
sys/arch/loongson/include: apmvar.h
CVSROOT:/cvs
Module name:src
Changes by: k...@cvs.openbsd.org2019/01/21 20:48:24
Modified files:
sbin/dhclient : dhclient.c
Log message:
Simply the logic translating 'egress' into an interface name.
CVSROOT:/cvs
Module name:src
Changes by: jmatt...@cvs.openbsd.org2019/01/21 19:03:03
Modified files:
sys/dev/pci: if_ixl.c
Log message:
Increase hardmtu to the maximum according to the datasheet and set the rx
packet size limit to match so jumbos actually
CVSROOT:/cvs
Module name:src
Changes by: k...@cvs.openbsd.org2019/01/21 01:16:47
Modified files:
usr.sbin/ndp : ndp.c
Log message:
Zap unused ntop_buf
Last usage got removed with r1.9 in 2001.
sure deraadt
81 matches
Mail list logo