]>
andersk Git - openssh.git/log
dtucker [Thu, 3 Jul 2003 10:37:47 +0000 (10:37 +0000)]
- djm@cvs.openbsd.org 2003/07/03 08:09:06
[readconf.c readconf.h ssh-keysign.c ssh.c]
fix AddressFamily option in config file, from brent@graveland.net;
ok markus@
dtucker [Thu, 3 Jul 2003 10:27:55 +0000 (10:27 +0000)]
- markus@cvs.openbsd.org 2003/07/03 08:24:13
[regress/Makefile]
enable tests for dynamic fwd via socks (-D), uses nc(1)
dtucker [Thu, 3 Jul 2003 10:26:04 +0000 (10:26 +0000)]
- markus@cvs.openbsd.org 2003/07/03 08:21:46
[regress/dynamic-forward.sh]
add socks5; speedup; reformat; based on patch from dtucker@zip.com.au
dtucker [Thu, 3 Jul 2003 06:20:42 +0000 (06:20 +0000)]
- markus@cvs.openbsd.org 2003/07/02 20:37:48
[ssh.c]
convert hostkeyalias to lowercase, otherwise uppercase aliases will
not match at all; ok henning@
dtucker [Thu, 3 Jul 2003 03:55:19 +0000 (03:55 +0000)]
- markus@cvs.openbsd.org 2003/07/02 14:51:16
[channels.c ssh.1 ssh_config.5]
(re)add socks5 suppport to -D; ok djm@
now ssh(1) can act both as a socks 4 and socks 5 server and
dynamically forward ports.
dtucker [Thu, 3 Jul 2003 03:52:04 +0000 (03:52 +0000)]
- markus@cvs.openbsd.org 2003/07/02 12:56:34
[channels.c]
deny dynamic forwarding with -R for v1, too; ok djm@
dtucker [Thu, 3 Jul 2003 03:48:04 +0000 (03:48 +0000)]
- markus@cvs.openbsd.org 2003/06/29 12:44:38
[sshconnect.c]
memset 0, not \0; andrushock@korovino.net
dtucker [Thu, 3 Jul 2003 03:46:56 +0000 (03:46 +0000)]
- deraadt@cvs.openbsd.org 2003/06/28 16:23:06
[atomicio.c atomicio.h authfd.c clientloop.c monitor_wrap.c msg.c
progressmeter.c scp.c sftp-client.c ssh-keyscan.c ssh.h sshconnect.c
sshd.c]
deal with typing of write vs read in atomicio
dtucker [Thu, 3 Jul 2003 03:40:44 +0000 (03:40 +0000)]
- djm@cvs.openbsd.org 2003/06/28 07:48:10
[sshd.c]
report pidfile creation errors, based on patch from Roumen Petrov; ok markus@
djm [Mon, 30 Jun 2003 09:21:36 +0000 (09:21 +0000)]
- (djm) Search for support functions necessary to build our
getrrsetbyname() replacement. Patch from Roumen Petrov
dtucker [Sun, 29 Jun 2003 11:30:41 +0000 (11:30 +0000)]
- (dtucker) [configure.ac] Add sanity test after system-dependant compiler
flag modifications.
dtucker [Sun, 29 Jun 2003 11:23:37 +0000 (11:23 +0000)]
- (dtucker) Bug #602: move #include of netdb.h to after in.h (fixes compiler
warnings on Solaris 2.5.1).
dtucker [Sun, 29 Jun 2003 11:20:04 +0000 (11:20 +0000)]
Same day...
djm [Sat, 28 Jun 2003 08:08:16 +0000 (08:08 +0000)]
- (djm) Bug #593: Sanity check OpenSC card reader number; patch from
aj@dungeon.inka.de
djm [Sat, 28 Jun 2003 08:02:47 +0000 (08:02 +0000)]
- (djm) Bug #591: use PKCS#15 private key label as a comment in case
of OpenSC. Report and patch from larsch@trustcenter.de
dtucker [Sat, 28 Jun 2003 04:27:29 +0000 (04:27 +0000)]
Add Roumen Petrov
dtucker [Sat, 28 Jun 2003 02:54:33 +0000 (02:54 +0000)]
- (dtucker) [configure.ac] Bug #570: Have ./configure --enable-FEATURE
actually enable the feature, for those normally disabled. Patch by
openssh (at) roumenpetrov.info.
dtucker [Sat, 28 Jun 2003 02:42:09 +0000 (02:42 +0000)]
- (dtucker) [regress/dynamic-forward.sh] Import new regression test.
dtucker [Sat, 28 Jun 2003 02:40:12 +0000 (02:40 +0000)]
- markus@cvs.openbsd.org 2003/06/26 20:08:33
[readconf.c]
do not dump core for 'ssh -o proxycommand host'; ok deraadt@
dtucker [Sat, 28 Jun 2003 02:39:03 +0000 (02:39 +0000)]
- miod@cvs.openbsd.org 2003/06/25 22:39:36
[sftp-server.c]
Typo police: attribute is better written with an 'r'.
dtucker [Sat, 28 Jun 2003 02:38:01 +0000 (02:38 +0000)]
- markus@cvs.openbsd.org 2003/06/24 08:23:46
[auth2-hostbased.c auth2-pubkey.c auth2.c channels.c key.c key.h
monitor.c packet.c packet.h serverloop.c sshconnect2.c sshd.c]
int -> u_int; ok djm@, deraadt@, mouring@
dtucker [Sat, 28 Jun 2003 02:33:12 +0000 (02:33 +0000)]
- markus@cvs.openbsd.org 2003/06/23 09:02:44
[ssh_config.5]
document EnableSSHKeysign; bugzilla #599; ok deraadt@, jmc@
dtucker [Tue, 24 Jun 2003 10:22:09 +0000 (10:22 +0000)]
- (dtucker) Have configure refer the user to config.log and
contrib/findssl.sh for OpenSSL header/library mismatches.
dtucker [Sun, 22 Jun 2003 11:22:04 +0000 (11:22 +0000)]
Missed a line cut-and-pasting the ChangeLog
dtucker [Sun, 22 Jun 2003 10:48:45 +0000 (10:48 +0000)]
20030622
- (dtucker) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/20 05:48:21
[sshd_config]
sync some implemented options; ok markus@
dtucker [Sun, 22 Jun 2003 10:46:53 +0000 (10:46 +0000)]
20030622
- (dtucker) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/20 05:47:58
[sshd_config.5]
sync description of protocol 2 cipher proposal; ok markus
dtucker [Sun, 22 Jun 2003 10:45:15 +0000 (10:45 +0000)]
- (dtucker) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/06/18 11:28:11
[ssh-rsa.c]
backout last change, since it violates pkcs#1
switch to share/misc/license.template
dtucker [Sun, 22 Jun 2003 08:32:10 +0000 (08:32 +0000)]
- (dtucker) [openbsd-compat/setproctitle.c] Ensure SPT_TYPE is defined before
testing its value.
When HAVE_SETPROCTITLE is defined (at least on NetBSD, gcc 2.95.3) the test
"#if SPT_TYPE == SPT_REUSEARGV" is not true (probably because SPT_TYPE or
SPT_REUSEARGV is not defined). This results in the following build error:
$ gcc [flags] setproctitle.c
setproctitle.c: In function `compat_init_setproctitle':
setproctitle.c:102: `argv_start' undeclared (first use in this function)
dtucker [Sun, 22 Jun 2003 02:33:27 +0000 (02:33 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- markus@cvs.openbsd.org 2003/06/21 09:14:05
[reconfigure.sh]
missing $SUDO; from dtucker@zip.com.au
- (dtucker) [regress/authorized_keys_root] Remove temp data file from CVS.
dtucker [Wed, 18 Jun 2003 12:45:34 +0000 (12:45 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- markus@cvs.openbsd.org 2003/06/12 15:43:32
[Makefile]
test -HUP; dtucker at zip.com.au
dtucker [Wed, 18 Jun 2003 12:43:13 +0000 (12:43 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- markus@cvs.openbsd.org 2003/06/12 15:40:01
[try-ciphers.sh]
add ctr
dtucker [Wed, 18 Jun 2003 12:41:41 +0000 (12:41 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- mouring@cvs.openbsd.org 2003/05/15 04:07:12
[sftp-cmds.sh]
Advanced put/get testing for sftp. OK @djm
dtucker [Wed, 18 Jun 2003 12:36:48 +0000 (12:36 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- markus@cvs.openbsd.org 2003/05/14 22:08:27
[ssh-com-client.sh ssh-com-keygen.sh ssh-com-sftp.sh ssh-com.sh]
test against some new commerical versions
dtucker [Wed, 18 Jun 2003 12:35:11 +0000 (12:35 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- djm@cvs.openbsd.org 2003/04/04 09:34:22
[Makefile sftp-cmds.sh]
More regression tests, including recent directory rename bug; ok markus@
dtucker [Wed, 18 Jun 2003 12:32:51 +0000 (12:32 +0000)]
- (dtucker) OpenBSD CVS Sync (regress/)
- markus@cvs.openbsd.org 2003/04/02 12:21:13
[Makefile]
enable rekey test
dtucker [Wed, 18 Jun 2003 12:21:33 +0000 (12:21 +0000)]
- (dtucker) [regress/copy.1 regress/copy.2] Remove temp data files from CVS.
dtucker [Wed, 18 Jun 2003 12:18:57 +0000 (12:18 +0000)]
- (dtucker) [reconfigure.sh rekey.sh sftp-badcmds.sh]
Import new regression tests from OpenBSD
djm [Wed, 18 Jun 2003 10:29:35 +0000 (10:29 +0000)]
- markus@cvs.openbsd.org 2003/06/17 18:14:23
[cipher-ctr.c]
use license from /usr/share/misc/license.template for new code
djm [Wed, 18 Jun 2003 10:29:18 +0000 (10:29 +0000)]
- markus@cvs.openbsd.org 2003/06/16 10:22:45
[ssh-add.c]
print out key comment on each prompt; make ssh-askpass more useable; ok djm@
djm [Wed, 18 Jun 2003 10:29:01 +0000 (10:29 +0000)]
- markus@cvs.openbsd.org 2003/06/16 08:22:35
[ssh-rsa.c]
make sure the signature has at least the expected length (don't
insist on len == hlen + oidlen, since this breaks some smartcards)
bugzilla #592; ok djm@
djm [Wed, 18 Jun 2003 10:28:40 +0000 (10:28 +0000)]
- markus@cvs.openbsd.org 2003/06/12 19:12:03
[scard.c scard.h ssh-agent.c ssh.c]
add sc_get_key_label; larsch at trustcenter.de; bugzilla#591
djm [Wed, 18 Jun 2003 10:26:34 +0000 (10:26 +0000)]
- nino@cvs.openbsd.org 2003/06/12 15:34:09
[scp.c]
Typo. Ok markus@.
djm [Wed, 18 Jun 2003 10:26:13 +0000 (10:26 +0000)]
- djm@cvs.openbsd.org 2003/06/12 12:22:47
[LICENCE]
mention more copyright holders; ok markus@
djm [Wed, 18 Jun 2003 10:25:33 +0000 (10:25 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/06/12 07:57:38
[monitor.c sshlogin.c sshpty.c]
typos; dtucker at zip.com.au
djm [Fri, 13 Jun 2003 22:43:22 +0000 (22:43 +0000)]
- (djm) Update license on fake-rfc2553.[ch]; ok itojun@
dtucker [Wed, 11 Jun 2003 13:56:41 +0000 (13:56 +0000)]
Fix typos in comments.
djm [Wed, 11 Jun 2003 12:51:32 +0000 (12:51 +0000)]
- (djm) Put licenses on substantial header files
djm [Wed, 11 Jun 2003 12:50:56 +0000 (12:50 +0000)]
- (djm) Mention portable copyright holders in LICENSE
djm [Wed, 11 Jun 2003 12:08:36 +0000 (12:08 +0000)]
- (djm) Sync LICENSE against OpenBSD
djm [Wed, 11 Jun 2003 12:06:33 +0000 (12:06 +0000)]
- djm@cvs.openbsd.org 2003/06/11 11:18:38
[authfd.c authfd.h ssh-add.c ssh-agent.c]
make agent constraints (lifetime, confirm) work with smartcard keys;
ok markus@
djm [Wed, 11 Jun 2003 12:05:45 +0000 (12:05 +0000)]
- jakob@cvs.openbsd.org 2003/06/11 10:18:47
[dns.c]
sync with check_host_key() change
djm [Wed, 11 Jun 2003 12:05:25 +0000 (12:05 +0000)]
- jakob@cvs.openbsd.org 2003/06/11 10:16:16
[sshconnect.c]
clean up check_host_key() and improve SSHFP feedback. ok markus@
djm [Wed, 11 Jun 2003 12:05:06 +0000 (12:05 +0000)]
- deraadt@cvs.openbsd.org 2003/06/10 22:20:52
[packet.c progressmeter.c]
mostly ansi cleanup; pval ok
djm [Wed, 11 Jun 2003 12:04:39 +0000 (12:04 +0000)]
- jmc@cvs.openbsd.org 2003/06/10 09:12:11
[scp.1 sftp-server.8 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5]
[sshd.8 sshd_config.5 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8]
- section reorder
- COMPATIBILITY merge
- macro cleanup
- kill whitespace at EOL
- new sentence, new line
ssh pages ok markus@
djm [Tue, 10 Jun 2003 11:09:09 +0000 (11:09 +0000)]
- (djm) Re-merge OpenSC info into README.smartcard
djm [Tue, 10 Jun 2003 08:55:22 +0000 (08:55 +0000)]
- (djm) Sync README.smartcard with OpenBSD -current
dtucker [Fri, 6 Jun 2003 00:46:04 +0000 (00:46 +0000)]
- (dtucker) [uidswap.c] Fix setreuid and add missing args to fatal(). ok djm@
dtucker [Thu, 5 Jun 2003 12:20:11 +0000 (12:20 +0000)]
- (dtucker) Define EAI_NONAME in fake-rfc2553.h (used by fake-rfc2553.c).
dtucker [Thu, 5 Jun 2003 09:37:30 +0000 (09:37 +0000)]
- (dtucker) Add includes.h to fake-rfc2553.c so it will build.
djm [Thu, 5 Jun 2003 09:19:35 +0000 (09:19 +0000)]
- (djm) Bug #589 - scard-opensc: load only keys with a private keys
Patch from larsch@trustcenter.de
djm [Thu, 5 Jun 2003 08:53:42 +0000 (08:53 +0000)]
- (djm) Bug #588 - Add scard-opensc.o back to Makefile.in
Patch from larsch@trustcenter.de
djm [Thu, 5 Jun 2003 08:52:47 +0000 (08:52 +0000)]
- (djm) Merge all the openbsd/fake-* into fake-rfc2553.[ch]
djm [Thu, 5 Jun 2003 00:04:12 +0000 (00:04 +0000)]
- (djm) Don't use xmalloc() or pull in toplevel headers in fake-* code
djm [Wed, 4 Jun 2003 23:56:35 +0000 (23:56 +0000)]
KNF
djm [Wed, 4 Jun 2003 23:53:31 +0000 (23:53 +0000)]
- (djm) Implement paranoid priv dropping checks, based on:
"SetUID demystified" - Hao Chen, David Wagner and Drew Dean
Proceedings of USENIX Security Symposium 2002
dtucker [Wed, 4 Jun 2003 23:52:42 +0000 (23:52 +0000)]
Put AI_NUMERICHOST back where it belongs.
djm [Wed, 4 Jun 2003 23:48:32 +0000 (23:48 +0000)]
- (djm) Support AI_NUMERICHOST in fake-getaddrinfo.c. Needed for recent
canohost.c changes.
dtucker [Wed, 4 Jun 2003 14:11:53 +0000 (14:11 +0000)]
Revert recently introduced typo: AI_NUMERICHOST -> NI_NUMERICHOST
djm [Wed, 4 Jun 2003 12:56:15 +0000 (12:56 +0000)]
- (djm) Always use mysignal() for SIGALRM
djm [Wed, 4 Jun 2003 12:51:38 +0000 (12:51 +0000)]
- djm@cvs.openbsd.org 2003/06/04 12:41:22
[sftp.c]
kill ssh process on receipt of signal; ok markus@
djm [Wed, 4 Jun 2003 12:51:24 +0000 (12:51 +0000)]
- djm@cvs.openbsd.org 2003/06/04 12:40:39
[scp.c]
kill ssh process upon receipt of signal, bz #241.
based on patch from esb AT hawaii.edu; ok markus@
djm [Wed, 4 Jun 2003 12:51:08 +0000 (12:51 +0000)]
- djm@cvs.openbsd.org 2003/06/04 12:18:49
[scp.c]
ansify; ok markus@
djm [Wed, 4 Jun 2003 12:50:54 +0000 (12:50 +0000)]
- djm@cvs.openbsd.org 2003/06/04 12:03:59
[serverloop.c]
remove bitrotten commet; ok markus@
djm [Wed, 4 Jun 2003 12:12:17 +0000 (12:12 +0000)]
- (djm) Update to fix of bug #584: lock card before return.
From larsch@trustcenter.de
djm [Wed, 4 Jun 2003 10:32:12 +0000 (10:32 +0000)]
- djm@cvs.openbsd.org 2003/06/04 10:23:48
[sshd.c]
remove duplicated group-dropping code; ok markus@
djm [Wed, 4 Jun 2003 10:31:53 +0000 (10:31 +0000)]
- (djm) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/04 08:25:18
[sshconnect.c]
disable challenge/response and keyboard-interactive auth methods
upon hostkey mismatch. based on patch from fcusack AT fcusack.com.
bz #580; ok markus@
djm [Wed, 4 Jun 2003 09:22:06 +0000 (09:22 +0000)]
- (djm) Bug #584: scard-opensc.c doesn't work without PIN. Patch from
larsch@trustcenter.de; ok markus@
djm [Wed, 4 Jun 2003 09:15:10 +0000 (09:15 +0000)]
- (djm) Bug #577 - wrong flag in scard-opensc.c sc_private_decrypt.
ok markus@
djm [Wed, 4 Jun 2003 09:06:59 +0000 (09:06 +0000)]
- (djm) Bug #573 - Remove unneeded Krb headers and compat goop. Patch from
simon@sxw.org.uk (Also matches a change in OpenBSD a while ago)
djm [Tue, 3 Jun 2003 03:09:16 +0000 (03:09 +0000)]
change "No more 4-term BSD licenses in our tree" to
"No more 4-term BSD licenses in linked code"
mdoc2man.pl is 4-term BSDL
djm [Tue, 3 Jun 2003 03:06:18 +0000 (03:06 +0000)]
a - millert@cvs.openbsd.org 2003/06/03 02:56:16
[scp.c]
Remove the advertising clause in the UCB license which Berkeley
rescinded 22 July 1999. Proofed by myself and Theo.
dtucker [Tue, 3 Jun 2003 02:45:27 +0000 (02:45 +0000)]
- (dtucker) [port-aix.c bsd-cray.c] Fix uses of verify_reverse_mapping.
djm [Tue, 3 Jun 2003 02:43:14 +0000 (02:43 +0000)]
trim prior to 3.6p1
djm [Tue, 3 Jun 2003 02:18:50 +0000 (02:18 +0000)]
2-term license, matching the rest of loginrec code
djm [Tue, 3 Jun 2003 02:12:50 +0000 (02:12 +0000)]
- (djm) Sync openbsd-compat with OpenBSD CVS.
- No more 4-term BSD licenses in our tree
djm [Tue, 3 Jun 2003 01:23:32 +0000 (01:23 +0000)]
Removal of advertising clause in accordance with:
ftp://ftp.cs.berkeley.edu/pub/4bsd/README.Impt.License.Change
ok theo@ and millert@
djm [Tue, 3 Jun 2003 00:25:48 +0000 (00:25 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/06/02 09:17:34
[auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c]
[canohost.c monitor.c servconf.c servconf.h session.c sshd_config]
[sshd_config.5]
deprecate VerifyReverseMapping since it's dangerous if combined
with IP based access control as noted by Mike Harding; replace with
a UseDNS option, UseDNS is on by default and includes the
VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@
ok deraadt@, djm@
- (djm) Fix portable-specific uses of verify_reverse_mapping too
djm [Tue, 3 Jun 2003 00:14:28 +0000 (00:14 +0000)]
- (djm) Replace setproctitle replacement with code derived from
UCB sendmail
djm [Mon, 2 Jun 2003 09:10:41 +0000 (09:10 +0000)]
- jakob@cvs.openbsd.org 2003/06/02 08:31:10
[ssh_config.5]
VerifyHostKeyDNS is v2 only. ok markus@
djm [Mon, 2 Jun 2003 09:09:48 +0000 (09:09 +0000)]
- deraadt@cvs.openbsd.org 2003/05/29 16:58:45
[sshd.c uidswap.c]
seteuid and setegid; markus ok
djm [Mon, 2 Jun 2003 09:09:13 +0000 (09:09 +0000)]
- djm@cvs.openbsd.org 2003/05/26 12:54:40
[sshconnect.c]
fix format strings; ok markus@
djm [Mon, 2 Jun 2003 09:08:25 +0000 (09:08 +0000)]
RCS ID sync
djm [Mon, 2 Jun 2003 08:59:45 +0000 (08:59 +0000)]
remove a bit of diff which snuck into the copyright header
djm [Mon, 2 Jun 2003 08:59:08 +0000 (08:59 +0000)]
- (djm) Sync license on openbsd-compat/bindresvport.c with OpenBSD CVS
djm [Mon, 2 Jun 2003 08:57:59 +0000 (08:57 +0000)]
- (djm) Fix use of macro before #define in cipher-aes.c
djm [Mon, 2 Jun 2003 07:43:19 +0000 (07:43 +0000)]
- (djm) Remove "noip6" option from RedHat spec file. This may now be
set at runtime using AddressFamily option.
tim [Mon, 2 Jun 2003 02:25:27 +0000 (02:25 +0000)]
openbsd-compat/xmmap.[ch] License clarifications. Add missing CVS ID.
djm [Mon, 2 Jun 2003 02:15:54 +0000 (02:15 +0000)]
- (djm) Always use saved_argv in sshd.c as compat_init_setproctitle may
clobber
djm [Mon, 2 Jun 2003 02:13:40 +0000 (02:13 +0000)]
- (djm) Fix segv from bad reordering in auth-pam.c
djm [Mon, 2 Jun 2003 01:04:39 +0000 (01:04 +0000)]
- (djm) Fix segv from bad reordering in auth-pam.c
This page took 0.118735 seconds and 4 git commands to generate.