rpms/openssh
3
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Commit Graph

  • 7cfa5d7216
         Disable tests for now main-riscv64 David Abdurachmanov 2025-03-03 21:50:36 +02:00
  • ea9f68c171 Some minor fixes from Rocky Linux Dmitry Belyavskiy 2025-02-25 12:34:18 +01:00
  • 03a941c079 Fixes for CVE-2025-26465, CVE-2025-26466 Dmitry Belyavskiy 2025-02-18 15:05:43 +01:00
  • d195a5f6f7
         Add explicit BR: libxcrypt-devel Björn Esser 2025-02-01 19:56:17 +01:00
  • 4329e4cd9e Update redhat sshd config FeRD (Frank Dana) 2025-01-29 04:41:26 -05:00
  • 4446a8fec2 Fix regression of Match directive processing Dmitry Belyavskiy 2025-01-27 13:44:40 +01:00
  • 18a4ac4c5c Fix regression of Match directive processing Dmitry Belyavskiy 2025-01-27 13:42:31 +01:00
  • 50fa131d40 Remove pam-ssh-agent subcomponent Dmitry Belyavskiy 2025-01-27 11:10:48 +01:00
  • 7551e56471 Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild Fedora Release Engineering 2025-01-17 21:50:57 +00:00
  • 9bab787a28 Fix MLKEM for BE platforms Dmitry Belyavskiy 2024-10-28 17:41:21 +01:00
  • 5f1bef2988 Memory management improvements Dmitry Belyavskiy 2024-10-16 15:14:16 +02:00
  • 0fd6584c66 Gssapi-keyex: fix issues found by static analysis Zoltan Fridrich 2024-10-15 14:38:14 +02:00
  • 7f540abac3 Avoid warning when OPTIONS var is not set by environment file Nils Kattenbeck 2024-10-14 17:01:30 +00:00
  • 10c69e8578 Avoid warning when OPTIONS var is not set by environment file Nils Kattenbeck 2024-10-14 17:01:01 +00:00
  • e0b8822dc8 Avoid warning when OPTIONS var is not set by environment file Nils Kattenbeck 2024-10-14 16:58:19 +00:00
  • 2c05d86713 Use FIPS KEX defaults in FIPS mode Dmitry Belyavskiy 2024-10-11 14:43:34 +02:00
  • b3639c9616 Separate ssh-keysign to a dedicated package Dmitry Belyavskiy 2024-10-11 14:42:24 +02:00
  • 2b8473c18a Update version of pam_ssh_agent_auth Dmitry Belyavskiy 2024-10-10 15:55:43 +02:00
  • ddef24ba7e Rebasing to OpenSSH 9.9p1 Dmitry Belyavskiy 2024-10-09 12:52:03 +02:00
  • 64631599fc Merge gssapi-keyex patches Zoltan Fridrich 2024-09-16 12:28:25 +02:00
  • adab98c5ba Synchronize patches from Red Hat Dmitry Belyavskiy 2024-09-03 16:12:58 +02:00
  • 28a28238b3 Sshd now proposes to enter password again when a non-existing user is specified Dmitry Belyavskiy 2024-08-05 12:49:38 +02:00
  • dd27043411 Change default key type in FIPS mode Dmitry Belyavskiy 2024-07-26 17:01:14 +02:00
  • 0943a793b6 Minor stuff Dmitry Belyavskiy 2024-07-24 14:31:43 +02:00
  • ff8756ae7b Make test pass again Dmitry Belyavskiy 2024-07-23 16:20:17 +02:00
  • 207f4964a4 proper struct for gss_keyex authmethod Dmitry Belyavskiy 2024-07-22 17:36:13 +02:00
  • b46d13eb96 listening_for_clients - comment out Dmitry Belyavskiy 2024-07-12 15:16:09 +02:00
  • 1f22cfd0dd Eliminate reexec_flag Dmitry Belyavskiy 2024-07-12 13:38:48 +02:00
  • cae81de8e8 Eliminating PRIVSEP because of OpenSSH architecture changes Dmitry Belyavskiy 2024-07-12 13:20:45 +02:00
  • b38789c6ac Rebase to OpenSSH 9.8p1 Dmitry Belyavskiy 2024-07-10 18:19:23 +02:00
  • 1b1292d3a5 DSA keys are no longer supported, due to the use of SHA1. Gordon Messmer 2024-07-22 13:43:22 -07:00
  • b7ff239418 Rate limit service restarts to prevent intermittent test failures. Gordon Messmer 2024-07-04 09:50:01 -07:00
  • 2d59c1dbf2 Collect all logs after pam_ssh_agent_auth and port-forward tests Gordon Messmer 2024-07-03 22:46:52 -07:00
  • 787ce2c24d Collect logs after sudo attempt in pam_ssh_agent_auth Gordon Messmer 2024-07-02 15:15:49 -07:00
  • 80da2c7159 Remove unused rhts-environment.sh Cristian Le 2024-07-03 10:46:07 +02:00
  • f8918df60f Migrate sti tests to tmt Cristian Le 2024-07-02 09:42:19 +02:00
  • 31a40d987f Temporary fix for https://pagure.io/releng/issue/12187 Gordon Messmer 2024-07-03 10:47:20 -07:00
  • fe837a3014 Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild Fedora Release Engineering 2024-07-18 21:00:36 +00:00
  • 2b3c43fd47 Rewriting OpenSSH GSS KEX to use new packet API Zoltan Fridrich 2024-05-27 12:00:57 +02:00
  • c58fea86cd Version bump Dmitry Belyavskiy 2024-07-02 11:12:42 +02:00
  • dcbca7b947 Patch 9.6p1 for CVE-2024-6387 Gordon Messmer 2024-07-01 20:49:16 -07:00
  • 69c52aa299 Shorten paths used for parallel tests to fix BZ#2295117 Gordon Messmer 2024-07-01 20:23:20 -07:00
  • b77eafa86b Make default key sizes configurable in sshd-keygen Zoltan Fridrich 2024-05-09 16:30:24 +02:00
  • dc8423673e Correctly audit hostname and IP address Zoltan Fridrich 2024-05-09 16:29:32 +02:00
  • 53eafa2b19 Use OpenSSL SSH KDF implementation - s390x fixup Dmitry Belyavskiy 2024-04-24 15:13:42 +02:00
  • 855a9d9c41 Use OpenSSL SSH KDF implementation Dmitry Belyavskiy 2024-04-24 12:00:24 +02:00
  • 80ba97c338 Bump spec Dmitry Belyavskiy 2024-04-17 10:44:40 +02:00
  • b001382b22 Drop %attr for a symlink Zbigniew Jędrzejewski-Szmek 2024-04-16 22:35:55 +02:00
  • 665f4ad35f Allow %check to run on systems without selinux Zbigniew Jędrzejewski-Szmek 2024-04-16 22:31:24 +02:00
  • 8fb8f02a0d Only set PAM_RHOST if the remote host is not "UNKNOWN" Daan De Meyer 2024-04-02 15:34:14 +02:00
  • 055c4e2de7 Rebuild Dmitry Belyavskiy 2024-04-04 20:56:51 +02:00
  • 56e678546d Bump pam_ssh_agent version Dmitry Belyavskiy 2024-04-04 20:36:51 +02:00
  • 031b4c6f36 Build OpenSSH without libsystemd dependency, using reference implementation Gordon Messmer 2024-04-02 15:43:15 -07:00
  • 176421c4e4 Run tests on building OpenSSH Dmitry Belyavskiy 2024-03-13 17:26:14 +01:00
  • 086e6f64e1 Disable openssl engine support in openssh Dmitry Belyavskiy 2024-03-13 13:39:46 +01:00
  • 2f41ca7cd3 Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild Fedora Release Engineering 2024-01-25 11:29:57 +00:00
  • d089d5f71b Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild Fedora Release Engineering 2024-01-21 11:22:01 +00:00
  • f238307bdf Applying patches to rebase to OpenSSH 9.6p1 Dmitry Belyavskiy 2024-01-12 13:55:32 +01:00
  • 87ae5d1d5a Fix type errors in downstream gssapi-keyex patch Florian Weimer 2023-12-22 17:01:38 +01:00
  • 5c1da775a9 Fix issue with read-only ssh buffer during gssapi key exchange (rhbz#1938224) https://github.com/openssh-gsskex/openssh-gsskex/pull/19 Mattias Ellert 2023-10-06 17:27:39 +02:00
  • 4f07bfcfe1 Fix FTBFS due to implicit declarations (rhbz#2241211) Mattias Ellert 2023-10-15 06:42:32 +02:00
  • d3cd3f2851 migrated to SPDX license Dmitry Belyavskiy 2023-09-19 12:19:43 +02:00
  • f98acbdc5d Revert "Remove sshd.socket unit" Timothée Ravier 2023-09-15 10:22:41 +02:00
  • d77b1b790a pkcs11: Add support for 'serial' in PKCS#11 URI Jakub Jelen 2023-04-13 14:59:50 +02:00
  • c7af8ecb76 Minor optimization of ssh_krb5_kuserok Dmitry Belyavskiy 2023-08-03 11:06:10 +02:00
  • 8a294387d0 Remove sshd.socket unit Dmitry Belyavskiy 2023-08-03 10:38:48 +02:00
  • f4f5944e31 Disable forking of ssh-agent on startup Dmitry Belyavskiy 2023-08-03 10:32:24 +02:00
  • ec2f61e2cf Split including crypto-policies to a separate config Dmitry Belyavskiy 2023-08-03 10:25:50 +02:00
  • 147ab2eb19 relax checks of the OpenSSL version Dmitry Belyavskiy 2023-08-01 14:19:16 +02:00
  • eb1b5e6755 relax checks of the OpenSSL version Dmitry Belyavskiy 2023-08-01 14:18:18 +02:00
  • c04e468b07 Update gssapi-keyex patch for OpenSSH 9.0+ Mattias Ellert 2023-07-26 23:28:39 +02:00
  • c3494feffe Fix remote code execution in ssh-agent PKCS#11 support Dmitry Belyavskiy 2023-07-21 17:00:23 +02:00
  • 9fd130d8eb Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild Fedora Release Engineering 2023-07-20 18:12:08 +00:00
  • 8f5b8fd2c5 Revert "pkcs11: Add support for 'serial' in PKCS#11 URI" Norbert Pocs 2023-06-13 14:37:42 +02:00
  • c5082a3f81 Merge gssapi-keyex and gssapi-auth Norbert Pocs 2023-06-08 12:58:47 +02:00
  • 2b67ec48c2 Merge manpage crypto-policies related patches Norbert Pocs 2023-06-07 10:33:38 +02:00
  • fb40f0afda Merge evp related patches Norbert Pocs 2023-06-07 10:07:27 +02:00
  • 141d7b2d4a Remove deprecated usage of %patchN Norbert Pocs 2023-06-06 15:21:39 +02:00
  • d5fd076ab3 Updating specfile Dmitry Belyavskiy 2023-06-07 12:15:31 +02:00
  • 18e9f31c42 Fix DSS verification problem Dmitry Belyavskiy 2023-06-07 12:12:46 +02:00
  • 29083ac442 Remove unused patch Dmitry Belyavskiy 2023-06-02 18:56:58 +02:00
  • f561c68bdb Rebasing OpenSSH from 9.0 to 9.3 Dmitry Belyavskiy 2023-04-27 17:52:26 +02:00
  • b129d6336e Clarify HostKeyAlgorithms option on man page Norbert Pocs 2023-05-29 13:58:15 +02:00
  • e39f11e77c pkcs11: Add support for 'serial' in PKCS#11 URI Jakub Jelen 2023-04-13 14:59:50 +02:00
  • e8e01dc82e Fix regression in pkcs11 introduced in the previous patch Norbert Pocs 2023-05-18 12:05:18 +02:00
  • 2341f1769d Fix minor issues with openssh-9.0p1-evp-fips-dh.patch Norbert Pocs 2023-05-24 13:26:37 +02:00
  • 6f7c765ed4 Audit logging patch was not applied Dmitry Belyavskiy 2023-04-14 10:38:37 +02:00
  • 1506e0825c If SHA1 signatures are not permitted, try to fallback to SHA2 Dmitry Belyavskiy 2023-04-14 10:32:06 +02:00
  • b63272d9eb Make the sign, dh, ecdh processes FIPS compliant Norbert Pocs 2023-04-13 15:12:10 +02:00
  • 745da74ea2 Fix self-DoS Dmitry Belyavskiy 2023-04-13 18:14:19 +02:00
  • d5591fb5ab C99 compatiblity fixes Florian Weimer 2023-04-12 12:07:21 +02:00
  • e3597c03f1 Make sshd & sshd@ units want ssh-host-keys-migration.service Timothée Ravier 2023-03-14 17:14:17 +01:00
  • 3a98e6f607 Add sk-dummy subpackage for test purposes Zoltan Fridrich 2023-03-13 13:20:24 +01:00
  • 21fd6bef5b
         Make ssh-host key migration less conditional Dusty Mabe 2023-03-05 22:51:10 -05:00
  • 1076e61bfd
         Mark /var/lib/.ssh-host-keys-migration as %ghost file Dusty Mabe 2023-03-05 22:48:30 -05:00
  • 08d842d5e8
         Use a service unit to strip ssh_keys group from host keys (rhbz#2172956) Dusty Mabe 2023-01-30 16:01:17 +01:00
  • 937ee4760a
         update date in changelog entry Dusty Mabe 2023-03-02 10:17:58 -05:00
  • 45028601a3 We dont install openssh.conf file Dmitry Belyavskiy 2022-12-07 13:07:35 +01:00
  • 7a21555354 Get rid of ssh_keys group for new installations Dmitry Belyavskiy 2022-12-07 12:51:59 +01:00
  • b615362fd0 Restore upstream default host key permissions (rhbz#2141272) Dmitry Belyavskiy 2022-12-02 18:09:47 +01:00