+20020308
+ - (djm) Revert bits of Markus' OpenSSL compat patch which was
+ accidentally committed.
+ - (djm) Add Markus' patch for compat wih OpenSSL < 0.9.6.
+ Known issue: Blowfish for SSH1 does not work
+
+20020307
+ - (djm) OpenBSD CVS Sync
+ - markus@cvs.openbsd.org 2002/03/06 00:20:54
+ [compat.c dh.c]
+ compat.c
+ - markus@cvs.openbsd.org 2002/03/06 00:23:27
+ [compat.c dh.c]
+ undo
+ - markus@cvs.openbsd.org 2002/03/06 00:24:39
+ [compat.c]
+ compat.c
+ - markus@cvs.openbsd.org 2002/03/06 00:25:55
+ [version.h]
+ OpenSSH_3.1
+ - (djm) Update RPM spec files with new version number
+ - (bal) Updated INSTALL to reflect 0.9.6 OpenSSL requirement
+ - (bal) Add in check for rpc/types.h since it is needed on
+ some platforms for INADDR_LOOPBACK. We should retest
+ SCO 3 to see if this fixes their problem also.
+ - (bal) Test for IRIX JOBS support at runtime. Patch provided
+ by David Kaelbling <drk@sgi.com>
+
+20020305
+ - stevesk@cvs.openbsd.org 2002/03/02 09:34:42
+ [LICENCE]
+ correct copyright dates for scp license; ok markus@
+
+20020304
+ - OpenBSD CVS Sync
+ - deraadt@cvs.openbsd.org 2002/02/26 18:52:32
+ [sftp.1]
+ Ic cannot have that many arguments; spotted by mouring@etoh.eviladmin.org
+ - mouring@cvs.openbsd.org 2002/02/26 19:04:37
+ [sftp.1]
+ > Ic cannot have that many arguments; spotted by mouring@etoh.eviladmin.org
+ Last Ic on the first line should not have a space between it and the final
+ comma.
+ - deraadt@cvs.openbsd.org 2002/02/26 19:06:43
+ [sftp.1]
+ no, look closely. the comma was highlighted. split .Ic even more
+ - stevesk@cvs.openbsd.org 2002/02/26 20:03:51
+ [misc.c]
+ use socklen_t
+ - stevesk@cvs.openbsd.org 2002/02/27 21:23:13
+ [canohost.c channels.c packet.c sshd.c]
+ remove unneeded casts in [gs]etsockopt(); ok markus@
+ - markus@cvs.openbsd.org 2002/02/28 15:46:33
+ [authfile.c kex.c kexdh.c kexgex.c key.c ssh-dss.c]
+ add some const EVP_MD for openssl-0.9.7
+ - stevesk@cvs.openbsd.org 2002/02/28 19:36:28
+ [auth.c match.c match.h]
+ delay hostname lookup until we see a ``@'' in DenyUsers and AllowUsers
+ for sshd -u0; ok markus@
+ - stevesk@cvs.openbsd.org 2002/02/28 20:36:42
+ [sshd.8]
+ DenyUsers allows user@host pattern also
+ - stevesk@cvs.openbsd.org 2002/02/28 20:46:10
+ [sshd.8]
+ -u0 DNS for user@host
+ - stevesk@cvs.openbsd.org 2002/02/28 20:56:00
+ [auth.c]
+ log user not allowed details, from dwd@bell-labs.com; ok markus@
+ - markus@cvs.openbsd.org 2002/03/01 13:12:10
+ [auth.c match.c match.h]
+ undo the 'delay hostname lookup' change
+ match.c must not use compress.c (via canonhost.c/packet.c)
+ thanks to wilfried@
+ - markus@cvs.openbsd.org 2002/03/04 12:43:06
+ [auth-passwd.c auth-rh-rsa.c auth-rhosts.c]
+ - markus@cvs.openbsd.org 2002/03/04 13:10:46
+ [misc.c]
+ error-> debug, because O_NONBLOCK for /dev/null causes too many different
+ errnos; ok stevesk@, deraadt@
+ unused include
+ - stevesk@cvs.openbsd.org 2002/03/04 17:27:39
+ [auth-krb5.c auth-options.h auth.h authfd.h authfile.h bufaux.h buffer.h
+ channels.h cipher.h compat.h compress.h crc32.h deattack.c getput.h
+ groupaccess.c misc.c mpaux.h packet.h readconf.h rsa.h scard.h
+ servconf.h ssh-agent.c ssh.h ssh2.h sshpty.h sshtty.c ttymodes.h
+ uuencode.c xmalloc.h]
+ $OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add
+ missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c
+ files. ok markus@
+ - stevesk@cvs.openbsd.org 2002/03/04 18:30:23
+ [ssh-keyscan.c]
+ handle connection close during read of protocol version string.
+ fixes erroneous "bad greeting". ok markus@
+ - markus@cvs.openbsd.org 2002/03/04 19:37:58
+ [channels.c]
+ off by one; thanks to joost@pine.nl
+ - (bal) Added contrib/aix/ to support BFF package generation provided
+ by Darren Tucker <dtucker@zip.com.au>
20020226
- (tim) Bug 12 [configure.ac] add sys/bitypes.h to int64_t tests
based on patch by mooney@dogbert.cc.ndsu.nodak.edu (Tim Mooney)
reported by peak@argo.troja.mff.cuni.cz (Pavel Kankovsky)
[configure.ac defines.h] modify previous SCO3 fix to not break Solaris 7
[acconfig.h] remove unused HAVE_REGCOMP
+ [configure.ac] put back in search for prngd-socket
- (stevesk) openbsd-compat/base64.h: typo in comment
- (bal) Update sshd_config CVSID
- (bal) OpenBSD CVS Sync
[auth-krb5.c]
krb5_get_err_text() does not like context==NULL; he@nordu.net via google;
ok provos@
+ - markus@cvs.openbsd.org 2002/02/22 12:20:34
+ [log.c log.h ssh-keyscan.c]
+ overwrite fatal() in ssh-keyscan.c; fixes pr 2354; ok provos@
+ - markus@cvs.openbsd.org 2002/02/23 17:59:02
+ [kex.c kexdh.c kexgex.c]
+ don't allow garbage after payload.
+ - stevesk@cvs.openbsd.org 2002/02/24 16:09:52
+ [sshd.c]
+ use u_char* here; ok markus@
+ - markus@cvs.openbsd.org 2002/02/24 16:57:19
+ [sftp-client.c]
+ early close(), missing free; ok stevesk@
+ - markus@cvs.openbsd.org 2002/02/24 16:58:32
+ [packet.c]
+ make 'cp' unsigned and merge with 'ucp'; ok stevesk@
+ - markus@cvs.openbsd.org 2002/02/24 18:31:09
+ [uuencode.c]
+ typo in comment
+ - markus@cvs.openbsd.org 2002/02/24 19:14:59
+ [auth2.c authfd.c authfd.h authfile.c kexdh.c kexgex.c key.c key.h
+ ssh-dss.c ssh-dss.h ssh-keygen.c ssh-rsa.c ssh-rsa.h sshconnect2.c]
+ signed vs. unsigned: make size arguments u_int, ok stevesk@
+ - stevesk@cvs.openbsd.org 2002/02/24 19:59:42
+ [channels.c misc.c]
+ disable Nagle in connect_to() and channel_post_port_listener() (port
+ forwarding endpoints). the intention is to preserve the on-the-wire
+ appearance to applications at either end; the applications can then
+ enable TCP_NODELAY according to their requirements. ok markus@
+ - markus@cvs.openbsd.org 2002/02/25 16:33:27
+ [ssh-keygen.c sshconnect2.c uuencode.c uuencode.h]
+ more u_* fixes
+ - (bal) Imported missing fatal.c and fixed up Makefile.in
+ - (tim) [configure.ac] correction to Bug 123 fix
+ [configure.ac] correction to sig_atomic_t test
20020225
- (bal) Last AIX patch. Moved aix_usrinfo() outside of do_setuserconext()