Import openssh_8.1p1.orig.tar.gz

author: Colin Watson <cjwatson@debian.org> 2019-10-09 22:59:48 +0100
committer: Colin Watson <cjwatson@debian.org> 2019-10-09 22:59:48 +0100
commit: 4213eec74e74de6310c27a40c3e9759a08a73996 (patch)
tree: e97a6dcafc6763aea7c804e4e113c2750cb1400d /readconf.c
parent: 102062f825fb26a74295a1c089c00c4c4c76b68a (diff)
parent: cdf1d0a9f5d18535e0a18ff34860e81a6d83aa5c (diff)
1 files changed, 21 insertions, 12 deletions
diff --git a/readconf.c b/readconf.c
index ec497e79f..f78b4d6fe 100644
--- a/readconf.c
+++ b/readconf.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: readconf.c,v 1.304 2019/03/01 02:08:50 djm Exp $ */
+/* $OpenBSD: readconf.c,v 1.309 2019/09/06 14:45:34 naddy Exp $ */
 /*
 * Author: Tatu Ylonen <ylo@cs.hut.fi>
 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
@@ -86,7 +86,7 @@
     User foo
   Host fake.com
-     HostName another.host.name.real.org
+     Hostname another.host.name.real.org
     User blaah
     Port 34289
     ForwardX11 no
@@ -148,7 +148,7 @@ typedef enum {
        oGatewayPorts, oExitOnForwardFailure,
        oPasswordAuthentication, oRSAAuthentication,
        oChallengeResponseAuthentication, oXAuthLocation,
-        oIdentityFile, oHostName, oPort, oCipher, oRemoteForward, oLocalForward,
+        oIdentityFile, oHostname, oPort, oCipher, oRemoteForward, oLocalForward,
        oCertificateFile, oAddKeysToAgent, oIdentityAgent,
        oUser, oEscapeChar, oRhostsRSAAuthentication, oProxyCommand,
        oGlobalKnownHostsFile, oUserKnownHostsFile, oConnectionAttempts,
@@ -240,7 +240,7 @@ static struct {
        { "certificatefile", oCertificateFile },
        { "addkeystoagent", oAddKeysToAgent },
        { "identityagent", oIdentityAgent },
-        { "hostname", oHostName },
+        { "hostname", oHostname },
        { "hostkeyalias", oHostKeyAlias },
        { "proxycommand", oProxyCommand },
        { "port", oPort },
@@ -486,6 +486,11 @@ execute_in_shell(const char *cmd)
        if ((shell = getenv("SHELL")) == NULL)
                shell = _PATH_BSHELL;
+        if (access(shell, X_OK) == -1) {
+                fatal("Shell \"%s\" is not executable: %s",
+                    shell, strerror(errno));
+        }
        /* Need this to redirect subprocess stdin/out */
        if ((devnull = open(_PATH_DEVNULL, O_RDWR)) == -1)
                fatal("open(/dev/null): %s", strerror(errno));
@@ -518,7 +523,7 @@ execute_in_shell(const char *cmd)
                _exit(1);
        }
        /* Parent. */
-        if (pid < 0)
+        if (pid == -1)
                fatal("%s: fork: %.100s", __func__, strerror(errno));
        close(devnull);
@@ -1117,7 +1122,7 @@ parse_char_array:
                max_entries = SSH_MAX_HOSTS_FILES;
                goto parse_char_array;
-        case oHostName:
+        case oHostname:
                charptr = &options->hostname;
                goto parse_string;
@@ -1194,7 +1199,8 @@ parse_int:
                arg = strdelim(&s);
                if (!arg || *arg == '\0')
                        fatal("%.200s line %d: Missing argument.", filename, linenum);
-                if (*arg != '-' && !ciphers_valid(*arg == '+' ? arg + 1 : arg))
+                if (*arg != '-' &&
+                    !ciphers_valid(*arg == '+' || *arg == '^' ? arg + 1 : arg))
                        fatal("%.200s line %d: Bad SSH2 cipher spec '%s'.",
                            filename, linenum, arg ? arg : "<NONE>");
                if (*activep && options->ciphers == NULL)
@@ -1205,8 +1211,9 @@ parse_int:
                arg = strdelim(&s);
                if (!arg || *arg == '\0')
                        fatal("%.200s line %d: Missing argument.", filename, linenum);
-                if (*arg != '-' && !mac_valid(*arg == '+' ? arg + 1 : arg))
+                if (*arg != '-' &&
-                        fatal("%.200s line %d: Bad SSH2 Mac spec '%s'.",
+                    !mac_valid(*arg == '+' || *arg == '^' ? arg + 1 : arg))
+                        fatal("%.200s line %d: Bad SSH2 MAC spec '%s'.",
                            filename, linenum, arg ? arg : "<NONE>");
                if (*activep && options->macs == NULL)
                        options->macs = xstrdup(arg);
@@ -1218,7 +1225,8 @@ parse_int:
                        fatal("%.200s line %d: Missing argument.",
                            filename, linenum);
                if (*arg != '-' &&
-                    !kex_names_valid(*arg == '+' ? arg + 1 : arg))
+                    !kex_names_valid(*arg == '+' || *arg == '^' ?
+                    arg + 1 : arg))
                        fatal("%.200s line %d: Bad SSH2 KexAlgorithms '%s'.",
                            filename, linenum, arg ? arg : "<NONE>");
                if (*activep && options->kex_algorithms == NULL)
@@ -1233,7 +1241,8 @@ parse_keytypes:
                        fatal("%.200s line %d: Missing argument.",
                            filename, linenum);
                if (*arg != '-' &&
-                    !sshkey_names_valid2(*arg == '+' ? arg + 1 : arg, 1))
+                    !sshkey_names_valid2(*arg == '+' || *arg == '^' ?
+                    arg + 1 : arg, 1))
                        fatal("%s line %d: Bad key types '%s'.",
                                filename, linenum, arg ? arg : "<NONE>");
                if (*activep && *charptr == NULL)
@@ -2593,7 +2602,7 @@ dump_client_config(Options *o, const char *host)
        /* Most interesting options first: user, host, port */
        dump_cfg_string(oUser, o->user);
-        dump_cfg_string(oHostName, host);
+        dump_cfg_string(oHostname, host);
        dump_cfg_int(oPort, o->port);
        /* Flag options */
author	Colin Watson <cjwatson@debian.org>	2019-10-09 22:59:48 +0100
committer	Colin Watson <cjwatson@debian.org>	2019-10-09 22:59:48 +0100
commit	4213eec74e74de6310c27a40c3e9759a08a73996 (patch)
tree	e97a6dcafc6763aea7c804e4e113c2750cb1400d /readconf.c
parent	102062f825fb26a74295a1c089c00c4c4c76b68a (diff)
parent	cdf1d0a9f5d18535e0a18ff34860e81a6d83aa5c (diff)