Darren Tucker
9fbac71905
- dtucker@cvs.openbsd.org 2004/08/11 11:09:54
...
[servconf.c]
Fix minor leak; "looks right" deraadt@
2004-08-12 22:41:44 +10:00
Darren Tucker
9a2bd1116b
- djm@cvs.openbsd.org 2004/08/04 10:37:52
...
[dh.c]
return group14 when no primes found - fixes hang on empty /etc/moduli;
ok markus@
2004-08-12 22:40:59 +10:00
Darren Tucker
5cb30ad2ec
- markus@cvs.openbsd.org 2004/07/28 09:40:29
...
[auth.c auth1.c auth2.c cipher.c cipher.h key.c session.c ssh.c
sshconnect1.c]
more s/illegal/invalid/
2004-08-12 22:40:24 +10:00
Darren Tucker
6832b83744
- markus@cvs.openbsd.org 2004/07/28 08:56:22
...
[sshd.c]
call setsid() _before_ re-exec
2004-08-12 22:36:51 +10:00
Darren Tucker
8ae66a5032
- (dtucker) [sshd.c] Remove duplicate variable imported during sync.
2004-08-12 22:16:55 +10:00
Damien Miller
0670c7396f
- djm@cvs.openbsd.org 2004/07/21 11:51:29
...
[canohost.c]
bz#902: cache remote port so we don't fatal() in auth_log when remote
connection goes away quickly. from peak AT argo.troja.mff.cuni.cz;
ok markus@
2004-07-21 21:53:34 +10:00
Damien Miller
2d2ed3d633
- (djm) [auth-pam.c] Portable parts of bz#899: Don't display invalid
...
usernames in setproctitle from peak AT argo.troja.mff.cuni.cz;
2004-07-21 20:54:47 +10:00
Damien Miller
10a445b9e5
- djm@cvs.openbsd.org 2004/07/21 10:36:23
...
[gss-serv-krb5.c]
fix function declaration
2004-07-21 20:49:39 +10:00
Damien Miller
30d1f84911
- djm@cvs.openbsd.org 2004/07/21 10:33:31
...
[auth1.c auth2.c]
bz#899: Don't display invalid usernames in setproctitle
2004-07-21 20:48:53 +10:00
Damien Miller
a22f2d761b
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/07/21 08:56:12
[auth.c]
s/Illegal user/Invalid user/; many requests; ok djm, millert, niklas,
miod, ...
2004-07-21 20:48:24 +10:00
Damien Miller
b5a21440a8
- (djm) [regress/README.regress] Remove caveat regarding TCP wrappers, now
...
that sshd is fixed to behave better; suggested by tim
2004-07-21 20:44:05 +10:00
Damien Miller
8fe0105be4
- (djm) [contrib/redhat/sshd.pam] bz #903 : Remove redundant entries; from
...
peak AT argo.troja.mff.cuni.cz
2004-07-21 11:01:41 +10:00
Damien Miller
23a7027e48
- (djm) [log.c] bz #111 : Escape more control characters when sending data
...
to syslog; from peak AT argo.troja.mff.cuni.cz
2004-07-21 10:52:13 +10:00
Tim Rice
816bd0d087
- (tim) [configure.ac] updwtmpx() on OpenServer seems to add duplicate entry.
...
Report by rac AT tenzing.org
2004-07-19 10:19:26 -07:00
Damien Miller
a6fb77fd6c
- (djm) [auth-pam.c] Avoid use of xstrdup and friends in conversation function,
...
instead return PAM_CONV_ERR, avoiding another path to fatal(); ok dtucker@
2004-07-19 09:39:11 +10:00
Damien Miller
65df174574
- (djm) [openbsd-compat/bsd-arc4random.c] Discard early keystream, like OpenBSD
...
ok dtucker@
2004-07-19 09:30:38 +10:00
Darren Tucker
0999174755
- dtucker@cvs.openbsd.org 2004/07/17 05:31:41
...
[monitor.c monitor_wrap.c session.c session.h sshd.c sshlogin.c]
Move "Last logged in at.." message generation to the monitor, right
before recording the new login. Fixes missing lastlog message when
/var/log/lastlog is not world-readable and incorrect datestamp when
multiple sessions are used (bz #463 ); much assistance & ok markus@
2004-07-17 17:05:14 +10:00
Darren Tucker
3ca4508201
- brad@cvs.openbsd.org 2004/07/12 23:34:25
...
[ssh-keyscan.1]
Fix incorrect macro, .I -> .Em
From: Eric S. Raymond <esr at thyrsus dot com>
ok jmc@
2004-07-17 16:13:15 +10:00
Darren Tucker
fc9597034b
- deraadt@cvs.openbsd.org 2004/07/11 17:48:47
...
[channels.c cipher.c clientloop.c clientloop.h compat.h moduli.c
readconf.c nchan.c pathnames.h progressmeter.c readconf.h servconf.c
session.c sftp-client.c sftp.c ssh-agent.1 ssh-keygen.c ssh.c ssh1.h
sshd.c ttymodes.h]
spaces
2004-07-17 16:12:08 +10:00
Darren Tucker
ba6de952a0
- (dtucker) [logintest.c scp.c sftp-server.c sftp.c ssh-add.c ssh-agent.c
...
ssh-keygen.c ssh-keyscan.c ssh-keysign.c ssh-rand-helper.c ssh.c sshd.c
openbsd-compat/bsd-misc.c] Move "char *__progname" to bsd-misc.c. Reduces
diff vs OpenBSD; ok mouring@, tested by tim@ too.
2004-07-17 14:07:42 +10:00
Darren Tucker
5d423f4ece
- (dtucker) [auth-pam.c] Check for zero from waitpid() too, which allows
...
the monitor to properly clean up the PAM thread (Debian bug #252676 ).
2004-07-11 16:54:08 +10:00
Tim Rice
3b376f08fb
- (tim) [contrib/cygwin/README] add minires-devel requirement. Patch from
...
vinschen AT redhat.com
2004-07-09 10:45:26 -07:00
Darren Tucker
e1f17055ed
- dtucker@cvs.openbsd.org 2004/07/08 12:47:21
...
[scp.c]
Prevent scp from skipping the file following a double-error.
bz #863 , ok markus@
2004-07-08 23:11:44 +10:00
Darren Tucker
042e2e8cbb
- dtucker@cvs.openbsd.org 2004/07/03 11:02:25
...
[monitor_wrap.c]
Put s/key functions inside #ifdef SKEY same as monitor.c,
from des@freebsd via bz #330 , ok markus@
2004-07-08 23:09:42 +10:00
Darren Tucker
cd99fa0648
- dtucker@cvs.openbsd.org 2004/07/03 05:11:33
...
[sshlogin.c] (RCSID sync only, the corresponding code is not in Portable)
Use '\0' not 0 for string; ok djm@, deraadt@
2004-07-08 23:08:26 +10:00
Darren Tucker
d062da53c7
- (dtucker) [mdoc2man.awk] Teach it to ignore .Bk -words, reported by
...
strube at physik3.gwdg.de a long time ago.
2004-07-02 18:43:09 +10:00
Tim Rice
a5757f0f28
- (tim) [buildpkg.sh.in] Add $REV to bump the package revision within
...
the same version. Handle the case where someone uses --with-privsep-user=
and the user name does not match the group name. ok dtucker@
2004-07-01 20:41:15 -07:00
Darren Tucker
1f7e40864f
- (dtucker) [auth-pam.c] Bug #559 (last piece): Pass DISALLOW_NULL_AUTHTOK
...
to pam_authenticate for challenge-response auth too. Originally from
fcusack at fcusack.com, ok djm@
2004-07-01 14:00:14 +10:00
Darren Tucker
e2ba9c2e83
- (dtucker) [auth-pam.c] Bug #705 : Make arguments match PAM specs, fixes
...
warnings on compliant platforms. From paul.a.bolton at bt.com. ok djm@
2004-07-01 12:38:14 +10:00
Darren Tucker
0a44d1ecf3
- (dtucker) [session.c] Call display_loginmsg again after do_pam_session.
...
Ensures messages from PAM modules are displayed when privsep=no.
Note: I did not want to just move display_loginmsg since that would change
existing behaviour (order of expiry warnings, "Last Login", motd) to less
like the native tools.
2004-07-01 09:48:29 +10:00
Damien Miller
a6b1d169e6
- djm@cvs.openbsd.org 2004/06/30 08:36:59
...
[session.c]
unbreak TTY break, diagnosed by darren AT dazwin.com; ok markus@
2004-06-30 22:41:07 +10:00
Damien Miller
386c6a2c70
- avsm@cvs.openbsd.org 2004/06/26 20:07:16
...
[sshd.c]
initialise some fd variables to -1, djm@ ok
2004-06-30 22:40:20 +10:00
Damien Miller
26213e556b
- jmc@cvs.openbsd.org 2004/06/26 09:14:40
...
[sshd_config.5]
new sentence, new line;
2004-06-30 22:39:34 +10:00
Damien Miller
2234bac999
- jmc@cvs.openbsd.org 2004/06/26 09:11:14
...
[ssh_config.5]
punctuation and grammar fixes. also, keep the options in order.
2004-06-30 22:38:52 +10:00
Damien Miller
5d1ecebcb5
- OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2004/06/26 09:03:21
[ssh.1]
- remove double word
- rearrange .Bk to keep SYNOPSIS nice
- -M before -m in options description
2004-06-30 22:37:57 +10:00
Darren Tucker
59e06026d7
- (dtucker) [auth-pam.c] Check for buggy PAM modules that return a NULL
...
appdata_ptr to the conversation function. ok djm@
By rights we should free the messages too, but if this happens then one
of the modules has already proven itself to be buggy so can we trust
the messages?
2004-06-30 20:34:31 +10:00
Darren Tucker
5288cb242a
- (dtucker) [openbsd-compat/port-aix.c] Missing __func__.
2004-06-28 18:11:19 +10:00
Darren Tucker
e59b508798
- (dtucker) [acconfig.h configure.ac sftp-server.c] Bug #823 : add sftp
...
rename handling for Linux which returns EPERM for link() on (at least some)
filesystems that do not support hard links. sftp-server will fall back to
stat+rename() in such cases.
2004-06-28 16:01:19 +10:00
Darren Tucker
f9eb2b0135
- (dtucker) [regress/README.regress] Document new variables.
2004-06-28 15:52:50 +10:00
Darren Tucker
58cef1f0bb
- (dtucker) [mdoc2man.awk] Bug #883 : correctly recognise .Pa and .Ev macros.
2004-06-28 15:45:08 +10:00
Tim Rice
5287902643
Minor updates to some README files.
2004-06-27 20:50:35 -07:00
Damien Miller
96d6d7d9a0
- djm@cvs.openbsd.org 2004/06/25 23:21:38
...
[sftp.c]
bz #875 : fix bad escape char error message; reported by f_mohr AT yahoo.de
2004-06-26 09:21:06 +10:00
Damien Miller
035a5b47cc
- OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2004/06/25 18:43:36
[sshd.c]
fix broken fd handling in the re-exec fallback path, particularly when
/dev/crypto is in use; ok deraadt@ markus@
2004-06-26 08:16:31 +10:00
Darren Tucker
aedc1d6a3e
- dtucker@cvs.openbsd.org 2004/06/25 05:38:48
...
[sftp-server.c]
Fall back to stat+rename if filesystem doesn't doesn't support hard
links. bz#823, ok djm@
2004-06-25 17:06:02 +10:00
Darren Tucker
17c5d03ad3
- (dtucker) [sshd.c] add line missing from reexec sync.
2004-06-25 14:22:23 +10:00
Darren Tucker
60bd4098f6
- (dtucker) [configure.ac openbsd-compat/misc.c [openbsd-compat/misc.h]
...
Add closefrom() for platforms that don't have it.
(might need some tuning later, but I want to be able to test reexec).
2004-06-25 14:03:34 +10:00
Darren Tucker
ef3b47a73a
- djm@cvs.openbsd.org 2004/06/25 01:25:12
...
[regress/test-exec.sh]
clean reexec-specific junk out of text-exec.sh and simplify; idea markus@
2004-06-25 13:46:08 +10:00
Darren Tucker
977a9d21c8
- djm@cvs.openbsd.org 2004/06/24 19:32:00
...
[regress/Makefile regress/test-exec.sh, added regress/reexec.sh]
regress test for re-exec corner cases
2004-06-25 13:45:18 +10:00
Darren Tucker
586b0b98bf
- djm@cvs.openbsd.org 2004/06/25 01:16:09
...
[sshd.c]
only perform tcp wrappers checks when the incoming connection is on a
socket. silences useless warnings from regress tests that use
proxycommand="sshd -i". prompted by david@ ok markus@
2004-06-25 13:34:31 +10:00
Darren Tucker
645ab757bd
- djm@cvs.openbsd.org 2004/06/24 19:30:54
...
[servconf.c servconf.h sshd.c]
re-exec sshd on accept(); initial work, final debugging and ok markus@
2004-06-25 13:33:20 +10:00