1. 26 Mar, 2006 1 commit
    • Damien Miller's avatar
      - djm@cvs.openbsd.org 2006/03/25 22:22:43 · 51096383
      Damien Miller authored
           [atomicio.h auth-options.h auth.h auth2-gss.c authfd.h authfile.h]
           [bufaux.h buffer.h canohost.h channels.h cipher.h clientloop.h]
           [compat.h compress.h crc32.c crc32.h deattack.h dh.h dispatch.h]
           [dns.c dns.h getput.h groupaccess.h gss-genr.c gss-serv-krb5.c]
           [gss-serv.c hostfile.h includes.h kex.h key.h log.h mac.h match.h]
           [misc.h monitor.h monitor_fdpass.h monitor_mm.h monitor_wrap.h msg.h]
           [myproposal.h packet.h pathnames.h progressmeter.h readconf.h rsa.h]
           [scard.h servconf.h serverloop.h session.h sftp-common.h sftp.h]
           [ssh-gss.h ssh.h ssh1.h ssh2.h sshconnect.h sshlogin.h sshpty.h]
           [ttymodes.h uidswap.h uuencode.h xmalloc.h]
           standardise spacing in $OpenBSD$ tags; requested by deraadt@
      51096383
  2. 17 Nov, 2003 1 commit
    • Damien Miller's avatar
      - jakob@cvs.openbsd.org 2003/11/10 16:23:41 · f58b58ce
      Damien Miller authored
           [bufaux.c bufaux.h cipher.c cipher.h hostfile.c hostfile.h key.c]
           [key.h sftp-common.c sftp-common.h sftp-server.c sshconnect.c sshd.c]
           [ssh-dss.c ssh-rsa.c uuencode.c uuencode.h]
           constify. ok markus@ & djm@
      f58b58ce
  3. 28 Jun, 2003 1 commit
  4. 15 May, 2003 1 commit
    • Damien Miller's avatar
      - jakob@cvs.openbsd.org 2003/05/14 18:16:20 · 37876e91
      Damien Miller authored
           [key.c key.h readconf.c readconf.h ssh_config.5 sshconnect.c]
           [dns.c dns.h README.dns ssh-keygen.1 ssh-keygen.c]
           add experimental support for verifying hos keys using DNS as described
           in draft-ietf-secsh-dns-xx.txt. more information in README.dns.
           ok markus@ and henning@
      37876e91
  5. 24 Feb, 2003 1 commit
  6. 22 Mar, 2002 1 commit
  7. 13 Mar, 2002 2 commits
  8. 26 Feb, 2002 1 commit
    • Ben Lindstrom's avatar
      - markus@cvs.openbsd.org 2002/02/24 19:14:59 · 90fd814f
      Ben Lindstrom authored
           [auth2.c authfd.c authfd.h authfile.c kexdh.c kexgex.c key.c key.h
            ssh-dss.c ssh-dss.h ssh-keygen.c ssh-rsa.c ssh-rsa.h sshconnect2.c]
           signed vs. unsigned: make size arguments u_int, ok stevesk@
      90fd814f
  9. 18 Sep, 2001 1 commit
  10. 04 Jul, 2001 4 commits
    • Ben Lindstrom's avatar
      - markus@cvs.openbsd.org 2001/06/26 20:14:11 · c5b68001
      Ben Lindstrom authored
           [key.c key.h ssh.c sshconnect1.c sshconnect2.c]
           add smartcard support to the client, too (now you can use both
           the agent and the client).
      c5b68001
    • Ben Lindstrom's avatar
      - markus@cvs.openbsd.org 2001/06/26 17:27:25 · 4cc240da
      Ben Lindstrom authored
           [authfd.h authfile.h auth.h auth-options.h bufaux.h buffer.h
            canohost.h channels.h cipher.h clientloop.h compat.h compress.h
            crc32.h deattack.h dh.h dispatch.h groupaccess.c groupaccess.h
            hostfile.h kex.h key.h log.c log.h mac.h misc.c misc.h mpaux.h
            packet.h radix.h readconf.h readpass.h rsa.h servconf.h serverloop.h
            session.h sftp-common.c sftp-common.h sftp-glob.h sftp-int.h
            sshconnect.h ssh-dss.h sshlogin.h sshpty.h ssh-rsa.h sshtty.h
            tildexpand.h uidswap.h uuencode.h xmalloc.h]
           remove comments from .h, since they are cut&paste from the .c files
           and out of sync
      4cc240da
    • Ben Lindstrom's avatar
      - itojun@cvs.openbsd.org 2001/06/26 06:32:58 · 16ae3d0d
      Ben Lindstrom authored
           [atomicio.h authfd.h authfile.h auth.h auth-options.h bufaux.h
            buffer.h canohost.h channels.h cipher.h clientloop.h compat.h
            compress.h crc32.h deattack.h dh.h dispatch.h groupaccess.h
            hostfile.h kex.h key.h log.h mac.h match.h misc.h mpaux.h packet.h
            radix.h readconf.h readpass.h rsa.h]
           prototype pedant.  not very creative...
           - () -> (void)
           - no variable names
      16ae3d0d
    • Ben Lindstrom's avatar
      - markus@cvs.openbsd.org 2001/06/25 08:25:41 · 44697233
      Ben Lindstrom authored
           [channels.c channels.h cipher.c clientloop.c compat.c compat.h
            hostfile.c kex.c kex.h key.c key.h nchan.c packet.c serverloop.c
            session.c session.h sftp-server.c ssh-add.c ssh-agent.c uuencode.h]
           update copyright for 2001
      44697233
  11. 17 Apr, 2001 1 commit
  12. 13 Mar, 2001 1 commit
    • Ben Lindstrom's avatar
      - OpenBSD CVS Sync · cfccef96
      Ben Lindstrom authored
         - markus@cvs.openbsd.org 2001/03/12 22:02:02
           [key.c key.h ssh-add.c ssh-keygen.c sshconnect.c sshconnect2.c]
           remove old key_fingerprint interface, s/_ex//
      cfccef96
  13. 11 Mar, 2001 1 commit
  14. 29 Jan, 2001 1 commit
    • Ben Lindstrom's avatar
      - niklas@cvs.openbsd.org 2001/01/2001 · 36579d3d
      Ben Lindstrom authored
           [atomicio.h canohost.h clientloop.h deattack.h dh.h dispatch.h
            groupaccess.c groupaccess.h hmac.h hostfile.h includes.h kex.h
            key.h log.h login.h match.h misc.h myproposal.h nchan.ms pathnames.h
            radix.h readpass.h rijndael.h serverloop.h session.h sftp.h ssh-add.1
            ssh-dss.h ssh-keygen.1 ssh-keyscan.1 ssh-rsa.h ssh1.h ssh_config
            sshconnect.h sshd_config tildexpand.h uidswap.h uuencode.h]
           $OpenBSD$
      36579d3d
  15. 22 Jan, 2001 1 commit
    • Ben Lindstrom's avatar
      Hopefully things did not get mixed around too much. It compiles under · 226cfa03
      Ben Lindstrom authored
      Linux and works.  So that is at least a good sign. =)
      20010122
       - (bal) OpenBSD Resync
         - markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus
           [servconf.c ssh.h sshd.c]
           only auth-chall.c needs #ifdef SKEY
         - markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus
           [auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
            auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c
            packet.c pathname.h readconf.c scp.c servconf.c serverloop.c
            session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h
            ssh1.h sshconnect1.c sshd.c ttymodes.c]
           move ssh1 definitions to ssh1.h, pathnames to pathnames.h
         - markus@cvs.openbsd.org 2001/01/19 16:48:14
           [sshd.8]
           fix typo; from stevesk@
         - markus@cvs.openbsd.org 2001/01/19 16:50:58
           [ssh-dss.c]
           clear and free digest, make consistent with other code (use dlen); from
           stevesk@
         - markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus
           [auth-options.c auth-options.h auth-rsa.c auth2.c]
           pass the filename to auth_parse_options()
         - markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001
           [readconf.c]
           fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com
         - stevesk@cvs.openbsd.org 2001/01/20 18:20:29
           [sshconnect2.c]
           dh_new_group() does not return NULL.  ok markus@
         - markus@cvs.openbsd.org 2001/01/20 21:33:42
           [ssh-add.c]
           do not loop forever if askpass does not exist; from
           andrew@pimlott.ne.mediaone.net
         - djm@cvs.openbsd.org 2001/01/20 23:00:56
           [servconf.c]
           Check for NULL return from strdelim; ok markus
         - djm@cvs.openbsd.org 2001/01/20 23:02:07
           [readconf.c]
           KNF; ok markus
         - jakob@cvs.openbsd.org 2001/01/21 9:00:33
           [ssh-keygen.1]
           remove -R flag; ok markus@
         - markus@cvs.openbsd.org 2001/01/21 19:05:40
           [atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c
            auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
            auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c
            bufaux.c  bufaux.h buffer.c canahost.c canahost.h channels.c
            cipher.c cli.c clientloop.c clientloop.h compat.c compress.c
            deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c
            key.c key.h log-client.c log-server.c log.c log.h login.c login.h
            match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c
            readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h
            session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c
            ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h
            sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h
            ttysmodes.c uidswap.c xmalloc.c]
           split ssh.h and try to cleanup the #include mess. remove unnecessary
           #includes.  rename util.[ch] -> misc.[ch]
       - (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree
       - (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve
         conflict when compiling for non-kerb install
       - (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes
         on 1/19.
      226cfa03
  16. 22 Dec, 2000 1 commit
    • Ben Lindstrom's avatar
      One way to massive patch. <sigh> It compiles and works under Linux.. · 46c16220
      Ben Lindstrom authored
      And I think I have all the bits right from the OpenBSD tree.
      20001222
       - Updated RCSID for pty.c
       - (bal) OpenBSD CVS Updates:
        - markus@cvs.openbsd.org 2000/12/21 15:10:16
          [auth-rh-rsa.c hostfile.c hostfile.h sshconnect.c]
          print keyfile:line for changed hostkeys, for deraadt@, ok deraadt@
        - markus@cvs.openbsd.org 2000/12/20 19:26:56
          [authfile.c]
          allow ssh -i userkey for root
        - markus@cvs.openbsd.org 2000/12/20 19:37:21
          [authfd.c authfd.h kex.c sshconnect2.c sshd.c uidswap.c uidswap.h]
          fix prototypes; from stevesk@pobox.com
        - markus@cvs.openbsd.org 2000/12/20 19:32:08
          [sshd.c]
          init pointer to NULL; report from Jan.Ivan@cern.ch
        - markus@cvs.openbsd.org 2000/12/19 23:17:54
          [auth-krb4.c auth-options.c auth-options.h auth-rhosts.c auth-rsa.c
           auth1.c auth2-skey.c auth2.c authfd.c authfd.h authfile.c bufaux.c
           bufaux.h buffer.c canohost.c channels.c clientloop.c compress.c
           crc32.c deattack.c getput.h hmac.c hmac.h hostfile.c kex.c kex.h
           key.c key.h log.c login.c match.c match.h mpaux.c mpaux.h packet.c
           packet.h radix.c readconf.c rsa.c scp.c servconf.c servconf.h
           serverloop.c session.c sftp-server.c ssh-agent.c ssh-dss.c ssh-dss.h
           ssh-keygen.c ssh-keyscan.c ssh-rsa.c ssh-rsa.h ssh.c ssh.h  uuencode.c
           uuencode.h sshconnect1.c sshconnect2.c sshd.c tildexpand.c]
          replace 'unsigned bla' with 'u_bla' everywhere. also replace 'char
          unsigned' with u_char.
      46c16220
  17. 13 Nov, 2000 1 commit
    • Damien Miller's avatar
      - (djm) Merge OpenBSD changes: · 0bc1bd81
      Damien Miller authored
         - markus@cvs.openbsd.org  2000/11/06 16:04:56
           [channels.c channels.h clientloop.c nchan.c serverloop.c]
           [session.c ssh.c]
           agent forwarding and -R for ssh2, based on work from
           jhuuskon@messi.uku.fi
         - markus@cvs.openbsd.org  2000/11/06 16:13:27
           [ssh.c sshconnect.c sshd.c]
           do not disabled rhosts(rsa) if server port > 1024; from
           pekkas@netcore.fi
         - markus@cvs.openbsd.org  2000/11/06 16:16:35
           [sshconnect.c]
           downgrade client to 1.3 if server is 1.4; help from mdb@juniper.net
         - markus@cvs.openbsd.org  2000/11/09 18:04:40
           [auth1.c]
           typo; from mouring@pconline.com
         - markus@cvs.openbsd.org  2000/11/12 12:03:28
           [ssh-agent.c]
           off-by-one when removing a key from the agent
         - markus@cvs.openbsd.org  2000/11/12 12:50:39
           [auth-rh-rsa.c auth2.c authfd.c authfd.h]
           [authfile.c hostfile.c kex.c kex.h key.c key.h myproposal.h]
           [readconf.c readconf.h rsa.c rsa.h servconf.c servconf.h ssh-add.c]
           [ssh-agent.c ssh-keygen.1 ssh-keygen.c ssh.1 ssh.c ssh_config]
           [sshconnect1.c sshconnect2.c sshd.8 sshd.c sshd_config ssh-dss.c]
           [ssh-dss.h ssh-rsa.c ssh-rsa.h dsa.c dsa.h]
           add support for RSA to SSH2.  please test.
           there are now 3 types of keys: RSA1 is used by ssh-1 only,
           RSA and DSA are used by SSH2.
           you can use 'ssh-keygen -t rsa -f ssh2_rsa_file' to generate RSA
           keys for SSH2 and use the RSA keys for hostkeys or for user keys.
           SSH2 RSA or DSA keys are added to .ssh/authorised_keys2 as before.
       - (djm) Fix up Makefile and Redhat init script to create RSA host keys
       - (djm) Change to interim version
      0bc1bd81
  18. 16 Sep, 2000 1 commit
    • Damien Miller's avatar
      - (djm) Merge OpenBSD changes: · e4340be5
      Damien Miller authored
         - markus@cvs.openbsd.org  2000/09/05 02:59:57
           [session.c]
           print hostname (not hushlogin)
         - markus@cvs.openbsd.org  2000/09/05 13:18:48
           [authfile.c ssh-add.c]
           enable ssh-add -d for DSA keys
         - markus@cvs.openbsd.org  2000/09/05 13:20:49
           [sftp-server.c]
           cleanup
         - markus@cvs.openbsd.org  2000/09/06 03:46:41
           [authfile.h]
           prototype
         - deraadt@cvs.openbsd.org 2000/09/07 14:27:56
           [ALL]
           cleanup copyright notices on all files.  I have attempted to be
           accurate with the details.  everything is now under Tatu's licence
           (which I copied from his readme), and/or the core-sdi bsd-ish thing
           for deattack, or various openbsd developers under a 2-term bsd
           licence.  We're not changing any rules, just being accurate.
         - markus@cvs.openbsd.org  2000/09/07 14:40:30
           [channels.c channels.h clientloop.c serverloop.c ssh.c]
           cleanup window and packet sizes for ssh2 flow control; ok niels
         - markus@cvs.openbsd.org  2000/09/07 14:53:00
           [scp.c]
           typo
         - markus@cvs.openbsd.org  2000/09/07 15:13:37
           [auth-options.c auth-options.h auth-rh-rsa.c auth-rsa.c auth.c]
           [authfile.h canohost.c channels.h compat.c hostfile.h log.c match.h]
           [pty.c readconf.c]
           some more Copyright fixes
         - markus@cvs.openbsd.org  2000/09/08 03:02:51
           [README.openssh2]
           bye bye
         - deraadt@cvs.openbsd.org 2000/09/11 18:38:33
           [LICENCE cipher.c]
           a few more comments about it being ARC4 not RC4
         - markus@cvs.openbsd.org  2000/09/12 14:53:11
           [log-client.c log-server.c log.c ssh.1 ssh.c ssh.h sshd.8 sshd.c]
           multiple debug levels
         - markus@cvs.openbsd.org  2000/09/14 14:25:15
           [clientloop.c]
           typo
         - deraadt@cvs.openbsd.org 2000/09/15 01:13:51
           [ssh-agent.c]
           check return value for setenv(3) for failure, and deal appropriately
      e4340be5
  19. 29 Aug, 2000 1 commit
  20. 07 May, 2000 1 commit
    • Damien Miller's avatar
      - Remove references to SSLeay. · e247cc40
      Damien Miller authored
       - Big OpenBSD CVS update
        - markus@cvs.openbsd.org
          [clientloop.c]
          - typo
          [session.c]
          - update proctitle on pty alloc/dealloc, e.g. w/ windows client
          [session.c]
          - update proctitle for proto 1, too
          [channels.h nchan.c serverloop.c session.c sshd.c]
          - use c-style comments
        - deraadt@cvs.openbsd.org
          [scp.c]
          - more atomicio
        - markus@cvs.openbsd.org
          [channels.c]
          - set O_NONBLOCK
          [ssh.1]
          - update AUTHOR
          [readconf.c ssh-keygen.c ssh.h]
          - default DSA key file ~/.ssh/id_dsa
          [clientloop.c]
          - typo, rm verbose debug
        - deraadt@cvs.openbsd.org
          [ssh-keygen.1]
          - document DSA use of ssh-keygen
          [sshd.8]
          - a start at describing what i understand of the DSA side
          [ssh-keygen.1]
          - document -X and -x
          [ssh-keygen.c]
          - simplify usage
        - markus@cvs.openbsd.org
          [sshd.8]
          - there is no rhosts_dsa
          [ssh-keygen.1]
          - document -y, update -X,-x
          [nchan.c]
          - fix close for non-open ssh1 channels
          [servconf.c servconf.h ssh.h sshd.8 sshd.c ]
          - s/DsaKey/HostDSAKey/, document option
          [sshconnect2.c]
          - respect number_of_password_prompts
          [channels.c channels.h servconf.c servconf.h session.c sshd.8]
          - GatewayPorts for sshd, ok deraadt@
          [ssh-add.1 ssh-agent.1 ssh.1]
          - more doc on: DSA, id_dsa, known_hosts2, authorized_keys2
          [ssh.1]
          - more info on proto 2
          [sshd.8]
          - sync AUTHOR w/ ssh.1
          [key.c key.h sshconnect.c]
          - print key type when talking about host keys
          [packet.c]
          - clear padding in ssh2
          [dsa.c key.c radix.c ssh.h sshconnect1.c uuencode.c uuencode.h]
          - replace broken uuencode w/ libc b64_ntop
          [auth2.c]
          - log failure before sending the reply
          [key.c radix.c uuencode.c]
          - remote trailing comments before calling __b64_pton
          [auth2.c readconf.c readconf.h servconf.c servconf.h ssh.1]
          [sshconnect2.c sshd.8]
          - add DSAAuthetication option to ssh/sshd, document SSH2 in sshd.8
       - Bring in b64_ntop and b64_pton from OpenBSD libc (bsd-base64.[ch])
      e247cc40
  21. 29 Apr, 2000 1 commit
    • Damien Miller's avatar
      - Merge big update to OpenSSH-2.0 from OpenBSD CVS · eba71bab
      Damien Miller authored
         [README.openssh2]
         - interop w/ F-secure windows client
         - sync documentation
         - ssh_host_dsa_key not ssh_dsa_key
         [auth-rsa.c]
         - missing fclose
         [auth.c authfile.c compat.c dsa.c dsa.h hostfile.c key.c key.h radix.c]
         [readconf.c readconf.h ssh-add.c ssh-keygen.c ssh.c ssh.h sshconnect.c]
         [sshd.c uuencode.c uuencode.h authfile.h]
         - add DSA pubkey auth and other SSH2 fixes.  use ssh-keygen -[xX]
           for trading keys with the real and the original SSH, directly from the
           people who invented the SSH protocol.
         [auth.c auth.h authfile.c sshconnect.c auth1.c auth2.c sshconnect.h]
         [sshconnect1.c sshconnect2.c]
         - split auth/sshconnect in one file per protocol version
         [sshconnect2.c]
         - remove debug
         [uuencode.c]
         - add trailing =
         [version.h]
         - OpenSSH-2.0
         [ssh-keygen.1 ssh-keygen.c]
         - add -R flag: exit code indicates if RSA is alive
         [sshd.c]
         - remove unused
           silent if -Q is specified
         [ssh.h]
         - host key becomes /etc/ssh_host_dsa_key
         [readconf.c servconf.c ]
         - ssh/sshd default to proto 1 and 2
         [uuencode.c]
         - remove debug
         [auth2.c ssh-keygen.c sshconnect2.c sshd.c]
         - xfree DSA blobs
         [auth2.c serverloop.c session.c]
         - cleanup logging for sshd/2, respect PasswordAuth no
         [sshconnect2.c]
         - less debug, respect .ssh/config
         [README.openssh2 channels.c channels.h]
         - clientloop.c session.c ssh.c
         - support for x11-fwding, client+server
      eba71bab
  22. 26 Mar, 2000 1 commit
    • Damien Miller's avatar
      · 450a7a1f
      Damien Miller authored
       - OpenBSD CVS update
         - [auth-krb4.c]
           -Wall
         - [auth-rh-rsa.c auth-rsa.c hostfile.c hostfile.h key.c key.h match.c]
           [match.h ssh.c ssh.h sshconnect.c sshd.c]
           initial support for DSA keys. ok deraadt@, niels@
         - [cipher.c cipher.h]
           remove unused cipher_attack_detected code
         - [scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
           Fix some formatting problems I missed before.
         - [ssh.1 sshd.8]
           fix spelling errors, From: FreeBSD
         - [ssh.c]
           switch to raw mode only if he _get_ a pty (not if we _want_ a pty).
      450a7a1f