openssh-portable

Commit Graph

Author	SHA1	Message	Date
Kevin Steves	0ea1d9d1f2	- (stevesk) [acconfig.h auth-passwd.c configure.ac sshd.c] HP-UX 10.26 support. bug #184. most from dcole@keysoftsys.com.	2002-04-25 18:17:04 +00:00
Kevin Steves	30e494fbca	- (stevesk) [defines.h] remove USE_TIMEVAL; unused	2002-04-25 17:56:07 +00:00
Damien Miller	0150c65830	- djm@cvs.openbsd.org 2002/04/23 22:16:29 [sshd.c] Improve error message; ok markus@ stevesk@	2002-04-24 09:49:09 +10:00
Damien Miller	11ec28176e	- (djm) OpenBSD CVS Sync - markus@cvs.openbsd.org 2002/04/23 12:54:10 [version.h] 3.2.1	2002-04-24 09:48:14 +10:00
Kevin Steves	5feaaefaf2	- (stevesk) [acconfig.h configure.ac session.c] LOGIN_NO_ENDOPT for HP-UX	2002-04-23 20:45:55 +00:00
Kevin Steves	03df6cd83c	- (stevesk) [acconfig.h] NEED_IN_SYSTM_H unused	2002-04-23 20:11:13 +00:00
Markus Friedl	78cf8c377f	- markus@cvs.openbsd.org 2002/04/23 12:58:26 [radix.c] send complete ticket; semerad@ss1000.ms.mff.cuni.cz	2002-04-23 16:41:12 +02:00
Damien Miller	f75fcc61f4	wrap an out of control line	2002-04-23 23:32:38 +10:00
Damien Miller	fa2bb69d16	- (djm) Bug #206 - blibpath isn't always needed for AIX ld, avoid sizeof(long long int) == 4 breakage. Patch from Matthew Clarke <Matthew_Clarke@mindlink.bc.ca>	2002-04-23 23:22:25 +10:00
Damien Miller	f1b9d11a3e	- (djm) Bug #214 : Fix utmp for Irix (don't strip "tty"). Patch from Kevin Taylor <no@nowhere.org> (??) via Philipp Grau <phgrau@zedat.fu-berlin.de>	2002-04-23 23:09:19 +10:00
Damien Miller	d77facda1a	- (djm) Bug #213 : Simplify CMSG_ALIGN macros to avoid symbol clashes. Reported by Doug Manton <dmanton@emea.att.com>	2002-04-23 22:59:51 +10:00
Damien Miller	f5fea44ae3	- (djm) Define BROKEN_REALPATH for AIX, patch from Antti Tapaninen <aet@cc.hut.fi>	2002-04-23 22:52:45 +10:00
Damien Miller	654a4ef969	- (djm) Redhat spec enables KrbV by default	2002-04-23 21:17:17 +10:00
Damien Miller	0b3894d5b5	- (djm) Update RPM spec file versions	2002-04-23 21:15:31 +10:00
Damien Miller	ef7c11de6e	- (djm) Trim ChangeLog to include only post-3.1 changes	2002-04-23 21:13:32 +10:00
Damien Miller	2797f7f03a	- markus@cvs.openbsd.org 2002/04/22 21:04:52 [channels.c clientloop.c clientloop.h ssh.c] request reply (success/failure) for -R style fwd in protocol v2, depends on ordered replies. fixes http://bugzilla.mindrot.org/show_bug.cgi?id=215; ok provos@	2002-04-23 21:09:44 +10:00
Damien Miller	d7de14b6ad	- markus@cvs.openbsd.org 2002/04/22 16:16:53 [servconf.c sshd.8 sshd_config] do not auto-enable KerberosAuthentication; ok djm@, provos@, deraadt@	2002-04-23 21:04:51 +10:00
Damien Miller	635fe98a7f	- markus@cvs.openbsd.org 2002/04/22 06:15:47 [radix.c] fix check for overflow	2002-04-23 21:00:33 +10:00
Damien Miller	f61c01506f	- stevesk@cvs.openbsd.org 2002/04/21 16:25:06 [sshconnect1.c] spelling in error message; ok markus@	2002-04-23 20:56:02 +10:00
Damien Miller	7a8558d3ea	- stevesk@cvs.openbsd.org 2002/04/21 16:19:27 [sshd.8 sshd_config] document default AFSTokenPassing no; ok deraadt@	2002-04-23 20:51:15 +10:00
Damien Miller	bad0e0162f	- markus@cvs.openbsd.org 2002/04/20 09:17:19 [radix.c] rewrite using the buffer_* API, fixes overflow; ok deraadt@	2002-04-23 20:46:56 +10:00
Damien Miller	3b23566a5b	- markus@cvs.openbsd.org 2002/04/20 09:14:58 [bufaux.c bufaux.h] add buffer_{get,put}_short	2002-04-23 20:42:36 +10:00
Damien Miller	7941855f09	- (djm) Make privsep work with PAM (still experimental)	2002-04-23 20:28:48 +10:00
Damien Miller	594a71b9b9	- (djm) Bug #222 : Fix tests for getaddrinfo on OSF/1. Spotted by Robert Urban <urban@spielwiese.de>	2002-04-23 20:22:59 +10:00
Tim Rice	f02dccc0dc	[entropy.c.] Portability fix for SCO Unix 3.2v4.x (SCO OSR 3.0). entropy.c needs seteuid(getuid()) for the setuid(original_uid) to succeed. Patch by gert@greenie.muc.de. This fixes one part of Bug 208	2002-04-21 11:26:10 -07:00
Damien Miller	a370f4dcc6	- (djm) Avoid SIGCHLD breakage when run from rsync. Fix from Sturle Sunde <sturle.sunde@usit.uio.no>	2002-04-18 22:53:22 +10:00
Tim Rice	43a1c13e0f	[configure.ac] Issue warning on --with-default-path=/some_path if LOGIN_CAP is enabled. Report & testing by Tuc <tuc@ttsg.com>	2002-04-17 21:19:14 -07:00
Damien Miller	5efd71038d	- (djm) Fix .Nm in mdoc2man.pl from pspencer@fields.utoronto.ca	2002-04-17 12:30:45 +10:00
Damien Miller	bd63874d4b	- (djm) Tell users to configure /dev/random support into OpenSSL in INSTALL	2002-04-17 12:22:58 +10:00
Tim Rice	66480f188e	[configure.ac] add tests for recvmsg and sendmsg. [monitor_fdpass.c] add checks for HAVE_SENDMSG and HAVE_RECVMSG for systems that HAVE_ACCRIGHTS_IN_MSGHDR but no recvmsg or sendmsg.	2002-04-15 21:10:09 -07:00
Kevin Steves	eb3630205a	- (stevesk) bsd-cygwin_util.[ch] BSD license from Corinna Vinschen	2002-04-15 22:00:51 +00:00
Damien Miller	8be24f3846	- (djm) Unbreak "make install". Fix from Darren Tucker <dtucker@zip.com.au>	2002-04-15 13:23:59 +10:00
Damien Miller	49411ff8a7	- (djm) Random number collection doc fixes from Ben	2002-04-14 23:16:04 +10:00
Damien Miller	32e4818015	- (djm) ssh-rand-helper improvements - Add commandline debugging options - Don't write binary data if stdout is a tty (use hex instead) - Give it a manpage	2002-04-14 19:27:12 +10:00
Damien Miller	fd4c9eee25	- (djm) Add KrbV support patch from Simon Wilkinson <simon@sxw.org.uk>	2002-04-13 11:04:40 +10:00
Ben Lindstrom	927dfd2d7e	- (bal) disable privsep if no MAP_ANON. We can re-enable it after the release when we can do more testing.	2002-04-12 18:51:22 +00:00
Ben Lindstrom	c42f7cfd16	- (bal) Mistaken in Cygwin scripts for ssh starting. Patch by Corinna Vinschen <vinschen@redhat.com>	2002-04-12 17:44:13 +00:00
Tim Rice	ae49fe64ca	[configure.ac] add <sys/types.h> to msghdr tests. Change -L to -h on testing for /bin being symbolic link	2002-04-12 10:26:21 -07:00
Kevin Steves	19fa9b544f	- (stevesk) [auth-sia.[ch]] add BSD license from Chris Adams	2002-04-12 15:36:07 +00:00
Tim Rice	813f0452ed	[acconfig.h defines.h includes.h] put includes in includes.h and defines in defines.h [rijndael.c openbsd-compat/fake-socket.h openbsd-compat/inet_aton.c] include "includes.h" instead of "config.h" ok stevesk@	2002-04-11 20:35:39 -07:00
Kevin Steves	0c283d8444	- (stevesk) [auth-sia.c] cleanup	2002-04-11 20:39:40 +00:00
Kevin Steves	fe6ca54ac2	- (stevesk) [configure.ac monitor.c] HAVE_SOCKETPAIR	2002-04-10 22:04:54 +00:00
Ben Lindstrom	027e4de24f	- markus@cvs.openbsd.org 2002/04/10 08:56:01 [version.h] OpenSSH_3.2 - Added p1 to idenify Portable release version.	2002-04-10 16:26:20 +00:00
Ben Lindstrom	b5115eaf80	- markus@cvs.openbsd.org 2002/04/10 08:21:47 [auth1.c compat.c compat.h] strip '@' from username only for KerbV and known broken clients, bug #204	2002-04-10 16:17:34 +00:00
Kevin Steves	6939b233d0	- (stevesk) [auth-sia.c] compile fix Chris Adams <cmadams@hiwaay.net>	2002-04-10 16:09:51 +00:00
Ben Lindstrom	34b7320a9d	- (bal) Minor OpenSC updates. Fix up header locations and update README.smartcard provided by Juha Yrjölä <jyrjola@cc.hut.fi>	2002-04-08 18:37:07 +00:00
Kevin Steves	265c9d00c3	- (stevesk) wrap munmap() with HAVE_MMAP also.	2002-04-07 22:36:49 +00:00
Kevin Steves	7ff911216b	- (stevesk) --with-privsep-user; default sshd	2002-04-07 19:22:54 +00:00
Kevin Steves	b1184bbf29	- (stevesk) remove configure support for poll.h; it was removed from sshd.c a long time ago.	2002-04-07 18:12:03 +00:00
Kevin Steves	86b9fe6a77	- (stevesk) HAVE_MMAP and HAVE_SYS_MMAN_H and use them in monitor_mm.c	2002-04-07 17:08:53 +00:00
Kevin Steves	c3c825575c	- (stevesk) [monitor_fdpass.c] fatal() for UsePrivilegeSeparation=yes and no fd passing support.	2002-04-07 16:39:12 +00:00
Kevin Steves	a44e0351ee	- (stevesk) HAVE_CONTROL_IN_MSGHDR; not used right now. Future: we may want to test if fd passing works correctly.	2002-04-07 16:18:03 +00:00
Ben Lindstrom	fdee8ef0ac	- (bal) We no longer use atexit()/xatexit()/on_exit()	2002-04-06 23:52:02 +00:00
Ben Lindstrom	0318801591	- (bal) Quiet down configure.ac if /bin/test does not exist.	2002-04-06 20:30:07 +00:00
Ben Lindstrom	8ff2a8d2c2	- (bal) Revered out of runtime IRIX runtime detection of joblimits. Code is incomplete.	2002-04-06 18:58:31 +00:00
Ben Lindstrom	de3895d580	- mouring@cvs.openbsd.org 2002/04/06 18:24:09 [scp.c] Fixes potental double // within path. http://bugzilla.mindrot.org/show_bug.cgi?id=76	2002-04-06 18:29:59 +00:00
Ben Lindstrom	8d6017566c	- (bal) Slight update to OpenSC support. Better version checking. patch by Juha Yrjölä <jyrjola@cc.hut.fi>	2002-04-06 18:19:38 +00:00
Ben Lindstrom	06e9515eb8	- djm@cvs.openbsd.org 2002/04/06 00:30:08 [sftp-client.c] Fix occasional corruption on upload due to bad reuse of request id, spotted by chombier@mac.com; ok markus@	2002-04-06 04:16:45 +00:00
Ben Lindstrom	dc0594cc54	- (bal) Added MAP_FAILED to allow AIX and Trusted HP to compile.	2002-04-06 04:11:28 +00:00
Damien Miller	12db56ba2f	- (djm) Typo in Suse SPEC file. Fix from Carsten Grohmann <carsten.grohmann@dr-baldeweg.de>	2002-04-06 11:12:52 +10:00
Ben Lindstrom	a11e270115	- stevesk@cvs.openbsd.org 2002/04/05 20:56:21 [sshd.8] clarify sshrc some and handle X11UseLocalhost=yes; ok markus@	2002-04-05 22:18:48 +00:00
Ben Lindstrom	924144e650	- (bal) Too many <sys/queue.h> issues. Remove all workarounds and using internal version only.	2002-04-05 20:23:35 +00:00
Ben Lindstrom	a42694fa25	- (bal) Patch for OpenSC SmartCard library; ok markus@; patch by Juha Yrjölä <jyrjola@cc.hut.fi> - (bal) Minor documentation update to reflect smartcard library support changes.	2002-04-05 16:11:45 +00:00
Ben Lindstrom	8a725a843d	- markus@cvs.openbsd.org 2002/04/03 09:26:11 [cipher.c myproposal.h] re-add rijndael-cbc@lysator.liu.se for MacSSH; ash@lab.poc.net	2002-04-04 22:10:38 +00:00
Kevin Steves	e683e76439	- (stevesk) [auth-pam.c auth-pam.h auth-passwd.c auth-sia.c auth-sia.h auth1.c auth2.c] PAM, OSF_SIA password auth cleanup; from djm.	2002-04-04 19:02:28 +00:00
Ben Lindstrom	af40bc6a72	- (bal) mispelling in uidswap.c (portable only)	2002-04-03 03:36:54 +00:00
Ben Lindstrom	07739fe305	- markus@cvs.openbsd.org 2002/04/02 20:11:38 [ssh-rsa.c] ignore SSH_BUG_SIGBLOB for ssh-rsa; #187	2002-04-03 03:03:04 +00:00
Ben Lindstrom	2f3d52a2d6	- markus@cvs.openbsd.org 2002/04/02 17:37:48 [sftp.c] always call log_init()	2002-04-02 21:06:18 +00:00
Ben Lindstrom	eecdf23531	- markus@cvs.openbsd.org 2002/04/02 11:49:39 [ssh-agent.c] check $SHELL for -k and -d, too; http://bugzilla.mindrot.org/show_bug.cgi?id=199	2002-04-02 21:03:51 +00:00
Ben Lindstrom	f26ff5b9d8	- markus@cvs.openbsd.org 2002/04/01 22:07:17 [sftp-client.c] fallback to stat if server does not support lstat	2002-04-02 21:00:31 +00:00
Ben Lindstrom	a1d8114044	- markus@cvs.openbsd.org 2002/04/01 22:02:16 [sftp-client.c] 20480 is an upper limit for older server	2002-04-02 20:58:11 +00:00
Ben Lindstrom	1e259bb0bf	- (bal) CVS ID sync of uidswap.c	2002-04-02 20:53:39 +00:00
Ben Lindstrom	47fd8112b5	- markus@cvs.openbsd.org 2002/03/30 18:51:15 [monitor.c serverloop.c sftp-int.c sftp.c sshd.c] check waitpid for EINTR; based on patch from peter@ifm.liu.se	2002-04-02 20:48:19 +00:00
Ben Lindstrom	03f3932829	- stevesk@cvs.openbsd.org 2002/03/29 19:18:33 [auth-rsa.c ssh-rsa.c ssh.h] make RSA modulus minimum #define; ok markus@	2002-04-02 20:43:11 +00:00
Ben Lindstrom	0d0be02a29	- stevesk@cvs.openbsd.org 2002/03/29 19:16:22 [sshd.8] RSA key modulus size minimum 768; ok markus@	2002-04-02 20:39:29 +00:00
Ben Lindstrom	c447fee9f1	- markus@cvs.openbsd.org 2002/03/29 18:59:32 [session.c session.h] retrieve last login time before the pty is allocated, store per session	2002-04-02 20:35:35 +00:00
Ben Lindstrom	2bf56e2dba	- markus@cvs.openbsd.org 2002/03/28 15:34:51 [session.c] do not call record_login twice (for use_privsep)	2002-04-02 20:32:46 +00:00
Ben Lindstrom	155b981494	- markus@cvs.openbsd.org 2002/03/27 22:21:45 [ssh-keygen.c] try to import keys with extra trailing === (seen with ssh.com < 2.0.12)	2002-04-02 20:26:26 +00:00
Ben Lindstrom	cdb66e0e82	- (bal) Hand Sync of scp.c (reverted to upstream code) - deraadt@cvs.openbsd.org 2002/03/30 17:45:46 [scp.c] stretch banners	2002-04-02 20:17:43 +00:00
Kevin Steves	38c4a28a7e	- (stevesk) [auth1.c] fix password auth for protocol 1 when !USE_PAM && !HAVE_OSF_SIA; merge issue.	2002-04-02 03:24:56 +00:00
Kevin Steves	bd1901b7dc	- (stevesk) [monitor.c] PAM should work again; will not work with UsePrivilegeSeparation=yes.	2002-04-01 18:04:35 +00:00
Tim Rice	c85496222b	[sshconnect2.c] change uint32_t to u_int32_t	2002-03-31 12:49:38 -08:00
Tim Rice	49e457c43b	[configure.ac] use /bin/test -L to work around broken builtin on Solaris 8	2002-03-31 11:23:06 -08:00
Kevin Steves	117b06dec9	- (stevesk) [configure.ac] remove header check for sys/ttcompat.h bug 167	2002-03-30 17:55:21 +00:00
Ben Lindstrom	b57a4bf93f	- mouring@cvs.openbsd.org 2002/03/27 11:45:42 [monitor.c] monitor_allowed_key() returns int instead of pointer. ok markus@	2002-03-27 18:00:59 +00:00
Ben Lindstrom	599717246c	- markus@cvs.openbsd.org 2002/03/26 23:14:51 [kex.c] generate a new cookie for each SSH2_MSG_KEXINIT message we send out	2002-03-27 17:42:57 +00:00
Ben Lindstrom	e1f9e324e9	- markus@cvs.openbsd.org 2002/03/26 23:13:03 [auth-rsa.c] disallow RSA keys < 768 for protocol 1, too (rhosts-rsa and rsa auth)	2002-03-27 17:38:43 +00:00
Ben Lindstrom	57686a82a5	- markus@cvs.openbsd.org 2002/03/26 22:50:39 [channels.h] CHANNEL_EFD_OUTPUT_ACTIVE is false for CHAN_CLOSE_RCVD, too	2002-03-27 17:36:41 +00:00
Ben Lindstrom	43a5e2f70e	- rees@cvs.openbsd.org 2002/03/26 18:46:59 [scard.c] try_AUT0 in read_pubkey too, for those paranoid few who want to acl 'sh'	2002-03-27 17:33:17 +00:00
Ben Lindstrom	38a69e6b53	- markus@cvs.openbsd.org 2002/03/26 15:58:46 [readpass.c readpass.h sshconnect2.c] client side support for PASSWD_CHANGEREQ	2002-03-27 17:28:46 +00:00
Ben Lindstrom	cd8bbce80b	- markus@cvs.openbsd.org 2002/03/26 15:23:40 [bufaux.c] do not talk about packets in bufaux	2002-03-27 17:23:44 +00:00
Ben Lindstrom	eb041dca1f	- markus@cvs.openbsd.org 2002/03/26 11:37:05 [ssh.c] update Copyright	2002-03-27 17:20:38 +00:00
Ben Lindstrom	f181384a6b	- markus@cvs.openbsd.org 2002/03/26 11:34:49 [ssh.1 sshd.8] update to recent drafts	2002-03-27 17:18:31 +00:00
Ben Lindstrom	53f1830d6a	- (bal) 'pw' should be 'authctxt->pw' in auth1.c spotted by kent@lysator.liu.se	2002-03-27 16:50:03 +00:00
Ben Lindstrom	28364ecf45	- stevesk@cvs.openbsd.org 2002/03/26 03:24:01 [monitor.h monitor_fdpass.h monitor_mm.h monitor_wrap.h] $OpenBSD$	2002-03-26 03:42:20 +00:00
Ben Lindstrom	cf15944c23	- markus@cvs.openbsd.org 2002/03/25 21:13:51 [channels.c channels.h compat.c compat.h nchan.c] don't send stderr data after EOF, accept this from older known (broken) sshd servers only, fixes http://bugzilla.mindrot.org/show_bug.cgi?id=179	2002-03-26 03:26:24 +00:00
Ben Lindstrom	4f054607f0	- markus@cvs.openbsd.org 2002/03/25 21:04:02 [ssh.c] simplify num_identity_files handling	2002-03-26 03:23:00 +00:00
Ben Lindstrom	c861547f34	- stevesk@cvs.openbsd.org 2002/03/25 20:12:10 [monitor_mm.c monitor_wrap.c] ssize_t args use "%ld" and cast to (long) size_t args use "%lu" and cast to (u_long) ok markus@ and thanks millert@	2002-03-26 03:20:45 +00:00
Ben Lindstrom	0936a5bb72	- markus@cvs.openbsd.org 2002/03/25 17:34:27 [scard.c scard.h ssh-agent.c ssh-keygen.c ssh.c] change sc_get_key to sc_get_keys and hide smartcard details in scard.c	2002-03-26 03:17:42 +00:00
Ben Lindstrom	5facb2bbc4	- markus@cvs.openbsd.org 2002/03/25 09:25:06 [auth-rh-rsa.c] rm bogus comment	2002-03-26 03:08:47 +00:00
Ben Lindstrom	f6d367b91a	- markus@cvs.openbsd.org 2002/03/25 09:21:13 [auth-rsa.c] return 0 (not NULL); tomh@po.crl.go.jp	2002-03-26 02:59:31 +00:00
Ben Lindstrom	2e9d866608	- stevesk@cvs.openbsd.org 2002/03/24 23:20:00 [monitor.c] remove "\n" from fatal()	2002-03-26 02:49:34 +00:00
Ben Lindstrom	c2c6cbc527	- markus@cvs.openbsd.org 2002/03/24 18:05:29 [scard.c] we need to figure out AUT0 for sc_private_encrypt, too	2002-03-26 02:44:44 +00:00
Ben Lindstrom	31ee7aeb15	- stevesk@cvs.openbsd.org 2002/03/24 17:53:16 [monitor_fdpass.c] minor cleanup and more error checking; ok markus@	2002-03-26 02:36:29 +00:00
Ben Lindstrom	fcad1c92c9	- stevesk@cvs.openbsd.org 2002/03/24 17:27:03 [kexgex.c] typo; ok markus@	2002-03-26 02:20:06 +00:00
Ben Lindstrom	8b08d8115d	- markus@cvs.openbsd.org 2002/03/24 16:01:13 [packet.c] debug->debug3 for extra padding	2002-03-26 02:09:41 +00:00
Ben Lindstrom	3dc40f997b	- markus@cvs.openbsd.org 2002/03/24 16:00:27 [serverloop.c] remove unused debug	2002-03-26 02:01:30 +00:00
Ben Lindstrom	f90f58d846	- stevesk@cvs.openbsd.org 2002/03/23 20:57:26 [sshd.c] setproctitle() after preauth child; ok markus@	2002-03-26 01:53:03 +00:00
Kevin Steves	6205a18f55	- (stevesk) import OpenBSD <sys/tree.h> as "openbsd-compat/tree.h"	2002-03-26 00:12:49 +00:00
Kevin Steves	b4799a31a5	- (stevesk) [session.c] disable LOGIN_NEEDS_TERM until we are sure it can be removed. only used on solaris. will no longer compile with privsep shuffling.	2002-03-24 23:19:54 +00:00
Kevin Steves	4408c2098f	- (stevesk) [LICENCE] OpenBSD sync	2002-03-23 02:20:07 +00:00
Tim Rice	f29a6539c0	[cipher.c] fix problem with OpenBSD sync	2002-03-22 13:27:40 -08:00
Kevin Steves	4435a55a4b	- (stevesk) [defines.h] #define MAP_ANON MAP_ANONYMOUS for HP-UX; other platforms may need this--I'm not sure. mmap() issues will need to be addressed further.	2002-03-22 21:08:03 +00:00
Kevin Steves	219bef12c6	- (stevesk) [defines.h] hp-ux 11 has ancillary data style fd passing, but is missing CMSG_LEN() and CMSG_SPACE() macros.	2002-03-22 20:53:32 +00:00
Kevin Steves	205cc1ef46	- (stevesk) [auth2.c] merge cleanup/sync	2002-03-22 20:43:05 +00:00
Kevin Steves	1adb120779	- (stevesk) [monitor_fdpass.c] support for access rights style file descriptor passing	2002-03-22 19:32:53 +00:00
Kevin Steves	4846f4ab69	- (stevesk) configure and cpp __FUNCTION__ gymnastics to handle nielsisms	2002-03-22 18:19:53 +00:00
Kevin Steves	7e147607f5	- (stevesk) [monitor.c monitor_wrap.c] #ifdef HAVE_PW_CLASS_IN_PASSWD	2002-03-22 18:07:17 +00:00
Kevin Steves	939c9db9b1	- (stevesk) HAVE_ACCRIGHTS_IN_MSGHDR configure support	2002-03-22 17:23:25 +00:00
Ben Lindstrom	681d932634	- markus@cvs.openbsd.org 2002/03/21 23:07:37 [clientloop.c] remove unused, sync w/ cmdline patch in my tree.	2002-03-22 03:53:00 +00:00
Ben Lindstrom	ba72d30aa5	- rees@cvs.openbsd.org 2002/03/21 22:44:05 [authfd.c authfd.h ssh-add.c ssh-agent.c ssh.c] Add PIN-protection for secret key.	2002-03-22 03:51:06 +00:00
Ben Lindstrom	266ec63eb3	- rees@cvs.openbsd.org 2002/03/21 21:54:34 [scard.c scard.h ssh-keygen.c] Add PIN-protection for secret key.	2002-03-22 03:47:38 +00:00
Ben Lindstrom	943481cc77	- markus@cvs.openbsd.org 2002/03/21 21:23:34 [sshd.c] add privsep_preauth() and remove 1 goto; ok provos@	2002-03-22 03:43:46 +00:00
Ben Lindstrom	fa1336ff47	- markus@cvs.openbsd.org 2002/03/21 20:51:12 [sshd_config] add privsep (off)	2002-03-22 03:40:58 +00:00
Ben Lindstrom	818659a163	- rees@cvs.openbsd.org 2002/03/21 18:08:15 [scard.c] In sc_put_key(), sc_reader_id should be id.	2002-03-22 03:38:35 +00:00
Ben Lindstrom	eda98a728d	- markus@cvs.openbsd.org 2002/03/21 16:58:13 [clientloop.c] remove unused	2002-03-22 03:35:48 +00:00
Ben Lindstrom	70e3ad8231	- markus@cvs.openbsd.org 2002/03/21 16:57:15 [scard.c] remove const	2002-03-22 03:33:43 +00:00
Ben Lindstrom	0b675b1659	- markus@cvs.openbsd.org 2002/03/21 16:38:06 [scard.c] make compile w/ openssl 0.9.7	2002-03-22 03:28:11 +00:00
Ben Lindstrom	5589f4b55f	- jakob@cvs.openbsd.org 2002/03/21 15:17:26 [clientloop.c ssh.1] add built-in command line for adding new port forwardings on the fly. based on a patch from brian wellington. ok markus@.	2002-03-22 03:24:32 +00:00
Ben Lindstrom	58b391b1bd	- markus@cvs.openbsd.org 2002/03/21 10:21:20 [ssh-add.c] ignore errors for nonexisting default keys in ssh-add, fixes http://bugzilla.mindrot.org/show_bug.cgi?id=158 Last patch was SUPPOSE to be: - stevesk@cvs.openbsd.org 2002/03/20 21:08:08 [sshd.c] strerror() on chdir() fail; ok provos@ But it got co-mingled. <sigh> Flog me at will.	2002-03-22 03:21:16 +00:00
Ben Lindstrom	1ee9ec32a3	- markus@cvs.openbsd.org 2002/03/21 10:21:20 [ssh-add.c] ignore errors for nonexisting default keys in ssh-add, fixes http://bugzilla.mindrot.org/show_bug.cgi?id=158	2002-03-22 03:14:45 +00:00
Ben Lindstrom	c743134191	- stevesk@cvs.openbsd.org 2002/03/20 19:12:25 [servconf.c servconf.h ssh.h sshd.c] for unprivileged user, group do: pw=getpwnam(SSH_PRIVSEP_USER); do_setusercontext(pw). ok provos@	2002-03-22 03:11:49 +00:00
Ben Lindstrom	f34e4eb6c7	- markus@cvs.openbsd.org 2002/03/19 15:31:47 [auth.c] check for NULL; from provos@	2002-03-22 03:08:30 +00:00
Ben Lindstrom	7ebb635d81	- markus@cvs.openbsd.org 2002/03/19 14:27:39 [auth.c auth1.c auth2.c] make getpwnamallow() allways call pwcopy()	2002-03-22 03:04:08 +00:00
Ben Lindstrom	6328ab3989	- markus@cvs.openbsd.org 2002/03/19 10:49:35 [auth-krb5.c auth-rh-rsa.c auth.c cipher.c key.c misc.h packet.c session.c sftp-client.c sftp-glob.h sftp.c ssh-add.c ssh.c sshconnect2.c sshd.c ttymodes.c] KNF whitespace	2002-03-22 02:54:23 +00:00
Ben Lindstrom	08105192fd	- markus@cvs.openbsd.org 2002/03/19 10:35:39 [auth-options.c auth.h session.c session.h sshd.c] clean up prototypes	2002-03-22 02:50:06 +00:00
Ben Lindstrom	cb1f60efb5	- mpech@cvs.openbsd.org 2002/03/19 06:32:56 [sftp-int.c] use xfree() after xstrdup(). markus@ ok	2002-03-22 02:47:28 +00:00
Ben Lindstrom	85520a6705	- stevesk@cvs.openbsd.org 2002/03/19 05:23:08 [sshd.8] Banner has no default.	2002-03-22 02:44:40 +00:00
Ben Lindstrom	7a7edf77ed	- stevesk@cvs.openbsd.org 2002/03/19 03:03:43 [pathnames.h servconf.c servconf.h sshd.c] _PATH_PRIVSEP_CHROOT_DIR; ok provos@	2002-03-22 02:42:37 +00:00
Ben Lindstrom	01426a67c8	- stevesk@cvs.openbsd.org 2002/03/18 23:52:51 [servconf.c] UnprivUser/UnprivGroup usable now--specify numeric user/group; ok provos@	2002-03-22 02:40:03 +00:00
Ben Lindstrom	191c8e5eb9	- provos@cvs.openbsd.org 2002/03/18 17:59:09 [sshd.8] document UsePrivilegeSeparation	2002-03-22 02:37:50 +00:00
Ben Lindstrom	000dda5373	- provos@cvs.openbsd.org 2002/03/18 17:53:08 [sshd.8] credits for privsep	2002-03-22 02:33:12 +00:00
Ben Lindstrom	7a2073c50b	- provos@cvs.openbsd.org 2002/03/18 17:50:31 [auth-bsdauth.c auth-options.c auth-rh-rsa.c auth-rsa.c auth-skey.c auth.h auth1.c auth2-chall.c auth2.c kex.c kex.h kexdh.c kexgex.c servconf.c session.h servconf.h serverloop.c session.c sshd.c] integrate privilege separated openssh; its turned off by default for now. work done by me and markus@ applied, but outside of ensure that smaller code bits migrated with their owners.. no work was tried to 'fix' it to work. =) Later project!	2002-03-22 02:30:41 +00:00
Ben Lindstrom	0f345f5ee1	- provos@cvs.openbsd.org 2002/03/18 17:31:54 [compress.c] export compression streams for ssh-privsep	2002-03-22 01:51:24 +00:00
Ben Lindstrom	88aa1b4527	- provos@cvs.openbsd.org 2002/03/18 17:25:29 [bufaux.c bufaux.h] buffer_skip_string and extra sanity checking; needed by ssh-privsep	2002-03-22 01:47:52 +00:00
Ben Lindstrom	a674e8df80	- markus@cvs.openbsd.org 2002/03/18 17:23:31 [key.c key.h] add key_demote() for ssh-privsep	2002-03-22 01:45:53 +00:00
Ben Lindstrom	f6027d3407	- markus@cvs.openbsd.org 2002/03/18 17:16:38 [packet.c packet.h] export/import cipher state, iv and ssh2 seqnr; needed by ssh-privsep	2002-03-22 01:42:04 +00:00
Ben Lindstrom	212facacde	- markus@cvs.openbsd.org 2002/03/18 17:13:15 [cipher.c cipher.h] export/import cipher states; needed by ssh-privsep	2002-03-22 01:39:44 +00:00
Ben Lindstrom	b481e1323e	- provos@cvs.openbsd.org 2002/03/18 03:41:08 [auth.c session.c] move auth_approval into getpwnamallow with help from millert@	2002-03-22 01:35:47 +00:00
Ben Lindstrom	abf3144064	- dugsong@cvs.openbsd.org 2002/03/18 01:30:10 [auth-krb4.c] set client to NULL after xfree(), from Rolf Braun <rbraun+ssh@andrew.cmu.edu>	2002-03-22 01:30:40 +00:00
Ben Lindstrom	73ab9ba45d	- provos@cvs.openbsd.org 2002/03/18 01:12:14 [auth.h auth1.c auth2.c sshd.c] have the authentication functions return the authentication context and then do_authenticated; okay millert@	2002-03-22 01:27:35 +00:00
Ben Lindstrom	2ae18f40a7	- provos@cvs.openbsd.org 2002/03/17 20:25:56 [auth.c auth.h auth1.c auth2.c] getpwnamallow returns struct passwd * only if user valid; okay markus@	2002-03-22 01:24:38 +00:00
Ben Lindstrom	eacc71b558	- stevesk@cvs.openbsd.org 2002/03/16 17:41:25 [auth-krb5.c] BSD license. from Daniel Kouril via Dug Song. ok markus@	2002-03-22 01:22:27 +00:00
Ben Lindstrom	186b7da2d7	- markus@cvs.openbsd.org 2002/03/16 17:22:09 [auth-rh-rsa.c auth.h] split auth_rhosts_rsa(), ok provos@	2002-03-22 01:20:32 +00:00
Ben Lindstrom	ce398b2278	- markus@cvs.openbsd.org 2002/03/16 11:24:53 [compress.c] skip inflateEnd if inflate fails; ok provos@	2002-03-22 01:17:52 +00:00
Ben Lindstrom	b61e6df9f3	- itojun@cvs.openbsd.org 2002/03/15 11:00:38 [auth.c] fix file type checking (use S_ISREG). ok by markus	2002-03-22 01:15:33 +00:00
Ben Lindstrom	9c8aefe750	- markus@cvs.openbsd.org 2002/03/14 16:56:33 [auth-rh-rsa.c auth-rsa.c auth.h] split auth_rsa() for better readability and privsep; ok provos@	2002-03-22 01:12:58 +00:00
Ben Lindstrom	abcb145b38	- markus@cvs.openbsd.org 2002/03/14 16:38:26 [sshd.c] split out ssh1 session key decryption; ok provos@	2002-03-22 01:10:21 +00:00
Ben Lindstrom	5c15958230	- markus@cvs.openbsd.org 2002/03/14 15:24:27 [sshconnect1.c] don't trust size sent by (rogue) server; noted by s.esser@e-matters.de	2002-03-22 01:08:07 +00:00
Ben Lindstrom	83b79e48df	- itojun@cvs.openbsd.org 2002/03/11 03:19:53 [sftp-client.c] indent	2002-03-22 01:05:27 +00:00
Ben Lindstrom	eb50545365	- itojun@cvs.openbsd.org 2002/03/11 03:18:49 [sftp-client.c] correct type mismatches (u_int64_t != unsigned long long)	2002-03-22 01:03:15 +00:00
Ben Lindstrom	d45f28c116	- itojun@cvs.openbsd.org 2002/03/08 06:10:16 [sftp-client.c] printf type mismatch	2002-03-22 01:00:57 +00:00
Tim Rice	3a4234699e	[contrib/aix/buildbff.sh contrib/aix/inventory.sh] AIX package build fixes. Patch by Darren Tucker <dtucker@zip.com.au> [contrib/solaris/buildpkg.sh] add missing dirs to SYSTEM_DIR. Have postinstall check for $piddir and add if necessary.	2002-03-17 14:05:24 -08:00
Tim Rice	88f2ab5efb	[configure.ac] Assume path given with --with-pid-dir=PATH is wanted, warn if directory doesn not exist. Put system directories in front of PATH for finding entorpy commands.	2002-03-17 12:17:34 -08:00
Tim Rice	29bdd2c9bc	[contrib/solaris/buildpkg.sh, contrib/solaris/README] Updated to build on all platforms that support SVR4 style package tools. Now runs from build dir. Parts are based on patches from Antonio Navarro, and Darren Tucker.	2002-03-11 20:55:53 -08:00
Damien Miller	4a10d2e90b	- (djm) ssh-keygen -i needs seeded RNG; report from markus@	2002-03-11 22:53:29 +11:00
Kevin Steves	581930735a	- (stevesk) entropy.c: typo in debug message	2002-03-11 00:16:34 +00:00
Damien Miller	c7375ac466	- (djm) Add Markus' patch for compat wih OpenSSL < 0.9.6. Known issue: Blowfish for SSH1 does not work	2002-03-11 10:51:17 +11:00
Damien Miller	ff8f94c3e6	- (djm) Revert bits of Markus' OpenSSL compat patch which was accidentally committed.	2002-03-11 10:48:53 +11:00
Ben Lindstrom	784e234c19	- (bal) Test for IRIX JOBS support at runtime. Patch provided by David Kaelbling <drk@sgi.com>	2002-03-08 03:50:57 +00:00
Ben Lindstrom	7577fd83c1	- (bal) Add in check for rpc/types.h since it is needed on some platforms for INADDR_LOOPBACK. We should retest SCO 3 to see if this fixes their problem also.	2002-03-08 03:11:07 +00:00
Ben Lindstrom	dc16354aaa	- (bal) Updated INSTALL to reflect 0.9.6 OpenSSL requirement	2002-03-07 17:49:39 +00:00
Damien Miller	6e96c88c16	- (djm) Update RPM spec files with new version number	2002-03-07 13:04:37 +11:00
Damien Miller	3fd2872407	- markus@cvs.openbsd.org 2002/03/06 00:25:55 [version.h] OpenSSH_3.1	2002-03-07 13:02:19 +11:00
Damien Miller	4e431d4b8e	- markus@cvs.openbsd.org 2002/03/06 00:24:39 [compat.c] compat.c	2002-03-07 12:59:02 +11:00
Damien Miller	6d6c5d202f	- markus@cvs.openbsd.org 2002/03/06 00:23:27 [compat.c dh.c] undo	2002-03-07 12:58:42 +11:00
Damien Miller	6ba693f70e	- OpenBSD CVS Sync - markus@cvs.openbsd.org 2002/03/06 00:20:54 [compat.c dh.c] compat.c	2002-03-07 12:58:24 +11:00
Kevin Steves	664b243ae4	- stevesk@cvs.openbsd.org 2002/03/02 09:34:42 [LICENCE] correct copyright dates for scp license; ok markus@	2002-03-05 18:03:10 +00:00
Ben Lindstrom	01e7fa13b4	- (bal) Added contrib/aix/ to support BFF package generation provided by Darren Tucker <dtucker@zip.com.au>	2002-03-05 03:38:35 +00:00
Ben Lindstrom	795488785e	- markus@cvs.openbsd.org 2002/03/04 19:37:58 [channels.c] off by one; thanks to joost@pine.nl	2002-03-05 01:57:44 +00:00
Ben Lindstrom	6b28c35a04	- stevesk@cvs.openbsd.org 2002/03/04 18:30:23 [ssh-keyscan.c] handle connection close during read of protocol version string. fixes erroneous "bad greeting". ok markus@	2002-03-05 01:54:52 +00:00
Ben Lindstrom	05764b9286	- stevesk@cvs.openbsd.org 2002/03/04 17:27:39 [auth-krb5.c auth-options.h auth.h authfd.h authfile.h bufaux.h buffer.h channels.h cipher.h compat.h compress.h crc32.h deattack.c getput.h groupaccess.c misc.c mpaux.h packet.h readconf.h rsa.h scard.h servconf.h ssh-agent.c ssh.h ssh2.h sshpty.h sshtty.c ttymodes.h uuencode.c xmalloc.h] $OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add missing RCSID() to .c files and remove dup /$OpenBSD$/ from .c files. ok markus@	2002-03-05 01:53:02 +00:00
Ben Lindstrom	84fcb312ff	- markus@cvs.openbsd.org 2002/03/04 13:10:46 [misc.c] error-> debug, because O_NONBLOCK for /dev/null causes too many different errnos; ok stevesk@, deraadt@ unused include	2002-03-05 01:48:09 +00:00
Ben Lindstrom	d96c8b3b56	- markus@cvs.openbsd.org 2002/03/04 12:43:06 [auth-passwd.c auth-rh-rsa.c auth-rhosts.c] unused include	2002-03-05 01:45:56 +00:00
Ben Lindstrom	3fb5d00ffd	- markus@cvs.openbsd.org 2002/03/01 13:12:10 [auth.c match.c match.h] undo the 'delay hostname lookup' change match.c must not use compress.c (via canonhost.c/packet.c) thanks to wilfried@	2002-03-05 01:42:42 +00:00
Ben Lindstrom	6ef9ec6b6b	- stevesk@cvs.openbsd.org 2002/02/28 20:56:00 [auth.c] log user not allowed details, from dwd@bell-labs.com; ok markus@	2002-03-05 01:40:37 +00:00
Ben Lindstrom	ea03db9dbb	- stevesk@cvs.openbsd.org 2002/02/28 20:46:10 [sshd.8] -u0 DNS for user@host	2002-03-05 01:38:57 +00:00
Ben Lindstrom	778bf55d89	- stevesk@cvs.openbsd.org 2002/02/28 20:36:42 [sshd.8] DenyUsers allows user@host pattern also	2002-03-05 01:37:12 +00:00
Ben Lindstrom	916d83d208	- stevesk@cvs.openbsd.org 2002/02/28 19:36:28 [auth.c match.c match.h] delay hostname lookup until we see a ``@'' in DenyUsers and AllowUsers for sshd -u0; ok markus@	2002-03-05 01:35:23 +00:00
Ben Lindstrom	80cb27dd7c	- markus@cvs.openbsd.org 2002/02/28 15:46:33 [authfile.c kex.c kexdh.c kexgex.c key.c ssh-dss.c] add some const EVP_MD for openssl-0.9.7	2002-03-05 01:33:36 +00:00
Ben Lindstrom	733a2351f5	- stevesk@cvs.openbsd.org 2002/02/27 21:23:13 [canohost.c channels.c packet.c sshd.c] remove unneeded casts in [gs]etsockopt(); ok markus@	2002-03-05 01:31:28 +00:00
Ben Lindstrom	e86de51afb	- stevesk@cvs.openbsd.org 2002/02/26 20:03:51 [misc.c] use socklen_t	2002-03-05 01:28:14 +00:00
Ben Lindstrom	3612bda7fd	- deraadt@cvs.openbsd.org 2002/02/26 19:06:43 [sftp.1] no, look closely. the comma was highlighted. split .Ic even more	2002-03-05 01:26:38 +00:00
Ben Lindstrom	a48f3681f4	- mouring@cvs.openbsd.org 2002/02/26 19:04:37 [sftp.1] > Ic cannot have that many arguments; spotted by mouring@etoh.eviladmin.org Last Ic on the first line should not have a space between it and the final comma.	2002-03-05 01:24:52 +00:00
Ben Lindstrom	a54f61c1c0	- deraadt@cvs.openbsd.org 2002/02/26 18:52:32 [sftp.1] Ic cannot have that many arguments; spotted by mouring@etoh.eviladmin.org	2002-03-05 01:23:13 +00:00
Tim Rice	200a5c0581	correction to sig_atomic_t test	2002-02-26 22:12:34 -08:00
Tim Rice	7d2d1f1e67	correction to Bug 123 fix	2002-02-26 22:05:11 -08:00
Ben Lindstrom	88c0cd8596	- (bal) Imported missing fatal.c and fixed up Makefile.in	2002-02-26 19:24:21 +00:00
Ben Lindstrom	c58ab02e45	- markus@cvs.openbsd.org 2002/02/25 16:33:27 [ssh-keygen.c sshconnect2.c uuencode.c uuencode.h] more u_* fixes	2002-02-26 18:15:09 +00:00
Ben Lindstrom	1ebd7a5342	- stevesk@cvs.openbsd.org 2002/02/24 19:59:42 [channels.c misc.c] disable Nagle in connect_to() and channel_post_port_listener() (port forwarding endpoints). the intention is to preserve the on-the-wire appearance to applications at either end; the applications can then enable TCP_NODELAY according to their requirements. ok markus@	2002-02-26 18:12:51 +00:00
Ben Lindstrom	90fd814f90	- markus@cvs.openbsd.org 2002/02/24 19:14:59 [auth2.c authfd.c authfd.h authfile.c kexdh.c kexgex.c key.c key.h ssh-dss.c ssh-dss.h ssh-keygen.c ssh-rsa.c ssh-rsa.h sshconnect2.c] signed vs. unsigned: make size arguments u_int, ok stevesk@	2002-02-26 18:09:42 +00:00
Ben Lindstrom	e45a2cb2b7	- markus@cvs.openbsd.org 2002/02/24 18:31:09 [uuencode.c] typo in comment	2002-02-26 18:07:26 +00:00
Ben Lindstrom	4a7714a43a	- markus@cvs.openbsd.org 2002/02/24 16:58:32 [packet.c] make 'cp' unsigned and merge with 'ucp'; ok stevesk@	2002-02-26 18:04:38 +00:00
Ben Lindstrom	021fcd3a36	- markus@cvs.openbsd.org 2002/02/24 16:57:19 [sftp-client.c] early close(), missing free; ok stevesk@	2002-02-26 18:02:43 +00:00
Ben Lindstrom	13c5d3b370	- stevesk@cvs.openbsd.org 2002/02/24 16:09:52 [sshd.c] use u_char* here; ok markus@	2002-02-26 18:00:48 +00:00
Ben Lindstrom	14519086e4	- markus@cvs.openbsd.org 2002/02/23 17:59:02 [kex.c kexdh.c kexgex.c] don't allow garbage after payload.	2002-02-26 17:58:29 +00:00
Ben Lindstrom	9c8edc96fc	- markus@cvs.openbsd.org 2002/02/22 12:20:34 [log.c log.h ssh-keyscan.c] overwrite fatal() in ssh-keyscan.c; fixes pr 2354; ok provos@	2002-02-26 17:52:14 +00:00
Ben Lindstrom	351e919690	- (bal) Update sshd_config CVSID	2002-02-26 17:49:55 +00:00
Ben Lindstrom	b855028ff6	- markus@cvs.openbsd.org 2002/02/15 23:54:10 [auth-krb5.c] krb5_get_err_text() does not like context==NULL; he@nordu.net via google; ok provos@	2002-02-26 17:46:11 +00:00
Kevin Steves	a2b9607a86	- (stevesk) openbsd-compat/base64.h: typo in comment	2002-02-26 16:59:58 +00:00
Tim Rice	4cec93faed	Bug 12 [configure.ac] add sys/bitypes.h to int64_t tests based on patch by mooney@dogbert.cc.ndsu.nodak.edu (Tim Mooney) Bug 45 [configure.ac] modify skey test to work around conflict with autoconf reported by nolan@naic.edu (Michael Nolan) patch by Pekka Savola <pekkas@netcore.fi> Bug 74 [configure.ac defines.h] add sig_atomic_t test reported by dwd@bell-labs.com (Dave Dykstra) Bug 102 [defines.h] UNICOS fixes. patch by wendyp@cray.com [configure.ac Makefile.in] link libwrap only with sshd based on patch by Maciej W. Rozycki <macro@ds2.pg.gda.pl> Bug 123 link libpam only with sshd reported by peak@argo.troja.mff.cuni.cz (Pavel Kankovsky) [configure.ac defines.h] modify previous SCO3 fix to not break Solaris 7 [acconfig.h] remove unused HAVE_REGCOMP	2002-02-26 08:40:48 -08:00
Ben Lindstrom	c004135b72	- (bal) Last AIX patch. Moved aix_usrinfo() outside of do_setuserconext() since we need more session information than provided by that function.	2002-02-25 15:48:02 +00:00
Tim Rice	e06ae4a4bc	[loginrec.c session.c sshlogin.c sshlogin.h] Bug 84 patch by wknox@mitre.org (William Knox). [sshlogin.h] declare record_utmp_only for session.c	2002-02-24 17:56:46 -08:00
Ben Lindstrom	839ac4f8aa	- (bal) Part two.. Drop unused AIX header, fix up missing char *cp. All that is left is handling aix_usrinfo().	2002-02-24 20:42:46 +00:00
Ben Lindstrom	127398c6ec	- (bal) Drop Session *s usage in ports-aix.[ch] and pass just what we need to do the jobs (AIX still does not fully compile, but that is coming).	2002-02-24 20:25:46 +00:00
Ben Lindstrom	3107efc12a	- (bal) Minor session.c for cygwin. mispelt 'is_winnt' variable.	2002-02-21 15:37:02 +00:00
Ben Lindstrom	e37f63ffa0	- markus@cvs.openbsd.org 2002/02/16 00:51:44 [session.c] typo - (bal) CVS ID sync since the last two patches were merged mistakenly	2002-02-19 21:58:19 +00:00
Ben Lindstrom	4e97e85c03	- (bal) OpenBSD CVS Sync - markus@cvs.openbsd.org 2002/02/15 23:11:26 [session.c] split do_child(), ok mouring@ Compiles under Redhat 7.2.. I cannot give any promises.. but I spent a good hour and half ensure all the right bits are in the right spots.. and it does seem to help out quite a bit for readiblity.	2002-02-19 21:50:43 +00:00
Ben Lindstrom	a9c039cf04	- (bal) Migrated AIX getuserattr and usrinfo code to openbsd-compat/port-aix.[c] to improve readilbity of do_child() and simplify our diffs against upstream source.	2002-02-19 20:27:55 +00:00
Ben Lindstrom	f095a85882	- (bal) Migrate IRIX jobs/projects/audit/etc code to openbsd-compat/port-irix.[ch] to improve readiblity of do_child()	2002-02-19 20:02:48 +00:00
Damien Miller	95ca7e9f1f	- deraadt@cvs.openbsd.org 2002/02/19 02:50:59 [sshd_config] stategy is not an english word	2002-02-19 15:29:02 +11:00
Damien Miller	85221b2818	- markus@cvs.openbsd.org 2002/02/18 17:55:20 [ssh.1] -q: Fatal errors are _not_ displayed.	2002-02-19 15:27:23 +11:00
Damien Miller	21cf4e0628	- markus@cvs.openbsd.org 2002/02/18 13:05:32 [cipher.c cipher.h] switch to EVP, ok djm@ deraadt@	2002-02-19 15:26:42 +11:00
Damien Miller	a93c6d87ef	- millert@cvs.openbsd.org 2002/02/17 19:42:32 [auth.h] Manual cleanup of remaining userland __P use (excluding packages maintained outside the tree)	2002-02-19 15:25:29 +11:00
Damien Miller	b046211483	- millert@cvs.openbsd.org 2002/02/16 21:27:53 [auth.h] Part one of userland __P removal. Done with a simple regexp with some minor hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.	2002-02-19 15:24:43 +11:00
Damien Miller	993dd55094	- stevesk@cvs.openbsd.org 2002/02/16 20:40:08 [ssh-keygen.c] default to rsa keyfile path for non key generation operations where keyfile not specified. fixes core dump in those cases. ok markus@	2002-02-19 15:22:47 +11:00
Damien Miller	55fafa09f2	- stevesk@cvs.openbsd.org 2002/02/16 14:53:37 [ssh-keygen.1] -t required now for key generation	2002-02-19 15:22:07 +11:00
Damien Miller	963f6b25e2	- markus@cvs.openbsd.org 2002/02/14 23:41:01 [authfile.c cipher.c cipher.h kex.c kex.h packet.c] hide some more implementation details of cipher.[ch] and prepares for move to EVP, ok deraadt@	2002-02-19 15:21:23 +11:00
Damien Miller	19a5945105	- markus@cvs.openbsd.org 2002/02/14 23:28:00 [channels.h session.c ssh.c] increase the SSH v2 window size to 4 packets. comsumes a little bit more memory for slow receivers but increases througput.	2002-02-19 15:20:57 +11:00
Damien Miller	2aa0c1995c	- markus@cvs.openbsd.org 2002/02/14 23:27:59 [channels.c] increase the SSH v2 window size to 4 packets. comsumes a little bit more memory for slow receivers but increases througput.	2002-02-19 15:20:08 +11:00
Damien Miller	7af3d10588	- mpech@cvs.openbsd.org 2002/02/13 08:33:47 [ssh-keyscan.1] When you give command examples and etc., in a manual page prefix them with: $ command or # command	2002-02-19 15:19:42 +11:00
Tim Rice	92c1fc41fe	newer config.guess from ftp://ftp.gnu.org/gnu/config/config.guess	2002-02-18 15:18:56 -08:00
Damien Miller	72476d4b24	- (djm) Bug #114 - not starting PAM for SSH protocol 1 invalid users	2002-02-14 20:39:49 +11:00
Damien Miller	d054b07cc9	- (djm) Don't use system sys/queue.h on AIX. Report from gert@greenie.muc.de	2002-02-14 08:44:04 +11:00
Tim Rice	57e3fa8c95	Add rpc/rpc.h for INADDR_LOOPBACK on SCO OSR3	2002-02-13 10:14:52 -08:00
Damien Miller	150c8b5578	- (djm) Bug #106 : Add --without-rpath configure option. Patch from Nicolas.Williams@ubsw.com	2002-02-13 23:06:56 +11:00
Damien Miller	8e3bdca1da	- (djm) Sync openbsd-compat with OpenBSD CVS too	2002-02-13 16:00:15 +11:00
Damien Miller	3db5f530d0	- djm@cvs.openbsd.org 2002/02/13 00:59:23 [sftp-client.c sftp-client.h sftp-glob.c sftp-glob.h sftp.h] [sftp-int.c sftp-int.h] API cleanup and backwards compat for filexfer v.0 servers; ok markus@	2002-02-13 14:10:32 +11:00
Damien Miller	3606ee2938	- markus@cvs.openbsd.org 2002/02/13 00:39:15 [readpass.c] readpass.c is not longer from UCB, since we now use readpassphrase(3)	2002-02-13 14:05:23 +11:00
Damien Miller	00c9217558	- markus@cvs.openbsd.org 2002/02/13 00:28:13 [sftp-server.c] handle SSH2_FILEXFER_ATTR_SIZE in SSH2_FXP_(F)SETSTAT; ok djm@	2002-02-13 14:05:00 +11:00
Damien Miller	5873dfd829	- djm@cvs.openbsd.org 2002/02/12 12:44:46 [sftp-client.c] Let overlapped upload path handle servers which reorder ACKs. This may be permitted by the protocol spec; ok markus@	2002-02-13 14:04:37 +11:00
Damien Miller	16a133339a	- djm@cvs.openbsd.org 2002/02/12 12:32:27 [sftp.1 sftp.c sftp-client.c sftp-client.h sftp-int.c] Perform multiple overlapping read/write requests in file transfer. Mostly done by Tobias Ringstrom <tori@ringstrom.mine.nu>; ok markus@	2002-02-13 14:03:56 +11:00
Damien Miller	afc7a5d774	- markus@cvs.openbsd.org 2002/02/11 16:21:42 [match.c] support up to 40 algorithms per proposal	2002-02-13 13:55:30 +11:00
Damien Miller	6a47f30c55	- markus@cvs.openbsd.org 2002/02/11 16:19:39 [sshd.c] include md5.h not hmac.h	2002-02-13 13:55:06 +11:00
Damien Miller	654c03fd06	- markus@cvs.openbsd.org 2002/02/11 16:17:55 [sshd.c] do not complain about port > 1024 if rhosts-auth is disabled	2002-02-13 13:54:44 +11:00
Damien Miller	2ce18dabf3	- markus@cvs.openbsd.org 2002/02/11 16:15:46 [sshconnect1.c] include md5.h, not evp.h	2002-02-13 13:54:27 +11:00
Damien Miller	bc27d4e987	- markus@cvs.openbsd.org 2002/02/11 16:10:15 [kex.c] restore kexinit handler if we reset the dispatcher, this unbreaks rekeying s/kex_clear_dispatch/kex_reset_dispatch/	2002-02-13 13:54:06 +11:00
Damien Miller	afcc22542e	- deraadt@cvs.openbsd.org 2002/02/10 01:07:05 [readconf.h sshd.8] more /etc/ssh; openbsd@davidkrause.com	2002-02-10 18:32:55 +11:00
Damien Miller	05eda437a6	- (djm) OpenBSD CVS Sync - deraadt@cvs.openbsd.org 2002/02/09 17:37:34 [pathnames.h session.c ssh.1 sshd.8 sshd_config ssh-keyscan.1] move ssh config files to /etc/ssh - (djm) Adjust portable Makefile.in tnd ssh-rand-helper.c o match	2002-02-10 18:32:28 +11:00
Damien Miller	4860650842	- markus@cvs.openbsd.org 2002/02/07 09:35:39 [ssh.c] remove bogus comments	2002-02-08 22:07:33 +11:00
Damien Miller	699d003e3a	- markus@cvs.openbsd.org 2002/02/06 14:55:16 [channels.c clientloop.c serverloop.c ssh.c] channel_new never returns NULL, mouring@; ok djm@	2002-02-08 22:07:16 +11:00
Damien Miller	f3dcf1fc88	- markus@cvs.openbsd.org 2002/02/06 14:37:22 [session.c] minor KNF	2002-02-08 22:06:48 +11:00
Damien Miller	025e01c7f0	- mpech@cvs.openbsd.org 2002/02/06 14:27:23 [sftp.c] sync usage() with manual.	2002-02-08 22:06:29 +11:00
Damien Miller	81b6e787a0	- markus@cvs.openbsd.org 2002/02/06 14:22:42 [sftp.1] sort options; ok mpech@, stevesk@	2002-02-08 22:06:03 +11:00
Damien Miller	a500cd608e	- markus@cvs.openbsd.org 2002/02/05 14:32:55 [channels.c channels.h ssh.c] merge channel_request() into channel_request_start()	2002-02-08 22:04:26 +11:00
Damien Miller	8829d3669d	- djm@cvs.openbsd.org 2002/02/05 00:00:46 [sftp.1 sftp.c sftp-client.c sftp-client.h sftp-int.c] Add "-B" option to specify copy buffer length (default 32k); ok markus@	2002-02-08 22:04:05 +11:00
Damien Miller	e8c9ed436a	- stevesk@cvs.openbsd.org 2002/02/04 20:41:16 [ssh-agent.1] more sync for default ssh-add identities; ok markus@	2002-02-08 22:02:16 +11:00
Damien Miller	5aa5d78e40	- (djm) OpenBSD CVS Sync - markus@cvs.openbsd.org 2002/02/04 12:15:25 [sshd.c] add SYSLOG_FACILITY_NOT_SET = -1, SYSLOG_LEVEL_NOT_SET = -1, fixes arm/netbsd; based on patch from bjh21@netbsd.org; ok djm@	2002-02-08 22:01:54 +11:00
Damien Miller	f3451a2181	- (djm) Cleanup after sync: - :%s/reverse_mapping_check/verify_reverse_mapping/g	2002-02-05 12:40:46 +11:00
Damien Miller	cb8ea157b8	- djm@cvs.openbsd.org 2002/02/05 00:00:46 [sftp.1 sftp.c sftp-client.c sftp-client.h sftp-int.c] Add "-B" option to specify copy buffer length (default 32k); ok markus@	2002-02-05 12:27:58 +11:00
Damien Miller	d14ee1e29c	- djm@cvs.openbsd.org 2002/02/04 21:53:12 [sftp.1 sftp.c] Add "-P" option to directly connect to a local sftp-server. Should be useful for regression testing; ok markus@	2002-02-05 12:27:31 +11:00
Damien Miller	ab57f35114	- stevesk@cvs.openbsd.org 2002/02/04 20:41:16 [ssh-add.1] more sync for default ssh-add identities; ok markus@	2002-02-05 12:26:58 +11:00
Damien Miller	fcd9320440	- markus@cvs.openbsd.org 2002/02/04 12:15:25 [log.c log.h readconf.c servconf.c] add SYSLOG_FACILITY_NOT_SET = -1, SYSLOG_LEVEL_NOT_SET = -1, fixes arm/netbsd; based on patch from bjh21@netbsd.org; ok djm@	2002-02-05 12:26:34 +11:00
Damien Miller	9b74bfc5be	- markus@cvs.openbsd.org 2002/02/04 11:58:10 [auth2.c] cross checking of announced vs actual pktype in pubkey/hostbaed auth; ok stevesk@	2002-02-05 12:26:03 +11:00
Damien Miller	4d4d53f399	- stevesk@cvs.openbsd.org 2002/02/04 00:53:39 [ssh-agent.c] unneeded includes	2002-02-05 12:25:28 +11:00
Damien Miller	d2b8f1657e	- stevesk@cvs.openbsd.org 2002/02/03 23:22:59 [ssh-agent.1] ssh-add also adds $HOME/.ssh/id_rsa and $HOME/.ssh/id_dsa now.	2002-02-05 12:24:19 +11:00
Damien Miller	9749c0c972	- stevesk@cvs.openbsd.org 2002/02/03 22:35:57 [ssh.1 sshd.8] some KeepAlive cleanup/clarify; ok markus@	2002-02-05 12:23:58 +11:00
Damien Miller	68f45983b2	- markus@cvs.openbsd.org 2002/02/03 17:59:23 [sshconnect2.c] more cross checking if announced vs. used key type; ok stevesk@	2002-02-05 12:23:32 +11:00
Damien Miller	67f0bc043c	- markus@cvs.openbsd.org 2002/02/03 17:58:21 [channels.c channels.h ssh.c] generic callbacks are not really used, remove and add a callback for msg of type SSH2_MSG_CHANNEL_OPEN_CONFIRMATION ok djm@	2002-02-05 12:23:08 +11:00
Damien Miller	50e884d125	- markus@cvs.openbsd.org 2002/02/03 17:55:55 [channels.c channels.h] remove unused channel_input_channel_request	2002-02-05 12:22:08 +11:00
Damien Miller	c7ef63dd41	- markus@cvs.openbsd.org 2002/02/03 17:53:25 [auth1.c serverloop.c session.c session.h] don't use channel_input_channel_request and callback use new server_input_channel_req() instead: server_input_channel_req does generic request parsing on server side session_input_channel_req handles just session specific things now ok djm@	2002-02-05 12:21:42 +11:00
Damien Miller	664d6b9a8e	- markus@cvs.openbsd.org 2002/01/31 15:00:05 [serverloop.c] no need for WNOHANG; ok stevesk@	2002-02-05 12:20:16 +11:00
Damien Miller	9ab47eeb22	- markus@cvs.openbsd.org 2002/01/31 13:35:11 [kexdh.c kexgex.c] cross check announced key type and type from key blob	2002-02-05 12:19:52 +11:00
Damien Miller	07a2d429b2	- markus@cvs.openbsd.org 2002/01/29 23:50:37 [scp.1 ssh.1] mention exit status; ok stevesk@	2002-02-05 12:16:15 +11:00
Damien Miller	5fab4b9b1d	- markus@cvs.openbsd.org 2002/01/29 22:46:41 [session.c] don't depend on servconf.c; ok djm@	2002-02-05 12:15:07 +11:00
Damien Miller	c313be2756	- markus@cvs.openbsd.org 2002/01/29 16:41:19 [ssh-add.1] add DIAGNOSTICS; ok stevesk@	2002-02-05 12:14:41 +11:00
Damien Miller	baa0870852	- stevesk@cvs.openbsd.org 2002/01/29 16:29:02 [session.c] limit subsystem length in log; ok markus@	2002-02-05 12:14:10 +11:00
Damien Miller	c5d8635d6a	- markus@cvs.openbsd.org 2002/01/29 14:32:03 [auth2.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c canohost.c servconf.c servconf.h session.c sshd.8 sshd_config] s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@	2002-02-05 12:13:41 +11:00
Damien Miller	43cba34b64	- markus@cvs.openbsd.org 2002/01/29 14:27:57 [ssh-add.c] exit 2 if no agent, exit 1 if list fails; debian#61078; ok djm@	2002-02-05 12:12:49 +11:00
Damien Miller	35b13d633b	- stevesk@cvs.openbsd.org 2002/01/27 18:08:17 [ssh.c] handle simple case to identify FamilyLocal display; ok markus@	2002-02-05 12:12:09 +11:00
Damien Miller	95c249ff47	- stevesk@cvs.openbsd.org 2002/01/27 14:57:46 [channels.c servconf.c servconf.h session.c sshd.8 sshd_config] add X11UseLocalhost; ok markus@	2002-02-05 12:11:34 +11:00
Damien Miller	512bccbb5a	- stevesk@cvs.openbsd.org 2002/01/26 16:44:22 [includes.h session.c] revert code to add x11 localhost display authorization entry for hostname/unix:d and uts.nodename/unix:d if nodename was different than hostname. just add entry for unix:d instead. ok markus@	2002-02-05 12:11:02 +11:00
Damien Miller	3672e4bc7a	- markus@cvs.openbsd.org 2002/01/25 22:07:40 [kex.c kexdh.c kexgex.c key.c mac.c] use EVP_MD_size(evp_md) and not evp_md->md_size; ok steveks@	2002-02-05 11:54:07 +11:00
Damien Miller	c516e928cd	- markus@cvs.openbsd.org 2002/01/25 21:42:11 [ssh-dss.c ssh-rsa.c] use static EVP_MAX_MD_SIZE buffers for EVP_DigestFinal; ok stevesk@ don't use evp_md->md_size, it's not public.	2002-02-05 11:53:43 +11:00
Damien Miller	3a8262ffcc	- markus@cvs.openbsd.org 2002/01/25 21:00:24 [sshconnect2.c] unused include	2002-02-05 11:53:15 +11:00
Damien Miller	4d007769bf	- stevesk@cvs.openbsd.org 2002/01/24 21:13:23 [packet.c] need misc.h for set_nodelay()	2002-02-05 11:52:54 +11:00
Damien Miller	398e1cfa23	- (djm) OpenBSD CVS Sync - stevesk@cvs.openbsd.org 2002/01/24 21:09:25 [channels.c misc.c misc.h packet.c] add set_nodelay() to set TCP_NODELAY on a socket (prep for nagle tuning). no nagle changes just yet; ok djm@ markus@	2002-02-05 11:52:13 +11:00
Tim Rice	1e2c600892	[configure.ac] fix logic on when ssh-rand-helper is installed. [sshd_config] put back in line that tells what PATH was compiled into sshd.	2002-01-30 22:14:03 -08:00
Damien Miller	8eb7141758	- (djm) Delay PRNG seeding until we need it in ssh-keygen, from markus@	2002-01-30 09:37:06 +11:00
Damien Miller	6677d419de	- (djm) Don't grab Xserver or pointer by default. x11-ssh-askpass doesn't and grabbing can cause deadlocks with kinput2.	2002-01-25 00:59:25 +11:00
Damien Miller	414642b26f	- (djm) Don't grab Xserver by default. x11-ssh-askpass doesn't and grabbing can cause deadlocks with kinput2	2002-01-25 00:46:04 +11:00
Kevin Steves	020daf437b	- (stevesk) Makefile.in: bug #61 ; delete commented line for now.	2002-01-23 23:26:43 +00:00
Ben Lindstrom	fa9b641eb0	- (bal) reverted out of 5/2001 change to atexit(). I assume I did it to handle SonyOS. If that is the case than we will do a special case for them.	2002-01-23 06:54:30 +00:00
Damien Miller	e996d72e02	- (djm) Use case statements in autoconf to clean up some tests	2002-01-23 11:20:59 +11:00
Kevin Steves	7dc8197f8b	- (stevesk) fix --with-zlib=	2002-01-22 21:59:31 +00:00
Damien Miller	6385ba0228	- (djm) Fix non-standard shell syntax in autoconf. Patch from Dave Dykstra <dwd@bell-labs.com>	2002-01-23 08:12:36 +11:00
Damien Miller	ec52d7c093	- (djm) Use local sys/queue.h if necessary in ssh-agent.c	2002-01-22 23:52:17 +11:00
Damien Miller	28e4d8f87b	- (djm) Recent Glibc includes an incompatible sys/queue.h. Treat it as bogus in configure	2002-01-22 23:51:42 +11:00
Damien Miller	1fc2343e35	- (djm) Make auth2-pam.c compile again after dispatch.h and packet.h changes	2002-01-22 23:43:12 +11:00
Damien Miller	4fbf08a8f0	- stevesk@cvs.openbsd.org 2002/01/22 02:52:41 [servconf.c] typo in error message; from djast@cs.toronto.edu	2002-01-22 23:35:09 +11:00
Damien Miller	73f1074272	- markus@cvs.openbsd.org 2002/01/21 23:27:10 [channels.c nchan.c] cleanup channels faster if the are empty and we are in drain-state; ok deraadt@	2002-01-22 23:34:52 +11:00
Damien Miller	914bef437e	- markus@cvs.openbsd.org 2002/01/21 22:30:12 [cipher.c compat.c myproposal.h] remove "rijndael-*", just use "aes-" since this how rijndael is called in the drafts; ok stevesk@	2002-01-22 23:34:35 +11:00
Damien Miller	49d795c647	- markus@cvs.openbsd.org 2002/01/21 15:13:51 [sshconnect.c] use read_passphrase+ECHO in confirm(), allows use of ssh-askpass for hostkey confirm.	2002-01-22 23:34:12 +11:00
Damien Miller	df64a682f1	- stevesk@cvs.openbsd.org 2002/01/18 20:46:34 [sshd.8] clarify Allow(Groups\|Users) and Deny(Groups\|Users); suggestion from allard@oceanpark.com; ok markus@	2002-01-22 23:33:45 +11:00
Damien Miller	4a8ed54361	- stevesk@cvs.openbsd.org 2002/01/18 18:14:17 [authfd.c bufaux.c buffer.c cipher.c packet.c ssh-agent.c ssh-keygen.c] unneeded cast cleanup; ok markus@	2002-01-22 23:33:31 +11:00
Damien Miller	9c3f9505d9	- stevesk@cvs.openbsd.org 2002/01/18 17:14:16 [sshd.8] correct Ciphers default; paola.mannaro@ubs.com	2002-01-22 23:33:15 +11:00
Damien Miller	5488b7ec4e	- stevesk@cvs.openbsd.org 2002/01/17 04:27:37 [log.c] casts to silence enum type warnings for bugzilla bug 37; ok markus@	2002-01-22 23:32:57 +11:00
Damien Miller	c497e38ce6	- stevesk@cvs.openbsd.org 2002/01/16 17:55:33 [ssh_config] correct some commented defaults. add Ciphers default. ok markus@	2002-01-22 23:32:39 +11:00
Damien Miller	fae2386cc9	- stevesk@cvs.openbsd.org 2002/01/16 17:42:33 [ssh.1] correct defaults for -i/IdentityFile; ok markus@	2002-01-22 23:32:26 +11:00
Damien Miller	2bec5c1543	- stevesk@cvs.openbsd.org 2002/01/16 17:40:23 [sshd_config] The stategy now used for options in the default sshd_config shipped with OpenSSH is to specify options with their default value where possible, but leave them commented. Uncommented options change a default value. Subsystem is currently the only default option changed. ok markus@	2002-01-22 23:32:07 +11:00
Damien Miller	b16461ce45	- markus@cvs.openbsd.org 2002/01/16 13:17:51 [channels.c channels.h serverloop.c ssh.c] wrapper for channel_setup_fwd_listener	2002-01-22 23:29:22 +11:00
Damien Miller	b51ed39161	- markus@cvs.openbsd.org 2002/01/14 13:57:03 [channels.h nchan.c] (c) 2002	2002-01-22 23:29:03 +11:00
Damien Miller	5144df9261	- markus@cvs.openbsd.org 2002/01/14 13:55:55 [channels.c channels.h nchan.c] remove function pointers for events, remove chan_init*; ok provos@	2002-01-22 23:28:45 +11:00
Damien Miller	472d05716a	- markus@cvs.openbsd.org 2002/01/14 13:41:13 [nchan.c] remove duplicated code; ok provos@	2002-01-22 23:28:28 +11:00
Damien Miller	ebc11d3012	- markus@cvs.openbsd.org 2002/01/14 13:40:10 [nchan.c] correct fn names for ssh2, do not switch from closed to closed; ok provos@	2002-01-22 23:28:13 +11:00
Damien Miller	fcfc43b617	- markus@cvs.openbsd.org 2002/01/14 13:34:07 [nchan.c] merge chan_[io]buf_empty[12]; ok provos@	2002-01-22 23:27:45 +11:00
Damien Miller	abea8ee1c3	- markus@cvs.openbsd.org 2002/01/13 21:31:20 [channels.h nchan.c] add chan_set_[io]state(), order states, state is now an u_int, simplifies debugging messages; ok provos@	2002-01-22 23:27:11 +11:00
Damien Miller	0e3b87279c	- markus@cvs.openbsd.org 2002/01/13 17:57:37 [auth2.c auth2-chall.c compat.c sshconnect2.c sshd.c] use buffer API and avoid static strings of fixed size; ok provos@/mouring@	2002-01-22 23:26:38 +11:00
Damien Miller	1a534ae97f	- provos@cvs.openbsd.org 2002/01/13 17:27:07 [ssh-agent.c] change to use queue.h macros; okay markus@	2002-01-22 23:26:13 +11:00
Damien Miller	df224031ca	- markus@cvs.openbsd.org 2002/01/12 13:10:29 [auth-skey.c] undo local change	2002-01-22 23:25:46 +11:00
Damien Miller	73f18346bc	- markus@cvs.openbsd.org 2002/01/11 23:26:30 [auth-skey.c] use snprintf; mouring@	2002-01-22 23:25:30 +11:00
Damien Miller	209ee4e368	- markus@cvs.openbsd.org 2002/01/11 23:02:51 [auth2-chall.c] use snprintf; mouring@	2002-01-22 23:25:08 +11:00
Damien Miller	85830d1dc0	- markus@cvs.openbsd.org 2002/01/11 23:02:18 [readpass.c] use _PATH_TTY	2002-01-22 23:24:51 +11:00
Damien Miller	a5ebe0c39d	- markus@cvs.openbsd.org 2002/01/11 20:14:11 [auth2-chall.c auth-skey.c] use strlcpy not strlcat; mouring@	2002-01-22 23:24:33 +11:00
Damien Miller	7d05339c70	- markus@cvs.openbsd.org 2002/01/11 13:39:36 [auth2.c dispatch.c dispatch.h kex.c] a single dispatch_protocol_error() that sends a message of type 'UNIMPLEMENTED' dispatch_range(): set handler for a ranges message types use dispatch_protocol_ignore() for authentication requests after successful authentication (the drafts requirement). serverloop/clientloop now send a 'UNIMPLEMENTED' message instead of exiting.	2002-01-22 23:24:13 +11:00
Damien Miller	84b8ab3eee	- markus@cvs.openbsd.org 2002/01/11 13:36:43 [ssh2.h] add defines for msg type ranges	2002-01-22 23:23:41 +11:00
Damien Miller	659811f7fc	- markus@cvs.openbsd.org 2002/01/11 10:31:05 [packet.c] handle received SSH2_MSG_UNIMPLEMENTED messages; ok djm@	2002-01-22 23:23:11 +11:00
Damien Miller	66ac6a43a8	- markus@cvs.openbsd.org 2002/01/10 12:47:59 [nchan.c] more unused code (with channels.c:1.156)	2002-01-22 23:22:44 +11:00
Damien Miller	4ce2595259	- markus@cvs.openbsd.org 2002/01/10 12:38:26 [nchan.c] remove dead code (skip drain)	2002-01-22 23:22:20 +11:00
Damien Miller	c3fa407073	- markus@cvs.openbsd.org 2002/01/10 11:24:04 [clientloop.c] handle SSH2_MSG_GLOBAL_REQUEST (just reply with failure); ok djm@	2002-01-22 23:21:58 +11:00
Damien Miller	056cf73d35	- markus@cvs.openbsd.org 2002/01/10 11:13:29 [serverloop.c] skip client_alive_check until there are channels; ok beck@	2002-01-22 23:21:39 +11:00
Damien Miller	76765c0b1a	- markus@cvs.openbsd.org 2002/01/09 17:26:35 [channels.c nchan.c] replace buffer_consume(b, buffer_len(b)) with buffer_clear(b); ok provos@	2002-01-22 23:21:15 +11:00
Damien Miller	de6987c2b9	- markus@cvs.openbsd.org 2002/01/09 17:16:00 [channels.c] merge channel_pre_open_15/channel_pre_open_20; ok provos@	2002-01-22 23:20:40 +11:00
Damien Miller	a1db12bac4	- markus@cvs.openbsd.org 2002/01/09 13:49:27 [ssh-keygen.c] append \n only for public keys	2002-01-22 23:20:15 +11:00
Damien Miller	70972eb388	- stevesk@cvs.openbsd.org 2002/01/05 21:51:56 [ssh.1 sshd.8] some missing and misplaced periods	2002-01-22 23:19:55 +11:00
Damien Miller	a90fc08b88	- markus@cvs.openbsd.org 2002/01/05 10:43:40 [channels.c] fix hanging x11 channels for rejected cookies (e.g. XAUTHORITY=/dev/null xbiff) bug #36, based on patch from djast@cs.toronto.edu	2002-01-22 23:19:38 +11:00
Damien Miller	7fc2373f17	- stevesk@cvs.openbsd.org 2002/01/04 18:14:16 [servconf.c sshd.8] protocol 2 HostKey code default is now /etc/ssh_host_rsa_key and /etc/ssh_host_dsa_key like we have in sshd_config. ok markus@	2002-01-22 23:19:11 +11:00
Damien Miller	f51b0e1a30	- stevesk@cvs.openbsd.org 2002/01/04 17:59:17 [readconf.c servconf.c] remove #ifdef _PATH_XAUTH/#endif; ok markus@	2002-01-22 23:18:49 +11:00
Damien Miller	56ccf41de2	- stevesk@cvs.openbsd.org 2002/01/03 04:11:08 [ssh_config] grammar in comment	2002-01-22 23:18:32 +11:00
Damien Miller	708d21c802	- stevesk@cvs.openbsd.org 2001/12/29 21:56:01 [authfile.c channels.c compress.c packet.c sftp-server.c ssh-agent.c ssh-keygen.c] remove unneeded casts and some char->u_char cleanup; ok markus@	2002-01-22 23:18:15 +11:00
Damien Miller	dc9e067614	- stevesk@cvs.openbsd.org 2001/12/28 22:37:48 [ssh.1 sshd.8] document LogLevel DEBUG[123]; ok markus@	2002-01-22 23:17:51 +11:00
Damien Miller	630d6f4479	- markus@cvs.openbsd.org 2001/12/28 15:06:00 [auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c dispatch.h kex.c kex.h serverloop.c ssh.c sshconnect2.c] remove plen from the dispatch fn. it's no longer used.	2002-01-22 23:17:30 +11:00
Damien Miller	dff5099f13	- markus@cvs.openbsd.org 2001/12/28 14:50:54 [auth1.c auth-rsa.c channels.c dispatch.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c] packet_read* no longer return the packet length, since it's not used.	2002-01-22 23:16:32 +11:00
Damien Miller	76e1e368b5	- markus@cvs.openbsd.org 2001/12/28 14:13:13 [bufaux.c bufaux.h packet.c] buffer_get_bignum: int -> void	2002-01-22 23:15:57 +11:00
Damien Miller	d432ccf740	- markus@cvs.openbsd.org 2001/12/28 13:57:33 [auth1.c kexdh.c kexgex.c packet.c packet.h sshconnect1.c sshd.c] packet_get_bignum* no longer returns a size	2002-01-22 23:14:44 +11:00
Damien Miller	29f75f5c25	oops, that last commit was really: - markus@cvs.openbsd.org 2001/12/28 12:14:27 [auth1.c auth2.c auth2-chall.c auth-rsa.c channels.c clientloop.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c] s/packet_done/packet_check_eom/ (end-of-message); ok djm@ with 47 more patchsets to go, I am not going to back out all the files for the sake of a commit message...	2002-01-22 23:14:10 +11:00
Damien Miller	48b03fc546	- markus@cvs.openbsd.org 2001/12/27 20:39:58 [auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c] get rid of packet_integrity_check, use packet_done() instead.	2002-01-22 23:11:40 +11:00
Damien Miller	66823cddbe	- markus@cvs.openbsd.org 2001/12/27 20:39:58 [auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c] get rid of packet_integrity_check, use packet_done() instead.	2002-01-22 23:11:38 +11:00
Damien Miller	d221ca6cc9	- markus@cvs.openbsd.org 2001/12/27 19:54:53 [auth1.c auth.h auth-rh-rsa.c] auth_rhosts_rsa now accept generic keys.	2002-01-22 23:11:00 +11:00
Damien Miller	9ef95ddcaf	- markus@cvs.openbsd.org 2001/12/27 19:37:23 [dh.c kexdh.c kexgex.c] always use BN_clear_free instead of BN_free	2002-01-22 23:10:33 +11:00
Damien Miller	040b64f60a	- markus@cvs.openbsd.org 2001/12/27 18:26:13 [authfile.c] missing include	2002-01-22 23:10:04 +11:00
Damien Miller	7d1ded4972	- stevesk@cvs.openbsd.org 2001/12/27 18:22:53 [sshd.8] clarify -p; ok markus@	2002-01-22 23:09:41 +11:00
Damien Miller	da7551677b	- markus@cvs.openbsd.org 2001/12/27 18:22:16 [auth1.c authfile.c auth-rsa.c dh.c kexdh.c kexgex.c key.c rsa.c scard.c ssh-agent.c sshconnect1.c sshd.c ssh-dss.c] call fatal() for openssl allocation failures	2002-01-22 23:09:22 +11:00
Damien Miller	154dda73a8	- markus@cvs.openbsd.org 2001/12/27 18:10:29 [ssh-keygen.c] -t is only needed for key generation (unbreaks -i, -e, etc).	2002-01-22 23:08:16 +11:00
Damien Miller	aef7a095c8	- markus@cvs.openbsd.org 2001/12/25 18:53:00 [auth1.c] be more carefull on allocation	2002-01-22 23:07:52 +11:00
Damien Miller	503761ac45	- markus@cvs.openbsd.org 2001/12/25 18:49:56 [key.c] be more careful on allocation	2002-01-22 23:07:21 +11:00
Damien Miller	a055c25d05	- deraadt@cvs.openbsd.org 2001/12/24 07:29:43 [ssh-add.c] try all listed keys.. how did this get broken? (oops - that was me)	2002-01-22 23:07:01 +11:00
Damien Miller	7c31809c4a	- markus@cvs.openbsd.org 2001/12/21 12:17:33 [serverloop.c] remove ifdef for USE_PIPES since fdin != fdout; ok djm@	2002-01-22 23:06:22 +11:00
Damien Miller	6e1057c2d7	- djm@cvs.openbsd.org 2001/12/21 10:06:43 [ssh-add.1 ssh-add.c] Try all standard key files (id_rsa, id_dsa, identity) when invoked with no arguments; ok markus@	2002-01-22 23:05:59 +11:00
Damien Miller	f451e22e21	- djm@cvs.openbsd.org 2001/12/21 08:53:45 [readpass.c] Avoid interruptable passphrase read; ok markus@	2002-01-22 23:05:31 +11:00
Damien Miller	a41c8b15bd	- djm@cvs.openbsd.org 2001/12/21 08:52:22 [ssh-keygen.1 ssh-keygen.c] Remove default (rsa1) key type; ok markus@	2002-01-22 23:05:08 +11:00
Damien Miller	ec932376b7	- (djm) autoconf hacking: - Add OpenSSL sanity check: verify that header version matches version reported by library	2002-01-22 22:16:03 +11:00
Damien Miller	c46cc5445d	- (djm) Fix some bugs I introduced into ssh-rand-helper yesterday	2002-01-22 21:58:27 +11:00
Damien Miller	6c21c51c48	- (djm) autoconf hacking: - We don't support --without-zlib currently, so don't allow it. - Rework cryptographic random number support detection. We now detect whether OpenSSL seeds itself. If it does, then we don't bother with the ssh-rand-helper program. You can force the use of ssh-rand-helper using the --with-rand-helper configure argument - Simplify and clean up ssh-rand-helper configuration	2002-01-22 21:57:53 +11:00
Damien Miller	7b10ef4877	- (djm) Rework ssh-rand-helper: - Reduce quantity of ifdef code, in preparation for ssh_rand_conf - Always seed from system calls, even when doing PRNGd seeding - Tidy and comment #define knobs - Remove unused facility for multiple runs through command list - KNF, cleanup, update copyright	2002-01-21 23:44:12 +11:00
Damien Miller	a234451a70	- (djm) Bug #50 - make autoconf entropy path checks more robust	2002-01-14 19:01:03 +11:00
Kevin Steves	2f8f6e3b1c	- (stevesk) defines.h: use "/var/spool/sockets/X11/%u" for HP-UX. does not depend on transition links. from Lutz Jaenicke.	2002-01-08 21:59:06 +00:00
Damien Miller	bb9ffc18ca	- (djm) Merge Cygwin copy_environment with do_pam_environment, removing fixed env var size limit in the process. Report from Corinna Vinschen <vinschen@redhat.com>	2002-01-08 10:59:32 +11:00
Kevin Steves	f49a1191c7	- (stevesk) defines.h: determine _PATH_UNIX_X; currently "/tmp/.X11-unix/X%u" for all platforms except HP-UX, which is "/usr/spool/sockets/X11/%u".	2002-01-06 02:32:57 +00:00
Kevin Steves	0bd4b34c9b	- (stevesk) fix spurious ; from NCR change.	2002-01-05 23:24:27 +00:00
Ben Lindstrom	381d8d9d89	- (bal) NCR requies use_pipes to operate correctly.	2002-01-05 17:15:30 +00:00
Damien Miller	f9661094e5	- (djm) Use bigcrypt() on systems with SCO_PROTECTED_PW. Patch from Roger Cornelius <rac@tenzing.org>	2002-01-03 10:30:56 +11:00
Damien Miller	b65a93d3a6	test openssh-commits list	2001-12-31 11:59:53 +11:00
Damien Miller	bc5239bd62	testing again	2001-12-31 11:55:59 +11:00
Damien Miller	6a568f3ca9	- (djm) Typo in contrib/cygwin/README Fix from Corinna Vinschen <vinschen@redhat.com>	2001-12-29 14:10:09 +11:00
Damien Miller	0dea79d6b6	- (djm) Apply Cygwin pointer deref fix from Corinna Vinschen <vinschen@redhat.com> Could be abused to guess valid usernames	2001-12-29 14:08:28 +11:00
Damien Miller	6cb127fc14	- (djm) Remove recommendation to use GNU make, we should support most make programs.	2001-12-28 09:57:33 +11:00
Kevin Steves	9443508b96	- (stevesk) [Makefile.in ssh-rand-helper.c] portable lib and __progname support for ssh-rand-helper; ok djm@	2001-12-25 04:32:58 +00:00
Ben Lindstrom	2ad31ee68a	- (bal) Removed contrib/chroot.diff and noted in contrib/README that it was not being maintained.	2001-12-24 02:59:19 +00:00
Damien Miller	62116dcc0a	- (djm) Ignore fix & patchlevel in OpenSSL version check. Patch from solar@openwall.com - (djm) Rework entropy code. If the OpenSSL PRNG is has not been internally seeded, execute a subprogram "ssh-rand-helper" to obtain some entropy for us. Rewrite the old in-process entropy collecter as an example ssh-rand-helper. - (djm) Always perform ssh_prng_cmds path lookups in configure, even if we don't end up using ssh_prng_cmds (so we always get a valid file)	2001-12-24 01:41:47 +11:00
Damien Miller	278f907a2d	- djm@cvs.openbsd.org 2001/12/20 22:50:24 [auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c] [dispatch.h kex.c kex.h packet.c packet.h serverloop.c ssh.c] [sshconnect2.c] Conformance fix: we should send failing packet sequence number when responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by yakk@yakk.dot.net; ok markus@	2001-12-21 15:00:19 +11:00
Damien Miller	e737856350	- markus@cvs.openbsd.org 2001/12/20 16:37:29 [channels.c channels.h session.c] setup x11 listen socket for just one connect if the client requests so. (v2 only, but the openssh client does not support this feature).	2001-12-21 14:58:35 +11:00
Damien Miller	5a6b4fe225	- stevesk@cvs.openbsd.org 2001/12/19 17:16:13 [authfile.c bufaux.c bufaux.h buffer.c buffer.h packet.c packet.h ssh.c] change the buffer/packet interface to use void* vs. char*; ok markus@	2001-12-21 14:56:54 +11:00
Damien Miller	f6681a3a96	- markus@cvs.openbsd.org 2001/12/19 16:09:39 [serverloop.c] fix race between SIGCHLD and select with an additional pipe. writing to the pipe on SIGCHLD wakes up select(). using pselect() is not portable and siglongjmp() ugly. W. R. Stevens suggests similar solution. initial idea by pmenage@ensim.com; ok deraadt@, djm@	2001-12-21 14:53:11 +11:00
Damien Miller	9f0f5c64bc	- deraadt@cvs.openbsd.org 2001/12/19 07:18:56 [auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h] [auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c] [cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c] [match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c] [servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c] [sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c] [sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config] [ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c] basic KNF done while i was looking for something else	2001-12-21 14:45:46 +11:00
Damien Miller	89681214ca	- jakob@cvs.openbsd.org 2001/12/18 10:06:24 [auth-rsa.c] log fingerprint on successful public key authentication, simplify usage of key structs; ok markus@	2001-12-21 12:52:39 +11:00
Damien Miller	da9edcabf8	- jakob@cvs.openbsd.org 2001/12/18 10:05:15 [auth2.c] log fingerprint on successful public key authentication; ok markus@	2001-12-21 12:48:54 +11:00
Damien Miller	5b2aea9494	- jakob@cvs.openbsd.org 2001/12/18 10:04:21 [auth.h hostfile.c hostfile.h] remove auth_rsa_read_key, make hostfile_ready_key non static; ok markus@	2001-12-21 12:47:09 +11:00
Damien Miller	83c02ef623	- markus@cvs.openbsd.org 2001/12/10 20:34:31 [ssh-keyscan.c] check that server supports v1 for -t rsa1, report from wirth@dfki.de	2001-12-21 12:45:43 +11:00
Damien Miller	72c336def6	- stevesk@cvs.openbsd.org 2001/12/10 16:45:04 [sshd.c] possible fd leak on error; ok markus@	2001-12-21 12:44:28 +11:00
Damien Miller	ee11625d43	- markus@cvs.openbsd.org 2001/12/09 18:45:56 [auth2.c auth2-chall.c auth.h] add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions, fixes memleak.	2001-12-21 12:42:34 +11:00
Damien Miller	3afe375fd2	- stevesk@cvs.openbsd.org 2001/12/08 17:49:28 [channels.c pathnames.h] use only one path to X11 UNIX domain socket vs. an array of paths to try. report from djast@cs.toronto.edu. ok markus@	2001-12-21 12:39:51 +11:00
Damien Miller	faf2f6483a	- (djm) Add option to gnome-ssh-askpass to stop it from grabbing the X server. I have found this necessary to avoid server hangs with X input extensions (e.g. kinput2). Enable by setting the environment variable "GNOME_SSH_ASKPASS_NOGRAB"	2001-12-21 10:28:07 +11:00
Kevin Steves	366298c696	- (stevesk) OpenBSD CVS sync X11 localhost display - stevesk@cvs.openbsd.org 2001/11/29 14:10:51 [channels.h channels.c session.c] sshd X11 fake server will now listen on localhost by default: $ echo $DISPLAY localhost:12.0 $ netstat -an\|grep 6012 tcp 0 0 127.0.0.1.6012 . LISTEN tcp6 0 0 ::1.6012 . LISTEN sshd_config gatewayports=yes can be used to revert back to the old behavior. will control this with another option later. ok markus@ - stevesk@cvs.openbsd.org 2001/12/19 08:43:11 [includes.h session.c] handle utsname.nodename case for FamilyLocal X authorization; ok markus@	2001-12-19 17:58:01 +00:00
Ben Lindstrom	73f57be500	- stevesk@cvs.openbsd.org 2001/12/06 18:20:32 [channels.c] disable nagle for X11 fake server and client TCPs. from netbsd. ok markus@	2001-12-07 17:28:34 +00:00
Ben Lindstrom	ccd8d07b3c	- stevesk@cvs.openbsd.org 2001/12/06 18:09:23 [channels.c session.c] strncpy->strlcpy. remaining strncpy's are necessary. ok markus@	2001-12-07 17:26:48 +00:00
Ben Lindstrom	e181a4d294	- stevesk@cvs.openbsd.org 2001/12/06 18:02:32 [channels.c sshconnect.c] shutdown(sock, SHUT_RDWR) not needed here; ok markus@	2001-12-07 17:24:49 +00:00
Ben Lindstrom	c97b1affc5	- (bal) PCRE no longer required. Banished from the source along with fake-regex.h	2001-12-07 17:20:47 +00:00
Ben Lindstrom	ade03f6bad	- markus@cvs.openbsd.org 2001/12/06 13:30:06 [servconf.c servconf.h sshd.8 sshd.c] add -o to sshd, too. ok deraadt@ - (bal) Minor white space fix up in servconf.c	2001-12-06 18:22:17 +00:00
Ben Lindstrom	9eab262f1c	- markus@cvs.openbsd.org 2001/12/05 16:54:51 [compat.c match.c match.h] make theo and djm happy: bye bye regexp	2001-12-06 18:06:05 +00:00
Ben Lindstrom	ff4a14f809	- markus@cvs.openbsd.org 2001/12/05 15:04:48 [version.h] post 3.0.2	2001-12-06 18:02:59 +00:00
Ben Lindstrom	1c37c6a518	- deraadt@cvs.openbsd.org 2001/12/05 10:06:12 [authfd.c authfile.c bufaux.c channels.c compat.c kex.c kexgex.c key.c misc.c packet.c servconf.c ssh-agent.c sshconnect2.c sshconnect.c sshd.c ssh-dss.c ssh-keygen.c ssh-rsa.c] minor KNF	2001-12-06 18:00:18 +00:00
Ben Lindstrom	3c36bb29ca	- itojun@cvs.openbsd.org 2001/12/05 03:56:39 [auth1.c auth2.c canohost.c channels.c deattack.c packet.c scp.c sshconnect2.c] make it compile with more strict prototype checking	2001-12-06 17:55:26 +00:00
Ben Lindstrom	f8f065bc75	- itojun@cvs.openbsd.org 2001/12/05 03:50:01 [clientloop.c serverloop.c sshd.c] deal with LP64 printf issue with sig_atomic_t. from thorpej	2001-12-06 17:52:16 +00:00
Ben Lindstrom	d05487d1db	- deraadt@cvs.openbsd.org 2001/12/02 02:08:32 [sftp-common.c] zap };	2001-12-06 17:50:03 +00:00
Ben Lindstrom	38b951cdb2	- markus@cvs.openbsd.org 2001/12/01 21:41:48 [session.c sshd.8] don't pass user defined variables to /usr/bin/login	2001-12-06 17:47:47 +00:00
Ben Lindstrom	4a4bd719ea	- stevesk@cvs.openbsd.org 2001/11/30 20:39:28 [ssh.c] sscanf() length dependencies are clearer now; can also shrink proto and data if desired, but i have not done that. ok markus@	2001-12-06 17:45:19 +00:00
Ben Lindstrom	57fe5b592c	- markus@cvs.openbsd.org 2001/11/29 22:08:48 [auth-rsa.c] fix protocol error: send 'failed' message instead of a 2nd challenge (happens if the same key is in authorized_keys twice). reported Ralf_Meister@genua.de; ok djm@	2001-12-06 17:41:25 +00:00
Ben Lindstrom	623e4a0b1a	- stevesk@cvs.openbsd.org 2001/11/29 19:06:39 [channels.h] remove dead function prototype; ok markus@	2001-12-06 16:49:57 +00:00
Ben Lindstrom	5e71c54b8c	- markus@cvs.openbsd.org 2001/11/22 12:34:22 [clientloop.c serverloop.c sshd.c] volatile sig_atomic_t	2001-12-06 16:48:14 +00:00
Ben Lindstrom	28c603bf43	- stevesk@cvs.openbsd.org 2001/11/22 05:27:29 [ssh-keyscan.c] don't use "\n" in fatal()	2001-12-06 16:45:10 +00:00
Ben Lindstrom	4e366d5048	- stevesk@cvs.openbsd.org 2001/11/21 18:49:14 [ssh-keygen.1] more on passphrase construction; ok markus@	2001-12-06 16:43:21 +00:00
Ben Lindstrom	4cbc181983	- markus@cvs.openbsd.org 2001/11/21 15:51:24 [key.c] mem leak	2001-12-06 16:41:41 +00:00
Ben Lindstrom	70a290c5f7	- mpech@cvs.openbsd.org 2001/11/19 19:02:16 [deattack.c radix.c] kill more registers millert@ ok	2001-12-06 16:39:56 +00:00
Ben Lindstrom	11f790bbb1	- stevesk@cvs.openbsd.org 2001/11/19 18:40:46 [ssh-agent.1] clarify/state that private keys are not exposed to clients using the agent; ok markus@	2001-12-06 16:37:51 +00:00
Ben Lindstrom	d84df989db	- markus@cvs.openbsd.org 2001/11/19 11:20:21 [sshd.c] fd leak on HUP; ok stevesk@	2001-12-06 16:35:40 +00:00
Ben Lindstrom	65366a8c76	- stevesk@cvs.openbsd.org 2001/11/17 19:14:34 [auth2.c auth.c readconf.c servconf.c ssh-agent.c ssh-keygen.c] enum/int type cleanup where it made sense to do so; ok markus@	2001-12-06 16:32:47 +00:00
Ben Lindstrom	eaffb9d6b6	- markus@cvs.openbsd.org 2001/11/16 12:46:13 [ssh-keyscan.c] handle empty lines instead of dumping core; report from sha@sha-1.net	2001-12-06 16:28:19 +00:00
Ben Lindstrom	0795848def	- deraadt@cvs.openbsd.org 2001/11/14 20:45:08 [sshd.c] errno saving wrapping in a signal handler	2001-12-06 16:19:01 +00:00
Tim Rice	fe1d100ffd	[contrib/cygwin/README, openbsd-compat/bsd-cygwin_util.c, openbsd-compat/bsd-cygwin_util.h, openbsd-compat/daemon.c] Allow SSHD to install as service under WIndows 9x/Me [configure.ac] Fix to allow linking against PCRE on Cygwin Patches by Corinna Vinschen <vinschen@redhat.com>	2001-11-26 17:19:43 -08:00
Damien Miller	f7c6f95682	Release	2001-11-15 23:16:50 +11:00
Damien Miller	efdc1f179d	- (djm) Fix IPv4 default in ssh-keyscan. Spotted by Dan Astoorian <djast@cs.toronto.edu> Fix from markus@	2001-11-15 08:40:45 +11:00
Damien Miller	353f608740	- (djm) Bump RPM package versions	2001-11-14 00:05:57 +11:00
Damien Miller	c3070c8fe0	- markus@cvs.openbsd.org 2001/11/13 02:03:57 [version.h] enter 3.0.1	2001-11-14 00:05:29 +11:00
Damien Miller	527366ccba	- markus@cvs.openbsd.org 2001/11/12 11:17:07 [servconf.c] enable authorized_keys2 again. tested by fries@	2001-11-14 00:03:14 +11:00
Damien Miller	61b05cfdda	- (djm) OpenBSD CVS Sync - dugsong@cvs.openbsd.org 2001/11/11 18:47:10 [auth-krb5.c] fix krb5 authorization check. found by <jhawk@MIT.EDU>. from art@, deraadt@ ok	2001-11-14 00:02:10 +11:00
Damien Miller	e49d0966b5	- (djm) AIX login{success,failed} changes. Move loginsuccess call to do_authenticated. Call loginfailed for protocol 2 failures > MAX like we do for protocol 1. Reports from Ralf Wenk <wera0003@fh-karlsruhe.de>, K.Wolkersdorfer@fz-juelich.de and others	2001-11-13 23:46:18 +11:00
Damien Miller	056ca1eb47	- (djm) Fix early (and double) free of remote user when using Kerberos. Patch from Simon Wilkinson <simon@sxw.org.uk>	2001-11-13 11:20:07 +11:00
Damien Miller	726273e129	- (djm) Reorder portable-specific server options so that they come first. This should help reduce diff collisions for new server options (as they will appear at the end)	2001-11-12 11:40:11 +11:00
Damien Miller	75413ac499	- markus@cvs.openbsd.org 2001/11/11 13:02:31 [servconf.c] make AuthorizedKeysFile2 fallback to AuthorizedKeysFile if AuthorizedKeysFile is specified.	2001-11-12 11:14:35 +11:00
Damien Miller	084b8d4ed7	- markus@cvs.openbsd.org 2001/11/10 13:37:20 [packet.c] remove extra debug()	2001-11-12 11:07:58 +11:00
Damien Miller	eacff8533e	- markus@cvs.openbsd.org 2001/11/10 13:22:42 [ssh-rsa.c] KNF (unexpand)	2001-11-12 11:07:35 +11:00
Damien Miller	6a4a4b9290	- markus@cvs.openbsd.org 2001/11/10 13:19:45 [sshd.c] cleanup libwrap support (remove bogus comment, bogus close(), add debug, etc).	2001-11-12 11:07:11 +11:00
Damien Miller	e4a0ff4748	- markus@cvs.openbsd.org 2001/11/09 19:08:35 [sshd.c] remove extra trailing dot from log message; pilot@naughty.monkey.org	2001-11-12 11:06:54 +11:00
Damien Miller	79faeff2c1	- markus@cvs.openbsd.org 2001/11/09 18:59:23 [clientloop.c serverloop.c] don't memset too much memory, ok millert@ original patch from jlk@kamens.brookline.ma.us via nalin@redhat.com	2001-11-12 11:06:32 +11:00
Damien Miller	f655207a46	- markus@cvs.openbsd.org 2001/11/08 20:02:24 [auth.c] don't print ROOT in CAPS for the authentication messages, i.e. Accepted publickey for ROOT from 127.0.0.1 port 42734 ssh2 becomes Accepted publickey for root from 127.0.0.1 port 42734 ssh2	2001-11-12 11:06:06 +11:00
Damien Miller	705499b248	- markus@cvs.openbsd.org 2001/11/08 17:49:53 [ssh.1] mention setuid root requirements; noted by cnorris@csc.UVic.ca; ok stevesk@	2001-11-12 11:05:38 +11:00
Damien Miller	637b8ae2d4	- markus@cvs.openbsd.org 2001/11/08 10:51:08 [readpass.c] don't strdup too much data; from gotoh@taiyo.co.jp; ok millert.	2001-11-12 11:05:20 +11:00
Damien Miller	36f8dd3ed6	- markus@cvs.openbsd.org 2001/11/07 22:53:21 [channels.h] crank c->path to 256 so they can hold a full hostname; dwd@bell-labs.com	2001-11-12 11:04:54 +11:00
Damien Miller	6fd5b391f0	- markus@cvs.openbsd.org 2001/11/07 22:41:51 [auth2.c auth-rh-rsa.c] unused includes	2001-11-12 11:04:28 +11:00
Damien Miller	60d8aafcb1	- markus@cvs.openbsd.org 2001/11/07 22:12:01 [sshd.8] s/Keepalive/KeepAlive/; from openbsd@davidkrause.com	2001-11-12 11:04:05 +11:00
Damien Miller	36e603db86	- markus@cvs.openbsd.org 2001/11/07 22:10:28 [ssh-dss.c ssh-rsa.c] missing free and sync dss/rsa code.	2001-11-12 11:03:35 +11:00
Damien Miller	9af8c3c226	- markus@cvs.openbsd.org 2001/11/07 21:40:21 [ssh-rsa.c] ssh_rsa_sign/verify: SSH_BUG_SIGBLOB not supported	2001-11-12 11:03:16 +11:00
Damien Miller	9f64390f41	- markus@cvs.openbsd.org 2001/11/07 16:03:17 [packet.c packet.h sshconnect2.c] pad using the padding field from the ssh2 packet instead of sending extra ignore messages. tested against several other ssh servers.	2001-11-12 11:02:52 +11:00
Damien Miller	1f8dddc927	- markus@cvs.openbsd.org 2001/10/30 20:29:09 [ssh.1] ssh.1	2001-11-12 11:02:25 +11:00
Damien Miller	91c1847733	- markus@cvs.openbsd.org 2001/10/29 19:27:15 [sshconnect2.c] hostbased: check for client hostkey before building chost	2001-11-12 11:02:03 +11:00
Damien Miller	eb5fec6494	- markus@cvs.openbsd.org 2001/10/25 21:14:32 [ssh-keygen.1 ssh-keygen.c] better docu for fingerprinting, ok deraadt@	2001-11-12 10:52:44 +11:00
Damien Miller	96507ef535	- markus@cvs.openbsd.org 2001/10/24 19:57:40 [clientloop.c] make ~& (backgrounding) work again for proto v1; add support ~& for v2, too	2001-11-12 10:52:25 +11:00
Damien Miller	07cd5897f9	- markus@cvs.openbsd.org 2001/10/24 08:51:35 [clientloop.c ssh.c] ignore SIGPIPE early, makes ssh work if agent dies, netbsd-pr via itojun@	2001-11-12 10:52:03 +11:00
Damien Miller	595bb4f572	- markus@cvs.openbsd.org 2001/10/24 08:41:20 [ssh.c] remove unused	2001-11-12 10:51:40 +11:00
Damien Miller	00b61645eb	- markus@cvs.openbsd.org 2001/10/24 08:41:41 [sshd.c] mention remote port in debug message	2001-11-12 10:51:23 +11:00
Damien Miller	aba690c100	- (djm) Cygwin config patch from Corinna Vinschen <vinschen@redhat.com>	2001-11-12 10:36:21 +11:00
Damien Miller	f41d618fec	- (djm) Makefile correctness fix from Mark D. Baushke <mdb@juniper.net>	2001-11-12 10:34:22 +11:00
Kevin Steves	de77b464c6	- (stevesk) auth-pam.c: use do_pam_authenticate(PAM_DISALLOW_NULL_AUTHTOK) if permit_empty_passwd == 0 so null password check cannot be bypassed. jayaraj@amritapuri.com OpenBSD bug 2168	2001-11-09 20:22:16 +00:00
Tim Rice	e589a299a1	[ contrib/caldera/openssh.spec contrib/caldera/sshd.init] Updates from Raymund Will <ray@caldera.de> [acconfig.h configure.in] Clean up login checks. Problem reported by Jim Knoble <jmknoble@pobox.com>	2001-11-03 11:09:32 -08:00
Damien Miller	14a5c99b5c	- (djm) Compat define for OpenSSL < 0.9.6 (No OPENSSL_free)	2001-11-01 09:32:34 +11:00
Damien Miller	12eceb2efc	- (djm) Unsmoke drugs: config files should be noreplace.	2001-10-31 10:31:13 +11:00
Damien Miller	1c61324728	- (djm) Redhat RPM spec: remove noreplace from config files, allow IPv6 by default (can force IPv4 using --define "noipv6 1")	2001-10-30 22:03:51 +11:00
Tim Rice	b89e694b4c	[TODO defines.h loginrec.c] Change the references to configure.in to configure.ac	2001-10-29 18:50:39 -08:00
Kevin Steves	c3ad02e54b	- (stevesk) README: zlib location is http://www.gzip.org/zlib/	2001-10-28 18:10:22 +00:00
Kevin Steves	fe2f4a1e37	- (stevesk) Fix compile problem with PAM password change fix	2001-10-28 17:32:38 +00:00
Damien Miller	092564869a	- (djm) Fix for PAM password changes being echoed (from stevesk)	2001-10-28 22:36:55 +11:00
Damien Miller	c3aa3dd70c	- (djm) Disconnect if no tty and PAM reports password expired	2001-10-28 22:34:52 +11:00
Damien Miller	33cdd9ee7b	- (djm) Avoid bug in Solaris PAM libs	2001-10-28 22:33:48 +11:00
Tim Rice	ffdf4aa10f	[configure.ac] Fixes for ReliantUNIX (don't use libucb) Patch by Robert Dahlem <Robert.Dahlem@siemens.com>	2001-10-27 10:45:36 -07:00
Tim Rice	afefd16b6e	Fix install: when building outside of source tree and using --src=/full_path/to/openssh Patch by Mark D. Baushke <mdb@juniper.net>	2001-10-26 17:33:18 -07:00
Ben Lindstrom	9197c59493	- (bal) Set the correct current time in login_utmp_only(). Patch by Wayne Davison <wayned@users.sourceforge.net>	2001-10-26 15:56:55 +00:00
Tim Rice	02cebcd93b	Give path given in --with-xxx= for pcre,zlib, and tcp-wrappers precedence over system libraries and includes. Report from Dave Dykstra <dwd@bell-labs.com>	2001-10-25 10:01:30 -07:00
Ben Lindstrom	a0bd44cc49	- (bal) Use VDISABLE if _POSIX_VDISABLE is set in readpassphrase.c. Patch by todd@	2001-10-25 15:02:35 +00:00
Tim Rice	8ad995fd07	Use configure.ac instead of configure.in so older versions of autoconf don't even try.	2001-10-24 21:15:26 -07:00
Ben Lindstrom	3a78c84535	- (bal) Should be 3.0p1 not 3.0p2. Corrected version.h already.	2001-10-24 21:06:07 +00:00
Tim Rice	17b93e5d65	[configure.in] Fix test for broken dirname. Based on patch from Dave Dykstra <dwd@bell-labs.com>. Remove un-needed test for zlib.h. [contrib/caldera/openssh.spec, contrib/redhat/openssh.spec, contrib/suse/openssh.spec] Update version to match version.h	2001-10-23 22:36:54 -07:00
Ben Lindstrom	95276711eb	- (bal) Added 'PAM_TTY_KLUDGE' to Solaris platform.	2001-10-23 17:14:00 +00:00
Ben Lindstrom	ab73b9bd64	- (bal) Updated version to 3.0p1 in preparing for release.	2001-10-23 16:12:54 +00:00
Damien Miller	3a8a5cd5b0	- (djm) Fix fd leak in loginrec.c (ro fd to lastlog was left open). Report from Michal Zalewski <lcamtuf@coredump.cx>	2001-10-22 16:49:22 +10:00
Tim Rice	13aae5ee76	[configure.in] Clean up library testing. Add optional PATH to --with-pcre, --with-zlib, --with-tcp-wrappers based on patch by albert chin (china@thewrittenword.com) Re-arange AC_CHECK_HEADERS and AC_CHECK_FUNCS for eaiser reading of patches to configure.in Replace obsolete AC_STRUCT_ST_BLKSIZE with AC_CHECK_MEMBERS Add test for broken dirname() on Solaris 2.5.1 by Dan Astoorian <djast@cs.toronto.edu> [acconfig.h aclocal.m4 defines.h configure.in] Better socklen_t patch by albert chin (china@thewrittenword.com) [scp.c] Replace obsolete HAVE_ST_BLKSIZE with HAVE_STRUCT_STAT_ST_BLKSIZE [Makefile.in] When running make in top level, always do make in openbsd-compat patch by Dave Dykstra <dwd@bell-labs.com>	2001-10-21 17:53:58 -07:00
Ben Lindstrom	f2366b5a7d	- (bal) Fixed up init.d symlink issue and piddir stuff. Patches by Zoran Milojevic <Zoran.Milojevic@SS8.com> and j.petersen@msh.de	2001-10-19 20:36:23 +00:00
Ben Lindstrom	7a97339359	- (bal) Minor bug fix in contrib/solaris/opensshd.in .. $etcdir was not set right.	2001-10-12 21:52:39 +00:00
Ben Lindstrom	8b5ba1c39a	- (bal) First wave of contrib/solaris/ package upgrades. Still more work needs to be done, but it is a 190% better then the stuff we had before!	2001-10-12 20:30:52 +00:00
Damien Miller	4a820ea750	- (djm) Cleanup sshpty.c a little	2001-10-12 19:15:48 +10:00
Damien Miller	7c734056f4	- (djm) Clean some autoconf-2.52 junk when doing "make distclean"	2001-10-12 19:15:27 +10:00
Damien Miller	5f01280c79	- (djm) "make veryclean" fix from Tom Holroyd <tomh@po.crl.go.jp>	2001-10-12 12:04:04 +10:00
Damien Miller	164a7f42f9	- markus@cvs.openbsd.org 2001/10/11 15:24:00 [clientloop.c] clear select masks if we return before calling select().	2001-10-12 11:36:09 +10:00
Damien Miller	0585d51a52	- markus@cvs.openbsd.org 2001/10/11 13:45:21 [session.c] delay detach of session if a channel gets closed but the child is still alive. however, release pty, since the fd's to the child are already closed.	2001-10-12 11:35:50 +10:00
Damien Miller	3ec2759ad4	- (djm) OpenBSD CVS Sync - markus@cvs.openbsd.org 2001/10/10 22:18:47 [channels.c channels.h clientloop.c nchan.c serverloop.c] [session.c session.h] try to keep channels open until an exit-status message is sent. don't kill the login shells if the shells stdin/out/err is closed. this should now work: ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?	2001-10-12 11:35:04 +10:00
Ben Lindstrom	4e088e4de0	- (bal) seed_init() and seed_rng() required in ssh-keyscan.c	2001-10-10 20:45:43 +00:00
Ben Lindstrom	926ce58d3b	- (bal) removed two unsed headers in openbsd-compat/bsd-misc.c	2001-10-10 20:38:55 +00:00
Damien Miller	52b77beb65	- markus@cvs.openbsd.org 2001/10/09 21:59:41 [channels.c channels.h serverloop.c session.c session.h] simplify session close: no more delayed session_close, no more blocking wait() calls.	2001-10-10 15:14:37 +10:00
Damien Miller	c71f4e40b6	- markus@cvs.openbsd.org 2001/10/09 19:51:18 [serverloop.c] close all channels if the connection to the remote host has been closed, should fix sshd's hanging with WCHAN==wait	2001-10-10 15:08:36 +10:00
Damien Miller	ae45246696	- markus@cvs.openbsd.org 2001/10/09 19:32:49 [session.c] stat subsystem command before calling do_exec, and return error to client.	2001-10-10 15:08:06 +10:00
Damien Miller	139d4cd908	- markus@cvs.openbsd.org 2001/10/09 10:12:08 [session.c] chdir $HOME after krb_afslog(); from bbense@networking.stanford.edu	2001-10-10 15:07:44 +10:00
Damien Miller	7ea6f204b6	- markus@cvs.openbsd.org 2001/10/08 16:15:47 [sshconnect.c] use correct family for -b option	2001-10-10 15:04:41 +10:00
Damien Miller	d3c04b90e4	- markus@cvs.openbsd.org 2001/10/08 11:48:57 [channels.c] better debug	2001-10-10 15:04:20 +10:00
Damien Miller	4623a75462	- markus@cvs.openbsd.org 2001/10/07 17:49:40 [channels.c channels.h] avoid possible FD_ISSET overflow for channels established during channnel_after_select() (used for dynamic channels).	2001-10-10 15:03:58 +10:00
Damien Miller	058655cced	- markus@cvs.openbsd.org 2001/10/07 10:29:52 [authfile.c] grammer; Matthew_Clarke@mindlink.bc.ca	2001-10-10 15:03:36 +10:00
Damien Miller	59d9fb9e55	- markus@cvs.openbsd.org 2001/10/06 11:18:19 [sshconnect1.c sshconnect2.c sshconnect.c] unify hostkey check error messages, simplify prompt.	2001-10-10 15:03:11 +10:00
Damien Miller	9c75142917	- markus@cvs.openbsd.org 2001/10/06 00:36:42 [session.c] fix typo in error message, sync with do_exec_nopty	2001-10-10 15:02:46 +10:00
Damien Miller	e398004f6c	- markus@cvs.openbsd.org 2001/10/06 00:14:50 [sshconnect.c] remove unused argument	2001-10-10 15:02:03 +10:00
Damien Miller	8c3902afde	- markus@cvs.openbsd.org 2001/10/04 15:12:37 [serverloop.c] client_alive_check cleanup	2001-10-10 15:01:40 +10:00
Damien Miller	af5f2e641c	- markus@cvs.openbsd.org 2001/10/04 15:05:40 [channels.c serverloop.c] comment out bogus conditions for selecting on connection_in	2001-10-10 15:01:16 +10:00
Damien Miller	af3030f709	- markus@cvs.openbsd.org 2001/10/04 14:34:16 [key.c] call OPENSSL_free() for memory allocated by openssl; from chombier@mac.com	2001-10-10 15:00:49 +10:00
Ben Lindstrom	f16c81f900	- (bal) ssh-copy-id corrected permissions for .ssh/ and authorized_keys. Prompted by Matthew Vernon <matthew@sel.cam.ac.uk>	2001-10-08 01:54:24 +00:00
Ben Lindstrom	4c90149c50	- (bal) AES works under Cray, no more hack.	2001-10-06 00:08:09 +00:00
Ben Lindstrom	8bceffb0c3	- (bal) nchan2.ms resync. BSD License applied.	2001-10-04 21:16:57 +00:00
Ben Lindstrom	c3e49e7b31	- markus@cvs.openbsd.org 2001/10/03 10:01:20 [auth.c] use realpath() for homedir, too. from jinmei@isl.rdc.toshiba.co.jp	2001-10-03 17:55:26 +00:00
Ben Lindstrom	1bae404457	- stevesk@cvs.openbsd.org 2001/10/02 22:56:09 [sshd.c] #include "channels.h" for channel_set_af()	2001-10-03 17:46:39 +00:00
Ben Lindstrom	569f88de04	- djm@cvs.openbsd.org 2001/10/02 08:38:50 [ssh-add.c] return non-zero exit code on error; ok markus@	2001-10-03 17:43:01 +00:00
Ben Lindstrom	3cecc9a41f	- markus@cvs.openbsd.org 2001/10/01 21:51:16 [readconf.c readconf.h ssh.1 sshconnect.c] add NoHostAuthenticationForLocalhost; note that the hostkey is now check for localhost, too.	2001-10-03 17:39:38 +00:00
Ben Lindstrom	908afed17f	- markus@cvs.openbsd.org 2001/10/01 21:38:53 [channels.c channels.h ssh.c sshd.c] remove ugliness; vp@drexel.edu via angelos	2001-10-03 17:34:59 +00:00
Ben Lindstrom	3e45e4cd00	- markus@cvs.openbsd.org 2001/10/01 08:06:28 [scp.c] skip filenames containing \n; report jdamery@chiark.greenend.org.uk and matthew@debian.org	2001-10-03 17:30:58 +00:00
Ben Lindstrom	83f07d1954	- markus@cvs.openbsd.org 2001/09/28 15:46:29 [ssh.c] bug: read user config first; report kaukasoi@elektroni.ee.tut.fi	2001-10-03 17:22:29 +00:00
Ben Lindstrom	1af4d3bb70	- djm@cvs.openbsd.org 2001/09/28 12:07:09 [ssh-keygen.c] bzero private key after loading to smartcard; ok markus@	2001-10-03 17:18:37 +00:00
Ben Lindstrom	6149a6c57f	- camield@cvs.openbsd.org 2001/09/27 17:53:24 [sshd.8] don't talk about compile-time options ok markus@	2001-10-03 17:15:32 +00:00
Ben Lindstrom	bdfb4df08c	- markus@cvs.openbsd.org 2001/09/27 15:31:17 [auth2.c auth2-chall.c sshconnect1.c] typos; from solar	2001-10-03 17:12:43 +00:00
Ben Lindstrom	ae3de4b39e	- markus@cvs.openbsd.org 2001/09/27 11:59:37 [packet.c] missing called=1; chombier@mac.com	2001-10-03 17:10:17 +00:00
Ben Lindstrom	96f8d143a7	- markus@cvs.openbsd.org 2001/09/27 11:58:16 [compress.c] mem leak; chombier@mac.com	2001-10-03 17:07:47 +00:00
Ben Lindstrom	9b023ed2a2	- (bal) CVS ID fix up in version.h	2001-10-03 17:03:54 +00:00
Kevin Steves	5217265349	- (stevesk) loginrec.c: fix type conversion problems exposed when using 64-bit off_t.	2001-10-02 00:29:00 +00:00
Ben Lindstrom	819f1bef5c	20010929 - (bal) move reading 'config.h' up higher. Patch by albert chin <china@thewrittenword.com)	2001-09-29 14:27:00 +00:00
Damien Miller	bccb5a9338	- (djm) Update spec files for new x11-askpass	2001-09-28 20:03:25 +10:00
Damien Miller	3ff36d6ce2	- (djm) OpenBSD CVS sync: - djm@cvs.openbsd.org 2001/09/28 09:49:31 [scard.c] Fix segv when smartcard communication error occurs during key load. ok markus@	2001-09-28 19:51:54 +10:00
Kevin Steves	a0957d6898	- (stevesk) session.c: declare do_pre_login() before use wayned@users.sourceforge.net	2001-09-27 19:50:26 +00:00
Damien Miller	5f4b10088f	- (djm) Avoid bad and unportable sprintf usage in compat code	2001-09-25 22:21:52 +10:00
Damien Miller	e8bb450af9	- (djm) Add AC_SYS_LARGEFILE configure test	2001-09-25 16:39:35 +10:00
Damien Miller	16fcade16b	- (djm) Sync $sysconfdir/moduli	2001-09-25 13:06:18 +10:00
Damien Miller	964fed54cd	- (djm) Pull in auth-krb5.c from OpenBSD CVS. NB. it is not currently used.	2001-09-25 12:58:23 +10:00
Ben Lindstrom	8b16c0e67a	- (bal) Updated all *.specs for 2.9.9p1 and updated version.h	2001-09-24 23:15:15 +00:00
Ben Lindstrom	40a0d20913	- (bal) Removed 'extern int optopt;' since it is dead wood.	2001-09-24 22:04:02 +00:00
Ben Lindstrom	5ccf63a974	- (bal) updated ssh.c to mirror minor getopts 'extern int' formating done by stevesk@	2001-09-24 20:00:10 +00:00
Ben Lindstrom	bffa1cb7f6	- markus@cvs.openbsd.org 2001/09/23 09:58:13 [LICENCE] new rijndael implementation	2001-09-23 13:58:38 +00:00
Ben Lindstrom	b85544d717	<grumble> Editing ChangeLog in the wrong directory. - markus@cvs.openbsd.org 2001/09/23 11:09:13 [authfile.c] relax permission check for private key files.	2001-09-23 13:54:57 +00:00
Ben Lindstrom	15da033b34	- mouring@cvs.openbsd.org 2001/09/20 20:57:51 [sshd_config] CheckMail removed. OKed stevesk@	2001-09-20 23:15:44 +00:00
Ben Lindstrom	f558cf6580	- markus@cvs.openbsd.org 2001/09/20 13:50:40 [compat.c compat.h ssh.c] bug compat: request a dummy channel for -N (no shell) sessions + cleanup; vinschen@redhat.com	2001-09-20 23:13:49 +00:00
Ben Lindstrom	1bc3bdb1c2	- markus@cvs.openbsd.org 2001/09/20 13:46:48 [auth2.c] key_read returns now -1 or 1	2001-09-20 23:11:26 +00:00
Ben Lindstrom	406b4f0f33	- stevesk@cvs.openbsd.org 2001/09/20 00:15:54 [sshd.8] fix ClientAliveCountMax	2001-09-20 23:09:16 +00:00
Kevin Steves	50abba560c	- (stevesk) sun_len, SUN_LEN() configure stuff no longer required	2001-09-20 19:43:41 +00:00
Tim Rice	1ce8f0c3e5	- (tim) [scard/Makefile.in] Don't strip the Java binary	2001-09-20 11:39:35 -07:00
Ben Lindstrom	84a6bfba15	- (bal) openbsd-compat/vis.[ch] is dead wood. Removed.	2001-09-20 02:07:50 +00:00
Ben Lindstrom	03598a1c23	- stevesk@cvs.openbsd.org 2001/09/19 21:41:57 [sshd.8] don't advertise -V in usage; ok markus@	2001-09-20 01:07:57 +00:00
Ben Lindstrom	dfd1850398	- stevesk@cvs.openbsd.org 2001/09/19 21:04:53 [sshd.8] missing -t in usage	2001-09-20 01:06:08 +00:00
Ben Lindstrom	b1d822c311	- stevesk@cvs.openbsd.org 2001/09/19 19:35:30 [authfd.c] use sizeof addr vs. SUN_LEN(addr) for sockaddr_un. Stevens blesses this and we do it this way elsewhere. this helps in portable because not all systems have SUN_LEN() and sockaddr_un.sun_len. ok markus@	2001-09-20 01:03:31 +00:00
Ben Lindstrom	2b7a0e953e	- stevesk@cvs.openbsd.org 2001/09/19 19:24:19 [readconf.c readconf.h scp.c sftp.c ssh.1] add ClearAllForwardings ssh option and set it in scp and sftp; ok markus@	2001-09-20 00:57:55 +00:00
Ben Lindstrom	309f3d1d9c	- markus@cvs.openbsd.org 2001/09/19 13:23:29 [key.c] key_read() now returns -1 on type mismatch, too	2001-09-20 00:55:53 +00:00
Ben Lindstrom	20daef753d	- markus@cvs.openbsd.org 2001/09/19 10:08:51 [sshd.8] command=xxx applies to subsystem now, too	2001-09-20 00:54:01 +00:00
Kevin Steves	871f662cb6	- (stevesk) nchan.c: we use X/Open Sockets on HP-UX now so shutdown(2) returns ENOTCONN vs. EINVAL for socket not connected; remove EINVAL check. ok Lutz Jaenicke	2001-09-18 16:08:24 +00:00
Ben Lindstrom	cc7aafc7a4	- stevesk@cvs.openbsd.org 2001/09/17 23:56:07 [scp.1] missing -B in usage string	2001-09-18 05:56:57 +00:00
Ben Lindstrom	3b4d42c240	- markus@cvs.openbsd.org 2001/09/17 21:09:47 [compat.c] more versions suffering the SSH_BUG_DEBUG bug; 3.0.x reported by dbutts@maddog.storability.com	2001-09-18 05:55:10 +00:00
Ben Lindstrom	6d218f404f	- markus@cvs.openbsd.org 2001/09/17 21:04:02 [channels.c serverloop.c] don't send fake dummy packets on CR (\r) bugreport from yyua@cs.sfu.ca via solar@@openwall.com	2001-09-18 05:53:12 +00:00
Ben Lindstrom	944c4f0bda	- markus@cvs.openbsd.org 2001/09/17 20:52:47 [channels.c channels.h clientloop.c] try to fix agent-forwarding-backconnection-bug, as seen on HPUX, for example; with Lutz.Jaenicke@aet.TU-Cottbus.DE,	2001-09-18 05:51:13 +00:00
Ben Lindstrom	99a30f11c2	- markus@cvs.openbsd.org 2001/09/17 20:50:22 [key.c ssh-keygen.c] better error handling if you try to export a bad key to ssh.com	2001-09-18 05:49:14 +00:00
Ben Lindstrom	6a33763332	- stevesk@cvs.openbsd.org 2001/09/17 20:38:09 [sftp.1 sftp.c] cleanup and document -1, -s and -S; ok markus@	2001-09-18 05:47:32 +00:00
Ben Lindstrom	a2fec90e05	- markus@cvs.openbsd.org 2001/09/17 20:22:14 [scard.c] never keep a connection to the smartcard open. allows ssh-keygen -D U while the agent is running; report from jakob@	2001-09-18 05:45:44 +00:00
Ben Lindstrom	9e0ddd4379	- stevesk@cvs.openbsd.org 2001/09/17 19:27:15 [kexdh.c kexgex.c key.c key.h ssh-dss.c ssh-keygen.c ssh-rsa.c] u_char/char cleanup; ok markus	2001-09-18 05:41:19 +00:00
Ben Lindstrom	1e24324164	- stevesk@cvs.openbsd.org 2001/09/17 17:57:57 [scp.1 scp.c sftp.1 sftp.c] add -Fssh_config option; ok markus@	2001-09-18 05:38:44 +00:00
Ben Lindstrom	033e4557c0	- (bal) LICENCE update. Has not been done in a while.	2001-09-18 05:36:27 +00:00
Damien Miller	f2bd06c21e	- (djm) Make smartcard support conditional in Redhat RPM spec	2001-09-18 15:33:07 +10:00
Damien Miller	7948d93173	- (djm) Specify --datadir in RPM spec files so smartcard applet gets put somewhere sane. Add Ssh.bin to manifest.	2001-09-18 15:12:10 +10:00
Damien Miller	d97c2ceed1	- (djm) More makefile infrastructre for smartcard support, also based on Ben's work	2001-09-18 15:06:21 +10:00
Damien Miller	ff5f47e230	- (djm) Avoid warning on BSDgetopt	2001-09-18 15:05:20 +10:00
Damien Miller	ffbe69890d	- (djm) Revert setgroups call, it causes problems on OS-X	2001-09-18 14:03:03 +10:00
Damien Miller	85de580adc	- (djm) Configure support for smartcards	2001-09-18 14:01:11 +10:00
Tim Rice	a4f7ae1a35	- (tim) [includes.h openbsd-compat/getopt.c openbsd-compat/getopt.h] rename getopt() to BSDgetopt() to keep form conflicting with system getopt(). [Makefile.in configure.in] disable filepriv until I can add missing procpriv calls.	2001-09-17 14:34:33 -07:00
Damien Miller	01ebad06db	- (djm) x11-ssh-askpass-1.2.4 in RPM spec, revert workarounds	2001-09-17 15:07:23 +10:00
Ben Lindstrom	37e41c9019	- markus@cvs.openbsd.org 2001/09/16 14:46:54 [session.c] calls krb_afslog() after setting $HOME; mattiasa@e.kth.se; fixes pr 1943b	2001-09-16 22:17:15 +00:00
Damien Miller	0b9278e923	- (djm) Workaround XFree breakage in RPM spec file	2001-09-16 17:13:45 +10:00
Damien Miller	426d6bdc00	I really should commit these in sync with the actual changes	2001-09-16 17:13:11 +10:00
Damien Miller	ebf989e601	- (djm) Clear supplemental groups at sshd start to prevent them from being propogated to random PAM modules. Based on patch from Redhat via Pekka Savola <pekkas@netcore.fi>	2001-09-15 21:12:49 +10:00
Damien Miller	ba6f9f9e49	- (djm) Redhat initscript config sanity checking from Pekka Savola <pekkas@netcore.fi>	2001-09-15 21:03:10 +10:00
Damien Miller	0c217b74e2	C - (djm) Redhat spec file cleanups from Pekka Savola <pekkas@netcore.fi> and Redhat VS: ----------------------------------------------------------------------	2001-09-15 21:01:41 +10:00
Damien Miller	69e00a18a5	- (djm) Sync scard/ stuff	2001-09-15 20:58:46 +10:00
Damien Miller	599d8eba16	- (djm) Make do_pre_login static to avoid prototype #ifdef hell	2001-09-15 12:25:53 +10:00
Ben Lindstrom	23124eab3b	- markus@cvs.openbsd.org 2001/09/14 [sshd.c] typo	2001-09-14 23:14:25 +00:00
Ben Lindstrom	b09f6b5b02	- markus@cvs.openbsd.org 2001/09/14 [session.c] command=xxx overwrites subsystems, too	2001-09-14 23:12:07 +00:00
Ben Lindstrom	d5e1c04c00	- markus@cvs.openbsd.org 2001/09/13 [rijndael.c rijndael.h] missing $OpenBSD	2001-09-14 23:09:29 +00:00
Ben Lindstrom	319fc7353c	I was promised that this does not need to have endness fix up by Markus. So I will blindly trust him. =) - markus@cvs.openbsd.org 2001/08/23 11:31:59 [cipher.c cipher.h] switch to the optimised AES reference code from http://www.esat.kuleuven.ac.be/~rijmen/rijndael/rijndael-fst-3.0.zip	2001-09-14 02:47:33 +00:00
Ben Lindstrom	4213c559ef	- stevesk@cvs.openbsd.org 2001/09/12 18:18:25 [scp.c] don't forward agent for non third-party copies; ok markus@	2001-09-12 18:45:09 +00:00
Ben Lindstrom	594e203894	- deraadt@cvs.openbsd.org 2001/09/05 06:23:07 [scp.1 sftp.1 ssh.1 ssh-agent.1 sshd.8 ssh-keygen.1 ssh-keyscan.1] avoid first person in manual pages	2001-09-12 18:35:30 +00:00
Ben Lindstrom	edc0cf26d1	- stevesk@cvs.openbsd.org 2001/09/03 20:58:33 [readconf.c readconf.h ssh.c] fatal() for nonexistent -Fssh_config. ok markus@	2001-09-12 18:32:20 +00:00
Ben Lindstrom	7d19996201	- markus@cvs.openbsd.org 2001/08/31 11:46:39 [sshconnect2.c] disable kbd-interactive if we don't get SSH2_MSG_USERAUTH_INFO_REQUEST messages	2001-09-12 18:29:00 +00:00
Ben Lindstrom	520b55c8c4	- markus@cvs.openbsd.org 2001/08/30 22:22:32 [ssh-keyscan.c] do not pass pointers to longjmp; fix from wayne@blorf.net	2001-09-12 18:05:05 +00:00
Ben Lindstrom	d71ba5771b	- stevesk@cvs.openbsd.org 2001/08/30 20:36:34 [auth-options.c sshd.8] validate ports for permitopen key file option. add host/port alternative syntax for IPv6. ok markus@	2001-09-12 18:03:31 +00:00
Ben Lindstrom	62c25a43db	- stevesk@cvs.openbsd.org 2001/08/30 16:04:35 [readconf.c ssh.1] validate ports for LocalForward/RemoteForward. add host/port alternative syntax for IPv6 (like -L/-R). ok markus@	2001-09-12 18:01:59 +00:00
Ben Lindstrom	6e69d532dc	- naddy@cvs.openbsd.org 2001/08/30 15:42:36 [ssh.1] add -D to synopsis line; ok markus@	2001-09-12 17:59:59 +00:00
Ben Lindstrom	60d82be9f3	- stevesk@cvs.openbsd.org 2001/08/29 23:39:40 [ssh.1 sshd.8] additional documentation for GatewayPorts; ok markus@	2001-09-12 17:58:15 +00:00
Ben Lindstrom	1a1747172e	- stevesk@cvs.openbsd.org 2001/08/29 23:27:23 [ssh.c] validate ports for -L/-R; ok markus@	2001-09-12 17:56:15 +00:00
Ben Lindstrom	19ceb17040	- stevesk@cvs.openbsd.org 2001/08/29 23:13:10 [ssh.1 ssh.c] document -D and DynamicForward; ok markus	2001-09-12 17:54:24 +00:00
Ben Lindstrom	6f672c0954	- stevesk@cvs.openbsd.org 2001/08/29 23:02:21 [sshd.8] add text about -u0 preventing DNS requests; ok markus@	2001-09-12 17:51:55 +00:00
Ben Lindstrom	5fccbc2339	- markus@cvs.openbsd.org 2001/08/29 20:44:03 [scp.c] clear the malloc'd buffer, otherwise source() will leak malloc'd memory; ok theo@	2001-09-12 17:49:48 +00:00
Ben Lindstrom	14f31ab947	- markus@cvs.openbsd.org 2001/08/28 15:39:48 [ssh.1 ssh.c] allow: ssh -F configfile host	2001-09-12 17:48:04 +00:00
Ben Lindstrom	525a09389e	- markus@cvs.openbsd.org 2001/08/28 09:51:26 [readconf.c] don't set DynamicForward unless Host matches	2001-09-12 17:35:27 +00:00
Ben Lindstrom	78bbd9ebe3	- danh@cvs.openbsd.org 2001/08/27 22:02:13 [ssh-keyscan.c] fix memory fault if non-existent filename is given to the -f option ok markus@	2001-09-12 17:10:40 +00:00
Ben Lindstrom	8d066fb262	- stevesk@cvs.openbsd.org 2001/08/23 18:08:59 [ssh-add.1 ssh-keyscan.1] minor cleanup	2001-09-12 17:06:13 +00:00
Ben Lindstrom	ba1fa1d67b	- stevesk@cvs.openbsd.org 2001/08/23 18:02:48 [ssh-agent.1] fix usage; ok markus@	2001-09-12 17:02:49 +00:00
Ben Lindstrom	ce89dacda8	- camield@cvs.openbsd.org 2001/08/23 17:59:31 [sshd.c] end request with 0, not NULL ok markus@	2001-09-12 16:58:04 +00:00
Ben Lindstrom	ffa1dd6817	- stevesk@cvs.openbsd.org 2001/08/22 17:45:16 [ssh.1] document cipher des for protocol 1; ok deraadt@	2001-09-12 16:52:28 +00:00
Ben Lindstrom	044274bcb0	- stevesk@cvs.openbsd.org 2001/08/22 16:30:02 [sshd.8] no rexd; ok markus@	2001-09-12 16:46:08 +00:00
Ben Lindstrom	a10aed8b5e	- stevesk@cvs.openbsd.org 2001/08/22 16:21:21 [ssh.1] hostname not optional; ok markus@	2001-09-12 16:43:26 +00:00
Ben Lindstrom	e59433da7a	- stevesk@cvs.openbsd.org 2001/08/21 21:47:42 [ssh.1 sshd.8] minor typos and cleanup	2001-09-12 16:41:37 +00:00
Ben Lindstrom	7bb37b29c6	- stevesk@cvs.openbsd.org 2001/08/17 18:59:47 [servconf.h] typo in comment	2001-09-12 16:40:05 +00:00
Ben Lindstrom	1c0fd09d15	- stevesk@cvs.openbsd.org 2001/08/16 20:14:57 [ssh.1 sshd.8] document case sensitivity for ssh, sshd and key file options and arguments; ok markus@	2001-09-12 16:36:17 +00:00
Ben Lindstrom	91e9868e4f	- jakob@cvs.openbsd.org 2001/08/16 19:18:34 [servconf.c servconf.h session.c sshd.8] deprecate CheckMail. ok markus@	2001-09-12 16:32:14 +00:00
Ben Lindstrom	19d7b8d3fa	- (bal) QNX resync. OK tim@	2001-08-16 00:09:49 +00:00
Ben Lindstrom	14c62eb2be	- stevesk@cvs.openbsd.org 2001/08/14 17:54:29 [scp.1 sftp.1 ssh.1] consistent documentation and example of ``-o ssh_option'' for sftp and scp; document keyword=argument for ssh.	2001-08-15 23:25:46 +00:00
Ben Lindstrom	59e1249d67	- markus@cvs.openbsd.org 2001/08/14 09:23:02 [sftp.1 sftp-int.c] "bye"; hk63a@netscape.net	2001-08-15 23:22:56 +00:00
Ben Lindstrom	1fa90101f0	- stevesk@cvs.openbsd.org 2001/08/13 23:38:54 [scp.c] don't need main prototype (also sync with rcp); ok markus@	2001-08-15 23:21:01 +00:00
Ben Lindstrom	930b14a28e	- jakob@cvs.openbsd.org 2001/08/11 22:51:27 [ssh.c tildexpand.c] fix more paths beginning with "//"; <bradshaw@staff.crosswalk.com>. ok markus@	2001-08-15 23:19:21 +00:00
Ben Lindstrom	049e0dd6cf	- markus@cvs.openbsd.org 2001/08/08 21:34:19 [uidswap.c] undo last change; does not work for sshd	2001-08-15 23:17:22 +00:00
Ben Lindstrom	a66039373b	- markus@cvs.openbsd.org 2001/08/08 18:20:15 [uidswap.c] permanently_set_uid is a noop if user is not privilegued; fixes bug on solaris; from sbi@uchicago.edu	2001-08-15 23:14:49 +00:00
Ben Lindstrom	79e93bca6f	- deraadt@cvs.openbsd.org 2001/08/08 07:16:58 [scp.1] when describing the -o option, give -o Protocol=1 as the specific example since we are SICK AND TIRED of clueless people who cannot have difficulty thinking on their own.	2001-08-15 23:06:59 +00:00
Ben Lindstrom	c9a2636420	- markus@cvs.openbsd.org 2001/08/07 10:37:46 [authfd.c authfd.h] extended failure messages from galb@vandyke.com	2001-08-15 23:04:50 +00:00
Ben Lindstrom	d0ff40847d	- (bal) Fixed stray code in readconf.c that went in by mistake.	2001-08-15 22:58:59 +00:00
Kevin Steves	4da21abd24	- (stevesk) bsd-cray.c: more cleanup; ok wendyp@cray.com	2001-08-14 21:02:15 +00:00
Kevin Steves	72992afb26	- (stevesk) bsd-cray.c: utmp strings are not C strings	2001-08-14 20:54:52 +00:00
Kevin Steves	25ee4e48f7	- (stevesk) sshpty.c: return 0 on error in cray pty code; ok wendyp@cray.com	2001-08-14 20:41:34 +00:00
Kevin Steves	ad4aa5655d	forgot this	2001-08-14 20:35:35 +00:00
Damien Miller	56cb92968b	- (djm) Fix detection of long long int support. Based on patch from Michael Stone <mstone@cs.loyola.edu>. ok stevesk, tim	2001-08-12 13:02:50 +10:00
Ben Lindstrom	113339e024	- (bal) Minor correction to inet_ntop.h. _BSD_RRESVPORT_H should be _BSD_INET_NTOP_H. Pointed out by Mark Miller <markm@swoon.net>	2001-08-09 00:56:52 +00:00
Tim Rice	e991e3cf22	- (tim) [configure.in sshconnect.c openbsd-compat/Makefile.in openbsd-compat/openbsd-compat.h ] Add inet_ntop.c inet_ntop.h back in. Needed for sshconnect.c [sshconnect.c] fix INET6_ADDRSTRLEN for non IPv6 machines [configure.in] make tests with missing libraries fail patch by Wendy Palm <wendyp@cray.com> Added openbsd-compat/bsd-cray.h. Selective patches from William L. Jones <jones@mail.utexas.edu>	2001-08-07 15:29:07 -07:00
Ben Lindstrom	6db66ff387	- (bal) Second around of UNICOS patches. A few other things left. Patches by William L. Jones <jones@mail.utexas.edu>	2001-08-06 23:29:16 +00:00
Ben Lindstrom	ff2866cf51	- (bal) ssh-keyscan double -lssh hack due to seed_rng().	2001-08-06 22:56:46 +00:00
Ben Lindstrom	958d9f695b	- stevesk@cvs.openbsd.org 2001/08/06 19:47:05 [scp.c] use alarm vs. setitimer for portable; ok markus@	2001-08-06 22:48:19 +00:00
Ben Lindstrom	de8fc6fadc	- markus@cvs.openbsd.org 2001/08/05 23:29:58 [ssh-keyscan.c] make -t dsa work with commercial servers, too	2001-08-06 22:43:50 +00:00
Ben Lindstrom	325e70c90f	- markus@cvs.openbsd.org 2001/08/05 23:18:20 [ssh-keyscan.1 ssh-keyscan.c] ssh 2 support; from wayned@users.sourceforge.net	2001-08-06 22:41:30 +00:00
Ben Lindstrom	ddfb1e3a89	- jakob@cvs.openbsd.org 2001/08/03 10:31:30 [ssh-add.c ssh-agent.c ssh-keyscan.c] improve usage(). ok markus@	2001-08-06 22:06:35 +00:00
Ben Lindstrom	e690121f0d	- jakob@cvs.openbsd.org 2001/08/03 10:31:19 [ssh-add.1] document smartcard options. ok markus@	2001-08-06 22:03:08 +00:00
Ben Lindstrom	0b5afb98eb	- mpech@cvs.openbsd.org 2001/08/02 18:37:35 [ssh-keyscan.1] o) .Sh AUTHOR -> .Sh AUTHORS; o) .Sh EXAMPLE -> .Sh EXAMPLES; o) Delete .Sh OPTIONS. Text moved to .Sh DESCRIPTION; millert@ ok	2001-08-06 22:01:29 +00:00
Ben Lindstrom	bcc1808bf2	- jakob@cvs.openbsd.org 2001/08/02 16:14:05 [scard.c ssh-agent.c ssh.c ssh-keygen.c] clean up some /* SMARTCARD */. ok markus@	2001-08-06 21:59:25 +00:00
Ben Lindstrom	ffce147638	- jakob@cvs.openbsd.org 2001/08/02 15:43:57 [ssh-agent.c ssh.c ssh-keygen.c] add /* SMARTCARD */ to #else/#endif. ok markus@	2001-08-06 21:57:31 +00:00
Ben Lindstrom	61eb9568b3	- jakob@cvs.openbsd.org 2001/08/02 15:32:10 [ssh.c] add smartcard to usage(). ok markus@	2001-08-06 21:53:42 +00:00
Ben Lindstrom	a1ec4a9cb8	- jakob@cvs.openbsd.org 2001/08/02 15:07:23 [ssh-keygen.1] document smartcard upload/download. ok markus@	2001-08-06 21:51:34 +00:00
Ben Lindstrom	97be31e6ff	- jakob@cvs.openbsd.org 2001/08/02 15:06:52 [ssh-keygen.c] more verbose usage(). ok markus@	2001-08-06 21:49:06 +00:00
Ben Lindstrom	f19578c447	- jakob@cvs.openbsd.org 2001/08/02 08:58:35 [ssh-keygen.c] change -u (upload smartcard key) to -U. ok markus@	2001-08-06 21:46:54 +00:00
Ben Lindstrom	8282d6a82f	- markus@cvs.openbsd.org 2001/08/02 00:10:17 [ssh-keygen.c] add -D readerid option (download, i.e. print public RSA key to stdout). check for card present when uploading keys. use strings instead of ints for smartcard reader ids, too.	2001-08-06 21:44:05 +00:00
Ben Lindstrom	a6c8a8d4d5	- markus@cvs.openbsd.org 2001/08/01 23:38:45 [scard.c ssh.c] support finish rsa keys. free public keys after login -> call finish -> close smartcard.	2001-08-06 21:42:00 +00:00
Ben Lindstrom	6818bfbf30	- markus@cvs.openbsd.org 2001/08/01 23:33:09 [ssh-keygen.c] allow uploading RSA keys for non-default AUT0 (sha1 over passphrase like sectok).	2001-08-06 21:40:04 +00:00
Ben Lindstrom	020a8699a9	- markus@cvs.openbsd.org 2001/08/01 22:16:45 [ssh.1 sshd.8] refer to current ietf drafts for protocol v2	2001-08-06 21:38:10 +00:00
Ben Lindstrom	f7db3bb64c	- markus@cvs.openbsd.org 2001/08/01 22:03:33 [authfd.c authfd.h readconf.c readconf.h scard.c scard.h ssh-add.c ssh-agent.c ssh.c] use strings instead of ints for smartcard reader ids	2001-08-06 21:35:51 +00:00
Ben Lindstrom	3ab1dfa2a6	- jakob@cvs.openbsd.org 2001/07/31 12:53:34 [scard.c] close smartcard connection if card is missing	2001-08-06 21:33:44 +00:00
Ben Lindstrom	95148e3de2	- jakob@cvs.openbsd.org 2001/07/31 12:42:50 [sftp-int.c sftp-server.c] avoid paths beginning with "//"; <vinschen@redhat.com> ok markus@	2001-08-06 21:30:53 +00:00
Ben Lindstrom	ae996bf7d1	- jakob@cvs.openbsd.org 2001/07/31 09:28:44 [readconf.c readconf.h ssh.1 ssh.c] add 'SmartcardDevice' client option to specify which smartcard device is used to access a smartcard used for storing the user's private RSA key. ok markus@.	2001-08-06 21:27:53 +00:00
Ben Lindstrom	94baf30d14	- jakob@cvs.openbsd.org 2001/07/31 08:41:10 [scard.c] do not complain about missing smartcards. ok markus@	2001-08-06 21:25:38 +00:00
Ben Lindstrom	0256e8b93c	- stevesk@cvs.openbsd.org 2001/07/30 16:23:30 [rijndael.c rijndael.h] new BSD-style license: Brian Gladman <brg@gladman.plus.com>: >I have updated my code at: >http://fp.gladman.plus.com/cryptography_technology/rijndael/index.htm >with a copyright notice as follows: >[...] >I am not sure which version of my old code you are using but I am >happy for the notice above to be substituted for my existing copyright >intent if this meets your purpose.	2001-08-06 21:24:11 +00:00
Ben Lindstrom	30b00be24f	- jakob@cvs.openbsd.org 2001/07/30 16:06:07 [scard.c scard.h] better errorcodes from sc_*; ok markus@	2001-08-06 21:22:10 +00:00
Ben Lindstrom	50e22c937f	- mouring@cvs.openbsd.org 2001/07/29 17:02:46 [scp.1] Clarified -o option in scp.1 OKed by Markus@	2001-08-06 21:20:22 +00:00
Ben Lindstrom	07d24dcbd8	- markus@cvs.openbsd.org 2001/07/28 09:21:15 [sshd.8] cleanup some RSA vs DSA vs SSH1 vs SSH2 notes	2001-08-06 21:18:57 +00:00
Ben Lindstrom	2772a3f864	- deraadt@cvs.openbsd.org 2001/07/27 17:26:16 [scp.c] shorten lines	2001-08-06 21:17:12 +00:00
Ben Lindstrom	711b04a56a	- millert@cvs.openbsd.org 2001/07/27 14:50:45 [ssh.c] If smart card support is compiled in and a smart card is being used for authentication, make it the first method used. markus@ OK	2001-08-06 21:12:42 +00:00
Ben Lindstrom	60df8e4f7d	- rees@cvs.openbsd.org 2001/07/26 20:04:27 [scard.c ssh-keygen.c] Inquire Cyberflex class for 0xf0 cards change aid to conform to 7816-5 remove gratuitous fid selects	2001-08-06 21:10:52 +00:00
Ben Lindstrom	794325ac7a	- stevesk@cvs.openbsd.org 2001/07/26 17:18:22 [sshd.8 sshd.c] add -t option to test configuration file and keys; pekkas@netcore.fi ok markus@	2001-08-06 21:09:07 +00:00
Ben Lindstrom	f9cedb9ca0	- markus@cvs.openbsd.org 2001/07/25 14:35:18 [readconf.c ssh.1 ssh.c sshconnect.c] cleanup connect(); connection_attempts 4 -> 1; from eivind@freebsd.org	2001-08-06 21:07:11 +00:00

... 11 12 13 14 15 ...

2685 Commits