tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,353 Commits 6 Branches 20 Tags 97 MiB
Commit Graph

5353 Commits

Author SHA1 Message Date
Darren Tucker b8eb586412 - (dtucker) Cache selinux status earlier so we know if it's enabled after a 
chroot.  Allows ChrootDirectory to work with selinux support compiled in
   but not enabled.  Using it with selinux enabled will require some selinux
   support inside the chroot.  "looks sane" djm@
 2008-03-27 07:27:20 +11:00
Damien Miller a193900674 - (djm) [session.c] Relocate incorrectly-placed closefrom() that was causing 
crashes when used with ChrootDirectory
 2008-03-15 17:27:58 +11:00
Damien Miller 8f8b156acc - (djm) [regress/test-exec.sh] Quote putty-related variables in case they are 
empty; report and patch from Peter Stuge
 - (djm) [regress/test-exec.sh] Silence noise from detection of putty
   commands; report from Peter Stuge
 2008-03-15 09:25:54 +11:00
Tim Rice 02db85bdcb - (tim) [regress/localcommand.sh] Shell portability fix. Reported by imorgan at 
nas.nasa.gov
 2008-03-14 11:02:51 -07:00
Tim Rice 5143043409 - (tim) [regress/sftp-cmds.sh] s/cd/lcd/ in lls test. Reported by 
vinschen at redhat.com. Add () to put echo commands in subshell for lls test
   I mistakenly left out of last commit.
 2008-03-14 10:39:17 -07:00
Tim Rice 817d7efb57 forgot to add vinschen at redhat.com on last commit 2008-03-13 18:37:05 -07:00
Tim Rice dce65cfb3c - (tim) [regress/sftp-cmds.sh regress/ssh2putty.sh] Shell portability fixes 
from imorgan at nas.nasa.gov
 2008-03-13 18:21:06 -07:00
Tim Rice 3eb144911c - (tim) [scp.c] Use poll.h if available, fall back to sys/poll.h if not. Patch 
by vinschen at redhat.com.
 2008-03-13 17:59:50 -07:00
Damien Miller c2cefb0fe9 - (djm) [Makefile.in regress/test-exec.sh] Find installed plink(1) and 
puttygen(1) by $PATH
 2008-03-13 12:41:31 +11:00
Damien Miller 6642996134 - (djm) [Makefile.in regress/Makefile] Fix interop-tests target (note to 
self: make changes to Makefile.in next time, not the generated Makefile).
 2008-03-13 12:05:40 +11:00
Damien Miller af78493bba - djm@cvs.openbsd.org 2007/12/21 04:13:53 
[regress/Makefile regress/test-exec.sh regress/putty-ciphers.sh]
     [regress/putty-kex.sh regress/putty-transfer.sh regress/ssh2putty.sh]
     basic (crypto, kex and transfer) interop regression tests against putty
     To run these, install putty and run "make interop-tests" from the build
     directory - the tests aren't run by default yet.
 2008-03-13 00:17:00 +11:00
Damien Miller 4cd5fbab4d - djm@cvs.openbsd.org 2007/12/12 05:04:03 
[regress/sftp-cmds.sh]
     unbreak lls command and add a regress test that would have caught the
     breakage; spotted by mouring@
     NB. sftp code change already committed.
 2008-03-12 23:59:43 +11:00
Damien Miller d666d8e5d4 - jmc@cvs.openbsd.org 2007/11/25 15:35:09 
[regress/agent-getpeereid.sh regress/agent.sh]
     more existant -> existent, from Martynas Venckus;
     pfctl changes: ok henning
     ssh changes: ok deraadt
 2008-03-12 23:58:55 +11:00
Damien Miller a5e584274d - dtucker@cvs.openbsd.org 2007/10/29 06:57:13 
[regress/Makefile regress/localcommand.sh]
     Add simple regress test for LocalCommand; ok djm@
 2008-03-12 23:58:05 +11:00
Darren Tucker 1e42689ad5 fix log date 2008-03-11 23:01:44 +11:00
Darren Tucker 52358d6df3 - (dtucker) [auth-pam.c monitor.c session.c sshd.c] Bug #926: Move 
pam_open_session and pam_close_session into the privsep monitor, which
   will ensure that pam_session_close is called as root.  Patch from Tomas
   Mraz.
 2008-03-11 22:58:25 +11:00
Darren Tucker fe1cf97ee8 - (dtucker) [configure.ac] Run stack-protector tests with -Werror to catch 
platforms where gcc understands the option but it's not supported (and
   thus generates a warning).
 2008-03-09 22:50:50 +11:00
Darren Tucker 7643e3397d - (dtucker) [openbsd-compat/regress/strtonumtest.c] Bug #1347: Use platform's 
equivalent of LLONG_MAX for the compat regression tests, which makes them
   run on AIX and HP-UX.  Patch from David Leonard.
 2008-03-09 17:10:09 +11:00
Darren Tucker 16ba6a8ea2 - (dtucker) [openbsd-compat/port-aix.{c,h}] Remove AIX specific initgroups 
implementation.  It's not needed to fix bug #1081 and breaks the build
   on some AIX configurations.
 2008-03-09 16:36:55 +11:00
Darren Tucker b7918afddf - (dtucker) [configure.ac] It turns out gcc's -fstack-protector-all doesn't 
always work for all platforms and versions, so test what we can and
   add a configure flag to turn it of if needed.  ok djm@
 2008-03-09 11:34:23 +11:00
Tim Rice 68d293859e - (tim) [regress/sftp-glob.sh] Shell portability fix. 2008-03-07 19:00:33 -08:00
Damien Miller a79bb8ec5e - deraadt@cvs.openbsd.org 2008/03/04 21:15:42 
[version.h]
     crank version; from djm
 2008-03-07 18:35:47 +11:00
Damien Miller c0c53c3114 - deraadt@cvs.openbsd.org 2008/03/02 18:19:35 
[monitor_fdpass.c]
     use a union to ensure alignment of the cmsg (pay attention: various other
     parts of the tree need this treatment too); ok djm
 2008-03-07 18:35:26 +11:00
Damien Miller 7c29661471 - djm@cvs.openbsd.org 2008/02/27 20:21:15 
[sftp-server.c]
     add an extension method "posix-rename@openssh.com" to perform POSIX atomic
     rename() operations. based on patch from miklos AT szeredi.hu in bz#1400;
     ok dtucker@ markus@
 2008-03-07 18:33:53 +11:00
Damien Miller 58226f6068 - dtucker@cvs.openbsd.org 2008/02/22 20:44:02 
[clientloop.c packet.c packet.h serverloop.c]
     Allow all SSH2 packet types, including UNIMPLEMENTED to reset the
     keepalive timer (bz #1307).  ok markus@
 2008-03-07 18:33:30 +11:00
Damien Miller 7cb2b56b1c - djm@cvs.openbsd.org 2008/02/22 05:58:56 
[session.c]
     closefrom() call was too early, delay it until just before we execute
     the user's rc files (if any).
 2008-03-07 18:33:12 +11:00
Damien Miller 767087b8ec - markus@cvs.openbsd.org 2008/02/20 15:25:26 
[session.c]
     correct boolean encoding for coredump; der Mouse via dugsong
 2008-03-07 18:32:42 +11:00
Damien Miller 2ee0c43f98 - mbalmer@cvs.openbsd.org 2008/02/14 13:10:31 
[sshd.c]
     When started in configuration test mode (-t) do not check that sshd is
     being started with an absolute path.
     ok djm
 2008-03-07 18:31:47 +11:00
Damien Miller 76e95daad1 - djm@cvs.openbsd.org 2008/02/13 22:38:17 
[servconf.h session.c sshd.c]
     rekey arc4random and OpenSSL RNG in postauth child
     closefrom fds > 2 before shell/command execution
     ok markus@
 2008-03-07 18:31:24 +11:00
Damien Miller 757a38a43b - jmc@cvs.openbsd.org 2008/02/11 07:58:28 
[ssh.1 sshd.8 sshd_config.5]
     bump Mdocdate for pages committed in "febuary", necessary because
     of a typo in rcs.c;
 2008-03-07 18:27:58 +11:00
Darren Tucker 54e859f63d - (dtucker) [configure.ac] FreeBSD's glob() doesn't behave the way we expect 
either, so use our own.
 2008-03-02 21:52:27 +11:00
Damien Miller baf7c3d33a - (djm) [contrib/gnome-ssh-askpass2.h] Keep askpass windown on top. From 
Debian patch via bernd AT openbsd.org
 2008-02-29 22:53:40 +11:00
Darren Tucker ccb13eedd7 - (dtucker) [scp.c] Include sys/poll.h inside HAVE_SYS_POLL_H. 2008-02-29 15:07:01 +11:00
Darren Tucker 7ec8733247 - (dtucker) [openbsd-compat/bsd-poll.c] We don't check for select(2) in 
configure (and there's not much point, as openssh won't work without it)
   so HAVE_SELECT is not defined and the poll(2) compat code doesn't get
   built in.  Remove HAVE_SELECT so we can build on platforms without poll.
 2008-02-29 13:57:47 +11:00
Darren Tucker 1f1e17bd61 - (dtucker) [sshd.c] Bug #1042: make log messages for tcpwrappers use the 
same SyslogFacility as the rest of sshd.  Patch from William Knox,
   ok djm@.
 2008-02-28 23:20:48 +11:00
Darren Tucker 0f26b1386a - (dtucker) [configure.ac openbsd-compat/port-aix.{c,h}] Bug #1081: Implement 
getgrouplist via getgrset on AIX, rather than iterating over getgrent.
   This allows, eg, Match and AllowGroups directives to work with NIS and
   LDAP groups.
 2008-02-28 23:16:04 +11:00
Darren Tucker 3d295a6cf0 - (dtucker) [key.c defines.h openbsd-compat/openssl-compat.h] Move old OpenSSL 
compat glue into openssl-compat.h.
 2008-02-28 19:22:04 +11:00
Darren Tucker bfaaf960a0 - (dtucker) [includes.h ssh-add.c ssh-agent.c ssh-keygen.c ssh.c sshd.c 
openbsd-compat/openssl-compat.{c,h}] Bug #1437 Move the OpenSSL compat
   header to after OpenSSL headers, since some versions of OpenSSL have
   SSLeay_add_all_algorithms as a macro already.
 2008-02-28 19:13:52 +11:00
Darren Tucker e1c4c54211 - (dtucker) [configure.ac] Add -fstack-protector to LDFLAGS too, fixes 
linking problems on AIX with gcc 4.1.x.
 2008-02-28 15:01:13 +11:00
Darren Tucker 935e20a3f0 - (dtucker) [includes.h openbsd-compat/openssl-compat.c] Bug #1437: reshuffle 
headers so ./configure --with-ssl-engine actually works.  Patch from
   Ian Lister.
 2008-02-25 21:13:47 +11:00
Darren Tucker acada07b52 - (dtucker) [configure.ac audit-bsm.c] Bug #1420: Add a local implementation 
of aug_get_machine for systems that don't have their own (eg OS X, FreeBSD).    Help and testing from csjp at FreeBSD org, vgiffin at apple com.  ok djm@
 2008-02-25 21:05:04 +11:00
Darren Tucker 2c2ac033c1 - (dtucker) [openbsd-compat/fake-rfc2553.h] rename ssh_gai_strerror hack 
since it now conflicts with the helper function in misc.c.  From
   vinschen AT redhat.com.
 2008-02-25 20:21:20 +11:00
Darren Tucker 2e9b8db4ea 20080224 
- (tim) [contrib/cygwin/ssh-host-config]
   Grammar changes on SYSCONFDIR LOCALSTATEDIR messages.
   Check more thoroughly that it's possible to create the /var/empty directory.
   Patch by vinschen AT redhat.com
 2008-02-25 20:18:31 +11:00
Tim Rice 401a27a307 [contrib/cygwin/ssh-host-config] 
Grammar changes on SYSCONFDIR LOCALSTATEDIR messages.
Check more thoroughly that it's possible to create the /var/empty directory.
Patch by vinschen AT redhat.com
 2008-02-23 14:47:37 -08:00
Damien Miller 54e3773ccb - djm@cvs.openbsd.org 2008/02/10 10:54:29 
[servconf.c session.c]
     delay ~ expansion for ChrootDirectory so it expands to the logged-in user's
     home, rather than the user who starts sshd (probably root)
 2008-02-10 22:48:55 +11:00
Damien Miller cdb6e65175 - djm@cvs.openbsd.org 2008/02/10 09:55:37 
[sshd_config.5]
     mantion that "internal-sftp" is useful with ForceCommand too
 2008-02-10 22:47:24 +11:00
Damien Miller 520e61552a - mcbride@cvs.openbsd.org 2008/02/09 12:15:43 
[ssh.1 sshd.8]
     Document the correct permissions for the ~/.ssh/ directory.
     ok jmc
 2008-02-10 22:46:22 +11:00
Damien Miller 70433b5d73 - jmc@cvs.openbsd.org 2008/02/09 08:04:31 
[sshd_config.5]
     missing `)';
 2008-02-10 22:45:13 +11:00
Damien Miller 62ca18d12f - djm@cvs.openbsd.org 2008/02/08 23:24:07 
[servconf.c servconf.h session.c sftp-server.c sftp.h sshd_config]
     [sshd_config.5]
     add sshd_config ChrootDirectory option to chroot(2) users to a directory
     and tweak internal sftp server to work with it (no special files in chroot
     required). ok markus@
 2008-02-10 22:44:20 +11:00
Damien Miller d8cb1f184f - djm@cvs.openbsd.org 2008/02/08 23:24:07 
[servconf.c servconf.h session.c sftp-server.c sftp.h sshd_config]
     [sshd_config.5]
     add sshd_config ChrootDirectory option to chroot(2) users to a directory
     and tweak internal sftp server to work with it (no special files in
     chroot required). ok markus@
 2008-02-10 22:40:12 +11:00