]>
git.ipfire.org Git - thirdparty/openssh-portable.git/log
Darren Tucker [Fri, 1 Nov 2019 03:41:07 +0000 (14:41 +1100)]
Add prototype for localtime_r if needed.
Darren Tucker [Fri, 1 Nov 2019 02:42:12 +0000 (13:42 +1100)]
Check if IP_TOS is defined before using.
Damien Miller [Fri, 1 Nov 2019 02:34:49 +0000 (13:34 +1100)]
autoconf pieces for U2F support
djm@openbsd.org [Fri, 1 Nov 2019 02:32:05 +0000 (02:32 +0000)]
upstream: remove duplicate PUBKEY_DEFAULT_PK_ALG on !WITH_OPENSSL path
OpenBSD-Commit-ID:
95a7cafad2a4665d57cabacc28031fabc0bea9fc
djm@openbsd.org [Fri, 1 Nov 2019 02:06:52 +0000 (02:06 +0000)]
upstream: more additional source files
OpenBSD-Regress-ID:
8eaa25fb901594aee23b76eda99dca5b8db94c6f
djm@openbsd.org [Fri, 1 Nov 2019 02:04:25 +0000 (02:04 +0000)]
upstream: additional source files here too
OpenBSD-Regress-ID:
8809f8e1c8f7459e7096ab6b58d8e56cb2f483fd
djm@openbsd.org [Fri, 1 Nov 2019 02:03:27 +0000 (02:03 +0000)]
upstream: additional source files here too
OpenBSD-Regress-ID:
09297e484327f911fd353489518cceaa0c1b95ce
djm@openbsd.org [Fri, 1 Nov 2019 01:57:59 +0000 (01:57 +0000)]
upstream: adapt to extra sshkey_sign() argument and additional
dependencies
OpenBSD-Regress-ID:
7a25604968486c4d6f81d06e8fbc7d17519de50e
djm@openbsd.org [Fri, 1 Nov 2019 01:55:41 +0000 (01:55 +0000)]
upstream: skip security-key key types for tests until we have a
dummy U2F middleware to use.
OpenBSD-Regress-ID:
37200462b44334a4ad45e6a1f7ad1bd717521a95
jmc@openbsd.org [Fri, 1 Nov 2019 00:52:35 +0000 (00:52 +0000)]
djm@openbsd.org [Thu, 31 Oct 2019 21:37:33 +0000 (21:37 +0000)]
upstream: undo debugging bits that shouldn't have been committed
OpenBSD-Commit-ID:
4bd5551b306df55379afe17d841207990eb773bf
Damien Miller [Thu, 31 Oct 2019 22:24:58 +0000 (09:24 +1100)]
depend
djm@openbsd.org [Thu, 31 Oct 2019 21:28:27 +0000 (21:28 +0000)]
upstream: fix -Wshadow warning
OpenBSD-Commit-ID:
3441eb04f872a00c2483c11a5f1570dfe775103c
djm@openbsd.org [Thu, 31 Oct 2019 21:23:19 +0000 (21:23 +0000)]
upstream: Refactor signing - use sshkey_sign for everything,
including the new U2F signatures.
Don't use sshsk_ecdsa_sign() directly, instead make it reachable via
sshkey_sign() like all other signature operations. This means that
we need to add a provider argument to sshkey_sign(), so most of this
change is mechanically adding that.
Suggested by / ok markus@
OpenBSD-Commit-ID:
d5193a03fcfa895085d91b2b83d984a9fde76c8c
djm@openbsd.org [Thu, 31 Oct 2019 21:22:01 +0000 (21:22 +0000)]
upstream: ssh-agent support for U2F/FIDO keys
feedback & ok markus@
OpenBSD-Commit-ID:
bb544a44bc32e45d2ec8bf652db2046f38360acb
djm@openbsd.org [Thu, 31 Oct 2019 21:20:38 +0000 (21:20 +0000)]
upstream: ssh AddKeysToAgent support for U2F/FIDO keys
feedback & ok markus@
OpenBSD-Commit-ID:
ac08e45c7f995fa71f8d661b3f582e38cc0a2f91
djm@openbsd.org [Thu, 31 Oct 2019 21:19:56 +0000 (21:19 +0000)]
upstream: ssh-add support for U2F/FIDO keys
OpenBSD-Commit-ID:
7f88a5181c982687afedf3130c6ab2bba60f7644
djm@openbsd.org [Thu, 31 Oct 2019 21:19:14 +0000 (21:19 +0000)]
upstream: add new agent key constraint for U2F/FIDO provider
feedback & ok markus@
OpenBSD-Commit-ID:
d880c380170704280b4003860a1744d286c7a172
djm@openbsd.org [Thu, 31 Oct 2019 21:18:28 +0000 (21:18 +0000)]
upstream: ssh client support for U2F/FIDO keys
OpenBSD-Commit-ID:
eb2cfa6cf7419a1895e06e398ea6d41516c5b0bc
djm@openbsd.org [Thu, 31 Oct 2019 21:17:49 +0000 (21:17 +0000)]
upstream: Separate myproposal.h userauth pubkey types
U2F/FIDO keys are not supported for host authentication, so we need
a separate list for user keys.
feedback & ok markus@
OpenBSD-Commit-ID:
7fe2e6ab85f9f2338866e5af8ca2d312abbf0429
djm@openbsd.org [Thu, 31 Oct 2019 21:17:09 +0000 (21:17 +0000)]
upstream: ssh-keygen support for generating U2F/FIDO keys
OpenBSD-Commit-ID:
6ce04f2b497ac9dd8c327f76f1e6c724fb1d1b37
djm@openbsd.org [Thu, 31 Oct 2019 21:16:20 +0000 (21:16 +0000)]
upstream: U2F/FIDO middleware interface
Supports enrolling (generating) keys and signatures.
feedback & ok markus@
OpenBSD-Commit-ID:
73d1dd5939454f9c7bd840f48236cba41e8ad592
djm@openbsd.org [Thu, 31 Oct 2019 21:15:14 +0000 (21:15 +0000)]
upstream: Initial infrastructure for U2F/FIDO support
Key library support: including allocation, marshalling public/private
keys and certificates, signature validation.
feedback & ok markus@
OpenBSD-Commit-ID:
a17615ba15e0f7932ac4360cb18fc9a9544e68c7
djm@openbsd.org [Thu, 31 Oct 2019 21:14:17 +0000 (21:14 +0000)]
upstream: Protocol documentation for U2F/FIDO keys in OpenSSH
OpenBSD-Commit-ID:
8f3247317c2909870593aeb306dff848bc427915
Damien Miller [Thu, 31 Oct 2019 21:36:16 +0000 (08:36 +1100)]
Missing unit test files
Darren Tucker [Tue, 29 Oct 2019 08:45:03 +0000 (19:45 +1100)]
Add implementation of localtime_r.
dtucker@openbsd.org [Tue, 29 Oct 2019 07:47:27 +0000 (07:47 +0000)]
upstream: Signal handler cleanup: remove leftover support for
unreliable signals and now-unneeded save and restore of errno. ok deraadt@
markus@
OpenBSD-Commit-ID:
01dd8a1ebdd991c8629ba1f5237283341a93cd88
jmc@openbsd.org [Tue, 22 Oct 2019 08:50:35 +0000 (08:50 +0000)]
upstream: fixes from lucas;
OpenBSD-Commit-ID:
4c4bfd2806c5bbc753788ffe19c5ee13aaf418b2
dtucker@openbsd.org [Tue, 22 Oct 2019 07:06:35 +0000 (07:06 +0000)]
upstream: Import regenerated moduli file.
OpenBSD-Commit-ID:
58ec755be4e51978ecfee73539090eb68652a987
Darren Tucker [Mon, 28 Oct 2019 10:19:47 +0000 (21:19 +1100)]
Fix ifdefs to not mask needed bits.
Darren Tucker [Mon, 28 Oct 2019 06:05:36 +0000 (17:05 +1100)]
Only use RLIMIT_NOFILE if it's defined.
Darren Tucker [Mon, 28 Oct 2019 05:09:04 +0000 (16:09 +1100)]
Make sure we have struct statfs before using.
Darren Tucker [Mon, 28 Oct 2019 05:06:59 +0000 (16:06 +1100)]
Define UINT32_MAX if needed.
Darren Tucker [Mon, 28 Oct 2019 05:00:45 +0000 (16:00 +1100)]
Move utimensat definition into timespec section.
Darren Tucker [Mon, 28 Oct 2019 04:57:22 +0000 (15:57 +1100)]
Wrap OpenSSL bits in WITH_OPENSSL.
Darren Tucker [Mon, 28 Oct 2019 04:53:25 +0000 (15:53 +1100)]
Wrap poll.h includes in HAVE_POLL_H.
Darren Tucker [Thu, 24 Oct 2019 03:39:49 +0000 (14:39 +1100)]
Add a function call stackprotector tests.
Darren Tucker [Tue, 22 Oct 2019 07:09:22 +0000 (18:09 +1100)]
Import regenerated moduli file.
djm@openbsd.org [Wed, 16 Oct 2019 06:05:39 +0000 (06:05 +0000)]
upstream: potential NULL dereference for revoked hostkeys; reported
by krishnaiah bommu
OpenBSD-Commit-ID:
35ff685e7cc9dd2e3fe2e3dfcdcb9bc5c79f6506
djm@openbsd.org [Wed, 16 Oct 2019 06:03:30 +0000 (06:03 +0000)]
upstream: free buf before return; reported by krishnaiah bommu
OpenBSD-Commit-ID:
091bb23a6e913af5d4f72c50030b53ce1cef4de1
djm@openbsd.org [Mon, 14 Oct 2019 06:00:02 +0000 (06:00 +0000)]
upstream: memleak in error path; spotted by oss-fuzz, ok markus@
OpenBSD-Commit-ID:
d6ed260cbbc297ab157ad63931802fb1ef7a4266
Darren Tucker [Fri, 11 Oct 2019 03:12:16 +0000 (14:12 +1100)]
Re-add SA_RESTART to mysignal.
Darren Tucker [Wed, 9 Oct 2019 22:42:03 +0000 (09:42 +1100)]
Fix ifdef typo for declaration of memmem.
Abhishek Arya [Wed, 9 Oct 2019 03:19:18 +0000 (20:19 -0700)]
Update README.md
Damien Miller [Wed, 9 Oct 2019 02:49:35 +0000 (13:49 +1100)]
add a fuzzer for private key parsing
Damien Miller [Wed, 9 Oct 2019 00:31:03 +0000 (11:31 +1100)]
prepare for 8.1 release
djm@openbsd.org [Wed, 9 Oct 2019 00:04:57 +0000 (00:04 +0000)]
upstream: openssh-8.1
OpenBSD-Commit-ID:
3356bb34e2aa287f0e6d6773c9ae659dc680147d
djm@openbsd.org [Wed, 9 Oct 2019 00:04:42 +0000 (00:04 +0000)]
upstream: fix an unreachable integer overflow similar to the XMSS
case, and some other NULL dereferences found by fuzzing.
fix with and ok markus@
OpenBSD-Commit-ID:
0f81adbb95ef887ce586953e1cb225fa45c7a47b
djm@openbsd.org [Wed, 9 Oct 2019 00:02:57 +0000 (00:02 +0000)]
upstream: fix integer overflow in XMSS private key parsing.
Reported by Adam Zabrocki via SecuriTeam's SSH program.
Note that this code is experimental and not compiled by default.
ok markus@
OpenBSD-Commit-ID:
cd0361896d15e8a1bac495ac583ff065ffca2be1
dtucker@openbsd.org [Tue, 8 Oct 2019 22:40:39 +0000 (22:40 +0000)]
upstream: Correct type for end-of-list sentinel; fixes initializer
warnings on some platforms. ok deraadt.
OpenBSD-Commit-ID:
a990dbc2dac25bdfa07e79321349c73fd991efa2
djm@openbsd.org [Mon, 7 Oct 2019 23:10:38 +0000 (23:10 +0000)]
upstream: reversed test yielded incorrect debug message
OpenBSD-Commit-ID:
78bb512d04cfc238adb2c5b7504ac93eecf523b3
Damien Miller [Tue, 8 Oct 2019 06:05:57 +0000 (17:05 +1100)]
depend
Darren Tucker [Tue, 8 Oct 2019 22:36:06 +0000 (09:36 +1100)]
Make MAKE_CLONE no-op macro more correct.
Damien Miller [Tue, 8 Oct 2019 22:06:35 +0000 (09:06 +1100)]
wrap stdint.h include in HAVE_STDINT_H
Damien Miller [Tue, 8 Oct 2019 04:32:02 +0000 (15:32 +1100)]
avoid "return (value)" in void-declared function
Darren Tucker [Tue, 8 Oct 2019 03:44:50 +0000 (14:44 +1100)]
Make DEF_WEAK more likely to be correct.
dtucker@openbsd.org [Sun, 6 Oct 2019 11:49:50 +0000 (11:49 +0000)]
upstream: Instead of running sed over the whole log to remove CRs,
remove them only where it's needed (and confuses test(1) on at least OS X in
portable).
OpenBSD-Regress-ID:
a6ab9b4bd1d33770feaf01b2dfb96f9e4189d2d0
Eduardo Barretto [Tue, 9 May 2017 16:33:30 +0000 (13:33 -0300)]
Enable specific ioctl call for EP11 crypto card (s390)Signed-off-by: Eduardo Barretto <ebarretto@linux.vnet.ibm.com>
djm@openbsd.org [Fri, 4 Oct 2019 04:31:59 +0000 (04:31 +0000)]
upstream: fix memory leak in error path; bz#3074 patch from
krishnaiah.bommu@intel.com, ok dtucker
OpenBSD-Commit-ID:
d031853f3ecf47b35a0669588f4d9d8e3b307b3c
djm@openbsd.org [Fri, 4 Oct 2019 04:13:39 +0000 (04:13 +0000)]
djm@openbsd.org [Fri, 4 Oct 2019 03:39:19 +0000 (03:39 +0000)]
upstream: more sshsig regress tests: check key revocation, the
check-novalidate signature test mode and signing keys in ssh-agent.
From Sebastian Kinne (slightly tweaked)
OpenBSD-Regress-ID:
b39566f5cec70140674658cdcedf38752a52e2e2
dtucker@openbsd.org [Fri, 4 Oct 2019 03:26:58 +0000 (03:26 +0000)]
upstream: Check for gmtime failure in moduli generation. Based on
patch from krishnaiah.bommu@intel.com, ok djm@
OpenBSD-Commit-ID:
4c6a4cde0022188ac83737de08da0e875704eeaa
jmc@openbsd.org [Thu, 3 Oct 2019 17:07:50 +0000 (17:07 +0000)]
upstream: use a more common options order in SYNOPSIS and sync
usage(); while here, no need for Bk/Ek;
ok dtucker
OpenBSD-Commit-ID:
38715c3f10b166f599a2283eb7bc14860211bb90
djm@openbsd.org [Wed, 2 Oct 2019 09:50:50 +0000 (09:50 +0000)]
upstream: thinko in previous; spotted by Mantas
=?UTF-8?q?=20Mikul=C4=97nas?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
OpenBSD-Commit-ID:
ffa3f5a45e09752fc47d9041e2203ee2ec15b24d
djm@openbsd.org [Wed, 2 Oct 2019 08:07:13 +0000 (08:07 +0000)]
upstream: make signature format match PROTOCO
=?UTF-8?q?=20as=20a=20string,=20not=20raw=20bytes.=20Spotted=20by=20Manta?=
=?UTF-8?q?s=20Mikul=C4=97nas?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
OpenBSD-Commit-ID:
80fcc6d52893f80c6de2bedd65353cebfebcfa8f
djm@openbsd.org [Wed, 2 Oct 2019 08:05:50 +0000 (08:05 +0000)]
upstream: ban empty namespace strings for s
=?UTF-8?q?shsig;=20spotted=20by=20Mantas=20Mikul=C4=97nas?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
OpenBSD-Commit-ID:
7c5bcf40bed8f4e826230176f4aa353c52aeb698
Darren Tucker [Wed, 2 Oct 2019 04:30:55 +0000 (14:30 +1000)]
Put ssherr.h back as it's actually needed.
Lonnie Abelbeck [Tue, 1 Oct 2019 14:05:09 +0000 (09:05 -0500)]
Deny (non-fatal) shmget/shmat/shmdt in preauth privsep child.
Damien Miller [Wed, 2 Oct 2019 00:54:28 +0000 (10:54 +1000)]
remove duplicate #includes
Damien Miller [Wed, 2 Oct 2019 00:51:15 +0000 (10:51 +1000)]
typo in comment
djm@openbsd.org [Wed, 2 Oct 2019 00:42:30 +0000 (00:42 +0000)]
upstream: remove some duplicate #includes
OpenBSD-Commit-ID:
ed6827ab921eff8027669848ef4f70dc1da4098c
djm@openbsd.org [Tue, 1 Oct 2019 10:22:53 +0000 (10:22 +0000)]
upstream: revert unconditional forced login implemented in r1.41 of
ssh-pkcs11.c; r1.45 added a forced login as a fallback for cases where the
token returns no objects and this is less disruptive for users of tokens
directly in ssh (rather than via ssh-agent) and in ssh-keygen
bz3006, patch from Jakub Jelen; ok markus
OpenBSD-Commit-ID:
33d6df589b072094384631ff93b1030103b3d02e
jmc@openbsd.org [Sun, 29 Sep 2019 16:31:57 +0000 (16:31 +0000)]
upstream: group and sort single letter options; ok deraadt
OpenBSD-Commit-ID:
e1480e760a2b582f79696cdcff70098e23fc603f
jmc@openbsd.org [Fri, 27 Sep 2019 20:03:24 +0000 (20:03 +0000)]
upstream: fix the DH-GEX text in -a; because this required a comma,
i added a comma to the first part, for balance...
OpenBSD-Commit-ID:
2c3464e9e82a41e8cdfe8f0a16d94266e43dbb58
deraadt@openbsd.org [Tue, 24 Sep 2019 12:50:46 +0000 (12:50 +0000)]
upstream: identity_file[] should be PATH_MAX, not the arbitrary
number 1024
OpenBSD-Commit-ID:
e775f94ad47ce9ab37bd1410d7cf3b7ea98b11b7
jmc@openbsd.org [Fri, 20 Sep 2019 18:50:58 +0000 (18:50 +0000)]
upstream: new sentence, new line;
OpenBSD-Commit-ID:
c35ca5ec07be460e95e7406af12eee04a77b6698
Darren Tucker [Mon, 30 Sep 2019 08:01:12 +0000 (18:01 +1000)]
Include stdio.h for snprintf.
Darren Tucker [Mon, 30 Sep 2019 04:11:42 +0000 (14:11 +1000)]
Add SKIP_LTESTS for skipping specific tests.
dtucker@openbsd.org [Fri, 27 Sep 2019 05:25:12 +0000 (05:25 +0000)]
upstream: Test for empty result in expected bits. Remove CRs from log
as they confuse tools on some platforms. Re-enable the 3des-cbc test.
OpenBSD-Regress-ID:
edf536d4f29fc1ba412889b37247a47f1b49d250
Darren Tucker [Fri, 27 Sep 2019 05:26:22 +0000 (15:26 +1000)]
Re-enable dhgex test.
Darren Tucker [Tue, 24 Sep 2019 11:17:20 +0000 (21:17 +1000)]
Add more ToS bits, currently only used by netcat.
Darren Tucker [Thu, 19 Sep 2019 05:41:23 +0000 (15:41 +1000)]
Privsep is now required.
djm@openbsd.org [Mon, 16 Sep 2019 03:23:02 +0000 (03:23 +0000)]
upstream: Allow testing signature syntax and validity without verifying
that a signature came from a trusted signer. To discourage accidental or
unintentional use, this is invoked by the deliberately ugly option name
"check-novalidate"
from Sebastian Kinne
OpenBSD-Commit-ID:
cea42c36ab7d6b70890e2d8635c1b5b943adcc0b
djm@openbsd.org [Fri, 13 Sep 2019 04:52:34 +0000 (04:52 +0000)]
upstream: clarify that IdentitiesOnly also applies to the default
~/.ssh/id_* keys; bz#3062
OpenBSD-Commit-ID:
604be570e04646f0f4a17026f8b2aada6a585dfa
dtucker@openbsd.org [Fri, 13 Sep 2019 04:36:43 +0000 (04:36 +0000)]
upstream: Plug mem leaks on error paths, based in part on github
pr#120 from David Carlier. ok djm@.
OpenBSD-Commit-ID:
c57adeb1022a8148fc86e5a88837b3b156dbdb7e
djm@openbsd.org [Fri, 13 Sep 2019 04:31:19 +0000 (04:31 +0000)]
upstream: whitespace
OpenBSD-Commit-ID:
57a71dd5f4cae8d61e0ac631a862589fb2bfd700
djm@openbsd.org [Fri, 13 Sep 2019 04:27:35 +0000 (04:27 +0000)]
upstream: allow %n to be expanded in ProxyCommand strings
From Zachary Harmany via github.com/openssh/openssh-portable/pull/118
ok dtucker@
OpenBSD-Commit-ID:
7eebf1b7695f50c66d42053d352a4db9e8fb84b6
djm@openbsd.org [Fri, 13 Sep 2019 04:07:42 +0000 (04:07 +0000)]
upstream: clarify that ConnectTimeout applies both to the TCP
connection and to the protocol handshake/KEX. From Jean-Charles Longuet via
Github PR140
OpenBSD-Commit-ID:
ce1766abc6da080f0d88c09c2c5585a32b2256bf
dtucker@openbsd.org [Mon, 9 Sep 2019 02:31:19 +0000 (02:31 +0000)]
upstream: Fix potential truncation warning. ok deraadt.
OpenBSD-Commit-ID:
d87b7e3a94ec935e8194e7fce41815e22804c3ff
Damien Miller [Fri, 13 Sep 2019 03:14:39 +0000 (13:14 +1000)]
memleak of buffer in sshpam_query
Damien Miller [Fri, 13 Sep 2019 03:12:42 +0000 (13:12 +1000)]
explicitly test set[ug]id() return values
naddy@openbsd.org [Fri, 6 Sep 2019 14:45:34 +0000 (14:45 +0000)]
upstream: Allow prepending a list of algorithms to the default set
by starting the list with the '^' character, e.g.
HostKeyAlgorithms ^ssh-
ed25519
Ciphers ^aes128-gcm@openssh.com,aes256-gcm@openssh.com
ok djm@ dtucker@
OpenBSD-Commit-ID:
1e1996fac0dc8a4b0d0ff58395135848287f6f97
djm@openbsd.org [Fri, 6 Sep 2019 07:53:40 +0000 (07:53 +0000)]
upstream: key conversion should fail for !openssl builds, not fall
through to the key generation code
OpenBSD-Commit-ID:
b957436adc43c4941e61d61958a193a708bc83c9
djm@openbsd.org [Fri, 6 Sep 2019 06:08:11 +0000 (06:08 +0000)]
upstream: typo in previous
OpenBSD-Commit-ID:
7c3b94110864771a6b80a0d8acaca34037c3c96e
Damien Miller [Sun, 8 Sep 2019 04:48:11 +0000 (14:48 +1000)]
needs time.h for --without-openssl
Damien Miller [Sat, 7 Sep 2019 09:25:00 +0000 (19:25 +1000)]
make unittests pass for no-openssl case
djm@openbsd.org [Fri, 6 Sep 2019 05:59:41 +0000 (05:59 +0000)]
upstream: avoid compiling certain files that deeply depend on
libcrypto when WITH_OPENSSL isn't set
OpenBSD-Commit-ID:
569f08445c27124ec7c7f6c0268d844ec56ac061
djm@openbsd.org [Fri, 6 Sep 2019 05:23:55 +0000 (05:23 +0000)]
upstream: fixes for !WITH_OPENSSL compilation; ok dtucker@
OpenBSD-Commit-ID:
7fd68eaa9e0f7482b5d4c7e8d740aed4770a839f
djm@openbsd.org [Fri, 6 Sep 2019 04:53:27 +0000 (04:53 +0000)]
upstream: lots of things were relying on libcrypto headers to
transitively include various system headers (mostly stdlib.h); include them
explicitly
OpenBSD-Commit-ID:
5b522f4f2d844f78bf1cc4f3f4cc392e177b2080
djm@openbsd.org [Fri, 6 Sep 2019 03:30:42 +0000 (03:30 +0000)]
upstream: remove leakmalloc reference; we used this early when
refactoring but not since
OpenBSD-Commit-ID:
bb28ebda8f7c490b87b37954044a6cdd43a7eb2c
projects / thirdparty / openssh-portable.git / log
