]>
andersk Git - openssh.git/log
djm [Wed, 14 May 2003 04:31:11 +0000 (04:31 +0000)]
- (djm) Make portable build with MIT krb5 (some issues remain)
djm [Wed, 14 May 2003 03:47:37 +0000 (03:47 +0000)]
- markus@cvs.openbsd.org 2003/05/14 02:15:47
[auth2.c monitor.c sshconnect2.c auth2-krb5.c]
implement kerberos over ssh2 ("kerberos-2@ssh.com"); tested with jakob@
server interops with commercial client; ok jakob@ djm@
djm [Wed, 14 May 2003 03:47:07 +0000 (03:47 +0000)]
- djm@cvs.openbsd.org 2003/05/14 01:00:44
[sftp.1]
emphasise the batchmode functionality and make reference to pubkey auth,
both of which are FAQs; ok markus@
djm [Wed, 14 May 2003 03:46:53 +0000 (03:46 +0000)]
- markus@cvs.openbsd.org 2003/05/14 00:52:59
[ssh2.h]
ranges for per auth method messages
djm [Wed, 14 May 2003 03:46:33 +0000 (03:46 +0000)]
- markus@cvs.openbsd.org 2003/05/12 18:35:18
[ssh-keyscan.1]
typo: DSA keys are of type ssh-dss; Brian Poole
djm [Wed, 14 May 2003 03:46:00 +0000 (03:46 +0000)]
- markus@cvs.openbsd.org 2003/05/12 16:55:37
[sshconnect2.c]
for pubkey authentication try the user keys in the following order:
1. agent keys that are found in the config file
2. other agent keys
3. keys that are only listed in the config file
this helps when an agent has many keys, where the server might
close the connection before the correct key is used. report & ok pb@
djm [Wed, 14 May 2003 03:45:42 +0000 (03:45 +0000)]
- markus@cvs.openbsd.org 2003/05/11 20:30:25
[channels.c clientloop.c serverloop.c session.c ssh.c]
make channel_new() strdup the 'remote_name' (not the caller); ok theo
djm [Wed, 14 May 2003 03:45:22 +0000 (03:45 +0000)]
- markus@cvs.openbsd.org 2003/05/11 16:56:48
[authfile.c ssh-keygen.c]
change key_load_public to try to read a public from:
rsa1 private or rsa1 public and ssh2 keys.
this makes ssh-keygen -e fail for ssh1 keys more gracefully
for example; report from itojun (netbsd pr 20550).
djm [Wed, 14 May 2003 03:44:58 +0000 (03:44 +0000)]
- david@cvs.openbsd.org 2003/04/30 20:41:07
[sshd.8]
fix invalid .Pf macro usage introduced in previous commit
ok jmc@ mouring@
djm [Wed, 14 May 2003 03:44:42 +0000 (03:44 +0000)]
- mouring@cvs.openbsd.org 2003/04/30 01:16:20
[sshd.8 sshd_config.5]
Escape ?, * and ! in .Ql for nroff compatibility. OpenSSH Portable
Bug #550 and * escaping suggested by jmc@.
djm [Wed, 14 May 2003 03:43:53 +0000 (03:43 +0000)]
- deraadt@cvs.openbsd.org 2003/04/26 04:29:49
[ssh-keyscan.c]
-t in usage(); rogier@quaak.org
djm [Wed, 14 May 2003 03:43:25 +0000 (03:43 +0000)]
- markus@cvs.openbsd.org 2003/04/16 14:35:27
[auth.h]
document struct Authctxt; with solar
djm [Wed, 14 May 2003 03:42:40 +0000 (03:42 +0000)]
- mouring@cvs.openbsd.org 2003/04/14 21:31:27
[sftp-int.c]
Missing globfree(&g) in process_put() spotted by Vince Brimhall
<VBrimhall@novell.com>. ok@ Theo
djm [Wed, 14 May 2003 03:42:23 +0000 (03:42 +0000)]
- markus@cvs.openbsd.org 2003/04/14 14:17:50
[channels.c sshconnect.c sshd.c ssh-keyscan.c]
avoid hardcoded SOCK_xx; with itojun@; should allow ssh over SCTP
djm [Wed, 14 May 2003 03:42:08 +0000 (03:42 +0000)]
- naddy@cvs.openbsd.org 2003/04/12 11:40:15
[ssh.1]
document -V switch, fix wording; ok markus@
djm [Wed, 14 May 2003 03:41:39 +0000 (03:41 +0000)]
- markus@cvs.openbsd.org 2003/04/12 10:15:36
[misc.c]
debug->debug2
djm [Wed, 14 May 2003 03:41:23 +0000 (03:41 +0000)]
- markus@cvs.openbsd.org 2003/04/12 10:13:57
[cipher.c]
hide cipher details; ok djm@
djm [Wed, 14 May 2003 03:40:54 +0000 (03:40 +0000)]
- (djm) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/04/09 12:00:37
[readconf.c]
strip trailing whitespace from config lines before parsing.
Fixes bz 528; ok markus@
djm [Wed, 14 May 2003 03:40:06 +0000 (03:40 +0000)]
- (djm) RCSID sync w/ OpenBSD
djm [Wed, 14 May 2003 00:27:09 +0000 (00:27 +0000)]
- (djm) Bug #117: Don't lie to PAM about username
djm [Mon, 12 May 2003 08:15:49 +0000 (08:15 +0000)]
- (djm) Redhat spec: Don't install profile.d scripts when not
building with GNOME/GTK askpass (patch from bet@rahul.net)
djm [Sat, 10 May 2003 13:42:12 +0000 (13:42 +0000)]
- (djm) 2-clause license on loginrec.c, with permission from
andre@ae-35.com
djm [Sat, 10 May 2003 09:28:02 +0000 (09:28 +0000)]
- (djm) Merge FreeBSD PAM code: replaces PAM password auth kludge with
proper challenge-response module
dtucker [Sat, 10 May 2003 07:05:46 +0000 (07:05 +0000)]
- (dtucker) Bug #536: Test for and work around openpty/controlling tty
problem on Linux (fixes "could not set controlling tty" errors).
Also renames STREAMS_PUSH_ACQUIRES_CTTY to the more generic SSHD_ACQUIRES_CTTY
and moves the Solaris-specific comments to configure.ac.
dtucker [Sat, 10 May 2003 06:48:23 +0000 (06:48 +0000)]
- (dtucker) Bug #318: Create ssh_prng_cmds.out during "make" rather than
"make install". Patch by roth@feep.net.
dtucker [Sun, 4 May 2003 01:36:25 +0000 (01:36 +0000)]
Add bug# to ChangeLog.
dtucker [Sun, 4 May 2003 00:41:20 +0000 (00:41 +0000)]
- (dtucker) Move #include of bsd-cygwin_util.h to openbsd-compat.h. Patch from
vinschen@redhat.com.
dtucker [Fri, 2 May 2003 21:32:56 +0000 (21:32 +0000)]
- (dtucker) Add missing "void" to record_failed_login in bsd-cray.c. Noted
by wendyp@cray.com.
dtucker [Fri, 2 May 2003 13:50:09 +0000 (13:50 +0000)]
Added ok for record_failed_login() change
dtucker [Fri, 2 May 2003 13:42:25 +0000 (13:42 +0000)]
- (dtucker) Move handling of bad password authentications into a platform
specific record_failed_login() function (affects AIX & Unicos).
dtucker [Fri, 2 May 2003 10:48:21 +0000 (10:48 +0000)]
- (dtucker) Bug #544: ignore invalid cmsg_type on Linux 2.0 kernels,
privsep should now work.
djm [Tue, 29 Apr 2003 13:22:40 +0000 (13:22 +0000)]
- (djm) Add back radix.o (used by AFS support), after it went missing from
Makefile many moons ago
- (djm) Apply "owl-always-auth" patch from Openwall/Solar Designer
- (djm) Fix blibpath specification for AIX/gcc
- (djm) Some systems have basename in -lgen. Fix from ayamura@ayamura.org
mouring [Mon, 28 Apr 2003 23:30:43 +0000 (23:30 +0000)]
- (bal) [defines.h progressmeter.c scp.c] Some more culling of non 64bit
hacked code.
mouring [Sun, 27 Apr 2003 18:44:31 +0000 (18:44 +0000)]
- (bal) auth2.c same changed as above.
mouring [Sun, 27 Apr 2003 18:41:30 +0000 (18:41 +0000)]
- (bal) auth1.c minor resync while looking at the code.
mouring [Sun, 27 Apr 2003 18:01:37 +0000 (18:01 +0000)]
- (bal) Since we don't support platforms lacking u_int_64. We may
as well clean out some of those evil #ifdefs
mouring [Sun, 27 Apr 2003 17:55:33 +0000 (17:55 +0000)]
- (bal) Bug #541: return; was dropped by mistake. Reported by
furrier@iglou.com
djm [Wed, 9 Apr 2003 11:12:52 +0000 (11:12 +0000)]
- (djm) Bug #539: Specify creation mode with O_CREAT for lastlog. Report
from matth@eecs.berkeley.edu
djm [Wed, 9 Apr 2003 11:12:00 +0000 (11:12 +0000)]
- (djm) Fix missed log => logit occurance (reference by function pointer)
djm [Wed, 9 Apr 2003 11:07:14 +0000 (11:07 +0000)]
- hin@cvs.openbsd.org 2003/04/09 08:23:52
[servconf.c]
Don't include <krb.h> when compiling with Kerberos 5 support
djm [Wed, 9 Apr 2003 11:05:52 +0000 (11:05 +0000)]
- itojun@cvs.openbsd.org 2003/04/08 20:21:29
[*.c *.h]
rename log() into logit() to avoid name conflict. markus ok, from
netbsd
- (djm) XXX - Performed locally using:
"perl -p -i -e 's/(\s|^)log\(/$1logit\(/g' *.c *.h"
- (djm) Fix up missing include for packet.c
djm [Wed, 9 Apr 2003 10:59:48 +0000 (10:59 +0000)]
*** empty log message ***
djm [Wed, 9 Apr 2003 10:51:55 +0000 (10:51 +0000)]
- millert@cvs.openbsd.org 2003/04/07 21:58:05
[progressmeter.c]
The UCB copyright here is incorrect. This code did not originate
at UCB, it was written by Luke Mewburn. Updated the copyright at
the author's request. markus@ OK
djm [Wed, 9 Apr 2003 10:51:24 +0000 (10:51 +0000)]
- markus@cvs.openbsd.org 2003/04/07 08:29:57
[monitor_wrap.c]
typo: get correct counters; introduced during rekeying change.
djm [Wed, 9 Apr 2003 10:50:59 +0000 (10:50 +0000)]
- itojun@cvs.openbsd.org 2003/04/03 07:25:27
[progressmeter.c]
$OpenBSD$
- itojun@cvs.openbsd.org 2003/04/03 10:17:35
[progressmeter.c]
remove $OpenBSD$, as other *.c does not have it.
djm [Wed, 9 Apr 2003 10:50:26 +0000 (10:50 +0000)]
- markus@cvs.openbsd.org 2003/04/02 14:36:26
[ssh-keysign.c]
potential segfault if KEY_UNSPEC; cjwatson@debian.org; bug #526
djm [Wed, 9 Apr 2003 10:50:06 +0000 (10:50 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/04/02 09:48:07
[clientloop.c monitor.c monitor_wrap.c packet.c packet.h readconf.c]
[readconf.h serverloop.c sshconnect2.c]
reapply rekeying chage, tested by henning@, ok djm@
djm [Wed, 9 Apr 2003 09:41:25 +0000 (09:41 +0000)]
- (djm) Make the spec work with Redhat 9.0 (which renames sharutils)
djm [Wed, 9 Apr 2003 09:40:33 +0000 (09:40 +0000)]
- (djm) Bug #539: Specify creation mode with O_CREAT for lastlog. Report
from matth@eecs.berkeley.edu
mouring [Wed, 2 Apr 2003 15:18:22 +0000 (15:18 +0000)]
- (bal) if IP_TOS is not found or broken don't try to compile in
packet_set_tos() function call. bug #527
djm [Tue, 1 Apr 2003 11:47:16 +0000 (11:47 +0000)]
- (djm) Release 3.6.1p1
djm [Tue, 1 Apr 2003 11:46:53 +0000 (11:46 +0000)]
- (djm) Crank spec file versions
djm [Tue, 1 Apr 2003 11:45:26 +0000 (11:45 +0000)]
- markus@cvs.openbsd.org 2003/04/01 10:56:46
[version.h]
3.6.1
djm [Tue, 1 Apr 2003 11:44:37 +0000 (11:44 +0000)]
- markus@cvs.openbsd.org 2003/04/01 10:31:26
[compat.c compat.h kex.c]
bugfix causes stalled connections for ssh.com < 3.0; noticed by ho@;
tested by ho@ and myself
djm [Tue, 1 Apr 2003 11:43:39 +0000 (11:43 +0000)]
- markus@cvs.openbsd.org 2003/04/01 10:10:23
[clientloop.c monitor.c monitor_wrap.c packet.c packet.h readconf.c]
[readconf.h serverloop.c sshconnect2.c]
rekeying bugfixes and automatic rekeying:
* both client and server rekey _automatically_
(a) after 2^31 packets, because after 2^32 packets
the sequence number for packets wraps
(b) after 2^(blocksize_in_bits/4) blocks
(see: draft-ietf-secsh-newmodes-00.txt)
(a) and (b) are _enabled_ by default, and only disabled for known
openssh versions, that don't support rekeying properly.
* client option 'RekeyLimit'
* do not reply to requests during rekeying
- markus@cvs.openbsd.org 2003/04/01 10:22:21
[clientloop.c monitor.c monitor_wrap.c packet.c packet.h readconf.c]
[readconf.h serverloop.c sshconnect2.c]
backout rekeying changes (for 3.6.1)
djm [Tue, 1 Apr 2003 11:42:14 +0000 (11:42 +0000)]
- (djm) OpenBSD CVS Sync
- jmc@cvs.openbsd.org 2003/03/28 10:11:43
[scp.1 sftp.1 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5 sshd_config.5]
[ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8]
- killed whitespace
- new sentence new line
- .Bk for arguments
ok markus@
djm [Tue, 1 Apr 2003 11:31:56 +0000 (11:31 +0000)]
license from samba
djm [Wed, 26 Mar 2003 05:01:11 +0000 (05:01 +0000)]
- (djm) OpenBSD CVS Sync
- deraadt@cvs.openbsd.org 2003/03/26 04:02:51
[sftp-server.c]
one last fix to the tree: race fix broke stuff; pr 3169;
srp@srparish.net, help from djm
djm [Mon, 24 Mar 2003 22:07:52 +0000 (22:07 +0000)]
- (djm) Fix getpeerid support for 64 bit BE systems. From
Arnd Bergmann <arndb@de.ibm.com>
djm [Mon, 24 Mar 2003 02:35:58 +0000 (02:35 +0000)]
- Fix sshd BindAddress and -b options for systems using fake-getaddrinfo.
Report from murple@murple.net, diagnosis from dtucker@zip.com.au
djm [Sun, 23 Mar 2003 22:12:09 +0000 (22:12 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/03/23 19:02:00
[monitor.c]
unbreak rekeying for privsep; ok millert@
tim [Fri, 21 Mar 2003 04:50:41 +0000 (04:50 +0000)]
[contrib/caldera/openssh.spec] workaround RPM quirk. Fix %files section
mouring [Fri, 21 Mar 2003 01:18:09 +0000 (01:18 +0000)]
- (bal) Disable Privsep for Tru64 after pre-authentication due to issues
with SIA. Also, clean up of tru64 support patch by Chris Adams
<cmadams@hiwaay.net>
mouring [Fri, 21 Mar 2003 01:05:37 +0000 (01:05 +0000)]
- (bal) Collection of Cray patches (bsd-cray.h fix for CRAYT3E and improved
guessing rules)
mouring [Fri, 21 Mar 2003 00:55:32 +0000 (00:55 +0000)]
- (bal) scp.c 'limit' conflicts with Cray. Rename to 'limitbw'
mouring [Fri, 21 Mar 2003 00:34:34 +0000 (00:34 +0000)]
- (bal) The days of lack of int64_t support are over. Sorry kids.
djm [Thu, 20 Mar 2003 00:05:10 +0000 (00:05 +0000)]
Build gtk2 askpass by default (instead of old GNOME one)
djm [Wed, 19 Mar 2003 23:52:14 +0000 (23:52 +0000)]
Bump RPM versions
djm [Wed, 19 Mar 2003 23:11:34 +0000 (23:11 +0000)]
- markus@cvs.openbsd.org 2003/03/17 11:43:47
[version.h]
enter 3.6
djm [Wed, 19 Mar 2003 23:08:05 +0000 (23:08 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/03/17 10:38:38
[progressmeter.c]
don't print \n if backgrounded; from ho@
tim [Tue, 18 Mar 2003 18:21:40 +0000 (18:21 +0000)]
[configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
add nanosleep(). testing/corrections by Darren Tucker <dtucker@zip.com.au>
djm [Mon, 17 Mar 2003 05:13:53 +0000 (05:13 +0000)]
- (djm) Fix return value checks for RAND_bytes. Report from
Steve G <linux_4ever@yahoo.com>
djm [Sat, 15 Mar 2003 00:37:09 +0000 (00:37 +0000)]
- markus@cvs.openbsd.org 2003/03/13 11:44:50
[ssh-agent.c]
ssh-agent is similar to ssh-keysign (allows other processes to use
private rsa keys). however, it gets key over socket and not from
a file, so we have to do blinding here as well.
djm [Sat, 15 Mar 2003 00:36:18 +0000 (00:36 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/03/13 11:42:19
[authfile.c ssh-keysign.c]
move RSA_blinding_on to generic key load method
djm [Wed, 12 Mar 2003 22:42:51 +0000 (22:42 +0000)]
Fix bug #
djm [Mon, 10 Mar 2003 01:10:45 +0000 (01:10 +0000)]
- (djm) AIX package builder update from dtucker@zip.com.au
djm [Mon, 10 Mar 2003 00:38:10 +0000 (00:38 +0000)]
- (djm) Bug #245: TTY problems on Solaris. Fix by stevesk@ and
dtucker@zip.com.au
djm [Mon, 10 Mar 2003 00:23:06 +0000 (00:23 +0000)]
- (djm) One more portable-specific one from dlheine@suif.Stanford.EDU/
CLOUSEAU
djm [Mon, 10 Mar 2003 00:21:17 +0000 (00:21 +0000)]
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/03/05 22:33:43
[channels.c monitor.c scp.c session.c sftp-client.c sftp-int.c]
[sftp-server.c ssh-add.c sshconnect2.c]
fix memory leaks; from dlheine@suif.Stanford.EDU/CLOUSEAU; ok djm@
djm [Tue, 25 Feb 2003 03:32:16 +0000 (03:32 +0000)]
duh
djm [Mon, 24 Feb 2003 23:25:12 +0000 (23:25 +0000)]
me <- idiot
djm [Mon, 24 Feb 2003 23:22:35 +0000 (23:22 +0000)]
- (djm) Fix some compile errors spotted by dtucker and his fabulous
tinderbox
djm [Mon, 24 Feb 2003 04:45:42 +0000 (04:45 +0000)]
- (djm) Bug #456: Support for NEC SX6 with Unicos; from wendyp@cray.com
djm [Mon, 24 Feb 2003 02:04:01 +0000 (02:04 +0000)]
- (djm) Bug #494: Allow multiple accounts on Windows 9x/Me;
From vinschen@redhat.com
djm [Mon, 24 Feb 2003 01:55:55 +0000 (01:55 +0000)]
- (djm) Rest of Bug #499: Import a basename() function from OpenBSD libc
djm [Mon, 24 Feb 2003 01:47:15 +0000 (01:47 +0000)]
- (djm) Most of Bug #499: Cygwin compile fixes for new progressmeter
djm [Mon, 24 Feb 2003 01:35:08 +0000 (01:35 +0000)]
- (djm) Bug #501: gai_strerror should return char*;
fix from dtucker@zip.com.au
djm [Mon, 24 Feb 2003 01:18:46 +0000 (01:18 +0000)]
- (djm) Add new object files to Makefile and reorder
djm [Mon, 24 Feb 2003 01:05:18 +0000 (01:05 +0000)]
- mpech@cvs.openbsd.org 2003/02/21 10:34:48
[auth-krb4.c]
...sizeof(&adat.session) is not good here.
henning@, deraadt@, millert@
djm [Mon, 24 Feb 2003 01:04:33 +0000 (01:04 +0000)]
- markus@cvs.openbsd.org 2003/02/21 09:05:53
[servconf.c]
print sshd_config filename in debug2 mode.
djm [Mon, 24 Feb 2003 01:03:38 +0000 (01:03 +0000)]
- markus@cvs.openbsd.org 2003/02/16 17:30:33
[monitor.c monitor_wrap.c]
fix permitrootlogin forced-commands-only for privsep; bux #387; ok provos@
djm [Mon, 24 Feb 2003 01:03:03 +0000 (01:03 +0000)]
- markus@cvs.openbsd.org 2003/02/16 17:09:57
[kex.c kexdh.c kexgex.c kex.h sshconnect2.c sshd.c ssh-keyscan.c]
split kex into client and server code, no need to link
server code into the client; ok provos@
djm [Mon, 24 Feb 2003 01:02:12 +0000 (01:02 +0000)]
- markus@cvs.openbsd.org 2003/02/12 21:39:50
[crc32.c crc32.h]
replace crc32.c with a BSD licensed version; noted by David Turner
djm [Mon, 24 Feb 2003 01:01:40 +0000 (01:01 +0000)]
- markus@cvs.openbsd.org 2003/02/12 09:33:04
[key.c key.h ssh-dss.c ssh-rsa.c]
merge ssh-dss.h ssh-rsa.h into key.h; ok deraadt@
djm [Mon, 24 Feb 2003 01:00:16 +0000 (01:00 +0000)]
- markus@cvs.openbsd.org 2003/02/10 11:51:47
[ssh-add.1]
xref sshd_config.5 (not sshd.8); mark@summersault.com; bug #490
djm [Mon, 24 Feb 2003 00:59:26 +0000 (00:59 +0000)]
- markus@cvs.openbsd.org 2003/02/06 21:22:43
[auth1.c auth2.c]
undo broken fix for #387, fixes #486
djm [Mon, 24 Feb 2003 00:58:44 +0000 (00:58 +0000)]
- markus@cvs.openbsd.org 2003/02/06 09:29:18
[sftp-server.c]
fix races in rename/symlink; from Tony Finch; ok djm@
djm [Mon, 24 Feb 2003 00:57:32 +0000 (00:57 +0000)]
- markus@cvs.openbsd.org 2003/02/06 09:27:29
[ssh.c ssh_config.5]
support 'ProxyCommand none'; bugzilla #433; binder@arago.de; ok djm@
djm [Mon, 24 Feb 2003 00:57:01 +0000 (00:57 +0000)]
- markus@cvs.openbsd.org 2003/02/06 09:26:23
[session.c]
missing call to setproctitle() after authentication; ok provos@
djm [Mon, 24 Feb 2003 00:56:27 +0000 (00:56 +0000)]
- markus@cvs.openbsd.org 2003/02/05 09:02:28
[readconf.c]
simplify ProxyCommand parsing, remove strcat/xrealloc; ok henning@, djm@
This page took 0.316624 seconds and 4 git commands to generate.