openssh-portable

Commit Graph

Author	SHA1	Message	Date
Damien Miller	f589fd1ea8	- dtucker@cvs.openbsd.org 2010/01/18 01:50:27 [roaming_client.c] s/long long unsigned/unsigned long long/, from tim via portable (Id sync only, change already in portable)	2010-01-26 12:53:06 +11:00
Damien Miller	2e68d793d6	- tedu@cvs.openbsd.org 2010/01/17 21:49:09 [ssh-agent.1] Correct and clarify ssh-add's password asking behavior. Improved text dtucker and ok jmc	2010-01-26 12:51:13 +11:00
Tim Rice	6761c7417d	- (tim) [configure.ac] Due to constraints in Windows Sockets in terms of socket inheritance, reduce the default SO_RCVBUF/SO_SNDBUF buffer size in Cygwin to 65535. Patch from Corinna Vinschen.	2010-01-22 10:25:15 -08:00
Tim Rice	7bb7471b80	Reword comment in last commit for additional clearity.	2010-01-17 22:49:57 -08:00
Tim Rice	641ebf1f86	- (tim) [configure.ac] Use the C99-conforming functions snprintf() and vsnprintf() named _xsnprintf() and _xvsnprintf() on SVR5 systems.	2010-01-17 17:05:39 -08:00
Tim Rice	7ab7b9346d	- (tim) [configure.ac] OpenServer 5 needs BROKEN_GETADDRINFO too.	2010-01-17 12:48:22 -08:00
Tim Rice	33e48ac7b2	Oops, forgot to document second change to roaming_client.c s/long long unsigned/unsigned long long/ to keep USL compilers happy.	2010-01-17 07:12:40 -08:00
Tim Rice	f37756759f	- (tim) [roaming_client.c] Use of <sys/queue.h> is not really portable so we use "openbsd-compat/sys-queue.h"	2010-01-16 16:48:39 -08:00
Tim Rice	4a7db1ca2f	- (tim) [configure.ac] Define BROKEN_GETADDRINFO on SVR5 systems. The native getaddrinfo() is too old and limited for addr_pton() in addrmatch.c.	2010-01-16 12:23:25 -08:00
Tim Rice	999aaf4182	- (tim) [regress/portnum.sh] Shell portability fix.	2010-01-16 11:37:53 -08:00
Darren Tucker	4e21855422	- (dtucker) [openbsd-compat/openbsd-compat.h] Typo.	2010-01-16 23:58:37 +11:00
Darren Tucker	612e400c68	- (dtucker) [openbsd-compat/pwcache.c] Shrink ifdef area to prevent unused variable warnings.	2010-01-16 13:53:52 +11:00
Darren Tucker	dab129bef5	- markus@cvs.openbsd.org 2010/01/15 09:24:23 [sftp-common.c] unused	2010-01-16 13:43:50 +11:00
Darren Tucker	69371b511b	- (dtucker) [openbsd-compat/openbsd-compat.h] Fix prototypes, spotted by Tim.	2010-01-16 13:30:30 +11:00
Darren Tucker	2563e3f272	- (dtucker) [openbsd-compat/openbsd-compat.h] Prototypes for user_from_uid and group_from_gid.	2010-01-16 11:53:07 +11:00
Darren Tucker	ca94485a48	- (dtucker) [openbsd-compat/pwcache.c] Pull in includes.h and thus defines.h so we correctly detect whether or not we have a native user_from_uid.	2010-01-16 11:48:27 +11:00
Darren Tucker	7fa3a856ea	typo	2010-01-15 13:12:10 +11:00
Darren Tucker	909a390bb8	- (dtucker) [configure.ac openbsd-compat/{Makefile.in,pwcache.c} Portability for pwcache. Also, added caching of negative hits.	2010-01-15 12:38:30 +11:00
Darren Tucker	9d1fd5bc10	- (dtucker) [openbsd-compat.c/pwcache.c] Pull in pwcache.c from OpenBSD (no changes yet but there will be some to come).	2010-01-15 12:14:45 +11:00
Darren Tucker	b8b17e984a	- guenther@cvs.openbsd.org 2010/01/15 00:05:22 [sftp.c] Reset SIGTERM to SIG_DFL before executing ssh, so that even if sftp inherited SIGTERM as ignored it will still be able to kill the ssh it starts. ok dtucker@	2010-01-15 11:46:03 +11:00
Darren Tucker	a788de2066	- dtucker@cvs.openbsd.org 2010/01/14 23:41:49 [sftp-common.c] use user_from{uid,gid} to lookup up ids since it keeps a small cache. ok djm	2010-01-15 11:45:33 +11:00
Darren Tucker	94881d8dbb	- djm@cvs.openbsd.org 2010/01/13 23:47:26 [auth.c] when using ChrootDirectory, make sure we test for the existence of the user's shell inside the chroot; bz #1679, patch from alex AT rtfs.hu; ok dtucker	2010-01-15 11:44:46 +11:00
Darren Tucker	75fe626489	- jmc@cvs.openbsd.org 2010/01/13 12:48:34 [sftp.1 sftp.c] sftp.1: put ls -h in the right place sftp.c: as above, plus add -p to get/put, and shorten their arg names to keep the help usage nicely aligned ok djm	2010-01-15 11:42:51 +11:00
Damien Miller	6abc9f68aa	- (djm) [platform.h] Add missing prototype for platform_krb5_get_principal_name	2010-01-14 12:44:16 +11:00
Tim Rice	d4a7fcbc46	- (tim) [defines.h] openbsd-compat/readpassphrase.c now needs _NSIG. feedback and ok dtucker@	2010-01-13 15:44:34 -08:00
Darren Tucker	096630d06c	- (dtucker) [sftp-common.c] Wrap include of util.h in an ifdef.	2010-01-13 23:00:38 +11:00
Darren Tucker	9c3ba07f60	- djm@cvs.openbsd.org 2010/01/13 04:10:50 [sftp.c] don't append a space after inserting a completion of a directory (i.e. a path ending in '/') for a slightly better user experience; ok dtucker@	2010-01-13 22:45:03 +11:00
Darren Tucker	88b6fb2b55	- djm@cvs.openbsd.org 2010/01/13 03:48:13 [servconf.c servconf.h sshd.c] avoid run-time failures when specifying hostkeys via a relative path by prepending the cwd in these cases; bz#1290; ok dtucker@	2010-01-13 22:44:29 +11:00
Darren Tucker	2901e2daeb	- djm@cvs.openbsd.org 2010/01/13 01:40:16 [sftp.c sftp-server.c sftp.1 sftp-common.c sftp-common.h] support '-h' (human-readable units) for sftp's ls command, just like ls(1); ok dtucker@	2010-01-13 22:44:06 +11:00
Darren Tucker	daaa450051	- dtucker@cvs.openbsd.org 2010/01/13 01:20:20 [canohost.c ssh-keysign.c sshconnect2.c] Make HostBased authentication work with a ProxyCommand. bz #1569, patch from imorgan at nas nasa gov, ok djm@	2010-01-13 22:43:33 +11:00
Darren Tucker	561724f38d	- dtucker@cvs.openbsd.org 2010/01/13 01:10:56 [key.c] Ignore and log any Protocol 1 keys where the claimed size is not equal to the actual size. Noted by Derek Martin, ok djm@	2010-01-13 22:43:05 +11:00
Darren Tucker	e2b3674172	- (dtucker) OpenBSD CVS Sync - dtucker@cvs.openbsd.org 2010/01/13 00:19:04 [sshconnect.c auth.c] Fix a couple of typos/mispellings in comments	2010-01-13 22:42:34 +11:00
Darren Tucker	d59487a33b	- (dtucker) [openbsd-compat/readpassphrase.c] Update to OpenBSD's r1.22. Fixes bz #1590, where sometimes you could not interrupt a connection while ssh was prompting for a passphrase or password.	2010-01-13 21:32:44 +11:00
Darren Tucker	1035cb4729	- (dtucker) [openbsd-compat/readpassphrase.c] Update to OpenBSD's r1.21.	2010-01-13 18:32:59 +11:00
Darren Tucker	ab3c2cab18	- (dtucker) [openbsd-compat/readpassphrase.c] Resync against OpenBSD's r1.18: missing restore of SIGTTOU and some whitespace.	2010-01-13 18:27:32 +11:00
Darren Tucker	a8f20cff82	- (dtucker) [monitor_fdpass.c] Wrap poll.h include in ifdefs.	2010-01-13 10:54:46 +11:00
Darren Tucker	09aa4c000e	- dtucker@cvs.openbsd.org 2010/01/12 08:33:17 [session.c] Add explicit stat so we reliably detect nologin with bad perms. ok djm markus	2010-01-12 19:51:48 +11:00
Darren Tucker	ebc71d908c	- djm@cvs.openbsd.org 2010/01/12 01:36:08 [buffer.h bufaux.c] add a buffer_get_string_ptr_ret() that does the same as buffer_get_string_ptr() but does not fatal() on error; ok dtucker@	2010-01-12 19:45:59 +11:00
Darren Tucker	1b0c2455da	- dtucker@cvs.openbsd.org 2010/01/12 01:31:05 [session.c] Do not allow logins if /etc/nologin exists but is not readable by the user logging in. Noted by Jan.Pechanec at Sun, ok djm@ deraadt@	2010-01-12 19:45:26 +11:00
Darren Tucker	c6cc90b465	- djm@cvs.openbsd.org 2010/01/12 00:59:29 [roaming_common.c] delete with extreme prejudice a debug() that fired with every keypress; ok dtucker deraadt	2010-01-12 19:43:46 +11:00
Darren Tucker	e371a13238	- djm@cvs.openbsd.org 2010/01/12 00:58:25 [monitor_fdpass.c] avoid spinning when fd passing on nonblocking sockets by calling poll() in the EINTR/EAGAIN path, much like we do in atomicio; ok dtucker@	2010-01-12 19:43:12 +11:00
Darren Tucker	69c01b1c4a	- dtucker@cvs.openbsd.org 2010/01/12 00:16:47 [authfile.c] Fix bug introduced in r1.78 (incorrect brace location) that broke key auth. Patch from joachim joachimschipper nl.	2010-01-12 19:42:29 +11:00
Darren Tucker	d04758dc4c	- djm@cvs.openbsd.org 2010/01/11 10:51:07 [ssh-keygen.c] when converting keys, truncate key comments at 72 chars as per RFC4716; bz#1630 reported by tj AT castaglia.org; ok markus@	2010-01-12 19:41:57 +11:00
Darren Tucker	d4c86b1325	- dtucker@cvs.openbsd.org 2010/01/11 04:46:45 [authfile.c sshconnect2.c] Do not prompt for a passphrase if we fail to open a keyfile, and log the reason the open failed to debug. bz #1693, found by tj AT castaglia org, ok djm@	2010-01-12 19:41:22 +11:00
Darren Tucker	7ad8dd21da	- dtucker@cvs.openbsd.org 2010/01/11 01:39:46 [ssh_config channels.c ssh.1 channels.h ssh.c] Add a 'netcat mode' (ssh -W). This connects stdio on the client to a single port forward on the server. This allows, for example, using ssh as a ProxyCommand to route connections via intermediate servers. bz #1618, man page help from jmc@, ok markus@	2010-01-12 19:40:27 +11:00
Darren Tucker	43551527dc	- dtucker@cvs.openbsd.org 2010/01/10 07:15:56 [auth.c] Output a debug if we can't open an existing keyfile. bz#1694, ok djm@	2010-01-10 19:27:17 +11:00
Darren Tucker	d3300454d8	- dtucker@cvs.openbsd.org 2010/01/10 03:51:17 [servconf.c] Add ChrootDirectory to sshd.c test-mode output	2010-01-10 19:26:43 +11:00
Darren Tucker	7bd98e7f74	- dtucker@cvs.openbsd.org 2010/01/09 23:04:13 [channels.c ssh.1 servconf.c sshd_config.5 sshd.c channels.h servconf.h ssh-keyscan.1 ssh-keyscan.c readconf.c sshconnect.c misc.c ssh.c readconf.h scp.1 sftp.1 ssh_config.5 misc.h] Remove RoutingDomain from ssh since it's now not needed. It can be replaced with "route exec" or "nc -V" as a proxycommand. "route exec" also ensures that trafic such as DNS lookups stays withing the specified routingdomain. For example (from reyk): # route -T 2 exec /usr/sbin/sshd or inherited from the parent process $ route -T 2 exec sh $ ssh 10.1.2.3 ok deraadt@ markus@ stevesk@ reyk@	2010-01-10 10:31:12 +11:00
Darren Tucker	8c65f646a9	- (dtucker) [configure.ac misc.c readconf.c servconf.c ssh-keyscan.c] Remove hacks add for RoutingDomain in preparation for its removal.	2010-01-10 10:26:57 +11:00
Darren Tucker	269275c90c	- (dtucker) [defines.h] Remove now-undeeded PRIu64 define.	2010-01-09 22:33:37 +11:00

1 2 3 4 5 ...

5430 Commits