699d003e3a
- markus@cvs.openbsd.org 2002/02/06 14:55:16
...
[channels.c clientloop.c serverloop.c ssh.c]
channel_new never returns NULL, mouring@; ok djm@
2002-02-08 22:07:16 +11:00
f3dcf1fc88
- markus@cvs.openbsd.org 2002/02/06 14:37:22
...
[session.c]
minor KNF
2002-02-08 22:06:48 +11:00
025e01c7f0
- mpech@cvs.openbsd.org 2002/02/06 14:27:23
...
[sftp.c]
sync usage() with manual.
2002-02-08 22:06:29 +11:00
81b6e787a0
- markus@cvs.openbsd.org 2002/02/06 14:22:42
...
[sftp.1]
sort options; ok mpech@, stevesk@
2002-02-08 22:06:03 +11:00
a500cd608e
- markus@cvs.openbsd.org 2002/02/05 14:32:55
...
[channels.c channels.h ssh.c]
merge channel_request() into channel_request_start()
2002-02-08 22:04:26 +11:00
8829d3669d
- djm@cvs.openbsd.org 2002/02/05 00:00:46
...
[sftp.1 sftp.c sftp-client.c sftp-client.h sftp-int.c]
Add "-B" option to specify copy buffer length (default 32k); ok markus@
2002-02-08 22:04:05 +11:00
e8c9ed436a
- stevesk@cvs.openbsd.org 2002/02/04 20:41:16
...
[ssh-agent.1]
more sync for default ssh-add identities; ok markus@
2002-02-08 22:02:16 +11:00
5aa5d78e40
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2002/02/04 12:15:25
[sshd.c]
add SYSLOG_FACILITY_NOT_SET = -1, SYSLOG_LEVEL_NOT_SET = -1,
fixes arm/netbsd; based on patch from bjh21@netbsd.org ; ok djm@
2002-02-08 22:01:54 +11:00
f3451a2181
- (djm) Cleanup after sync:
...
- :%s/reverse_mapping_check/verify_reverse_mapping/g
2002-02-05 12:40:46 +11:00
cb8ea157b8
- djm@cvs.openbsd.org 2002/02/05 00:00:46
...
[sftp.1 sftp.c sftp-client.c sftp-client.h sftp-int.c]
Add "-B" option to specify copy buffer length (default 32k); ok markus@
2002-02-05 12:27:58 +11:00
d14ee1e29c
- djm@cvs.openbsd.org 2002/02/04 21:53:12
...
[sftp.1 sftp.c]
Add "-P" option to directly connect to a local sftp-server. Should be useful
for regression testing; ok markus@
2002-02-05 12:27:31 +11:00
ab57f35114
- stevesk@cvs.openbsd.org 2002/02/04 20:41:16
...
[ssh-add.1]
more sync for default ssh-add identities; ok markus@
2002-02-05 12:26:58 +11:00
fcd9320440
- markus@cvs.openbsd.org 2002/02/04 12:15:25
...
[log.c log.h readconf.c servconf.c]
add SYSLOG_FACILITY_NOT_SET = -1, SYSLOG_LEVEL_NOT_SET = -1,
fixes arm/netbsd; based on patch from bjh21@netbsd.org ; ok djm@
2002-02-05 12:26:34 +11:00
9b74bfc5be
- markus@cvs.openbsd.org 2002/02/04 11:58:10
...
[auth2.c]
cross checking of announced vs actual pktype in pubkey/hostbaed auth; ok stevesk@
2002-02-05 12:26:03 +11:00
4d4d53f399
- stevesk@cvs.openbsd.org 2002/02/04 00:53:39
...
[ssh-agent.c]
unneeded includes
2002-02-05 12:25:28 +11:00
d2b8f1657e
- stevesk@cvs.openbsd.org 2002/02/03 23:22:59
...
[ssh-agent.1]
ssh-add also adds $HOME/.ssh/id_rsa and $HOME/.ssh/id_dsa now.
2002-02-05 12:24:19 +11:00
9749c0c972
- stevesk@cvs.openbsd.org 2002/02/03 22:35:57
...
[ssh.1 sshd.8]
some KeepAlive cleanup/clarify; ok markus@
2002-02-05 12:23:58 +11:00
68f45983b2
- markus@cvs.openbsd.org 2002/02/03 17:59:23
...
[sshconnect2.c]
more cross checking if announced vs. used key type; ok stevesk@
2002-02-05 12:23:32 +11:00
67f0bc043c
- markus@cvs.openbsd.org 2002/02/03 17:58:21
...
[channels.c channels.h ssh.c]
generic callbacks are not really used, remove and
add a callback for msg of type SSH2_MSG_CHANNEL_OPEN_CONFIRMATION
ok djm@
2002-02-05 12:23:08 +11:00
50e884d125
- markus@cvs.openbsd.org 2002/02/03 17:55:55
...
[channels.c channels.h]
remove unused channel_input_channel_request
2002-02-05 12:22:08 +11:00
c7ef63dd41
- markus@cvs.openbsd.org 2002/02/03 17:53:25
...
[auth1.c serverloop.c session.c session.h]
don't use channel_input_channel_request and callback
use new server_input_channel_req() instead:
server_input_channel_req does generic request parsing on server side
session_input_channel_req handles just session specific things now
ok djm@
2002-02-05 12:21:42 +11:00
664d6b9a8e
- markus@cvs.openbsd.org 2002/01/31 15:00:05
...
[serverloop.c]
no need for WNOHANG; ok stevesk@
2002-02-05 12:20:16 +11:00
9ab47eeb22
- markus@cvs.openbsd.org 2002/01/31 13:35:11
...
[kexdh.c kexgex.c]
cross check announced key type and type from key blob
2002-02-05 12:19:52 +11:00
07a2d429b2
- markus@cvs.openbsd.org 2002/01/29 23:50:37
...
[scp.1 ssh.1]
mention exit status; ok stevesk@
2002-02-05 12:16:15 +11:00
5fab4b9b1d
- markus@cvs.openbsd.org 2002/01/29 22:46:41
...
[session.c]
don't depend on servconf.c; ok djm@
2002-02-05 12:15:07 +11:00
c313be2756
- markus@cvs.openbsd.org 2002/01/29 16:41:19
...
[ssh-add.1]
add DIAGNOSTICS; ok stevesk@
2002-02-05 12:14:41 +11:00
baa0870852
- stevesk@cvs.openbsd.org 2002/01/29 16:29:02
...
[session.c]
limit subsystem length in log; ok markus@
2002-02-05 12:14:10 +11:00
c5d8635d6a
- markus@cvs.openbsd.org 2002/01/29 14:32:03
...
[auth2.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c canohost.c servconf.c servconf.h session.c sshd.8 sshd_config]
s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@
2002-02-05 12:13:41 +11:00
43cba34b64
- markus@cvs.openbsd.org 2002/01/29 14:27:57
...
[ssh-add.c]
exit 2 if no agent, exit 1 if list fails; debian#61078; ok djm@
2002-02-05 12:12:49 +11:00
35b13d633b
- stevesk@cvs.openbsd.org 2002/01/27 18:08:17
...
[ssh.c]
handle simple case to identify FamilyLocal display; ok markus@
2002-02-05 12:12:09 +11:00
95c249ff47
- stevesk@cvs.openbsd.org 2002/01/27 14:57:46
...
[channels.c servconf.c servconf.h session.c sshd.8 sshd_config]
add X11UseLocalhost; ok markus@
2002-02-05 12:11:34 +11:00
512bccbb5a
- stevesk@cvs.openbsd.org 2002/01/26 16:44:22
...
[includes.h session.c]
revert code to add x11 localhost display authorization entry for
hostname/unix:d and uts.nodename/unix:d if nodename was different than
hostname. just add entry for unix:d instead. ok markus@
2002-02-05 12:11:02 +11:00
3672e4bc7a
- markus@cvs.openbsd.org 2002/01/25 22:07:40
...
[kex.c kexdh.c kexgex.c key.c mac.c]
use EVP_MD_size(evp_md) and not evp_md->md_size; ok steveks@
2002-02-05 11:54:07 +11:00
c516e928cd
- markus@cvs.openbsd.org 2002/01/25 21:42:11
...
[ssh-dss.c ssh-rsa.c]
use static EVP_MAX_MD_SIZE buffers for EVP_DigestFinal; ok stevesk@
don't use evp_md->md_size, it's not public.
2002-02-05 11:53:43 +11:00
3a8262ffcc
- markus@cvs.openbsd.org 2002/01/25 21:00:24
...
[sshconnect2.c]
unused include
2002-02-05 11:53:15 +11:00
4d007769bf
- stevesk@cvs.openbsd.org 2002/01/24 21:13:23
...
[packet.c]
need misc.h for set_nodelay()
2002-02-05 11:52:54 +11:00
398e1cfa23
- (djm) OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2002/01/24 21:09:25
[channels.c misc.c misc.h packet.c]
add set_nodelay() to set TCP_NODELAY on a socket (prep for nagle tuning).
no nagle changes just yet; ok djm@ markus@
2002-02-05 11:52:13 +11:00
1e2c600892
[configure.ac] fix logic on when ssh-rand-helper is installed.
...
[sshd_config] put back in line that tells what PATH was compiled into sshd.
2002-01-30 22:14:03 -08:00
8eb7141758
- (djm) Delay PRNG seeding until we need it in ssh-keygen, from markus@
2002-01-30 09:37:06 +11:00
6677d419de
- (djm) Don't grab Xserver or pointer by default. x11-ssh-askpass doesn't
...
and grabbing can cause deadlocks with kinput2.
2002-01-25 00:59:25 +11:00
414642b26f
- (djm) Don't grab Xserver by default. x11-ssh-askpass doesn't and grabbing
...
can cause deadlocks with kinput2
2002-01-25 00:46:04 +11:00
020daf437b
- (stevesk) Makefile.in: bug #61 ; delete commented line for now.
2002-01-23 23:26:43 +00:00
fa9b641eb0
- (bal) reverted out of 5/2001 change to atexit(). I assume I
...
did it to handle SonyOS. If that is the case than we will
do a special case for them.
2002-01-23 06:54:30 +00:00
e996d72e02
- (djm) Use case statements in autoconf to clean up some tests
2002-01-23 11:20:59 +11:00
7dc8197f8b
- (stevesk) fix --with-zlib=
2002-01-22 21:59:31 +00:00
6385ba0228
- (djm) Fix non-standard shell syntax in autoconf. Patch from
...
Dave Dykstra <dwd@bell-labs.com>
2002-01-23 08:12:36 +11:00
ec52d7c093
- (djm) Use local sys/queue.h if necessary in ssh-agent.c
2002-01-22 23:52:17 +11:00
28e4d8f87b
- (djm) Recent Glibc includes an incompatible sys/queue.h. Treat it as
...
bogus in configure
2002-01-22 23:51:42 +11:00
1fc2343e35
- (djm) Make auth2-pam.c compile again after dispatch.h and packet.h
...
changes
2002-01-22 23:43:12 +11:00
4fbf08a8f0
- stevesk@cvs.openbsd.org 2002/01/22 02:52:41
...
[servconf.c]
typo in error message; from djast@cs.toronto.edu
2002-01-22 23:35:09 +11:00
73f1074272
- markus@cvs.openbsd.org 2002/01/21 23:27:10
...
[channels.c nchan.c]
cleanup channels faster if the are empty and we are in drain-state; ok deraadt@
2002-01-22 23:34:52 +11:00
914bef437e
- markus@cvs.openbsd.org 2002/01/21 22:30:12
...
[cipher.c compat.c myproposal.h]
remove "rijndael-*", just use "aes-" since this how rijndael is called
in the drafts; ok stevesk@
2002-01-22 23:34:35 +11:00
49d795c647
- markus@cvs.openbsd.org 2002/01/21 15:13:51
...
[sshconnect.c]
use read_passphrase+ECHO in confirm(), allows use of ssh-askpass
for hostkey confirm.
2002-01-22 23:34:12 +11:00
df64a682f1
- stevesk@cvs.openbsd.org 2002/01/18 20:46:34
...
[sshd.8]
clarify Allow(Groups|Users) and Deny(Groups|Users); suggestion from
allard@oceanpark.com ; ok markus@
2002-01-22 23:33:45 +11:00
4a8ed54361
- stevesk@cvs.openbsd.org 2002/01/18 18:14:17
...
[authfd.c bufaux.c buffer.c cipher.c packet.c ssh-agent.c ssh-keygen.c]
unneeded cast cleanup; ok markus@
2002-01-22 23:33:31 +11:00
9c3f9505d9
- stevesk@cvs.openbsd.org 2002/01/18 17:14:16
...
[sshd.8]
correct Ciphers default; paola.mannaro@ubs.com
2002-01-22 23:33:15 +11:00
5488b7ec4e
- stevesk@cvs.openbsd.org 2002/01/17 04:27:37
...
[log.c]
casts to silence enum type warnings for bugzilla bug 37; ok markus@
2002-01-22 23:32:57 +11:00
c497e38ce6
- stevesk@cvs.openbsd.org 2002/01/16 17:55:33
...
[ssh_config]
correct some commented defaults. add Ciphers default. ok markus@
2002-01-22 23:32:39 +11:00
fae2386cc9
- stevesk@cvs.openbsd.org 2002/01/16 17:42:33
...
[ssh.1]
correct defaults for -i/IdentityFile; ok markus@
2002-01-22 23:32:26 +11:00
2bec5c1543
- stevesk@cvs.openbsd.org 2002/01/16 17:40:23
...
[sshd_config]
The stategy now used for options in the default sshd_config shipped
with OpenSSH is to specify options with their default value where
possible, but leave them commented. Uncommented options change a
default value. Subsystem is currently the only default option
changed. ok markus@
2002-01-22 23:32:07 +11:00
b16461ce45
- markus@cvs.openbsd.org 2002/01/16 13:17:51
...
[channels.c channels.h serverloop.c ssh.c]
wrapper for channel_setup_fwd_listener
2002-01-22 23:29:22 +11:00
b51ed39161
- markus@cvs.openbsd.org 2002/01/14 13:57:03
...
[channels.h nchan.c]
(c) 2002
2002-01-22 23:29:03 +11:00
5144df9261
- markus@cvs.openbsd.org 2002/01/14 13:55:55
...
[channels.c channels.h nchan.c]
remove function pointers for events, remove chan_init*; ok provos@
2002-01-22 23:28:45 +11:00
472d05716a
- markus@cvs.openbsd.org 2002/01/14 13:41:13
...
[nchan.c]
remove duplicated code; ok provos@
2002-01-22 23:28:28 +11:00
ebc11d3012
- markus@cvs.openbsd.org 2002/01/14 13:40:10
...
[nchan.c]
correct fn names for ssh2, do not switch from closed to closed; ok provos@
2002-01-22 23:28:13 +11:00
fcfc43b617
- markus@cvs.openbsd.org 2002/01/14 13:34:07
...
[nchan.c]
merge chan_[io]buf_empty[12]; ok provos@
2002-01-22 23:27:45 +11:00
abea8ee1c3
- markus@cvs.openbsd.org 2002/01/13 21:31:20
...
[channels.h nchan.c]
add chan_set_[io]state(), order states, state is now an u_int,
simplifies debugging messages; ok provos@
2002-01-22 23:27:11 +11:00
0e3b87279c
- markus@cvs.openbsd.org 2002/01/13 17:57:37
...
[auth2.c auth2-chall.c compat.c sshconnect2.c sshd.c]
use buffer API and avoid static strings of fixed size; ok provos@/mouring@
2002-01-22 23:26:38 +11:00
1a534ae97f
- provos@cvs.openbsd.org 2002/01/13 17:27:07
...
[ssh-agent.c]
change to use queue.h macros; okay markus@
2002-01-22 23:26:13 +11:00
df224031ca
- markus@cvs.openbsd.org 2002/01/12 13:10:29
...
[auth-skey.c]
undo local change
2002-01-22 23:25:46 +11:00
73f18346bc
- markus@cvs.openbsd.org 2002/01/11 23:26:30
...
[auth-skey.c]
use snprintf; mouring@
2002-01-22 23:25:30 +11:00
209ee4e368
- markus@cvs.openbsd.org 2002/01/11 23:02:51
...
[auth2-chall.c]
use snprintf; mouring@
2002-01-22 23:25:08 +11:00
85830d1dc0
- markus@cvs.openbsd.org 2002/01/11 23:02:18
...
[readpass.c]
use _PATH_TTY
2002-01-22 23:24:51 +11:00
a5ebe0c39d
- markus@cvs.openbsd.org 2002/01/11 20:14:11
...
[auth2-chall.c auth-skey.c]
use strlcpy not strlcat; mouring@
2002-01-22 23:24:33 +11:00
7d05339c70
- markus@cvs.openbsd.org 2002/01/11 13:39:36
...
[auth2.c dispatch.c dispatch.h kex.c]
a single dispatch_protocol_error() that sends a message of type 'UNIMPLEMENTED'
dispatch_range(): set handler for a ranges message types
use dispatch_protocol_ignore() for authentication requests after
successful authentication (the drafts requirement).
serverloop/clientloop now send a 'UNIMPLEMENTED' message instead of exiting.
2002-01-22 23:24:13 +11:00
84b8ab3eee
- markus@cvs.openbsd.org 2002/01/11 13:36:43
...
[ssh2.h]
add defines for msg type ranges
2002-01-22 23:23:41 +11:00
659811f7fc
- markus@cvs.openbsd.org 2002/01/11 10:31:05
...
[packet.c]
handle received SSH2_MSG_UNIMPLEMENTED messages; ok djm@
2002-01-22 23:23:11 +11:00
66ac6a43a8
- markus@cvs.openbsd.org 2002/01/10 12:47:59
...
[nchan.c]
more unused code (with channels.c:1.156)
2002-01-22 23:22:44 +11:00
4ce2595259
- markus@cvs.openbsd.org 2002/01/10 12:38:26
...
[nchan.c]
remove dead code (skip drain)
2002-01-22 23:22:20 +11:00
c3fa407073
- markus@cvs.openbsd.org 2002/01/10 11:24:04
...
[clientloop.c]
handle SSH2_MSG_GLOBAL_REQUEST (just reply with failure); ok djm@
2002-01-22 23:21:58 +11:00
056cf73d35
- markus@cvs.openbsd.org 2002/01/10 11:13:29
...
[serverloop.c]
skip client_alive_check until there are channels; ok beck@
2002-01-22 23:21:39 +11:00
76765c0b1a
- markus@cvs.openbsd.org 2002/01/09 17:26:35
...
[channels.c nchan.c]
replace buffer_consume(b, buffer_len(b)) with buffer_clear(b); ok provos@
2002-01-22 23:21:15 +11:00
de6987c2b9
- markus@cvs.openbsd.org 2002/01/09 17:16:00
...
[channels.c]
merge channel_pre_open_15/channel_pre_open_20; ok provos@
2002-01-22 23:20:40 +11:00
a1db12bac4
- markus@cvs.openbsd.org 2002/01/09 13:49:27
...
[ssh-keygen.c]
append \n only for public keys
2002-01-22 23:20:15 +11:00
70972eb388
- stevesk@cvs.openbsd.org 2002/01/05 21:51:56
...
[ssh.1 sshd.8]
some missing and misplaced periods
2002-01-22 23:19:55 +11:00
a90fc08b88
- markus@cvs.openbsd.org 2002/01/05 10:43:40
...
[channels.c]
fix hanging x11 channels for rejected cookies (e.g. XAUTHORITY=/dev/null xbiff)
bug #36 , based on patch from djast@cs.toronto.edu
2002-01-22 23:19:38 +11:00
7fc2373f17
- stevesk@cvs.openbsd.org 2002/01/04 18:14:16
...
[servconf.c sshd.8]
protocol 2 HostKey code default is now /etc/ssh_host_rsa_key and
/etc/ssh_host_dsa_key like we have in sshd_config. ok markus@
2002-01-22 23:19:11 +11:00
f51b0e1a30
- stevesk@cvs.openbsd.org 2002/01/04 17:59:17
...
[readconf.c servconf.c]
remove #ifdef _PATH_XAUTH/#endif; ok markus@
2002-01-22 23:18:49 +11:00
56ccf41de2
- stevesk@cvs.openbsd.org 2002/01/03 04:11:08
...
[ssh_config]
grammar in comment
2002-01-22 23:18:32 +11:00
708d21c802
- stevesk@cvs.openbsd.org 2001/12/29 21:56:01
...
[authfile.c channels.c compress.c packet.c sftp-server.c ssh-agent.c ssh-keygen.c]
remove unneeded casts and some char->u_char cleanup; ok markus@
2002-01-22 23:18:15 +11:00
dc9e067614
- stevesk@cvs.openbsd.org 2001/12/28 22:37:48
...
[ssh.1 sshd.8]
document LogLevel DEBUG[123]; ok markus@
2002-01-22 23:17:51 +11:00
630d6f4479
- markus@cvs.openbsd.org 2001/12/28 15:06:00
...
[auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c dispatch.h kex.c kex.h serverloop.c ssh.c sshconnect2.c]
remove plen from the dispatch fn. it's no longer used.
2002-01-22 23:17:30 +11:00
dff5099f13
- markus@cvs.openbsd.org 2001/12/28 14:50:54
...
[auth1.c auth-rsa.c channels.c dispatch.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
packet_read* no longer return the packet length, since it's not used.
2002-01-22 23:16:32 +11:00
76e1e368b5
- markus@cvs.openbsd.org 2001/12/28 14:13:13
...
[bufaux.c bufaux.h packet.c]
buffer_get_bignum: int -> void
2002-01-22 23:15:57 +11:00
d432ccf740
- markus@cvs.openbsd.org 2001/12/28 13:57:33
...
[auth1.c kexdh.c kexgex.c packet.c packet.h sshconnect1.c sshd.c]
packet_get_bignum* no longer returns a size
2002-01-22 23:14:44 +11:00
29f75f5c25
oops, that last commit was really:
...
- markus@cvs.openbsd.org 2001/12/28 12:14:27
[auth1.c auth2.c auth2-chall.c auth-rsa.c channels.c clientloop.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
s/packet_done/packet_check_eom/ (end-of-message); ok djm@
with 47 more patchsets to go, I am not going to back out all the files for
the sake of a commit message...
2002-01-22 23:14:10 +11:00
48b03fc546
- markus@cvs.openbsd.org 2001/12/27 20:39:58
...
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
2002-01-22 23:11:40 +11:00
66823cddbe
- markus@cvs.openbsd.org 2001/12/27 20:39:58
...
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
2002-01-22 23:11:38 +11:00
d221ca6cc9
- markus@cvs.openbsd.org 2001/12/27 19:54:53
...
[auth1.c auth.h auth-rh-rsa.c]
auth_rhosts_rsa now accept generic keys.
2002-01-22 23:11:00 +11:00
9ef95ddcaf
- markus@cvs.openbsd.org 2001/12/27 19:37:23
...
[dh.c kexdh.c kexgex.c]
always use BN_clear_free instead of BN_free
2002-01-22 23:10:33 +11:00
040b64f60a
- markus@cvs.openbsd.org 2001/12/27 18:26:13
...
[authfile.c]
missing include
2002-01-22 23:10:04 +11:00
7d1ded4972
- stevesk@cvs.openbsd.org 2001/12/27 18:22:53
...
[sshd.8]
clarify -p; ok markus@
2002-01-22 23:09:41 +11:00
da7551677b
- markus@cvs.openbsd.org 2001/12/27 18:22:16
...
[auth1.c authfile.c auth-rsa.c dh.c kexdh.c kexgex.c key.c rsa.c scard.c ssh-agent.c sshconnect1.c sshd.c ssh-dss.c]
call fatal() for openssl allocation failures
2002-01-22 23:09:22 +11:00
154dda73a8
- markus@cvs.openbsd.org 2001/12/27 18:10:29
...
[ssh-keygen.c]
-t is only needed for key generation (unbreaks -i, -e, etc).
2002-01-22 23:08:16 +11:00
aef7a095c8
- markus@cvs.openbsd.org 2001/12/25 18:53:00
...
[auth1.c]
be more carefull on allocation
2002-01-22 23:07:52 +11:00
503761ac45
- markus@cvs.openbsd.org 2001/12/25 18:49:56
...
[key.c]
be more careful on allocation
2002-01-22 23:07:21 +11:00
a055c25d05
- deraadt@cvs.openbsd.org 2001/12/24 07:29:43
...
[ssh-add.c]
try all listed keys.. how did this get broken?
(oops - that was me)
2002-01-22 23:07:01 +11:00
7c31809c4a
- markus@cvs.openbsd.org 2001/12/21 12:17:33
...
[serverloop.c]
remove ifdef for USE_PIPES since fdin != fdout; ok djm@
2002-01-22 23:06:22 +11:00
6e1057c2d7
- djm@cvs.openbsd.org 2001/12/21 10:06:43
...
[ssh-add.1 ssh-add.c]
Try all standard key files (id_rsa, id_dsa, identity) when invoked with
no arguments; ok markus@
2002-01-22 23:05:59 +11:00
f451e22e21
- djm@cvs.openbsd.org 2001/12/21 08:53:45
...
[readpass.c]
Avoid interruptable passphrase read; ok markus@
2002-01-22 23:05:31 +11:00
a41c8b15bd
- djm@cvs.openbsd.org 2001/12/21 08:52:22
...
[ssh-keygen.1 ssh-keygen.c]
Remove default (rsa1) key type; ok markus@
2002-01-22 23:05:08 +11:00
ec932376b7
- (djm) autoconf hacking:
...
- Add OpenSSL sanity check: verify that header version matches version
reported by library
2002-01-22 22:16:03 +11:00
c46cc5445d
- (djm) Fix some bugs I introduced into ssh-rand-helper yesterday
2002-01-22 21:58:27 +11:00
6c21c51c48
- (djm) autoconf hacking:
...
- We don't support --without-zlib currently, so don't allow it.
- Rework cryptographic random number support detection. We now detect
whether OpenSSL seeds itself. If it does, then we don't bother with
the ssh-rand-helper program. You can force the use of ssh-rand-helper
using the --with-rand-helper configure argument
- Simplify and clean up ssh-rand-helper configuration
2002-01-22 21:57:53 +11:00
7b10ef4877
- (djm) Rework ssh-rand-helper:
...
- Reduce quantity of ifdef code, in preparation for ssh_rand_conf
- Always seed from system calls, even when doing PRNGd seeding
- Tidy and comment #define knobs
- Remove unused facility for multiple runs through command list
- KNF, cleanup, update copyright
2002-01-21 23:44:12 +11:00
a234451a70
- (djm) Bug #50 - make autoconf entropy path checks more robust
2002-01-14 19:01:03 +11:00
2f8f6e3b1c
- (stevesk) defines.h: use "/var/spool/sockets/X11/%u" for HP-UX. does
...
not depend on transition links. from Lutz Jaenicke.
2002-01-08 21:59:06 +00:00
bb9ffc18ca
- (djm) Merge Cygwin copy_environment with do_pam_environment, removing
...
fixed env var size limit in the process. Report from Corinna Vinschen
<vinschen@redhat.com>
2002-01-08 10:59:32 +11:00
f49a1191c7
- (stevesk) defines.h: determine _PATH_UNIX_X; currently "/tmp/.X11-unix/X%u"
...
for all platforms except HP-UX, which is "/usr/spool/sockets/X11/%u".
2002-01-06 02:32:57 +00:00
0bd4b34c9b
- (stevesk) fix spurious ; from NCR change.
2002-01-05 23:24:27 +00:00
381d8d9d89
- (bal) NCR requies use_pipes to operate correctly.
2002-01-05 17:15:30 +00:00
f9661094e5
- (djm) Use bigcrypt() on systems with SCO_PROTECTED_PW. Patch from
...
Roger Cornelius <rac@tenzing.org>
2002-01-03 10:30:56 +11:00
b65a93d3a6
test openssh-commits list
2001-12-31 11:59:53 +11:00
bc5239bd62
testing again
2001-12-31 11:55:59 +11:00
6a568f3ca9
- (djm) Typo in contrib/cygwin/README Fix from Corinna Vinschen
...
<vinschen@redhat.com>
2001-12-29 14:10:09 +11:00
0dea79d6b6
- (djm) Apply Cygwin pointer deref fix from Corinna Vinschen
...
<vinschen@redhat.com> Could be abused to guess valid usernames
2001-12-29 14:08:28 +11:00
6cb127fc14
- (djm) Remove recommendation to use GNU make, we should support most
...
make programs.
2001-12-28 09:57:33 +11:00
9443508b96
- (stevesk) [Makefile.in ssh-rand-helper.c]
...
portable lib and __progname support for ssh-rand-helper; ok djm@
2001-12-25 04:32:58 +00:00
2ad31ee68a
- (bal) Removed contrib/chroot.diff and noted in contrib/README that it
...
was not being maintained.
2001-12-24 02:59:19 +00:00
62116dcc0a
- (djm) Ignore fix & patchlevel in OpenSSL version check. Patch from
...
solar@openwall.com
- (djm) Rework entropy code. If the OpenSSL PRNG is has not been
internally seeded, execute a subprogram "ssh-rand-helper" to obtain
some entropy for us. Rewrite the old in-process entropy collecter as
an example ssh-rand-helper.
- (djm) Always perform ssh_prng_cmds path lookups in configure, even if
we don't end up using ssh_prng_cmds (so we always get a valid file)
2001-12-24 01:41:47 +11:00
278f907a2d
- djm@cvs.openbsd.org 2001/12/20 22:50:24
...
[auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c]
[dispatch.h kex.c kex.h packet.c packet.h serverloop.c ssh.c]
[sshconnect2.c]
Conformance fix: we should send failing packet sequence number when
responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by
yakk@yakk.dot.net ; ok markus@
2001-12-21 15:00:19 +11:00
e737856350
- markus@cvs.openbsd.org 2001/12/20 16:37:29
...
[channels.c channels.h session.c]
setup x11 listen socket for just one connect if the client requests so.
(v2 only, but the openssh client does not support this feature).
2001-12-21 14:58:35 +11:00
5a6b4fe225
- stevesk@cvs.openbsd.org 2001/12/19 17:16:13
...
[authfile.c bufaux.c bufaux.h buffer.c buffer.h packet.c packet.h ssh.c]
change the buffer/packet interface to use void* vs. char*; ok markus@
2001-12-21 14:56:54 +11:00
f6681a3a96
- markus@cvs.openbsd.org 2001/12/19 16:09:39
...
[serverloop.c]
fix race between SIGCHLD and select with an additional pipe. writing
to the pipe on SIGCHLD wakes up select(). using pselect() is not
portable and siglongjmp() ugly. W. R. Stevens suggests similar solution.
initial idea by pmenage@ensim.com ; ok deraadt@, djm@
2001-12-21 14:53:11 +11:00
9f0f5c64bc
- deraadt@cvs.openbsd.org 2001/12/19 07:18:56
...
[auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h]
[auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c]
[cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c]
[match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c]
[servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c]
[sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c]
[sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config]
[ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c]
basic KNF done while i was looking for something else
2001-12-21 14:45:46 +11:00
89681214ca
- jakob@cvs.openbsd.org 2001/12/18 10:06:24
...
[auth-rsa.c]
log fingerprint on successful public key authentication, simplify usage of key structs; ok markus@
2001-12-21 12:52:39 +11:00
da9edcabf8
- jakob@cvs.openbsd.org 2001/12/18 10:05:15
...
[auth2.c]
log fingerprint on successful public key authentication; ok markus@
2001-12-21 12:48:54 +11:00
5b2aea9494
- jakob@cvs.openbsd.org 2001/12/18 10:04:21
...
[auth.h hostfile.c hostfile.h]
remove auth_rsa_read_key, make hostfile_ready_key non static; ok markus@
2001-12-21 12:47:09 +11:00
83c02ef623
- markus@cvs.openbsd.org 2001/12/10 20:34:31
...
[ssh-keyscan.c]
check that server supports v1 for -t rsa1, report from wirth@dfki.de
2001-12-21 12:45:43 +11:00
72c336def6
- stevesk@cvs.openbsd.org 2001/12/10 16:45:04
...
[sshd.c]
possible fd leak on error; ok markus@
2001-12-21 12:44:28 +11:00
ee11625d43
- markus@cvs.openbsd.org 2001/12/09 18:45:56
...
[auth2.c auth2-chall.c auth.h]
add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions,
fixes memleak.
2001-12-21 12:42:34 +11:00
3afe375fd2
- stevesk@cvs.openbsd.org 2001/12/08 17:49:28
...
[channels.c pathnames.h]
use only one path to X11 UNIX domain socket vs. an array of paths
to try. report from djast@cs.toronto.edu . ok markus@
2001-12-21 12:39:51 +11:00
faf2f6483a
- (djm) Add option to gnome-ssh-askpass to stop it from grabbing the X
...
server. I have found this necessary to avoid server hangs with X input
extensions (e.g. kinput2). Enable by setting the environment variable
"GNOME_SSH_ASKPASS_NOGRAB"
2001-12-21 10:28:07 +11:00
366298c696
- (stevesk) OpenBSD CVS sync X11 localhost display
...
- stevesk@cvs.openbsd.org 2001/11/29 14:10:51
[channels.h channels.c session.c]
sshd X11 fake server will now listen on localhost by default:
$ echo $DISPLAY
localhost:12.0
$ netstat -an|grep 6012
tcp 0 0 127.0.0.1.6012 *.* LISTEN
tcp6 0 0 ::1.6012 *.* LISTEN
sshd_config gatewayports=yes can be used to revert back to the old
behavior. will control this with another option later. ok markus@
- stevesk@cvs.openbsd.org 2001/12/19 08:43:11
[includes.h session.c]
handle utsname.nodename case for FamilyLocal X authorization; ok markus@
2001-12-19 17:58:01 +00:00
73f57be500
- stevesk@cvs.openbsd.org 2001/12/06 18:20:32
...
[channels.c]
disable nagle for X11 fake server and client TCPs. from netbsd.
ok markus@
2001-12-07 17:28:34 +00:00
ccd8d07b3c
- stevesk@cvs.openbsd.org 2001/12/06 18:09:23
...
[channels.c session.c]
strncpy->strlcpy. remaining strncpy's are necessary. ok markus@
2001-12-07 17:26:48 +00:00
e181a4d294
- stevesk@cvs.openbsd.org 2001/12/06 18:02:32
...
[channels.c sshconnect.c]
shutdown(sock, SHUT_RDWR) not needed here; ok markus@
2001-12-07 17:24:49 +00:00
c97b1affc5
- (bal) PCRE no longer required. Banished from the source along with
...
fake-regex.h
2001-12-07 17:20:47 +00:00
ade03f6bad
- markus@cvs.openbsd.org 2001/12/06 13:30:06
...
[servconf.c servconf.h sshd.8 sshd.c]
add -o to sshd, too. ok deraadt@
- (bal) Minor white space fix up in servconf.c
2001-12-06 18:22:17 +00:00
9eab262f1c
- markus@cvs.openbsd.org 2001/12/05 16:54:51
...
[compat.c match.c match.h]
make theo and djm happy: bye bye regexp
2001-12-06 18:06:05 +00:00
ff4a14f809
- markus@cvs.openbsd.org 2001/12/05 15:04:48
...
[version.h]
post 3.0.2
2001-12-06 18:02:59 +00:00
1c37c6a518
- deraadt@cvs.openbsd.org 2001/12/05 10:06:12
...
[authfd.c authfile.c bufaux.c channels.c compat.c kex.c kexgex.c
key.c misc.c packet.c servconf.c ssh-agent.c sshconnect2.c
sshconnect.c sshd.c ssh-dss.c ssh-keygen.c ssh-rsa.c]
minor KNF
2001-12-06 18:00:18 +00:00
3c36bb29ca
- itojun@cvs.openbsd.org 2001/12/05 03:56:39
...
[auth1.c auth2.c canohost.c channels.c deattack.c packet.c scp.c
sshconnect2.c]
make it compile with more strict prototype checking
2001-12-06 17:55:26 +00:00
f8f065bc75
- itojun@cvs.openbsd.org 2001/12/05 03:50:01
...
[clientloop.c serverloop.c sshd.c]
deal with LP64 printf issue with sig_atomic_t. from thorpej
2001-12-06 17:52:16 +00:00
d05487d1db
- deraadt@cvs.openbsd.org 2001/12/02 02:08:32
...
[sftp-common.c]
zap };
2001-12-06 17:50:03 +00:00
38b951cdb2
- markus@cvs.openbsd.org 2001/12/01 21:41:48
...
[session.c sshd.8]
don't pass user defined variables to /usr/bin/login
2001-12-06 17:47:47 +00:00
4a4bd719ea
- stevesk@cvs.openbsd.org 2001/11/30 20:39:28
...
[ssh.c]
sscanf() length dependencies are clearer now; can also shrink proto
and data if desired, but i have not done that. ok markus@
2001-12-06 17:45:19 +00:00
57fe5b592c
- markus@cvs.openbsd.org 2001/11/29 22:08:48
...
[auth-rsa.c]
fix protocol error: send 'failed' message instead of a 2nd challenge
(happens if the same key is in authorized_keys twice).
reported Ralf_Meister@genua.de ; ok djm@
2001-12-06 17:41:25 +00:00
623e4a0b1a
- stevesk@cvs.openbsd.org 2001/11/29 19:06:39
...
[channels.h]
remove dead function prototype; ok markus@
2001-12-06 16:49:57 +00:00
5e71c54b8c
- markus@cvs.openbsd.org 2001/11/22 12:34:22
...
[clientloop.c serverloop.c sshd.c]
volatile sig_atomic_t
2001-12-06 16:48:14 +00:00
28c603bf43
- stevesk@cvs.openbsd.org 2001/11/22 05:27:29
...
[ssh-keyscan.c]
don't use "\n" in fatal()
2001-12-06 16:45:10 +00:00
4e366d5048
- stevesk@cvs.openbsd.org 2001/11/21 18:49:14
...
[ssh-keygen.1]
more on passphrase construction; ok markus@
2001-12-06 16:43:21 +00:00
4cbc181983
- markus@cvs.openbsd.org 2001/11/21 15:51:24
...
[key.c]
mem leak
2001-12-06 16:41:41 +00:00
70a290c5f7
- mpech@cvs.openbsd.org 2001/11/19 19:02:16
...
[deattack.c radix.c]
kill more registers
millert@ ok
2001-12-06 16:39:56 +00:00
11f790bbb1
- stevesk@cvs.openbsd.org 2001/11/19 18:40:46
...
[ssh-agent.1]
clarify/state that private keys are not exposed to clients using the
agent; ok markus@
2001-12-06 16:37:51 +00:00
d84df989db
- markus@cvs.openbsd.org 2001/11/19 11:20:21
...
[sshd.c]
fd leak on HUP; ok stevesk@
2001-12-06 16:35:40 +00:00
65366a8c76
- stevesk@cvs.openbsd.org 2001/11/17 19:14:34
...
[auth2.c auth.c readconf.c servconf.c ssh-agent.c ssh-keygen.c]
enum/int type cleanup where it made sense to do so; ok markus@
2001-12-06 16:32:47 +00:00
eaffb9d6b6
- markus@cvs.openbsd.org 2001/11/16 12:46:13
...
[ssh-keyscan.c]
handle empty lines instead of dumping core; report from sha@sha-1.net
2001-12-06 16:28:19 +00:00
0795848def
- deraadt@cvs.openbsd.org 2001/11/14 20:45:08
...
[sshd.c]
errno saving wrapping in a signal handler
2001-12-06 16:19:01 +00:00
fe1d100ffd
[contrib/cygwin/README, openbsd-compat/bsd-cygwin_util.c,
...
openbsd-compat/bsd-cygwin_util.h, openbsd-compat/daemon.c]
Allow SSHD to install as service under WIndows 9x/Me
[configure.ac] Fix to allow linking against PCRE on Cygwin
Patches by Corinna Vinschen <vinschen@redhat.com>
2001-11-26 17:19:43 -08:00
f7c6f95682
Release
2001-11-15 23:16:50 +11:00
efdc1f179d
- (djm) Fix IPv4 default in ssh-keyscan. Spotted by Dan Astoorian
...
<djast@cs.toronto.edu> Fix from markus@
2001-11-15 08:40:45 +11:00
353f608740
- (djm) Bump RPM package versions
2001-11-14 00:05:57 +11:00
c3070c8fe0
- markus@cvs.openbsd.org 2001/11/13 02:03:57
...
[version.h]
enter 3.0.1
2001-11-14 00:05:29 +11:00
527366ccba
- markus@cvs.openbsd.org 2001/11/12 11:17:07
...
[servconf.c]
enable authorized_keys2 again. tested by fries@
2001-11-14 00:03:14 +11:00
61b05cfdda
- (djm) OpenBSD CVS Sync
...
- dugsong@cvs.openbsd.org 2001/11/11 18:47:10
[auth-krb5.c]
fix krb5 authorization check. found by <jhawk@MIT.EDU>. from
art@, deraadt@ ok
2001-11-14 00:02:10 +11:00
e49d0966b5
- (djm) AIX login{success,failed} changes. Move loginsuccess call to
...
do_authenticated. Call loginfailed for protocol 2 failures > MAX like
we do for protocol 1. Reports from Ralf Wenk <wera0003@fh-karlsruhe.de>,
K.Wolkersdorfer@fz-juelich.de and others
2001-11-13 23:46:18 +11:00
056ca1eb47
- (djm) Fix early (and double) free of remote user when using Kerberos.
...
Patch from Simon Wilkinson <simon@sxw.org.uk>
2001-11-13 11:20:07 +11:00
726273e129
- (djm) Reorder portable-specific server options so that they come first.
...
This should help reduce diff collisions for new server options (as they
will appear at the end)
2001-11-12 11:40:11 +11:00
75413ac499
- markus@cvs.openbsd.org 2001/11/11 13:02:31
...
[servconf.c]
make AuthorizedKeysFile2 fallback to AuthorizedKeysFile if AuthorizedKeysFile is specified.
2001-11-12 11:14:35 +11:00
084b8d4ed7
- markus@cvs.openbsd.org 2001/11/10 13:37:20
...
[packet.c]
remove extra debug()
2001-11-12 11:07:58 +11:00
eacff8533e
- markus@cvs.openbsd.org 2001/11/10 13:22:42
...
[ssh-rsa.c]
KNF (unexpand)
2001-11-12 11:07:35 +11:00
6a4a4b9290
- markus@cvs.openbsd.org 2001/11/10 13:19:45
...
[sshd.c]
cleanup libwrap support (remove bogus comment, bogus close(), add debug, etc).
2001-11-12 11:07:11 +11:00
e4a0ff4748
- markus@cvs.openbsd.org 2001/11/09 19:08:35
...
[sshd.c]
remove extra trailing dot from log message; pilot@naughty.monkey.org
2001-11-12 11:06:54 +11:00
79faeff2c1
- markus@cvs.openbsd.org 2001/11/09 18:59:23
...
[clientloop.c serverloop.c]
don't memset too much memory, ok millert@
original patch from jlk@kamens.brookline.ma.us via nalin@redhat.com
2001-11-12 11:06:32 +11:00
f655207a46
- markus@cvs.openbsd.org 2001/11/08 20:02:24
...
[auth.c]
don't print ROOT in CAPS for the authentication messages, i.e.
Accepted publickey for ROOT from 127.0.0.1 port 42734 ssh2
becomes
Accepted publickey for root from 127.0.0.1 port 42734 ssh2
2001-11-12 11:06:06 +11:00
705499b248
- markus@cvs.openbsd.org 2001/11/08 17:49:53
...
[ssh.1]
mention setuid root requirements; noted by cnorris@csc.UVic.ca ; ok stevesk@
2001-11-12 11:05:38 +11:00
637b8ae2d4
- markus@cvs.openbsd.org 2001/11/08 10:51:08
...
[readpass.c]
don't strdup too much data; from gotoh@taiyo.co.jp ; ok millert.
2001-11-12 11:05:20 +11:00
36f8dd3ed6
- markus@cvs.openbsd.org 2001/11/07 22:53:21
...
[channels.h]
crank c->path to 256 so they can hold a full hostname; dwd@bell-labs.com
2001-11-12 11:04:54 +11:00
6fd5b391f0
- markus@cvs.openbsd.org 2001/11/07 22:41:51
...
[auth2.c auth-rh-rsa.c]
unused includes
2001-11-12 11:04:28 +11:00
60d8aafcb1
- markus@cvs.openbsd.org 2001/11/07 22:12:01
...
[sshd.8]
s/Keepalive/KeepAlive/; from openbsd@davidkrause.com
2001-11-12 11:04:05 +11:00
36e603db86
- markus@cvs.openbsd.org 2001/11/07 22:10:28
...
[ssh-dss.c ssh-rsa.c]
missing free and sync dss/rsa code.
2001-11-12 11:03:35 +11:00
9af8c3c226
- markus@cvs.openbsd.org 2001/11/07 21:40:21
...
[ssh-rsa.c]
ssh_rsa_sign/verify: SSH_BUG_SIGBLOB not supported
2001-11-12 11:03:16 +11:00
9f64390f41
- markus@cvs.openbsd.org 2001/11/07 16:03:17
...
[packet.c packet.h sshconnect2.c]
pad using the padding field from the ssh2 packet instead of sending
extra ignore messages. tested against several other ssh servers.
2001-11-12 11:02:52 +11:00
1f8dddc927
- markus@cvs.openbsd.org 2001/10/30 20:29:09
...
[ssh.1]
ssh.1
2001-11-12 11:02:25 +11:00
91c1847733
- markus@cvs.openbsd.org 2001/10/29 19:27:15
...
[sshconnect2.c]
hostbased: check for client hostkey before building chost
2001-11-12 11:02:03 +11:00
eb5fec6494
- markus@cvs.openbsd.org 2001/10/25 21:14:32
...
[ssh-keygen.1 ssh-keygen.c]
better docu for fingerprinting, ok deraadt@
2001-11-12 10:52:44 +11:00
96507ef535
- markus@cvs.openbsd.org 2001/10/24 19:57:40
...
[clientloop.c]
make ~& (backgrounding) work again for proto v1; add support ~& for v2, too
2001-11-12 10:52:25 +11:00
07cd5897f9
- markus@cvs.openbsd.org 2001/10/24 08:51:35
...
[clientloop.c ssh.c]
ignore SIGPIPE early, makes ssh work if agent dies, netbsd-pr via itojun@
2001-11-12 10:52:03 +11:00
595bb4f572
- markus@cvs.openbsd.org 2001/10/24 08:41:20
...
[ssh.c]
remove unused
2001-11-12 10:51:40 +11:00
00b61645eb
- markus@cvs.openbsd.org 2001/10/24 08:41:41
...
[sshd.c]
mention remote port in debug message
2001-11-12 10:51:23 +11:00
aba690c100
- (djm) Cygwin config patch from Corinna Vinschen <vinschen@redhat.com>
2001-11-12 10:36:21 +11:00
f41d618fec
- (djm) Makefile correctness fix from Mark D. Baushke <mdb@juniper.net>
2001-11-12 10:34:22 +11:00
de77b464c6
- (stevesk) auth-pam.c: use do_pam_authenticate(PAM_DISALLOW_NULL_AUTHTOK)
...
if permit_empty_passwd == 0 so null password check cannot be bypassed.
jayaraj@amritapuri.com OpenBSD bug 2168
2001-11-09 20:22:16 +00:00
e589a299a1
[ contrib/caldera/openssh.spec contrib/caldera/sshd.init]
...
Updates from Raymund Will <ray@caldera.de>
[acconfig.h configure.in] Clean up login checks.
Problem reported by Jim Knoble <jmknoble@pobox.com>
2001-11-03 11:09:32 -08:00
14a5c99b5c
- (djm) Compat define for OpenSSL < 0.9.6 (No OPENSSL_free)
2001-11-01 09:32:34 +11:00
12eceb2efc
- (djm) Unsmoke drugs: config files should be noreplace.
2001-10-31 10:31:13 +11:00
1c61324728
- (djm) Redhat RPM spec: remove noreplace from config files, allow IPv6
...
by default (can force IPv4 using --define "noipv6 1")
2001-10-30 22:03:51 +11:00
b89e694b4c
[TODO defines.h loginrec.c] Change the references to configure.in
...
to configure.ac
2001-10-29 18:50:39 -08:00
c3ad02e54b
- (stevesk) README: zlib location is http://www.gzip.org/zlib/
2001-10-28 18:10:22 +00:00
fe2f4a1e37
- (stevesk) Fix compile problem with PAM password change fix
2001-10-28 17:32:38 +00:00
092564869a
- (djm) Fix for PAM password changes being echoed (from stevesk)
2001-10-28 22:36:55 +11:00
c3aa3dd70c
- (djm) Disconnect if no tty and PAM reports password expired
2001-10-28 22:34:52 +11:00
33cdd9ee7b
- (djm) Avoid bug in Solaris PAM libs
2001-10-28 22:33:48 +11:00
ffdf4aa10f
[configure.ac] Fixes for ReliantUNIX (don't use libucb)
...
Patch by Robert Dahlem <Robert.Dahlem@siemens.com>
2001-10-27 10:45:36 -07:00
afefd16b6e
Fix install: when building outside of source
...
tree and using --src=/full_path/to/openssh
Patch by Mark D. Baushke <mdb@juniper.net>
2001-10-26 17:33:18 -07:00
9197c59493
- (bal) Set the correct current time in login_utmp_only(). Patch by
...
Wayne Davison <wayned@users.sourceforge.net>
2001-10-26 15:56:55 +00:00
02cebcd93b
Give path given in --with-xxx= for pcre,zlib, and
...
tcp-wrappers precedence over system libraries and includes.
Report from Dave Dykstra <dwd@bell-labs.com>
2001-10-25 10:01:30 -07:00
a0bd44cc49
- (bal) Use VDISABLE if _POSIX_VDISABLE is set in readpassphrase.c. Patch
...
by todd@
2001-10-25 15:02:35 +00:00
8ad995fd07
Use configure.ac instead of configure.in so older versions of autoconf
...
don't even try.
2001-10-24 21:15:26 -07:00
3a78c84535
- (bal) Should be 3.0p1 not 3.0p2. Corrected version.h already.
2001-10-24 21:06:07 +00:00
17b93e5d65
[configure.in] Fix test for broken dirname. Based on patch from
...
Dave Dykstra <dwd@bell-labs.com>. Remove un-needed test for zlib.h.
[contrib/caldera/openssh.spec, contrib/redhat/openssh.spec,
contrib/suse/openssh.spec] Update version to match version.h
2001-10-23 22:36:54 -07:00
95276711eb
- (bal) Added 'PAM_TTY_KLUDGE' to Solaris platform.
2001-10-23 17:14:00 +00:00
ab73b9bd64
- (bal) Updated version to 3.0p1 in preparing for release.
2001-10-23 16:12:54 +00:00
3a8a5cd5b0
- (djm) Fix fd leak in loginrec.c (ro fd to lastlog was left open).
...
Report from Michal Zalewski <lcamtuf@coredump.cx>
2001-10-22 16:49:22 +10:00
13aae5ee76
[configure.in] Clean up library testing.
...
Add optional PATH to --with-pcre, --with-zlib, --with-tcp-wrappers
based on patch by albert chin (china@thewrittenword.com )
Re-arange AC_CHECK_HEADERS and AC_CHECK_FUNCS for eaiser reading
of patches to configure.in
Replace obsolete AC_STRUCT_ST_BLKSIZE with AC_CHECK_MEMBERS
Add test for broken dirname() on Solaris 2.5.1 by
Dan Astoorian <djast@cs.toronto.edu>
[acconfig.h aclocal.m4 defines.h configure.in]
Better socklen_t patch by albert chin (china@thewrittenword.com )
[scp.c]
Replace obsolete HAVE_ST_BLKSIZE with HAVE_STRUCT_STAT_ST_BLKSIZE
[Makefile.in] When running make in top level, always do make in openbsd-compat
patch by Dave Dykstra <dwd@bell-labs.com>
2001-10-21 17:53:58 -07:00
f2366b5a7d
- (bal) Fixed up init.d symlink issue and piddir stuff. Patches by
...
Zoran Milojevic <Zoran.Milojevic@SS8.com> and j.petersen@msh.de
2001-10-19 20:36:23 +00:00
7a97339359
- (bal) Minor bug fix in contrib/solaris/opensshd.in .. $etcdir was not
...
set right.
2001-10-12 21:52:39 +00:00
8b5ba1c39a
- (bal) First wave of contrib/solaris/ package upgrades. Still more
...
work needs to be done, but it is a 190% better then the stuff we
had before!
2001-10-12 20:30:52 +00:00
4a820ea750
- (djm) Cleanup sshpty.c a little
2001-10-12 19:15:48 +10:00
7c734056f4
- (djm) Clean some autoconf-2.52 junk when doing "make distclean"
2001-10-12 19:15:27 +10:00
5f01280c79
- (djm) "make veryclean" fix from Tom Holroyd <tomh@po.crl.go.jp>
2001-10-12 12:04:04 +10:00
164a7f42f9
- markus@cvs.openbsd.org 2001/10/11 15:24:00
...
[clientloop.c]
clear select masks if we return before calling select().
2001-10-12 11:36:09 +10:00
0585d51a52
- markus@cvs.openbsd.org 2001/10/11 13:45:21
...
[session.c]
delay detach of session if a channel gets closed but the child is
still alive. however, release pty, since the fd's to the child are
already closed.
2001-10-12 11:35:50 +10:00
3ec2759ad4
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/10/10 22:18:47
[channels.c channels.h clientloop.c nchan.c serverloop.c]
[session.c session.h]
try to keep channels open until an exit-status message is sent.
don't kill the login shells if the shells stdin/out/err is closed.
this should now work:
ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
2001-10-12 11:35:04 +10:00
4e088e4de0
- (bal) seed_init() and seed_rng() required in ssh-keyscan.c
2001-10-10 20:45:43 +00:00
926ce58d3b
- (bal) removed two unsed headers in openbsd-compat/bsd-misc.c
2001-10-10 20:38:55 +00:00
52b77beb65
- markus@cvs.openbsd.org 2001/10/09 21:59:41
...
[channels.c channels.h serverloop.c session.c session.h]
simplify session close: no more delayed session_close, no more blocking wait() calls.
2001-10-10 15:14:37 +10:00
c71f4e40b6
- markus@cvs.openbsd.org 2001/10/09 19:51:18
...
[serverloop.c]
close all channels if the connection to the remote host has been closed,
should fix sshd's hanging with WCHAN==wait
2001-10-10 15:08:36 +10:00
ae45246696
- markus@cvs.openbsd.org 2001/10/09 19:32:49
...
[session.c]
stat subsystem command before calling do_exec, and return error to client.
2001-10-10 15:08:06 +10:00
139d4cd908
- markus@cvs.openbsd.org 2001/10/09 10:12:08
...
[session.c]
chdir $HOME after krb_afslog(); from bbense@networking.stanford.edu
2001-10-10 15:07:44 +10:00
7ea6f204b6
- markus@cvs.openbsd.org 2001/10/08 16:15:47
...
[sshconnect.c]
use correct family for -b option
2001-10-10 15:04:41 +10:00
d3c04b90e4
- markus@cvs.openbsd.org 2001/10/08 11:48:57
...
[channels.c]
better debug
2001-10-10 15:04:20 +10:00
4623a75462
- markus@cvs.openbsd.org 2001/10/07 17:49:40
...
[channels.c channels.h]
avoid possible FD_ISSET overflow for channels established
during channnel_after_select() (used for dynamic channels).
2001-10-10 15:03:58 +10:00
058655cced
- markus@cvs.openbsd.org 2001/10/07 10:29:52
...
[authfile.c]
grammer; Matthew_Clarke@mindlink.bc.ca
2001-10-10 15:03:36 +10:00
59d9fb9e55
- markus@cvs.openbsd.org 2001/10/06 11:18:19
...
[sshconnect1.c sshconnect2.c sshconnect.c]
unify hostkey check error messages, simplify prompt.
2001-10-10 15:03:11 +10:00
9c75142917
- markus@cvs.openbsd.org 2001/10/06 00:36:42
...
[session.c]
fix typo in error message, sync with do_exec_nopty
2001-10-10 15:02:46 +10:00
e398004f6c
- markus@cvs.openbsd.org 2001/10/06 00:14:50
...
[sshconnect.c]
remove unused argument
2001-10-10 15:02:03 +10:00
8c3902afde
- markus@cvs.openbsd.org 2001/10/04 15:12:37
...
[serverloop.c]
client_alive_check cleanup
2001-10-10 15:01:40 +10:00
af5f2e641c
- markus@cvs.openbsd.org 2001/10/04 15:05:40
...
[channels.c serverloop.c]
comment out bogus conditions for selecting on connection_in
2001-10-10 15:01:16 +10:00
af3030f709
- markus@cvs.openbsd.org 2001/10/04 14:34:16
...
[key.c]
call OPENSSL_free() for memory allocated by openssl; from chombier@mac.com
2001-10-10 15:00:49 +10:00
f16c81f900
- (bal) ssh-copy-id corrected permissions for .ssh/ and authorized_keys.
...
Prompted by Matthew Vernon <matthew@sel.cam.ac.uk>
2001-10-08 01:54:24 +00:00
4c90149c50
- (bal) AES works under Cray, no more hack.
2001-10-06 00:08:09 +00:00
8bceffb0c3
- (bal) nchan2.ms resync. BSD License applied.
2001-10-04 21:16:57 +00:00
c3e49e7b31
- markus@cvs.openbsd.org 2001/10/03 10:01:20
...
[auth.c]
use realpath() for homedir, too. from jinmei@isl.rdc.toshiba.co.jp
2001-10-03 17:55:26 +00:00
1bae404457
- stevesk@cvs.openbsd.org 2001/10/02 22:56:09
...
[sshd.c]
#include "channels.h" for channel_set_af()
2001-10-03 17:46:39 +00:00
569f88de04
- djm@cvs.openbsd.org 2001/10/02 08:38:50
...
[ssh-add.c]
return non-zero exit code on error; ok markus@
2001-10-03 17:43:01 +00:00
3cecc9a41f
- markus@cvs.openbsd.org 2001/10/01 21:51:16
...
[readconf.c readconf.h ssh.1 sshconnect.c]
add NoHostAuthenticationForLocalhost; note that the hostkey is
now check for localhost, too.
2001-10-03 17:39:38 +00:00
908afed17f
- markus@cvs.openbsd.org 2001/10/01 21:38:53
...
[channels.c channels.h ssh.c sshd.c]
remove ugliness; vp@drexel.edu via angelos
2001-10-03 17:34:59 +00:00
3e45e4cd00
- markus@cvs.openbsd.org 2001/10/01 08:06:28
...
[scp.c]
skip filenames containing \n; report jdamery@chiark.greenend.org.uk
and matthew@debian.org
2001-10-03 17:30:58 +00:00
83f07d1954
- markus@cvs.openbsd.org 2001/09/28 15:46:29
...
[ssh.c]
bug: read user config first; report kaukasoi@elektroni.ee.tut.fi
2001-10-03 17:22:29 +00:00
1af4d3bb70
- djm@cvs.openbsd.org 2001/09/28 12:07:09
...
[ssh-keygen.c]
bzero private key after loading to smartcard; ok markus@
2001-10-03 17:18:37 +00:00
6149a6c57f
- camield@cvs.openbsd.org 2001/09/27 17:53:24
...
[sshd.8]
don't talk about compile-time options
ok markus@
2001-10-03 17:15:32 +00:00
bdfb4df08c
- markus@cvs.openbsd.org 2001/09/27 15:31:17
...
[auth2.c auth2-chall.c sshconnect1.c]
typos; from solar
2001-10-03 17:12:43 +00:00
ae3de4b39e
- markus@cvs.openbsd.org 2001/09/27 11:59:37
...
[packet.c]
missing called=1; chombier@mac.com
2001-10-03 17:10:17 +00:00
96f8d143a7
- markus@cvs.openbsd.org 2001/09/27 11:58:16
...
[compress.c]
mem leak; chombier@mac.com
2001-10-03 17:07:47 +00:00
9b023ed2a2
- (bal) CVS ID fix up in version.h
2001-10-03 17:03:54 +00:00
5217265349
- (stevesk) loginrec.c: fix type conversion problems exposed when using
...
64-bit off_t.
2001-10-02 00:29:00 +00:00
819f1bef5c
20010929
...
- (bal) move reading 'config.h' up higher. Patch by albert chin
<china@thewrittenword.com)
2001-09-29 14:27:00 +00:00
bccb5a9338
- (djm) Update spec files for new x11-askpass
2001-09-28 20:03:25 +10:00
3ff36d6ce2
- (djm) OpenBSD CVS sync:
...
- djm@cvs.openbsd.org 2001/09/28 09:49:31
[scard.c]
Fix segv when smartcard communication error occurs during key load.
ok markus@
2001-09-28 19:51:54 +10:00
a0957d6898
- (stevesk) session.c: declare do_pre_login() before use
...
wayned@users.sourceforge.net
2001-09-27 19:50:26 +00:00
5f4b10088f
- (djm) Avoid bad and unportable sprintf usage in compat code
2001-09-25 22:21:52 +10:00
e8bb450af9
- (djm) Add AC_SYS_LARGEFILE configure test
2001-09-25 16:39:35 +10:00
16fcade16b
- (djm) Sync $sysconfdir/moduli
2001-09-25 13:06:18 +10:00
964fed54cd
- (djm) Pull in auth-krb5.c from OpenBSD CVS. NB. it is not currently used.
2001-09-25 12:58:23 +10:00
8b16c0e67a
- (bal) Updated all *.specs for 2.9.9p1 and updated version.h
2001-09-24 23:15:15 +00:00
40a0d20913
- (bal) Removed 'extern int optopt;' since it is dead wood.
2001-09-24 22:04:02 +00:00
5ccf63a974
- (bal) updated ssh.c to mirror minor getopts 'extern int' formating done
...
by stevesk@
2001-09-24 20:00:10 +00:00
bffa1cb7f6
- markus@cvs.openbsd.org 2001/09/23 09:58:13
...
[LICENCE]
new rijndael implementation
2001-09-23 13:58:38 +00:00
b85544d717
<grumble> Editing ChangeLog in the wrong directory.
...
- markus@cvs.openbsd.org 2001/09/23 11:09:13
[authfile.c]
relax permission check for private key files.
2001-09-23 13:54:57 +00:00
15da033b34
- mouring@cvs.openbsd.org 2001/09/20 20:57:51
...
[sshd_config]
CheckMail removed. OKed stevesk@
2001-09-20 23:15:44 +00:00
f558cf6580
- markus@cvs.openbsd.org 2001/09/20 13:50:40
...
[compat.c compat.h ssh.c]
bug compat: request a dummy channel for -N (no shell) sessions +
cleanup; vinschen@redhat.com
2001-09-20 23:13:49 +00:00
1bc3bdb1c2
- markus@cvs.openbsd.org 2001/09/20 13:46:48
...
[auth2.c]
key_read returns now -1 or 1
2001-09-20 23:11:26 +00:00
406b4f0f33
- stevesk@cvs.openbsd.org 2001/09/20 00:15:54
...
[sshd.8]
fix ClientAliveCountMax
2001-09-20 23:09:16 +00:00
50abba560c
- (stevesk) sun_len, SUN_LEN() configure stuff no longer required
2001-09-20 19:43:41 +00:00
1ce8f0c3e5
- (tim) [scard/Makefile.in] Don't strip the Java binary
2001-09-20 11:39:35 -07:00
84a6bfba15
- (bal) openbsd-compat/vis.[ch] is dead wood. Removed.
2001-09-20 02:07:50 +00:00
03598a1c23
- stevesk@cvs.openbsd.org 2001/09/19 21:41:57
...
[sshd.8]
don't advertise -V in usage; ok markus@
2001-09-20 01:07:57 +00:00
dfd1850398
- stevesk@cvs.openbsd.org 2001/09/19 21:04:53
...
[sshd.8]
missing -t in usage
2001-09-20 01:06:08 +00:00
b1d822c311
- stevesk@cvs.openbsd.org 2001/09/19 19:35:30
...
[authfd.c]
use sizeof addr vs. SUN_LEN(addr) for sockaddr_un. Stevens
blesses this and we do it this way elsewhere. this helps in
portable because not all systems have SUN_LEN() and
sockaddr_un.sun_len. ok markus@
2001-09-20 01:03:31 +00:00
2b7a0e953e
- stevesk@cvs.openbsd.org 2001/09/19 19:24:19
...
[readconf.c readconf.h scp.c sftp.c ssh.1]
add ClearAllForwardings ssh option and set it in scp and sftp; ok
markus@
2001-09-20 00:57:55 +00:00
309f3d1d9c
- markus@cvs.openbsd.org 2001/09/19 13:23:29
...
[key.c]
key_read() now returns -1 on type mismatch, too
2001-09-20 00:55:53 +00:00
20daef753d
- markus@cvs.openbsd.org 2001/09/19 10:08:51
...
[sshd.8]
command=xxx applies to subsystem now, too
2001-09-20 00:54:01 +00:00
871f662cb6
- (stevesk) nchan.c: we use X/Open Sockets on HP-UX now so shutdown(2)
...
returns ENOTCONN vs. EINVAL for socket not connected; remove EINVAL
check. ok Lutz Jaenicke
2001-09-18 16:08:24 +00:00
cc7aafc7a4
- stevesk@cvs.openbsd.org 2001/09/17 23:56:07
...
[scp.1]
missing -B in usage string
2001-09-18 05:56:57 +00:00
3b4d42c240
- markus@cvs.openbsd.org 2001/09/17 21:09:47
...
[compat.c]
more versions suffering the SSH_BUG_DEBUG bug;
3.0.x reported by dbutts@maddog.storability.com
2001-09-18 05:55:10 +00:00
6d218f404f
- markus@cvs.openbsd.org 2001/09/17 21:04:02
...
[channels.c serverloop.c]
don't send fake dummy packets on CR (\r)
bugreport from yyua@cs.sfu.ca via solar@@openwall.com
2001-09-18 05:53:12 +00:00
944c4f0bda
- markus@cvs.openbsd.org 2001/09/17 20:52:47
...
[channels.c channels.h clientloop.c]
try to fix agent-forwarding-backconnection-bug, as seen on HPUX,
for example; with Lutz.Jaenicke@aet.TU-Cottbus.DE ,
2001-09-18 05:51:13 +00:00
99a30f11c2
- markus@cvs.openbsd.org 2001/09/17 20:50:22
...
[key.c ssh-keygen.c]
better error handling if you try to export a bad key to ssh.com
2001-09-18 05:49:14 +00:00
Damien Miller
Tim Rice
Kevin Steves
Ben Lindstrom