tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,256 Commits 6 Branches 20 Tags 98 MiB
Commit Graph

1922 Commits

Author SHA1 Message Date
Damien Miller 9b74bfc5be - markus@cvs.openbsd.org 2002/02/04 11:58:10 
[auth2.c]
     cross checking of announced vs actual pktype in pubkey/hostbaed auth; ok stevesk@
 2002-02-05 12:26:03 +11:00
Damien Miller 4d4d53f399 - stevesk@cvs.openbsd.org 2002/02/04 00:53:39 
[ssh-agent.c]
     unneeded includes
 2002-02-05 12:25:28 +11:00
Damien Miller d2b8f1657e - stevesk@cvs.openbsd.org 2002/02/03 23:22:59 
[ssh-agent.1]
     ssh-add also adds $HOME/.ssh/id_rsa and $HOME/.ssh/id_dsa now.
 2002-02-05 12:24:19 +11:00
Damien Miller 9749c0c972 - stevesk@cvs.openbsd.org 2002/02/03 22:35:57 
[ssh.1 sshd.8]
     some KeepAlive cleanup/clarify; ok markus@
 2002-02-05 12:23:58 +11:00
Damien Miller 68f45983b2 - markus@cvs.openbsd.org 2002/02/03 17:59:23 
[sshconnect2.c]
     more cross checking if announced vs. used key type; ok stevesk@
 2002-02-05 12:23:32 +11:00
Damien Miller 67f0bc043c - markus@cvs.openbsd.org 2002/02/03 17:58:21 
[channels.c channels.h ssh.c]
     generic callbacks are not really used, remove and
     add a callback for msg of type SSH2_MSG_CHANNEL_OPEN_CONFIRMATION
     ok djm@
 2002-02-05 12:23:08 +11:00
Damien Miller 50e884d125 - markus@cvs.openbsd.org 2002/02/03 17:55:55 
[channels.c channels.h]
     remove unused channel_input_channel_request
 2002-02-05 12:22:08 +11:00
Damien Miller c7ef63dd41 - markus@cvs.openbsd.org 2002/02/03 17:53:25 
[auth1.c serverloop.c session.c session.h]
     don't use channel_input_channel_request and callback
     use new server_input_channel_req() instead:
     	server_input_channel_req does generic request parsing on server side
     	session_input_channel_req handles just session specific things now
     ok djm@
 2002-02-05 12:21:42 +11:00
Damien Miller 664d6b9a8e - markus@cvs.openbsd.org 2002/01/31 15:00:05 
[serverloop.c]
     no need for WNOHANG; ok stevesk@
 2002-02-05 12:20:16 +11:00
Damien Miller 9ab47eeb22 - markus@cvs.openbsd.org 2002/01/31 13:35:11 
[kexdh.c kexgex.c]
     cross check announced key type and type from key blob
 2002-02-05 12:19:52 +11:00
Damien Miller 07a2d429b2 - markus@cvs.openbsd.org 2002/01/29 23:50:37 
[scp.1 ssh.1]
     mention exit status; ok stevesk@
 2002-02-05 12:16:15 +11:00
Damien Miller 5fab4b9b1d - markus@cvs.openbsd.org 2002/01/29 22:46:41 
[session.c]
     don't depend on servconf.c; ok djm@
 2002-02-05 12:15:07 +11:00
Damien Miller c313be2756 - markus@cvs.openbsd.org 2002/01/29 16:41:19 
[ssh-add.1]
     add DIAGNOSTICS; ok stevesk@
 2002-02-05 12:14:41 +11:00
Damien Miller baa0870852 - stevesk@cvs.openbsd.org 2002/01/29 16:29:02 
[session.c]
     limit subsystem length in log; ok markus@
 2002-02-05 12:14:10 +11:00
Damien Miller c5d8635d6a - markus@cvs.openbsd.org 2002/01/29 14:32:03 
[auth2.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c canohost.c servconf.c servconf.h session.c sshd.8 sshd_config]
     s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@
 2002-02-05 12:13:41 +11:00
Damien Miller 43cba34b64 - markus@cvs.openbsd.org 2002/01/29 14:27:57 
[ssh-add.c]
     exit 2 if no agent, exit 1 if list fails; debian#61078; ok djm@
 2002-02-05 12:12:49 +11:00
Damien Miller 35b13d633b - stevesk@cvs.openbsd.org 2002/01/27 18:08:17 
[ssh.c]
     handle simple case to identify FamilyLocal display; ok markus@
 2002-02-05 12:12:09 +11:00
Damien Miller 95c249ff47 - stevesk@cvs.openbsd.org 2002/01/27 14:57:46 
[channels.c servconf.c servconf.h session.c sshd.8 sshd_config]
     add X11UseLocalhost; ok markus@
 2002-02-05 12:11:34 +11:00
Damien Miller 512bccbb5a - stevesk@cvs.openbsd.org 2002/01/26 16:44:22 
[includes.h session.c]
     revert code to add x11 localhost display authorization entry for
     hostname/unix:d and uts.nodename/unix:d if nodename was different than
     hostname.  just add entry for unix:d instead.  ok markus@
 2002-02-05 12:11:02 +11:00
Damien Miller 3672e4bc7a - markus@cvs.openbsd.org 2002/01/25 22:07:40 
[kex.c kexdh.c kexgex.c key.c mac.c]
     use EVP_MD_size(evp_md) and not evp_md->md_size; ok steveks@
 2002-02-05 11:54:07 +11:00
Damien Miller c516e928cd - markus@cvs.openbsd.org 2002/01/25 21:42:11 
[ssh-dss.c ssh-rsa.c]
     use static EVP_MAX_MD_SIZE buffers for EVP_DigestFinal; ok stevesk@
     don't use evp_md->md_size, it's not public.
 2002-02-05 11:53:43 +11:00
Damien Miller 3a8262ffcc - markus@cvs.openbsd.org 2002/01/25 21:00:24 
[sshconnect2.c]
     unused include
 2002-02-05 11:53:15 +11:00
Damien Miller 4d007769bf - stevesk@cvs.openbsd.org 2002/01/24 21:13:23 
[packet.c]
     need misc.h for set_nodelay()
 2002-02-05 11:52:54 +11:00
Damien Miller 398e1cfa23 - (djm) OpenBSD CVS Sync 
- stevesk@cvs.openbsd.org 2002/01/24 21:09:25
     [channels.c misc.c misc.h packet.c]
     add set_nodelay() to set TCP_NODELAY on a socket (prep for nagle tuning).
     no nagle changes just yet; ok djm@ markus@
 2002-02-05 11:52:13 +11:00
Tim Rice 1e2c600892 [configure.ac] fix logic on when ssh-rand-helper is installed. 
[sshd_config] put back in line that tells what PATH was compiled into sshd.
 2002-01-30 22:14:03 -08:00
Damien Miller 8eb7141758 - (djm) Delay PRNG seeding until we need it in ssh-keygen, from markus@ 2002-01-30 09:37:06 +11:00
Damien Miller 6677d419de - (djm) Don't grab Xserver or pointer by default. x11-ssh-askpass doesn't 
and grabbing can cause deadlocks with kinput2.
 2002-01-25 00:59:25 +11:00
Damien Miller 414642b26f - (djm) Don't grab Xserver by default. x11-ssh-askpass doesn't and grabbing 
can cause deadlocks with kinput2
 2002-01-25 00:46:04 +11:00
Kevin Steves 020daf437b - (stevesk) Makefile.in: bug #61; delete commented line for now. 2002-01-23 23:26:43 +00:00
Ben Lindstrom fa9b641eb0 - (bal) reverted out of 5/2001 change to atexit(). I assume I 
did it to handle SonyOS.  If that is the case than we will
   do a special case for them.
 2002-01-23 06:54:30 +00:00
Damien Miller e996d72e02 - (djm) Use case statements in autoconf to clean up some tests 2002-01-23 11:20:59 +11:00
Kevin Steves 7dc8197f8b - (stevesk) fix --with-zlib= 2002-01-22 21:59:31 +00:00
Damien Miller 6385ba0228 - (djm) Fix non-standard shell syntax in autoconf. Patch from 
Dave Dykstra <dwd@bell-labs.com>
 2002-01-23 08:12:36 +11:00
Damien Miller ec52d7c093 - (djm) Use local sys/queue.h if necessary in ssh-agent.c 2002-01-22 23:52:17 +11:00
Damien Miller 28e4d8f87b - (djm) Recent Glibc includes an incompatible sys/queue.h. Treat it as 
bogus in configure
 2002-01-22 23:51:42 +11:00
Damien Miller 1fc2343e35 - (djm) Make auth2-pam.c compile again after dispatch.h and packet.h 
changes
 2002-01-22 23:43:12 +11:00
Damien Miller 4fbf08a8f0 - stevesk@cvs.openbsd.org 2002/01/22 02:52:41 
[servconf.c]
     typo in error message; from djast@cs.toronto.edu
 2002-01-22 23:35:09 +11:00
Damien Miller 73f1074272 - markus@cvs.openbsd.org 2002/01/21 23:27:10 
[channels.c nchan.c]
     cleanup channels faster if the are empty and we are in drain-state; ok deraadt@
 2002-01-22 23:34:52 +11:00
Damien Miller 914bef437e - markus@cvs.openbsd.org 2002/01/21 22:30:12 
[cipher.c compat.c myproposal.h]
     remove "rijndael-*", just use "aes-" since this how rijndael is called
     in the drafts; ok stevesk@
 2002-01-22 23:34:35 +11:00
Damien Miller 49d795c647 - markus@cvs.openbsd.org 2002/01/21 15:13:51 
[sshconnect.c]
     use read_passphrase+ECHO in confirm(), allows use of ssh-askpass
     for hostkey confirm.
 2002-01-22 23:34:12 +11:00
Damien Miller df64a682f1 - stevesk@cvs.openbsd.org 2002/01/18 20:46:34 
[sshd.8]
     clarify Allow(Groups|Users) and Deny(Groups|Users); suggestion from
     allard@oceanpark.com; ok markus@
 2002-01-22 23:33:45 +11:00
Damien Miller 4a8ed54361 - stevesk@cvs.openbsd.org 2002/01/18 18:14:17 
[authfd.c bufaux.c buffer.c cipher.c packet.c ssh-agent.c ssh-keygen.c]
     unneeded cast cleanup; ok markus@
 2002-01-22 23:33:31 +11:00
Damien Miller 9c3f9505d9 - stevesk@cvs.openbsd.org 2002/01/18 17:14:16 
[sshd.8]
     correct Ciphers default; paola.mannaro@ubs.com
 2002-01-22 23:33:15 +11:00
Damien Miller 5488b7ec4e - stevesk@cvs.openbsd.org 2002/01/17 04:27:37 
[log.c]
     casts to silence enum type warnings for bugzilla bug 37; ok markus@
 2002-01-22 23:32:57 +11:00
Damien Miller c497e38ce6 - stevesk@cvs.openbsd.org 2002/01/16 17:55:33 
[ssh_config]
     correct some commented defaults.  add Ciphers default.  ok markus@
 2002-01-22 23:32:39 +11:00
Damien Miller fae2386cc9 - stevesk@cvs.openbsd.org 2002/01/16 17:42:33 
[ssh.1]
     correct defaults for -i/IdentityFile; ok markus@
 2002-01-22 23:32:26 +11:00
Damien Miller 2bec5c1543 - stevesk@cvs.openbsd.org 2002/01/16 17:40:23 
[sshd_config]
     The stategy now used for options in the default sshd_config shipped
     with OpenSSH is to specify options with their default value where
     possible, but leave them commented.  Uncommented options change a
     default value.  Subsystem is currently the only default option
     changed.  ok markus@
 2002-01-22 23:32:07 +11:00
Damien Miller b16461ce45 - markus@cvs.openbsd.org 2002/01/16 13:17:51 
[channels.c channels.h serverloop.c ssh.c]
     wrapper for channel_setup_fwd_listener
 2002-01-22 23:29:22 +11:00
Damien Miller b51ed39161 - markus@cvs.openbsd.org 2002/01/14 13:57:03 
[channels.h nchan.c]
     (c) 2002
 2002-01-22 23:29:03 +11:00
Damien Miller 5144df9261 - markus@cvs.openbsd.org 2002/01/14 13:55:55 
[channels.c channels.h nchan.c]
     remove function pointers for events, remove chan_init*; ok provos@
 2002-01-22 23:28:45 +11:00
Damien Miller 472d05716a - markus@cvs.openbsd.org 2002/01/14 13:41:13 
[nchan.c]
     remove duplicated code; ok provos@
 2002-01-22 23:28:28 +11:00
Damien Miller ebc11d3012 - markus@cvs.openbsd.org 2002/01/14 13:40:10 
[nchan.c]
     correct fn names for ssh2, do not switch from closed to closed; ok provos@
 2002-01-22 23:28:13 +11:00
Damien Miller fcfc43b617 - markus@cvs.openbsd.org 2002/01/14 13:34:07 
[nchan.c]
     merge chan_[io]buf_empty[12]; ok provos@
 2002-01-22 23:27:45 +11:00
Damien Miller abea8ee1c3 - markus@cvs.openbsd.org 2002/01/13 21:31:20 
[channels.h nchan.c]
     add chan_set_[io]state(), order states, state is now an u_int,
     simplifies debugging messages; ok provos@
 2002-01-22 23:27:11 +11:00
Damien Miller 0e3b87279c - markus@cvs.openbsd.org 2002/01/13 17:57:37 
[auth2.c auth2-chall.c compat.c sshconnect2.c sshd.c]
     use buffer API and avoid static strings of fixed size; ok provos@/mouring@
 2002-01-22 23:26:38 +11:00
Damien Miller 1a534ae97f - provos@cvs.openbsd.org 2002/01/13 17:27:07 
[ssh-agent.c]
     change to use queue.h macros; okay markus@
 2002-01-22 23:26:13 +11:00
Damien Miller df224031ca - markus@cvs.openbsd.org 2002/01/12 13:10:29 
[auth-skey.c]
     undo local change
 2002-01-22 23:25:46 +11:00
Damien Miller 73f18346bc - markus@cvs.openbsd.org 2002/01/11 23:26:30 
[auth-skey.c]
     use snprintf; mouring@
 2002-01-22 23:25:30 +11:00
Damien Miller 209ee4e368 - markus@cvs.openbsd.org 2002/01/11 23:02:51 
[auth2-chall.c]
     use snprintf; mouring@
 2002-01-22 23:25:08 +11:00
Damien Miller 85830d1dc0 - markus@cvs.openbsd.org 2002/01/11 23:02:18 
[readpass.c]
     use _PATH_TTY
 2002-01-22 23:24:51 +11:00
Damien Miller a5ebe0c39d - markus@cvs.openbsd.org 2002/01/11 20:14:11 
[auth2-chall.c auth-skey.c]
     use strlcpy not strlcat; mouring@
 2002-01-22 23:24:33 +11:00
Damien Miller 7d05339c70 - markus@cvs.openbsd.org 2002/01/11 13:39:36 
[auth2.c dispatch.c dispatch.h kex.c]
     a single dispatch_protocol_error() that sends a message of type 'UNIMPLEMENTED'
     dispatch_range(): set handler for a ranges message types
     use dispatch_protocol_ignore() for authentication requests after
     	successful authentication (the drafts requirement).
     serverloop/clientloop now send a 'UNIMPLEMENTED' message instead of exiting.
 2002-01-22 23:24:13 +11:00
Damien Miller 84b8ab3eee - markus@cvs.openbsd.org 2002/01/11 13:36:43 
[ssh2.h]
     add defines for msg type ranges
 2002-01-22 23:23:41 +11:00
Damien Miller 659811f7fc - markus@cvs.openbsd.org 2002/01/11 10:31:05 
[packet.c]
     handle received SSH2_MSG_UNIMPLEMENTED messages; ok djm@
 2002-01-22 23:23:11 +11:00
Damien Miller 66ac6a43a8 - markus@cvs.openbsd.org 2002/01/10 12:47:59 
[nchan.c]
     more unused code (with channels.c:1.156)
 2002-01-22 23:22:44 +11:00
Damien Miller 4ce2595259 - markus@cvs.openbsd.org 2002/01/10 12:38:26 
[nchan.c]
     remove dead code (skip drain)
 2002-01-22 23:22:20 +11:00
Damien Miller c3fa407073 - markus@cvs.openbsd.org 2002/01/10 11:24:04 
[clientloop.c]
     handle SSH2_MSG_GLOBAL_REQUEST (just reply with failure); ok djm@
 2002-01-22 23:21:58 +11:00
Damien Miller 056cf73d35 - markus@cvs.openbsd.org 2002/01/10 11:13:29 
[serverloop.c]
     skip client_alive_check until there are channels; ok beck@
 2002-01-22 23:21:39 +11:00
Damien Miller 76765c0b1a - markus@cvs.openbsd.org 2002/01/09 17:26:35 
[channels.c nchan.c]
     replace buffer_consume(b, buffer_len(b)) with buffer_clear(b); ok provos@
 2002-01-22 23:21:15 +11:00
Damien Miller de6987c2b9 - markus@cvs.openbsd.org 2002/01/09 17:16:00 
[channels.c]
     merge channel_pre_open_15/channel_pre_open_20; ok provos@
 2002-01-22 23:20:40 +11:00
Damien Miller a1db12bac4 - markus@cvs.openbsd.org 2002/01/09 13:49:27 
[ssh-keygen.c]
     append \n only for public keys
 2002-01-22 23:20:15 +11:00
Damien Miller 70972eb388 - stevesk@cvs.openbsd.org 2002/01/05 21:51:56 
[ssh.1 sshd.8]
     some missing and misplaced periods
 2002-01-22 23:19:55 +11:00
Damien Miller a90fc08b88 - markus@cvs.openbsd.org 2002/01/05 10:43:40 
[channels.c]
     fix hanging x11 channels for rejected cookies (e.g. XAUTHORITY=/dev/null xbiff)
     bug #36, based on patch from djast@cs.toronto.edu
 2002-01-22 23:19:38 +11:00
Damien Miller 7fc2373f17 - stevesk@cvs.openbsd.org 2002/01/04 18:14:16 
[servconf.c sshd.8]
     protocol 2 HostKey code default is now /etc/ssh_host_rsa_key and
     /etc/ssh_host_dsa_key like we have in sshd_config.  ok markus@
 2002-01-22 23:19:11 +11:00
Damien Miller f51b0e1a30 - stevesk@cvs.openbsd.org 2002/01/04 17:59:17 
[readconf.c servconf.c]
     remove #ifdef _PATH_XAUTH/#endif; ok markus@
 2002-01-22 23:18:49 +11:00
Damien Miller 56ccf41de2 - stevesk@cvs.openbsd.org 2002/01/03 04:11:08 
[ssh_config]
     grammar in comment
 2002-01-22 23:18:32 +11:00
Damien Miller 708d21c802 - stevesk@cvs.openbsd.org 2001/12/29 21:56:01 
[authfile.c channels.c compress.c packet.c sftp-server.c ssh-agent.c ssh-keygen.c]
     remove unneeded casts and some char->u_char cleanup; ok markus@
 2002-01-22 23:18:15 +11:00
Damien Miller dc9e067614 - stevesk@cvs.openbsd.org 2001/12/28 22:37:48 
[ssh.1 sshd.8]
     document LogLevel DEBUG[123]; ok markus@
 2002-01-22 23:17:51 +11:00
Damien Miller 630d6f4479 - markus@cvs.openbsd.org 2001/12/28 15:06:00 
[auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c dispatch.h kex.c kex.h serverloop.c ssh.c sshconnect2.c]
     remove plen from the dispatch fn. it's no longer used.
 2002-01-22 23:17:30 +11:00
Damien Miller dff5099f13 - markus@cvs.openbsd.org 2001/12/28 14:50:54 
[auth1.c auth-rsa.c channels.c dispatch.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
     packet_read* no longer return the packet length, since it's not used.
 2002-01-22 23:16:32 +11:00
Damien Miller 76e1e368b5 - markus@cvs.openbsd.org 2001/12/28 14:13:13 
[bufaux.c bufaux.h packet.c]
     buffer_get_bignum: int -> void
 2002-01-22 23:15:57 +11:00
Damien Miller d432ccf740 - markus@cvs.openbsd.org 2001/12/28 13:57:33 
[auth1.c kexdh.c kexgex.c packet.c packet.h sshconnect1.c sshd.c]
     packet_get_bignum* no longer returns a size
 2002-01-22 23:14:44 +11:00
Damien Miller 29f75f5c25 oops, that last commit was really: 
- markus@cvs.openbsd.org 2001/12/28 12:14:27
     [auth1.c auth2.c auth2-chall.c auth-rsa.c channels.c clientloop.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
     s/packet_done/packet_check_eom/ (end-of-message); ok djm@

with 47 more patchsets to go, I am not going to back out all the files for
the sake of a commit message...
 2002-01-22 23:14:10 +11:00
Damien Miller 48b03fc546 - markus@cvs.openbsd.org 2001/12/27 20:39:58 
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
     get rid of packet_integrity_check, use packet_done() instead.
 2002-01-22 23:11:40 +11:00
Damien Miller 66823cddbe - markus@cvs.openbsd.org 2001/12/27 20:39:58 
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
     get rid of packet_integrity_check, use packet_done() instead.
 2002-01-22 23:11:38 +11:00
Damien Miller d221ca6cc9 - markus@cvs.openbsd.org 2001/12/27 19:54:53 
[auth1.c auth.h auth-rh-rsa.c]
     auth_rhosts_rsa now accept generic keys.
 2002-01-22 23:11:00 +11:00
Damien Miller 9ef95ddcaf - markus@cvs.openbsd.org 2001/12/27 19:37:23 
[dh.c kexdh.c kexgex.c]
     always use BN_clear_free instead of BN_free
 2002-01-22 23:10:33 +11:00
Damien Miller 040b64f60a - markus@cvs.openbsd.org 2001/12/27 18:26:13 
[authfile.c]
     missing include
 2002-01-22 23:10:04 +11:00
Damien Miller 7d1ded4972 - stevesk@cvs.openbsd.org 2001/12/27 18:22:53 
[sshd.8]
     clarify -p; ok markus@
 2002-01-22 23:09:41 +11:00
Damien Miller da7551677b - markus@cvs.openbsd.org 2001/12/27 18:22:16 
[auth1.c authfile.c auth-rsa.c dh.c kexdh.c kexgex.c key.c rsa.c scard.c ssh-agent.c sshconnect1.c sshd.c ssh-dss.c]
     call fatal() for openssl allocation failures
 2002-01-22 23:09:22 +11:00
Damien Miller 154dda73a8 - markus@cvs.openbsd.org 2001/12/27 18:10:29 
[ssh-keygen.c]
     -t is only needed for key generation (unbreaks -i, -e, etc).
 2002-01-22 23:08:16 +11:00
Damien Miller aef7a095c8 - markus@cvs.openbsd.org 2001/12/25 18:53:00 
[auth1.c]
     be more carefull on allocation
 2002-01-22 23:07:52 +11:00
Damien Miller 503761ac45 - markus@cvs.openbsd.org 2001/12/25 18:49:56 
[key.c]
     be more careful on allocation
 2002-01-22 23:07:21 +11:00
Damien Miller a055c25d05 - deraadt@cvs.openbsd.org 2001/12/24 07:29:43 
[ssh-add.c]
     try all listed keys.. how did this get broken?

(oops - that was me)
 2002-01-22 23:07:01 +11:00
Damien Miller 7c31809c4a - markus@cvs.openbsd.org 2001/12/21 12:17:33 
[serverloop.c]
     remove ifdef for USE_PIPES since fdin != fdout; ok djm@
 2002-01-22 23:06:22 +11:00
Damien Miller 6e1057c2d7 - djm@cvs.openbsd.org 2001/12/21 10:06:43 
[ssh-add.1 ssh-add.c]
     Try all standard key files (id_rsa, id_dsa, identity) when invoked with
     no arguments; ok markus@
 2002-01-22 23:05:59 +11:00
Damien Miller f451e22e21 - djm@cvs.openbsd.org 2001/12/21 08:53:45 
[readpass.c]
     Avoid interruptable passphrase read; ok markus@
 2002-01-22 23:05:31 +11:00
Damien Miller a41c8b15bd - djm@cvs.openbsd.org 2001/12/21 08:52:22 
[ssh-keygen.1 ssh-keygen.c]
     Remove default (rsa1) key type; ok markus@
 2002-01-22 23:05:08 +11:00
Damien Miller ec932376b7 - (djm) autoconf hacking: 
- Add OpenSSL sanity check: verify that header version matches version
     reported by library
 2002-01-22 22:16:03 +11:00
Damien Miller c46cc5445d - (djm) Fix some bugs I introduced into ssh-rand-helper yesterday 2002-01-22 21:58:27 +11:00
Damien Miller 6c21c51c48 - (djm) autoconf hacking: 
- We don't support --without-zlib currently, so don't allow it.
   - Rework cryptographic random number support detection. We now detect
     whether OpenSSL seeds itself. If it does, then we don't bother with
     the ssh-rand-helper program. You can force the use of ssh-rand-helper
     using the --with-rand-helper configure argument
   - Simplify and clean up ssh-rand-helper configuration
 2002-01-22 21:57:53 +11:00
Damien Miller 7b10ef4877 - (djm) Rework ssh-rand-helper: 
- Reduce quantity of ifdef code, in preparation for ssh_rand_conf
   - Always seed from system calls, even when doing PRNGd seeding
   - Tidy and comment #define knobs
   - Remove unused facility for multiple runs through command list
   - KNF, cleanup, update copyright
 2002-01-21 23:44:12 +11:00
Damien Miller a234451a70 - (djm) Bug #50 - make autoconf entropy path checks more robust 2002-01-14 19:01:03 +11:00
Kevin Steves 2f8f6e3b1c - (stevesk) defines.h: use "/var/spool/sockets/X11/%u" for HP-UX. does 
not depend on transition links.  from Lutz Jaenicke.
 2002-01-08 21:59:06 +00:00
Damien Miller bb9ffc18ca - (djm) Merge Cygwin copy_environment with do_pam_environment, removing 
fixed env var size limit in the process. Report from Corinna Vinschen
   <vinschen@redhat.com>
 2002-01-08 10:59:32 +11:00
Kevin Steves f49a1191c7 - (stevesk) defines.h: determine _PATH_UNIX_X; currently "/tmp/.X11-unix/X%u" 
for all platforms except HP-UX, which is "/usr/spool/sockets/X11/%u".
 2002-01-06 02:32:57 +00:00
Kevin Steves 0bd4b34c9b - (stevesk) fix spurious ; from NCR change. 2002-01-05 23:24:27 +00:00
Ben Lindstrom 381d8d9d89 - (bal) NCR requies use_pipes to operate correctly. 2002-01-05 17:15:30 +00:00
Damien Miller f9661094e5 - (djm) Use bigcrypt() on systems with SCO_PROTECTED_PW. Patch from 
Roger Cornelius <rac@tenzing.org>
 2002-01-03 10:30:56 +11:00
Damien Miller b65a93d3a6 test openssh-commits list 2001-12-31 11:59:53 +11:00
Damien Miller bc5239bd62 testing again 2001-12-31 11:55:59 +11:00
Damien Miller 6a568f3ca9 - (djm) Typo in contrib/cygwin/README Fix from Corinna Vinschen 
<vinschen@redhat.com>
 2001-12-29 14:10:09 +11:00
Damien Miller 0dea79d6b6 - (djm) Apply Cygwin pointer deref fix from Corinna Vinschen 
<vinschen@redhat.com> Could be abused to guess valid usernames
 2001-12-29 14:08:28 +11:00
Damien Miller 6cb127fc14 - (djm) Remove recommendation to use GNU make, we should support most 
make programs.
 2001-12-28 09:57:33 +11:00
Kevin Steves 9443508b96 - (stevesk) [Makefile.in ssh-rand-helper.c] 
portable lib and __progname support for ssh-rand-helper; ok djm@
 2001-12-25 04:32:58 +00:00
Ben Lindstrom 2ad31ee68a - (bal) Removed contrib/chroot.diff and noted in contrib/README that it 
was not being maintained.
 2001-12-24 02:59:19 +00:00
Damien Miller 62116dcc0a - (djm) Ignore fix & patchlevel in OpenSSL version check. Patch from 
solar@openwall.com
 - (djm) Rework entropy code. If the OpenSSL PRNG is has not been
   internally seeded, execute a subprogram "ssh-rand-helper" to obtain
   some entropy for us. Rewrite the old in-process entropy collecter as
   an example ssh-rand-helper.
 - (djm) Always perform ssh_prng_cmds path lookups in configure, even if
   we don't end up using ssh_prng_cmds (so we always get a valid file)
 2001-12-24 01:41:47 +11:00
Damien Miller 278f907a2d - djm@cvs.openbsd.org 2001/12/20 22:50:24 
[auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c]
     [dispatch.h kex.c kex.h packet.c packet.h serverloop.c ssh.c]
     [sshconnect2.c]
     Conformance fix: we should send failing packet sequence number when
     responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by
     yakk@yakk.dot.net; ok markus@
 2001-12-21 15:00:19 +11:00
Damien Miller e737856350 - markus@cvs.openbsd.org 2001/12/20 16:37:29 
[channels.c channels.h session.c]
     setup x11 listen socket for just one connect if the client requests so.
     (v2 only, but the openssh client does not support this feature).
 2001-12-21 14:58:35 +11:00
Damien Miller 5a6b4fe225 - stevesk@cvs.openbsd.org 2001/12/19 17:16:13 
[authfile.c bufaux.c bufaux.h buffer.c buffer.h packet.c packet.h ssh.c]
     change the buffer/packet interface to use void* vs. char*; ok markus@
 2001-12-21 14:56:54 +11:00
Damien Miller f6681a3a96 - markus@cvs.openbsd.org 2001/12/19 16:09:39 
[serverloop.c]
     fix race between SIGCHLD and select with an additional pipe.  writing
     to the pipe on SIGCHLD wakes up select(). using pselect() is not
     portable and siglongjmp() ugly. W. R. Stevens suggests similar solution.
     initial idea by pmenage@ensim.com; ok deraadt@, djm@
 2001-12-21 14:53:11 +11:00
Damien Miller 9f0f5c64bc - deraadt@cvs.openbsd.org 2001/12/19 07:18:56 
[auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h]
     [auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c]
     [cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c]
     [match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c]
     [servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c]
     [sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c]
     [sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config]
     [ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c]
     basic KNF done while i was looking for something else
 2001-12-21 14:45:46 +11:00
Damien Miller 89681214ca - jakob@cvs.openbsd.org 2001/12/18 10:06:24 
[auth-rsa.c]
     log fingerprint on successful public key authentication, simplify usage of key structs; ok markus@
 2001-12-21 12:52:39 +11:00
Damien Miller da9edcabf8 - jakob@cvs.openbsd.org 2001/12/18 10:05:15 
[auth2.c]
     log fingerprint on successful public key authentication; ok markus@
 2001-12-21 12:48:54 +11:00
Damien Miller 5b2aea9494 - jakob@cvs.openbsd.org 2001/12/18 10:04:21 
[auth.h hostfile.c hostfile.h]
     remove auth_rsa_read_key, make hostfile_ready_key non static; ok markus@
 2001-12-21 12:47:09 +11:00
Damien Miller 83c02ef623 - markus@cvs.openbsd.org 2001/12/10 20:34:31 
[ssh-keyscan.c]
     check that server supports v1 for -t rsa1, report from wirth@dfki.de
 2001-12-21 12:45:43 +11:00
Damien Miller 72c336def6 - stevesk@cvs.openbsd.org 2001/12/10 16:45:04 
[sshd.c]
     possible fd leak on error; ok markus@
 2001-12-21 12:44:28 +11:00
Damien Miller ee11625d43 - markus@cvs.openbsd.org 2001/12/09 18:45:56 
[auth2.c auth2-chall.c auth.h]
     add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions,
     fixes memleak.
 2001-12-21 12:42:34 +11:00
Damien Miller 3afe375fd2 - stevesk@cvs.openbsd.org 2001/12/08 17:49:28 
[channels.c pathnames.h]
     use only one path to X11 UNIX domain socket vs. an array of paths
     to try.  report from djast@cs.toronto.edu.  ok markus@
 2001-12-21 12:39:51 +11:00
Damien Miller faf2f6483a - (djm) Add option to gnome-ssh-askpass to stop it from grabbing the X 
server. I have found this necessary to avoid server hangs with X input
   extensions (e.g. kinput2). Enable by setting the environment variable
   "GNOME_SSH_ASKPASS_NOGRAB"
 2001-12-21 10:28:07 +11:00
Kevin Steves 366298c696 - (stevesk) OpenBSD CVS sync X11 localhost display 
- stevesk@cvs.openbsd.org 2001/11/29 14:10:51
     [channels.h channels.c session.c]
     sshd X11 fake server will now listen on localhost by default:
     $ echo $DISPLAY
     localhost:12.0
     $ netstat -an|grep 6012
     tcp        0      0  127.0.0.1.6012         *.*                    LISTEN
     tcp6       0      0  ::1.6012               *.*                    LISTEN
     sshd_config gatewayports=yes can be used to revert back to the old
     behavior.  will control this with another option later.  ok markus@
   - stevesk@cvs.openbsd.org 2001/12/19 08:43:11
     [includes.h session.c]
     handle utsname.nodename case for FamilyLocal X authorization; ok markus@
 2001-12-19 17:58:01 +00:00
Ben Lindstrom 73f57be500 - stevesk@cvs.openbsd.org 2001/12/06 18:20:32 
[channels.c]
     disable nagle for X11 fake server and client TCPs.  from netbsd.
     ok markus@
 2001-12-07 17:28:34 +00:00
Ben Lindstrom ccd8d07b3c - stevesk@cvs.openbsd.org 2001/12/06 18:09:23 
[channels.c session.c]
     strncpy->strlcpy.  remaining strncpy's are necessary.  ok markus@
 2001-12-07 17:26:48 +00:00
Ben Lindstrom e181a4d294 - stevesk@cvs.openbsd.org 2001/12/06 18:02:32 
[channels.c sshconnect.c]
     shutdown(sock, SHUT_RDWR) not needed here; ok markus@
 2001-12-07 17:24:49 +00:00
Ben Lindstrom c97b1affc5 - (bal) PCRE no longer required. Banished from the source along with 
fake-regex.h
 2001-12-07 17:20:47 +00:00
Ben Lindstrom ade03f6bad - markus@cvs.openbsd.org 2001/12/06 13:30:06 
[servconf.c servconf.h sshd.8 sshd.c]
     add -o to sshd, too. ok deraadt@
 - (bal) Minor white space fix up in servconf.c
 2001-12-06 18:22:17 +00:00
Ben Lindstrom 9eab262f1c - markus@cvs.openbsd.org 2001/12/05 16:54:51 
[compat.c match.c match.h]
     make theo and djm happy: bye bye regexp
 2001-12-06 18:06:05 +00:00
Ben Lindstrom ff4a14f809 - markus@cvs.openbsd.org 2001/12/05 15:04:48 
[version.h]
     post 3.0.2
 2001-12-06 18:02:59 +00:00
Ben Lindstrom 1c37c6a518 - deraadt@cvs.openbsd.org 2001/12/05 10:06:12 
[authfd.c authfile.c bufaux.c channels.c compat.c kex.c kexgex.c
      key.c misc.c packet.c servconf.c ssh-agent.c sshconnect2.c
      sshconnect.c sshd.c ssh-dss.c ssh-keygen.c ssh-rsa.c]
     minor KNF
 2001-12-06 18:00:18 +00:00
Ben Lindstrom 3c36bb29ca - itojun@cvs.openbsd.org 2001/12/05 03:56:39 
[auth1.c auth2.c canohost.c channels.c deattack.c packet.c scp.c
      sshconnect2.c]
     make it compile with more strict prototype checking
 2001-12-06 17:55:26 +00:00
Ben Lindstrom f8f065bc75 - itojun@cvs.openbsd.org 2001/12/05 03:50:01 
[clientloop.c serverloop.c sshd.c]
     deal with LP64 printf issue with sig_atomic_t.  from thorpej
 2001-12-06 17:52:16 +00:00
Ben Lindstrom d05487d1db - deraadt@cvs.openbsd.org 2001/12/02 02:08:32 
[sftp-common.c]
     zap };
 2001-12-06 17:50:03 +00:00
Ben Lindstrom 38b951cdb2 - markus@cvs.openbsd.org 2001/12/01 21:41:48 
[session.c sshd.8]
     don't pass user defined variables to /usr/bin/login
 2001-12-06 17:47:47 +00:00
Ben Lindstrom 4a4bd719ea - stevesk@cvs.openbsd.org 2001/11/30 20:39:28 
[ssh.c]
     sscanf() length dependencies are clearer now; can also shrink proto
     and data if desired, but i have not done that.  ok markus@
 2001-12-06 17:45:19 +00:00
Ben Lindstrom 57fe5b592c - markus@cvs.openbsd.org 2001/11/29 22:08:48 
[auth-rsa.c]
     fix protocol error: send 'failed' message instead of a 2nd challenge
     (happens if the same key is in authorized_keys twice).
     reported Ralf_Meister@genua.de; ok djm@
 2001-12-06 17:41:25 +00:00
Ben Lindstrom 623e4a0b1a - stevesk@cvs.openbsd.org 2001/11/29 19:06:39 
[channels.h]
     remove dead function prototype; ok markus@
 2001-12-06 16:49:57 +00:00
Ben Lindstrom 5e71c54b8c - markus@cvs.openbsd.org 2001/11/22 12:34:22 
[clientloop.c serverloop.c sshd.c]
     volatile sig_atomic_t
 2001-12-06 16:48:14 +00:00
Ben Lindstrom 28c603bf43 - stevesk@cvs.openbsd.org 2001/11/22 05:27:29 
[ssh-keyscan.c]
     don't use "\n" in fatal()
 2001-12-06 16:45:10 +00:00
Ben Lindstrom 4e366d5048 - stevesk@cvs.openbsd.org 2001/11/21 18:49:14 
[ssh-keygen.1]
     more on passphrase construction; ok markus@
 2001-12-06 16:43:21 +00:00
Ben Lindstrom 4cbc181983 - markus@cvs.openbsd.org 2001/11/21 15:51:24 
[key.c]
     mem leak
 2001-12-06 16:41:41 +00:00