17cd512319
Whitelist gettid() syscall for systemd (cleanup procedure?)
2017-12-12 14:19:35 +01:00
1f2a7f3926
openssh-7.6p1-3 + 0.10.3-3
2017-12-11 11:54:38 +01:00
fde6b96b35
Avoid gcc warnings about uninitialized variables
2017-12-11 11:53:10 +01:00
217da75d53
Do not segfault for repetitive cipher_free() from audit ( #1524233 )
2017-12-11 11:53:03 +01:00
eef660e534
7.6p1-2 + 0.10.3-3
2017-11-22 08:57:03 +01:00
e3f4c1243d
Do not build all the binaries against libldap
2017-11-15 10:17:46 +01:00
2087929a90
Do not segfault for ECC keys in PKCS#11
2017-11-15 10:17:46 +01:00
a464c88ee6
forgotten sources
2017-11-07 16:49:23 +01:00
8fc2fee4e4
7.6p1-1 + 0.10.3-3
2017-11-07 14:58:44 +01:00
cdc735a59b
Make sure we audit properly from the new code
2017-11-07 14:58:44 +01:00
e0e7ed914b
Address issues of another PR#48 review
2017-11-07 14:58:44 +01:00
c08aa4b8b1
Fix after-release bug in PermitOpen (posted on ML)
2017-11-07 14:58:44 +01:00
5b55d0951d
rebase patches to openssh-7.6p1 and make it build
2017-11-07 14:58:44 +01:00
9e46aafab9
openssh-7.5p1-6 + 0.10.3-2
2017-10-19 16:09:53 +02:00
ed0b5e5a9f
Remove pam_reauthorize, not needed by cockpit anymore ( #1492313 )
2017-10-19 16:09:53 +02:00
e044c5cf76
Enforce pam_sepermit for all logins ( #1492313 )
2017-10-19 16:09:53 +02:00
72514f7644
Add newer gssapi kex methods, but leave them disabled out of the box yet
2017-10-19 16:09:53 +02:00
8bcc21ed64
Add enablement for openssl-ibmca and openssl-ibmpkcs11 ( #1477636 )
2017-10-19 16:09:53 +02:00
8c9e97e65a
Do not export KRBCCNAME if the default path is used ( #1199363 )
2017-10-19 16:09:53 +02:00
ce1afcf244
initial commit of tests from upstreamfirst project
2017-09-29 12:58:09 -04:00
ef66c0c677
openssh-7.5p1-5 + 0.10.3-2
2017-08-14 09:45:09 +02:00
0ce6c7b710
Another approach for crypto policies ( #1479271 )
2017-08-14 09:42:02 +02:00
970a418151
Do not talk about SSHv1 in Summary
2017-08-09 16:10:33 +02:00
6a05936971
Revert "server crypto policy"
...
This reverts commit 1d8ffcfe05
2017-08-09 14:58:13 +02:00
fffad0579c
openssh-7.5p1-4 + 0.10.3-2
2017-08-02 15:46:58 +02:00
722f82b9ab
Remove openssh-clients-ssh1 subpackage ( #1474942 )
2017-08-02 15:46:58 +02:00
1d8ffcfe05
Preprocess the configuration files to include crypto policies.
...
* The services are using ExecPre to start sshd-pre script
* The sshd-pre script substitutes token in standard configuration file and writes a new on in /run
* The services are using a file in /run as a sshd_config
2017-08-02 15:46:57 +02:00
be108c2c82
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
2017-07-27 01:53:26 +00:00
64a3610c1f
perl dependency renamed to perl-interpreter < https://fedoraproject.org/wiki/Changes/perl_Package_to_Install_Core_Modules >
2017-07-12 14:20:53 +02:00
2ea24bb006
openssh-7.5p1-2 + 0.10.3-2
2017-06-30 12:44:10 +02:00
9dbec70c9c
Sync FIPS patch with RHEL
2017-06-30 12:18:02 +02:00
cdc7ba7293
get rid of unconditional goto in RSA1 code
...
Reported by <vyekkira@illinois.edu>
2017-06-19 18:24:05 +02:00
f07a0866e1
Avoid double-free in the openssl-1.1.0 patch
2017-06-15 13:41:24 +02:00
eb751fd1d3
In FIPS mode do not append bogus comma after the kex list
2017-04-26 14:26:50 +02:00
204765aba1
openssh-7.5p1-2 + 0.10.3-2
2017-03-23 14:48:09 +01:00
c2f63ba00b
Revert the chroot magic
2017-03-23 14:47:27 +01:00
93868f39a9
Remove RestartPreventExitStatus which can break on slow networks
2017-03-22 18:00:29 +01:00
fb74d1ec96
Add missing header on s390 ( #1434341 )
2017-03-22 14:35:55 +01:00
09320cf61a
Fix typo in sandbox code, that got out after release
...
http://lists.mindrot.org/pipermail/openssh-unix-dev/2017-March/035879.html
2017-03-21 10:12:44 +01:00
17b491b307
openssh-7.5p1-1 + 0.10.3-2
2017-03-20 16:00:16 +01:00
fd58b9eabb
Add new DH kex into the FIPS-allowed list
2017-03-08 14:37:07 +01:00
7b666e5764
openssh-7.4p1-4 + 0.10.3-1
2017-03-03 15:53:31 +01:00
a9ad706d82
Coverity reports applied
2017-03-03 15:51:52 +01:00
f499c489fd
Do not leave service in auto-restarting mode in case of configuration failure
2017-03-01 18:35:56 +01:00
b83281f89d
Avoid sending SD_NOTIFY from wrong processes ( #1427526 )
2017-02-28 15:13:24 +01:00
ab7f9474c7
openssh-7.4p1-3 + 0.10.3-1
2017-02-22 14:56:00 +01:00
3448f25d85
Typo
2017-02-22 14:56:00 +01:00
b92d3c8ae0
Reference upstream bug
2017-02-22 14:56:00 +01:00
4e7cdec7ef
Add systemd stuff to keep track of service
2017-02-22 14:56:00 +01:00
140ef5a0f5
Properly report errors from included files ( #1408558 )
2017-02-22 14:56:00 +01:00
Jakub Jelen
Mike Gahagan
Fedora Release Engineering
Petr Písař