summaryrefslogtreecommitdiff
path: root/session.c
AgeCommit message (Collapse)Author
2001-05-03 - markus@cvs.openbsd.org 2001/05/03 15:45:15Ben Lindstrom
[session.c] exec shell -c /bin/sh .ssh/sshrc, from abartlet@pcug.org.au
2001-04-18 - markus@cvs.openbsd.org 2001/04/17 19:34:25Ben Lindstrom
[session.c] move auth_approval to do_authenticated(). do_child(): nuke hostkeys from memory don't source .ssh/rc for subsystems.
2001-04-16 - Fix OSF SIA support displaying too much information for quietDamien Miller
logins and logins where access was denied by SIA. Patch from Chris Adams <cmadams@hiwaay.net>
2001-04-16 - djm@cvs.openbsd.org 2001/04/16 08:19:31Damien Miller
[session.c] Split motd and hushlogin checks into seperate functions, helps for portable. From Chris Adams <cmadams@hiwaay.net>; ok markus@
2001-04-14 - stevesk@cvs.openbsd.org 2001/04/14 16:33:20Ben Lindstrom
[clientloop.c packet.h session.c ssh.c ttymodes.c ttymodes.h] protocol 2 tty modes support; ok markus@
2001-04-08 - markus@cvs.openbsd.org 2001/04/06 21:00:17Ben Lindstrom
[auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth2.c channels.c session.c ssh.c sshconnect.c sshconnect.h uidswap.c uidswap.h] do gid/groups-swap in addition to uid-swap, should help if /home/group is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks to olar@openwall.com is comments. we had many requests for this.
2001-04-05 - stevesk@cvs.openbsd.org 2001/04/05 15:48:18Ben Lindstrom
[canohost.c canohost.h session.c] move get_remote_name_or_ip() to canohost.[ch]; for portable. ok markus@
2001-03-27 - (djm) Reestablish PAM credentials (which can be supplemental groupDamien Miller
memberships) after initgroups() blows them away. Report and suggested fix from Nalin Dahyabhai <nalin@redhat.com>
2001-03-26 - stevesk@cvs.openbsd.org 2001/03/25 13:16:11Ben Lindstrom
[servconf.c servconf.h session.c sshd.8 sshd_config] PrintLastLog option; from chip@valinux.com with some minor changes by me. ok markus@
2001-03-26 - djm@cvs.openbsd.org 2001/03/25 00:01:34Ben Lindstrom
[session.c] shorten; ok markus@
2001-03-24 - (djm) Pull out our own SIGPIPE hacksDamien Miller
2001-03-24 - markus@cvs.openbsd.org 2001/03/23 14:28:32Ben Lindstrom
[session.c sshd.c] ignore SIGPIPE, restore in child, fixes x11-fwd crashes; with djm@
2001-03-22 - markus@cvs.openbsd.org 2001/03/21 21:06:30Ben Lindstrom
[session.c] missing init; from mib@unimelb.edu.au
2001-03-22 - markus@cvs.openbsd.org 2001/03/21 11:43:45Ben Lindstrom
[auth1.c auth2.c session.c session.h] merge common ssh v1/2 code
2001-03-22 - markus@cvs.openbsd.org 2001/03/20 19:21:21Ben Lindstrom
[session.c] remove unused arg
2001-03-22 - markus@cvs.openbsd.org 2001/03/20 19:21:21Ben Lindstrom
[session.c] remove unused arg
2001-03-22 - (bal) auth-chall.c auth-passwd.c auth.h auth1.c auth2.c session.c CVS IDBen Lindstrom
resync
2001-03-22 - (djm) Better AIX no tty fix, spotted by Gert Doering <gert@greenie.muc.de>Damien Miller
2001-03-21 - (djm) Correctly handle SIA and AIX when no tty present. Spotted andDamien Miller
suggested fix from Mike Battersby <mib@unimelb.edu.au>
2001-03-21 - (djm) Fix ttyname breakage for AIX and Tru64. Patch from SteveDamien Miller
VanDevender <stevev@darkwing.uoregon.edu>
2001-03-17 - markus@cvs.openbsd.org 2001/03/16 19:06:30Ben Lindstrom
[auth-options.c channels.c channels.h serverloop.c session.c] implement "permitopen" key option, restricts -L style forwarding to to specified host:port pairs. based on work by harlan@genua.de
2001-03-17 - markus@cvs.openbsd.org 2001/03/15 22:07:08Ben Lindstrom
[session.c] pass Session to do_child + KNF
2001-03-17 - Support usrinfo() on AIX. Based on patch from Gert DoeringDamien Miller
<gert@greenie.muc.de>
2001-03-05 - (bal) CVS ID touch up on auth2.c, serverloop.c, session.c & sshd.cBen Lindstrom
2001-03-05 - deraadt@cvs.openbsd.org 2001/03/02 18:54:31Ben Lindstrom
[atomicio.c atomicio.h auth-chall.c auth.c auth2-chall.c crc32.h scp.c serverloop.c session.c sftp-server.8 sftp.1 ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh.1 sshd.8] make copyright lines the same format
2001-02-28 - (djm) Fully revert PAM session patch. All PAM session init is now doneDamien Miller
before the final fork().
2001-02-27 - (djm) Fix PAM fixDamien Miller
2001-02-27 - (djm) Move PAM init to after fork for non-Solaris derived PAMsDamien Miller
2001-02-26 - markus@cvs.openbsd.org 2001/02/23 15:37:45Ben Lindstrom
[session.c] handle SSH_PROTOFLAG_SCREEN_NUMBER for buggy clients
2001-02-24 - (bal) Generalize lack of UNIX sockets since this also effects CrayBen Lindstrom
not just Cygwin. Based on patch by Wendy Palm <wendyp@cray.com>
2001-02-21 - (bal) Corrected SCO luid patch by svaughan <svaughan@asterion.com>Ben Lindstrom
2001-02-21 - (stevesk) session.c: back out to where we were before:Kevin Steves
- (djm) Move PAM session initialisation until after fork in sshd. Patch from Nalin Dahyabhai <nalin@redhat.com>
2001-02-21 - (bal) Reverted out of 2001/02/15 patch by djm below because itBen Lindstrom
breaks Solaris. - (djm) Move PAM session setup back to before setuid to user. fixes problems on Solaris-drived PAMs.
2001-02-18 - (bal) Markus' blessing to rename login.[ch] -> sshlogin.[ch] andBen Lindstrom
pty.[ch] -> sshpty.[ch]
2001-02-18 - (djm) Merge BSD_AUTH support from Markus Friedl and David J. MacKenzieDamien Miller
enable with --with-bsd-auth.
2001-02-16 - markus@cvs.openbsd.org 2001/02/16 14:03:43Ben Lindstrom
[session.c] proper payload-length check for x11 w/o screen-number
2001-02-16 - (djm) Set "login ID" on systems with setluid. Only enabled for SCODamien Miller
OpenServer for now. Based on patch from svaughan <svaughan@asterion.com>
2001-02-15 - (djm) Clean up PAM namespace. Suggested by Darren MoffatDamien Miller
<Darren.Moffat@eng.sun.com>
2001-02-15 - (djm) Move PAM session setup back to before setuid to user. FixesDamien Miller
problems on Solaris-derived PAMs.
2001-02-13 - (stevesk) fix for SIA patch, misplaced session_setup_sia()Kevin Steves
2001-02-14 - (djm) Split out and improve OSF SIA auth code. Patch from Chris AdamsDamien Miller
<cmadams@hiwaay.net> with a little modification and KNF.
2001-02-14 - (djm) Move PAM session initialisation until after fork in sshd. PatchDamien Miller
from Nalin Dahyabhai <nalin@redhat.com>
2001-02-12 - (stevesk) session.c: remove debugging code.Kevin Steves
2001-02-11missed session.c part of:Kevin Steves
- stevesk@cvs.openbsd.org 2001/02/08 10:11:23 [session.c sftp-client.c] %i -> %d
2001-02-09 - itojun@cvs.openbsd.org 2001/02/08 19:30:52Ben Lindstrom
sync with netbsd tree changes. - more strict prototypes, include necessary headers - use paths.h/pathnames.h decls - size_t typecase to int -> u_long
2001-02-05 - stevesk@cvs.openbsd.org 2001/02/04 08:32:27Kevin Steves
[many files; did this manually to our top-level source dir] unexpand and remove end-of-line whitespace; ok markus@
2001-02-04NB: big update - may break stuff. Please test!Damien Miller
- (djm) OpenBSD CVS sync: - markus@cvs.openbsd.org 2001/02/03 03:08:38 [auth-options.c auth-rh-rsa.c auth-rhosts.c auth.c canohost.c] [canohost.h servconf.c servconf.h session.c sshconnect1.c sshd.8] [sshd_config] make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@ - markus@cvs.openbsd.org 2001/02/03 03:19:51 [ssh.1 sshd.8 sshd_config] Skey is now called ChallengeResponse - markus@cvs.openbsd.org 2001/02/03 03:43:09 [sshd.8] use no-pty option in .ssh/authorized_keys* if you need a 8-bit clean channel. note from Erik.Anggard@cygate.se (pr/1659) - stevesk@cvs.openbsd.org 2001/02/03 10:03:06 [ssh.1] typos; ok markus@ - djm@cvs.openbsd.org 2001/02/04 04:11:56 [scp.1 sftp-server.c ssh.1 sshd.8 sftp-client.c sftp-client.h] [sftp-common.c sftp-common.h sftp-int.c sftp-int.h sftp.1 sftp.c] Basic interactive sftp client; ok theo@ - (djm) Update RPM specs for new sftp binary - (djm) Update several bits for new optional reverse lookup stuff. I think I got them all.
2001-01-22Hopefully things did not get mixed around too much. It compiles underBen Lindstrom
Linux and works. So that is at least a good sign. =) 20010122 - (bal) OpenBSD Resync - markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus [servconf.c ssh.h sshd.c] only auth-chall.c needs #ifdef SKEY - markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus [auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c packet.c pathname.h readconf.c scp.c servconf.c serverloop.c session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h ssh1.h sshconnect1.c sshd.c ttymodes.c] move ssh1 definitions to ssh1.h, pathnames to pathnames.h - markus@cvs.openbsd.org 2001/01/19 16:48:14 [sshd.8] fix typo; from stevesk@ - markus@cvs.openbsd.org 2001/01/19 16:50:58 [ssh-dss.c] clear and free digest, make consistent with other code (use dlen); from stevesk@ - markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus [auth-options.c auth-options.h auth-rsa.c auth2.c] pass the filename to auth_parse_options() - markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001 [readconf.c] fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com - stevesk@cvs.openbsd.org 2001/01/20 18:20:29 [sshconnect2.c] dh_new_group() does not return NULL. ok markus@ - markus@cvs.openbsd.org 2001/01/20 21:33:42 [ssh-add.c] do not loop forever if askpass does not exist; from andrew@pimlott.ne.mediaone.net - djm@cvs.openbsd.org 2001/01/20 23:00:56 [servconf.c] Check for NULL return from strdelim; ok markus - djm@cvs.openbsd.org 2001/01/20 23:02:07 [readconf.c] KNF; ok markus - jakob@cvs.openbsd.org 2001/01/21 9:00:33 [ssh-keygen.1] remove -R flag; ok markus@ - markus@cvs.openbsd.org 2001/01/21 19:05:40 [atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c bufaux.c bufaux.h buffer.c canahost.c canahost.h channels.c cipher.c cli.c clientloop.c clientloop.h compat.c compress.c deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c key.c key.h log-client.c log-server.c log.c log.h login.c login.h match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h ttysmodes.c uidswap.c xmalloc.c] split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. rename util.[ch] -> misc.[ch] - (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree - (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve conflict when compiling for non-kerb install - (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes on 1/19.
2001-01-19 - (bal) Updated contrib/cygwin/ by Corinna Vinschen <vinschen@redhat.com>Ben Lindstrom
Also removed some of the 'ISSUES' comments that have been verified by djm.
2001-01-19Please grep through the source and look for 'ISSUE' comments and verifyBen Lindstrom
that I was able to get all the portable bits in the right location. As for the SKEY comment there is an email out to Markus as to how it should be resolved. Until then I just #ifdef SKEY/#endif out the whole block. - (bal) OpenBSD Resync - markus@cvs.openbsd.org 2001/01/18 16:20:21 [log-client.c log-server.c log.c readconf.c servconf.c ssh.1 ssh.h sshd.8 sshd.c] log() is at pri=LOG_INFO, since LOG_NOTICE goes to /dev/console on many systems - markus@cvs.openbsd.org 2001/01/18 16:59:59 [auth-passwd.c auth.c auth.h auth1.c auth2.c serverloop.c session.c session.h sshconnect1.c] 1) removes fake skey from sshd, since this will be much harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier. - markus@cvs.openbsd.org 2001/01/18 17:12:43 [auth-chall.c auth2-chall.c] rename *-skey.c *-chall.c since the files are not skey specific