5146dc79e7
import helper
2002-09-12 12:35:03 +00:00
3cc6c8c775
resolve import conflicts
2002-09-12 12:33:10 +00:00
cfa4cd31bb
import krb4 1.2
2002-09-12 12:22:01 +00:00
32e004f92a
kerberos support w/ privsep. confirmed to work by lha@stacken.kth.se
2002-09-09 06:45:17 +00:00
42ebaa698b
don't touch free'ed memory. From: wang.zhong3@zte.com.cn, sync w/kame
2002-09-03 14:38:13 +00:00
2b9b8f5bd3
reduce #ifdef related to OPENSSLDIR - we want it be static
2002-09-01 11:38:34 +00:00
50d422c24f
e_os.h is not part of exported openssl interface, so don't install it into
...
/usr/include/openssl (e_os.h has an explicit comment about it). it obviously
is a bug in openssl 0.9.6 Makefile.
based on openssl 0.9.7 snapshot.
2002-08-31 10:46:36 +00:00
e1754c22c2
if () statement error. From: Krister Walfridsson <cato@df.lth.se>
...
(not compiled) sync w/kame
2002-08-31 07:56:14 +00:00
7049b3bdab
blank commit to force rebuild of krb.h
2002-08-29 14:34:11 +00:00
f613969b8a
somehow main trunk was not in sync with 0.9.6f for this file. noted by havard.
2002-08-28 23:10:30 +00:00
bcb0cf6929
tighten isakmp header length validation. from kame
2002-08-28 04:44:04 +00:00
b57bfa3f73
Drop superfluous Ns, sort sections.
2002-08-20 16:05:46 +00:00
4f40f42275
Remove superfluous Ns, drop trailing whitespace, fix a Xr, don't let lines
...
get longer than 80 characters.
2002-08-20 16:04:13 +00:00
2610a5c4d8
Remove superfluous Ns; while here, remove trailing whitespace and fix a
...
punctuation problem.
2002-08-20 15:59:37 +00:00
158398c921
Fix Ns abuse.
2002-08-20 15:32:12 +00:00
9bf08abfd4
Remove some unnecessary .Ns and trailing whitespace.
2002-08-20 15:24:38 +00:00
a6315c15ad
utmpx.ut_id is required.
...
PR 17998 with slight modification (deal with ttyname shorter than 4)
2002-08-20 07:42:53 +00:00
1146a80999
more NO_xx cleanup. can't catch these by openssl-unifdef.pl
2002-08-17 21:41:59 +00:00
08597903ce
sync with 0.9.6g
2002-08-09 15:58:46 +00:00
5eb341dcb6
openssl 0.9.6g, build framework fixes
2002-08-09 15:45:08 +00:00
182c0b6e08
sync with 0.9.6f. prevents DoS attack and regen of manpages.
2002-08-08 23:47:34 +00:00
f5e63fe4c2
openssl 0.9.6f, with security fixes
2002-08-08 23:14:54 +00:00
7bab20a582
bitmask operation audit (s/&&/&/). from openbsd
2002-08-08 15:12:09 +00:00
e8859ea868
remove files mistakenly shipped with openssl 0.9.6e.
...
(it won't affect the build)
2002-08-05 11:21:29 +00:00
85c4496982
http://marc.theaimsgroup.com/?l=openssl-cvs&m=102831422608153&w=2
...
*) Fix ASN1 checks. Check for overflow by comparing with LONG_MAX
and get fix the header length calculation.
[Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>,
Alon Kantor <alonk@checkpoint.com> (and others),
Steve Henson]
(critical)
2002-08-03 12:56:23 +00:00
e7f66af2b2
fix incorrect overrun check.
...
http://marc.theaimsgroup.com/?l=openssl-cvs&m=102831516309127&w=2
(thank todd!)
2002-08-02 23:09:03 +00:00
d103e0b575
plug memory leak. from ebisawa@iij. sync w/kame
2002-07-31 07:01:26 +00:00
ef920a0913
sync with 0.9.6e.
2002-07-31 01:29:37 +00:00
25e766824a
OpenSSL 0.9.6e. includes major security fixes (already applied)
2002-07-30 23:57:34 +00:00
e9316c8858
apply patch supplied with OpenSSL Security Advisory [30 July 2002]
...
advisory 1: four potentially remotely-exploitable vulnerability in
SSL2/SSL3 code
advisory 2: ASN1 parser vulnerability (all SSL/TLS apps affected)
2002-07-30 12:55:08 +00:00
3fd219f644
add utmpx support.
2002-07-28 23:43:33 +00:00
6742cb1812
sweep of errx/warnx, remove unnecessary trailing \n
2002-07-20 08:36:17 +00:00
24ef72afbf
print connect failure on debugging mode. sync w/openbsd
2002-07-12 13:28:36 +00:00
4b20971f01
Spell acquire with a 'c'.
2002-07-10 23:16:32 +00:00
bdfa549223
bark if all connection attemp fails. sync w/openbsd
2002-07-10 10:28:00 +00:00
92b7524e7d
silently connect(2) to next address. sync w/openbsd
2002-07-09 12:04:10 +00:00
a2a47b15ce
don't warn even if reverse lookup fails. sync w/openbsd
2002-07-09 12:03:54 +00:00
9a2478a3b0
/var/empty -> /var/chroot/sshd. PR 17519
2002-07-08 14:39:53 +00:00
968294e218
>make ssh-keysign read /etc/ssh/ssh_config
...
>and exit if HostbasedAuthentication is disabled globally. based on discussions
>with deraadt, itojun and sommerfeld; ok itojun@
sync w/openbsd
2002-07-03 14:23:13 +00:00
92ea28e291
>for compression=yes, we fallback to no-compression if the server does
...
>not support compression, vice versa for compression=no. ok mouring@
sync w/openbsd
2002-07-03 10:07:48 +00:00
673c1a7ac1
>use RSA_blinding_on() for rsa hostkeys (suggested by Bill Sommerfeld)
...
>in order to avoid a possible Kocher timing attack pointed out by Charles
>Hannum; ok provos@
2002-07-03 10:06:39 +00:00
c28e7ac1f6
correct signed/unsigned mixup; openbsd
2002-07-03 10:05:58 +00:00
8d3378688a
pednatic check on command line args. correct signed/unsigned mixup.
...
sync w/ openbsd
2002-07-01 06:17:11 +00:00
84559971ee
make use of xfree() consistent. from openbsd
2002-07-01 05:56:45 +00:00
11792b93b1
don't use freed memory. sync w/openbsd
2002-07-01 05:54:03 +00:00
5bdd56b128
sync with 3.4
2002-06-26 14:08:29 +00:00
b8f8e01057
OpenSSH 3.4 around 2002/6/26.
...
most significant change:
>make sure # of response matches # of queries, fixes int overflow; from ISS
as we have already enabled privsep by default, we should have been safe.
2002-06-26 14:02:54 +00:00
603dca2ed2
sync whitespace w/ openbsd tree
2002-06-24 15:47:25 +00:00
bc7b65a647
don't lose information while we cast
2002-06-24 15:46:34 +00:00
7d6a7caf6a
Cast arguments so that this file will compile on less forgiving architectures
...
like arm32.
2002-06-24 15:32:58 +00:00
joda