e2f189a841
- djm@cvs.openbsd.org 2004/11/29 07:41:24
...
[sftp-client.h sftp.c]
Some small fixes from moritz@jodeit.org . ok deraadt@
2004-12-06 22:45:53 +11:00
0133a727ac
- jmc@cvs.openbsd.org 2004/11/29 00:05:17
...
[sftp.1]
missing full stop;
2004-12-06 22:44:32 +11:00
cd516efea1
- (dtucker) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/11/25 22:22:14
[sftp-client.c sftp.c]
leak; from mpech
2004-12-06 22:43:43 +11:00
ba2abb3699
- (dtucker) [TODO WARNING.RNG] Update to reflect current reality. ok djm@
2004-12-06 22:40:10 +11:00
c13866719f
- (dtucker) [auth1.c auth2.c] If the user successfully authenticates but is
...
subsequently denied by the PAM auth stack, send the PAM message to the
user via packet_disconnect (Protocol 1) or userauth_banner (Protocol 2).
ok djm@
2004-12-03 14:33:47 +11:00
9c6bf325c0
- jmc@cvs.openbsd.org 2004/11/07 17:57:30
...
[ssh.c]
usage():
- add -O
- sync -S w/ manpage
- remove -h
2004-12-03 14:10:19 +11:00
e04644c162
- (dtucker) OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2004/11/07 17:42:36
[ssh.1]
options sort, and whitespace;
2004-12-03 14:08:45 +11:00
16bcc1c92e
- (dtucker) [INSTALL Makefile.in configure.ac] Add --with-libedit configure
...
option and supporting makefile bits and documentation.
2004-11-07 20:14:34 +11:00
7ebfc10884
- djm@cvs.openbsd.org 2004/11/07 00:01:46
...
[clientloop.c clientloop.h ssh.1 ssh.c]
add basic control of a running multiplex master connection; including the
ability to check its status and request it to exit; ok markus@
2004-11-07 20:06:19 +11:00
2d963d8721
- djm@cvs.openbsd.org 2004/11/05 12:19:56
...
[sftp.c]
command editing and history support via libedit; ok markus@
thanks to hshoexer@ and many testers on tech@ too
2004-11-07 20:04:10 +11:00
08d04faf24
- djm@cvs.openbsd.org 2004/10/29 23:57:05
...
[key.c]
use new buffer API to avoid fatal errors on corrupt keys in authorized_keys
files; ok markus@
2004-11-05 20:42:28 +11:00
50dbe8314b
- djm@cvs.openbsd.org 2004/10/29 23:56:17
...
[bufaux.c bufaux.h buffer.c buffer.h]
introduce a new buffer API that returns an error rather than fatal()ing
when presented with bad data; ok markus@
2004-11-05 20:41:24 +11:00
ce327b62ac
- djm@cvs.openbsd.org 2004/10/29 22:53:56
...
[clientloop.c misc.h readpass.c ssh-agent.c]
factor out common permission-asking code to separate function; ok markus@
2004-11-05 20:38:03 +11:00
5d78de6283
- djm@cvs.openbsd.org 2004/10/29 21:47:15
...
[channels.c channels.h clientloop.c]
fix some window size change bugs for multiplexed connections: windows sizes
were not being updated if they had changed after ~^Z suspends and SIGWINCH
was not being processed unless the first connection had requested a tty;
ok markus
2004-11-05 20:35:44 +11:00
b2694f0e8a
- markus@cvs.openbsd.org 2004/10/20 11:48:53
...
[packet.c ssh1.h]
disconnect for invalid (out of range) message types.
2004-11-05 20:27:54 +11:00
1dee8683fb
- djm@cvs.openbsd.org 2004/10/07 10:12:36
...
[ssh-agent.c]
don't unlink agent socket when bind() fails, spotted by rich AT
rich-paul.net, ok markus@
2004-11-05 20:26:49 +11:00
636ca90247
- djm@cvs.openbsd.org 2004/10/07 10:10:24
...
[scp.1 sftp.1 ssh.1 ssh_config.5]
document KbdInteractiveDevices; ok markus@
2004-11-05 20:22:00 +11:00
3269b13817
- djm@cvs.openbsd.org 2004/09/25 03:45:14
...
[sshd.c]
these printf args are no longer double; ok deraadt@ markus@
2004-11-05 20:20:59 +11:00
39207a46b4
- djm@cvs.openbsd.org 2004/09/23 13:00:04
...
[ssh.c]
correctly honour -n in multiplex client mode; spotted by sturm@ ok markus@
2004-11-05 20:19:51 +11:00
f30e1acc62
- deraadt@cvs.openbsd.org 2004/09/15 18:46:04
...
[scp.c]
scratch that do { } while (0) wrapper in this case
2004-11-05 20:10:02 +11:00
178fa66a64
- mickey@cvs.openbsd.org 2004/09/15 18:42:27
...
[sshd.c]
use less doubles in daemons; markus@ ok
2004-11-05 20:09:09 +11:00
7cc5c23817
- jaredy@cvs.openbsd.org 2004/09/15 03:25:41
...
[sshd_config.5]
mention PrintLastLog only prints last login time for interactive
sessions, like PrintMotd mentions.
From Michael Knudsen, with wording changed slightly to match the
PrintMotd description.
ok djm
2004-11-05 20:06:59 +11:00
e9bf98412e
- deraadt@cvs.openbsd.org 2004/09/15 00:46:01
...
[ssh.c]
/* fallthrough */ is something a programmer understands. But
/* FALLTHROUGH */ is also understood by lint, so that is better.
2004-11-05 20:05:32 +11:00
07336dae94
- djm@cvs.openbsd.org 2004/09/07 23:41:30
...
[clientloop.c ssh.c]
cleanup multiplex control socket on SIGHUP too, spotted by sturm@
ok markus@ deraadt@
2004-11-05 20:02:16 +11:00
4e4fe0052c
- jmc@cvs.openbsd.org 2004/08/30 21:22:49
...
[ssh-add.1 ssh.1]
.Xsession -> .xsession;
originally from a pr from f at obiit dot org, but missed by myself;
ok markus@ matthieu@
2004-11-05 20:01:03 +11:00
c016134588
- markus@cvs.openbsd.org 2004/08/30 09:18:08
...
[LICENCE]
s/keygen/keyscan/
2004-11-05 20:00:03 +11:00
a56f191ef1
- (dtucker) [configure.ac includes.h] Bug #947 : Fix compile error on HP-UX
...
10.x by testing for conflicts in shadow.h and undef'ing _INCLUDE__STDC__
only if a conflict is detected.
2004-11-02 20:30:54 +11:00
35beaddc7e
- (dtucker) [uidswap.c] Don't test dropping of gids for the root user or
...
on Cygwin. Cygwin parts from vinschen at redhat com; ok djm@
2004-10-19 16:33:33 +10:00
0e035d816a
that was "ok dtucker@"
2004-10-16 18:53:28 +10:00
daffc6a115
- (djm) [auth-pam.c] snprintf->strl*, fix server message length calculations
2004-10-16 18:52:44 +10:00
dbc2296e2c
- (dtucker) [monitor_mm.c openbsd-compat/xmmap.c] Bug #940 : cast constants
...
to void * to appease picky compilers (eg Tru64's "cc -std1").
2004-10-06 23:15:44 +10:00
b7d55e3eb5
- (dtucker) [README.privsep] Bug #939 : update info about HP-UX Trusted Mode
...
and other PAM platforms.
2004-10-06 20:09:32 +10:00
59f79c4014
- (dtucker) [configure.ac] Set AC_PACKAGE_NAME. ok djm@
2004-09-30 21:17:08 +10:00
4127f559ad
- (dtucker) [openbsd-compat/bsd-snprintf.c] Previous change was off by one,
...
which could have caused the justification to be wrong. ok djm@
2004-09-23 21:35:09 +10:00
5d596139d4
- (dtucker) [contrib/cygwin/ssh-host-config] Update to match current Cygwin
...
install process. Patch from vinschen at redhat.com.
2004-09-21 21:35:55 +10:00
50fbb45dbd
- (dtucker) [openbsd-compat/bsd-snprintf.c] Check for max length too.
...
ok djm@
2004-09-21 21:32:12 +10:00
623d92f0b2
- (dtucker) [configure.ac] Fix incorrect quoting and tests for cross-compile.
...
Partly by & ok djm@.
2004-09-12 22:36:15 +10:00
2aa6d3cfce
- (djm) [ssh.c sshd.c version.h] Don't divulge portable version in protocol
...
banner. Suggested by deraadt@, ok mouring@, dtucker@
2004-09-12 16:53:04 +10:00
b0aae333fd
- (djm) [loginrec.c] xmalloc
2004-09-12 15:26:00 +10:00
6b0279c084
- (djm) [loginrec.c] __func__ifiy
2004-09-12 15:25:17 +10:00
8899ed3b62
- (djm) [loginrec.c] Start KNF and tidy up of this long-neglected file.
...
No change in resultant binary
2004-09-12 15:18:55 +10:00
5614d8f8c4
- (dtucker) [auth-krb5.c] Bug #922 : Pass KRB5CCNAME to PAM. From deengert
...
at anl.gov, ok djm@
2004-09-11 23:32:09 +10:00
a0c2b394b4
- (dtucker) [configure.ac] Bug #321 : Add cross-compile support to configure.
...
Parts by chua at ayrnetworks.com, astrand at lysator.liu.se and me. ok djm@
2004-09-11 23:26:37 +10:00
a2a3ed0010
- (dtucker) [session.c] Bug #927 : make .hushlogin silent again. ok djm@
2004-09-11 23:09:53 +10:00
77fc29eeb3
- (dtucker) [auth-pam.c auth.h auth2-none.c auth2.c monitor.c monitor_wrap.c]
...
Bug #892 : Send messages from failing PAM account modules to the client via
SSH2_MSG_USERAUTH_BANNER messages. Note that this will not happen with
SSH2 kbdint authentication, which need to be dealt with separately. ok djm@
2004-09-11 23:07:03 +10:00
4765679649
- (djm) [auth2-kbdint.c auth2-none.c auth2-passwd.c auth2-pubkey.c]
...
Make cygwin code more consistent with that which surrounds it
2004-09-11 22:42:09 +10:00
0a7e3c6c89
- (dtucker) [auth-pam.c] Relocate sshpam_store_conv(), no code change.
2004-09-11 22:28:01 +10:00
69687f4b65
- (dtucker) [auth-pam.c auth-pam.h session.c] Bug #890 : Send output from
...
failing PAM session modules to user then exit, similar to the way
/etc/nologin is handled. ok djm@
2004-09-11 22:17:26 +10:00
928a19ad9e
- (djm) [ssh-agent.c] unifdef some cygwin code; ok dtucker@
2004-09-11 15:18:05 +10:00
25a1234ef7
- (dtucker) [Makefile.in contrib/ssh-copy-id] Bug #894 : Improve portability
...
of shell constructs. Patch from cjwatson at debian.org.
2004-08-30 21:33:02 +10:00
476b7ecfe4
- (dtucker) [regress/Makefile] Clean scp-ssh-wrapper.scp too. Patch from
...
vinschen at redhat.com.
2004-08-30 21:13:49 +10:00
14c372d49d
- (dtucker) [session.c openbsd-compat/bsd-cygwin_util.{c,h}] Bug #915 : only
...
copy required environment variables on Cygwin. Patch from vinschen at
redhat.com, ok djm@
2004-08-30 20:42:08 +10:00
5a88d00349
- (dtucker) [openbsd-compat/port-aix.c] Bug #712 : Explicitly check for
...
accounts with authentication configs that sshd can't support (ie
SYSTEM=NONE and AUTH1=something).
2004-08-29 21:43:33 +10:00
cf59d31761
- (dtucker) [configure.ac] Replace non-portable echo \n with extra echo.
2004-08-29 21:18:09 +10:00
b17035fb7f
- (dtucker) [regress/agent-ptrace.sh] Skip ptrace test on OSF1/DUnix/Tru64
...
too; patch from cmadams at hiwaay.net.
2004-08-29 20:33:07 +10:00
2a502ff310
- (dtucker) [Makefile.in] Get regress/Makefile symlink right for out-of-tree
...
builds too, from vinschen at redhat.com.
2004-08-29 19:52:32 +10:00
0521dcb22e
- (dtucker) [regress/scp.sh] Make this work on Cygwin too, which doesn't like
...
files ending in .exe that aren't binaries; patch from vinschen at redhat.com.
2004-08-29 19:39:09 +10:00
07d30e4579
- (dtucker) [regress/dynamic-forward.sh] Allow time for connections to be torn
...
down, needed on some platforms, should be harmless on others. Patch from
jason at devrandom.org.
2004-08-29 17:14:31 +10:00
2a81adc35c
- (dtucker) [regress/multiplex.sh] Skip test on platforms that do not
...
support FD passing since multiplex requires it. Noted by tim@
2004-08-29 17:09:34 +10:00
48d99d36bb
- (dtucker) [configure.ac] Include sys/stream.h in sys/ptms.h header check,
...
fixes configure warning on Solaris reported by wknox at mitre.org.
2004-08-29 17:04:50 +10:00
0f56ed16b8
- djm@cvs.openbsd.org 2004/08/28 01:01:48
...
[sshd.c]
don't erroneously close stdin for !reexec case, from Dave Johnson;
ok markus@
2004-08-29 16:38:41 +10:00
db69390817
- markus@cvs.openbsd.org 2004/08/26 16:00:55
...
[ssh.1 sshd.8]
get rid of references to rhosts authentication; with jmc@
2004-08-29 16:37:24 +10:00
34620d6f71
- dtucker@cvs.openbsd.org 2004/08/23 14:29:23
...
[ssh-keysign.c]
Remove duplicate getuid(), suggested by & ok markus@
2004-08-29 16:32:59 +10:00
27a8f6b056
- dtucker@cvs.openbsd.org 2004/08/23 14:26:38
...
[ssh-keysign.c ssh.c]
Use permanently_set_uid() in ssh and ssh-keysign for consistency, matches
change in Portable; ok markus@ (CVS ID sync only)
2004-08-29 16:31:28 +10:00
e6ed83976b
- djm@cvs.openbsd.org 2004/08/23 11:48:47
...
[channels.c]
typo, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus
2004-08-29 16:29:44 +10:00
f4b43712c1
- djm@cvs.openbsd.org 2004/08/23 11:48:09
...
[authfile.c]
fix error path, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus
2004-08-29 16:28:39 +10:00
f00e51d1f2
- (dtucker) [openbsd-compat/getrrsetbyname.c] Prevent getrrsetbyname from
...
failing with NOMEMORY if no sigs are returned and malloc(0) returns NULL.
From Martin.Kraemer at Fujitsu-Siemens.com; ok djm@
2004-08-29 16:12:29 +10:00
11bdc01cfe
Add filename to ChangeLog entry
2004-08-28 16:17:35 +10:00
f0c2aeaf3d
- (dtucker) [openbsd-compat/mktemp.c] Remove superfluous Cygwin #ifdef; from
...
vinschen at redhat.com.
2004-08-28 15:46:57 +10:00
b0419f26d0
- (djm) [loginrec.c] Typo and bad args in error messages; Spotted by
...
Martin.Kraemer AT Fujitsu-Siemens.com
2004-08-23 21:53:28 +10:00
7daf044aa2
- (djm) [ssh-rand-helper.c] Typo. Found by
...
Martin.Kraemer AT Fujitsu-Siemens.com
2004-08-23 21:52:08 +10:00
e17cc75fe3
- (djm) Release 3.9p1
2004-08-17 22:50:40 +10:00
d545285ec1
- (djm) Crank RPM spec version numbers
2004-08-17 22:49:12 +10:00
87c9cca391
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2004/08/16 08:17:01
[version.h]
3.9
2004-08-17 22:47:41 +10:00
bad5f2d329
- (dtucker) [regress/README.regress] Note compatibility issues with GNU head.
2004-08-17 22:31:32 +10:00
21dd0897d5
- (dtucker) [acconfig.h auth-pam.c configure.ac] Set real uid to non-root
...
to convince Solaris PAM to honour password complexity rules. ok djm@
2004-08-16 23:12:05 +10:00
0cbc3c6509
- (dtucker) [Makefile.in] Fix typo.
2004-08-15 21:01:37 +10:00
8140959de0
- (djm) [loginrec.c] Check that seek succeeded here too; ok dtucker
2004-08-15 19:12:52 +10:00
36f4965020
- (djm) [acconfig.h configure.ac openbsd-compat/Makefile.in
...
openbsd-compat/bsd-closefrom.c openbsd-compat/bsd-misc.c
openbsd-compat/bsd-misc.h openbsd-compat/openbsd-compat.h] Use smarter
closefrom() replacement from sudo; ok dtucker@
2004-08-15 18:40:59 +10:00
25f60a7ee7
- (dtucker) [Makefile.in ssh-keysign.c ssh.c] Use permanently_set_uid() since
...
it does the right thing on all platforms. ok djm@
2004-08-15 17:23:34 +10:00
397a2f2612
- (dtucker) [loginrec.c openbsd-compat/port-aix.c openbsd-compat/port-aix.h]
...
Plug AIX login recording into login_write so logins will be recorded for
all auth types.
2004-08-15 00:09:11 +10:00
3d50c9bda6
- (dtucker) [includes.h] Undef _INCLUDE__STDC__ on HP-UX, otherwise
...
prot.h and shadow.h provide conflicting declarations of getspnam. ok djm@
2004-08-15 00:01:48 +10:00
066969339d
- (dtucker) [auth-krb5.c gss-serv-krb5.c openbsd-compat/xmmap.c]
...
Explicitly set umask for mkstemp; ok djm@
2004-08-14 23:55:37 +10:00
137e9c97e0
- dtucker@cvs.openbsd.org 2004/08/13 11:09:24
...
[servconf.c]
Fix line numbers off-by-one in error messages, from tortay at cc.in2p3.fr
ok markus@, djm@
2004-08-13 21:30:24 +10:00
1ef0bc0b0a
- djm@cvs.openbsd.org 2004/08/13 02:51:48
...
[monitor_fdpass.c]
extra check for no message case; ok markus, deraadt, hshoexer, henning
2004-08-13 21:29:02 +10:00
6e37037fea
- jmc@cvs.openbsd.org 2004/08/13 00:01:43
...
[ssh-keygen.1]
kill whitespace at eol;
2004-08-13 21:23:25 +10:00
0b42e6d95b
- jakob@cvs.openbsd.org 2004/08/12 21:41:13
...
[ssh-keygen.1 ssh.1]
improve SSHFP documentation; ok deraadt@
2004-08-13 21:22:40 +10:00
bcf279783a
- djm@cvs.openbsd.org 2004/08/12 09:18:24
...
[sshlogin.c]
typo in error message, spotted by moritz AT jodeit.org (Id sync only)
2004-08-13 21:21:47 +10:00
fe6649da0c
- avsm@cvs.openbsd.org 2004/08/11 21:44:32
...
[authfd.c scp.c ssh-keyscan.c]
use atomicio instead of homegrown equivalents or read/write.
markus@ ok
2004-08-13 21:19:37 +10:00
c7a6fc41bf
- avsm@cvs.openbsd.org 2004/08/11 21:43:05
...
[channels.c channels.h clientloop.c misc.c misc.h serverloop.c ssh-agent.c]
some signed/unsigned int comparison cleanups; markus@ ok
2004-08-13 21:18:00 +10:00
03669a363e
- (dtucker) [openbsd-compat/bsd-misc.c] Typo in #ifdef; from vinschen at
...
redhat.com
2004-08-13 18:37:21 +10:00
eb57862e7c
- (dtucker) [sshd.c] Clear loginmsg in postauth monitor, prevents doubling
...
messages generated before the postauth privsep split.
2004-08-12 23:08:14 +10:00
133b757357
- djm@cvs.openbsd.org 2004/08/11 12:01:16
...
[sshlogin.c]
make store_lastlog_message() static to appease -Wall; ok markus
2004-08-12 22:50:03 +10:00
9c5049a40f
- djm@cvs.openbsd.org 2004/08/11 11:59:22
...
[sshlogin.c]
check that lseek went were we told it to; ok markus@
(Id sync only, but similar changes are needed in loginrec.c)
2004-08-12 22:49:00 +10:00
d8835934c4
- dtucker@cvs.openbsd.org 2004/08/11 11:50:09
...
[sshd.c]
Don't try to close startup_pipe if it's not open; ok djm@
2004-08-12 22:42:29 +10:00
9fbac71905
- dtucker@cvs.openbsd.org 2004/08/11 11:09:54
...
[servconf.c]
Fix minor leak; "looks right" deraadt@
2004-08-12 22:41:44 +10:00
9a2bd1116b
- djm@cvs.openbsd.org 2004/08/04 10:37:52
...
[dh.c]
return group14 when no primes found - fixes hang on empty /etc/moduli;
ok markus@
2004-08-12 22:40:59 +10:00
5cb30ad2ec
- markus@cvs.openbsd.org 2004/07/28 09:40:29
...
[auth.c auth1.c auth2.c cipher.c cipher.h key.c session.c ssh.c
sshconnect1.c]
more s/illegal/invalid/
2004-08-12 22:40:24 +10:00
6832b83744
- markus@cvs.openbsd.org 2004/07/28 08:56:22
...
[sshd.c]
call setsid() _before_ re-exec
2004-08-12 22:36:51 +10:00
8ae66a5032
- (dtucker) [sshd.c] Remove duplicate variable imported during sync.
2004-08-12 22:16:55 +10:00
Darren Tucker
Damien Miller