Commit Graph

2709 Commits

Author SHA1 Message Date
christos 990290ead6 kill extra ) 2014-05-12 18:46:27 +00:00
christos e1a6c348ed CID 1011266: Unchecked returns 2014-05-12 15:34:23 +00:00
christos 1e811e3015 CID 745411: Fix memory leak 2014-05-12 15:27:36 +00:00
christos 53c5be254e CID 745439: Fix memory leak 2014-05-12 15:25:49 +00:00
christos c3e31f67e9 CID 745319: Checking the wrong variable for NULL. 2014-05-12 15:21:46 +00:00
christos 23e7e0b50d CID 745290: check return of fcntl 2014-05-12 15:20:41 +00:00
pettai dbaf52c0db update VERSION 2014-04-29 23:18:53 +00:00
pettai c07133c8ad Fix a merge miss 2014-04-25 00:26:16 +00:00
pettai efd5c8c1c2 remove duplicate resolve_free_handle(handle); 2014-04-24 14:49:43 +00:00
pettai 5a3d3c7618 Update build framework for latest heimdal-1-5-branch
Ok'ed and reviewed by elric@
2014-04-24 13:50:53 +00:00
pettai 9641b56ec0 Import latest heimdal-1-5-branch, merge conflicts
Ok'ed and reviewed by elric@
2014-04-24 13:45:33 +00:00
pettai 4f77a4588e Import latest heimdal-1-5-branch from git
Ok'ed + reviewed by elric@
2014-04-24 12:45:26 +00:00
pettai debf61b4d2 heimdal's git (master/origin) has moved to github 2014-04-22 14:07:31 +00:00
joerg 8b6ddbe40e Append to CPPFLAGS.${src}, don't overwrite it. 2014-04-15 10:02:21 +00:00
christos 645afb65f7 Fix use after free:
https://rt.openssl.org/Ticket/Display.html?id=2167&user=guest&pass=guest
https://rt.openssl.org/Ticket/Display.html?id=3265&user=guest&pass=guest
2014-04-13 13:14:15 +00:00
christos 061dc74bd9 merge/regen 2014-04-08 02:18:13 +00:00
christos 057199e66c import latest openssl to fix the heartbleed vulnerability 2014-04-08 01:59:07 +00:00
apb 180c1ed3d9 Run the mkpc script using ${HOST_SH} 2014-04-07 17:40:49 +00:00
christos e2877366be PR/48718: Juergen Hannken-Illjes: Heimdal leaks file descriptors
Add missing call to free the resolve handle on success.
XXX: pullup 6
2014-04-06 14:36:35 +00:00
pettai 1ddcbc4271 fix small nit + missing step 2014-04-06 11:24:25 +00:00
tron 0bf30a01f8 Add fix for CVE-2014-0076 taken from OpenSSL GIT repository:
Fix for the attack described in the paper "Recovering OpenSSL
ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
by Yuval Yarom and Naomi Benger. Details can be obtained from:
http://eprint.iacr.org/2014/140
2014-04-02 20:27:28 +00:00
christos dcd0e19d19 add glue and man 2014-04-01 21:38:44 +00:00
christos eac602f603 add kvno 2014-04-01 21:38:26 +00:00
apb 4840a75dea sizeof(array - 1) decays to sizeof(pointer), but (sizeof(array) - 1)
was actually wanted.

The effect of this bug is that only a few bytes of the hostname are mixed
into the random seed, instead of using the entire hostname.
2014-03-27 16:26:22 +00:00
apb ae56564c55 Fix sizeof errors in memset calls in heimdal. 2014-03-27 16:10:45 +00:00
christos 6c197e6572 bump for previous 2014-03-21 16:59:14 +00:00
wiz 035466f565 Add d1_meth.c to build to fix problems with missing symbol DTLSv1_method.
Addresses asterisk build problems, idea for fix from martin.
2014-03-21 13:07:57 +00:00
riastradh 6cb10275d0 Merge riastradh-drm2 to HEAD. 2014-03-18 18:20:35 +00:00
joerg 84c4c059a1 It's nonliteral format strings it should not warn about. 2014-03-13 12:54:49 +00:00
martin 3f5160ac62 Older gcc does not support -Wno-format-literal 2014-03-13 08:13:21 +00:00
agc 99d1495f9e Turn off literal format string warnings for one file
A better fix is coming
2014-03-12 06:38:56 +00:00
agc 58fcf20a86 Add portability definitions in case they're not already defined
XXX - these need to be consolidated in one single header
2014-03-11 17:48:31 +00:00
agc 5cda552c66 cast arguments to the correct type for format strings 2014-03-11 17:38:48 +00:00
joerg e0282860c8 Annotate format strings. Remove string constant in front of real format
string.
2014-03-11 17:21:05 +00:00
joerg 75578d8a5c Mark assertion handler as dead. 2014-03-11 17:20:23 +00:00
agc a01b2fe1d8 fix typo in previous commit 2014-03-10 17:00:53 +00:00
christos 736fcb9065 fix unused 2014-03-09 07:01:42 +00:00
christos 31641c3398 WARNS=6 is impossible for this code :-) 2014-03-09 07:00:52 +00:00
christos 76cc06c46c proper include 2014-03-09 06:57:58 +00:00
agc c741b30f89 get rid of the old reachover directory 2014-03-09 00:41:41 +00:00
agc ac7f7113d1 Put hkpd in the right place in the reachover infrastructure 2014-03-09 00:40:30 +00:00
agc 9624f25caf Move hkpc and hkpd into the correct place in the reachover insfrastructure 2014-03-09 00:39:31 +00:00
agc da39824b72 Move netpgpkeys into the correct place in the reachover insfrastructure 2014-03-09 00:33:50 +00:00
agc 394c4afedd Install the binary in the correct location 2014-03-09 00:27:54 +00:00
agc 9e49a71f17 Move the netpgp directory (for the executable) under the bin reachover
directory
2014-03-09 00:24:47 +00:00
agc 6ea7b9ad15 Clean up the reachover infrastructure - the programs now live under the
bin subdirectory
2014-03-09 00:18:29 +00:00
agc e6b8b580e4 Add the config.h file as part of the reachover infrastructure 2014-03-09 00:17:28 +00:00
agc 25f78d9123 Bring over the standalone netpgpverify sources from
pkgsrc/security/netpgpverify.

No functional change.
2014-03-09 00:15:45 +00:00
joerg a369f38ac1 Disable abs() checking, a lot of computations get implicit truncations
or use unsigned values.
2014-03-04 21:08:08 +00:00
agc ed05b112a5 check the correct field in the structure in dsa_verify - pointed out by
joerg - thanks!
2014-03-04 17:29:06 +00:00
nakayama 1d4618fbd6 Use assembler code for 32-bit sparc compat library on sparc64. 2014-03-02 09:02:43 +00:00
nakayama 76c38c2772 Use more assembler code on sparc64.
bn-sparcv9.S and OPENSSL_BN_ASM_MONT don't work well since they
assume BN_ULONG is 32-bit, so don't use them.
2014-03-02 08:58:02 +00:00
nakayama 44b7548b4a Fix assembler code generation: pass option -m64 properly, and
generate more code.
2014-03-02 08:50:34 +00:00
tteras a96c32cedb From Adam Majer <adamm@zombino.com>: Support IPv6 in X509 subjectAltName 2014-02-27 08:37:58 +00:00
agc 08dd6cefdd Update to version 20140220
Changes from previous version:

+ portability fixes from xtraeme for his Linux distribution:
	+ add search for ar(1) into autoconf
	+ define __printflike if it's not already defined
	+ fix missing asprintf (I fixed this differently)
2014-02-21 01:55:10 +00:00
gson 057af89a0a Don't print an empty line after the debug message "Enabled Dynamic
Window Scaling".
2014-02-20 08:20:05 +00:00
agc c04135dc77 Avoid a warning on Gentoo Linux about fwrite(3) -- their glibc
declares fwrite(3) with the warn_unused_result attribute, from Razvan
Cojocaru
2014-02-17 07:39:19 +00:00
agc cdcd95784d Manual page fixes from Anthony J. Bentley, with many thanks!
Addresses PR/48395
2014-02-17 07:23:18 +00:00
agc cb8800fa14 Update the autoconf-based infrastructure for another release.
The main change in this infrastructure is to get rid of the
libnetpgp-based netpgpverify.  This functionality is provided by the
standalone netpgpverify and libnetpgpverify in pkgsrc, and
verification can also be performed using "netpgp -v".
2014-02-17 06:38:07 +00:00
agc 7302906d58 When building up a PGP public key from an ssh key, do not use the key
file's mtime as the birthtime of the signature - rather, just zero
this value (the key birthtime is an inherent part of calculating the
key id)

This allows public key files to be copied to other file systems, machines
or directories, and still produce the same key id.
2014-02-04 01:46:38 +00:00
martin 9aa79cfeb3 Mark a potentially unused variable (depending on #ifdef) 2014-01-28 22:06:39 +00:00
apb 85defa7795 Use basename(filename) in "Generated from %s" comments in output files,
to avoid embedding the path to the build tree.
2014-01-18 09:20:36 +00:00
christos 2b043c75b6 eliminate use of bsd.sys.mk from Makefiles 2014-01-16 01:15:32 +00:00
christos 4ef251b9dd merge conflicts 2014-01-11 18:34:36 +00:00
christos f38532950d regen 2014-01-11 18:21:45 +00:00
christos 363ca3aa58 zero %exc 2014-01-11 18:20:06 +00:00
christos 6d19262895 Changes between 1.0.1e and 1.0.1f [6 Jan 2014]
*) Fix for TLS record tampering bug. A carefully crafted invalid
     handshake could crash OpenSSL with a NULL pointer exception.
     Thanks to Anton Johansson for reporting this issues.
     (CVE-2013-4353)

  *) Keep original DTLS digest and encryption contexts in retransmission
     structures so we can use the previous session parameters if they need
     to be resent. (CVE-2013-6450)
     [Steve Henson]

  *) Add option SSL_OP_SAFARI_ECDHE_ECDSA_BUG (part of SSL_OP_ALL) which
     avoids preferring ECDHE-ECDSA ciphers when the client appears to be
     Safari on OS X.  Safari on OS X 10.8..10.8.3 advertises support for
     several ECDHE-ECDSA ciphers, but fails to negotiate them.  The bug
     is fixed in OS X 10.8.4, but Apple have ruled out both hot fixing
     10.8..10.8.3 and forcing users to upgrade to 10.8.4 or newer.
     [Rob Stradling, Adam Langley]
2014-01-11 18:11:10 +00:00
joerg ba96826bca Format string checks for do_log. 2014-01-07 02:13:39 +00:00
htodd d423ddd359 Fix build (cast to const char *). 2014-01-06 23:23:10 +00:00
joerg 3fce799b21 Move __printflike to the prototype. Add explicit cast for void * ->
char * to make GCC happy.
2014-01-06 22:59:10 +00:00
joerg 8a78d908fb Add __printflike. 2014-01-06 21:15:15 +00:00
joerg e371cb1bb3 Add __printflike where necessary. 2014-01-06 21:12:19 +00:00
njoly fa8cf4e111 Remove extra trailing spaces in functions arguments. 2014-01-06 13:59:00 +00:00
tho b69297ca8f Do not install files in usr/share/ when MKSHARE=no
ok christos@
2014-01-02 17:57:58 +00:00
joerg 60419e04f2 Resort libraries according to dependencies. 2013-12-25 22:21:32 +00:00
spz 51d026c1a4 Coverity issues 996120 and 996121, Use after free
Use the M_CP_STROPT definition exclusive to servconf.c twice and
you have freed your original string.

servconf.h won copying authorized_keys_command and
authorized_keys_command_user in COPY_MATCH_STRING_OPTS in 1.107,
but servconf.c didn't drop its own, so it walks into this trap.
Remove the duplicate copies, and disarm the trap.

Note this is on a code path where authorized_keys_command and
authorized_keys_command_user don't actually get used except
for a debug dump of the config, and dump_cfg_string protects
itself against trying to print NULL pointers, so all
you get is sshd -T -C ... giving wrong results, which is rather
insignificant as far as security issues go.
2013-12-15 10:42:52 +00:00
spz 3b1403a1b8 Coverity fix:
979928 Use after free
	debug3 line moved to before one of its arguments is freed
2013-12-03 17:14:35 +00:00
christos c2f6282df9 CID 1129615: close argument can't be negative 2013-11-19 16:58:16 +00:00
christos 94c4f88296 CID 240779: Wrong sizeof used in allocation 2013-11-14 05:04:24 +00:00
christos 0ef7d2283e CID 1128376: check ftruncate result 2013-11-11 16:46:20 +00:00
christos 07a630fb37 CID 1092495: Widen operation to prevent overflow 2013-11-11 16:44:43 +00:00
christos edd8ee4a13 CID 1092473: Fix file descriptor leak 2013-11-11 16:43:26 +00:00
christos 93118e3396 CID-1128381: Avoid use after free 2013-11-11 16:32:10 +00:00
christos 00a838c4a5 merge conflicts. 2013-11-08 19:18:24 +00:00
christos a21039dc8b Import new openssh to address
Changes since OpenSSH 6.3
=========================

This release fixes a security bug:

 * sshd(8): fix a memory corruption problem triggered during rekeying
   when an AES-GCM cipher is selected. Full details of the vulnerability
   are available at: http://www.openssh.com/txt/gcmrekey.adv

Checksums:
==========

 - SHA1 (openssh-6.4.tar.gz) = 4caf1a50eb3a3da821c16298c4aaa576fe24210c
 - SHA1 (openssh-6.4p1.tar.gz) = cf5fe0eb118d7e4f9296fbc5d6884965885fc55d

Reporting Bugs:
===============

- Please read http://www.openssh.com/report.html
  Security bugs should be reported directly to openssh@openssh.com

OpenSSH is brought to you by Markus Friedl, Niels Provos, Theo de Raadt,
Kevin Steves, Damien Miller, Darren Tucker, Jason McIntyre, Tim Rice and
Ben Lindstrom.
2013-11-08 17:58:10 +00:00
christos 7eb6f06c8c remove unused variables 2013-10-20 21:17:28 +00:00
christos 58149f04e4 remove unused variables 2013-10-20 03:35:59 +00:00
christos 69ed668e3d - provide the right size to the zeroing memory function
- remove unused variables
2013-10-20 03:35:32 +00:00
christos 8b20e363e4 fix wrong argument to sizeof. 2013-10-20 03:34:58 +00:00
mrg 52e5bbdc21 avoid casts when the necessary union member is already available.
from apb.
2013-10-19 22:54:44 +00:00
jym c8b47a469d Enable VerifyHostKeyDNS (SSHFP records verification) from DNS for hosts
under NetBSD.org domain.

Multiple TNF hosts have an up-to-date SSHFP record inside the DNS.
This offers a second channel verification for host key fingerprints
(weaker than known_hosts, but spoofing a host on first connect would
also require DNS forgery).

This can provide a trusted second channel (like DANE TLSA records) once
DNSSEC gets more widely used, but for now it is purely informational.

No regression expected, except that the ssh client will print a message
upon first connect to confirm/infirm that it got a correct SSHFP record
from DNS.

Only done for NetBSD.org domain, SSHFP are sadly more an exception than
the rule.

Notified on netbsd-users@, no objection after a week -- committed.
2013-10-06 17:25:34 +00:00
christos 5ede7f76d1 add libcrypto; needed by new binutils 2013-09-29 13:34:37 +00:00
joerg 975a152cfc If a library needs a symbol from another library, pull that library in
explicitly, even if the DT_NEEDED closure would normally already ensure
the presence.
2013-09-11 23:04:09 +00:00
joerg a7c89b6e01 Add dependency on libz and libbz2. 2013-09-11 09:57:09 +00:00
riastradh 1239c2bb08 Publish explicit_memset and consttime_memequal in userland libc.
Remove the double-underscore from the userland versions, and do the
weak alias dance instead, now that these are public parts of libc.

As discussed on tech-userlevel:

https://mail-index.netbsd.org/tech-userlevel/2013/06/24/msg007843.html
(option 3)
2013-08-28 17:47:07 +00:00
riastradh cc79193075 Fix sense of consttime_memequal and update all callers.
Now it returns true (nonzero) to mean equal and false (zero) to mean
inequal, as the name suggests.

As promised on tech-userlevel back in June:

https://mail-index.netbsd.org/tech-userlevel/2013/06/24/msg007843.html
2013-08-28 15:24:41 +00:00
joerg 44ed6e91de Prefer "." for the current address and not the PPC specific "$". 2013-08-04 17:15:21 +00:00
tls 14b0477b50 Re-check the entropy level after we call RAND_poll(), so that we do
not continuously suck data out of /dev/urandom if we receive a stream
of requests larger than the initial-entropy threshold (hi Roland!).
2013-07-28 14:13:29 +00:00
wiz a5684d07dd Use Mt for email addresses. 2013-07-20 21:39:55 +00:00
tteras 2d9f2eda4f From Rainer Weikusat <rweikusat@mobileactivedefense.com>: Export phase1
remote address as Radius Calling-Station-Id.
2013-07-19 10:54:52 +00:00
christos a2f4868d2a add RTM_LOSING, RTM_REDIRECT 2013-07-18 17:02:58 +00:00
tteras 4595769cee From Sven Vermeulen <sven.vermeulen@siphos.be>: Moves ploginit() up,
allowing logging events from init_avc() to show up as well.
2013-07-12 13:11:50 +00:00
joerg 9e69720425 Fix violations of the sequence point rule. 2013-06-28 15:04:35 +00:00
riastradh 82db4b9858 Replace consttime_bcmp/explicit_bzero by consttime_memequal/explicit_memset.
consttime_memequal is the same as the old consttime_bcmp.
explicit_memset is to memset as explicit_bzero was to bcmp.

Passes amd64 release and i386/ALL, but I'm sure I missed some spots,
so please let me know.
2013-06-24 04:21:19 +00:00
christos c59ba37534 Add an option --enable-wildcard-match to enable wildcard matching and explain
why we might want it and why it is a bad idea in general that's why it is
not enabled by default. ok tteras@, manu@
2013-06-20 15:41:18 +00:00
tteras 4f62ef74bd From Paul Barker: Remove redundant memset after calloc that caused compile
failures with gcc 4.8 due to error: argument to 'sizeof' in 'memset' call
is the same expression as the destination; did you mean to dereference.
2013-06-18 05:39:50 +00:00
christos 54da44c072 Accept - as stdin
Be nice and let the user know which file it could not open.
2013-06-14 16:29:14 +00:00
tteras 05fbc8efab From Alexander Sbitnev <alexander.sbitnev@gmail.com>: fix admin port
establish-sa for tunnel mode SAs.
2013-06-03 05:49:31 +00:00
tteras fdd5bac4fc From Rainer Weikusat <rweikusat@mobileactivedefense.com>: Fix
SADB_X_EALG_CASTCBC definition to use system definition (which
differs at least on Linux).
------------------------
2013-05-23 05:42:29 +00:00
elric 3966285084 AUTHCID is optional for the GSSAPI mechanism. 2013-05-16 13:02:12 +00:00
elric cdfc977bf0 principals have principles. 2013-05-14 15:33:21 +00:00
mlelstv 34b99be967 The previous patch didn't apply cleanly, because our code doesn't
use #ifdef OPENSSL_HAS_ECC.
Apply manually.
Drop now unused len variable.
2013-05-14 05:18:11 +00:00
christos c8fbe6c64a use explicit_bzero instead of memset to zero memory 2013-05-10 16:39:25 +00:00
christos 6fd620669a remove error(1) output. 2013-05-10 16:38:47 +00:00
mbalmer b1090dff8a racoon default config is in /etc/racoon/racoon.conf 2013-05-08 20:03:02 +00:00
mlelstv e976afb5c5 Identityfile warnings fixes.
https://bugzilla.mindrot.org/show_bug.cgi?id=2084
2013-04-29 17:59:50 +00:00
christos 90a83642c1 restore logging behavior: don't treat user disconnect messages as errors,
just log them.
2013-04-25 20:10:28 +00:00
joerg 8d7f62402c Use __dead. 2013-04-12 18:09:30 +00:00
joerg e29eeb0057 Add __printflike. 2013-04-12 18:09:19 +00:00
joerg f1ca729c04 Don't force pthread linkage. 2013-04-12 18:08:10 +00:00
tteras 32d6075c95 From Rainer Weikusat <rweikusat@mobileactivedefense.com>: Do not send out
illegal zero length MODE_CFG attributes.
2013-04-12 10:03:45 +00:00
tteras 3d2760a386 Some logging improvements. 2013-04-12 09:53:10 +00:00
christos ce11a51f1d welcome to openssh-6.2 2013-03-29 16:19:44 +00:00
christos d2a9b9efd7 from openbsd 2013-03-29 14:52:38 +00:00
agc ca99397396 fix some lint on i386, noticed by Greg Troxel, thanks! 2013-03-19 01:00:16 +00:00
riastradh 6641d1f9ad Touch e_aes.c to force a rebuild with new compiler flags for AES-NI. 2013-02-18 21:20:50 +00:00
riastradh 249c85457d Fix build goo for OpenSSL AES-NI support.
OpenSSL now supports AES-NI in evp, not in an engine.  We can now get
rid of the no longer maintained aesni engine, which was broken last
summer.  Not only can OpenSSL now use AES-NI for everything it did
before we broke it last summer, but it can also use AES-NI for more
encryption modes than before, such as CTR.

Tested on amd64, both vanilla and in an i386 chroot.

ok christos
2013-02-18 21:15:25 +00:00
christos 82e8c5f133 need bsd.own.mk 2013-02-12 20:55:37 +00:00
christos b261027db1 mv the MKCRYPTO protection higher; ideally should be at the top for this 2013-02-12 20:31:13 +00:00
christos a7c38cbf62 merge in 1.0.1e 2013-02-12 19:52:11 +00:00
christos 5f71164a5e Changes between 1.0.1d and 1.0.1e [11 Feb 2013]
*) Correct fix for CVE-2013-0169. The original didn't work on AES-NI
     supporting platforms or when small records were transferred.
     [Andy Polyakov, Steve Henson]
2013-02-12 19:10:49 +00:00
christos fdbbeac71e remove obsolete file 2013-02-08 22:37:14 +00:00
christos 6b8892b719 fix generation 2013-02-08 15:22:03 +00:00
matt e67266a84f Change bclr 14,2 to beqlr 2013-02-08 03:05:43 +00:00
christos 1e387e93ca descend! 2013-02-08 01:54:20 +00:00
christos a6b0cd16cd commit the new man page. 2013-02-07 17:30:08 +00:00
christos 0e9a2dbd88 one more page 2013-02-07 16:48:28 +00:00
christos f496c772c6 reorg and add missing file. 2013-02-06 17:03:51 +00:00
christos ffecf7319c bump and add extra file 2013-02-05 23:38:46 +00:00
christos 523f268b9f merge changes 2013-02-05 21:31:23 +00:00
christos 85e90c0ff3 regen 2013-02-05 19:21:27 +00:00
christos 44ce355adb regen! 2013-02-05 19:18:41 +00:00
christos 340218d9b9 import 1.0.1d for http://www.openssl.org/news/secadv_20130204.txt 2013-02-05 19:04:09 +00:00
tteras fde1259d48 Fix source port selection 2013-02-05 11:36:17 +00:00
tteras 0849876e12 From Ian West <ian@niw.com.au>: Fix double free of the radius info on
config reload.
2013-02-05 06:22:29 +00:00
manu 00e5ebee00 Pull multiple free bua fix from upstream:
http://git.openssl.org/gitweb/?p=openssl.git;a=patch;h=d21bf10dea6588b632a65b4fe594e04f288aad83;hp=d47c01a31a67ff4370b1883a58cabd0279752bb4

Multiple copies of the ENGINE will cause problems when it is cleaned up as
the methods are stored in static structures which will be overwritten and
freed up more than once.

Set static methods to NULL when the ENGINE is freed so it can be reloaded.
2013-02-04 01:44:47 +00:00
christos 469af362c9 use the version in the source tree, instead of the build host 2013-02-01 21:02:48 +00:00
tteras b889f6fc93 Fix handling of deletion notification. 2013-01-24 06:47:50 +00:00
christos 387f092185 print only the version as the full version confuses pkgconfig. 2013-01-22 13:51:45 +00:00
apb 5950e8a8de FILESBUILD_<filename>=yes can replace both
CLEANFILES+=<filename> and realall: <filename>
2013-01-19 21:57:55 +00:00
christos 4aa8d00fa6 add a dependency to realall from Takeshi Nakayama 2013-01-19 21:05:46 +00:00
christos 98c3902e37 Add pkgconfig gluons 2013-01-18 18:09:55 +00:00
christos 9109786ace #!/bin/sh 2013-01-18 17:56:11 +00:00
tteras b607d37b51 Fix errors from automake 1.13 2013-01-08 12:42:31 +00:00
tteras 252bdda2a4 Don't derefence the directory symlink which we might be recreating. 2013-01-08 12:38:40 +00:00
martin 1c77afcb0e Compile bignum.c with -O1 only on ia64 to avoid a gcc bug 2012-12-27 14:16:16 +00:00
tteras c577d46f00 From Götz Babin-Ebell <g.babin-ebell@novamedia.de>: Smarter X.509 subject
name compare.
2012-12-24 14:50:04 +00:00
tteras 411eef5f44 From Götz Babin-Ebell <g.babin-ebell@novamedia.de:
Require OpenSSL 0.9.8s or higher
2012-12-24 08:46:27 +00:00
christos fb2eb83f75 make sure that our hpn patches are up-to-date 2012-12-12 18:19:25 +00:00
christos 2649c70094 update to 6.1
This is primarily a bugfix release.

Features:

 * sshd(8): This release turns on pre-auth sandboxing sshd by default for
   new installs, by setting UsePrivilegeSeparation=sandbox in sshd_config.
 * ssh-keygen(1): Add options to specify starting line number and number of
   lines to process when screening moduli candidates, allowing processing
   of different parts of a candidate moduli file in parallel
 * sshd(8): The Match directive now supports matching on the local (listen)
   address and port upon which the incoming connection was received via
   LocalAddress and LocalPort clauses.
 * sshd(8): Extend sshd_config Match directive to allow setting AcceptEnv
   and {Allow,Deny}{Users,Groups}
 * Add support for RFC6594 SSHFP DNS records for ECDSA key types. bz#1978
 * ssh-keygen(1): Allow conversion of RSA1 keys to public PEM and PKCS8
 * sshd(8): Allow the sshd_config PermitOpen directive to accept "none" as
   an argument to refuse all port-forwarding requests.
 * sshd(8): Support "none" as an argument for AuthorizedPrincipalsFile
 * ssh-keyscan(1): Look for ECDSA keys by default. bz#1971
 * sshd(8): Add "VersionAddendum" to sshd_config to allow server operators
   to append some arbitrary text to the server SSH protocol banner.

Bugfixes:

 * ssh(1)/sshd(8): Don't spin in accept() in situations of file
   descriptor exhaustion. Instead back off for a while.
 * ssh(1)/sshd(8): Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs as
   they were removed from the specification. bz#2023,
 * sshd(8): Handle long comments in config files better. bz#2025
 * ssh(1): Delay setting tty_flag so RequestTTY options are correctly
   picked up. bz#1995
 * sshd(8): Fix handling of /etc/nologin incorrectly being applied to root
   on platforms that use login_cap.
2012-12-12 17:42:39 +00:00
christos 03f1b832fc From ftp.openbsd.org 2012-12-12 16:52:23 +00:00
agc 28853c6d2d Make the mp_digit type an "unsigned long" so that it works for ILP32 and
LP64.

Fixes problems showing up on regression tests on i386 (which work fine on
amd64) i.e. turn:

	t_netpgpverify (1/1): 2 test cases
	    netpgpverify_dsa: [0.309746s] Failed: atf-check failed; see the output of the test for details
	    netpgpverify_rsa: [0.183148s] Passed.
	[0.495102s]

	Failed test cases:
	    t_netpgpverify:netpgpverify_dsa

	Summary for 1 test programs:
	    1 passed test cases.
	    1 failed test cases.
	    0 expected failed test cases.
	    0 skipped test cases.

into:

	t_netpgpverify (1/1): 2 test cases
	    netpgpverify_dsa: [0.236076s] Passed.
	    netpgpverify_rsa: [0.154680s] Passed.
	[0.393034s]

	Summary for 1 test programs:
	    2 passed test cases.
	    0 failed test cases.
	    0 expected failed test cases.
	    0 skipped test cases.
2012-12-03 18:02:22 +00:00
wiz 43e793251e Bump date for previous. 2012-11-30 08:19:01 +00:00
vanhu 2bdb1d3e0a Added support for AES GCM 16 in phase2 negociations. Code from Christophe Carre / NETASQ 2012-11-29 15:31:24 +00:00
wiz 759d63f41f Remove trailing whitespace, sort SEE ALSO, comment out reference
to non-existing libbz2(3).

XXX: bn(3) references correct? (man page doesn't exist in NetBSD)
2012-11-28 09:23:14 +00:00
agc 054ef4df4b revert previous change for LIBDPLIBS until I have a chance to work out the
order for building pre-req libs
2012-11-22 21:20:44 +00:00
martin 6747337601 Initialize "ok" (and thereby fix the vax build) 2012-11-22 11:26:28 +00:00
agc ef7daf19a9 link libz and libbz2 into the netpgpverify library, rather than into the
executable, via LIBDPLIBS.
2012-11-22 04:05:57 +00:00
agc 53475f6b40 Fix some lint 2012-11-22 00:38:45 +00:00
agc e5e8eae465 Fix some lint - from Havard Eidnes 2012-11-22 00:37:55 +00:00
agc 2752da196a fix problem on 32-bit problems - with thanks to Alan Barrett and
Jonathan Kollasch
2012-11-20 18:45:37 +00:00
agc 9bf07868ef don't assume every platform is 64-bit - just use standard integer arithmetic 2012-11-20 17:57:40 +00:00
agc 640eb22bcb Merge netpgpverify(1) and libnetpgpverify(3) from the
agc-netpgp-standalone branch.

Rewrite the netpgpverify(1) functionality from RFC4880 up.  This is a
completely new implementation, and uses its own bignum library derived
from libtommath.  Apart from libz and libbz2, it just uses its own
library and is self-contained - this makes it easier to embed, and to
use from scripting languages.

netpgpverify(1) now verifies all the signed files i've thrown at it,
and the added bonus of using no functionality from libcrypto - all of
its bignum functionality comes from its own libnetpgpverify.so.
netpgpverify(1) now verifies not only signatures on binary files, but
also signatures on text documents.  This fixes PR/46930.  Please don't
start me on the hoops I had to jump through to calculate the digests
on text files; trust me, you will regret it.

% supersize `which netpgpverify`
   text    data     bss     dec     hex filename
   4452     860      72    5384    1508 /usr/bin/netpgpverify
  79542    1408       0   80950   13c36 /usr/lib/libz.so.1
  43994     984     488   45466    b19a /usr/lib/libgcc_s.so.1
1318116   49644   69272 1437032  15ed68 /usr/lib/libc.so.12
  57253    4184       0   61437    effd /usr/lib/libbz2.so.1
 108726    1712       0  110438   1af66 /usr/lib/libnetpgpverify.so.4
  1612083    58792   69832   1740707   0x1a8fa3   total
%

% make t
env LD_LIBRARY_PATH=/usr/src/crypto/external/bsd/netpgp-standalone/lib/verify ./netpgpverify -c verify b.gpg > output16
diff expected16 output16
rm -f output16
env LD_LIBRARY_PATH=/usr/src/crypto/external/bsd/netpgp-standalone/lib/verify ./netpgpverify -c verify a.gpg > output17
diff expected17 output17
rm -f output17
env LD_LIBRARY_PATH=/usr/src/crypto/external/bsd/netpgp-standalone/lib/verify ./netpgpverify -c verify gpgsigned-a.gpg > output18
diff expected18 output18
rm -f output18
env LD_LIBRARY_PATH=/usr/src/crypto/external/bsd/netpgp-standalone/lib/verify ./netpgpverify -c verify NetBSD-6.0_RC2_hashes.asc > output19
diff expected19 output19
rm -f output19
...
env LD_LIBRARY_PATH=/usr/src/crypto/external/bsd/netpgp-standalone/lib/verify ./netpgpverify -k dsa-pubring.gpg in2.asc > output45
diff expected45 output45
rm -f output45
env LD_LIBRARY_PATH=/usr/src/crypto/external/bsd/netpgp-standalone/lib/verify ./netpgpverify -k problem-pubring.gpg NetBSD-6.0_hashes.asc > output46
diff expected46 output46
rm -f output46
cd tests/netpgpverify && make && atf-run
atf2kyua: I: Removing stale Kyuafiles from /tmp/.XXXXXX.004966aa
atf2kyua: I: Converting /usr/src/crypto/external/bsd/netpgp-standalone/tests/netpgpverify/Atffile -> /tmp/.XXXXXX.004966aa/Kyuafile
t_netpgpverify:netpgpverify_rsa  ->  passed  [0.221s]
t_netpgpverify:netpgpverify_dsa  ->  passed  [0.117s]

2/2 passed (0 failed)
Committed action 19
%
2012-11-20 05:26:24 +00:00
christos c254700c5c wait for trousers 2012-11-04 19:46:42 +00:00
christos df3a32c7fb use LIBDPLIBS 2012-11-04 19:45:58 +00:00
christos 452fa9e672 Hook in TPM utils 2012-11-04 16:29:12 +00:00
christos 0ccc9c4c06 Don't forget to re-assign sock after dup2(); from Jarle Greipsland 2012-10-26 12:42:10 +00:00
christos 839f71d992 Take better care of closing file descriptors in the agent child and dealing
with dup2 and std{in,out,err}.
2012-09-18 15:18:01 +00:00
christos ff8ddb8d69 fix MKREPRO build not to put Generated from ${NETBSDSRCDIR} in files. 2012-09-05 19:31:04 +00:00
tteras 880340da60 From Roman Hoog Antink <rha@open.ch>: Accept DPD messages with cookies
also in reversed order for compatiblity. At least Cisco 836 running
IOS 12.3(8)T does this.
2012-08-29 12:01:30 +00:00
tteras 6c437507a2 From Roman Hoog Antink <rha@open.ch>: add remote's IP address to the
"certificate not verified" error message.
2012-08-29 11:34:37 +00:00
tteras f2b1919eeb From Roman Hoog Antink <rha@open.ch>: do not print unnecessary warning
about non-verified certificate when using raw plain-rsa.
2012-08-29 11:24:11 +00:00
manu 5fe2cf73eb Fix make test on powermac G5. Patch from Nakano Takaharu 2012-08-15 14:51:30 +00:00
christos cd376cd5d3 Prefer SIXTY_FOUR_BIT_LONG instead of SIXTY_FOUR_BIT as before 2012-08-12 17:24:59 +00:00
christos bfc28188e6 define OPENSSL_THREADS, from drochner. 2012-08-12 12:43:49 +00:00
joerg e16a720f89 Don't depend on HAVE_GCC being always defined. 2012-08-10 12:20:10 +00:00
christos cd27e50e59 add #include <machine/asm.h>, use PIC_PLT() 2012-08-04 11:03:34 +00:00
christos faf72548c4 add this directory to the search path 2012-07-31 11:08:34 +00:00
christos 1a28d260d0 - -m64 is needed for ghash
- add montgomery multiplication assembly
2012-07-31 10:33:45 +00:00
matt d19212c5d5 Fix mips asm to not use outdated stuff. 2012-07-30 18:40:36 +00:00
christos 6cced2a43a make sure alloca is undefed on SSP 2012-07-30 17:16:23 +00:00
christos f87f89779c only use alloca if not __SSP__ 2012-07-30 17:15:45 +00:00
martin a1e40c3f35 Do not use dots in identifiers (replace by _) 2012-07-30 15:00:39 +00:00
matt fcff60e41a Add sparccpuid.S 2012-07-30 13:53:19 +00:00
christos c77791c047 fix the generation 2012-07-30 10:25:24 +00:00
matt 72331d9777 Fix init call to OPENSSL_cpuid_setup.
XXX why are using a globally visible routine in a constructor?
2012-07-29 13:17:53 +00:00
christos 4364423588 make sure that the PLT change is not lost 2012-07-28 19:21:57 +00:00
matt fec343bc7e Call OPENSSL_cpuid_setup through PLT to avoid DT_TEXTREL 2012-07-28 18:06:08 +00:00
matt 8a64184d2a Get new openssl to work on powerpc. 2012-07-27 23:01:23 +00:00
christos c359006f4e This cannot be used because we are compiling with __ARM_ARCH_3__ and it needs
a minimum of 4
2012-07-27 21:28:24 +00:00
christos 371fb85ca8 remove extra parens that make clang bitchy. 2012-07-27 21:22:55 +00:00
christos abb96b5702 Instead of leaving the file directive which is inconsistent and may contains
paths, instead include our assembly macros
2012-07-27 19:34:13 +00:00
christos 662e5a1b5f avoid an alloca for SSP 2012-07-27 18:35:57 +00:00
christos 20d591e2dc regen for the new version 2012-07-27 18:22:59 +00:00
christos 25f2218e23 more assembly munging 2012-07-27 18:16:53 +00:00
christos fc700fffcd provide OPENSSL_cpuid_setup to the haves and the havenots
[still there are other platforms ia64, s370, powerpc64] where we can do better.
2012-07-27 18:10:40 +00:00
christos 59b796f522 undo previous: some ports don't have it in the constructor! 2012-07-27 17:45:59 +00:00
christos 5f605781bc don't do cpuid anymore. 2012-07-27 17:27:43 +00:00
christos 414b1de06c only x86 has AESNI 2012-07-27 16:05:27 +00:00
christos c0ab76c295 make OPENSSL_cpuid_setup global again 2012-07-27 16:04:30 +00:00
christos 2c88e265bf make this compile. 2012-07-26 21:23:13 +00:00
christos 2131695062 Don't do the PLTGOT for local labels, limit it to OPENSSL_ global symbols. 2012-07-26 21:22:47 +00:00
christos 11b09fe68b put back support for AES-NI. 2012-07-26 20:21:20 +00:00
christos e3d33c0426 merge openssl-1.0.1c 2012-07-26 19:58:36 +00:00
christos 32daad53f7 from ftp.openssl.org 2012-07-26 14:58:16 +00:00
christos 443e5cbbb2 remove mdc2 and idea handling 2012-07-13 19:32:51 +00:00
christos 0909c5ab7c oops, add all the files 2012-07-12 18:44:49 +00:00
christos d9a6861d6d no need for MKCRYPTO_IDEA 2012-07-11 19:01:02 +00:00
christos e6f6cceebd remove unneeded libraries 2012-07-11 18:50:23 +00:00
christos 6a574bf521 Enable ciphers with expired patents:
mdc2 4,908,861 (expired August 28, 2007)
idea 5,214,703 (expired January 7, 2012)
2012-07-11 18:48:27 +00:00
christos f5b2f99aea - centralize WARNS=4, no need for WARNS=0 for the linker errors
(linking against) dummy idea
- add MKCRYPTO_IDEA support. Alas the code does not seem work accept my
  passphrase on the idea key. A bug?
2012-07-10 19:38:17 +00:00
christos 0c8e933f1b reflect reality. We don't need .a libraries to link against anymore, and
we are not aboting, but exiting.
2012-07-10 19:35:58 +00:00
christos 1a12a170b1 Enable shared libraries for patented cyphers.
Needed since netpgp.so must include them before -lcrypto to enable.
2012-07-10 18:59:21 +00:00
jdf 84bfda063b Change little wording error (s/associate/associated/) and formatting error.
Patch proposal was sent upstream to Heimdal as well.
Patch by jklowden in PR lib/46651.
2012-07-04 20:46:14 +00:00
njoly 0e4029fbef Small spacing fix. Unbreaks section in xref. 2012-06-04 14:24:03 +00:00
drochner 4c2e6ed1da pull in upstream rev.22547:
Sanity check record length before skipping explicit IV in TLS 1.2, 1.1
and DTLS to fix DoS attack.
(CVE-2012-2333)
2012-05-11 18:07:33 +00:00
christos 845f0e2763 bump 2012-05-02 02:41:13 +00:00
christos 091c4109a8 merge OpenSSH 6.0
Features:

 * ssh-keygen(1): Add optional checkpoints for moduli screening
 * ssh-add(1): new -k option to load plain keys (skipping certificates)
 * sshd(8): Add wildcard support to PermitOpen, allowing things like
   "PermitOpen localhost:*".  bz #1857
 * ssh(1): support for cancelling local and remote port forwards via the
   multiplex socket. Use ssh -O cancel -L xx:xx:xx -R yy:yy:yy user@host"
   to request the cancellation of the specified forwardings
 * support cancellation of local/dynamic forwardings from ~C commandline

Bugfixes:

 * ssh(1): ensure that $DISPLAY contains only valid characters before
   using it to extract xauth data so that it can't be used to play local
   shell metacharacter games.
 * ssh(1): unbreak remote portforwarding with dynamic allocated listen ports
 * scp(1): uppress adding '--' to remote commandlines when the first
   argument does not start with '-'. saves breakage on some
   difficult-to-upgrade embedded/router platforms
 * ssh(1)/sshd(8): fix typo in IPQoS parsing: there is no "AF14" class,
   but there is an "AF21" class
 * ssh(1)/sshd(8): do not permit SSH2_MSG_SERVICE_REQUEST/ACCEPT during
   rekeying
 * ssh(1): skip attempting to create ~/.ssh when -F is passed
 * sshd(8): unbreak stdio forwarding when ControlPersist is in use; bz#1943
 * sshd(1): send tty break to pty master instead of (probably already
   closed) slave side; bz#1859
 * sftp(1): silence error spam for "ls */foo" in directory with files;
   bz#1683
 * Fixed a number of memory and file descriptor leaks
2012-05-02 02:41:08 +00:00
tls 011988ad52 Add new "SendVersionFirst" option to OpenSSH client. This option makes
the client send its version string first if it is configured to speak
v2 only (the old hack of waiting to see the server version is only
really useful if you might be speaking v1 to some servers).  The option
is on by default but can be disabled from the config file.

This aligns the OpenSSH client behavior with most other implementations
and eliminates a major source of connection delays and failures when
speaking SSH through particularly stupid proxies, of which, sadly, there
are many.

This change has also been submitted to OpenSSH as their bug #1999.
2012-04-27 15:45:37 +00:00
drochner b0eecc93cf fix for previous fix: correct error code (upstream rev.22474) 2012-04-25 11:02:46 +00:00
drochner c89bad5193 pull in upstream SVN rev. 22439:
check for potentially exploitable overflows in asn1_d2i_read_bio
BUF_mem_grow and BUF_mem_grow_clean. Refuse attempts to shrink buffer
in CRYPTO_realloc_clean. (CVE-2012-2110)
2012-04-19 20:20:56 +00:00
christos 07636659d9 Minimize diffs. 2012-04-14 01:34:37 +00:00
christos 4dd26a2880 use getpassfd() 2012-04-13 23:57:08 +00:00
tls 36a4733e75 Fix applications that call RAND_bytes() before any other RAND function.
Last change was...a bit too simple.
2012-03-07 10:17:47 +00:00
tls 48b3ca7292 Patch OpenSSL RNG to allow explicit initial seeding. Patch OpenSSH to
explicitly seed the OpenSSL RNG in each new process rather than letting
it repeatedly open /dev/urandom to reseed, which depletes entropy severely.

Note that the OpenSSH part of this fix works better on NetBSD than it would
on many other platforms because on NetBSD, if you don't reopen /dev/urandom,
repeated reads don't deplete entropy.  On other platforms, some other
approach might be required.

Note also that this problem does not arise on OpenBSD because OpenBSD seems
to have patched OpenSSL to seed the RAND functions from arc4random()!  That
seems dangerous, so I am not taking that approach here.
2012-03-05 20:13:36 +00:00
christos 94fcde8eaf Fix compilation:
kill PGP_ERROR() and make everything use a format.
XXX: Fixme to use __VA_ARGS__ instead of the silly PGP_ERROR_N() macros.
2012-03-05 02:20:18 +00:00
agc ddccfadc5f Use %s for the format string, as pointed out by joerg in the diff for
__printflike attributions (on tech-userlevel, March 1st 2012).
2012-03-04 19:52:02 +00:00
drochner 582e7c9a93 apply upstream rev.22146: Tolerate bad MIME headers in parser.
avoids possible NULL dereference (CVE-2006-7248)
2012-02-28 17:23:58 +00:00
agc 1ce8f15ce5 Add the --trusted-keys argument to netpgpkeys(1) to print out PGP ids in a
machine-readable manner.
2012-02-22 06:58:54 +00:00
agc c636a2b399 re-order the fields that we print out in the pgp_sprint_pubkey() function
to be more usual.

print out the name from within pgp_sprint_pubkey() rather than tagging it
onto the end of the output from the function.
2012-02-22 06:29:40 +00:00
wiz de33c51b97 Bump date for previous. 2012-02-18 13:51:29 +00:00
drochner 544002eb2d mention esp-udp 2012-02-18 13:42:45 +00:00
wiz e2fe99ce62 Use the correct constant.
From FreeBSD via Henning Petersen in PR 46005.
2012-02-13 13:03:06 +00:00
christos 2552839412 Add configuration glue 2012-01-28 16:05:20 +00:00
christos 5936836493 Add build glue: no pkcs11 yes. 2012-01-28 16:04:12 +00:00
christos a3508f9e3b remove stray .TP 2012-01-28 16:03:46 +00:00
christos def4b137e5 we don't have -ldl 2012-01-28 03:05:53 +00:00
christos 9571548fef handle ctype lossage 2012-01-28 03:04:27 +00:00
christos 431955c163 import tpm-tools from sourceforge 2012-01-28 02:56:55 +00:00
christos 125dcfd019 add libtcs 2012-01-28 02:51:19 +00:00