summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2005-07-14 - dtucker@cvs.openbsd.org 2005/07/08 10:20:41Darren Tucker
[ssh_config.5] change BindAddress to match recent ssh -b change; prompted by markus@
2005-07-14 - markus@cvs.openbsd.org 2005/07/08 09:41:33Darren Tucker
[channels.h] race when efd gets closed while there is still buffered data: change CHANNEL_EFD_OUTPUT_ACTIVE() 1) c->efd must always be valid AND 2a) no EOF has been seen OR 2b) there is buffered data report, initial fix and testing Chuck Cranor
2005-07-14 - dtucker@cvs.openbsd.org 2005/07/08 09:26:18Darren Tucker
[misc.c] Make comment match code; ok djm@
2005-07-14 - dtucker@cvs.openbsd.org 2005/07/06 09:33:05Darren Tucker
[ssh.1] clarify meaning of ssh -b ; with & ok jmc@
2005-07-07 - (dtucker) [acconfig.h auth-krb5.c configure.ac gss-serv-krb5.c] RemoveDarren Tucker
calls to krb5_init_ets, which has not been required since krb-1.1.x and most Kerberos versions no longer export in their public API. From sxw at inf.ed.ac.uk, ok djm@
2005-07-07 - (dtucker) [auth-krb5.c] There's no guarantee that snprintf will set errnoDarren Tucker
in the case where the buffer is insufficient, so always return ENOMEM. Also pointed out by sxw at inf.ed.ac.uk.
2005-07-07 - [auth-krb5.c auth.h gss-serv-krb5.c] Move KRB5CCNAME generation for the MITDarren Tucker
Kerberos code path into a common function and expand mkstemp template to be consistent with the rest of OpenSSH. From sxw at inf.ed.ac.uk, ok djm@
2005-07-06 - markus@cvs.openbsd.org 2005/07/04 14:04:11Damien Miller
[channels.c] don't forget to set x11_saved_display
2005-07-06 - jmc@cvs.openbsd.org 2005/07/04 11:29:51Damien Miller
[ssh_config.5] fix Xr and a little grammar;
2005-07-06 - djm@cvs.openbsd.org 2005/07/04 00:58:43Damien Miller
[channels.c clientloop.c clientloop.h misc.c misc.h ssh.c ssh_config.5] implement support for X11 and agent forwarding over multiplex slave connections. Because of protocol limitations, the slave connections inherit the master's DISPLAY and SSH_AUTH_SOCK rather than distinctly forwarding their own. ok dtucker@ "put it in" deraadt@
2005-07-06 - markus@cvs.openbsd.org 2005/07/01 13:19:47Damien Miller
[channels.c] don't free() if getaddrinfo() fails; report mpech@
2005-06-26wrapDamien Miller
2005-06-26 - djm@cvs.openbsd.org 2005/06/25 22:47:49Damien Miller
[ssh.c] do the default port filling code a few lines earlier, so it really does fix %p
2005-06-26 - djm@cvs.openbsd.org 2005/06/18 04:30:36Damien Miller
[ssh.c ssh_config.5] allow ControlPath=none, patch from dwmw2 AT infradead.org; ok dtucker@
2005-06-26 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2005/06/17 22:53:47 [ssh.c sshconnect.c] Fix ControlPath's %p expanding to "0" for a default port, spotted dwmw2 AT infradead.org; ok markus@
2005-06-19 - (djm) [loginrec.c ssh-rand-helper.c] Fix -Wsign-compare for portable,Damien Miller
tested and fixes tim@
2005-06-19+opensshd.initDamien Miller
2005-06-19 - djm@cvs.openbsd.org 2005/06/17 02:44:33Damien Miller
[auth1.c] make this -Wsign-compare clean; ok avsm@ markus@
2005-06-19 - djm@cvs.openbsd.org 2005/05/20 12:57:01;Damien Miller
[auth1.c] split protocol 1 auth methods into separate functions, makes authloop much more readable; fixes and ok markus@ (portable ok & polish dtucker@)
2005-06-17 - (dtucker) [cipher.c openbsd-compat/openbsd-compat.hDarren Tucker
openbsd-compat/openssl-compat.c] only include openssl compat stuff where it's needed as it can cause conflicts elsewhere (eg xcrypt.c). Found by and ok tim@ ---------------------------------------------------------------------- automatically CVS: CVS: Committing in . CVS: CVS: Modified Files: ----------------------------------------------------------------------
2005-06-17 - djm@cvs.openbsd.org 2005/06/17 02:44:33Damien Miller
[auth-rsa.c auth.c auth1.c auth2-chall.c auth2-gss.c authfd.c authfile.c] [bufaux.c canohost.c channels.c cipher.c clientloop.c dns.c gss-serv.c] [kex.c kex.h key.c mac.c match.c misc.c packet.c packet.h scp.c] [servconf.c session.c session.h sftp-client.c sftp-server.c sftp.c] [ssh-keyscan.c ssh-rsa.c sshconnect.c sshconnect1.c sshconnect2.c sshd.c] make this -Wsign-compare clean; ok avsm@ markus@ NB. auth1.c changes not committed yet (conflicts with uncommitted sync) NB2. more work may be needed to make portable Wsign-compare clean
2005-06-17 - markus@cvs.openbsd.org 2005/06/16 08:00:00Damien Miller
[canohost.c channels.c sshd.c] don't exit if getpeername fails for forwarded ports; bugzilla #1054; ok djm
2005-06-17 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2005/06/16 03:38:36 [channels.c channels.h clientloop.c clientloop.h ssh.c] move x11_get_proto from ssh.c to clientloop.c, to make muliplexed xfwd easier later; ok deraadt@
2005-06-16 - dtucker@cvs.openbsd.org 2005/06/09 13:43:49Damien Miller
[cipher.c] Correctly initialize end of array sentinel; ok djm@ (Id sync only, change already in portable)
2005-06-16 - djm@cvs.openbsd.org 2005/06/08 11:25:09Damien Miller
[clientloop.c readconf.c readconf.h ssh.c ssh_config.5] add ControlMaster=auto/autoask options to support opportunistic multiplexing; tested avsm@ and jakob@, ok markus@
2005-06-16 - djm@cvs.openbsd.org 2005/06/08 03:50:00Damien Miller
[ssh-keygen.1 ssh-keygen.c sshd.8] increase default rsa/dsa key length from 1024 to 2048 bits; ok markus@ deraadt@
2005-06-16 - djm@cvs.openbsd.org 2005/06/06 11:20:36Damien Miller
[auth.c auth.h misc.c misc.h ssh.c ssh_config.5 sshconnect.c] introduce a generic %foo expansion function. replace existing % expansion and add expansion to ControlPath; ok markus@
2005-06-16 - (djm) OpenBSD CVS SyncDamien Miller
- jaredy@cvs.openbsd.org 2005/06/07 13:25:23 [progressmeter.c] catch SIGWINCH and resize progress meter accordingly; ok markus dtucker
2005-06-09typoDarren Tucker
2005-06-09 - (dtucker) [cipher.c openbsd-compat/Makefile.inDarren Tucker
openbsd-compat/openbsd-compat.{c,h} openbsd-compat/openssl-compat.h] Move compatibility code for supporting older OpenSSL versions to the compat layer. Suggested by and "no objection" djm@
2005-06-07 - (dtucker) [configure.ac] Continue the hunt for LLONG_MIN and LLONG_MAX:Darren Tucker
in today's episode we attempt to coax it from limits.h where it may be hiding, failing that we take the DIY approach. Tested by tim@
2005-06-05 - (djm) [README README.privsep] Mention FreeBSD and NetBSD as beingDamien Miller
supported by privsep. Requested by des AT des.no
2005-06-03 - (dtucker) [configure.ac] Point configure's reporting address at theDarren Tucker
openssh-unix-dev list. ok tim@ djm@
2005-06-03 - (dtucker) [configure.ac] Only try gcc -std=gnu99 if LLONG_MAX isn'tDarren Tucker
defined, and check that it helps before keeping it in CFLAGS. Some old gcc's don't set an error code when encountering an unknown value in -std. Found and tested by tim@.
2005-06-02 - (tim) [configure.ac] Some platforms need sys/types.h for arpa/nameser.h.Tim Rice
Take AC_CHECK_HEADERS test out of ultrix section. It caused other platforms to skip builtin standard includes tests. (first AC_CHECK_HEADERS test must be run on all platforms) Add missing ;; to case statement. OK dtucker@
2005-06-01 - (tim) [configure.ac] set TEST_SHELL for OpenServer 6Tim Rice
2005-06-01 - (tim) [config.guess config.sub] Update to '2005-05-27' version.Tim Rice
2005-06-01 - djm@cvs.openbsd.org 2005/05/27 08:30:37Darren Tucker
[ssh.c] fix -O for cases where no ControlPath has been specified or socket at ControlPath is not contactable; spotted by and ok avsm@
2005-06-01 - dtucker@cvs.openbsd.org 2005/05/26 09:08:12Darren Tucker
[ssh-keygen.c] uint32_t -> u_int32_t for consistency; ok djm@
2005-06-01 - avsm@cvs.openbsd.org 2005/05/26 02:08:05Darren Tucker
[scp.c] If copying multiple files to a target file (which normally fails, as it must be a target directory), kill the spawned ssh child before exiting. This stops it trying to authenticate and spewing lots of output. deraadt@ ok
2005-06-01 - (dtucker) [configure.ac openbsd-compat/Makefile.in openbsd-compat/strtoll.c]Darren Tucker
Add strtoll to the compat library, from OpenBSD.
2005-06-01 - (dtucker) [configure.ac] Look for _getshort and _getlong inDarren Tucker
arpa/nameser.h.
2005-05-31 - (dtucker) [mdoc2man.awk] Teach it to understand .Ox.Darren Tucker
2005-05-31 - (dtucker) [contrib/aix/pam.conf] Correct comments. From davidl atDarren Tucker
vintela.com.
2005-05-30 - (dtucker) [README] Link to new release notes. Beter late than never...Darren Tucker
2005-05-29typo in commentDarren Tucker
2005-05-29 - (dtucker) [openbsd-compat/port-aix.c] Minor correction to debug message,Darren Tucker
spotted by tim@.
2005-05-29 - (dtucker) [openbsd-compat/port-aix.c] Whitespace cleanups while there.Darren Tucker
2005-05-2920050529Darren Tucker
- (dtucker) [openbsd-compat/port-aix.c] Bug #1046: AIX 5.3 expects the argument to passwdexpired to be initialized to NULL. Suggested by tim@ While at it, initialize the other arguments to auth functions in case they ever acquire this behaviour.
2005-05-28 - (dtucker) [openbsd-compat/port-aix.h] Use the HAVE_DECL_* definitions asDarren Tucker
per the autoconf man page. Configure should always define them but it doesn't hurt to check.