Commit Graph

727 Commits

Author SHA1 Message Date
Ben Lindstrom
f2de06ba28 - (bal) Sync with OpenBSD:
- markus@cvs.openbsd.org 2000/10/31 9:31:58
     [compat.c]
     handle all old openssh versions
   - markus@cvs.openbsd.org 2000/10/31 13:1853
     [deattack.c]
     so that large packets do not wrap "n"; from netbsd
 - (bal) rijndel.c - fix up RCSID to match OpenBSD tree
2000-11-05 05:42:36 +00:00
Ben Lindstrom
2791cd5254 - (bal) next-posix.h - spelling and forgot a prototype 2000-10-30 05:33:55 +00:00
Ben Lindstrom
23e1371d9d - (bal) Resolved more $xno and $xyes issues in configure.in 2000-10-29 22:49:19 +00:00
Kevin Steves
9be6e267b5 - (stevesk) Create contrib/cygwin/ directory; patch from
Corinna Vinschen <vinschen@redhat.com>
2000-10-29 19:18:49 +00:00
Kevin Steves
a58e0af1bd - (stevesk) Fix typo in auth.c: USE_PAM not PAM 2000-10-29 14:38:55 +00:00
Damien Miller
95c7b4dd6e fix 2000-10-28 21:06:28 +11:00
Damien Miller
d425d4da70 - (djm) authctxt->pw may be NULL. Fix from Markus Friedl
<markus.friedl@informatik.uni-erlangen.de>
2000-10-28 21:05:57 +11:00
Damien Miller
69b69aa50d - (djm) Sync with OpenBSD:
- markus@cvs.openbsd.org  2000/10/16 15:46:32
     [ssh.1]
     fixes from pekkas@netcore.fi
   - markus@cvs.openbsd.org  2000/10/17 14:28:11
     [atomicio.c]
     return number of characters processed; ok deraadt@
   - markus@cvs.openbsd.org  2000/10/18 12:04:02
     [atomicio.c]
     undo
   - markus@cvs.openbsd.org  2000/10/18 12:23:02
     [scp.c]
     replace atomicio(read,...) with read(); ok deraadt@
   - markus@cvs.openbsd.org  2000/10/18 12:42:00
     [session.c]
     restore old record login behaviour
   - deraadt@cvs.openbsd.org 2000/10/19 10:41:13
     [auth-skey.c]
     fmt string problem in unused code
   - provos@cvs.openbsd.org  2000/10/19 10:45:16
     [sshconnect2.c]
     don't reference freed memory. okay deraadt@
   - markus@cvs.openbsd.org  2000/10/21 11:04:23
     [canohost.c]
     typo, eramore@era-t.ericsson.se; ok niels@
   - markus@cvs.openbsd.org  2000/10/23 13:31:55
     [cipher.c]
     non-alignment dependent swap_bytes(); from
     simonb@wasabisystems.com/netbsd
   - markus@cvs.openbsd.org  2000/10/26 12:38:28
     [compat.c]
     add older vandyke products
   - markus@cvs.openbsd.org  2000/10/27 01:32:19
     [channels.c channels.h clientloop.c serverloop.c session.c]
     [ssh.c util.c]
     enable non-blocking IO on channels, and tty's (except for the
     client ttys).
   - markus@cvs.openbsd.org  2000/10/27 01:48:22
     channels.c channels.h clientloop.c
     deny agent/x11 forwarding unless requested; thanks to jwl@pobox.com
2000-10-28 14:19:58 +11:00
Damien Miller
c05e01875b - (djm) Fix mangled AIXAUTHENTICATE code 2000-10-28 13:38:34 +11:00
Damien Miller
6bd90df490 - (djm) fix select hack in serverloop.c from Philippe WILLEM
<Philippe.WILLEM@urssaf.fr>
2000-10-28 13:30:55 +11:00
Damien Miller
e95b52e90b Change of employer :) 2000-10-28 13:22:06 +11:00
Damien Miller
656d717541 - (djm) Increase REKEY_BYTES to 2^24 for arc4random 2000-10-27 09:27:32 +11:00
Ben Lindstrom
76020ba5c0 - (bal) Added USE_PIPS defined to NeXT configure.in since scp hangs randomly.
- (bal) Apply fixes to configure.in pointed out by Pavel Roskin
   <proski@gnu.org>
2000-10-25 16:55:00 +00:00
Damien Miller
df1b6452ee Reword 2000-10-25 14:47:35 +11:00
Damien Miller
6f9c337401 - (djm) Added WARNING.RNG file and modified configure to ask users of the
builtin entropy code to read it.
 - (djm) Prefer builtin regex to PCRE.
2000-10-25 10:06:04 +11:00
Ben Lindstrom
e5a8525242 - (bal) Imported NEWS-OS waitpid() macros into NeXT. Since implementation
is more correct then current version.
2000-10-19 23:43:24 +00:00
Damien Miller
81fa28abaa - (djm) Don't define _REENTRANT for SNI/Reliant Unix 2000-10-20 09:14:04 +11:00
Kevin Steves
ac0966548e formatting change for contrib/hpux/README 2000-10-18 19:41:14 +00:00
Kevin Steves
ee184dae24 - (stevesk) Add egd startup scripts to contrib/hpux/ 2000-10-18 13:45:40 +00:00
Kevin Steves
8848b249ff - (stevesk) Add initial support for setproctitle(). Current
support is for the HP-UX pstat(PSTAT_SETCMD, ...) method.
2000-10-18 13:11:44 +00:00
Ben Lindstrom
b5628647ad - (bal) Changed from GNU rx to PCRE on suggestion from djm.
- (bal) Integrated Sony NEWS-OS patches from NAKAJI Hirouyuki
   <nakaji@tutrp.tut.ac.jp>
2000-10-18 00:02:25 +00:00
Damien Miller
2594de81d3 - (djm) Don't rely on atomicio's retval to determine length of askpass
supplied passphrase. Problem report from Lutz Jaenicke
   <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2000-10-17 23:22:28 +11:00
Damien Miller
ef767acfb7 - (djm) Add -lregex to cywin libs from Corinna Vinschen
<vinschen@cygnus.com>
2000-10-17 23:14:08 +11:00
Damien Miller
52dc96b717 - (djm) Make inability to read/write PRNG seedfile non-fatal 2000-10-16 20:13:43 +11:00
Damien Miller
ff649d8880 - (djm) Merge some of Nalin Dahyabhai <nalin@redhat.com> changes from the
Redhat 7.0 spec file
2000-10-16 13:35:19 +11:00
Damien Miller
2b2cf52471 - Added condrestart to Redhat init script. Patch from Pekka Savola
<pekkas@netcore.fi>
 - Update version in Redhat spec file
2000-10-16 12:25:17 +11:00
Damien Miller
cd57198b3e oops - forgot to commit 2000-10-16 12:21:36 +11:00
Damien Miller
50a41ed079 - (djm) Sync with OpenBSD:
- markus@cvs.openbsd.org  2000/10/14 04:01:15
     [cipher.c]
     debug3
   - markus@cvs.openbsd.org  2000/10/14 04:07:23
     [scp.c]
     remove spaces from arguments; from djm@mindrot.org
   - markus@cvs.openbsd.org  2000/10/14 06:09:46
     [ssh.1]
     Cipher is for SSH-1 only
   - markus@cvs.openbsd.org  2000/10/14 06:12:09
     [servconf.c servconf.h serverloop.c session.c sshd.8]
     AllowTcpForwarding; from naddy@
   - markus@cvs.openbsd.org  2000/10/14 06:16:56
     [auth2.c compat.c compat.h sshconnect2.c version.h]
     OpenSSH_2.3; note that is is not complete, but the version number
     needs to be changed for interoperability reasons
   - markus@cvs.openbsd.org  2000/10/14 06:19:45
     [auth-rsa.c]
     do not send RSA challenge if key is not allowed by key-options; from
     eivind@ThinkSec.com
   - markus@cvs.openbsd.org  2000/10/15 08:14:01
     [rijndael.c session.c]
     typos; from stevesk@sweden.hp.com
   - markus@cvs.openbsd.org  2000/10/15 08:18:31
     [rijndael.c]
     typo
 - Copy manpages back over from OpenBSD - too tedious to wade through diffs
2000-10-16 12:14:42 +11:00
Damien Miller
5993935f76 - (djm) Fix ssh2 hang on background processes at logout. 2000-10-15 12:21:32 +11:00
Ben Lindstrom
b4df15d1e1 - (bal) Add support for realpath and getcwd for platforms with broken
or missing realpath implementations for sftp-server.
 - (bal) Corrected mistake in INSTALL in regards to GNU rx library
2000-10-15 00:17:36 +00:00
Ben Lindstrom
ca1c2a0bac Add support for GNU rx library for those lacking regexp support 2000-10-14 21:33:19 +00:00
Kevin Steves
e0f49143d3 - (stevesk) Display correct path to ssh-askpass in configure output.
Report from Lutz Jaenicke.
2000-10-14 17:51:48 +00:00
Kevin Steves
c368a3c939 comparing against buf and not hostname; openbsd tree has this
problem also.
2000-10-14 16:10:06 +00:00
Kevin Steves
8d3ebb418a get_last_login_time() called twice. 2000-10-14 15:31:35 +00:00
Kevin Steves
6beac8c5a0 function prototype and definition consistency cleanup. 2000-10-14 15:08:49 +00:00
Kevin Steves
092f2effc5 - (stevesk) ~/.hushlogin shouldn't cause required password change to
be bypassed.
2000-10-14 13:36:13 +00:00
Kevin Steves
f16b9d2773 - (stevesk) rijndael.c: cleanup missing declaration warnings. 2000-10-14 10:57:04 +00:00
Kevin Steves
cee23de153 - (stevesk) Include config.h in rijndael.c so we define intXX_t and
u_intXX_t types on all platforms.
2000-10-14 10:51:18 +00:00
Damien Miller
e4041c9d81 - (djm) Fix scp user@host handling
- (djm) Don't clobber ssh_prng_cmds on install
2000-10-14 17:45:58 +11:00
Damien Miller
874d77bb13 - (djm) Big OpenBSD sync:
- markus@cvs.openbsd.org  2000/09/30 10:27:44
     [log.c]
     allow loglevel debug
   - markus@cvs.openbsd.org  2000/10/03 11:59:57
     [packet.c]
     hmac->mac
   - markus@cvs.openbsd.org  2000/10/03 12:03:03
     [auth-krb4.c auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth1.c]
     move fake-auth from auth1.c to individual auth methods, disables s/key in
     debug-msg
   - markus@cvs.openbsd.org  2000/10/03 12:16:48
     ssh.c
     do not resolve canonname, i have no idea why this was added oin ossh
   - markus@cvs.openbsd.org  2000/10/09 15:30:44
     ssh-keygen.1 ssh-keygen.c
     -X now reads private ssh.com DSA keys, too.
   - markus@cvs.openbsd.org  2000/10/09 15:32:34
     auth-options.c
     clear options on every call.
   - markus@cvs.openbsd.org  2000/10/09 15:51:00
     authfd.c authfd.h
     interop with ssh-agent2, from <res@shore.net>
   - markus@cvs.openbsd.org  2000/10/10 14:20:45
     compat.c
     use rexexp for version string matching
   - provos@cvs.openbsd.org  2000/10/10 22:02:18
     [kex.c kex.h myproposal.h ssh.h ssh2.h sshconnect2.c sshd.c dh.c dh.h]
     First rough implementation of the diffie-hellman group exchange.  The
     client can ask the server for bigger groups to perform the diffie-hellman
     in, thus increasing the attack complexity when using ciphers with longer
     keys.  University of Windsor provided network, T the company.
   - markus@cvs.openbsd.org  2000/10/11 13:59:52
     [auth-rsa.c auth2.c]
     clear auth options unless auth sucessfull
   - markus@cvs.openbsd.org  2000/10/11 14:00:27
     [auth-options.h]
     clear auth options unless auth sucessfull
   - markus@cvs.openbsd.org  2000/10/11 14:03:27
     [scp.1 scp.c]
     support 'scp -o' with help from mouring@pconline.com
   - markus@cvs.openbsd.org  2000/10/11 14:11:35
     [dh.c]
     Wall
   - markus@cvs.openbsd.org  2000/10/11 14:14:40
     [auth.h auth2.c readconf.c readconf.h readpass.c servconf.c servconf.h]
     [ssh.h sshconnect2.c sshd_config auth2-skey.c cli.c cli.h]
     add support for s/key (kbd-interactive) to ssh2, based on work by
     mkiernan@avantgo.com and me
   - markus@cvs.openbsd.org  2000/10/11 14:27:24
     [auth.c auth1.c auth2.c authfile.c cipher.c cipher.h kex.c kex.h]
     [myproposal.h packet.c readconf.c session.c ssh.c ssh.h sshconnect1.c]
     [sshconnect2.c sshd.c]
     new cipher framework
   - markus@cvs.openbsd.org  2000/10/11 14:45:21
     [cipher.c]
     remove DES
   - markus@cvs.openbsd.org  2000/10/12 03:59:20
     [cipher.c cipher.h sshconnect1.c sshconnect2.c sshd.c]
     enable DES in SSH-1 clients only
   - markus@cvs.openbsd.org  2000/10/12 08:21:13
     [kex.h packet.c]
     remove unused
   - markus@cvs.openbsd.org  2000/10/13 12:34:46
     [sshd.c]
     Kludge for F-Secure Macintosh < 1.0.2; appro@fy.chalmers.se
   - markus@cvs.openbsd.org  2000/10/13 12:59:15
     [cipher.c cipher.h myproposal.h  rijndael.c rijndael.h]
     rijndael/aes support
   - markus@cvs.openbsd.org  2000/10/13 13:10:54
     [sshd.8]
     more info about -V
   - markus@cvs.openbsd.org  2000/10/13 13:12:02
     [myproposal.h]
     prefer no compression
2000-10-14 16:23:11 +11:00
Damien Miller
89d9796fbe - (djm) Add workaround for Linux 2.4's gratuitious errno change. Patch
from Martin Johansson <fatbob@acc.umu.se>
2000-10-14 12:37:19 +11:00
Damien Miller
15b2952cd8 - (djm) Revert SSH2 serverloop hack, will find a better way. 2000-10-14 12:33:48 +11:00
Damien Miller
60819b44bd - (djm) Don't accept PAM_PROMPT_ECHO_ON messages during initial auth 2000-10-14 11:16:12 +11:00
Kevin Steves
48b7cc0dd7 - (stevesk) Fix detection of pw_class struct member in configure;
patch from KAMAHARA Junzo <kamahara@cc.kshosen.ac.jp>
2000-10-07 13:24:00 +00:00
Kevin Steves
cccca27890 - (stevesk) Print PAM return value in PAM log messages to aid
with debugging.
2000-10-07 11:16:55 +00:00
Damien Miller
e68f92bbf3 - (djm) Add host system and CC to end-of-configure report. Suggested by
Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2000-10-02 21:42:15 +11:00
Damien Miller
05dd7950f9 - (djm) Cygwin fixes from Corinna Vinschen <vinschen@cygnus.com> 2000-10-01 00:42:48 +11:00
Damien Miller
87f43ff889 Forgot to commit changelog from loginrec changes
- (djm) Fix 9 character passphrase failure with gnome-ssh-askpass.
   Problem was caused by interrupted read in ssh-add. Report from Donald
   J. Barry <don@astro.cornell.edu>
2000-09-30 21:36:54 +11:00
Damien Miller
f5a81473a9 - (djm) Irix strips "/dev/tty" from [uw]tmp entries (other systems only
strip "/dev/"). Fix loginrec.c based on patch from Alain St-Denis
   <Alain.St-Denis@ec.gc.ca>
2000-09-30 21:34:44 +11:00
Damien Miller
51155a70e7 - (djm) Add LICENSE to RPM spec files 2000-09-30 14:41:38 +11:00