80ba1300e2
- dtucker@cvs.openbsd.org 2006/12/13 08:36:36
...
[regress/cfgmatch.sh]
Additional test for multiple PermitOpen entries. ok djm@
2007-10-26 14:45:13 +10:00
99ad35352a
- markus@cvs.openbsd.org 2006/11/06 09:27:43
...
[regress/cfgmatch.sh]
fix quoting for non-(c)sh login shells.
2007-10-26 14:44:34 +10:00
fa66aa739f
- djm@cvs.openbsd.org 2006/08/29 09:44:00
...
[regress/sftp-cmds.sh]
clean up our mess
2007-10-26 14:43:50 +10:00
77d57b06a4
- djm@cvs.openbsd.org 2007/10/24 03:44:02
...
[scp.c]
factor out network read/write into an atomicio()-like function, and
use it to handle short reads, apply bandwidth limits and update
counters. make network IO non-blocking, so a small trickle of
reads/writes has a chance of updating the progress meter; bz #799
ok dtucker@
2007-10-26 14:28:01 +10:00
1cbc292bc0
- djm@cvs.openbsd.org 2007/10/24 03:30:02
...
[sftp.c]
rework argument splitting and parsing to cope correctly with common
shell escapes and make handling of escaped characters consistent
with sh(1) and between sftp commands (especially between ones that
glob their arguments and ones that don't).
parse command flags using getopt(3) rather than hand-rolled parsers.
ok dtucker@
2007-10-26 14:27:45 +10:00
5a4456c6a5
- markus@cvs.openbsd.org 2007/10/22 19:10:24
...
[readconf.c]
make sure that both the local and remote port are correct when
parsing -L; Jan Pechanec (bz #1378 )
2007-10-26 14:27:22 +10:00
3dddab3b95
- chl@cvs.openbsd.org 2007/10/02 17:49:58
...
[ssh-keygen.c]
handles zero-sized strings that fgets can return
properly removes trailing newline
removes an unused variable
correctly counts line number
"looks ok" ray@ markus@
2007-10-26 14:27:02 +10:00
0f4ed693d6
- chl@cvs.openbsd.org 2007/10/02 17:49:58
...
[ssh-keygen.c]
handles zero-sized strings that fgets can return
2007-10-26 14:26:32 +10:00
b8c9807628
- dtucker@cvs.openbsd.org 2007/09/29 00:25:51
...
[auth2.c]
Remove unused prototype. ok djm@
2007-10-26 14:26:15 +10:00
603077ab4c
- ray@cvs.openbsd.org 2007/09/27 00:15:57
...
[dh.c]
Don't return -1 on error in dh_pub_is_valid(), since it evaluates
to true.
Also fix a typo.
Initial diff from Matthew Dempsky, input from djm.
OK djm, markus.
2007-10-26 14:25:55 +10:00
4c7728c651
- canacar@cvs.openbsd.org 2007/09/25 23:48:57
...
[ssh-agent.c]
When adding a key that already exists, update the properties
(time, confirm, comment) instead of discarding them. ok djm@ markus@
2007-10-26 14:25:31 +10:00
733124b5dd
- djm@cvs.openbsd.org 2007/09/21 08:15:29
...
[auth-bsdauth.c auth-passwd.c auth.c auth.h auth1.c auth2-chall.c]
[monitor.c monitor_wrap.c]
unifdef -DBSD_AUTH
unifdef -USKEY
These options have been in use for some years;
ok markus@ "no objection" millert@
(NB. RCD ID sync only for portable)
2007-10-26 14:25:12 +10:00
cfb606cd5f
- djm@cvs.openbsd.org 2007/09/21 03:05:23
...
[ssh_config.5]
document KbdInteractiveAuthentication in ssh_config.5;
patch from dkg AT fifthhorseman.net
2007-10-26 14:24:48 +10:00
32a9dba66d
- stevesk@cvs.openbsd.org 2007/09/11 23:49:09
...
[sshpty.c]
remove #if defined block not needed; ok markus@ dtucker@
(NB. RCD ID sync only for portable)
2007-10-26 14:24:30 +10:00
bc1bd9dbe3
- (dtucker) [configure.ac defines.h] Shadow expiry does not work on QNX6
...
so disable it for that platform. From bacon at cs nyu edu.
2007-09-27 07:03:20 +10:00
7c92a65a1d
- (dtucker) [configure.ac atomicio.c] Fall back to <sys/poll.h> if we don't
...
have <poll.h> (eq QNX). From bacon at cs nyu edu.
2007-09-27 07:00:09 +10:00
ed626b42cc
- (djm) [atomicio.c] Fix spin avoidance for platforms that define
...
EWOULDBLOCK; patch from ben AT psc.edu
2007-09-21 13:12:49 +10:00
6ebefac25a
- (tim) [defines.h] Fix regression in long password support on OpenServer 6.
...
Problem report and additional testing rac AT tenzing.org.
2007-09-17 08:32:32 -07:00
8b3fdfb6af
- djm@cvs.openbsd.org 2007/09/16 00:55:52
...
[sftp-client.c]
use off_t instead of u_int64_t for file offsets, matching what the
progressmeter code expects; bz #842
2007-09-17 16:12:03 +10:00
35e18dba89
- djm@cvs.openbsd.org 2007/09/13 04:39:04
...
[sftp-server.c]
fix incorrect test when setting syslog facility; from Jan Pechanec
2007-09-17 16:11:33 +10:00
83e04f2023
- stevesk@cvs.openbsd.org 2007/09/12 19:39:19
...
[umac.c]
use xmalloc() and xfree(); ok markus@ pvalchev@
2007-09-17 16:11:01 +10:00
1235cd387e
- stevesk@cvs.openbsd.org 2007/09/11 23:49:09
...
[sshpty.c]
remove #if defined block not needed; ok markus@ dtucker@
NB. RCS ID sync only
2007-09-17 16:10:21 +10:00
14b017d6f2
- gilles@cvs.openbsd.org 2007/09/11 15:47:17
...
[session.c ssh-keygen.c sshlogin.c]
use strcspn to properly overwrite '\n' in fgets returned buffer
ok pyr@, ray@, millert@, moritz@, chl@
2007-09-17 16:09:15 +10:00
9c89c837cc
- stevesk@cvs.openbsd.org 2007/09/11 04:36:29
...
[sshpty.c]
sort #include
NB. RCS ID sync only
2007-09-17 16:07:32 +10:00
5cbe7ca18d
- sobrado@cvs.openbsd.org 2007/09/09 11:38:01
...
[ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.c]
sort synopsis and options in ssh-agent(1); usage is lowercase
ok jmc@
2007-09-17 16:05:50 +10:00
67bd062b27
- djm@cvs.openbsd.org 2007/09/04 11:15:56
...
[ssh.c sshconnect.c sshconnect.h]
make ssh(1)'s ConnectTimeout option apply to both the TCP connection and
SSH banner exchange (previously it just covered the TCP connection).
This allows callers of ssh(1) to better detect and deal with stuck servers
that accept a TCP connection but don't progress the protocol, and also
makes ConnectTimeout useful for connections via a ProxyCommand;
feedback and "looks ok" markus@
2007-09-17 12:06:57 +10:00
54fd7cf2db
- djm@cvs.openbsd.org 2007/09/04 03:21:03
...
[clientloop.c monitor.c monitor_fdpass.c monitor_fdpass.h]
[monitor_wrap.c ssh.c]
make file descriptor passing code return an error rather than call fatal()
when it encounters problems, and use this to make session multiplexing
masters survive slaves failing to pass all stdio FDs; ok markus@
2007-09-17 12:04:08 +10:00
1d824ab2e7
- djm@cvs.openbsd.org 2007/08/23 03:23:26
...
[sshconnect.c]
Execute ProxyCommands with $SHELL rather than /bin/sh unconditionally
2007-09-17 11:58:04 +10:00
4890e53977
- djm@cvs.openbsd.org 2007/08/23 03:22:16
...
[auth2-none.c sshd_config sshd_config.5]
Support "Banner=none" to disable displaying of the pre-login banner;
ok dtucker@ deraadt@
2007-09-17 11:57:38 +10:00
6f40204c44
- djm@cvs.openbsd.org 2007/08/23 03:06:10
...
[auth.h]
login_cap.h doesn't belong here
NB. RCS ID sync only for portable
2007-09-17 11:55:25 +10:00
6ef50134c2
- djm@cvs.openbsd.org 2007/08/23 02:55:51
...
[auth-passwd.c auth.c session.c]
missed include bits from last commit
NB. RCS ID sync only for portable
2007-09-17 11:54:24 +10:00
6572db28fd
- djm@cvs.openbsd.org 2007/08/23 02:49:43
...
[auth-passwd.c auth.c session.c]
unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@
NB. RCS ID sync only for portable
2007-09-17 11:52:59 +10:00
84287b831e
- (dtucker) [openbsd-compat/bsd-asprintf.c] Plug mem leak in error path.
...
Patch from Jan.Pechanec at sun com.
2007-09-14 10:04:15 +10:00
0eeaf127b5
- (tim) [configure.ac] Autoconf didn't define HAVE_LIBIAF because we
...
did a AC_CHECK_FUNCS within the AC_CHECK_LIB test.
2007-09-10 16:24:17 -07:00
e296d58dcf
- (dtucker) [openbsd-compat/regress/closefromtest.c] Bug #1358 : Always
...
return 0 on successful test. From David.Leonard at quest com.
2007-09-10 13:20:14 +10:00
ac4ee1eb0f
don't say it twice
2007-09-04 16:49:39 +10:00
6c3d7035a1
credit Jan Pechanec
2007-09-04 14:26:32 +10:00
ef15482d87
Mention Jan Pechanec
2007-09-04 14:05:24 +10:00
fb206ded16
- (dtucker) [INSTALL] Link to tcpwrappers.
2007-08-17 22:52:05 +10:00
8ea84561c4
- (dtucker) [INSTALL] Give PAM its own heading.
2007-08-17 22:12:14 +10:00
ea43c49650
- (dtucker) [INSTALL] the pid file is sshd.pid not ssh.pid.
2007-08-17 22:10:10 +10:00
1a32953e48
- (dtucker) [INSTALL] Group the parts describing random options and PAM
...
implementations together which is hopefully more coherent.
2007-08-17 22:03:09 +10:00
637cc404c6
typo
2007-08-17 21:40:22 +10:00
1a9176bf22
- (dtucker) [sshd.8] Many Linux variants use a single "!" to denote locked
...
accounts and that's what the code looks for, so make man page and code
agree. Pointed out by Roumen Petrov.
2007-08-17 09:42:32 +10:00
9142e1c66d
- (dtucker) [session.c] Call PAM cleanup functions for unauthenticated
...
connections too. Based on a patch from Sandro Wefel, with & ok djm@
2007-08-16 23:28:04 +10:00
fc5d188b34
- stevesk@cvs.openbsd.org 2007/08/15 12:13:41
...
[ssh_config.5]
tun device forwarding now honours ExitOnForwardFailure; ok markus@
2007-08-15 22:20:22 +10:00
9d81fdc664
- (dtucker) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec
...
contrib/suse/openssh.spec] Crank version.
2007-08-15 19:22:20 +10:00
794f97026e
- (dtucker) [openbsd-compat/bsd-cray.c] Remove debug from signal handler.
...
ok djm@
2007-08-15 19:17:43 +10:00
69fe0e1398
- markus@cvs.openbsd.org 2007/08/15 08:16:49
...
[version.h]
openssh 4.7
2007-08-15 19:14:52 +10:00
513d13accd
- markus@cvs.openbsd.org 2007/08/15 08:14:46
...
[clientloop.c]
do NOT fall back to the trused x11 cookie if generation of an untrusted
cookie fails; from security-alert at sun.com; ok dtucker
2007-08-15 19:13:41 +10:00
Damien Miller
Darren Tucker
Tim Rice