X-Git-Url: http://andersk.mit.edu/gitweb/openssh.git/blobdiff_plain/9ff6f66f4058dd76b663bb87fa6e71024f83cd20..2043936ff8b350d36b489e78c804333608535383:/ChangeLog diff --git a/ChangeLog b/ChangeLog index 75b425ad..11ff3199 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,269 @@ +20010919 + - (bal) OpenbSD Sycn + - markus@cvs.openbsd.org 2001/09/19 10:08:51 + [sshd.8] + command=xxx applies to subsystem now, too + - markus@cvs.openbsd.org 2001/09/19 13:23:29 + [key.c] + key_read() now returns -1 on type mismatch, too + - stevesk@cvs.openbsd.org 2001/09/19 19:24:19 + [readconf.c readconf.h scp.c sftp.c ssh.1] + add ClearAllForwardings ssh option and set it in scp and sftp; ok + markus@ + - stevesk@cvs.openbsd.org 2001/09/19 19:35:30 + [authfd.c] + use sizeof addr vs. SUN_LEN(addr) for sockaddr_un. Stevens + blesses this and we do it this way elsewhere. this helps in + portable because not all systems have SUN_LEN() and + sockaddr_un.sun_len. ok markus@ + - stevesk@cvs.openbsd.org 2001/09/19 21:04:53 + [sshd.8] + missing -t in usage + +20010918 + - (djm) Configure support for smartcards. Based on Ben's work. + - (djm) Revert setgroups call, it causes problems on OS-X + - (djm) Avoid warning on BSDgetopt + - (djm) More makefile infrastructre for smartcard support, also based + on Ben's work + - (djm) Specify --datadir in RPM spec files so smartcard applet gets + put somewhere sane. Add Ssh.bin to manifest. + - (djm) Make smartcard support conditional in Redhat RPM spec + - (bal) LICENCE update. Has not been done in a while. + - (stevesk) nchan.c: we use X/Open Sockets on HP-UX now so shutdown(2) + returns ENOTCONN vs. EINVAL for socket not connected; remove EINVAL + check. ok Lutz Jaenicke + - OpenBSD CVS Sync + - stevesk@cvs.openbsd.org 2001/09/17 17:57:57 + [scp.1 scp.c sftp.1 sftp.c] + add -Fssh_config option; ok markus@ + - stevesk@cvs.openbsd.org 2001/09/17 19:27:15 + [kexdh.c kexgex.c key.c key.h ssh-dss.c ssh-keygen.c ssh-rsa.c] + u_char*/char* cleanup; ok markus + - markus@cvs.openbsd.org 2001/09/17 20:22:14 + [scard.c] + never keep a connection to the smartcard open. + allows ssh-keygen -D U while the agent is running; report from + jakob@ + - stevesk@cvs.openbsd.org 2001/09/17 20:38:09 + [sftp.1 sftp.c] + cleanup and document -1, -s and -S; ok markus@ + - markus@cvs.openbsd.org 2001/09/17 20:50:22 + [key.c ssh-keygen.c] + better error handling if you try to export a bad key to ssh.com + - markus@cvs.openbsd.org 2001/09/17 20:52:47 + [channels.c channels.h clientloop.c] + try to fix agent-forwarding-backconnection-bug, as seen on HPUX, + for example; with Lutz.Jaenicke@aet.TU-Cottbus.DE, + - markus@cvs.openbsd.org 2001/09/17 21:04:02 + [channels.c serverloop.c] + don't send fake dummy packets on CR (\r) + bugreport from yyua@cs.sfu.ca via solar@@openwall.com + - markus@cvs.openbsd.org 2001/09/17 21:09:47 + [compat.c] + more versions suffering the SSH_BUG_DEBUG bug; + 3.0.x reported by dbutts@maddog.storability.com + - stevesk@cvs.openbsd.org 2001/09/17 23:56:07 + [scp.1] + missing -B in usage string + +20010917 + - (djm) x11-ssh-askpass-1.2.4 in RPM spec, revert workarounds + - (tim) [includes.h openbsd-compat/getopt.c openbsd-compat/getopt.h] + rename getopt() to BSDgetopt() to keep form conflicting with + system getopt(). + [Makefile.in configure.in] disable filepriv until I can add + missing procpriv calls. + +20010916 + - (djm) Workaround XFree breakage in RPM spec file + - (bal) OpenBSD CVS Sync + - markus@cvs.openbsd.org 2001/09/16 14:46:54 + [session.c] + calls krb_afslog() after setting $HOME; mattiasa@e.kth.se; fixes + pr 1943b + +20010915 + - (djm) Make do_pre_login static to avoid prototype #ifdef hell + - (djm) Sync scard/ stuff + - (djm) Redhat spec file cleanups from Pekka Savola and + Redhat + - (djm) Redhat initscript config sanity checking from Pekka Savola + + - (djm) Clear supplemental groups at sshd start to prevent them from + being propogated to random PAM modules. Based on patch from Redhat via + Pekka Savola + - (djm) Make sure rijndael.c picks config.h + - (djm) Ensure that u_char gets defined + +20010914 + - (bal) OpenBSD CVS Sync + - markus@cvs.openbsd.org 2001/09/13 + [rijndael.c rijndael.h] + missing $OpenBSD + - markus@cvs.openbsd.org 2001/09/14 + [session.c] + command=xxx overwrites subsystems, too + - markus@cvs.openbsd.org 2001/09/14 + [sshd.c] + typo + +20010913 + - (bal) OpenBSD CVS Sync + - markus@cvs.openbsd.org 2001/08/23 11:31:59 + [cipher.c cipher.h] + switch to the optimised AES reference code from + http://www.esat.kuleuven.ac.be/~rijmen/rijndael/rijndael-fst-3.0.zip + +20010912 + - (bal) OpenBSD CVS Sync + - jakob@cvs.openbsd.org 2001/08/16 19:18:34 + [servconf.c servconf.h session.c sshd.8] + deprecate CheckMail. ok markus@ + - stevesk@cvs.openbsd.org 2001/08/16 20:14:57 + [ssh.1 sshd.8] + document case sensitivity for ssh, sshd and key file + options and arguments; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/17 18:59:47 + [servconf.h] + typo in comment + - stevesk@cvs.openbsd.org 2001/08/21 21:47:42 + [ssh.1 sshd.8] + minor typos and cleanup + - stevesk@cvs.openbsd.org 2001/08/22 16:21:21 + [ssh.1] + hostname not optional; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/22 16:30:02 + [sshd.8] + no rexd; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/22 17:45:16 + [ssh.1] + document cipher des for protocol 1; ok deraadt@ + - camield@cvs.openbsd.org 2001/08/23 17:59:31 + [sshd.c] + end request with 0, not NULL + ok markus@ + - stevesk@cvs.openbsd.org 2001/08/23 18:02:48 + [ssh-agent.1] + fix usage; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/23 18:08:59 + [ssh-add.1 ssh-keyscan.1] + minor cleanup + - danh@cvs.openbsd.org 2001/08/27 22:02:13 + [ssh-keyscan.c] + fix memory fault if non-existent filename is given to the -f option + ok markus@ + - markus@cvs.openbsd.org 2001/08/28 09:51:26 + [readconf.c] + don't set DynamicForward unless Host matches + - markus@cvs.openbsd.org 2001/08/28 15:39:48 + [ssh.1 ssh.c] + allow: ssh -F configfile host + - markus@cvs.openbsd.org 2001/08/29 20:44:03 + [scp.c] + clear the malloc'd buffer, otherwise source() will leak malloc'd + memory; ok theo@ + - stevesk@cvs.openbsd.org 2001/08/29 23:02:21 + [sshd.8] + add text about -u0 preventing DNS requests; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/29 23:13:10 + [ssh.1 ssh.c] + document -D and DynamicForward; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/29 23:27:23 + [ssh.c] + validate ports for -L/-R; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/29 23:39:40 + [ssh.1 sshd.8] + additional documentation for GatewayPorts; ok markus@ + - naddy@cvs.openbsd.org 2001/08/30 15:42:36 + [ssh.1] + add -D to synopsis line; ok markus@ + - stevesk@cvs.openbsd.org 2001/08/30 16:04:35 + [readconf.c ssh.1] + validate ports for LocalForward/RemoteForward. + add host/port alternative syntax for IPv6 (like -L/-R). + ok markus@ + - stevesk@cvs.openbsd.org 2001/08/30 20:36:34 + [auth-options.c sshd.8] + validate ports for permitopen key file option. add host/port + alternative syntax for IPv6. ok markus@ + - markus@cvs.openbsd.org 2001/08/30 22:22:32 + [ssh-keyscan.c] + do not pass pointers to longjmp; fix from wayne@blorf.net + - markus@cvs.openbsd.org 2001/08/31 11:46:39 + [sshconnect2.c] + disable kbd-interactive if we don't get SSH2_MSG_USERAUTH_INFO_REQUEST + messages + - stevesk@cvs.openbsd.org 2001/09/03 20:58:33 + [readconf.c readconf.h ssh.c] + fatal() for nonexistent -Fssh_config. ok markus@ + - deraadt@cvs.openbsd.org 2001/09/05 06:23:07 + [scp.1 sftp.1 ssh.1 ssh-agent.1 sshd.8 ssh-keygen.1 ssh-keyscan.1] + avoid first person in manual pages + - stevesk@cvs.openbsd.org 2001/09/12 18:18:25 + [scp.c] + don't forward agent for non third-party copies; ok markus@ + +20010815 + - (bal) Fixed stray code in readconf.c that went in by mistake. + - OpenBSD CVS Sync + - markus@cvs.openbsd.org 2001/08/07 10:37:46 + [authfd.c authfd.h] + extended failure messages from galb@vandyke.com + - deraadt@cvs.openbsd.org 2001/08/08 07:16:58 + [scp.1] + when describing the -o option, give -o Protocol=1 as the specific example + since we are SICK AND TIRED of clueless people who cannot have difficulty + thinking on their own. + - markus@cvs.openbsd.org 2001/08/08 18:20:15 + [uidswap.c] + permanently_set_uid is a noop if user is not privilegued; + fixes bug on solaris; from sbi@uchicago.edu + - markus@cvs.openbsd.org 2001/08/08 21:34:19 + [uidswap.c] + undo last change; does not work for sshd + - jakob@cvs.openbsd.org 2001/08/11 22:51:27 + [ssh.c tildexpand.c] + fix more paths beginning with "//"; . + ok markus@ + - stevesk@cvs.openbsd.org 2001/08/13 23:38:54 + [scp.c] + don't need main prototype (also sync with rcp); ok markus@ + - markus@cvs.openbsd.org 2001/08/14 09:23:02 + [sftp.1 sftp-int.c] + "bye"; hk63a@netscape.net + - stevesk@cvs.openbsd.org 2001/08/14 17:54:29 + [scp.1 sftp.1 ssh.1] + consistent documentation and example of ``-o ssh_option'' for sftp and + scp; document keyword=argument for ssh. + - (bal) QNX resync. OK tim@ + +20010814 + - (stevesk) sshpty.c, cray.[ch]: whitespace, formatting and cleanup + for some #ifdef _CRAY code; ok wendyp@cray.com + - (stevesk) sshpty.c: return 0 on error in cray pty code; + ok wendyp@cray.com + - (stevesk) bsd-cray.c: utmp strings are not C strings + - (stevesk) bsd-cray.c: more cleanup; ok wendyp@cray.com + +20010812 + - (djm) Fix detection of long long int support. Based on patch from + Michael Stone . ok stevesk, tim + +20010808 + - (bal) Minor correction to inet_ntop.h. _BSD_RRESVPORT_H should be + _BSD_INET_NTOP_H. Pointed out by Mark Miller + +20010807 + - (tim) [configure.in sshconnect.c openbsd-compat/Makefile.in + openbsd-compat/openbsd-compat.h ] Add inet_ntop.c inet_ntop.h back + in. Needed for sshconnect.c + [sshconnect.c] fix INET6_ADDRSTRLEN for non IPv6 machines + [configure.in] make tests with missing libraries fail + patch by Wendy Palm + Added openbsd-compat/bsd-cray.h. Selective patches from + William L. Jones + 20010806 - OpenBSD CVS Sync - markus@cvs.openbsd.org 2001/07/22 21:32:27 @@ -91,6 +357,65 @@ [authfd.c authfd.h readconf.c readconf.h scard.c scard.h ssh-add.c ssh-agent.c ssh.c] use strings instead of ints for smartcard reader ids + - markus@cvs.openbsd.org 2001/08/01 22:16:45 + [ssh.1 sshd.8] + refer to current ietf drafts for protocol v2 + - markus@cvs.openbsd.org 2001/08/01 23:33:09 + [ssh-keygen.c] + allow uploading RSA keys for non-default AUT0 (sha1 over passphrase + like sectok). + - markus@cvs.openbsd.org 2001/08/01 23:38:45 + [scard.c ssh.c] + support finish rsa keys. + free public keys after login -> call finish -> close smartcard. + - markus@cvs.openbsd.org 2001/08/02 00:10:17 + [ssh-keygen.c] + add -D readerid option (download, i.e. print public RSA key to stdout). + check for card present when uploading keys. + use strings instead of ints for smartcard reader ids, too. + - jakob@cvs.openbsd.org 2001/08/02 08:58:35 + [ssh-keygen.c] + change -u (upload smartcard key) to -U. ok markus@ + - jakob@cvs.openbsd.org 2001/08/02 15:06:52 + [ssh-keygen.c] + more verbose usage(). ok markus@ + - jakob@cvs.openbsd.org 2001/08/02 15:07:23 + [ssh-keygen.1] + document smartcard upload/download. ok markus@ + - jakob@cvs.openbsd.org 2001/08/02 15:32:10 + [ssh.c] + add smartcard to usage(). ok markus@ + - jakob@cvs.openbsd.org 2001/08/02 15:43:57 + [ssh-agent.c ssh.c ssh-keygen.c] + add /* SMARTCARD */ to #else/#endif. ok markus@ + - jakob@cvs.openbsd.org 2001/08/02 16:14:05 + [scard.c ssh-agent.c ssh.c ssh-keygen.c] + clean up some /* SMARTCARD */. ok markus@ + - mpech@cvs.openbsd.org 2001/08/02 18:37:35 + [ssh-keyscan.1] + o) .Sh AUTHOR -> .Sh AUTHORS; + o) .Sh EXAMPLE -> .Sh EXAMPLES; + o) Delete .Sh OPTIONS. Text moved to .Sh DESCRIPTION; + + millert@ ok + - jakob@cvs.openbsd.org 2001/08/03 10:31:19 + [ssh-add.1] + document smartcard options. ok markus@ + - jakob@cvs.openbsd.org 2001/08/03 10:31:30 + [ssh-add.c ssh-agent.c ssh-keyscan.c] + improve usage(). ok markus@ + - markus@cvs.openbsd.org 2001/08/05 23:18:20 + [ssh-keyscan.1 ssh-keyscan.c] + ssh 2 support; from wayned@users.sourceforge.net + - markus@cvs.openbsd.org 2001/08/05 23:29:58 + [ssh-keyscan.c] + make -t dsa work with commercial servers, too + - stevesk@cvs.openbsd.org 2001/08/06 19:47:05 + [scp.c] + use alarm vs. setitimer for portable; ok markus@ + - (bal) ssh-keyscan double -lssh hack due to seed_rng(). + - (bal) Second around of UNICOS patches. A few other things left. + Patches by William L. Jones 20010803 - (djm) Fix interrupted read in entropy gatherer. Spotted by markus@ on