upstream commit

Tweak config reparsing with host canonicalisation Make the second pass through the config files always run when hostname canonicalisation is enabled. Add a "Match canonical" criteria that allows ssh_config Match blocks to trigger only in the second config pass. Add a -G option to ssh that causes it to parse its configuration and dump the result to stdout, similar to "sshd -T" Allow ssh_config Port options set in the second config parse phase to be applied (they were being ignored). bz#2267 bz#2286; ok markus
author: djm@openbsd.org <djm@openbsd.org> 2014-10-08 22:20:25 +0000
committer: Damien Miller <djm@mindrot.org> 2014-10-13 11:41:48 +1100
commit: 957fbceb0f3166e41b76fdb54075ab3b9cc84cba (patch)
tree: 7c8bc1f0090201400383e51d84a7fda79995e513 /ssh-keysign.c
parent: 5c0dafd38bf66feeeb45fa0741a5baf5ad8039ba (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/ssh-keysign.c b/ssh-keysign.c
index d95bb7d9d..6b73319e0 100644
--- a/ssh-keysign.c
+++ b/ssh-keysign.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-keysign.c,v 1.42 2014/04/29 18:01:49 markus Exp $ */
+/* $OpenBSD: ssh-keysign.c,v 1.43 2014/10/08 22:20:25 djm Exp $ */
 /*
 * Copyright (c) 2002 Markus Friedl.  All rights reserved.
 *
@@ -187,7 +187,7 @@ main(int argc, char **argv)
        /* verify that ssh-keysign is enabled by the admin */
        initialize_options(&options);
-        (void)read_config_file(_PATH_HOST_CONFIG_FILE, pw, "", &options, 0);
+        (void)read_config_file(_PATH_HOST_CONFIG_FILE, pw, "", "", &options, 0);
        fill_default_options(&options);
        if (options.enable_ssh_keysign != 1)
                fatal("ssh-keysign not enabled in %s",
author	djm@openbsd.org <djm@openbsd.org>	2014-10-08 22:20:25 +0000
committer	Damien Miller <djm@mindrot.org>	2014-10-13 11:41:48 +1100
commit	957fbceb0f3166e41b76fdb54075ab3b9cc84cba (patch)
tree	7c8bc1f0090201400383e51d84a7fda79995e513 /ssh-keysign.c
parent	5c0dafd38bf66feeeb45fa0741a5baf5ad8039ba (diff)

diff --git a/ssh-keysign.c b/ssh-keysign.c index d95bb7d9d..6b73319e0 100644 --- a/ssh-keysign.c +++ b/ssh-keysign.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssh-keysign.c,v 1.42 2014/04/29 18:01:49 markus Exp $ */	1	/* $OpenBSD: ssh-keysign.c,v 1.43 2014/10/08 22:20:25 djm Exp $ */
2	/*	2	/*
3	* Copyright (c) 2002 Markus Friedl. All rights reserved.	3	* Copyright (c) 2002 Markus Friedl. All rights reserved.
4	*	4	*
@@ -187,7 +187,7 @@ main(int argc, char **argv)
187		187
188	/* verify that ssh-keysign is enabled by the admin */	188	/* verify that ssh-keysign is enabled by the admin */
189	initialize_options(&options);	189	initialize_options(&options);
190	(void)read_config_file(_PATH_HOST_CONFIG_FILE, pw, "", &options, 0);	190	(void)read_config_file(_PATH_HOST_CONFIG_FILE, pw, "", "", &options, 0);
191	fill_default_options(&options);	191	fill_default_options(&options);
192	if (options.enable_ssh_keysign != 1)	192	if (options.enable_ssh_keysign != 1)
193	fatal("ssh-keysign not enabled in %s",	193	fatal("ssh-keysign not enabled in %s",