1b6f2291e4
- (dtucker) [configure.ac] Tidy up configure --help output.
2005-02-11 16:11:49 +11:00
2f9573df71
- (dtucker) [configure.ac] Bug #919 : Provide visible feedback for the
...
--disable-etc-default-login configure option.
2005-02-10 22:28:54 +11:00
33370e0287
- (dtucker) [configure.ac session.c] Some platforms (eg some SCO) require
...
the username to be passed to the passwd command when changing expired
passwords. ok djm@
2005-02-09 22:17:28 +11:00
c7e38d59e9
- (dtucker) [configure.ac] Bug #854 : prepend pwd to relative --with-ssl-dir
...
paths. ok djm@
2005-02-09 22:12:30 +11:00
92170a8626
- (dtucker) [auth-passwd.c openbsd-compat/port-aix.c] Don't call
...
disable_forwarding() from compat library. Prevent linker errrors trying
to resolve it for binaries other than sshd. ok djm@
2005-02-09 17:08:23 +11:00
96d4710e38
- dtucker@cvs.openbsd.org 2005/02/08 22:24:57
...
[sshd.c]
Provide reason in error message if getnameinfo fails; ok markus@
2005-02-09 09:53:48 +11:00
5b53026f71
- dtucker@cvs.openbsd.org 2005/01/30 11:18:08
...
[monitor.c]
Make code match intent; ok djm@
2005-02-09 09:52:17 +11:00
43d8e28763
- jmc@cvs.openbsd.org 2005/01/28 18:14:09
...
[ssh_config.5]
wording;
ok markus@
2005-02-09 09:51:08 +11:00
79a7acfebd
- jmc@cvs.openbsd.org 2005/01/28 15:05:43
...
[ssh_config.5]
grammar;
2005-02-09 09:48:57 +11:00
3f166dfcb5
- dtucker@cvs.openbsd.org 2005/01/28 09:45:53
...
[ssh_config]
Make it clear that the example entries in ssh_config are only some of the
commonly-used options and refer the user to ssh_config(5) for more
details; ok djm@
2005-02-09 09:46:47 +11:00
2e0cf0dca2
- (dtucker) [audit.c audit.h auth.c auth1.c auth2.c loginrec.c monitor.c
...
monitor_wrap.c monitor_wrap.h session.c sshd.c]: Prepend all of the audit
defines and enums with SSH_ to prevent namespace collisions on some
platforms (eg AIX).
2005-02-08 21:52:47 +11:00
b4d3012d2e
- (dtucker) [openbsd-compat/port-aix.c] Silence compiler warnings.
2005-02-08 21:06:55 +11:00
feb6f7f244
- (dtucker) [regress/test-exec.sh] Bug #912 : Set _POSIX2_VERSION for the
...
regress tests so newer versions of GNU head(1) behave themselves. Patch
by djm, so ok me.
2005-02-08 20:17:17 +11:00
40d9a63788
- (dtucker) [auth.c] Fix parens in audit log check.
2005-02-04 15:19:44 +11:00
598ba7b5e2
- (dtucker) [monitor.c] Permit INVALID_USER audit events from slave too.
2005-02-04 15:05:08 +11:00
6dce99142b
typo
2005-02-03 15:07:37 +11:00
269a1ea1c8
- (dtucker) [Makefile.in auth.c auth.h auth1.c auth2.c loginrec.c monitor.c
...
monitor.h monitor_wrap.c monitor_wrap.h session.c sshd.c] Bug #125 :
(first stage) Add audit instrumentation to sshd, currently disabled by
default. with suggestions from and djm@
2005-02-03 00:20:53 +11:00
2fba993080
- (dtucker) [auth.c canohost.c canohost.h configure.ac defines.h loginrec.c]
...
Bug #974 : Teach sshd to write failed login records to btmp for failed auth
attempts (currently only for password, kbdint and C/R, only on Linux and
HP-UX), based on code from login.c from util-linux. With ashok_kovai at
hotmail.com, ok djm@
2005-02-02 23:30:24 +11:00
9dc6c7dbec
- (dtucker) [session.c sshd.c] Bug #445 : Propogate KRB5CCNAME if set to child
...
the process. Since we also unset KRB5CCNAME at startup, if it's set after
authentication it must have been set by the platform's native auth system.
This was already done for AIX; this enables it for the general case.
2005-02-02 18:30:33 +11:00
42d9dc75ed
- (dtucker) [auth.c loginrec.h openbsd-compat/{bsd-cray,port-aix}.{c,h}]
...
Make record_failed_login() call provide hostname rather than having the
implementations having to do lookups themselves. Only affects AIX and
UNICOS (the latter only uses the "user" parameter anyway). ok djm@
2005-02-02 17:10:11 +11:00
ad7646a59a
- (dtucker) [configure.ac openbsd-compat/realpath.c] Sync up with realpath
...
rev 1.11 from OpenBSD and make it use fchdir if available. ok djm@
2005-02-02 10:43:59 +11:00
9dca099aec
- (dtucker) [sshd_config.5] Bug #701 : remove warning about
...
keyboard-interactive since this is no longer the case.
2005-02-01 19:16:45 +11:00
9b5495d23e
- (dtucker) [log.c] Bug #973 : force log_init() to open syslog, since on some
...
platforms syslog will revert to its default values. This may result in
messages from external libraries (eg libwrap) being sent to a different
facility.
2005-02-01 17:35:09 +11:00
218f178cb2
- dtucker@cvs.openbsd.org 2005/01/24 11:47:13
...
[auth-passwd.c]
#if -> #ifdef so builds without HAVE_LOGIN_CAP work too; ok djm@ otto@
2005-01-24 22:50:47 +11:00
1b7223c005
- dtucker@cvs.openbsd.org 2005/01/24 10:29:06
...
[moduli]
Import new moduli; requested by deraadt@ a week ago
2005-01-24 22:00:40 +11:00
ba66df81a3
- dtucker@cvs.openbsd.org 2005/01/24 10:22:06
...
[scp.c sftp.c]
Have scp and sftp wait for the spawned ssh to exit before they exit
themselves. This prevents ssh from being unable to restore terminal
modes (not normally a problem on OpenBSD but common with -Portable
on POSIX platforms). From peak at argo.troja.mff.cuni.cz (bz#950);
ok djm@ markus@
2005-01-24 21:57:40 +11:00
660db78af2
- djm@cvs.openbsd.org 2005/01/23 10:18:12
...
[cipher.c]
config option "Ciphers" should be case-sensitive; ok dtucker@
2005-01-24 21:57:11 +11:00
094cd0ba02
- dtucker@cvs.openbsd.org 2005/01/22 08:17:59
...
[auth.c]
Log source of connections denied by AllowUsers, DenyUsers, AllowGroups and
DenyGroups. bz #909 , ok djm@
2005-01-24 21:56:48 +11:00
5c14c73429
- otto@cvs.openbsd.org 2005/01/21 08:32:02
...
[auth-passwd.c sshd.c]
Warn in advance for password and account expiry; initialize loginmsg
buffer earlier and clear it after privsep fork. ok and help dtucker@
markus@
2005-01-24 21:55:49 +11:00
3c66080aa2
- (dtucker) [auth-chall.c auth.h auth2-chall.c] Bug #936 : Remove pam from
...
the list of available kbdint devices if UsePAM=no. ok djm@
2005-01-20 22:20:50 +11:00
33bc334a8b
- (dtucker) [loginrec.h] Bug #952 : Increase size of username field to 128
...
bytes to prevent errors from login_init_entry() when the username is
exactly 64 bytes(!) long. From brhamon at cisco.com, ok djm@
2005-01-20 22:07:29 +11:00
d231186fd0
- djm@cvs.openbsd.org 2004/12/22 02:13:19
...
[cipher-ctr.c cipher.c]
remove fallback AES support for old OpenSSL, as OpenBSD has had it for
many years now; ok deraadt@
(Id sync only: Portable will continue to support older OpenSSLs)
2005-01-20 13:27:56 +11:00
36a3d60347
- (dtucker) [auth-pam.c] Bug #971 : Prevent leaking information about user
...
existence via keyboard-interactive/pam, in conjunction with previous
auth2-chall.c change; with Colin Watson and djm.
2005-01-20 12:43:38 +11:00
611649ebf0
- dtucker@cvs.openbsd.org 2005/01/19 13:11:47
...
[auth-bsdauth.c auth2-chall.c]
Have keyboard-interactive code call the drivers even for responses for
invalid logins. This allows the drivers themselves to decide how to
handle them and prevent leaking information where possible. Existing
behaviour for bsdauth is maintained by checking authctxt->valid in the
bsdauth driver. Note that any third-party kbdint drivers will now need
to be able to handle responses for invalid logins. ok markus@
2005-01-20 11:05:34 +11:00
ea7c8127ce
- dtucker@cvs.openbsd.org 2005/01/17 22:48:39
...
[sshd.c]
Make debugging output continue after reexec; ok djm@
2005-01-20 11:03:08 +11:00
f0e792ec1c
- dtucker@cvs.openbsd.org 2005/01/17 03:25:46
...
[moduli.c]
Correct spelling: SCHNOOR->SCHNORR; ok djm@
2005-01-20 11:02:26 +11:00
b3509014ce
- jmc@cvs.openbsd.org 2005/01/08 00:41:19
...
[sshd_config.5]
`login'(n) -> `log in'(v);
2005-01-20 11:01:46 +11:00
b2161e37f5
- markus@cvs.openbsd.org 2005/01/05 08:51:32
...
[sshconnect.c]
remove dead code, log connect() failures with level error, ok djm@
2005-01-20 11:00:46 +11:00
0f38323222
- djm@cvs.openbsd.org 2004/12/23 23:11:00
...
[servconf.c servconf.h sshd.c sshd_config sshd_config.5]
bz #898 : support AddressFamily in sshd_config. from
peak@argo.troja.mff.cuni.cz ; ok deraadt@
2005-01-20 10:57:56 +11:00
7cfeecf670
- markus@cvs.openbsd.org 2004/12/23 17:38:07
...
[ssh-keygen.c]
leak; from mpech
2005-01-20 10:56:31 +11:00
172a5e8cb8
- markus@cvs.openbsd.org 2004/12/23 17:35:48
...
[session.c]
check for NULL; from mpech
2005-01-20 10:55:46 +11:00
24c710e498
- (dtucker) [survey.sh.in] Remove any blank lines from the output of
...
ccver-v and ccver-V.
2005-01-18 12:45:42 +11:00
72c025d9f0
- (dtucker) [INSTALL Makefile.in configure.ac survey.sh.in] Implement
...
"make survey" and "make send-survey". This will provide data on the
configure parameters, platform and platform features to the development
team, which will allow (among other things) better targetting of testing.
It's entirely voluntary and is off be default. ok djm@
2005-01-18 12:05:18 +11:00
5caa78b1b7
- (dtucker) [regress/rekey.sh] Touch datafile before filling with dd, since
...
on some wacky platforms (eg old AIXes), dd will refuse to create an output
file if it doesn't exist.
2004-12-20 12:35:42 +11:00
8686ed7508
- (dtucker) [ssh-rand-helper.c] Fall back to command-based seeding if reading
...
from prngd is enabled at compile time but fails at run time, eg because
prngd is not running. Note that if you have prngd running when OpenSSH is
built, OpenSSL will consider itself internally seeded and rand-helper won't
be built at all unless explicitly enabled via --with-rand-helper. ok djm@
2004-12-20 12:05:08 +11:00
442a383418
- (dtucker) [contrib/findssh.sh] Clean up on interrupt; from
...
amarendra.godbole at ge com.
2004-12-13 18:08:32 +11:00
f0f90989fa
- dtucker@cvs.openbsd.org 2004/12/11 01:48:56
...
[auth-rsa.c auth2-pubkey.c authfile.c misc.c misc.h]
Fix debug call in error path of authorized_keys processing and fix related
warnings; ok djm@
2004-12-11 13:39:50 +11:00
596dcfa21f
- fgsch@cvs.openbsd.org 2004/12/10 03:10:42
...
[sftp.c]
- fix globbed ls for paths the same lenght as the globbed path when
we have a unique matching.
- fix globbed ls in case of a directory when we have a unique matching.
- as a side effect, if the path does not exist error (used to silently
ignore).
- don't do extra do_lstat() if we only have one matching file.
djm@ ok
2004-12-11 13:37:22 +11:00
56c9598e5e
- (dtucker) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/12/06 16:00:43
[bufaux.c]
use 0x00 not \0 since buf[] is a bignum
2004-12-11 13:34:56 +11:00
0f83d2907c
[configure.ac] Comment some non obvious platforms in the target-specific
...
case statement. Suggested and OK by dtucker@
2004-12-08 18:29:58 -08:00
641b34c72b
- (dtucker) [regress/scp.sh] Use portable-friendly $DIFFOPTs in new test.
2004-12-07 11:26:15 +11:00
d028fea13a
- dtucker@cvs.openbsd.org 2004/12/06 10:49:56
...
[test-exec.sh]
Check if TEST_SSH_SSHD is a full path to sshd before searching; ok markus@
2004-12-06 23:16:29 +11:00
cc0603d4b6
- dtucker@cvs.openbsd.org 2004/11/25 09:39:27
...
[test-exec.sh]
Remove obsolete RhostsAuthentication from test config; ok markus@
2004-12-06 23:13:50 +11:00
79ec66e980
- djm@cvs.openbsd.org 2004/11/07 00:32:41
...
[multiplex.sh]
regression tests for new multiplex commands
2004-12-06 23:12:15 +11:00
124f58ecba
- djm@cvs.openbsd.org 2004/10/29 23:59:22
...
[Makefile added brokenkeys.sh]
regression test for handling of corrupt keys in authorized_keys file
2004-12-06 23:07:37 +11:00
71b5643598
- djm@cvs.openbsd.org 2004/10/08 02:01:50
...
[reexec.sh]
shrink and tidy; ok dtucker@
2004-12-06 23:05:52 +11:00
3206e57e93
- david@cvs.openbsd.org 2004/07/09 19:45:43
...
[Makefile]
add a missing CLEANFILES used in the re-exec test
2004-12-06 23:04:57 +11:00
ccf0779185
- dtucker@cvs.openbsd.org 2004/07/08 12:59:35
...
[scp.sh]
Regress test for bz #863 (scp double-error), requires $SUDO. ok markus@
2004-12-06 23:03:27 +11:00
a372960fa9
- djm@cvs.openbsd.org 2004/06/26 06:16:07
...
[reexec.sh]
don't change the name of the copied sshd for the reexec fallback test,
makes life simpler for portable
2004-12-06 23:00:27 +11:00
22cc741096
- dtucker@cvs.openbsd.org 2004/12/06 11:41:03
...
[auth-rsa.c auth2-pubkey.c authfile.c misc.c misc.h ssh.h sshd.8]
Discard over-length authorized_keys entries rather than complaining when
they don't decode. bz #884 , with & ok djm@
2004-12-06 22:47:41 +11:00
16e254d179
- jaredy@cvs.openbsd.org 2004/12/05 23:55:07
...
[sftp.1]
- explain that patterns can be used as arguments in get/put/ls/etc
commands (prodded by Michael Knudsen)
- describe ls flags as a list
- other minor improvements
ok jmc, djm
2004-12-06 22:46:45 +11:00
e2f189a841
- djm@cvs.openbsd.org 2004/11/29 07:41:24
...
[sftp-client.h sftp.c]
Some small fixes from moritz@jodeit.org . ok deraadt@
2004-12-06 22:45:53 +11:00
0133a727ac
- jmc@cvs.openbsd.org 2004/11/29 00:05:17
...
[sftp.1]
missing full stop;
2004-12-06 22:44:32 +11:00
cd516efea1
- (dtucker) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/11/25 22:22:14
[sftp-client.c sftp.c]
leak; from mpech
2004-12-06 22:43:43 +11:00
ba2abb3699
- (dtucker) [TODO WARNING.RNG] Update to reflect current reality. ok djm@
2004-12-06 22:40:10 +11:00
c13866719f
- (dtucker) [auth1.c auth2.c] If the user successfully authenticates but is
...
subsequently denied by the PAM auth stack, send the PAM message to the
user via packet_disconnect (Protocol 1) or userauth_banner (Protocol 2).
ok djm@
2004-12-03 14:33:47 +11:00
9c6bf325c0
- jmc@cvs.openbsd.org 2004/11/07 17:57:30
...
[ssh.c]
usage():
- add -O
- sync -S w/ manpage
- remove -h
2004-12-03 14:10:19 +11:00
e04644c162
- (dtucker) OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2004/11/07 17:42:36
[ssh.1]
options sort, and whitespace;
2004-12-03 14:08:45 +11:00
16bcc1c92e
- (dtucker) [INSTALL Makefile.in configure.ac] Add --with-libedit configure
...
option and supporting makefile bits and documentation.
2004-11-07 20:14:34 +11:00
7ebfc10884
- djm@cvs.openbsd.org 2004/11/07 00:01:46
...
[clientloop.c clientloop.h ssh.1 ssh.c]
add basic control of a running multiplex master connection; including the
ability to check its status and request it to exit; ok markus@
2004-11-07 20:06:19 +11:00
2d963d8721
- djm@cvs.openbsd.org 2004/11/05 12:19:56
...
[sftp.c]
command editing and history support via libedit; ok markus@
thanks to hshoexer@ and many testers on tech@ too
2004-11-07 20:04:10 +11:00
08d04faf24
- djm@cvs.openbsd.org 2004/10/29 23:57:05
...
[key.c]
use new buffer API to avoid fatal errors on corrupt keys in authorized_keys
files; ok markus@
2004-11-05 20:42:28 +11:00
50dbe8314b
- djm@cvs.openbsd.org 2004/10/29 23:56:17
...
[bufaux.c bufaux.h buffer.c buffer.h]
introduce a new buffer API that returns an error rather than fatal()ing
when presented with bad data; ok markus@
2004-11-05 20:41:24 +11:00
ce327b62ac
- djm@cvs.openbsd.org 2004/10/29 22:53:56
...
[clientloop.c misc.h readpass.c ssh-agent.c]
factor out common permission-asking code to separate function; ok markus@
2004-11-05 20:38:03 +11:00
5d78de6283
- djm@cvs.openbsd.org 2004/10/29 21:47:15
...
[channels.c channels.h clientloop.c]
fix some window size change bugs for multiplexed connections: windows sizes
were not being updated if they had changed after ~^Z suspends and SIGWINCH
was not being processed unless the first connection had requested a tty;
ok markus
2004-11-05 20:35:44 +11:00
b2694f0e8a
- markus@cvs.openbsd.org 2004/10/20 11:48:53
...
[packet.c ssh1.h]
disconnect for invalid (out of range) message types.
2004-11-05 20:27:54 +11:00
1dee8683fb
- djm@cvs.openbsd.org 2004/10/07 10:12:36
...
[ssh-agent.c]
don't unlink agent socket when bind() fails, spotted by rich AT
rich-paul.net, ok markus@
2004-11-05 20:26:49 +11:00
636ca90247
- djm@cvs.openbsd.org 2004/10/07 10:10:24
...
[scp.1 sftp.1 ssh.1 ssh_config.5]
document KbdInteractiveDevices; ok markus@
2004-11-05 20:22:00 +11:00
3269b13817
- djm@cvs.openbsd.org 2004/09/25 03:45:14
...
[sshd.c]
these printf args are no longer double; ok deraadt@ markus@
2004-11-05 20:20:59 +11:00
39207a46b4
- djm@cvs.openbsd.org 2004/09/23 13:00:04
...
[ssh.c]
correctly honour -n in multiplex client mode; spotted by sturm@ ok markus@
2004-11-05 20:19:51 +11:00
f30e1acc62
- deraadt@cvs.openbsd.org 2004/09/15 18:46:04
...
[scp.c]
scratch that do { } while (0) wrapper in this case
2004-11-05 20:10:02 +11:00
178fa66a64
- mickey@cvs.openbsd.org 2004/09/15 18:42:27
...
[sshd.c]
use less doubles in daemons; markus@ ok
2004-11-05 20:09:09 +11:00
7cc5c23817
- jaredy@cvs.openbsd.org 2004/09/15 03:25:41
...
[sshd_config.5]
mention PrintLastLog only prints last login time for interactive
sessions, like PrintMotd mentions.
From Michael Knudsen, with wording changed slightly to match the
PrintMotd description.
ok djm
2004-11-05 20:06:59 +11:00
e9bf98412e
- deraadt@cvs.openbsd.org 2004/09/15 00:46:01
...
[ssh.c]
/* fallthrough */ is something a programmer understands. But
/* FALLTHROUGH */ is also understood by lint, so that is better.
2004-11-05 20:05:32 +11:00
07336dae94
- djm@cvs.openbsd.org 2004/09/07 23:41:30
...
[clientloop.c ssh.c]
cleanup multiplex control socket on SIGHUP too, spotted by sturm@
ok markus@ deraadt@
2004-11-05 20:02:16 +11:00
4e4fe0052c
- jmc@cvs.openbsd.org 2004/08/30 21:22:49
...
[ssh-add.1 ssh.1]
.Xsession -> .xsession;
originally from a pr from f at obiit dot org, but missed by myself;
ok markus@ matthieu@
2004-11-05 20:01:03 +11:00
c016134588
- markus@cvs.openbsd.org 2004/08/30 09:18:08
...
[LICENCE]
s/keygen/keyscan/
2004-11-05 20:00:03 +11:00
a56f191ef1
- (dtucker) [configure.ac includes.h] Bug #947 : Fix compile error on HP-UX
...
10.x by testing for conflicts in shadow.h and undef'ing _INCLUDE__STDC__
only if a conflict is detected.
2004-11-02 20:30:54 +11:00
35beaddc7e
- (dtucker) [uidswap.c] Don't test dropping of gids for the root user or
...
on Cygwin. Cygwin parts from vinschen at redhat com; ok djm@
2004-10-19 16:33:33 +10:00
0e035d816a
that was "ok dtucker@"
2004-10-16 18:53:28 +10:00
daffc6a115
- (djm) [auth-pam.c] snprintf->strl*, fix server message length calculations
2004-10-16 18:52:44 +10:00
dbc2296e2c
- (dtucker) [monitor_mm.c openbsd-compat/xmmap.c] Bug #940 : cast constants
...
to void * to appease picky compilers (eg Tru64's "cc -std1").
2004-10-06 23:15:44 +10:00
b7d55e3eb5
- (dtucker) [README.privsep] Bug #939 : update info about HP-UX Trusted Mode
...
and other PAM platforms.
2004-10-06 20:09:32 +10:00
59f79c4014
- (dtucker) [configure.ac] Set AC_PACKAGE_NAME. ok djm@
2004-09-30 21:17:08 +10:00
4127f559ad
- (dtucker) [openbsd-compat/bsd-snprintf.c] Previous change was off by one,
...
which could have caused the justification to be wrong. ok djm@
2004-09-23 21:35:09 +10:00
5d596139d4
- (dtucker) [contrib/cygwin/ssh-host-config] Update to match current Cygwin
...
install process. Patch from vinschen at redhat.com.
2004-09-21 21:35:55 +10:00
50fbb45dbd
- (dtucker) [openbsd-compat/bsd-snprintf.c] Check for max length too.
...
ok djm@
2004-09-21 21:32:12 +10:00
623d92f0b2
- (dtucker) [configure.ac] Fix incorrect quoting and tests for cross-compile.
...
Partly by & ok djm@.
2004-09-12 22:36:15 +10:00
2aa6d3cfce
- (djm) [ssh.c sshd.c version.h] Don't divulge portable version in protocol
...
banner. Suggested by deraadt@, ok mouring@, dtucker@
2004-09-12 16:53:04 +10:00
b0aae333fd
- (djm) [loginrec.c] xmalloc
2004-09-12 15:26:00 +10:00
6b0279c084
- (djm) [loginrec.c] __func__ifiy
2004-09-12 15:25:17 +10:00
8899ed3b62
- (djm) [loginrec.c] Start KNF and tidy up of this long-neglected file.
...
No change in resultant binary
2004-09-12 15:18:55 +10:00
5614d8f8c4
- (dtucker) [auth-krb5.c] Bug #922 : Pass KRB5CCNAME to PAM. From deengert
...
at anl.gov, ok djm@
2004-09-11 23:32:09 +10:00
a0c2b394b4
- (dtucker) [configure.ac] Bug #321 : Add cross-compile support to configure.
...
Parts by chua at ayrnetworks.com, astrand at lysator.liu.se and me. ok djm@
2004-09-11 23:26:37 +10:00
a2a3ed0010
- (dtucker) [session.c] Bug #927 : make .hushlogin silent again. ok djm@
2004-09-11 23:09:53 +10:00
77fc29eeb3
- (dtucker) [auth-pam.c auth.h auth2-none.c auth2.c monitor.c monitor_wrap.c]
...
Bug #892 : Send messages from failing PAM account modules to the client via
SSH2_MSG_USERAUTH_BANNER messages. Note that this will not happen with
SSH2 kbdint authentication, which need to be dealt with separately. ok djm@
2004-09-11 23:07:03 +10:00
4765679649
- (djm) [auth2-kbdint.c auth2-none.c auth2-passwd.c auth2-pubkey.c]
...
Make cygwin code more consistent with that which surrounds it
2004-09-11 22:42:09 +10:00
0a7e3c6c89
- (dtucker) [auth-pam.c] Relocate sshpam_store_conv(), no code change.
2004-09-11 22:28:01 +10:00
69687f4b65
- (dtucker) [auth-pam.c auth-pam.h session.c] Bug #890 : Send output from
...
failing PAM session modules to user then exit, similar to the way
/etc/nologin is handled. ok djm@
2004-09-11 22:17:26 +10:00
928a19ad9e
- (djm) [ssh-agent.c] unifdef some cygwin code; ok dtucker@
2004-09-11 15:18:05 +10:00
25a1234ef7
- (dtucker) [Makefile.in contrib/ssh-copy-id] Bug #894 : Improve portability
...
of shell constructs. Patch from cjwatson at debian.org.
2004-08-30 21:33:02 +10:00
476b7ecfe4
- (dtucker) [regress/Makefile] Clean scp-ssh-wrapper.scp too. Patch from
...
vinschen at redhat.com.
2004-08-30 21:13:49 +10:00
14c372d49d
- (dtucker) [session.c openbsd-compat/bsd-cygwin_util.{c,h}] Bug #915 : only
...
copy required environment variables on Cygwin. Patch from vinschen at
redhat.com, ok djm@
2004-08-30 20:42:08 +10:00
5a88d00349
- (dtucker) [openbsd-compat/port-aix.c] Bug #712 : Explicitly check for
...
accounts with authentication configs that sshd can't support (ie
SYSTEM=NONE and AUTH1=something).
2004-08-29 21:43:33 +10:00
cf59d31761
- (dtucker) [configure.ac] Replace non-portable echo \n with extra echo.
2004-08-29 21:18:09 +10:00
b17035fb7f
- (dtucker) [regress/agent-ptrace.sh] Skip ptrace test on OSF1/DUnix/Tru64
...
too; patch from cmadams at hiwaay.net.
2004-08-29 20:33:07 +10:00
2a502ff310
- (dtucker) [Makefile.in] Get regress/Makefile symlink right for out-of-tree
...
builds too, from vinschen at redhat.com.
2004-08-29 19:52:32 +10:00
0521dcb22e
- (dtucker) [regress/scp.sh] Make this work on Cygwin too, which doesn't like
...
files ending in .exe that aren't binaries; patch from vinschen at redhat.com.
2004-08-29 19:39:09 +10:00
07d30e4579
- (dtucker) [regress/dynamic-forward.sh] Allow time for connections to be torn
...
down, needed on some platforms, should be harmless on others. Patch from
jason at devrandom.org.
2004-08-29 17:14:31 +10:00
2a81adc35c
- (dtucker) [regress/multiplex.sh] Skip test on platforms that do not
...
support FD passing since multiplex requires it. Noted by tim@
2004-08-29 17:09:34 +10:00
48d99d36bb
- (dtucker) [configure.ac] Include sys/stream.h in sys/ptms.h header check,
...
fixes configure warning on Solaris reported by wknox at mitre.org.
2004-08-29 17:04:50 +10:00
0f56ed16b8
- djm@cvs.openbsd.org 2004/08/28 01:01:48
...
[sshd.c]
don't erroneously close stdin for !reexec case, from Dave Johnson;
ok markus@
2004-08-29 16:38:41 +10:00
db69390817
- markus@cvs.openbsd.org 2004/08/26 16:00:55
...
[ssh.1 sshd.8]
get rid of references to rhosts authentication; with jmc@
2004-08-29 16:37:24 +10:00
34620d6f71
- dtucker@cvs.openbsd.org 2004/08/23 14:29:23
...
[ssh-keysign.c]
Remove duplicate getuid(), suggested by & ok markus@
2004-08-29 16:32:59 +10:00
27a8f6b056
- dtucker@cvs.openbsd.org 2004/08/23 14:26:38
...
[ssh-keysign.c ssh.c]
Use permanently_set_uid() in ssh and ssh-keysign for consistency, matches
change in Portable; ok markus@ (CVS ID sync only)
2004-08-29 16:31:28 +10:00
e6ed83976b
- djm@cvs.openbsd.org 2004/08/23 11:48:47
...
[channels.c]
typo, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus
2004-08-29 16:29:44 +10:00
f4b43712c1
- djm@cvs.openbsd.org 2004/08/23 11:48:09
...
[authfile.c]
fix error path, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus
2004-08-29 16:28:39 +10:00
f00e51d1f2
- (dtucker) [openbsd-compat/getrrsetbyname.c] Prevent getrrsetbyname from
...
failing with NOMEMORY if no sigs are returned and malloc(0) returns NULL.
From Martin.Kraemer at Fujitsu-Siemens.com; ok djm@
2004-08-29 16:12:29 +10:00
11bdc01cfe
Add filename to ChangeLog entry
2004-08-28 16:17:35 +10:00
f0c2aeaf3d
- (dtucker) [openbsd-compat/mktemp.c] Remove superfluous Cygwin #ifdef; from
...
vinschen at redhat.com.
2004-08-28 15:46:57 +10:00
b0419f26d0
- (djm) [loginrec.c] Typo and bad args in error messages; Spotted by
...
Martin.Kraemer AT Fujitsu-Siemens.com
2004-08-23 21:53:28 +10:00
7daf044aa2
- (djm) [ssh-rand-helper.c] Typo. Found by
...
Martin.Kraemer AT Fujitsu-Siemens.com
2004-08-23 21:52:08 +10:00
e17cc75fe3
- (djm) Release 3.9p1
2004-08-17 22:50:40 +10:00
d545285ec1
- (djm) Crank RPM spec version numbers
2004-08-17 22:49:12 +10:00
87c9cca391
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/08/16 08:17:01
[version.h]
3.9
2004-08-17 22:47:41 +10:00
bad5f2d329
- (dtucker) [regress/README.regress] Note compatibility issues with GNU head.
2004-08-17 22:31:32 +10:00
21dd0897d5
- (dtucker) [acconfig.h auth-pam.c configure.ac] Set real uid to non-root
...
to convince Solaris PAM to honour password complexity rules. ok djm@
2004-08-16 23:12:05 +10:00
0cbc3c6509
- (dtucker) [Makefile.in] Fix typo.
2004-08-15 21:01:37 +10:00
8140959de0
- (djm) [loginrec.c] Check that seek succeeded here too; ok dtucker
2004-08-15 19:12:52 +10:00
36f4965020
- (djm) [acconfig.h configure.ac openbsd-compat/Makefile.in
...
openbsd-compat/bsd-closefrom.c openbsd-compat/bsd-misc.c
openbsd-compat/bsd-misc.h openbsd-compat/openbsd-compat.h] Use smarter
closefrom() replacement from sudo; ok dtucker@
2004-08-15 18:40:59 +10:00
25f60a7ee7
- (dtucker) [Makefile.in ssh-keysign.c ssh.c] Use permanently_set_uid() since
...
it does the right thing on all platforms. ok djm@
2004-08-15 17:23:34 +10:00
397a2f2612
- (dtucker) [loginrec.c openbsd-compat/port-aix.c openbsd-compat/port-aix.h]
...
Plug AIX login recording into login_write so logins will be recorded for
all auth types.
2004-08-15 00:09:11 +10:00
3d50c9bda6
- (dtucker) [includes.h] Undef _INCLUDE__STDC__ on HP-UX, otherwise
...
prot.h and shadow.h provide conflicting declarations of getspnam. ok djm@
2004-08-15 00:01:48 +10:00
066969339d
- (dtucker) [auth-krb5.c gss-serv-krb5.c openbsd-compat/xmmap.c]
...
Explicitly set umask for mkstemp; ok djm@
2004-08-14 23:55:37 +10:00
137e9c97e0
- dtucker@cvs.openbsd.org 2004/08/13 11:09:24
...
[servconf.c]
Fix line numbers off-by-one in error messages, from tortay at cc.in2p3.fr
ok markus@, djm@
2004-08-13 21:30:24 +10:00
1ef0bc0b0a
- djm@cvs.openbsd.org 2004/08/13 02:51:48
...
[monitor_fdpass.c]
extra check for no message case; ok markus, deraadt, hshoexer, henning
2004-08-13 21:29:02 +10:00
6e37037fea
- jmc@cvs.openbsd.org 2004/08/13 00:01:43
...
[ssh-keygen.1]
kill whitespace at eol;
2004-08-13 21:23:25 +10:00
0b42e6d95b
- jakob@cvs.openbsd.org 2004/08/12 21:41:13
...
[ssh-keygen.1 ssh.1]
improve SSHFP documentation; ok deraadt@
2004-08-13 21:22:40 +10:00
bcf279783a
- djm@cvs.openbsd.org 2004/08/12 09:18:24
...
[sshlogin.c]
typo in error message, spotted by moritz AT jodeit.org (Id sync only)
2004-08-13 21:21:47 +10:00
fe6649da0c
- avsm@cvs.openbsd.org 2004/08/11 21:44:32
...
[authfd.c scp.c ssh-keyscan.c]
use atomicio instead of homegrown equivalents or read/write.
markus@ ok
2004-08-13 21:19:37 +10:00
c7a6fc41bf
- avsm@cvs.openbsd.org 2004/08/11 21:43:05
...
[channels.c channels.h clientloop.c misc.c misc.h serverloop.c ssh-agent.c]
some signed/unsigned int comparison cleanups; markus@ ok
2004-08-13 21:18:00 +10:00
03669a363e
- (dtucker) [openbsd-compat/bsd-misc.c] Typo in #ifdef; from vinschen at
...
redhat.com
2004-08-13 18:37:21 +10:00
eb57862e7c
- (dtucker) [sshd.c] Clear loginmsg in postauth monitor, prevents doubling
...
messages generated before the postauth privsep split.
2004-08-12 23:08:14 +10:00
133b757357
- djm@cvs.openbsd.org 2004/08/11 12:01:16
...
[sshlogin.c]
make store_lastlog_message() static to appease -Wall; ok markus
2004-08-12 22:50:03 +10:00
9c5049a40f
- djm@cvs.openbsd.org 2004/08/11 11:59:22
...
[sshlogin.c]
check that lseek went were we told it to; ok markus@
(Id sync only, but similar changes are needed in loginrec.c)
2004-08-12 22:49:00 +10:00
d8835934c4
- dtucker@cvs.openbsd.org 2004/08/11 11:50:09
...
[sshd.c]
Don't try to close startup_pipe if it's not open; ok djm@
2004-08-12 22:42:29 +10:00
9fbac71905
- dtucker@cvs.openbsd.org 2004/08/11 11:09:54
...
[servconf.c]
Fix minor leak; "looks right" deraadt@
2004-08-12 22:41:44 +10:00
9a2bd1116b
- djm@cvs.openbsd.org 2004/08/04 10:37:52
...
[dh.c]
return group14 when no primes found - fixes hang on empty /etc/moduli;
ok markus@
2004-08-12 22:40:59 +10:00
5cb30ad2ec
- markus@cvs.openbsd.org 2004/07/28 09:40:29
...
[auth.c auth1.c auth2.c cipher.c cipher.h key.c session.c ssh.c
sshconnect1.c]
more s/illegal/invalid/
2004-08-12 22:40:24 +10:00
6832b83744
- markus@cvs.openbsd.org 2004/07/28 08:56:22
...
[sshd.c]
call setsid() _before_ re-exec
2004-08-12 22:36:51 +10:00
8ae66a5032
- (dtucker) [sshd.c] Remove duplicate variable imported during sync.
2004-08-12 22:16:55 +10:00
0670c7396f
- djm@cvs.openbsd.org 2004/07/21 11:51:29
...
[canohost.c]
bz#902: cache remote port so we don't fatal() in auth_log when remote
connection goes away quickly. from peak AT argo.troja.mff.cuni.cz;
ok markus@
2004-07-21 21:53:34 +10:00
2d2ed3d633
- (djm) [auth-pam.c] Portable parts of bz#899: Don't display invalid
...
usernames in setproctitle from peak AT argo.troja.mff.cuni.cz;
2004-07-21 20:54:47 +10:00
10a445b9e5
- djm@cvs.openbsd.org 2004/07/21 10:36:23
...
[gss-serv-krb5.c]
fix function declaration
2004-07-21 20:49:39 +10:00
30d1f84911
- djm@cvs.openbsd.org 2004/07/21 10:33:31
...
[auth1.c auth2.c]
bz#899: Don't display invalid usernames in setproctitle
2004-07-21 20:48:53 +10:00
a22f2d761b
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/07/21 08:56:12
[auth.c]
s/Illegal user/Invalid user/; many requests; ok djm, millert, niklas,
miod, ...
2004-07-21 20:48:24 +10:00
b5a21440a8
- (djm) [regress/README.regress] Remove caveat regarding TCP wrappers, now
...
that sshd is fixed to behave better; suggested by tim
2004-07-21 20:44:05 +10:00
8fe0105be4
- (djm) [contrib/redhat/sshd.pam] bz #903 : Remove redundant entries; from
...
peak AT argo.troja.mff.cuni.cz
2004-07-21 11:01:41 +10:00
23a7027e48
- (djm) [log.c] bz #111 : Escape more control characters when sending data
...
to syslog; from peak AT argo.troja.mff.cuni.cz
2004-07-21 10:52:13 +10:00
816bd0d087
- (tim) [configure.ac] updwtmpx() on OpenServer seems to add duplicate entry.
...
Report by rac AT tenzing.org
2004-07-19 10:19:26 -07:00
a6fb77fd6c
- (djm) [auth-pam.c] Avoid use of xstrdup and friends in conversation function,
...
instead return PAM_CONV_ERR, avoiding another path to fatal(); ok dtucker@
2004-07-19 09:39:11 +10:00
65df174574
- (djm) [openbsd-compat/bsd-arc4random.c] Discard early keystream, like OpenBSD
...
ok dtucker@
2004-07-19 09:30:38 +10:00
0999174755
- dtucker@cvs.openbsd.org 2004/07/17 05:31:41
...
[monitor.c monitor_wrap.c session.c session.h sshd.c sshlogin.c]
Move "Last logged in at.." message generation to the monitor, right
before recording the new login. Fixes missing lastlog message when
/var/log/lastlog is not world-readable and incorrect datestamp when
multiple sessions are used (bz #463 ); much assistance & ok markus@
2004-07-17 17:05:14 +10:00
3ca4508201
- brad@cvs.openbsd.org 2004/07/12 23:34:25
...
[ssh-keyscan.1]
Fix incorrect macro, .I -> .Em
From: Eric S. Raymond <esr at thyrsus dot com>
ok jmc@
2004-07-17 16:13:15 +10:00
fc9597034b
- deraadt@cvs.openbsd.org 2004/07/11 17:48:47
...
[channels.c cipher.c clientloop.c clientloop.h compat.h moduli.c
readconf.c nchan.c pathnames.h progressmeter.c readconf.h servconf.c
session.c sftp-client.c sftp.c ssh-agent.1 ssh-keygen.c ssh.c ssh1.h
sshd.c ttymodes.h]
spaces
2004-07-17 16:12:08 +10:00
ba6de952a0
- (dtucker) [logintest.c scp.c sftp-server.c sftp.c ssh-add.c ssh-agent.c
...
ssh-keygen.c ssh-keyscan.c ssh-keysign.c ssh-rand-helper.c ssh.c sshd.c
openbsd-compat/bsd-misc.c] Move "char *__progname" to bsd-misc.c. Reduces
diff vs OpenBSD; ok mouring@, tested by tim@ too.
2004-07-17 14:07:42 +10:00
5d423f4ece
- (dtucker) [auth-pam.c] Check for zero from waitpid() too, which allows
...
the monitor to properly clean up the PAM thread (Debian bug #252676 ).
2004-07-11 16:54:08 +10:00
3b376f08fb
- (tim) [contrib/cygwin/README] add minires-devel requirement. Patch from
...
vinschen AT redhat.com
2004-07-09 10:45:26 -07:00
e1f17055ed
- dtucker@cvs.openbsd.org 2004/07/08 12:47:21
...
[scp.c]
Prevent scp from skipping the file following a double-error.
bz #863 , ok markus@
2004-07-08 23:11:44 +10:00
042e2e8cbb
- dtucker@cvs.openbsd.org 2004/07/03 11:02:25
...
[monitor_wrap.c]
Put s/key functions inside #ifdef SKEY same as monitor.c,
from des@freebsd via bz #330 , ok markus@
2004-07-08 23:09:42 +10:00
cd99fa0648
- dtucker@cvs.openbsd.org 2004/07/03 05:11:33
...
[sshlogin.c] (RCSID sync only, the corresponding code is not in Portable)
Use '\0' not 0 for string; ok djm@, deraadt@
2004-07-08 23:08:26 +10:00
d062da53c7
- (dtucker) [mdoc2man.awk] Teach it to ignore .Bk -words, reported by
...
strube at physik3.gwdg.de a long time ago.
2004-07-02 18:43:09 +10:00
a5757f0f28
- (tim) [buildpkg.sh.in] Add $REV to bump the package revision within
...
the same version. Handle the case where someone uses --with-privsep-user=
and the user name does not match the group name. ok dtucker@
2004-07-01 20:41:15 -07:00
1f7e40864f
- (dtucker) [auth-pam.c] Bug #559 (last piece): Pass DISALLOW_NULL_AUTHTOK
...
to pam_authenticate for challenge-response auth too. Originally from
fcusack at fcusack.com, ok djm@
2004-07-01 14:00:14 +10:00
e2ba9c2e83
- (dtucker) [auth-pam.c] Bug #705 : Make arguments match PAM specs, fixes
...
warnings on compliant platforms. From paul.a.bolton at bt.com. ok djm@
2004-07-01 12:38:14 +10:00
0a44d1ecf3
- (dtucker) [session.c] Call display_loginmsg again after do_pam_session.
...
Ensures messages from PAM modules are displayed when privsep=no.
Note: I did not want to just move display_loginmsg since that would change
existing behaviour (order of expiry warnings, "Last Login", motd) to less
like the native tools.
2004-07-01 09:48:29 +10:00
a6b1d169e6
- djm@cvs.openbsd.org 2004/06/30 08:36:59
...
[session.c]
unbreak TTY break, diagnosed by darren AT dazwin.com; ok markus@
2004-06-30 22:41:07 +10:00
386c6a2c70
- avsm@cvs.openbsd.org 2004/06/26 20:07:16
...
[sshd.c]
initialise some fd variables to -1, djm@ ok
2004-06-30 22:40:20 +10:00
26213e556b
- jmc@cvs.openbsd.org 2004/06/26 09:14:40
...
[sshd_config.5]
new sentence, new line;
2004-06-30 22:39:34 +10:00
2234bac999
- jmc@cvs.openbsd.org 2004/06/26 09:11:14
...
[ssh_config.5]
punctuation and grammar fixes. also, keep the options in order.
2004-06-30 22:38:52 +10:00
5d1ecebcb5
- OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2004/06/26 09:03:21
[ssh.1]
- remove double word
- rearrange .Bk to keep SYNOPSIS nice
- -M before -m in options description
2004-06-30 22:37:57 +10:00
59e06026d7
- (dtucker) [auth-pam.c] Check for buggy PAM modules that return a NULL
...
appdata_ptr to the conversation function. ok djm@
By rights we should free the messages too, but if this happens then one
of the modules has already proven itself to be buggy so can we trust
the messages?
2004-06-30 20:34:31 +10:00
5288cb242a
- (dtucker) [openbsd-compat/port-aix.c] Missing __func__.
2004-06-28 18:11:19 +10:00
e59b508798
- (dtucker) [acconfig.h configure.ac sftp-server.c] Bug #823 : add sftp
...
rename handling for Linux which returns EPERM for link() on (at least some)
filesystems that do not support hard links. sftp-server will fall back to
stat+rename() in such cases.
2004-06-28 16:01:19 +10:00
f9eb2b0135
- (dtucker) [regress/README.regress] Document new variables.
2004-06-28 15:52:50 +10:00
58cef1f0bb
- (dtucker) [mdoc2man.awk] Bug #883 : correctly recognise .Pa and .Ev macros.
2004-06-28 15:45:08 +10:00
5287902643
Minor updates to some README files.
2004-06-27 20:50:35 -07:00
96d6d7d9a0
- djm@cvs.openbsd.org 2004/06/25 23:21:38
...
[sftp.c]
bz #875 : fix bad escape char error message; reported by f_mohr AT yahoo.de
2004-06-26 09:21:06 +10:00
035a5b47cc
- OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2004/06/25 18:43:36
[sshd.c]
fix broken fd handling in the re-exec fallback path, particularly when
/dev/crypto is in use; ok deraadt@ markus@
2004-06-26 08:16:31 +10:00
aedc1d6a3e
- dtucker@cvs.openbsd.org 2004/06/25 05:38:48
...
[sftp-server.c]
Fall back to stat+rename if filesystem doesn't doesn't support hard
links. bz#823, ok djm@
2004-06-25 17:06:02 +10:00
17c5d03ad3
- (dtucker) [sshd.c] add line missing from reexec sync.
2004-06-25 14:22:23 +10:00
60bd4098f6
- (dtucker) [configure.ac openbsd-compat/misc.c [openbsd-compat/misc.h]
...
Add closefrom() for platforms that don't have it.
(might need some tuning later, but I want to be able to test reexec).
2004-06-25 14:03:34 +10:00
ef3b47a73a
- djm@cvs.openbsd.org 2004/06/25 01:25:12
...
[regress/test-exec.sh]
clean reexec-specific junk out of text-exec.sh and simplify; idea markus@
2004-06-25 13:46:08 +10:00
977a9d21c8
- djm@cvs.openbsd.org 2004/06/24 19:32:00
...
[regress/Makefile regress/test-exec.sh, added regress/reexec.sh]
regress test for re-exec corner cases
2004-06-25 13:45:18 +10:00
586b0b98bf
- djm@cvs.openbsd.org 2004/06/25 01:16:09
...
[sshd.c]
only perform tcp wrappers checks when the incoming connection is on a
socket. silences useless warnings from regress tests that use
proxycommand="sshd -i". prompted by david@ ok markus@
2004-06-25 13:34:31 +10:00
645ab757bd
- djm@cvs.openbsd.org 2004/06/24 19:30:54
...
[servconf.c servconf.h sshd.c]
re-exec sshd on accept(); initial work, final debugging and ok markus@
2004-06-25 13:33:20 +10:00
b5bc1a6393
- dtucker@cvs.openbsd.org 2004/06/23 14:31:01
...
[ssh.c]
Fix counting in master/slave when passing environment variables; ok djm@
2004-06-24 00:34:53 +10:00
ede07fb0a0
- mouring@cvs.openbsd.org 2004/06/23 00:39:38
...
[rijndael.c]
-Wshadow fix up s/encrypt/do_encrypt/. OK djm@, markus@
2004-06-24 00:33:48 +10:00
ca37219d75
- (bal) [contrib/README] Removed "mdoc2man.pl" reference and added
...
reference to "findssl.sh"
Also corrected my ChangeLog entries since I placed them in the wrong place.
2004-06-23 04:04:45 +00:00
af4ab6cbf5
- (tim) [regress/try-ciphers.sh] "if ! some_command" is not portable.
2004-06-22 20:53:02 -07:00
0a9d43d726
- (dtucker) [auth.c openbsd-compat/port-aix.c openbsd-compat/port-aix.h]
...
Move loginrestrictions test to port-aix.c, replace with a generic hook.
2004-06-23 13:45:24 +10:00
ef8f8af86c
- (bal) [Makefile.in] Remove opensshd.init on 'make distclean'
2004-06-23 03:21:54 +00:00
e5a604fdd4
- (dtucker) [cipher.c] encrypt->do_encrypt inside SSH_OLD_EVP to match
...
-Wshadow change.
2004-06-23 12:28:31 +10:00
3b9c0adaab
- dtucker@cvs.openbsd.org 2004/06/22 22:55:56
...
[regress/dynamic-forward.sh regress/test-exec.sh]
Allow setting of port for regress from TEST_SSH_PORT variable; ok markus@
2004-06-23 09:28:20 +10:00
6223eea596
- dtucker@cvs.openbsd.org 2004/06/22 22:45:52
...
[regress/test-exec.sh]
Add TEST_SSH_SSHD_CONFOPTS and TEST_SSH_SSH_CONFOPTS to allow adding
arbitary options to sshd_config and ssh_config during tests. ok markus@
2004-06-23 09:25:02 +10:00
6eabe64304
- dtucker@cvs.openbsd.org 2004/06/22 22:42:02
...
[regress/envpass.sh]
Add quoting for test -z; ok markus@
2004-06-23 09:23:58 +10:00
a8c73d3b8c
- (dtucker) [auth1.c] Ensure do_pam_account is called for Protocol 1
...
connections with empty passwords. Patch from davidwu at nbttech.com,
ok djm@
2004-06-23 09:17:54 +10:00
b09b677166
- dtucker@cvs.openbsd.org 2004/06/22 05:05:45
...
[monitor.c monitor_wrap.c]
Change login->username, will prevent -Wshadow errors in Portable;
ok markus@
2004-06-22 15:06:46 +10:00
430c6a1552
- markus@cvs.openbsd.org 2004/06/22 03:12:13
...
[regress/envpass.sh regress/multiplex.sh]
more portable env passing tests
2004-06-22 13:38:56 +10:00
e35bf12eeb
- (bal) [auth-passwd.c auth1.c] Clean up unused variables.
2004-06-22 03:37:11 +00:00
59bf4a9bd4
- (dtucker) [defines.h] Define __dead if not already defined.
2004-06-22 13:27:16 +10:00
5e4e272e8d
Missing ChangeLog entry for previous
2004-06-22 13:26:00 +10:00
9a52645566
- djm@cvs.openbsd.org 2004/06/22 01:16:39
...
[sftp.c]
don't show .files by default in ls, add -a option to turn them back on;
ok markus
2004-06-22 13:09:55 +10:00
15ca6e8842
- djm@cvs.openbsd.org 2004/06/21 22:41:31
...
[sftp.1]
document sort options
2004-06-22 13:08:21 +10:00
a4e9ffa653
- djm@cvs.openbsd.org 2004/06/21 22:30:45
...
[sftp.c]
prefix ls option flags with LS_
2004-06-22 13:07:58 +10:00
b9123453d0
- djm@cvs.openbsd.org 2004/06/21 22:04:50
...
[sftp.c]
introduce sorting for ls, same options as /bin/ls; ok markus@
2004-06-22 13:06:45 +10:00
efa62f98a1
- djm@cvs.openbsd.org 2004/06/21 22:02:58
...
[log.h]
mark fatal and cleanup exit as __dead; ok markus@
2004-06-22 12:57:44 +10:00
723e945b55
- djm@cvs.openbsd.org 2004/06/21 17:53:03
...
[session.c]
fix fd leak for multiple subsystem connections; with markus@
2004-06-22 12:57:08 +10:00
3f9fdc7121
- avsm@cvs.openbsd.org 2004/06/21 17:36:31
...
[auth-rsa.c auth2-gss.c auth2-pubkey.c authfile.c canohost.c channels.c
cipher.c dns.c kex.c monitor.c monitor_fdpass.c monitor_wrap.c
monitor_wrap.h nchan.c packet.c progressmeter.c scp.c sftp-server.c sftp.c
ssh-gss.h ssh-keygen.c ssh.c sshconnect.c sshconnect1.c sshlogin.c
sshpty.c]
make ssh -Wshadow clean, no functional changes
markus@ ok
There are also some portable-specific -Wshadow warnings to be fixed in
monitor.c and montior_wrap.c.
2004-06-22 12:56:01 +10:00
b357afc0a0
- djm@cvs.openbsd.org 2004/06/20 19:28:12
...
[sftp.1]
mention new -n flag
2004-06-22 12:31:23 +10:00
b215c5d8fe
- djm@cvs.openbsd.org 2004/06/20 18:53:39
...
[sftp.c]
make "ls -l" listings print user/group names, add "ls -n" to show uid/gid
(like /bin/ls); idea & ok markus@
2004-06-22 12:30:53 +10:00
365433f883
- djm@cvs.openbsd.org 2004/06/20 17:36:59
...
[ssh.c]
filter passed env vars at slave in connection sharing case; ok markus@
2004-06-22 12:29:23 +10:00
f7ba8f67b7
(tim) [configure.ac Makefile.in] Only change TEST_SHELL on broken platforms.
...
OK dtucker@
2004-06-20 10:37:32 -07:00
5af9db9e0c
- (tim) [configure.ac buildpkg.sh.in contrib/solaris/README] move opensshd
...
init script to top level directory.
2004-06-19 19:31:06 -07:00
17db1c47cf
- (dtucker) [auth-pam.c] Don't use PAM namespace for
...
pam_password_change_required either.
2004-06-19 12:54:38 +10:00
3bbd878c2e
- djm@cvs.openbsd.org 2004/06/18 11:11:54
...
[channels.c clientloop.c]
Don't explode in clientloop when we receive a bogus channel id, but
also don't generate them to begin with; ok markus@
2004-06-18 22:23:22 +10:00
b8ea24868f
- markus@cvs.openbsd.org 2004/06/18 10:55:43
...
[ssh.1 ssh.c]
trim synopsis for -S, allow -S and -oControlMaster, -MM means 'ask'; ok djm
2004-06-18 22:21:55 +10:00
0809e233a4
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2004/06/18 10:40:19
[ssh.c]
delay signal handler setup until we have finished talking to the master.
allow interrupting of setup (e.g. if master is stuck); ok markus@
2004-06-18 22:20:57 +10:00
6288dc14fc
- dtucker@cvs.openbsd.org 2004/06/18 06:15:51
...
[multiplex.sh]
Use -S for scp/sftp to force the use of the ssh being tested.
ok djm@,markus@
2004-06-18 16:25:35 +10:00
bd12f1741e
- dtucker@cvs.openbsd.org 2004/06/18 06:13:25
...
[sftp.c]
Use execvp instead of execv so sftp -S ssh works. "makes sense" markus@
2004-06-18 16:23:43 +10:00
ba5c592126
- djm@cvs.openbsd.org 2004/06/17 23:56:57
...
[ssh.1 ssh.c]
sync usage() and SYNPOSIS with connection sharing changes
2004-06-18 16:22:39 +10:00
13fbe57722
- (dtucker) [regress/README.regress] Add detail on how to run a single
...
test from the top-level Makefile.
2004-06-18 14:14:43 +10:00
e826a8c9d9
- djm@cvs.openbsd.org 2004/06/17 14:53:27
...
[regress/multiplex.sh]
shared connection env passing regress test
2004-06-18 01:23:03 +10:00
23f0770a1b
- djm@cvs.openbsd.org 2004/06/17 15:10:14
...
[clientloop.c misc.h readconf.c readpass.c ssh.c ssh_config.5]
Add option for confirmation (ControlMaster=ask) via ssh-askpass before
opening shared connections; ok markus@
2004-06-18 01:19:03 +10:00
3756dcee24
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2004/06/17 14:52:48
[clientloop.c clientloop.h ssh.c]
support environment passing over shared connections; ok markus@
2004-06-18 01:17:29 +10:00
a9972e19e9
- (dtucker) [regress/multiplex.sh] Increase sleep time to 120 sec (60 is not
...
enough for slow systems, especially if they don't have a kernel RNG).
2004-06-17 17:01:21 +10:00
10e7f1929b
- (dtucker) [regress/multiplex.sh] add EXEEXT for those platforms that need
...
it.
2004-06-17 16:36:27 +10:00
3e86fc4e99
- dtucker@cvs.openbsd.org 2004/06/17 06:19:06
...
[regress/multiplex.sh]
Add small description of failing test to failure message; ok djm@
2004-06-17 16:34:02 +10:00
ffaa6a5f01
- dtucker@cvs.openbsd.org 2004/06/17 06:00:05
...
[regress/multiplex.sh]
Use DATA and COPY for test data rather than hard-coded paths; ok djm@
2004-06-17 16:32:45 +10:00
ddea13d74d
- dtucker@cvs.openbsd.org 2004/06/17 05:51:59
...
[regress/multiplex.sh]
Remove datafile between and after tests, kill sshd rather than wait;
ok djm@
2004-06-17 16:27:43 +10:00
Darren Tucker
Tim Rice
Damien Miller
Ben Lindstrom