tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
626 Commits 6 Branches 20 Tags 98 MiB
Commit Graph

99 Commits

Author SHA1 Message Date
Damien Miller ad833b3e65 - (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers 
- (djm) OpenBSD CVS updates:
   - deraadt@cvs.openbsd.org 2000/08/18 20:07:23
     [ssh.c]
     accept remsh as a valid name as well; roman@buildpoint.com
   - deraadt@cvs.openbsd.org 2000/08/18 20:17:13
     [deattack.c crc32.c packet.c]
     rename crc32() to ssh_crc32() to avoid zlib name clash.  do not move to
     libz crc32 function yet, because it has ugly "long"'s in it;
     oneill@cs.sfu.ca
   - deraadt@cvs.openbsd.org 2000/08/18 20:26:08
     [scp.1 scp.c]
     -S prog support; tv@debian.org
   - deraadt@cvs.openbsd.org 2000/08/18 20:50:07
     [scp.c]
     knf
   - deraadt@cvs.openbsd.org 2000/08/18 20:57:33
     [log-client.c]
     shorten
   - markus@cvs.openbsd.org  2000/08/19 12:48:11
     [channels.c channels.h clientloop.c ssh.c ssh.h]
     support for ~. in ssh2
   - deraadt@cvs.openbsd.org 2000/08/19 15:29:40
     [crc32.h]
     proper prototype
   - markus@cvs.openbsd.org  2000/08/19 15:34:44
     [authfd.c authfd.h key.c key.h ssh-add.1 ssh-add.c ssh-agent.1]
     [ssh-agent.c ssh-keygen.c sshconnect1.c sshconnect2.c Makefile]
     [fingerprint.c fingerprint.h]
     add SSH2/DSA support to the agent and some other DSA related cleanups.
     (note that we cannot talk to ssh.com's ssh2 agents)
   - markus@cvs.openbsd.org  2000/08/19 15:55:52
     [channels.c channels.h clientloop.c]
     more ~ support for ssh2
   - markus@cvs.openbsd.org  2000/08/19 16:21:19
     [clientloop.c]
     oops
   - millert@cvs.openbsd.org 2000/08/20 12:25:53
     [session.c]
     We have to stash the result of get_remote_name_or_ip() before we
     close our socket or getpeername() will get EBADF and the process
     will exit.  Only a problem for "UseLogin yes".
   - millert@cvs.openbsd.org 2000/08/20 12:30:59
     [session.c]
     Only check /etc/nologin if "UseLogin no" since login(1) may have its
     own policy on determining who is allowed to login when /etc/nologin
     is present.  Also use the _PATH_NOLOGIN define.
   - millert@cvs.openbsd.org 2000/08/20 12:42:43
     [auth1.c auth2.c session.c ssh.c]
     Add calls to setusercontext() and login_get*().  We basically call
     setusercontext() in most places where previously we did a setlogin().
     Add default login.conf file and put root in the "daemon" login class.
   - millert@cvs.openbsd.org 2000/08/21 10:23:31
     [session.c]
     Fix incorrect PATH setting; noted by Markus.
 2000-08-23 10:46:23 +10:00
Damien Miller 942da039d2 - (djm) OpenBSD CVS changes: 
- markus@cvs.openbsd.org  2000/07/22 03:14:37
     [servconf.c servconf.h sshd.8 sshd.c sshd_config]
     random early drop; ok theo, niels
   - deraadt@cvs.openbsd.org 2000/07/26 11:46:51
     [ssh.1]
     typo
   - deraadt@cvs.openbsd.org 2000/08/01 11:46:11
     [sshd.8]
     many fixes from pepper@mail.reppep.com
   - provos@cvs.openbsd.org  2000/08/01 13:01:42
     [Makefile.in util.c aux.c]
     rename aux.c to util.c to help with cygwin port
   - deraadt@cvs.openbsd.org 2000/08/02 00:23:31
     [authfd.c]
     correct sun_len; Alexander@Leidinger.net
   - provos@cvs.openbsd.org  2000/08/02 10:27:17
     [readconf.c sshd.8]
     disable kerberos authentication by default
   - provos@cvs.openbsd.org  2000/08/02 11:27:05
     [sshd.8 readconf.c auth-krb4.c]
     disallow kerberos authentication if we can't verify the TGT; from
     dugsong@
     kerberos authentication is on by default only if you have a srvtab.
   - markus@cvs.openbsd.org  2000/08/04 14:30:07
     [auth.c]
     unused
   - markus@cvs.openbsd.org  2000/08/04 14:30:35
     [sshd_config]
     MaxStartups
   - markus@cvs.openbsd.org  2000/08/15 13:20:46
     [authfd.c]
     cleanup; ok niels@
   - markus@cvs.openbsd.org  2000/08/17 14:05:10
     [session.c]
     cleanup login(1)-like jobs, no duplicate utmp entries
   - markus@cvs.openbsd.org  2000/08/17 14:06:34
     [session.c sshd.8 sshd.c]
      sshd -u len, similar to telnetd
 2000-08-18 13:59:06 +10:00
Damien Miller 11fa2cc383 - (djm) Replacement for inet_ntoa for Irix (which breaks on gcc) 
- (djm) Fix strerror replacement for old SunOS. Based on patch from
   Charles Levert <charles@comm.polymtl.ca>
 - (djm) Seperate arc4random into seperate file and use OpenSSL's RC4
   implementation.
 2000-08-16 10:35:58 +10:00
Damien Miller ef7ed5eadf - (djm) Add $(srcdir) to includes when compiling (for VPATH). Report from 
Fabrice bacchella <fabrice.bacchella@marchfirst.fr>
 2000-08-13 10:31:12 +10:00
Damien Miller 729e1f15d8 Set mode 0755 during install 2000-08-07 15:39:13 +10:00
Damien Miller 3077fb9e6b - (djm) Add strsep function from OpenBSD libc for systems that lack it 2000-07-11 21:34:34 +10:00
Damien Miller 54ba469f20 - (djm) Don't generate host keys when $(DESTDIR) is set (e.g. during RPM 
builds)
 2000-07-11 18:39:20 +10:00
Damien Miller 34e64baa92 - (djm) Added bsd-inet_aton for NeXT 2000-07-11 14:46:29 +10:00
Damien Miller 31abc9addb - (djm) More NeXT compatibility from Ben Lindstrom <mouring@pconline.com> 
Including sigaction() et al. replacements
 2000-07-09 23:26:27 +10:00
Damien Miller 0100627fc8 - (djm) Missing $(DESTDIR) on host-key target causing problems with RPM 
builds. Problem report from Gregory Leblanc <GLeblanc@cu-portland.edu>
 2000-07-09 21:29:37 +10:00
Damien Miller 262ff170fb - (djm) Added 'distprep' make target to simplify packaging 2000-06-28 08:24:49 +10:00
Damien Miller 099f505f95 - (djm) Automatically generate host key during "make install". Suggested 
by Gary E. Miller <gem@rellim.com>
 - (djm) Paranoia before kill() system call
 2000-06-22 20:57:11 +10:00
Damien Miller 0f91b4e3a1 - (djm) Started merge of Ben Lindstrom's <mouring@pconline.com> NeXT support 2000-06-18 15:43:25 +10:00
Damien Miller f6d9e22189 - OpenBSD CVS updates: 
- deraadt@cvs.openbsd.org 2000/06/17 09:58:46
     [channels.c]
     everyone says "nix it" (remove protocol 2 debugging message)
   - markus@cvs.openbsd.org  2000/06/17 13:24:34
     [sshconnect.c]
     allow extended server banners
   - markus@cvs.openbsd.org  2000/06/17 14:30:10
     [sshconnect.c]
     missing atomicio, typo
   - jakob@cvs.openbsd.org   2000/06/17 16:52:34
     [servconf.c servconf.h session.c sshd.8 sshd_config]
     add support for ssh v2 subsystems. ok markus@.
   - deraadt@cvs.openbsd.org 2000/06/17 18:57:48
     [readconf.c servconf.c]
     include = in WHITESPACE; markus ok
   - markus@cvs.openbsd.org  2000/06/17 19:09:10
     [auth2.c]
     implement bug compatibility with ssh-2.0.13 pubkey, server side
   - markus@cvs.openbsd.org  2000/06/17 21:00:28
     [compat.c]
     initial support for ssh.com's 2.2.0
   - markus@cvs.openbsd.org  2000/06/17 21:16:09
     [scp.c]
     typo
   - markus@cvs.openbsd.org  2000/06/17 22:05:02
     [auth-rsa.c auth2.c serverloop.c session.c auth-options.c auth-options.h]
     split auth-rsa option parsing into auth-options
     add options support to authorized_keys2
   - markus@cvs.openbsd.org  2000/06/17 22:42:54
     [session.c]
     typo
 2000-06-18 14:50:44 +10:00
andre 2ff7b5d028 Added new login recording code 
Added test program for login code (make logintest)
 2000-06-03 14:57:40 +00:00
Damien Miller fda78d9bd0 - HPUX and Configure fixes from Lutz Jaenicke 
<Lutz.Jaenicke@aet.TU-Cottbus.DE>
 - Use mkinstalldirs script to make directories instead of non-portable
   "install -d". Suggested by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
 2000-05-20 15:33:44 +10:00
Damien Miller 615f939ebb - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 
- INSTALL typo and URL fix
  - Makefile fix
  - Solaris fixes
 - Checking for ssize_t and memmove. Based on patch from SAKAI Kiyotaka
   <ksakai@kso.netwk.ntt-at.co.jp>
 2000-05-17 22:53:33 +10:00
Damien Miller dcb6ecd1b3 - OpenBSD CVS update: 
- markus@cvs.openbsd.org
    [ssh.c]
    fix usage()
    [ssh2.h]
    draft-ietf-secsh-architecture-05.txt
    [ssh.1]
    document ssh -T -N (ssh2 only)
    [channels.c serverloop.c ssh.h sshconnect.c sshd.c aux.c]
    enable nonblocking IO for sshd w/ proto 1, too; split out common code
    [aux.c]
    missing include
 2000-05-17 22:34:22 +10:00
Damien Miller 8d1fd57a97 - Fix from Andre Lucas <andre.lucas@dial.pipex.com> 
- Fixes command line printing segfaults (spotter: Bladt Norbert)
  - Fixes erroneous printing of debug messages to syslog
  - Fixes utmp for MacOS X (spotter: Aristedes Maniatis)
  - Gives useful error message if PRNG initialisation fails
  - Reduced ssh startup delay
  - Measures cumulative command time rather than the time between reads
	 after select()
  - 'fixprogs' perl script to eliminate non-working entropy commands, and
	 optionally run 'ent' to measure command entropy
 2000-05-17 21:34:07 +10:00
Damien Miller 95fe91bd84 - Fix for non-recognised DSA keys from Arkadiusz Miskiewicz 
<misiek@pld.org.pl>
 2000-05-13 12:31:22 +10:00
Damien Miller 16e519cb9c - Moved all the bsd-* and fake-* stuff into new libopenbsd-compat.a 2000-05-09 14:28:55 +10:00
Damien Miller 58e579bcd9 - Generate DSA host keys during "make key" or RPM installs 2000-05-08 00:05:31 +10:00
Damien Miller e247cc402b - Remove references to SSLeay. 
- Big OpenBSD CVS update
  - markus@cvs.openbsd.org
    [clientloop.c]
    - typo
    [session.c]
    - update proctitle on pty alloc/dealloc, e.g. w/ windows client
    [session.c]
    - update proctitle for proto 1, too
    [channels.h nchan.c serverloop.c session.c sshd.c]
    - use c-style comments
  - deraadt@cvs.openbsd.org
    [scp.c]
    - more atomicio
  - markus@cvs.openbsd.org
    [channels.c]
    - set O_NONBLOCK
    [ssh.1]
    - update AUTHOR
    [readconf.c ssh-keygen.c ssh.h]
    - default DSA key file ~/.ssh/id_dsa
    [clientloop.c]
    - typo, rm verbose debug
  - deraadt@cvs.openbsd.org
    [ssh-keygen.1]
    - document DSA use of ssh-keygen
    [sshd.8]
    - a start at describing what i understand of the DSA side
    [ssh-keygen.1]
    - document -X and -x
    [ssh-keygen.c]
    - simplify usage
  - markus@cvs.openbsd.org
    [sshd.8]
    - there is no rhosts_dsa
    [ssh-keygen.1]
    - document -y, update -X,-x
    [nchan.c]
    - fix close for non-open ssh1 channels
    [servconf.c servconf.h ssh.h sshd.8 sshd.c ]
    - s/DsaKey/HostDSAKey/, document option
    [sshconnect2.c]
    - respect number_of_password_prompts
    [channels.c channels.h servconf.c servconf.h session.c sshd.8]
    - GatewayPorts for sshd, ok deraadt@
    [ssh-add.1 ssh-agent.1 ssh.1]
    - more doc on: DSA, id_dsa, known_hosts2, authorized_keys2
    [ssh.1]
    - more info on proto 2
    [sshd.8]
    - sync AUTHOR w/ ssh.1
    [key.c key.h sshconnect.c]
    - print key type when talking about host keys
    [packet.c]
    - clear padding in ssh2
    [dsa.c key.c radix.c ssh.h sshconnect1.c uuencode.c uuencode.h]
    - replace broken uuencode w/ libc b64_ntop
    [auth2.c]
    - log failure before sending the reply
    [key.c radix.c uuencode.c]
    - remote trailing comments before calling __b64_pton
    [auth2.c readconf.c readconf.h servconf.c servconf.h ssh.1]
    [sshconnect2.c sshd.8]
    - add DSAAuthetication option to ssh/sshd, document SSH2 in sshd.8
 - Bring in b64_ntop and b64_pton from OpenBSD libc (bsd-base64.[ch])
 2000-05-07 12:03:14 +10:00
Damien Miller 0437b33e54 - Add Andre Lucas' <andre.lucas@dial.pipex.com> patch to read entropy 
gathering commands from a text file
 2000-05-02 09:56:41 +10:00
Damien Miller eba71bab9b - Merge big update to OpenSSH-2.0 from OpenBSD CVS 
[README.openssh2]
   - interop w/ F-secure windows client
   - sync documentation
   - ssh_host_dsa_key not ssh_dsa_key
   [auth-rsa.c]
   - missing fclose
   [auth.c authfile.c compat.c dsa.c dsa.h hostfile.c key.c key.h radix.c]
   [readconf.c readconf.h ssh-add.c ssh-keygen.c ssh.c ssh.h sshconnect.c]
   [sshd.c uuencode.c uuencode.h authfile.h]
   - add DSA pubkey auth and other SSH2 fixes.  use ssh-keygen -[xX]
     for trading keys with the real and the original SSH, directly from the
     people who invented the SSH protocol.
   [auth.c auth.h authfile.c sshconnect.c auth1.c auth2.c sshconnect.h]
   [sshconnect1.c sshconnect2.c]
   - split auth/sshconnect in one file per protocol version
   [sshconnect2.c]
   - remove debug
   [uuencode.c]
   - add trailing =
   [version.h]
   - OpenSSH-2.0
   [ssh-keygen.1 ssh-keygen.c]
   - add -R flag: exit code indicates if RSA is alive
   [sshd.c]
   - remove unused
     silent if -Q is specified
   [ssh.h]
   - host key becomes /etc/ssh_host_dsa_key
   [readconf.c servconf.c ]
   - ssh/sshd default to proto 1 and 2
   [uuencode.c]
   - remove debug
   [auth2.c ssh-keygen.c sshconnect2.c sshd.c]
   - xfree DSA blobs
   [auth2.c serverloop.c session.c]
   - cleanup logging for sshd/2, respect PasswordAuth no
   [sshconnect2.c]
   - less debug, respect .ssh/config
   [README.openssh2 channels.c channels.h]
   - clientloop.c session.c ssh.c
   - support for x11-fwding, client+server
 2000-04-29 23:57:08 +10:00
Damien Miller 74a333bbe1 - Generate manpages before make install not at the end of make all 
- Don't seed the rng quite so often
 - Always reseed rng when requested
 2000-04-04 15:04:09 +10:00
Damien Miller 33b13568b5 - OpenBSD CVS update: 
- [packet.h packet.c]
     ssh2 packet format
   - [packet.h packet.c nchan2.ms nchan.h compat.h compat.c]
     [channels.h channels.c]
     channel layer support for ssh2
   - [kex.h kex.c hmac.h hmac.c dsa.c dsa.h]
     DSA, keyexchange, algorithm agreement for ssh2
 2000-04-04 14:38:59 +10:00
Damien Miller 040f3831fc - Wrote entropy collection routines for systems that lack /dev/random 
and EGD
 2000-04-03 14:50:43 +10:00
Damien Miller b38eff8e4f - Big OpenBSD CVS update (mainly beginnings of SSH2 infrastructure) 
- [auth.c session.c sshd.c auth.h]
     split sshd.c -> auth.c session.c sshd.c plus cleanup and goto-removal
   - [bufaux.c bufaux.h]
     support ssh2 bignums
   - [channels.c channels.h clientloop.c sshd.c nchan.c nchan.h packet.c]
     [readconf.c ssh.c ssh.h serverloop.c]
     replace big switch() with function tables (prepare for ssh2)
   - [ssh2.h]
     ssh2 message type codes
   - [sshd.8]
     reorder Xr to avoid cutting
   - [serverloop.c]
     close(fdin) if fdin != fdout, shutdown otherwise, ok theo@
   - [channels.c]
     missing close
     allow bigger packets
   - [cipher.c cipher.h]
     support ssh2 ciphers
   - [compress.c]
     cleanup, less code
   - [dispatch.c dispatch.h]
     function tables for different message types
   - [log-server.c]
     do not log() if debuggin to stderr
     rename a cpp symbol, to avoid param.h collision
   - [mpaux.c]
     KNF
   - [nchan.c]
     sync w/ channels.c
 2000-04-01 11:09:21 +10:00
Damien Miller 450a7a1ff4 - OpenBSD CVS update 
- [auth-krb4.c]
     -Wall
   - [auth-rh-rsa.c auth-rsa.c hostfile.c hostfile.h key.c key.h match.c]
     [match.h ssh.c ssh.h sshconnect.c sshd.c]
     initial support for DSA keys. ok deraadt@, niels@
   - [cipher.c cipher.h]
     remove unused cipher_attack_detected code
   - [scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
     Fix some formatting problems I missed before.
   - [ssh.1 sshd.8]
     fix spelling errors, From: FreeBSD
   - [ssh.c]
     switch to raw mode only if he _get_ a pty (not if we _want_ a pty).
 2000-03-26 13:04:51 +10:00
Damien Miller 2c9279fa66 - Better tests for OpenSSL w/ RSAref 
- Added replacement setenv() function from OpenBSD libc. Suggested by
   Ben Lindstrom <mouring@pconline.com>
 2000-03-26 12:12:34 +10:00
Damien Miller 166bd448c9 - Propogate LD through to Makefile 2000-03-16 10:48:25 +11:00
Damien Miller 8b1c22b775 - Created contrib/ subdirectory. Included helpers from Phil Hands' 
Debian package, README file and chroot patch from Ricardo Cerqueira
   <rmcc@clix.pt>
 - Moved gnome-ssh-askpass.c to contrib directory and reomved config
   option.
 - Slight cleanup to doc files
 2000-03-15 12:13:01 +11:00
Damien Miller 4095f894dc - Added "make host-key" target, Suggestion from Dominik Brettnacher 
<domi@saargate.de>
 2000-03-03 22:13:52 +11:00
Damien Miller f07390e90d - Seed OpenSSL's random number generator before generating RSA keypairs 
- Split random collector into seperate file
 2000-01-29 20:40:22 +11:00
Damien Miller 3aa0fa4c7a ssh should be setuid 2000-01-27 14:15:48 +11:00
Damien Miller 7d7c60d6e7 - Added 'DESTDIR' option to Makefile to ease package building. Patch from 
Jim Knoble <jmknoble@pobox.com>
 - Updated RPM spec files to use DESTDIR
 2000-01-26 14:37:48 +11:00
Damien Miller 6d84493c8b - Fixpaths was missing /etc/ssh_known_hosts. Report from Jim Knoble 
<jmknoble@pobox.com>
 2000-01-26 12:17:50 +11:00
Damien Miller 670a4b8554 - Merge preformatted manpage patch from Andre Lucas 
<andre.lucas@dial.pipex.com>
 2000-01-22 13:53:11 +11:00
Damien Miller 886c63a2c5 - Big manpage and config file cleanup from Andre Lucas 
<andre.lucas@dial.pipex.com>
   - Re-added latest (unmodified) OpenBSD manpages
 2000-01-20 23:13:36 +11:00
Damien Miller ca673b3d03 - Makefile fix from Gary E. Miller <gem@rellim.com> 2000-01-18 09:01:27 +11:00
Damien Miller b13c73e385 - Substitute PID directory in sshd.8. Suggestion from Andrew 
Stribblehill <a.d.stribblehill@durham.ac.uk>
 2000-01-17 22:02:17 +11:00
Damien Miller 34132e54cb - Merged OpenBSD IPv6 patch: 
- [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1]
     [scp.c packet.h packet.c login.c log.c canohost.c channels.c]
     [hostfile.c sshd_config]
     ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new
     features: sshd allows multiple ListenAddress and Port options. note
     that libwrap is not IPv6-ready. (based on patches from
     fujiwara@rcac.tdi.co.jp)
   - [ssh.c canohost.c]
     more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo,
     from itojun@
   - [channels.c]
     listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE)
   - [packet.h]
     allow auth-kerberos for IPv4 only
   - [scp.1 sshd.8 servconf.h scp.c]
     document -4, -6, and 'ssh -L 2022/::1/22'
   - [ssh.c]
     'ssh @host' is illegal (null user name), from
     karsten@gedankenpolizei.de
   - [sshconnect.c]
     better error message
   - [sshd.c]
     allow auth-kerberos for IPv4 only
 - Big IPv6 merge:
   - Cleanup overrun in sockaddr copying on RHL 6.1
   - Replacements for getaddrinfo, getnameinfo, etc based on versions
     from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp>
   - Replacement for missing structures on systems that lack IPv6
   - record_login needed to know about AF_INET6 addresses
   - Borrowed more code from OpenBSD: rresvport_af and requisites
 2000-01-14 15:45:46 +11:00
Damien Miller 105b7f073a - Better KrbIV / AFS detection, based on patch from: 
Holger Trapp <Holger.Trapp@Informatik.TU-Chemnitz.DE>
 2000-01-07 08:45:55 +11:00
Damien Miller 645c598d3c - Add explicit make rules for files proccessed by fixpaths. 
- Fix "make install" in RPM spec files. Report from Tenkou N. Hattori
   <tnh@kondara.org>
 2000-01-03 14:42:09 +11:00
Damien Miller 8beab01b49 - Run fixpaths before install. (Andre Lucas) 2000-01-02 11:52:49 +11:00
Damien Miller e72b7af17e - Removed most of the pam code into its own file auth-pam.[ch]. This 
cleaned up sshd.c up significantly.
 - Several other cleanups
 1999-12-30 15:08:44 +11:00
Damien Miller 58ca7d8503 - Rename helper.[ch] to (more appropriate) bsd-misc.[ch] 
- Minor Makefile cleaning
 1999-12-29 19:56:30 +11:00
Damien Miller e79334a2b0 - Autodetect perl, patch from David Rankin 
<drankin@bohemians.lexington.ky.us>
 1999-12-29 10:03:37 +11:00
Damien Miller beb4ba5a68 - Portability fixes for Irix 5.3 (now compiles OK!) 
- autoconf and other misc cleanups
 1999-12-28 15:09:35 +11:00