b253cc4213
- avsm@cvs.openbsd.org 2005/05/24 17:32:44
...
[atomicio.c atomicio.h authfd.c monitor_wrap.c msg.c scp.c sftp-client.c]
[ssh-keyscan.c sshconnect.c]
Switch atomicio to use a simpler interface; it now returns a size_t
(containing number of bytes read/written), and indicates error by
returning 0. EOF is signalled by errno==EPIPE.
Typical use now becomes:
if (atomicio(read, ..., len) != len)
err(1,"read");
ok deraadt@, cloder@, djm@
2005-05-26 12:23:44 +10:00
02e754f1f0
- avsm@cvs.openbsd.org 2005/05/24 02:05:09
...
[ssh-keygen.c]
some style nits from dmiller@, and use a fatal() instead of a printf()/exit
2005-05-26 12:19:39 +10:00
3710f278ae
- djm@cvs.openbsd.org 2005/05/23 23:32:46
...
[cipher.c myproposal.h ssh.1 ssh_config.5 sshd_config.5]
add support for draft-harris-ssh-arcfour-fixes-02 improved arcfour modes;
ok markus@
2005-05-26 12:19:17 +10:00
b089fb5fe1
- avsm@cvs.openbsd.org 2005/05/23 22:44:01
...
[moduli.c ssh-keygen.c]
- removes signed/unsigned comparisons in moduli generation
- use strtonum instead of atoi where its easier
- check some strlcpy overflow and fatal instead of truncate
2005-05-26 12:16:18 +10:00
dfec2941ac
- jmc@cvs.openbsd.org 2005/05/20 11:23:32
...
[ssh_config.5]
oops - article and spacing;
2005-05-26 12:14:32 +10:00
ebcfedce85
- djm@cvs.openbsd.org 2005/05/20 10:50:55
...
[ssh_config.5]
give a ProxyCommand example using nc(1), with and ok jmc@
2005-05-26 12:13:56 +10:00
459735a0c6
- djm@cvs.openbsd.org 2005/05/19 02:42:26
...
[includes.h]
fix cast, from grunk AT pestilenz.org
2005-05-26 12:13:42 +10:00
06b75ad56b
- djm@cvs.openbsd.org 2005/05/19 02:40:52
...
[sshd_config]
whitespace nit, from grunk AT pestilenz.org
2005-05-26 12:12:37 +10:00
1594ad5a78
- djm@cvs.openbsd.org 2005/05/19 02:39:55
...
[sshd_config.5]
sort config options, from grunk AT pestilenz.org; ok jmc@
2005-05-26 12:12:19 +10:00
17b23d8657
- markus@cvs.openbsd.org 2005/05/16 15:30:51
...
[readconf.c servconf.c]
check return value from strdelim() for NULL (AddressFamily); mpech
2005-05-26 12:11:56 +10:00
538c9b71ec
- djm@cvs.openbsd.org 2005/05/10 10:30:43
...
[ssh.c]
report real errors on fallback from ControlMaster=no to normal connect
2005-05-26 12:11:28 +10:00
924c25a64e
- djm@cvs.openbsd.org 2005/05/10 10:28:11
...
[ssh.c]
print nice error message for EADDRINUSE as well (ID sync only)
2005-05-26 12:09:32 +10:00
d2ebd450f0
- markus@cvs.openbsd.org 2005/05/02 21:13:22
...
[readpass.c]
missing {}
2005-05-26 12:07:47 +10:00
41bfc29ea5
- moritz@cvs.openbsd.org 2005/04/28 10:17:56
...
[progressmeter.c ssh-keyscan.c]
add snprintf checks. ok djm@ markus@
2005-05-26 12:07:32 +10:00
dadfd4dd38
- jakob@cvs.openbsd.org 2005/04/26 13:08:37
...
[ssh.c ssh_config.5]
fallback gracefully if client cannot connect to ControlPath. ok djm@
2005-05-26 12:07:13 +10:00
ac7a0059e2
- jmc@cvs.openbsd.org 2005/04/26 12:59:02
...
[sftp-client.h]
spelling correction in comment from wiz@netbsd;
2005-05-26 12:05:49 +10:00
ddeb75294b
- dtucker@cvs.openbsd.org 2005/04/23 23:43:47
...
[readpass.c]
Add debug message if read_passphrase can't open /dev/tty; bz #471 ;
ok djm@
2005-05-26 12:05:28 +10:00
ddee575b98
- djm@cvs.openbsd.org 2005/04/21 11:47:19
...
[ssh.c]
don't allocate a pty when -n flag (/dev/null stdin) is set, patch from
ignasi.roca AT fujitsu-siemens.com (bz #829 ); ok dtucker@
2005-05-26 12:05:05 +10:00
167ea5d026
- djm@cvs.openbsd.org 2005/04/21 06:17:50
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8]
[sshd_config.5] OpenSSH doesn't ever look at the $HOME environment
variable, so don't say that we do (bz #623 ); ok deraadt@
2005-05-26 12:04:02 +10:00
a31c929f36
- jakob@cvs.openbsd.org 2005/04/20 10:05:45
...
[dns.c]
do not try to look up SSHFP for numerical hostname. ok djm@
2005-05-26 12:03:31 +10:00
3dc967e17b
- jmc@cvs.openbsd.org 2005/04/14 12:30:30
...
[ssh.1]
arg to -b is an address, not if_name;
ok markus@
2005-05-26 12:03:15 +10:00
5fd38c0ed9
- djm@cvs.openbsd.org 2005/04/09 04:32:54
...
[misc.c misc.h tildexpand.c Makefile.in]
replace tilde_expand_filename with a simpler implementation, ahead of
more whacking; ok deraadt@
2005-05-26 12:02:14 +10:00
1b0de9a041
- dtucker@cvs.openbsd.org 2005/04/06 12:26:06
...
[ssh.c]
Fix debug call for port forwards; patch from pete at seebeyond.com,
ok djm@ (ID sync only - change already in portable)
2005-05-26 12:01:22 +10:00
4f1d6b2c11
- djm@cvs.openbsd.org 2005/04/06 09:43:59
...
[sshd.c]
avoid harmless logspam by not performing setsockopt() on non-socket;
ok markus@
2005-05-26 11:59:32 +10:00
9278ffaf71
- (djm) OpenBSD CVS Sync
...
- otto@cvs.openbsd.org 2005/04/05 13:45:31
[ssh-keygen.c]
2005-05-26 11:59:06 +10:00
2c04deb888
- (djm) [mpaux.c mpaux.h Makefile.in] Remove old mpaux.[ch] code, it has not
...
been used for a while
2005-05-26 11:35:37 +10:00
6b6d5be591
- Release 4.1p1
2005-05-26 11:34:36 +10:00
ae8c91ec07
- (dtucker) [openbsd-compat/bsd-cygwin_util.c] Ensure sufficient memory
...
allocation when retrieving core Windows environment. Add CYGWIN variable
to propagated variables. Patch from vinschen at redhat.com, ok djm@
2005-05-25 19:42:10 +10:00
328118aa79
- (dtucker) [auth-pam.c] Since people don't seem to be getting the message
...
that USE_POSIX_THREADS is unsupported, not recommended and generally a bad
idea, it is now known as UNSUPPORTED_POSIX_THREADS_HACK. Attempting to use
USE_POSIX_THREADS will now generate an error so we don't silently change
behaviour. ok djm@
2005-05-25 16:18:09 +10:00
4d8f560c39
- (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
...
[contrib/suse/openssh.spec] Update spec file versions to 4.1p1
2005-05-25 14:43:47 +10:00
df548bc310
- (djm) [openbsd-compat/readpassphrase.c] bz #950 : Retry tcsetattr to ensure
...
terminal modes are reset correctly. Fix from peak AT argo.troja.mff.cuni.cz;
"looks ok" dtucker@
2005-05-24 15:54:27 +10:00
b58bd0327e
20050512
...
- (tim) [buildpkg.sh.in] missing ${PKG_INSTALL_ROOT} in init script
hard link section. Bug 1038.
2005-05-12 10:32:19 -07:00
fa2211d93d
- (dtucker) [contrib/cygwin/ssh-host-config] Add a test and warning for a
...
user-mode mounts in Cygwin installation. Patch from vinschen at redhat.com.
2005-05-09 23:48:17 +10:00
4f10e25684
- (djm) [ssh.c] some systems return EADDRINUSE on a bind to an already-used
...
unix domain socket, so catch that too; from jakob@ ok dtucker@
2005-05-04 15:33:09 +10:00
5b115d4401
- (dtucker) [canohost.c] normalise socket addresses returned by
...
get_remote_hostname(). This means that IPv4 addresses in log messages
on IPv6 enabled machines will no longer be prefixed by "::ffff:" and
AllowUsers, DenyUsers, AllowGroups, DenyGroups will match IPv4-style
addresses only for 4-in-6 mapped connections, regardless of whether
or not the machine is IPv6 enabled. ok djm@
2005-05-03 19:05:32 +10:00
149da8577e
typo
2005-04-25 17:03:29 +10:00
af342556b9
- (dtucker) [regress/multiplex.sh] Put control socket in /tmp so running
...
"make tests" works even if you'r building on a filesystem that doesn't
support sockets. From deengert at anl.gov, ok djm@
2005-04-25 17:01:26 +10:00
bf2b398327
- (dtucker) [regress/multiplex.sh] Remove cleanup call since test-exec.sh
...
will clean up anyway. From tim@
2005-04-25 14:49:48 +10:00
faefd2e73d
- (dtucker) [regress/multiplex.sh] Use "kill -0 $pid" to check for the
...
existence of a process since it's more portable. Found by jbasney at
ncsa.uiuc.edu; ok tim@
2005-04-25 14:48:22 +10:00
2f0b5c4869
- (dtucker) [INSTALL configure.ac] Make zlib version check test for 1.1.4 or
...
1.2.1.2 or higher. With tim@, ok djm@
2005-04-24 17:52:22 +10:00
4149ebc0db
- (tim) [config.guess] Add support for OpenServer 6.
2005-04-23 18:17:29 -07:00
48554152b9
- (dtucker) [session.c] Bug #1024 : Don't check pam_session_is_open if
...
UseLogin is set as PAM is not used to establish credentials in that
case. Found by Michael Selvesteen, ok djm@
2005-04-21 19:50:55 +10:00
8d158c9937
- (dtucker) [INSTALL] Fix s/key text too.
2005-04-19 15:40:51 +10:00
ad1e5e286c
- (dtucker) [INSTALL] Put the s/key text and URL back together.
2005-04-19 15:31:49 +10:00
d9c88138f7
- (dtucker) [INSTALL] Reference README.privsep for the privilege separation
...
requirements. Pointed out by Bengt Svensson.
2005-04-19 12:21:21 +10:00
2f97b8b088
- (tim) [configure.ac] UnixWare needs PASSWD_NEEDS_USERNAME
2005-04-11 19:00:18 -07:00
0f5eeff23d
- (dtucker) [auth-passwd.c auth-sia.h] Remove duplicate definitions of
...
sys_auth_passwd, pointed out by cmadams at hiwaay.net.
2005-04-05 21:00:47 +10:00
00cadb8c35
- (dtucker) [auth-sia.c] Constify sys_auth_passwd, fixes build error on
...
Tru64. Patch from cmadams at hiwaay.net.
2005-04-05 20:58:37 +10:00
9d2562cf20
- (dtucker) [configure.ac] Define HAVE_SO_PEERCRED if we have it. ok djm@
2005-04-05 19:22:45 +10:00
69152291e7
- (dtucker) [monitor.c] Don't free buffers in audit functions, monitor_read
...
will free as needed. ok tim@ djm@
2005-04-03 12:44:23 +10:00
4942de5719
- djm@cvs.openbsd.org 2005/04/02 12:41:16
...
[scp.c]
since ssh has xstrdup, use it instead of strdup+test. unbreaks -Werror
build
2005-04-03 10:16:39 +10:00
3dae15c611
- deraadt@cvs.openbsd.org 2005/03/31 18:39:21
...
[scp.c]
copy argv[] element instead of smashing the one that ps will see; ok otto
2005-04-03 10:16:11 +10:00
de0de39082
- (dtucker) [monitor.c] Remaining part of fix for bug #1006 .
2005-03-31 23:52:04 +10:00
73ba43798a
- (dtucker) [ssh.c] Prevent null pointer deref in port forwarding debug
...
message on some platforms. Patch from pete at seebeyond.com via djm.
2005-03-31 21:51:54 +10:00
f3bb434177
- (dtucker) [auth.h sshd.c openbsd-compat/port-aix.c] Bug #1006 : fix bug in
...
handling of password expiry messages returned by AIX's authentication
routines, originally reported by robvdwal at sara.nl.
2005-03-31 21:39:25 +10:00
83d5a9866d
- jmc@cvs.openbsd.org 2005/03/18 17:05:00
...
[sshd_config.5]
typo;
2005-03-31 21:33:50 +10:00
1f04ca240d
- markus@cvs.openbsd.org 2005/03/16 21:17:39
...
[version.h]
4.1
2005-03-31 21:31:54 +10:00
5ede2ad8a7
- jmc@cvs.openbsd.org 2005/03/16 11:10:38
...
[ssh_config.5]
get the syntax right for {Local,Remote}Forward;
based on a diff from markus;
problem report from ponraj;
ok dtucker@ markus@ deraadt@
2005-03-31 21:31:10 +10:00
6e1defdc5a
- (dtucker) [contrib/aix/buildbff.sh] Bug #1005 : Look up only the user we're
...
interested in which is much faster in large (eg LDAP or NIS) environments.
Patch from dleonard at vintela.com.
2005-03-29 23:24:12 +10:00
e66519d942
- (dtucker) [configure.ac openbsd-compat/port-aix.h] Prevent redefinitions
...
of setauthdb on AIX 5.3, reported by anders.liljegren at its.uu.se.
2005-03-21 22:46:34 +11:00
1df61452ea
- (dtucker) [configure.ac] Make configure error out if the user specifies
...
--with-libedit but the required libs can't be found, rather than silently
ignoring and continuing. ok tim@
2005-03-21 09:58:07 +11:00
86a5f8dd0a
- (dtucker) [configure.ac] Prevent configure --with-zlib from adding -Iyes
...
and -Lyes to CFLAGS and LIBS. Pointed out by peter at slagheap.net,
with & ok tim@
2005-03-21 09:55:17 +11:00
eae17cc80e
- (tim) [configure.ac] remove trailing white space.
2005-03-17 16:52:20 -08:00
35cc69dcb4
- (tim) [configure.ac] make some configure options a little more error proof.
2005-03-17 16:44:25 -08:00
8bb561b500
- (tim) [configure.ac] portability changes on test statements. Some shells
...
have problems with -a operator.
2005-03-17 16:23:19 -08:00
12ee8e241e
- (tim) [configure.ac] Bug 998. Make path for --with-opensc optional.
...
Make --without-opensc work.
2005-03-17 13:37:04 -08:00
c3939e22fd
- (tim) [contrib/caldera/openssh.spec] links in rc?.d were getting trashed
...
with a rpm -F
2005-03-14 17:24:51 -08:00
c53c3a423c
credit patch author
2005-03-14 23:24:43 +11:00
11327cc5d7
- markus@cvs.openbsd.org 2005/03/14 11:46:56
...
[buffer.c buffer.h channels.c]
limit input buffer size for channels; bugzilla #896 ; with and ok dtucker@
2005-03-14 23:22:25 +11:00
a8f553df53
- dtucker@cvs.openbsd.org 2005/03/14 11:44:42
...
[auth.c]
Populate host for log message for logins denied by AllowUsers and
DenyUsers (bz #999 ); ok markus@
2005-03-14 23:17:27 +11:00
da1adbc2cc
- dtucker@cvs.openbsd.org 2005/03/14 10:09:03
...
[ssh-keygen.1]
Correct description of -H (bz #997 ); ok markus@, punctuation jmc@
2005-03-14 23:15:58 +11:00
1adc2bd8d7
- jmc@cvs.openbsd.org 2005/03/12 11:55:03
...
[ssh_config.5]
escape `.' at eol to avoid double spacing issues;
2005-03-14 23:14:20 +11:00
9f438a9d63
- markus@cvs.openbsd.org 2005/03/11 14:59:06
...
[ssh-keygen.c]
typo, missing \n; mpech
2005-03-14 23:09:18 +11:00
90b9e02230
- deraadt@cvs.openbsd.org 2005/03/10 22:40:38
...
[auth-options.c]
spacing
2005-03-14 23:08:50 +11:00
47eede77ed
- deraadt@cvs.openbsd.org 2005/03/10 22:01:05
...
[misc.c ssh-keygen.c servconf.c clientloop.c auth-options.c ssh-add.c
monitor.c sftp-client.c bufaux.h hostfile.c ssh.c sshconnect.c channels.c
readconf.c bufaux.c sftp.c]
spacing
2005-03-14 23:08:12 +11:00
f899e6a526
20050312
...
- (dtucker) [regress/test-exec.sh] DEBUG can cause problems where debug
output ends up in the client's output, causing regress failures. Found
by Corinna Vinschen.
(got 4.0 branch and HEAD slightly askew, this is to resync)
2005-03-14 23:02:46 +11:00
1d55ca748d
- dtucker@cvs.openbsd.org 2005/03/10 10:15:02
...
[readconf.c]
Check listen addresses for null, prevents xfree from dying during
ClearAllForwardings (bz #996 ). From Craig Leres, ok markus@
2005-03-14 22:58:40 +11:00
a21380b70e
- (dtucker) [contrib/cygwin/ssh-host-config] Makes the query for the
...
localized name of the local administrators group more reliable. From
vinschen at redhat.com.
2005-03-13 21:20:18 +11:00
835903da7b
- (djm) [log.c] Fix dumb syntax error; ok dtucker@
...
(pulled from 4.0 branch).
2005-03-09 20:12:47 +11:00
aa1dba62b0
- (djm) Release OpenSSH 4.0p1
2005-03-09 11:03:08 +11:00
6f632bf2aa
- (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]
...
[contrib/suse/openssh.spec] Update spec file versions
2005-03-09 11:02:41 +11:00
aca8626cf7
- djm@cvs.openbsd.org 2005/03/08 23:49:48
...
[version.h]
OpenSSH 4.0
2005-03-09 11:00:42 +11:00
b096ac4674
- jmc@cvs.openbsd.org 2005/03/07 23:41:54
...
[ssh.1 ssh_config.5]
more macro simplification;
2005-03-09 11:00:05 +11:00
50c7db92d6
- (dtucker) [regress/test-exec.sh] Set BIN_SH=xpg4 on OSF1/Digital Unix/Tru64
...
so that regress tests behave. From Chris Adams.
2005-03-09 10:02:55 +11:00
c390c8dc68
- (tim) [configure.ac] SCO 3.2v4.2 no longer supported. This platform is
...
too old and too broken.
2005-03-07 01:21:37 -08:00
4b9ac3319e
- (dtucker) [regress/test-exec.sh] Put SUDO in the right place.
2005-03-07 19:15:06 +11:00
5d909f0773
- djm@cvs.openbsd.org 2005/03/04 08:48:46
...
[Makefile envpass.sh]
regress test for SendEnv config parsing bug; ok dtucker@
2005-03-07 18:35:34 +11:00
894823ec69
- djm@cvs.openbsd.org 2005/02/27 23:13:36
...
[login-timeout.sh]
avoid nameservice lookups in regress test; ok dtucker@
2005-03-07 18:34:04 +11:00
a0f3ba71a0
- dtucker@cvs.openbsd.org 2005/02/27 11:33:30
...
[multiplex.sh test-exec.sh sshd-log-wrapper.sh]
Add optional capability to log output from regress commands; ok markus@
Use with: make TEST_SSH_LOGFILE=/tmp/regress.log
2005-03-07 18:33:02 +11:00
b712fccc18
- david@cvs.openbsd.org 2005/01/14 04:21:18
...
[Makefile test-exec.sh]
pass the SUDO make variable to the individual sh tests; ok dtucker@ markus@
2005-03-07 18:27:28 +11:00
68f7213a2c
- fgsch@cvs.openbsd.org 2004/12/10 01:31:30
...
[Makefile sftp-glob.sh]
some globbing regress; prompted and ok djm@
2005-03-07 18:25:53 +11:00
1c56ef6ac3
- (dtucker) OpenBSD CVS Sync (regress/)
...
- fgsch@cvs.openbsd.org 2004/12/10 01:31:30
[Makefile]
some globbing regress; prompted and ok djm@
2005-03-07 17:36:18 +11:00
0d0966934e
- (dtucker) [configure.ac] Disable gettext search when configuring with
...
BSM audit support for the time being. ok djm@
2005-03-07 17:34:45 +11:00
2b59a6dad6
- (dtucker) [session.c sshd.c] Bug #125 comment #49 : Send disconnect audit
...
events earlier, prevents mm_request_send errors reported by Matt Goebel.
2005-03-06 22:38:51 +11:00
3745e2bb62
- (dtucker) [monitor.c] Bug #125 comment #47 : fix errors returned by monitor
...
when attempting to audit disconnect events. Reported by Phil Dibowitz.
2005-03-06 22:31:35 +11:00
f8e7accd01
- djm@cvs.openbsd.org 2005/03/04 08:48:06
...
[readconf.c]
fix SendEnv config parsing bug found by Roumen Petrov; ok dtucker@
2005-03-05 11:22:50 +11:00
b022b23584
- jmc@cvs.openbsd.org 2005/03/02 11:45:01
...
[ssh.1]
missing word;
2005-03-05 11:22:36 +11:00
7ffa367a93
- (djm) [contrib/cygwin/README] Improve Cygwin build documentation. Patch
...
from vinschen at redhat.com
2005-03-05 11:20:40 +11:00
f8f3016f9e
- (tim) [regress/agent-ptrace.sh] add another possible gdb error.
2005-03-02 21:49:56 -08:00
947219e6e6
- djm@cvs.openbsd.org 2005/03/02 02:21:07
...
[ssh.1]
bz#987: mention ForwardX11Trusted in ssh.1,
reported by andrew.benham AT thus.net; ok deraadt@
2005-03-02 13:22:30 +11:00
Damien Miller
Darren Tucker
Tim Rice