summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2009-10-07 - dtucker@cvs.openbsd.org 2009/10/06 23:51:49Darren Tucker
[regress/ssh2putty.sh] Add OpenBSD tag to make syncs easier
2009-10-07 - djm@cvs.openbsd.org 2009/08/20 18:43:07Darren Tucker
[ssh-com-sftp.sh] fix one sftp -D ... => sftp -P ... conversion that I missed; from Carlos Silva for Google Summer of Code
2009-10-07 - djm@cvs.openbsd.org 2009/08/13 01:11:55Darren Tucker
[sftp-batch.sh sftp-badcmds.sh sftp.sh sftp-cmds.sh sftp-glob.sh] date: 2009/08/13 01:11:19; author: djm; state: Exp; lines: +10 -7 Swizzle options: "-P sftp_server_path" moves to "-D sftp_server_path", add "-P port" to match scp(1). Fortunately, the -P option is only really used by our regression scripts. part of larger patch from carlosvsilvapt@gmail.com for his Google Summer of Code work; ok deraadt markus
2009-10-07 - djm@cvs.openbsd.org 2009/08/13 00:57:17Darren Tucker
[regress/Makefile] regression test for port number parsing. written as part of the a2port change that went into 5.2 but I forgot to commit it at the time...
2009-10-07 - dtucker@cvs.openbsd.org 2009/05/05 07:51:36Darren Tucker
[regress/multiplex.sh] Always specify ssh_config for multiplex tests: prevents breakage caused by options in ~/.ssh/config. From Dan Peterson.
2009-10-07 - djm@cvs.openbsd.org 2008/12/07 22:17:48Darren Tucker
[regress/addrmatch.sh] match string "passwordauthentication" only at start of line, not anywhere in sshd -T output
2009-10-07 - djm@cvs.openbsd.org 2009/10/06 04:46:40Darren Tucker
[session.c] bz#1596: fflush(NULL) before exec() to ensure that everying (motd in particular) has made it out before the streams go away.
2009-10-07 - grunk@cvs.openbsd.org 2009/10/01 11:37:33Darren Tucker
[dh.c] fix a cast ok djm@ markus@
2009-10-07 - djm@cvs.openbsd.org 2009/09/01 14:43:17Darren Tucker
[ssh-agent.c] fix a race condition in ssh-agent that could result in a wedged or spinning agent: don't read off the end of the allocated fd_sets, and don't issue blocking read/write on agent sockets - just fall back to select() on retriable read/write errors. bz#1633 reported and tested by "noodle10000 AT googlemail.com"; ok dtucker@ markus@
2009-10-07 - djm@cvs.openbsd.org 2009/08/31 21:01:29Darren Tucker
[sftp-server.8] document -e and -h; prodded by jmc@
2009-10-07 - djm@cvs.openbsd.org 2009/08/31 20:56:02Darren Tucker
[sftp-server.c] check correct variable for error message, spotted by martynas@
2009-10-07 - djm@cvs.openbsd.org 2009/08/27 17:44:52Darren Tucker
[authfd.c ssh-add.c authfd.h] Do not fall back to adding keys without contraints (ssh-add -c / -t ...) when the agent refuses the constrained add request. This was a useful migration measure back in 2002 when constraints were new, but just adds risk now. bz #1612, report and patch from dkg AT fifthhorseman.net; ok markus@
2009-10-07 - djm@cvs.openbsd.org 2009/08/27 17:43:00Darren Tucker
[sftp-server.8] allow setting an explicit umask on the commandline to override whatever default the user has. bz#1229; ok dtucker@ deraadt@ markus@
2009-10-07 - djm@cvs.openbsd.org 2009/08/27 17:33:49Darren Tucker
[ssh-keygen.c] force use of correct hash function for random-art signature display as it was inheriting the wrong one when bubblebabble signatures were activated; bz#1611 report and patch from fwojcik+openssh AT besh.com; ok markus@
2009-10-07 - djm@cvs.openbsd.org 2009/08/27 17:28:52Darren Tucker
[sftp-server.c] allow setting an explicit umask on the commandline to override whatever default the user has. bz#1229; ok dtucker@ deraadt@ markus@
2009-10-07 - dtucker@cvs.openbsd.org 2009/08/20 23:54:28Darren Tucker
[mux.c] subsystem_flag is defined in ssh.c so it's extern; ok djm
2009-10-07 - jmc@cvs.openbsd.org 2009/08/19 04:56:03Darren Tucker
[sftp.1] ether -> either;
2009-10-07 - djm@cvs.openbsd.org 2009/08/18 21:15:59Darren Tucker
[sftp.1] fix "get" command usage, spotted by jmc@
2009-10-07 - djm@cvs.openbsd.org 2009/08/18 18:36:21Darren Tucker
[sftp-client.h sftp.1 sftp-client.c sftp.c] recursive transfer support for get/put and on the commandline work mostly by carlosvsilvapt@gmail.com for the Google Summer of Code with some tweaks by me; "go for it" deraadt@
2009-10-07 - dtucker@cvs.openbsd.org 2009/08/16 23:29:26Darren Tucker
[sshd_config.5] Add PubkeyAuthentication to the list allowed in a Match block (bz #1577)
2009-10-07 - fgsch@cvs.openbsd.org 2009/08/15 18:56:34Darren Tucker
[auth.h] remove unused define. markus@ ok. (Id sync only, Portable still uses this.)
2009-10-07 - djm@cvs.openbsd.org 2009/08/14 18:17:49Darren Tucker
[sftp-client.c] make the "get_handle: ..." error messages vaguely useful by allowing callers to specify their own error message strings.
2009-10-07 - jmc@cvs.openbsd.org 2009/08/13 13:39:54Darren Tucker
[sftp.1 sftp.c] sync synopsis and usage();
2009-10-07 - djm@cvs.openbsd.org 2009/08/13 01:11:19Darren Tucker
[sftp.1 sftp.c] Swizzle options: "-P sftp_server_path" moves to "-D sftp_server_path", add "-P port" to match scp(1). Fortunately, the -P option is only really used by our regression scripts. part of larger patch from carlosvsilvapt@gmail.com for his Google Summer of Code work; ok deraadt markus
2009-10-07 - jmc@cvs.openbsd.org 2009/08/12 06:31:42Darren Tucker
[sftp.1] sort options;
2009-10-07 - djm@cvs.openbsd.org 2009/08/12 00:13:00Darren Tucker
[sftp.c sftp.1] support most of scp(1)'s commandline arguments in sftp(1), as a first step towards making sftp(1) a drop-in replacement for scp(1). One conflicting option (-P) has not been changed, pending further discussion. Patch from carlosvsilvapt@gmail.com as part of his work in the Google Summer of Code
2009-10-02 - (djm) [Makefile.in] Mention readconf.o in ssh-keysign's make deps.Damien Miller
spotted by des AT des.no
2009-10-02pull in 5.3 release changes from branch:Damien Miller
20090926 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] [contrib/suse/openssh.spec] Update for release - (djm) [README] update relnotes URL - (djm) [packet.c] Restore EWOULDBLOCK handling that got lost somewhere - (djm) Release 5.3p1
2009-09-11 - (dtucker) [configure.ac] Change the -lresolv check so it works on Mac OS XDarren Tucker
10.6 (which doesn't have BIND8_COMPAT and thus uses res_9_query). Patch from jbasney at ncsa uiuc edu.
2009-09-09 - (djm) [serverloop.c] Fix test for server-assigned remote forwarding portDamien Miller
(-R 0:...); bz#1578, spotted and fix by gavin AT emf.net; ok dtucker@
2009-09-01 - (dtucker) [configure.ac] Bug #1639: use AC_PATH_PROG to search the path forDarren Tucker
krb5-config if it's not in the location specified by --with-kerberos5. Patch from jchadima at redhat.
2009-08-29 - (dtucker) [README.platform] Add text about development packages, based onDarren Tucker
text from Chris Pepper in bug #1631.
2009-08-28 - (dtucker) [configure.ac] Fix the syntax of the Solaris tcgetattr entry.Darren Tucker
2009-08-28 - (dtucker) [clientloop.c configure.ac defines.h] Make the client's IO bufferDarren Tucker
size a compile-time option and set it to 64k on Cygwin, since Corinna reports that it makes a significant difference to performance. ok djm@
2009-08-28 - (dtucker) [channels.c configure.ac] Bug #1528: skip the tcgetattr call onDarren Tucker
the pty master on Solaris, since it never succeeds and can hang if large amounts of data is sent to the slave (eg a copy-paste). Based on a patch originally from Doke Scott, ok djm@
2009-08-28 - (djm) [Makefile.in] bz#1505: Solaris make(1) doesn't accept make variablesDamien Miller
in argv, so pass them in the environment; ok dtucker@
2009-08-28- (djm) [sftp-server.c] bz#1535: accept ENOSYS as a fallback error whenDamien Miller
attempting atomic rename(); ok dtucker@
2009-08-28 - (djm) [sshd_config.5] downgrade mention of login.conf to be an exampleDamien Miller
and mention PAM as another provider for ChallengeResponseAuthentication; bz#1408; ok dtucker@
2009-08-28downgrade mention of login.conf to be an example and mention PAM asDamien Miller
another provider for ChallengeResponseAuthentication; bz#1408; ok dtucker@
2009-08-28 - dtucker [auth-sia.c] Roll back the change for bug #1241 as it apparentlyDarren Tucker
causes problems in some Tru64 configurations.
2009-08-20 - (dtucker) [session.c openbsd-compat/port-aix.h] Bugs #1249 and #1567: moveDarren Tucker
the setpcred call on AIX to immediately before the permanently_set_uid(). Ensures that we still have privileges when we call chroot and pam_open_sesson. Based on a patch from David Leonard.
2009-08-20 - (dtucker) [includes.h] Bug #1634: do not include system glob.h if we're notDarren Tucker
using it since the type conflicts can cause problems on FreeBSD. Patch from Jonathan Chen.
2009-08-17 - (dtucker) [sshlogin.c openbsd-compat/port-aix.{c,h}] Bug #1595: makeDarren Tucker
PrintLastLog work on AIX. Based in part on a patch from Miguel Sanders.
2009-08-17 - (dtucker) [configure.ac] Check for headers before libraries for openssl anDarren Tucker
zlib, which should make the errors slightly more meaningful on platforms where there's separate "-devel" packages for those.
2009-07-29 - (tim) [contrib/cygwin/ssh-user-config] Change script to call correct errorTim Rice
function. Patch from Corinna Vinschen.
2009-07-13 - (dtucker) [openbsd-compat/getrrsetbyname.c] Reduce answer buffer size so itDarren Tucker
fits into 16 bits to work around a bug in glibc's resolver where it masks off the buffer size at 16 bits. Patch from Hauke Lampe, ok djm jakob.
2009-07-12add credit for bug #1534 patchDarren Tucker
2009-07-12 - (dtucker) [auth-pam.c] Bug #1534: move the deletion of PAM credentials onDarren Tucker
logout to after the session close. Patch from Anicka Bernathova, ok djm.
2009-07-12 - (dtucker [contrib/cygwin/ssh-{host,user}-config] Add license text. PatchDarren Tucker
from Corinna Vinschen.
2009-07-12 - (dtucker) [configure.ac] Include sys/param.h for the sys/mount.h test,Darren Tucker
prevents configure complaining on older BSDs.