Age | Commit message (Collapse) | Author |
|
[packet.c]
the 2^(blocksize*2) rekeying limit is too expensive for 3DES,
blowfish, etc, so enforce a 1GB limit for small blocksizes.
|
|
[key.c]
minor tweak: when generating the hex fingerprint, give strlcat the full
bound to the buffer, and add a comment below explaining why the
zero-termination is one less than the bound. markus@ ok
|
|
|
|
Call setauthdb() before loginfailed(), which may load password registry-
specific functions. Based on patch by cawlfiel@us.ibm.com.
|
|
undef'ing it.
|
|
loginfailed at all, so assume 3-arg loginfailed if not declared.
|
|
Convert aixloginmsg into platform-independant Buffer loginmsg.
|
|
|
|
Include AIX headers for authentication functions and make calls match
prototypes. Test for and handle 3-args and 4-arg variants of loginfailed.
|
|
searching libraries for it. Fixes build errors on NCR MP-RAS.
|
|
Apply atomicio typing change to these too.
|
|
[readconf.c readconf.h ssh-keysign.c ssh.c]
fix AddressFamily option in config file, from brent@graveland.net;
ok markus@
|
|
[regress/Makefile]
enable tests for dynamic fwd via socks (-D), uses nc(1)
|
|
[regress/dynamic-forward.sh]
add socks5; speedup; reformat; based on patch from dtucker@zip.com.au
|
|
[ssh.c]
convert hostkeyalias to lowercase, otherwise uppercase aliases will
not match at all; ok henning@
|
|
[channels.c ssh.1 ssh_config.5]
(re)add socks5 suppport to -D; ok djm@
now ssh(1) can act both as a socks 4 and socks 5 server and
dynamically forward ports.
|
|
[channels.c]
deny dynamic forwarding with -R for v1, too; ok djm@
|
|
[sshconnect.c]
memset 0, not \0; andrushock@korovino.net
|
|
[atomicio.c atomicio.h authfd.c clientloop.c monitor_wrap.c msg.c
progressmeter.c scp.c sftp-client.c ssh-keyscan.c ssh.h sshconnect.c
sshd.c]
deal with typing of write vs read in atomicio
|
|
[sshd.c]
report pidfile creation errors, based on patch from Roumen Petrov; ok markus@
|
|
getrrsetbyname() replacement. Patch from Roumen Petrov
|
|
flag modifications.
|
|
warnings on Solaris 2.5.1).
|
|
|
|
aj@dungeon.inka.de
|
|
of OpenSC. Report and patch from larsch@trustcenter.de
|
|
|
|
actually enable the feature, for those normally disabled. Patch by
openssh (at) roumenpetrov.info.
|
|
|
|
[readconf.c]
do not dump core for 'ssh -o proxycommand host'; ok deraadt@
|
|
[sftp-server.c]
Typo police: attribute is better written with an 'r'.
|
|
[auth2-hostbased.c auth2-pubkey.c auth2.c channels.c key.c key.h
monitor.c packet.c packet.h serverloop.c sshconnect2.c sshd.c]
int -> u_int; ok djm@, deraadt@, mouring@
|
|
[ssh_config.5]
document EnableSSHKeysign; bugzilla #599; ok deraadt@, jmc@
|
|
contrib/findssl.sh for OpenSSL header/library mismatches.
|
|
|
|
- (dtucker) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/20 05:48:21
[sshd_config]
sync some implemented options; ok markus@
|
|
- (dtucker) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/20 05:47:58
[sshd_config.5]
sync description of protocol 2 cipher proposal; ok markus
|
|
- markus@cvs.openbsd.org 2003/06/18 11:28:11
[ssh-rsa.c]
backout last change, since it violates pkcs#1
switch to share/misc/license.template
|
|
testing its value.
When HAVE_SETPROCTITLE is defined (at least on NetBSD, gcc 2.95.3) the test
"#if SPT_TYPE == SPT_REUSEARGV" is not true (probably because SPT_TYPE or
SPT_REUSEARGV is not defined). This results in the following build error:
$ gcc [flags] setproctitle.c
setproctitle.c: In function `compat_init_setproctitle':
setproctitle.c:102: `argv_start' undeclared (first use in this function)
|
|
- markus@cvs.openbsd.org 2003/06/21 09:14:05
[reconfigure.sh]
missing $SUDO; from dtucker@zip.com.au
- (dtucker) [regress/authorized_keys_root] Remove temp data file from CVS.
|
|
- markus@cvs.openbsd.org 2003/06/12 15:43:32
[Makefile]
test -HUP; dtucker at zip.com.au
|
|
- markus@cvs.openbsd.org 2003/06/12 15:40:01
[try-ciphers.sh]
add ctr
|
|
- mouring@cvs.openbsd.org 2003/05/15 04:07:12
[sftp-cmds.sh]
Advanced put/get testing for sftp. OK @djm
|
|
- markus@cvs.openbsd.org 2003/05/14 22:08:27
[ssh-com-client.sh ssh-com-keygen.sh ssh-com-sftp.sh ssh-com.sh]
test against some new commerical versions
|
|
- djm@cvs.openbsd.org 2003/04/04 09:34:22
[Makefile sftp-cmds.sh]
More regression tests, including recent directory rename bug; ok markus@
|
|
- markus@cvs.openbsd.org 2003/04/02 12:21:13
[Makefile]
enable rekey test
|
|
|
|
Import new regression tests from OpenBSD
|
|
[cipher-ctr.c]
use license from /usr/share/misc/license.template for new code
|
|
[ssh-add.c]
print out key comment on each prompt; make ssh-askpass more useable; ok djm@
|