Source-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[src/trunk]: src/crypto/external/bsd/openssh/dist Potentially-incompatible ch...



details:   https://anonhg.NetBSD.org/src/rev/bd2efc4b15a4
branches:  trunk
changeset: 356661:bd2efc4b15a4
user:      christos <christos%NetBSD.org@localhost>
date:      Sat Oct 07 19:36:11 2017 +0000

description:
Potentially-incompatible changes
================================

This release includes a number of changes that may affect existing
configurations:

 * ssh(1): delete SSH protocol version 1 support, associated
   configuration options and documentation.

 * ssh(1)/sshd(8): remove support for the hmac-ripemd160 MAC.

 * ssh(1)/sshd(8): remove support for the arcfour, blowfish and CAST
   ciphers.

 * Refuse RSA keys <1024 bits in length and improve reporting for keys
   that do not meet this requirement.

 * ssh(1): do not offer CBC ciphers by default.

Changes since OpenSSH 7.5
=========================

This is primarily a bugfix release. It also contains substantial
internal refactoring.

Security
--------

 * sftp-server(8): in read-only mode, sftp-server was incorrectly
   permitting creation of zero-length files. Reported by Michal
   Zalewski.

New Features
------------

 * ssh(1): add RemoteCommand option to specify a command in the ssh
   config file instead of giving it on the client's command line. This
   allows the configuration file to specify the command that will be
   executed on the remote host.

 * sshd(8): add ExposeAuthInfo option that enables writing details of
   the authentication methods used (including public keys where
   applicable) to a file that is exposed via a $SSH_USER_AUTH
   environment variable in the subsequent session.

 * ssh(1): add support for reverse dynamic forwarding. In this mode,
   ssh will act as a SOCKS4/5 proxy and forward connections
   to destinations requested by the remote SOCKS client. This mode
   is requested using extended syntax for the -R and RemoteForward
   options and, because it is implemented solely at the client,
   does not require the server be updated to be supported.

 * sshd(8): allow LogLevel directive in sshd_config Match blocks;
   bz#2717

 * ssh-keygen(1): allow inclusion of arbitrary string or flag
   certificate extensions and critical options.

 * ssh-keygen(1): allow ssh-keygen to use a key held in ssh-agent as
   a CA when signing certificates. bz#2377

 * ssh(1)/sshd(8): allow IPQoS=none in ssh/sshd to not set an explicit
   ToS/DSCP value and just use the operating system default.

 * ssh-add(1): added -q option to make ssh-add quiet on success.

 * ssh(1): expand the StrictHostKeyChecking option with two new
   settings. The first "accept-new" will automatically accept
   hitherto-unseen keys but will refuse connections for changed or
   invalid hostkeys. This is a safer subset of the current behaviour
   of StrictHostKeyChecking=no. The second setting "off", is a synonym
   for the current behaviour of StrictHostKeyChecking=no: accept new
   host keys, and continue connection for hosts with incorrect
   hostkeys. A future release will change the meaning of
   StrictHostKeyChecking=no to the behaviour of "accept-new". bz#2400

 * ssh(1): add SyslogFacility option to ssh(1) matching the equivalent
   option in sshd(8). bz#2705

Bugfixes
--------

 * ssh(1): use HostKeyAlias if specified instead of hostname for
   matching host certificate principal names; bz#2728

 * sftp(1): implement sorting for globbed ls; bz#2649

 * ssh(1): add a user@host prefix to client's "Permission denied"
   messages, useful in particular when using "stacked" connections
   (e.g. ssh -J) where it's not clear which host is denying. bz#2720

 * ssh(1): accept unknown EXT_INFO extension values that contain \0
   characters. These are legal, but would previously cause fatal
   connection errors if received.

 * ssh(1)/sshd(8): repair compression statistics printed at
   connection exit

 * sftp(1): print '?' instead of incorrect link count (that the
   protocol doesn't provide) for remote listings. bz#2710

 * ssh(1): return failure rather than fatal() for more cases during
   session multiplexing negotiations. Causes the session to fall back
   to a non-mux connection if they occur. bz#2707

 * ssh(1): mention that the server may send debug messages to explain
   public key authentication problems under some circumstances; bz#2709

 * Translate OpenSSL error codes to better report incorrect passphrase
   errors when loading private keys; bz#2699

 * sshd(8): adjust compatibility patterns for WinSCP to correctly
   identify versions that implement only the legacy DH group exchange
   scheme. bz#2748

 * ssh(1): print the "Killed by signal 1" message only at LogLevel
   verbose so that it is not shown at the default level; prevents it
   from appearing during ssh -J and equivalent ProxyCommand configs.
   bz#1906, bz#2744

 * ssh-keygen(1): when generating all hostkeys (ssh-keygen -A), clobber
   existing keys if they exist but are zero length. zero-length keys
   could previously be made if ssh-keygen failed or was interrupted part
   way through generating them. bz#2561

 * ssh(1): fix pledge(2) violation in the escape sequence "~&" used to
   place the current session in the background.

 * ssh-keyscan(1): avoid double-close() on file descriptors; bz#2734

 * sshd(8): avoid reliance on shared use of pointers shared between
   monitor and child sshd processes. bz#2704

 * sshd_config(8): document available AuthenticationMethods; bz#2453

 * ssh(1): avoid truncation in some login prompts; bz#2768

 * sshd(8): Fix various compilations failures, inc bz#2767

 * ssh(1): make "--" before the hostname terminate argument processing
   after the hostname too.

 * ssh-keygen(1): switch from aes256-cbc to aes256-ctr for encrypting
   new-style private keys. Fixes problems related to private key
   handling for no-OpenSSL builds. bz#2754

 * ssh(1): warn and do not attempt to use keys when the public and
   private halves do not match. bz#2737

 * sftp(1): don't print verbose error message when ssh disconnects
   from under sftp. bz#2750

 * sshd(8): fix keepalive scheduling problem: activity on a forwarded
   port from preventing the keepalive from being sent; bz#2756

 * sshd(8): when started without root privileges, don't require the
   privilege separation user or path to exist. Makes running the
   regression tests easier without touching the filesystem.

 * Make integrity.sh regression tests more robust against timeouts.
   bz#2658

 * ssh(1)/sshd(8): correctness fix for channels implementation: accept
   channel IDs greater than 0x7FFFFFFF.

Portability
-----------

 * sshd(9): drop two more privileges in the Solaris sandbox:
   PRIV_DAX_ACCESS and PRIV_SYS_IB_INFO; bz#2723

 * sshd(8): expose list of completed authentication methods to PAM
   via the SSH_AUTH_INFO_0 PAM environment variable. bz#2408

 * ssh(1)/sshd(8): fix several problems in the tun/tap forwarding code,
   mostly to do with host/network byte order confusion. bz#2735

 * Add --with-cflags-after and --with-ldflags-after configure flags to
   allow setting CFLAGS/LDFLAGS after configure has completed. These
   are useful for setting sanitiser/fuzzing options that may interfere
   with configure's operation.

 * sshd(8): avoid Linux seccomp violations on ppc64le over the
   socketcall syscall.

 * Fix use of ldns when using ldns-config; bz#2697

 * configure: set cache variables when cross-compiling. The cross-
   compiling fallback message was saying it assumed the test passed,
   but it wasn't actually set the cache variables and this would
   cause later tests to fail.

 * Add clang libFuzzer harnesses for public key parsing and signature
   verification.

diffstat:

 crypto/external/bsd/openssh/dist/digest.h                 |  13 ++++++-------
 crypto/external/bsd/openssh/dist/moduli-gen/moduli-gen.sh |   4 ++--
 crypto/external/bsd/openssh/dist/ssherr.h                 |   4 +++-
 3 files changed, 11 insertions(+), 10 deletions(-)

diffs (64 lines):

diff -r 9a150c0f2d28 -r bd2efc4b15a4 crypto/external/bsd/openssh/dist/digest.h
--- a/crypto/external/bsd/openssh/dist/digest.h Sat Oct 07 19:23:02 2017 +0000
+++ b/crypto/external/bsd/openssh/dist/digest.h Sat Oct 07 19:36:11 2017 +0000
@@ -1,4 +1,4 @@
-/* $OpenBSD: digest.h,v 1.7 2014/12/21 22:27:56 djm Exp $ */
+/* $OpenBSD: digest.h,v 1.8 2017/05/08 22:57:38 djm Exp $ */
 /*
  * Copyright (c) 2013 Damien Miller <djm%mindrot.org@localhost>
  *
@@ -23,12 +23,11 @@
 
 /* Digest algorithms */
 #define SSH_DIGEST_MD5         0
-#define SSH_DIGEST_RIPEMD160   1
-#define SSH_DIGEST_SHA1                2
-#define SSH_DIGEST_SHA256      3
-#define SSH_DIGEST_SHA384      4
-#define SSH_DIGEST_SHA512      5
-#define SSH_DIGEST_MAX         6
+#define SSH_DIGEST_SHA1                1
+#define SSH_DIGEST_SHA256      2
+#define SSH_DIGEST_SHA384      3
+#define SSH_DIGEST_SHA512      4
+#define SSH_DIGEST_MAX         5
 
 struct sshbuf;
 struct ssh_digest_ctx;
diff -r 9a150c0f2d28 -r bd2efc4b15a4 crypto/external/bsd/openssh/dist/moduli-gen/moduli-gen.sh
--- a/crypto/external/bsd/openssh/dist/moduli-gen/moduli-gen.sh Sat Oct 07 19:23:02 2017 +0000
+++ b/crypto/external/bsd/openssh/dist/moduli-gen/moduli-gen.sh Sat Oct 07 19:36:11 2017 +0000
@@ -1,5 +1,5 @@
 #!/bin/sh
-#      $OpenBSD: moduli-gen.sh,v 1.2 2013/10/14 02:55:47 dtucker Exp $
+#      $OpenBSD: moduli-gen.sh,v 1.3 2017/06/23 03:25:53 dtucker Exp $
 #
 
 srcdir="$1"
@@ -19,7 +19,7 @@
 fi
 
 if [ ! -f ${moduli_sieved} ]; then
-       ssh-keygen -b ${bits} -G /dev/stdout | \
+       for i in 0 1; do ssh-keygen -b ${bits} -G /dev/stdout; done | \
            gzip -9c >${moduli_sieved}.tmp && \
        mv ${moduli_sieved}.tmp ${moduli_sieved}
 fi
diff -r 9a150c0f2d28 -r bd2efc4b15a4 crypto/external/bsd/openssh/dist/ssherr.h
--- a/crypto/external/bsd/openssh/dist/ssherr.h Sat Oct 07 19:23:02 2017 +0000
+++ b/crypto/external/bsd/openssh/dist/ssherr.h Sat Oct 07 19:36:11 2017 +0000
@@ -1,4 +1,4 @@
-/*     $OpenBSD: ssherr.h,v 1.3 2015/01/30 01:13:33 djm Exp $  */
+/*     $OpenBSD: ssherr.h,v 1.5 2017/09/12 06:32:08 djm Exp $  */
 /*
  * Copyright (c) 2011 Damien Miller
  *
@@ -77,6 +77,8 @@
 #define SSH_ERR_CONN_TIMEOUT                   -53
 #define SSH_ERR_CONN_CORRUPT                   -54
 #define SSH_ERR_PROTOCOL_ERROR                 -55
+#define SSH_ERR_KEY_LENGTH                     -56
+#define SSH_ERR_NUMBER_TOO_LARGE               -57
 
 /* Translate a numeric error code to a human-readable error string */
 const char *ssh_err(int n);



Home | Main Index | Thread Index | Old Index