Commit Graph

3977 Commits

Author SHA1 Message Date
Tim Rice e8c898a54f [configure.ac] SCO3 needs -lcrypt_i for -lprot 2004-02-23 21:47:04 -08:00
Darren Tucker 149543e56d - (dtucker) {README.platform] Add platform-specific notes. 2004-02-24 16:14:41 +11:00
Darren Tucker 5ce131f2b6 - (dtucker) [README] Add pointer to release notes. ok djm@ 2004-02-24 16:13:24 +11:00
Damien Miller 9fc475f0c3 - (djm) Crank RPM spec versions 2004-02-24 16:00:02 +11:00
Tim Rice 18959006c0 [openbsd-compat/getrrsetbyname.c] Make gcc 2.7.2.3 happy. ok djm@ 2004-02-23 20:51:06 -08:00
Darren Tucker 2359aa985d - (dtucker) [uidswap.c] Minor KNF. ok djm@ 2004-02-24 13:17:30 +11:00
Damien Miller a811d9a9a1 - (djm) [groupaccess.c uidswap.c] Bug #787: Size group arrays at runtime
using sysconf() if available Based on patches from
   holger AT van-lengerich.de and openssh_bugzilla AT hockin.org
2004-02-24 13:05:11 +11:00
Darren Tucker 8a4e4f8779 Add missing ok 2004-02-24 10:58:10 +11:00
Darren Tucker 0d27ed1c19 - (dtucker) [configure.ac gss-serv-krb5.c ssh-gss.h] Define GSSAPI when found
with krb5-config, hunt down gssapi.h and friends.  Based partially on patch
   from deengert at anl.gov.

For the MIT Kerberos bug against krb5-config related to this see:
http://krbdev.mit.edu/rt/Ticket/Display.html?id=2240
2004-02-24 10:37:33 +11:00
Darren Tucker a6ea420c38 - markus@cvs.openbsd.org 2004/02/23 15:16:46
[version.h]
     enter 3.8
2004-02-24 09:24:01 +11:00
Darren Tucker 0acc92a93c - markus@cvs.openbsd.org 2004/02/23 15:12:46
[bufaux.c]
     encode 0 correctly in buffer_put_bignum2; noted by Mikulas Patocka
     and drop support for negative BNs; ok otto@
2004-02-24 09:21:41 +11:00
Darren Tucker efa3706f05 - markus@cvs.openbsd.org 2004/02/23 12:02:33
[sshd.c]
     backout revision 1.279; set listen socket to non-block; ok henning.
2004-02-24 09:20:29 +11:00
Darren Tucker 37bd3663bf - markus@cvs.openbsd.org 2004/02/19 21:15:04
[sftp-server.c]
     switch to new license.template
2004-02-24 09:19:15 +11:00
Darren Tucker 1825f26d21 - (dtucker) [session.c] Bug #789: Only make setcred call for !privsep in the
non-interactive path.  ok djm@
2004-02-24 00:01:27 +11:00
Darren Tucker e828d0c75b Add missed ChangeLog entries for previous commits... 2004-02-22 11:55:07 +11:00
Darren Tucker 31e0e8b997 - (dtucker) [configure.ac] Apply krb5-config --libs fix to non-gssapi path
too.
2004-02-22 11:37:48 +11:00
Darren Tucker b4dc6c23a5 - (dtucker) [auth-passwd.c] Only check password expiry once. Prevents
multiple warnings if a wrong password is entered.
2004-02-22 10:23:35 +11:00
Darren Tucker aa0aecad99 - (dtucker) [auth-shadow.c auth.h] Provide warnings of impending account or
password expiry.  ok djm@
2004-02-22 10:22:05 +11:00
Darren Tucker 15ee748f28 - (dtucker) [auth-shadow.c auth.c auth.h] Move shadow account expiry test
to auth-shadow.c, no functional change.  ok djm@
2004-02-22 09:43:15 +11:00
Damien Miller 2e45cb0fb4 - (djm) [openbsd-compat/setproctitle.c] fix comments; from grange@ 2004-02-20 20:37:44 +11:00
Damien Miller 051b0acbbc - (djm) [log.c] Tighten openlog_r tests 2004-02-18 22:59:43 +11:00
Damien Miller 82c78b3b9d - (djm) [log.c] Correct use of HAVE_OPENLOG_R 2004-02-18 15:42:31 +11:00
Damien Miller 05a75b6e5b - jmc@cvs.openbsd.org 2004/02/17 19:35:21
[sshd_config.5]
     remove cruft left over from RhostsAuthentication removal;
     ok markus@
2004-02-18 14:31:23 +11:00
Damien Miller 20e1fabace - djm@cvs.openbsd.org 2004/02/17 11:03:08
[sftp.c]
     sftp.c and sftp-int.c, together at last; ok markus@
2004-02-18 14:30:55 +11:00
Damien Miller 9a47d86661 - (djm) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2004/02/17 07:17:29
     [sftp-glob.c sftp.c]
     Remove useless headers; ok deraadt@
2004-02-18 14:20:29 +11:00
Damien Miller d7d46bb606 - (djm) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2004/02/17 07:17:29
     [sftp-glob.c sftp.c]
     Remove useless headers; ok deraadt@
2004-02-18 14:11:13 +11:00
Darren Tucker a22897df06 - (dtucker) [configure.ac] Handle case where krb5-config --libs returns a
path with a "-" in it.  From Sergio.Gelato at astro.su.se.
2004-02-18 11:21:12 +11:00
Darren Tucker 5cf8ef735c - (dtucker) [auth-pam.c] Store output from pam_session and pam_setcred for
display after login.  Should fix problems like pam_motd not displaying
   anything, noticed by cjwatson at debian.org.  ok djm@
2004-02-17 23:20:07 +11:00
Darren Tucker ba53b839d3 - (dtucker) [auth-pam.c] Tidy up PAM debugging. ok djm@ 2004-02-17 20:46:59 +11:00
Damien Miller 34255b9f4c - (djm) Bug #698: Specify FILE: for KRB5CCNAME; patch from
stadal@suse.cz and simon@sxw.org.uk
2004-02-17 20:33:52 +11:00
Damien Miller 4e60ed74a6 - djm@cvs.openbsd.org 2004/02/17 05:39:51
[sftp-client.c sftp-client.h sftp-glob.c sftp-glob.h sftp-int.c]
     [sftp-int.h sftp.c]
     switch to license.template for code written by me (belated, I know...)
2004-02-17 17:07:59 +11:00
Damien Miller 98225c2950 - (djm) Simplify the license on code I have written. No code changes. 2004-02-17 16:49:41 +11:00
Tim Rice 3d5352e156 [configure.ac] Make sure -lcrypto is before -lsocket for sco3. ok mouring@ 2004-02-12 09:27:21 -08:00
Tim Rice 9ad7e0e805 [Makefile.in regress/sftp-badcmds.sh regress/test-exec.sh]
Portablity fixes. Data sftp transfers needs to be world readable. Some
older shells hang on while loops when  doing sh -n some_script. OK dtucker@
2004-02-12 07:17:10 -08:00
Tim Rice 43fa557ce2 [configure.ac] Fix comment to match code changes in ver 1.117 2004-02-11 14:46:40 -08:00
Darren Tucker 812e776142 Remove password expiry from TODO 2004-02-11 20:44:13 +11:00
Darren Tucker cee6d4cf5a - (dtucker) [auth-passwd.c auth-shadow.c] Only enable shadow expiry check
if HAS_SHADOW_EXPIRY is set.
2004-02-11 18:48:52 +11:00
Darren Tucker 13a707b60d - (dtucker) [configure.ac] Bug #345: Do not disable utmp on HP-UX 10.x.
ok djm@
2004-02-10 17:15:05 +11:00
Darren Tucker c28b88a314 - (dtucker) [configure.ac loginrec.c] Bug #464: Use updwtmpx on platforms
that support it.  from & ok mouring@
2004-02-10 16:49:35 +11:00
Darren Tucker cfea2063e5 - (dtucker) [openbsd-compat/port-aix.c openbsd-compat/port-aix.h] Move
include from port-aix.h to port-aix.c and remove unnecessary function
   definition.  Fixes build errors on AIX.

#include'ing auth.h in port-aix.h causes conflicting definitions of Authctxt
in sshconnect2.c.  Sigh.
2004-02-10 15:27:34 +11:00
Darren Tucker 0d86829fca Remove auth-shadow.h reference 2004-02-10 13:51:34 +11:00
Darren Tucker 1921ed9f96 - (dtucker) [auth-pam.c auth-pam.h session.c] Bug #14: Use do_pwchange to
change expired PAM passwords for SSHv1 connections without privsep.
   pam_chauthtok is still used when privsep is disabled.  ok djm@
2004-02-10 13:23:28 +11:00
Darren Tucker ffae532076 - (dtucker) [openbsd-compat/fake-rfc2553.h] Bug #563: Prepend ssh_ to compat
functions to avoid conflicts with Heimdal's libroken.  ok djm@
2004-02-10 13:05:40 +11:00
Darren Tucker 9df3defdbb - (dtucker) [LICENCE Makefile.in auth-passwd.c auth-shadow.c auth.c auth.h
defines.h] Bug #14: Use do_pwchange to support password expiry and force
   change for platforms using /etc/shadow.  ok djm@
2004-02-10 13:01:14 +11:00
Darren Tucker e3dba82dd4 - (dtucker) [auth-passwd.c auth.h openbsd-compat/port-aix.c
openbsd-compat/port-aix.h] Bug #14: Use do_pwchange to support AIX's
    native password expiry.
2004-02-10 12:50:19 +11:00
Darren Tucker 693f8a8aae - (dtucker) [cipher.c] enable AES counter modes with OpenSSL 0.9.5.
ok djm@, markus@
2004-02-07 12:29:39 +11:00
Darren Tucker fc57f71fb1 - dtucker@cvs.openbsd.org 2004/02/06 23:41:13
[cipher-ctr.c]
     Use EVP_CIPHER_CTX_key_length for key length.  ok markus@
     (This will fix builds with OpenSSL 0.9.5)
2004-02-07 10:41:48 +11:00
Darren Tucker 074593538a - (dtucker) [configure.ac includes.h] Include <sys/stream.h> if present,
required on Solaris 2.5.1 for queue_t, which is used by <sys/ptms.h>.
2004-02-06 21:29:41 +11:00
Darren Tucker 7f73a4955d - markus@cvs.openbsd.org 2004/02/05 15:33:33
[progressmeter.c]
     fix ETA for > 4GB; bugzilla #791; ok henning@ deraadt@
2004-02-06 16:41:37 +11:00
Darren Tucker a8be9e23d2 - dtucker@cvs.openbsd.org 2004/02/05 05:37:17
[monitor.c sshd.c]
     Pass SIGALRM through to privsep child if LoginGraceTime expires. ok markus@
2004-02-06 16:40:27 +11:00