-20010105
+20010218
+ - (bal) Patch for fix FCHMOD reference in ftp-client.c by Tim Rice
+ <tim@multitalents.net>
+ - (Bal) Patch for lack of RA_RESTART in misc.c for mysignal by
+ stevesk
+
+20010217
+ - (bal) OpenBSD Sync:
+ - markus@cvs.openbsd.org 2001/02/16 13:38:18
+ [channel.c]
+ remove debug
+ - markus@cvs.openbsd.org 2001/02/16 14:03:43
+ [session.c]
+ proper payload-length check for x11 w/o screen-number
+
+20010216
+ - (bal) added '--with-prce' to allow overriding of system regex when
+ required (tested by David Dulek <ddulek@fastenal.com>)
+ - (bal) Added DG/UX case and set that they have a broken IPTOS.
+ - (djm) Mini-configure reorder patch from Tim Rice <tim@multitalents.net>
+ Fixes linking on SCO.
+ - (djm) Make gnome-ssh-askpass handle multi-line prompts. Patch from
+ Nalin Dahyabhai <nalin@redhat.com>
+ - (djm) BSD license for gnome-ssh-askpass (was X11)
+ - (djm) KNF on gnome-ssh-askpass
+ - (djm) USE_PIPES for a few more sysv platforms
+ - (djm) Cleanup configure.in a little
+ - (djm) Ask users to check config.log when we can't find necessary libs
+ - (djm) Set "login ID" on systems with setluid. Only enabled for SCO
+ OpenServer for now. Based on patch from svaughan <svaughan@asterion.com>
+ - (djm) OpenBSD CVS:
+ - markus@cvs.openbsd.org 2001/02/15 16:19:59
+ [channels.c channels.h serverloop.c sshconnect.c sshconnect.h]
+ [sshconnect1.c sshconnect2.c]
+ genericize password padding function for SSH1 and SSH2.
+ add stylized echo to 2, too.
+ - (djm) Add roundup() macro to defines.h
+ - (stevesk) set SA_RESTART flag in mysignal() for SIGCHLD;
+ needed on Unixware 2.x.
+
+20010215
+ - (djm) Move PAM session setup back to before setuid to user. Fixes
+ problems on Solaris-derived PAMs.
+ - (djm) Clean up PAM namespace. Suggested by Darren Moffat
+ <Darren.Moffat@eng.sun.com>
+ - (bal) Sync w/ OpenSSH for new release
+ - markus@cvs.openbsd.org 2001/02/12 12:45:06
+ [sshconnect1.c]
+ fix xmalloc(0), ok dugsong@
+ - markus@cvs.openbsd.org 2001/02/11 12:59:25
+ [Makefile.in sshd.8 sshconnect2.c readconf.h readconf.c packet.c
+ sshd.c ssh.c ssh.1 servconf.h servconf.c myproposal.h kex.h kex.c]
+ 1) clean up the MAC support for SSH-2
+ 2) allow you to specify the MAC with 'ssh -m'
+ 3) or the 'MACs' keyword in ssh(d)_config
+ 4) add hmac-{md5,sha1}-96
+ ok stevesk@, provos@
+ - markus@cvs.openbsd.org 2001/02/12 16:16:23
+ [auth-passwd.c auth.c auth.h auth1.c auth2.c servconf.c servconf.h
+ ssh-keygen.c sshd.8]
+ PermitRootLogin={yes,without-password,forced-commands-only,no}
+ (before this change, root could login even if PermitRootLogin==no)
+ - deraadt@cvs.openbsd.org 2001/02/12 22:56:09
+ [clientloop.c packet.c ssh-keyscan.c]
+ deal with EAGAIN/EINTR selects which were skipped
+ - markus@cvs.openssh.org 2001/02/13 22:49:40
+ [auth1.c auth2.c]
+ setproctitle(user) only if getpwnam succeeds
+ - markus@cvs.openbsd.org 2001/02/12 23:26:20
+ [sshd.c]
+ missing memset; from solar@openwall.com
+ - stevesk@cvs.openbsd.org 2001/02/12 20:53:33
+ [sftp-int.c]
+ lumask now works with 1 numeric arg; ok markus@, djm@
+ - djm@cvs.openbsd.org 2001/02/14 9:46:03
+ [sftp-client.c sftp-int.c sftp.1]
+ Fix and document 'preserve modes & times' option ('-p' flag in sftp);
+ ok markus@
+ - (bal) replaced PATH_MAX in sftp-int.c w/ MAXPATHLEN.
+ - (djm) Move to Jim's 1.2.0 X11 askpass program
+ - (stevesk) OpenBSD sync:
+ - deraadt@cvs.openbsd.org 2001/02/15 01:38:04
+ [serverloop.c]
+ indent
+
+20010214
+ - (djm) Don't try to close PAM session or delete credentials if the
+ session has not been open or credentials not set. Based on patch from
+ Andrew Bartlett <abartlet@pcug.org.au>
+ - (djm) Move PAM session initialisation until after fork in sshd. Patch
+ from Nalin Dahyabhai <nalin@redhat.com>
+ - (bal) Missing function prototype in bsd-snprintf.c patch by
+ Mark Miller <markm@swoon.net>
+ - (djm) Split out and improve OSF SIA auth code. Patch from Chris Adams
+ <cmadams@hiwaay.net> with a little modification and KNF.
+ - (stevesk) fix for SIA patch, misplaced session_setup_sia()
+
+20010213
+ - (djm) Only test -S potential EGD sockets if they exist and are readable.
+ - (bal) Cleaned out bsd-snprintf.c. VARARGS have been banished and
+ I did a base KNF over the whe whole file to make it more acceptable.
+ (backed out of original patch and removed it from ChangeLog)
+ - (bal) Use chown() if fchown() does not exist in ftp-server.c patch by
+ Tim Rice <tim@multitalents.net>
+ - (stevesk) auth1.c: fix PAM passwordless check.
+
+20010212
+ - (djm) Update Redhat specfile to allow --define "skip_x11_askpass 1",
+ --define "skip_gnome_askpass 1", --define "rh7 1" and make the
+ implicit rpm-3.0.5 dependancy explicit. Patch and suggestions from
+ Pekka Savola <pekkas@netcore.fi>
+ - (djm) Clean up PCRE text in INSTALL
+ - (djm) Fix OSF SIA auth NULL pointer deref. Report from Mike Battersby
+ <mib@unimelb.edu.au>
+ - (bal) NCR SVR4 compatiblity provide by Don Bragg <thewizarddon@yahoo.com>
+ - (stevesk) session.c: remove debugging code.
+
+20010211
+ - (bal) OpenBSD Sync
+ - markus@cvs.openbsd.org 2001/02/07 22:35:46
+ [auth1.c auth2.c sshd.c]
+ move k_setpag() to a central place; ok dugsong@
+ - markus@cvs.openbsd.org 2001/02/10 12:52:02
+ [auth2.c]
+ offer passwd before s/key
+ - markus@cvs.openbsd.org 2001/02/8 22:37:10
+ [canohost.c]
+ remove last call to sprintf; ok deraadt@
+ - markus@cvs.openbsd.org 2001/02/10 1:33:32
+ [canohost.c]
+ add debug message, since sshd blocks here if DNS is not available
+ - markus@cvs.openbsd.org 2001/02/10 12:44:02
+ [cli.c]
+ don't call vis() for \r
+ - danh@cvs.openbsd.org 2001/02/10 0:12:43
+ [scp.c]
+ revert a small change to allow -r option to work again; ok deraadt@
+ - danh@cvs.openbsd.org 2001/02/10 15:14:11
+ [scp.c]
+ fix memory leak; ok markus@
+ - djm@cvs.openbsd.org 2001/02/10 0:45:52
+ [scp.1]
+ Mention that you can quote pathnames with spaces in them
+ - markus@cvs.openbsd.org 2001/02/10 1:46:28
+ [ssh.c]
+ remove mapping of argv[0] -> hostname
+ - markus@cvs.openbsd.org 2001/02/06 22:26:17
+ [sshconnect2.c]
+ do not ask for passphrase in batch mode; report from ejb@ql.org
+ - itojun@cvs.opebsd.org 2001/02/08 10:47:05
+ [sshconnect.c sshconnect1.c sshconnect2.c]
+ %.30s is too short for IPv6 numeric address. use %.128s for now.
+ markus ok
+ - markus@cvs.openbsd.org 2001/02/09 12:28:35
+ [sshconnect2.c]
+ do not free twice, thanks to /etc/malloc.conf
+ - markus@cvs.openbsd.org 2001/02/09 17:10:53
+ [sshconnect2.c]
+ partial success: debug->log; "Permission denied" if no more auth methods
+ - markus@cvs.openbsd.org 2001/02/10 12:09:21
+ [sshconnect2.c]
+ remove some lines
+ - markus@cvs.openbsd.org 2001/02/09 13:38:07
+ [auth-options.c]
+ reset options if no option is given; from han.holl@prismant.nl
+ - markus@cvs.openbsd.org 2001/02/08 21:58:28
+ [channels.c]
+ nuke sprintf, ok deraadt@
+ - markus@cvs.openbsd.org 2001/02/08 21:58:28
+ [channels.c]
+ nuke sprintf, ok deraadt@
+ - markus@cvs.openbsd.org 2001/02/06 22:43:02
+ [clientloop.h]
+ remove confusing callback code
+ - deraadt@cvs.openbsd.org 2001/02/08 14:39:36
+ [readconf.c]
+ snprintf
+ - itojun@cvs.openbsd.org 2001/02/08 19:30:52
+ sync with netbsd tree changes.
+ - more strict prototypes, include necessary headers
+ - use paths.h/pathnames.h decls
+ - size_t typecase to int -> u_long
+ - itojun@cvs.openbsd.org 2001/02/07 18:04:50
+ [ssh-keyscan.c]
+ fix size_t -> int cast (use u_long). markus ok
+ - markus@cvs.openbsd.org 2001/02/07 22:43:16
+ [ssh-keyscan.c]
+ s/getline/Linebuf_getline/; from roumen.petrov@skalasoft.com
+ - itojun@cvs.openbsd.org 2001/02/09 9:04:59
+ [ssh-keyscan.c]
+ do not assume malloc() returns zero-filled region. found by
+ malloc.conf=AJ.
+ - markus@cvs.openbsd.org 2001/02/08 22:35:30
+ [sshconnect.c]
+ don't connect if batch_mode is true and stricthostkeychecking set to
+ 'ask'
+ - djm@cvs.openbsd.org 2001/02/04 21:26:07
+ [sshd_config]
+ type: ok markus@
+ - deraadt@cvs.openbsd.org 2001/02/06 22:07:50
+ [sshd_config]
+ enable sftp-server by default
+ - deraadt 2001/02/07 8:57:26
+ [xmalloc.c]
+ deal with new ANSI malloc stuff
+ - markus@cvs.openbsd.org 2001/02/07 16:46:08
+ [xmalloc.c]
+ typo in fatal()
+ - itojun@cvs.openbsd.org 2001/02/07 18:04:50
+ [xmalloc.c]
+ fix size_t -> int cast (use u_long). markus ok
+ - 1.47 Thu Feb 8 23:11:42 GMT 2001 by dugsong
+ [serverloop.c sshconnect1.c]
+ mitigate SSH1 traffic analysis - from Solar Designer
+ <solar@openwall.com>, ok provos@
+ - (bal) fixed sftp-client.c. Return 'status' instead of '0'
+ (from the OpenBSD tree)
+ - (bal) Synced ssh.1, ssh-add.1 and sshd.8 w/ OpenBSD
+ - (bal) sftp-sever.c '%8lld' to '%8llu' (OpenBSD Sync)
+ - (bal) uuencode.c resync w/ OpenBSD tree, plus whitespace.
+ - (bal) A bit more whitespace cleanup
+ - (djm) Set PAM_RHOST earlier, patch from Andrew Bartlett
+ <abartlet@pcug.org.au>
+ - (stevesk) misc.c: ssh.h not needed.
+ - (stevesk) compat.c: more friendly cpp error
+ - (stevesk) OpenBSD sync:
+ - stevesk@cvs.openbsd.org 2001/02/11 06:15:57
+ [LICENSE]
+ typos and small cleanup; ok deraadt@
+
+20010210
+ - (djm) Sync sftp and scp stuff from OpenBSD:
+ - djm@cvs.openbsd.org 2001/02/07 03:55:13
+ [sftp-client.c]
+ Don't free handles before we are done with them. Based on work from
+ Corinna Vinschen <vinschen@redhat.com>. ok markus@
+ - djm@cvs.openbsd.org 2001/02/06 22:32:53
+ [sftp.1]
+ Punctuation fix from Pekka Savola <pekkas@netcore.fi>
+ - deraadt@cvs.openbsd.org 2001/02/07 04:07:29
+ [sftp.1]
+ pretty up significantly
+ - itojun@cvs.openbsd.org 2001/02/07 06:49:42
+ [sftp.1]
+ .Bl-.El mismatch. markus ok
+ - djm@cvs.openbsd.org 2001/02/07 06:12:30
+ [sftp-int.c]
+ Check that target is a directory before doing ls; ok markus@
+ - itojun@cvs.openbsd.org 2001/02/07 11:01:18
+ [scp.c sftp-client.c sftp-server.c]
+ unsigned long long -> %llu, not %qu. markus ok
+ - stevesk@cvs.openbsd.org 2001/02/07 11:10:39
+ [sftp.1 sftp-int.c]
+ more man page cleanup and sync of help text with man page; ok markus@
+ - markus@cvs.openbsd.org 2001/02/07 14:58:34
+ [sftp-client.c]
+ older servers reply with SSH2_FXP_NAME + count==0 instead of EOF
+ - djm@cvs.openbsd.org 2001/02/07 15:27:19
+ [sftp.c]
+ Don't forward agent and X11 in sftp. Suggestion from Roumen Petrov
+ <roumen.petrov@skalasoft.com>
+ - stevesk@cvs.openbsd.org 2001/02/07 15:36:04
+ [sftp-int.c]
+ portable; ok markus@
+ - stevesk@cvs.openbsd.org 2001/02/07 15:55:47
+ [sftp-int.c]
+ lowercase cmds[].c also; ok markus@
+ - markus@cvs.openbsd.org 2001/02/07 17:04:52
+ [pathnames.h sftp.c]
+ allow sftp over ssh protocol 1; ok djm@
+ - deraadt@cvs.openbsd.org 2001/02/08 07:38:55
+ [scp.c]
+ memory leak fix, and snprintf throughout
+ - deraadt@cvs.openbsd.org 2001/02/08 08:02:02
+ [sftp-int.c]
+ plug a memory leak
+ - stevesk@cvs.openbsd.org 2001/02/08 10:11:23
+ [session.c sftp-client.c]
+ %i -> %d
+ - stevesk@cvs.openbsd.org 2001/02/08 10:57:59
+ [sftp-int.c]
+ typo
+ - stevesk@cvs.openbsd.org 2001/02/08 15:28:07
+ [sftp-int.c pathnames.h]
+ _PATH_LS; ok markus@
+ - djm@cvs.openbsd.org 2001/02/09 04:46:25
+ [sftp-int.c]
+ Check for NULL attribs for chown, chmod & chgrp operations, only send
+ relevant attribs back to server; ok markus@
+ - djm@cvs.openbsd.org 2001/02/06 15:05:25
+ [sftp.c]
+ Use getopt to process commandline arguments
+ - djm@cvs.openbsd.org 2001/02/06 15:06:21
+ [sftp.c ]
+ Wait for ssh subprocess at exit
+ - djm@cvs.openbsd.org 2001/02/06 15:18:16
+ [sftp-int.c]
+ stat target for remote chdir before doing chdir
+ - djm@cvs.openbsd.org 2001/02/06 15:32:54
+ [sftp.1]
+ Punctuation fix from Pekka Savola <pekkas@netcore.fi>
+ - provos@cvs.openbsd.org 2001/02/05 22:22:02
+ [sftp-int.c]
+ cleanup get_pathname, fix pwd after failed cd. okay djm@
+ - (djm) Update makefile.in for _PATH_SFTP_SERVER
+ - (bal) sftp-client.c replace NULL w/ 0 in do_ls() (pending in OpenBSD tree)
+
+20010209
+ - (bal) patch to vis.c to deal with HAVE_VIS right by Robert Mooney
+ <rjmooney@mediaone.net>
+ - (bal) .c.o rule in openbsd-compat/Makefile.in did not make it to the
+ main tree while porting forward. Pointed out by Lutz Jaenicke
+ <Lutz.Jaenicke@aet.TU-Cottbus.DE>
+ - (bal) double entry in configure.in. Pointed out by Lutz Jaenicke
+ <Lutz.Jaenicke@aet.TU-Cottbus.DE>
+ - (stevesk) OpenBSD sync:
+ - markus@cvs.openbsd.org 2001/02/08 11:20:01
+ [auth2.c]
+ strict checking
+ - markus@cvs.openbsd.org 2001/02/08 11:15:22
+ [version.h]
+ update to 2.3.2
+ - markus@cvs.openbsd.org 2001/02/08 11:12:30
+ [auth2.c]
+ fix typo
+ - (djm) Update spec files
+ - (bal) OpenBSD sync:
+ - deraadt@cvs.openbsd.org 2001/02/08 14:38:54
+ [scp.c]
+ memory leak fix, and snprintf throughout
+ - markus@cvs.openbsd.org 2001/02/06 22:43:02
+ [clientloop.c]
+ remove confusing callback code
+ - (djm) Add CVS Id's to files that we have missed
+ - (bal) OpenBSD Sync (more):
+ - itojun@cvs.openbsd.org 2001/02/08 19:30:52
+ sync with netbsd tree changes.
+ - more strict prototypes, include necessary headers
+ - use paths.h/pathnames.h decls
+ - size_t typecase to int -> u_long
+ - markus@cvs.openbsd.org 2001/02/06 22:07:42
+ [ssh.c]
+ fatal() if subsystem fails
+ - markus@cvs.openbsd.org 2001/02/06 22:43:02
+ [ssh.c]
+ remove confusing callback code
+ - jakob@cvs.openbsd.org 2001/02/06 23:03:24
+ [ssh.c]
+ add -1 option (force protocol version 1). ok markus@
+ - jakob@cvs.openbsd.org 2001/02/06 23:06:21
+ [ssh.c]
+ reorder -{1,2,4,6} options. ok markus@
+ - (bal) Missing 'const' in readpass.h
+ - (bal) OpenBSD Sync (so at least the thing compiles for 2.3.2 =)
+ - djm@cvs.openbsd.org 2001/02/06 23:30:28
+ [sftp-client.c]
+ replace arc4random with counter for request ids; ok markus@
+ - (djm) Define _PATH_TTY for systems that don't. Report from Lutz
+ Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
+
+20010208
+ - (djm) Don't delete external askpass program in make uninstall target.
+ Report and fix from Roumen Petrov <roumen.petrov@skalasoft.com>
+ - (djm) Fix linking of sftp, don't need arc4random any more.
+ - (djm) Try to use shell that supports "test -S" for EGD socket search.
+ Based on patch from Tim Rice <tim@multitalents.net>
+
+20010207
+ - (bal) Save the whole path to AR in configure. Some Solaris 2.7 installs
+ seem lose track of it while in openbsd-compat/ (two confirmed reports)
+ - (djm) Much KNF on PAM code
+ - (djm) Revise auth-pam.c conversation function to be a little more
+ readable.
+ - (djm) Revise kbd-int PAM conversation function to fold all text messages
+ to before first prompt. Fixes hangs if last pam_message did not require
+ a reply.
+ - (djm) Fix password changing when using PAM kbd-int authentication
+
+20010205
- (bal) Disable groupaccess by setting NGROUPS_MAX to 0 for platforms
that don't have NGROUPS_MAX.
- (bal) AIX patch for auth1.c by William L. Jones <jones@hpc.utexas.edu>
- stevesk@cvs.openbsd.org 2001/02/04 06:30:12
[auth2.c authfd.c packet.c]
remove duplicate #include's; ok markus@
+ - deraadt@cvs.openbsd.org 2001/02/04 16:56:23
+ [scp.c sshd.c]
+ alpha happiness
+ - stevesk@cvs.openbsd.org 2001/02/04 15:12:17
+ [sshd.c]
+ precedence; ok markus@
+ - deraadt@cvs.openbsd.org 2001/02/04 08:14:15
+ [ssh.c sshd.c]
+ make the alpha happy
+ - markus@cvs.openbsd.org 2001/01/31 13:37:24
+ [channels.c channels.h serverloop.c ssh.c]
+ do not disconnect if local port forwarding fails, e.g. if port is
+ already in use
+ - markus@cvs.openbsd.org 2001/02/01 14:58:09
+ [channels.c]
+ use ipaddr in channel messages, ietf-secsh wants this
+ - markus@cvs.openbsd.org 2001/01/31 12:26:20
+ [channels.c]
+ ssh.com-2.0.1x does not send additional info in CHANNEL_OPEN_FAILURE
+ messages; bug report from edmundo@rano.org
+ - markus@cvs.openbsd.org 2001/01/31 13:48:09
+ [sshconnect2.c]
+ unused
+ - deraadt@cvs.openbsd.org 2001/02/04 08:23:08
+ [sftp-client.c sftp-server.c]
+ make gcc on the alpha even happier
-20010104
+20010204
- (bal) I think this is the last of the bsd-*.h that don't belong.
- (bal) Minor Makefile fix
- (bal) openbsd-compat/Makefile minor fix. Ensure dependancies are done
SIGCHLD handler.
- (djm) Use setvbuf() instead of setlinebuf(). Suggest from stevesk@
-20010103
+20010203
- (bal) Cygwin clean up by Corinna Vinschen <vinschen@redhat.com>
- (bal) renamed queue.h to fake-queue.h (even if it's an OpenBSD
based file) to ensure #include space does not get confused.
- (bal) Minor Makefile.in tweak. dirname may not exist on some
platforms so builds fail. (NeXT being a well known one)
-20010102
+20010202
- (bal) Makefile fix where sourcedir != builddir by Corinna Vinschen
<vinschen@redhat.com>
- (bal) Makefile fix to use $(MAKE) instead of 'make' for platforms
that use 'gmake'. Patch by Tim Rice <tim@multitalents.net>
-20010101
+20010201
- (bal) Minor fix to Makefile to stop rebuilding executables if no
changes have occured to any of the supporting code. Patch by
Roumen Petrov <roumen.petrov@skalasoft.com>
- markus@cvs.openbsd.org 2001/01/10 22:56:22
[bufaux.h bufaux.c sftp-server.c sftp.h getput.h]
cleanup sftp-server implementation:
- add buffer_get_int64, buffer_put_int64, GET_64BIT, PUT_64BIT
- parse SSH2_FILEXFER_ATTR_EXTENDED
- send SSH2_FX_EOF if readdir returns no more entries
- reply to SSH2_FXP_EXTENDED message
- use #defines from the draft
- move #definations to sftp.h
+ add buffer_get_int64, buffer_put_int64, GET_64BIT, PUT_64BIT
+ parse SSH2_FILEXFER_ATTR_EXTENDED
+ send SSH2_FX_EOF if readdir returns no more entries
+ reply to SSH2_FXP_EXTENDED message
+ use #defines from the draft
+ move #definations to sftp.h
more info:
http://www.ietf.org/internet-drafts/draft-ietf-secsh-filexfer-00.txt
- markus@cvs.openbsd.org 2001/01/10 19:43:20
- Wrote replacements for OpenBSD arc4random* functions
- Wrote replacements for strlcpy and mkdtemp
- Released 1.0pre1
+
+$Id$