RepoMirrors/openssh
1
0
Fork 0
mirror of git://anongit.mindrot.org/openssh.git synced 2025-01-03 16:22:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,649 Commits 69 Branches 157 Tags 27 MiB
9403aa2f79
Commit Graph

206 Commits

Author SHA1 Message Date
Damien Miller
e49d0966b5 - (djm) AIX login{success,failed} changes. Move loginsuccess call to 
do_authenticated. Call loginfailed for protocol 2 failures > MAX like
   we do for protocol 1. Reports from Ralf Wenk <wera0003@fh-karlsruhe.de>,
   K.Wolkersdorfer@fz-juelich.de and others
 2001-11-13 23:46:18 +11:00
Damien Miller
c3aa3dd70c - (djm) Disconnect if no tty and PAM reports password expired 2001-10-28 22:34:52 +11:00
Damien Miller
0585d51a52 - markus@cvs.openbsd.org 2001/10/11 13:45:21 
[session.c]
     delay detach of session if a channel gets closed but the child is
     still alive.  however, release pty, since the fd's to the child are
     already closed.
 2001-10-12 11:35:50 +10:00
Damien Miller
3ec2759ad4 - (djm) OpenBSD CVS Sync 
- markus@cvs.openbsd.org 2001/10/10 22:18:47
     [channels.c channels.h clientloop.c nchan.c serverloop.c]
     [session.c session.h]
     try to keep channels open until an exit-status message is sent.
     don't kill the login shells if the shells stdin/out/err is closed.
     this should now work:
     ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
 2001-10-12 11:35:04 +10:00
Damien Miller
52b77beb65 - markus@cvs.openbsd.org 2001/10/09 21:59:41 
[channels.c channels.h serverloop.c session.c session.h]
     simplify session close: no more delayed session_close, no more blocking wait() calls.
 2001-10-10 15:14:37 +10:00
Damien Miller
ae45246696 - markus@cvs.openbsd.org 2001/10/09 19:32:49 
[session.c]
     stat subsystem command before calling do_exec, and return error to client.
 2001-10-10 15:08:06 +10:00
Damien Miller
139d4cd908 - markus@cvs.openbsd.org 2001/10/09 10:12:08 
[session.c]
     chdir $HOME after krb_afslog(); from bbense@networking.stanford.edu
 2001-10-10 15:07:44 +10:00
Damien Miller
9c75142917 - markus@cvs.openbsd.org 2001/10/06 00:36:42 
[session.c]
     fix typo in error message, sync with do_exec_nopty
 2001-10-10 15:02:46 +10:00
Kevin Steves
a0957d6898 - (stevesk) session.c: declare do_pre_login() before use 
wayned@users.sourceforge.net
 2001-09-27 19:50:26 +00:00
Ben Lindstrom
37e41c9019 - markus@cvs.openbsd.org 2001/09/16 14:46:54 
[session.c]
      calls krb_afslog() after setting $HOME; mattiasa@e.kth.se; fixes
      pr 1943b
 2001-09-16 22:17:15 +00:00
Damien Miller
599d8eba16 - (djm) Make do_pre_login static to avoid prototype #ifdef hell 2001-09-15 12:25:53 +10:00
Ben Lindstrom
b09f6b5b02 - markus@cvs.openbsd.org 2001/09/14 
[session.c]
     command=xxx overwrites subsystems, too
 2001-09-14 23:12:07 +00:00
Ben Lindstrom
91e9868e4f - jakob@cvs.openbsd.org 2001/08/16 19:18:34 
[servconf.c servconf.h session.c sshd.8]
     deprecate CheckMail. ok markus@
 2001-09-12 16:32:14 +00:00
Damien Miller
efb1edfc7f - deraadt@cvs.openbsd.org 2001/07/09 07:04:53 
[session.c sftp-int.c]
     correct type on last arg to execl(); nordin@cse.ogi.edu
 2001-07-14 12:19:36 +10:00
Damien Miller
c62f1fc3ff - (djm) Enable /etc/nologin check on PAM systems, as some lack the 
pam_nologin module. Report from William Yodlowsky
   <bsd@openbsd.rutgers.edu>
 2001-07-14 11:54:05 +10:00
Kevin Steves
8f63caa197 - (stevesk) more sync for session.c 2001-07-04 18:23:02 +00:00
Ben Lindstrom
4983d5ebd5 - markus@cvs.openbsd.org 2001/07/02 13:59:15 
[serverloop.c session.c session.h]
     wait until !session_have_children(); bugreport from
     Lutz.Jaenicke@aet.TU-Cottbus.DE
 2001-07-04 05:17:40 +00:00
Ben Lindstrom
bddd551e11 - markus@cvs.openbsd.org 2001/06/27 02:12:54 
[serverloop.c serverloop.h session.c session.h]
     quick hack to make ssh2 work again.
 2001-07-04 04:53:53 +00:00
Ben Lindstrom
ec95ed9b4c - dugsong@cvs.openbsd.org 2001/06/26 16:15:25 
[auth1.c auth.h auth-krb4.c auth-passwd.c readconf.c readconf.h
      servconf.c servconf.h session.c sshconnect1.c sshd.c]
     Kerberos v5 support for SSH1, mostly from Assar Westerlund
     <assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
 2001-07-04 04:21:14 +00:00
Ben Lindstrom
4469723325 - markus@cvs.openbsd.org 2001/06/25 08:25:41 
[channels.c channels.h cipher.c clientloop.c compat.c compat.h
      hostfile.c kex.c kex.h key.c key.h nchan.c packet.c serverloop.c
      session.c session.h sftp-server.c ssh-add.c ssh-agent.c uuencode.h]
     update copyright for 2001
 2001-07-04 03:32:30 +00:00
Kevin Steves
9b26f96c12 - (stevesk) session.c: use u_int for envsize 2001-06-29 17:52:17 +00:00
Damien Miller
665af9cae7 - (djm) Reintroduce pam_session call for non-pty sessions. 2001-06-27 09:34:15 +10:00
Damien Miller
2d5ac08f13 -Wall 2001-06-25 17:07:59 +10:00
Ben Lindstrom
bba81213b9 - itojun@cvs.openbsd.org 2001/06/23 15:12:20 
[auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c
      canohost.c channels.c cipher.c clientloop.c deattack.c dh.c
      hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c
      readpass.c scp.c servconf.c serverloop.c session.c sftp.c
      sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c
      ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c
      ssh-keygen.c ssh-keyscan.c]
     more strict prototypes.  raise warning level in Makefile.inc.
     markus ok'ed
     TODO; cleanup headers
 2001-06-25 05:01:22 +00:00
Ben Lindstrom
07094e52e7 - markus@cvs.openbsd.org 2001/06/21 21:08:25 
[session.c]
      don't reset forced_command (we allow multiple login shells in
      ssh2); dwd@bell-labs.com
 2001-06-25 03:59:43 +00:00
Ben Lindstrom
0a7ca6c7ba - markus@cvs.openbsd.org 2001/06/19 15:40:45 
[session.c]
     allocate and free at the same level.
 2001-06-21 03:17:42 +00:00
Ben Lindstrom
699776e9ec - markus@cvs.openbsd.org 2001/06/19 14:09:45 
[session.c sshd.8]
     disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
 2001-06-21 03:14:49 +00:00
Ben Lindstrom
c85ab8afab - markus@cvs.openbsd.org 2001/06/19 12:34:09 
[session.c]
     cleanup forced command handling, from dwd@bell-labs.com
 2001-06-21 03:13:10 +00:00
Ben Lindstrom
7a83722577 - OpenBSD CVS Sync 
- markus@cvs.openbsd.org 2001/06/13 09:10:31
     [session.c]
     typo, use pid not s->pid, mstone@cs.loyola.edu
 2001-06-13 19:23:32 +00:00
Ben Lindstrom
c51ae1bdaa - markus@cvs.openbsd.org 2001/06/12 21:30:57 
[session.c]
     unused
 2001-06-13 04:43:52 +00:00
Ben Lindstrom
2bcdf064d8 - markus@cvs.openbsd.org 2001/06/12 21:21:29 
[session.c]
     remove xauth-cookie-in-tmp handling. use default $XAUTHORITY, since
     we do already trust $HOME/.ssh
     you can use .ssh/sshrc and .ssh/environment if you want to customize
     the location of the xauth cookies
 2001-06-13 04:41:41 +00:00
Ben Lindstrom
49c126044d - markus@cvs.openbsd.org 2001/06/12 16:10:38 
[session.c]
     merge ssh1/ssh2 tty msg parse and alloc code
 2001-06-13 04:37:36 +00:00
Ben Lindstrom
7eaf8e4e26 - markus@cvs.openbsd.org 2001/06/12 10:58:29 
[session.c]
     merge session_free into session_close()
     merge pty_cleanup_proc into session_pty_cleanup()
 2001-06-13 04:35:43 +00:00
Ben Lindstrom
88259fbbc5 - markus@cvs.openbsd.org 2001/06/11 10:18:24 
[session.c]
     reset pointer to NULL after xfree(); report from solar@openwall.com
 2001-06-12 00:21:34 +00:00
Ben Lindstrom
4d3f227699 - markus@cvs.openbsd.org 2001/06/07 22:25:02 
[session.c]
     don't overwrite errno
     delay deletion of the xauth cookie
 2001-06-09 01:44:07 +00:00
Ben Lindstrom
cb3929d1d9 - markus@cvs.openbsd.org 2001/06/05 16:46:19 
[session.c]
     let session_close() delete the pty.  deny x11fwd if xauthfile is set.
 2001-06-09 01:34:15 +00:00
Ben Lindstrom
768176b240 - markus@cvs.openbsd.org 2001/06/04 23:16:16 
[session.c]
     merge ssh1/2 x11-fwd setup, create listener after tmp-dir
 2001-06-09 01:29:12 +00:00
Ben Lindstrom
983c098311 - markus@cvs.openbsd.org 2001/06/04 21:59:43 
[channels.c channels.h session.c]
     switch uid when cleaning up tmp files and sockets; reported by
     zen-parse@gmx.net on bugtraq
 2001-06-09 01:20:06 +00:00
Ben Lindstrom
838394ca26 - markus@cvs.openbsd.org 2001/06/03 14:55:39 
[channels.c channels.h session.c]
     use fatal_register_cleanup instead of atexit, sync with x11 authdir
     handling
 2001-06-09 01:11:59 +00:00
Ben Lindstrom
c763767f18 [NOTE: Next patch will sync nchan.c, channels.c and channels.h and all this 
pain will be over.]
   - markus@cvs.openbsd.org 2001/05/31 10:30:17
     [auth-options.c auth2.c channels.c channels.h clientloop.c nchan.c
      packet.c serverloop.c session.c ssh.c]
     undo the .c file split, just merge the header and keep the cvs
     history
 2001-06-09 00:36:26 +00:00
Ben Lindstrom
e6455aee8f [NOTE: File split is was not done in Portabl Tree] 
- markus@cvs.openbsd.org 2001/05/30 12:55:13
     [auth-options.c auth2.c channels.c channels.h clientloop.c nchan.c
      packet.c serverloop.c session.c ssh.c ssh1.h]
     channel layer cleanup: merge header files and split .c files
 2001-06-09 00:17:10 +00:00
Ben Lindstrom
7d68fbf4c5 - djm@cvs.openbsd.org 2001/05/19 00:36:40 
[session.c]
     Disable X11 forwarding if xauth binary is not found. Patch from Nalin
     Dahyabhai <nalin@redhat.com>; ok markus@
 2001-06-05 19:29:20 +00:00
Ben Lindstrom
97c677d4f0 - (bal) UseLogin patch for Solaris/UNICOS. Patch by Wayne Davison 
<wayne@blorf.net>
 2001-05-08 20:33:05 +00:00
Ben Lindstrom
5428bea574 - (bal) White Space and #ifdef sync with OpenBSD 2001-05-06 02:53:25 +00:00
Ben Lindstrom
60402fd42a - markus@cvs.openbsd.org 2001/05/03 15:45:15 
[session.c]
     exec shell -c /bin/sh .ssh/sshrc, from abartlet@pcug.org.au
 2001-05-03 22:37:26 +00:00
Ben Lindstrom
005dd22c97 - markus@cvs.openbsd.org 2001/04/17 19:34:25 
[session.c]
     move auth_approval to do_authenticated().
     do_child(): nuke hostkeys from memory
     don't source .ssh/rc for subsystems.
 2001-04-18 15:29:33 +00:00
Damien Miller
364a9bd9ce - Fix OSF SIA support displaying too much information for quiet 
logins and logins where access was denied by SIA. Patch from Chris Adams
   <cmadams@hiwaay.net>
 2001-04-16 18:37:05 +10:00
Damien Miller
cf205e8f35 - djm@cvs.openbsd.org 2001/04/16 08:19:31 
[session.c]
     Split motd and hushlogin checks into seperate functions, helps for
     portable. From Chris Adams <cmadams@hiwaay.net>; ok markus@
 2001-04-16 18:29:15 +10:00
Ben Lindstrom
ae8e2d30db - stevesk@cvs.openbsd.org 2001/04/14 16:33:20 
[clientloop.c packet.h session.c ssh.c ttymodes.c ttymodes.h]
     protocol 2 tty modes support; ok markus@
 2001-04-14 23:13:02 +00:00
Ben Lindstrom
3fcf1a22b5 - markus@cvs.openbsd.org 2001/04/06 21:00:17 
[auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth2.c channels.c session.c
      ssh.c sshconnect.c sshconnect.h uidswap.c uidswap.h]
     do gid/groups-swap in addition to uid-swap, should help if /home/group
     is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks
     to olar@openwall.com is comments.  we had many requests for this.
 2001-04-08 18:26:59 +00:00
Ben Lindstrom
f15a386511 - stevesk@cvs.openbsd.org 2001/04/05 15:48:18 
[canohost.c canohost.h session.c]
     move get_remote_name_or_ip() to canohost.[ch]; for portable.  ok markus@
 2001-04-05 23:32:17 +00:00
Damien Miller
f9e9300947 - (djm) Reestablish PAM credentials (which can be supplemental group 
memberships) after initgroups() blows them away. Report and suggested
   fix from Nalin Dahyabhai <nalin@redhat.com>
 2001-03-27 16:12:24 +10:00
Ben Lindstrom
7bfff36ca3 - stevesk@cvs.openbsd.org 2001/03/25 13:16:11 
[servconf.c servconf.h session.c sshd.8 sshd_config]
     PrintLastLog option; from chip@valinux.com with some minor
     changes by me.  ok markus@
 2001-03-26 05:45:53 +00:00
Ben Lindstrom
6029432ec5 - djm@cvs.openbsd.org 2001/03/25 00:01:34 
[session.c]
     shorten; ok markus@
 2001-03-26 05:38:25 +00:00
Damien Miller
b44fe0617d - (djm) Pull out our own SIGPIPE hacks 2001-03-24 15:39:38 +11:00
Ben Lindstrom
de71cda078 - markus@cvs.openbsd.org 2001/03/23 14:28:32 
[session.c sshd.c]
     ignore SIGPIPE, restore in child, fixes x11-fwd crashes; with djm@
 2001-03-24 00:43:26 +00:00
Ben Lindstrom
d9267454ca - markus@cvs.openbsd.org 2001/03/21 21:06:30 
[session.c]
     missing init; from mib@unimelb.edu.au
 2001-03-22 02:06:57 +00:00
Ben Lindstrom
b31783d547 - markus@cvs.openbsd.org 2001/03/21 11:43:45 
[auth1.c auth2.c session.c session.h]
     merge common ssh v1/2 code
 2001-03-22 02:02:12 +00:00
Ben Lindstrom
fc9b07de19 - markus@cvs.openbsd.org 2001/03/20 19:21:21 
[session.c]
     remove unused arg
 2001-03-22 01:27:23 +00:00
Ben Lindstrom
b4c961d822 - markus@cvs.openbsd.org 2001/03/20 19:21:21 
[session.c]
     remove unused arg
 2001-03-22 01:25:37 +00:00
Ben Lindstrom
eebc4a2ed3 - (bal) auth-chall.c auth-passwd.c auth.h auth1.c auth2.c session.c CVS ID 
resync
 2001-03-22 01:22:03 +00:00
Damien Miller
bebd8be67b - (djm) Better AIX no tty fix, spotted by Gert Doering <gert@greenie.muc.de> 2001-03-22 11:58:15 +11:00
Damien Miller
b69407dd7a - (djm) Correctly handle SIA and AIX when no tty present. Spotted and 
suggested fix from Mike Battersby <mib@unimelb.edu.au>
 2001-03-21 16:13:03 +11:00
Damien Miller
be08176963 - (djm) Fix ttyname breakage for AIX and Tru64. Patch from Steve 
VanDevender <stevev@darkwing.uoregon.edu>
 2001-03-21 11:11:57 +11:00
Ben Lindstrom
7bb8b49596 - markus@cvs.openbsd.org 2001/03/16 19:06:30 
[auth-options.c channels.c channels.h serverloop.c session.c]
     implement "permitopen" key option, restricts -L style forwarding to
     to specified host:port pairs. based on work by harlan@genua.de
 2001-03-17 00:47:54 +00:00
Ben Lindstrom
86fe8686b9 - markus@cvs.openbsd.org 2001/03/15 22:07:08 
[session.c]
     pass Session to do_child + KNF
 2001-03-17 00:32:57 +00:00
Damien Miller
168a700cc6 - Support usrinfo() on AIX. Based on patch from Gert Doering 
<gert@greenie.muc.de>
 2001-03-17 10:29:50 +11:00
Ben Lindstrom
9c5324422e - (bal) CVS ID touch up on auth2.c, serverloop.c, session.c & sshd.c 2001-03-05 07:33:14 +00:00
Ben Lindstrom
92a2e38f8e - deraadt@cvs.openbsd.org 2001/03/02 18:54:31 
[atomicio.c atomicio.h auth-chall.c auth.c auth2-chall.c crc32.h
      scp.c serverloop.c session.c sftp-server.8 sftp.1 ssh-add.1 ssh-add.c
      ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh.1 sshd.8]
     make copyright lines the same format
 2001-03-05 06:59:27 +00:00
Damien Miller
c594633b49 - (djm) Fully revert PAM session patch. All PAM session init is now done 
before the final fork().
 2001-02-28 11:46:11 +11:00
Damien Miller
7bd1c6262b - (djm) Fix PAM fix 2001-02-27 10:48:01 +11:00
Damien Miller
5a7613186b - (djm) Move PAM init to after fork for non-Solaris derived PAMs 2001-02-27 09:28:23 +11:00
Ben Lindstrom
7603b2d244 - markus@cvs.openbsd.org 2001/02/23 15:37:45 
[session.c]
     handle SSH_PROTOFLAG_SCREEN_NUMBER for buggy clients
 2001-02-26 20:13:32 +00:00
Ben Lindstrom
38e60935bb - (bal) Generalize lack of UNIX sockets since this also effects Cray 
not just Cygwin.  Based on patch by Wendy Palm <wendyp@cray.com>
 2001-02-24 00:55:04 +00:00
Ben Lindstrom
e1bd29bc9e - (bal) Corrected SCO luid patch by svaughan <svaughan@asterion.com> 2001-02-21 20:00:28 +00:00
Kevin Steves
ff793a27b8 - (stevesk) session.c: back out to where we were before: 
- (djm) Move PAM session initialisation until after fork in sshd. Patch
      from Nalin Dahyabhai <nalin@redhat.com>
 2001-02-21 16:36:51 +00:00
Ben Lindstrom
94bce40720 - (bal) Reverted out of 2001/02/15 patch by djm below because it 
breaks Solaris.
        - (djm) Move PAM session setup back to before setuid to user.
          fixes problems on Solaris-drived PAMs.
 2001-02-21 05:53:33 +00:00
Ben Lindstrom
d95c09cc83 - (bal) Markus' blessing to rename login.[ch] -> sshlogin.[ch] and 
pty.[ch] -> sshpty.[ch]
 2001-02-18 19:13:33 +00:00
Damien Miller
60396b060b - (djm) Merge BSD_AUTH support from Markus Friedl and David J. MacKenzie 
enable with --with-bsd-auth.
 2001-02-18 17:01:00 +11:00
Ben Lindstrom
8dcdeb8421 - markus@cvs.openbsd.org 2001/02/16 14:03:43 
[session.c]
     proper payload-length check for x11 w/o screen-number
 2001-02-16 16:02:14 +00:00
Damien Miller
217f567187 - (djm) Set "login ID" on systems with setluid. Only enabled for SCO 
OpenServer for now. Based on patch from svaughan <svaughan@asterion.com>
 2001-02-16 12:12:41 +11:00
Damien Miller
646aa60b41 - (djm) Clean up PAM namespace. Suggested by Darren Moffat 
<Darren.Moffat@eng.sun.com>
 2001-02-15 11:51:32 +11:00
Damien Miller
e8b5b04521 - (djm) Move PAM session setup back to before setuid to user. Fixes 
problems on Solaris-derived PAMs.
 2001-02-15 11:32:15 +11:00
Kevin Steves
7fafa5ccbe - (stevesk) fix for SIA patch, misplaced session_setup_sia() 2001-02-13 18:45:00 +00:00
Damien Miller
92ddb7d6f0 - (djm) Split out and improve OSF SIA auth code. Patch from Chris Adams 
<cmadams@hiwaay.net> with a little modification and KNF.
 2001-02-14 01:25:23 +11:00
Damien Miller
6b4146ad73 - (djm) Move PAM session initialisation until after fork in sshd. Patch 
from Nalin Dahyabhai <nalin@redhat.com>
 2001-02-14 00:45:51 +11:00
Kevin Steves
7f982bf6c9 - (stevesk) session.c: remove debugging code. 2001-02-12 15:07:52 +00:00
Kevin Steves
43cdef3ba5 missed session.c part of: 
- stevesk@cvs.openbsd.org 2001/02/08 10:11:23
     [session.c sftp-client.c]
     %i -> %d
 2001-02-11 14:12:08 +00:00
Ben Lindstrom
31ca54aa86 - itojun@cvs.openbsd.org 2001/02/08 19:30:52 
sync with netbsd tree changes.
     - more strict prototypes, include necessary headers
     - use paths.h/pathnames.h decls
     - size_t typecase to int -> u_long
 2001-02-09 02:11:24 +00:00
Kevin Steves
ef4eea9bad - stevesk@cvs.openbsd.org 2001/02/04 08:32:27 
[many files; did this manually to our top-level source dir]
     unexpand and remove end-of-line whitespace; ok markus@
 2001-02-05 12:42:17 +00:00
Damien Miller
3380426358 NB: big update - may break stuff. Please test! 
- (djm) OpenBSD CVS sync:
   - markus@cvs.openbsd.org  2001/02/03 03:08:38
     [auth-options.c auth-rh-rsa.c auth-rhosts.c auth.c canohost.c]
     [canohost.h servconf.c servconf.h session.c sshconnect1.c sshd.8]
     [sshd_config]
     make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@
   - markus@cvs.openbsd.org  2001/02/03 03:19:51
     [ssh.1 sshd.8 sshd_config]
     Skey is now called ChallengeResponse
   - markus@cvs.openbsd.org  2001/02/03 03:43:09
     [sshd.8]
     use no-pty option in .ssh/authorized_keys* if you need a 8-bit clean
     channel. note from Erik.Anggard@cygate.se (pr/1659)
   - stevesk@cvs.openbsd.org 2001/02/03 10:03:06
     [ssh.1]
     typos; ok markus@
   - djm@cvs.openbsd.org     2001/02/04 04:11:56
     [scp.1 sftp-server.c ssh.1 sshd.8 sftp-client.c sftp-client.h]
     [sftp-common.c sftp-common.h sftp-int.c sftp-int.h sftp.1 sftp.c]
     Basic interactive sftp client; ok theo@
 - (djm) Update RPM specs for new sftp binary
 - (djm) Update several bits for new optional reverse lookup stuff. I
   think I got them all.
 2001-02-04 23:20:18 +11:00
Ben Lindstrom
226cfa0378 Hopefully things did not get mixed around too much. It compiles under 
Linux and works.  So that is at least a good sign. =)
20010122
 - (bal) OpenBSD Resync
   - markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus
     [servconf.c ssh.h sshd.c]
     only auth-chall.c needs #ifdef SKEY
   - markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus
     [auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
      auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c
      packet.c pathname.h readconf.c scp.c servconf.c serverloop.c
      session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h
      ssh1.h sshconnect1.c sshd.c ttymodes.c]
     move ssh1 definitions to ssh1.h, pathnames to pathnames.h
   - markus@cvs.openbsd.org 2001/01/19 16:48:14
     [sshd.8]
     fix typo; from stevesk@
   - markus@cvs.openbsd.org 2001/01/19 16:50:58
     [ssh-dss.c]
     clear and free digest, make consistent with other code (use dlen); from
     stevesk@
   - markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus
     [auth-options.c auth-options.h auth-rsa.c auth2.c]
     pass the filename to auth_parse_options()
   - markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001
     [readconf.c]
     fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com
   - stevesk@cvs.openbsd.org 2001/01/20 18:20:29
     [sshconnect2.c]
     dh_new_group() does not return NULL.  ok markus@
   - markus@cvs.openbsd.org 2001/01/20 21:33:42
     [ssh-add.c]
     do not loop forever if askpass does not exist; from
     andrew@pimlott.ne.mediaone.net
   - djm@cvs.openbsd.org 2001/01/20 23:00:56
     [servconf.c]
     Check for NULL return from strdelim; ok markus
   - djm@cvs.openbsd.org 2001/01/20 23:02:07
     [readconf.c]
     KNF; ok markus
   - jakob@cvs.openbsd.org 2001/01/21 9:00:33
     [ssh-keygen.1]
     remove -R flag; ok markus@
   - markus@cvs.openbsd.org 2001/01/21 19:05:40
     [atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c
      auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
      auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c
      bufaux.c  bufaux.h buffer.c canahost.c canahost.h channels.c
      cipher.c cli.c clientloop.c clientloop.h compat.c compress.c
      deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c
      key.c key.h log-client.c log-server.c log.c log.h login.c login.h
      match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c
      readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h
      session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c
      ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h
      sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h
      ttysmodes.c uidswap.c xmalloc.c]
     split ssh.h and try to cleanup the #include mess. remove unnecessary
     #includes.  rename util.[ch] -> misc.[ch]
 - (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree
 - (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve
   conflict when compiling for non-kerb install
 - (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes
   on 1/19.
 2001-01-22 05:34:40 +00:00
Ben Lindstrom
b100ec9542 - (bal) Updated contrib/cygwin/ by Corinna Vinschen <vinschen@redhat.com> 
Also removed some of the 'ISSUES' comments that have been verified by djm.
 2001-01-19 05:37:32 +00:00
Ben Lindstrom
db65e8fded Please grep through the source and look for 'ISSUE' comments and verify 
that I was able to get all the portable bits in the right location.  As for
the SKEY comment there is an email out to Markus as to how it should be
resolved.  Until then I just #ifdef SKEY/#endif out the whole block.

 - (bal) OpenBSD Resync
   - markus@cvs.openbsd.org 2001/01/18 16:20:21
     [log-client.c log-server.c log.c readconf.c servconf.c ssh.1 ssh.h
      sshd.8 sshd.c]
     log() is at pri=LOG_INFO, since LOG_NOTICE goes to /dev/console on many
     systems
   - markus@cvs.openbsd.org 2001/01/18 16:59:59
     [auth-passwd.c auth.c auth.h auth1.c auth2.c serverloop.c session.c
      session.h sshconnect1.c]
     1) removes fake skey from sshd, since this will be much
        harder with /usr/libexec/auth/login_XXX
     2) share/unify code used in ssh-1 and ssh-2 authentication (server side)
     3) make addition of BSD_AUTH and other challenge reponse methods
        easier.
   - markus@cvs.openbsd.org 2001/01/18 17:12:43
     [auth-chall.c auth2-chall.c]
     rename *-skey.c *-chall.c since the files are not skey specific
 2001-01-19 04:26:52 +00:00
Ben Lindstrom
bf555ba621 NOTE: This update changes the RSA key generation. *NEW RSA KEYS 
NEED TO BE GENERATED*  =)  Refer to to entry "2001/01/16 19:20:06"
      for more details.

20010118
 - (bal) Super Sized OpenBSD Resync
   - markus@cvs.openbsd.org 2001/01/11 22:14:20 GMT 2001 by markus
     [sshd.c]
     maxfd+1
   - markus@cvs.openbsd.org 2001/01/13 17:59:18
     [ssh-keygen.1]
     small ssh-keygen manpage cleanup; stevesk@pobox.com
   - markus@cvs.openbsd.org 2001/01/13 18:03:07
     [scp.c ssh-keygen.c sshd.c]
     getopt() returns -1 not EOF; stevesk@pobox.com
   - markus@cvs.openbsd.org 2001/01/13 18:06:54
     [ssh-keyscan.c]
     use SSH_DEFAULT_PORT; from stevesk@pobox.com
   - markus@cvs.openbsd.org 2001/01/13 18:12:47
     [ssh-keyscan.c]
     free() -> xfree(); fix memory leak; from stevesk@pobox.com
   - markus@cvs.openbsd.org 2001/01/13 18:14:13
     [ssh-add.c]
     typo, from stevesk@sweden.hp.com
   - markus@cvs.openbsd.org 2001/01/13 18:32:50
     [packet.c session.c ssh.c sshconnect.c sshd.c]
     split out keepalive from packet_interactive (from dale@accentre.com)
     set IPTOS_LOWDELAY TCP_NODELAY IPTOS_THROUGHPUT for ssh2, too.
   - markus@cvs.openbsd.org 2001/01/13 18:36:45
     [packet.c packet.h]
     reorder, typo
   - markus@cvs.openbsd.org 2001/01/13 18:38:00
     [auth-options.c]
     fix comment
   - markus@cvs.openbsd.org 2001/01/13 18:43:31
     [session.c]
     Wall
   - markus@cvs.openbsd.org 2001/01/13 19:14:08
     [clientloop.h clientloop.c ssh.c]
     move callback to headerfile
   - markus@cvs.openbsd.org 2001/01/15 21:40:10
     [ssh.c]
     use log() instead of stderr
   - markus@cvs.openbsd.org 2001/01/15 21:43:51
     [dh.c]
     use error() not stderr!
   - markus@cvs.openbsd.org 2001/01/15 21:45:29
     [sftp-server.c]
     rename must fail if newpath exists, debug off by default
   - markus@cvs.openbsd.org 2001/01/15 21:46:38
     [sftp-server.c]
     readable long listing for sftp-server, ok deraadt@
   - markus@cvs.openbsd.org 2001/01/16 19:20:06
     [key.c ssh-rsa.c]
     make "ssh-rsa" key format for ssh2 confirm to the ietf-drafts; from
     galb@vandyke.com.  note that you have to delete older ssh2-rsa keys,
     since they are in the wrong format, too. they must be removed from
     .ssh/authorized_keys2 and .ssh/known_hosts2, etc.
     (cd; grep -v ssh-rsa .ssh/authorized_keys2 > TMP && mv TMP
     .ssh/authorized_keys2) additionally, we now check that
     BN_num_bits(rsa->n) >= 768.
   - markus@cvs.openbsd.org 2001/01/16 20:54:27
     [sftp-server.c]
     remove some statics. simpler handles; idea from nisse@lysator.liu.se
   - deraadt@cvs.openbsd.org 2001/01/16 23:58:08
     [bufaux.c radix.c sshconnect.h sshconnect1.c]
     indent
 - (bal) Added bsd-strmode.[ch] since some non-OpenBSD platforms may
   be missing such feature.
 2001-01-18 02:04:35 +00:00
Ben Lindstrom
d26dcf3371 20010107 
- (bal) OpenBSD Sync
   - markus@cvs.openbsd.org 2001/01/06 11:23:27
     [ssh-rsa.c]
     remove unused
   - itojun@cvs.openbsd.org 2001/01/05 08:23:29
     [ssh-keyscan.1]
     missing .El
   - markus@cvs.openbsd.org 2001/01/04 22:41:03
     [session.c sshconnect.c]
     consistent use of _PATH_BSHELL; from stevesk@pobox.com
   - djm@cvs.openbsd.org 2001/01/04 22:35:32
     [ssh.1 sshd.8]
     Mention AES as available SSH2 Cipher; ok markus
   - markus@cvs.openbsd.org 2001/01/04 22:25:58
     [sshd.c]
     sync usage()/man with defaults; from stevesk@pobox.com
   - markus@cvs.openbsd.org 2001/01/04 22:21:26
     [sshconnect2.c]
     handle SSH2_MSG_USERAUTH_BANNER; fixes bug when connecting to a server
     that prints a banner (e.g. /etc/issue.net)
 2001-01-06 15:18:16 +00:00
Ben Lindstrom
46c162204b One way to massive patch. <sigh> It compiles and works under Linux.. 
And I think I have all the bits right from the OpenBSD tree.
20001222
 - Updated RCSID for pty.c
 - (bal) OpenBSD CVS Updates:
  - markus@cvs.openbsd.org 2000/12/21 15:10:16
    [auth-rh-rsa.c hostfile.c hostfile.h sshconnect.c]
    print keyfile:line for changed hostkeys, for deraadt@, ok deraadt@
  - markus@cvs.openbsd.org 2000/12/20 19:26:56
    [authfile.c]
    allow ssh -i userkey for root
  - markus@cvs.openbsd.org 2000/12/20 19:37:21
    [authfd.c authfd.h kex.c sshconnect2.c sshd.c uidswap.c uidswap.h]
    fix prototypes; from stevesk@pobox.com
  - markus@cvs.openbsd.org 2000/12/20 19:32:08
    [sshd.c]
    init pointer to NULL; report from Jan.Ivan@cern.ch
  - markus@cvs.openbsd.org 2000/12/19 23:17:54
    [auth-krb4.c auth-options.c auth-options.h auth-rhosts.c auth-rsa.c
     auth1.c auth2-skey.c auth2.c authfd.c authfd.h authfile.c bufaux.c
     bufaux.h buffer.c canohost.c channels.c clientloop.c compress.c
     crc32.c deattack.c getput.h hmac.c hmac.h hostfile.c kex.c kex.h
     key.c key.h log.c login.c match.c match.h mpaux.c mpaux.h packet.c
     packet.h radix.c readconf.c rsa.c scp.c servconf.c servconf.h
     serverloop.c session.c sftp-server.c ssh-agent.c ssh-dss.c ssh-dss.h
     ssh-keygen.c ssh-keyscan.c ssh-rsa.c ssh-rsa.h ssh.c ssh.h  uuencode.c
     uuencode.h sshconnect1.c sshconnect2.c sshd.c tildexpand.c]
    replace 'unsigned bla' with 'u_bla' everywhere. also replace 'char
    unsigned' with u_char.
 2000-12-22 01:43:59 +00:00
Damien Miller
152cea206a - (djm) Make sure we reset the SIGPIPE disposition after we fork. Report 
from Andreas M. Kirchwitz <amk@krell.zikzak.de>
 2000-12-13 19:21:51 +11:00
Damien Miller
43dc8da75c - (djm) Back out all the serverloop.c hacks. sshd will now hang again 
if there are background children with open fds.
 2000-11-29 15:55:17 +11:00
Damien Miller
a2e53ccb64 - (djm) Fix(?) the ssh hang-on-logout/data-from-child race 2000-11-29 11:26:45 +11:00