tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

add --without-ssh1 option to configure 

Allows disabling support for SSH protocol 1.
This commit is contained in:
Damien Miller 2015-01-13 19:38:18 +11:00
parent 1f729f0614
commit 76c0480a85
5 changed files with 33 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
auth-rh-rsa.c
View File

@ -15,6 +15,8 @@
#include "includes.h" #include "includes.h"
#ifdef WITH_SSH1
#include <sys/types.h> #include <sys/types.h>
#include <pwd.h> #include <pwd.h>
@ -102,3 +104,5 @@ auth_rhosts_rsa(Authctxt *authctxt, char *cuser, Key *client_host_key)
packet_send_debug("Rhosts with RSA host authentication accepted."); packet_send_debug("Rhosts with RSA host authentication accepted.");
return 1; return 1;
} }
#endif /* WITH_SSH1 */

4
auth-rsa.c
View File

@ -16,6 +16,8 @@
#include "includes.h" #include "includes.h"
#ifdef WITH_SSH1
#include <sys/types.h> #include <sys/types.h>
#include <sys/stat.h> #include <sys/stat.h>
@ -342,3 +344,5 @@ auth_rsa(Authctxt *authctxt, BIGNUM *client_n)
packet_send_debug("RSA authentication accepted."); packet_send_debug("RSA authentication accepted.");
return (1); return (1);
} }
#endif /* WITH_SSH1 */

4
auth1.c
View File

@ -12,6 +12,8 @@
#include "includes.h" #include "includes.h"
#ifdef WITH_SSH1
#include <sys/types.h> #include <sys/types.h>
#include <stdarg.h> #include <stdarg.h>
@ -438,3 +440,5 @@ do_authentication(Authctxt *authctxt)
packet_send(); packet_send();
packet_write_wait(); packet_write_wait();
} }
#endif /* WITH_SSH1 */

19
configure.ac
View File

@ -121,6 +121,22 @@ AC_CHECK_DECL([PR_SET_NO_NEW_PRIVS], [have_linux_no_new_privs=1], , [
#include <linux/prctl.h> #include <linux/prctl.h>
]) ])
ssh1=yes
AC_ARG_WITH([ssh1],
[ --without-ssh1 Disable support for SSH protocol 1],
[ if test "x$withval" = "xno" ; then
ssh1=no
fi
]
)
AC_MSG_CHECKING([whether SSH protocol 1 support is enabled])
if test "x$ssh1" = "xyes" ; then
AC_MSG_RESULT([yes])
AC_DEFINE_UNQUOTED([WITH_SSH1], [1], [include SSH protocol version 1 support])
else
AC_MSG_RESULT([no])
fi
use_stack_protector=1 use_stack_protector=1
use_toolchain_hardening=1 use_toolchain_hardening=1
AC_ARG_WITH([stackprotect], AC_ARG_WITH([stackprotect],
@ -1523,7 +1539,7 @@ AC_ARG_WITH([audit],
) )
AC_ARG_WITH([pie], AC_ARG_WITH([pie],
[ --with-pie Build Position Independent Executables if possible], [ [ --with-pie Build Position Independent Executables if possible], [
if test "x$withval" = "xno"; then if test "x$withval" = "xno"; then
use_pie=no use_pie=no
fi fi
@ -2314,7 +2330,6 @@ AC_RUN_IFELSE(
# XXX make --without-openssl work # XXX make --without-openssl work
AC_DEFINE_UNQUOTED([WITH_OPENSSL], [1], [use libcrypto for cryptography]) AC_DEFINE_UNQUOTED([WITH_OPENSSL], [1], [use libcrypto for cryptography])
AC_DEFINE_UNQUOTED([WITH_SSH1], [1], [include SSH protocol version 1 support])
AC_ARG_WITH([openssl-header-check], AC_ARG_WITH([openssl-header-check],
[ --without-openssl-header-check Disable OpenSSL version consistency check], [ --without-openssl-header-check Disable OpenSSL version consistency check],

4
sshconnect1.c
View File

@ -15,6 +15,8 @@
#include "includes.h" #include "includes.h"
#ifdef WITH_SSH1
#include <sys/types.h> #include <sys/types.h>
#include <sys/socket.h> #include <sys/socket.h>
@ -755,3 +757,5 @@ ssh_userauth1(const char *local_user, const char *server_user, char *host,
success: success:
return; /* need statement after label */ return; /* need statement after label */
} }
#endif /* WITH_SSH1 */