1. 09 Jan, 2010 1 commit
  2. 08 Jun, 2008 1 commit
    • Darren Tucker's avatar
      - djm@cvs.openbsd.org 2008/05/19 15:45:07 · dd39264e
      Darren Tucker authored
           [sshtty.c ttymodes.c sshpty.h]
           Fix sending tty modes when stdin is not a tty (bz#1199). Previously
           we would send the modes corresponding to a zeroed struct termios,
           whereas we should have been sending an empty list of modes.
           Based on patch from daniel.ritz AT alcatel.ch; ok dtucker@ markus@
      dd39264e
  3. 05 Aug, 2006 2 commits
    • Damien Miller's avatar
      - deraadt@cvs.openbsd.org 2006/08/03 03:34:42 · d7834353
      Damien Miller authored
           [OVERVIEW atomicio.c atomicio.h auth-bsdauth.c auth-chall.c auth-krb5.c]
           [auth-options.c auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c]
           [auth-rsa.c auth-skey.c auth.c auth.h auth1.c auth2-chall.c auth2-gss.c]
           [auth2-hostbased.c auth2-kbdint.c auth2-none.c auth2-passwd.c ]
           [auth2-pubkey.c auth2.c authfd.c authfd.h authfile.c bufaux.c bufbn.c]
           [buffer.c buffer.h canohost.c channels.c channels.h cipher-3des1.c]
           [cipher-bf1.c cipher-ctr.c cipher.c cleanup.c clientloop.c compat.c]
           [compress.c deattack.c dh.c dispatch.c dns.c dns.h fatal.c groupaccess.c]
           [groupaccess.h gss-genr.c gss-serv-krb5.c gss-serv.c hostfile.c kex.c]
           [kex.h kexdh.c kexdhc.c kexdhs.c kexgex.c kexgexc.c kexgexs.c key.c]
           [key.h log.c log.h mac.c match.c md-sha256.c misc.c misc.h moduli.c]
           [monitor.c monitor_fdpass.c monitor_mm.c monitor_mm.h monitor_wrap.c]
           [monitor_wrap.h msg.c nchan.c packet.c progressmeter.c readconf.c]
           [readconf.h readpass.c rsa.c scard.c scard.h scp.c servconf.c servconf.h]
           [serverloop.c session.c session.h sftp-client.c sftp-common.c]
           [sftp-common.h sftp-glob.c sftp-server.c sftp.c ssh-add.c ssh-agent.c]
           [ssh-dss.c ssh-gss.h ssh-keygen.c ssh-keyscan.c ssh-keysign.c ssh-rsa.c]
           [ssh.c ssh.h sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c]
           [sshd.c sshlogin.c sshlogin.h sshpty.c sshpty.h sshtty.c ttymodes.c]
           [uidswap.c uidswap.h uuencode.c uuencode.h xmalloc.c xmalloc.h]
           [loginrec.c loginrec.h openbsd-compat/port-aix.c openbsd-compat/port-tun.h]
           almost entirely get rid of the culture of ".h files that include .h files"
           ok djm, sort of ok stevesk
           makes the pain stop in one easy step
           NB. portable commit contains everything *except* removing includes.h, as
           that will take a fair bit more work as we move headers that are required
           for portability workarounds to defines.h. (also, this step wasn't "easy")
      d7834353
    • Damien Miller's avatar
      - stevesk@cvs.openbsd.org 2006/08/01 23:22:48 · a7a73ee3
      Damien Miller authored
           [auth-passwd.c auth-rhosts.c auth-rsa.c auth.c auth.h auth1.c]
           [auth2-chall.c auth2-pubkey.c authfile.c buffer.c canohost.c]
           [channels.c clientloop.c dh.c dns.c dns.h hostfile.c kex.c kexdhc.c]
           [kexgexc.c kexgexs.c key.c key.h log.c misc.c misc.h moduli.c]
           [monitor_wrap.c packet.c progressmeter.c readconf.c readpass.c scp.c]
           [servconf.c session.c sftp-client.c sftp-common.c sftp-server.c sftp.c]
           [ssh-add.c ssh-agent.c ssh-keygen.c ssh-keyscan.c ssh.c sshconnect.c]
           [sshconnect1.c sshconnect2.c sshd.c sshlogin.c sshtty.c uuencode.c]
           [uuencode.h xmalloc.c]
           move #include <stdio.h> out of includes.h
      a7a73ee3
  4. 26 Mar, 2006 1 commit
    • Damien Miller's avatar
      - djm@cvs.openbsd.org 2006/03/25 13:17:03 · 57c30117
      Damien Miller authored
           [atomicio.c auth-bsdauth.c auth-chall.c auth-options.c auth-passwd.c]
           [auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth-skey.c auth.c auth1.c]
           [auth2-chall.c auth2-hostbased.c auth2-kbdint.c auth2-none.c]
           [auth2-passwd.c auth2-pubkey.c auth2.c authfd.c authfile.c bufaux.c]
           [buffer.c canohost.c channels.c cipher-3des1.c cipher-bf1.c]
           [cipher-ctr.c cipher.c cleanup.c clientloop.c compat.c compress.c]
           [deattack.c dh.c dispatch.c fatal.c groupaccess.c hostfile.c kex.c]
           [kexdh.c kexdhc.c kexdhs.c kexgex.c kexgexc.c kexgexs.c key.c log.c]
           [mac.c match.c md-sha256.c misc.c monitor.c monitor_fdpass.c]
           [monitor_mm.c monitor_wrap.c msg.c nchan.c packet.c progressmeter.c]
           [readconf.c readpass.c rsa.c scard.c scp.c servconf.c serverloop.c]
           [session.c sftp-client.c sftp-common.c sftp-glob.c sftp-server.c]
           [sftp.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c]
           [ssh-keysign.c ssh-rsa.c ssh.c sshconnect.c sshconnect1.c]
           [sshconnect2.c sshd.c sshlogin.c sshpty.c sshtty.c ttymodes.c]
           [uidswap.c uuencode.c xmalloc.c]
           Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that
           Theo nuked - our scripts to sync -portable need them in the files
      57c30117
  5. 25 Mar, 2006 1 commit
    • Damien Miller's avatar
      - deraadt@cvs.openbsd.org 2006/03/19 18:51:18 · b0fb6872
      Damien Miller authored
           [atomicio.c auth-bsdauth.c auth-chall.c auth-krb5.c auth-options.c]
           [auth-pam.c auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c]
           [auth-shadow.c auth-skey.c auth.c auth1.c auth2-chall.c]
           [auth2-hostbased.c auth2-kbdint.c auth2-none.c auth2-passwd.c]
           [auth2-pubkey.c auth2.c authfd.c authfile.c bufaux.c buffer.c]
           [canohost.c channels.c cipher-3des1.c cipher-acss.c cipher-aes.c]
           [cipher-bf1.c cipher-ctr.c cipher.c cleanup.c clientloop.c compat.c]
           [compress.c deattack.c dh.c dispatch.c dns.c entropy.c fatal.c]
           [groupaccess.c hostfile.c includes.h kex.c kexdh.c kexdhc.c]
           [kexdhs.c kexgex.c kexgexc.c kexgexs.c key.c log.c loginrec.c]
           [loginrec.h logintest.c mac.c match.c md-sha256.c md5crypt.c misc.c]
           [monitor.c monitor_fdpass.c monitor_mm.c monitor_wrap.c msg.c]
           [nchan.c packet.c progressmeter.c readconf.c readpass.c rsa.c]
           [scard.c scp.c servconf.c serverloop.c session.c sftp-client.c]
           [sftp-common.c sftp-glob.c sftp-server.c sftp.c ssh-add.c]
           [ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c ssh-keysign.c]
           [ssh-rand-helper.c ssh-rsa.c ssh.c sshconnect.c sshconnect1.c]
           [sshconnect2.c sshd.c sshlogin.c sshpty.c sshtty.c ttymodes.c]
           [uidswap.c uuencode.c xmalloc.c openbsd-compat/bsd-arc4random.c]
           [openbsd-compat/bsd-closefrom.c openbsd-compat/bsd-cygwin_util.c]
           [openbsd-compat/bsd-getpeereid.c openbsd-compat/bsd-misc.c]
           [openbsd-compat/bsd-nextstep.c openbsd-compat/bsd-snprintf.c]
           [openbsd-compat/bsd-waitpid.c openbsd-compat/fake-rfc2553.c]
           RCSID() can die
      b0fb6872
  6. 15 Mar, 2006 2 commits
  7. 13 May, 2004 1 commit
  8. 22 Sep, 2003 1 commit
  9. 19 Jul, 2003 1 commit
  10. 05 Mar, 2002 1 commit
    • Ben Lindstrom's avatar
      - stevesk@cvs.openbsd.org 2002/03/04 17:27:39 · 05764b92
      Ben Lindstrom authored
           [auth-krb5.c auth-options.h auth.h authfd.h authfile.h bufaux.h buffer.h
            channels.h cipher.h compat.h compress.h crc32.h deattack.c getput.h
            groupaccess.c misc.c mpaux.h packet.h readconf.h rsa.h scard.h
            servconf.h ssh-agent.c ssh.h ssh2.h sshpty.h sshtty.c ttymodes.h
            uuencode.c xmalloc.h]
           $OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add
           missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c
           files.  ok markus@
      05764b92
  11. 21 Dec, 2001 1 commit
    • Damien Miller's avatar
      - deraadt@cvs.openbsd.org 2001/12/19 07:18:56 · 9f0f5c64
      Damien Miller authored
           [auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h]
           [auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c]
           [cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c]
           [match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c]
           [servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c]
           [sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c]
           [sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config]
           [ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c]
           basic KNF done while i was looking for something else
      9f0f5c64
  12. 14 Apr, 2001 1 commit
  13. 10 Feb, 2001 1 commit
  14. 29 Jan, 2001 1 commit
    • Ben Lindstrom's avatar
      - niklas@cvs.openbsd.org 2001/01/2001 · 36579d3d
      Ben Lindstrom authored
           [atomicio.h canohost.h clientloop.h deattack.h dh.h dispatch.h
            groupaccess.c groupaccess.h hmac.h hostfile.h includes.h kex.h
            key.h log.h login.h match.h misc.h myproposal.h nchan.ms pathnames.h
            radix.h readpass.h rijndael.h serverloop.h session.h sftp.h ssh-add.1
            ssh-dss.h ssh-keygen.1 ssh-keyscan.1 ssh-rsa.h ssh1.h ssh_config
            sshconnect.h sshd_config tildexpand.h uidswap.h uuencode.h]
           $OpenBSD$
      36579d3d
  15. 22 Jan, 2001 1 commit
    • Ben Lindstrom's avatar
      Hopefully things did not get mixed around too much. It compiles under · 226cfa03
      Ben Lindstrom authored
      Linux and works.  So that is at least a good sign. =)
      20010122
       - (bal) OpenBSD Resync
         - markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus
           [servconf.c ssh.h sshd.c]
           only auth-chall.c needs #ifdef SKEY
         - markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus
           [auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
            auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c
            packet.c pathname.h readconf.c scp.c servconf.c serverloop.c
            session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h
            ssh1.h sshconnect1.c sshd.c ttymodes.c]
           move ssh1 definitions to ssh1.h, pathnames to pathnames.h
         - markus@cvs.openbsd.org 2001/01/19 16:48:14
           [sshd.8]
           fix typo; from stevesk@
         - markus@cvs.openbsd.org 2001/01/19 16:50:58
           [ssh-dss.c]
           clear and free digest, make consistent with other code (use dlen); from
           stevesk@
         - markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus
           [auth-options.c auth-options.h auth-rsa.c auth2.c]
           pass the filename to auth_parse_options()
         - markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001
           [readconf.c]
           fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com
         - stevesk@cvs.openbsd.org 2001/01/20 18:20:29
           [sshconnect2.c]
           dh_new_group() does not return NULL.  ok markus@
         - markus@cvs.openbsd.org 2001/01/20 21:33:42
           [ssh-add.c]
           do not loop forever if askpass does not exist; from
           andrew@pimlott.ne.mediaone.net
         - djm@cvs.openbsd.org 2001/01/20 23:00:56
           [servconf.c]
           Check for NULL return from strdelim; ok markus
         - djm@cvs.openbsd.org 2001/01/20 23:02:07
           [readconf.c]
           KNF; ok markus
         - jakob@cvs.openbsd.org 2001/01/21 9:00:33
           [ssh-keygen.1]
           remove -R flag; ok markus@
         - markus@cvs.openbsd.org 2001/01/21 19:05:40
           [atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c
            auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
            auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c
            bufaux.c  bufaux.h buffer.c canahost.c canahost.h channels.c
            cipher.c cli.c clientloop.c clientloop.h compat.c compress.c
            deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c
            key.c key.h log-client.c log-server.c log.c log.h login.c login.h
            match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c
            readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h
            session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c
            ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h
            sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h
            ttysmodes.c uidswap.c xmalloc.c]
           split ssh.h and try to cleanup the #include mess. remove unnecessary
           #includes.  rename util.[ch] -> misc.[ch]
       - (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree
       - (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve
         conflict when compiling for non-kerb install
       - (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes
         on 1/19.
      226cfa03
  16. 18 Jan, 2001 1 commit
    • Ben Lindstrom's avatar
      NOTE: This update changes the RSA key generation. *NEW RSA KEYS · bf555ba6
      Ben Lindstrom authored
            NEED TO BE GENERATED*  =)  Refer to to entry "2001/01/16 19:20:06"
            for more details.
      
      20010118
       - (bal) Super Sized OpenBSD Resync
         - markus@cvs.openbsd.org 2001/01/11 22:14:20 GMT 2001 by markus
           [sshd.c]
           maxfd+1
         - markus@cvs.openbsd.org 2001/01/13 17:59:18
           [ssh-keygen.1]
           small ssh-keygen manpage cleanup; stevesk@pobox.com
         - markus@cvs.openbsd.org 2001/01/13 18:03:07
           [scp.c ssh-keygen.c sshd.c]
           getopt() returns -1 not EOF; stevesk@pobox.com
         - markus@cvs.openbsd.org 2001/01/13 18:06:54
           [ssh-keyscan.c]
           use SSH_DEFAULT_PORT; from stevesk@pobox.com
         - markus@cvs.openbsd.org 2001/01/13 18:12:47
           [ssh-keyscan.c]
           free() -> xfree(); fix memory leak; from stevesk@pobox.com
         - markus@cvs.openbsd.org 2001/01/13 18:14:13
           [ssh-add.c]
           typo, from stevesk@sweden.hp.com
         - markus@cvs.openbsd.org 2001/01/13 18:32:50
           [packet.c session.c ssh.c sshconnect.c sshd.c]
           split out keepalive from packet_interactive (from dale@accentre.com)
           set IPTOS_LOWDELAY TCP_NODELAY IPTOS_THROUGHPUT for ssh2, too.
         - markus@cvs.openbsd.org 2001/01/13 18:36:45
           [packet.c packet.h]
           reorder, typo
         - markus@cvs.openbsd.org 2001/01/13 18:38:00
           [auth-options.c]
           fix comment
         - markus@cvs.openbsd.org 2001/01/13 18:43:31
           [session.c]
           Wall
         - markus@cvs.openbsd.org 2001/01/13 19:14:08
           [clientloop.h clientloop.c ssh.c]
           move callback to headerfile
         - markus@cvs.openbsd.org 2001/01/15 21:40:10
           [ssh.c]
           use log() instead of stderr
         - markus@cvs.openbsd.org 2001/01/15 21:43:51
           [dh.c]
           use error() not stderr!
         - markus@cvs.openbsd.org 2001/01/15 21:45:29
           [sftp-server.c]
           rename must fail if newpath exists, debug off by default
         - markus@cvs.openbsd.org 2001/01/15 21:46:38
           [sftp-server.c]
           readable long listing for sftp-server, ok deraadt@
         - markus@cvs.openbsd.org 2001/01/16 19:20:06
           [key.c ssh-rsa.c]
           make "ssh-rsa" key format for ssh2 confirm to the ietf-drafts; from
           galb@vandyke.com.  note that you have to delete older ssh2-rsa keys,
           since they are in the wrong format, too. they must be removed from
           .ssh/authorized_keys2 and .ssh/known_hosts2, etc.
           (cd; grep -v ssh-rsa .ssh/authorized_keys2 > TMP && mv TMP
           .ssh/authorized_keys2) additionally, we now check that
           BN_num_bits(rsa->n) >= 768.
         - markus@cvs.openbsd.org 2001/01/16 20:54:27
           [sftp-server.c]
           remove some statics. simpler handles; idea from nisse@lysator.liu.se
         - deraadt@cvs.openbsd.org 2001/01/16 23:58:08
           [bufaux.c radix.c sshconnect.h sshconnect1.c]
           indent
       - (bal) Added bsd-strmode.[ch] since some non-OpenBSD platforms may
         be missing such feature.
      bf555ba6
  17. 16 Sep, 2000 1 commit
  18. 09 Jul, 2000 1 commit
    • Damien Miller's avatar
      - (djm) Fix pam sprintf fix · f9b625c3
      Damien Miller authored
       - (djm) Cleanup entropy collection code a little more. Split initialisation
         from seeding, perform intialisation immediatly at start, be careful with
         uids. Based on problem report from Jim Watt <jimw@peisj.pebio.com>
      f9b625c3
  19. 03 Apr, 2000 1 commit
  20. 25 Nov, 1999 1 commit
    • Damien Miller's avatar
      · 5428f646
      Damien Miller authored
       - More reformatting merged from OpenBSD CVS
       - Merged OpenBSD CVS changes:
         - [channels.c]
           report from mrwizard@psu.edu via djm@ibs.com.au
         - [channels.c]
           set SO_REUSEADDR and SO_LINGER for forwarded ports.
           chip@valinux.com via damien@ibs.com.au
         - [nchan.c]
           it's not an error() if shutdown_write failes in nchan.
         - [readconf.c]
           remove dead #ifdef-0-code
         - [readconf.c servconf.c]
           strcasecmp instead of tolower
         - [scp.c]
           progress meter overflow fix from damien@ibs.com.au
         - [ssh-add.1 ssh-add.c]
           SSH_ASKPASS support
         - [ssh.1 ssh.c]
           postpone fork_after_authentication until command execution,
           request/patch from jahakala@cc.jyu.fi via damien@ibs.com.au
           plus: use daemon() for backgrounding
      5428f646
  21. 24 Nov, 1999 1 commit
    • Damien Miller's avatar
      - Merged very large OpenBSD source code reformat · 95def098
      Damien Miller authored
       - OpenBSD CVS updates
         - [channels.c cipher.c compat.c log-client.c scp.c serverloop.c]
           [ssh.h sshd.8 sshd.c]
           syslog changes:
           * Unified Logmessage for all auth-types, for success and for failed
           * Standard connections get only ONE line in the LOG when level==LOG:
             Auth-attempts are logged only, if authentication is:
                a) successfull or
                b) with passwd or
                c) we had more than AUTH_FAIL_LOG failues
           * many log() became verbose()
           * old behaviour with level=VERBOSE
         - [readconf.c readconf.h ssh.1 ssh.h sshconnect.c sshd.c]
           tranfer s/key challenge/response data in SSH_SMSG_AUTH_TIS_CHALLENGE
           messages. allows use of s/key in windows (ttssh, securecrt) and
           ssh-1.2.27 clients without 'ssh -v', ok: niels@
         - [sshd.8]
           -V, for fallback to openssh in SSH2 compatibility mode
         - [sshd.c]
           fix sigchld race; cjc5@po.cwru.edu
      95def098
  22. 27 Oct, 1999 1 commit