Commit Graph

155 Commits

Author SHA1 Message Date
Damien Miller
c3aa3dd70c - (djm) Disconnect if no tty and PAM reports password expired 2001-10-28 22:34:52 +11:00
Damien Miller
0585d51a52 - markus@cvs.openbsd.org 2001/10/11 13:45:21
[session.c]
     delay detach of session if a channel gets closed but the child is
     still alive.  however, release pty, since the fd's to the child are
     already closed.
2001-10-12 11:35:50 +10:00
Damien Miller
3ec2759ad4 - (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2001/10/10 22:18:47
     [channels.c channels.h clientloop.c nchan.c serverloop.c]
     [session.c session.h]
     try to keep channels open until an exit-status message is sent.
     don't kill the login shells if the shells stdin/out/err is closed.
     this should now work:
     ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
2001-10-12 11:35:04 +10:00
Damien Miller
52b77beb65 - markus@cvs.openbsd.org 2001/10/09 21:59:41
[channels.c channels.h serverloop.c session.c session.h]
     simplify session close: no more delayed session_close, no more blocking wait() calls.
2001-10-10 15:14:37 +10:00
Damien Miller
ae45246696 - markus@cvs.openbsd.org 2001/10/09 19:32:49
[session.c]
     stat subsystem command before calling do_exec, and return error to client.
2001-10-10 15:08:06 +10:00
Damien Miller
139d4cd908 - markus@cvs.openbsd.org 2001/10/09 10:12:08
[session.c]
     chdir $HOME after krb_afslog(); from bbense@networking.stanford.edu
2001-10-10 15:07:44 +10:00
Damien Miller
9c75142917 - markus@cvs.openbsd.org 2001/10/06 00:36:42
[session.c]
     fix typo in error message, sync with do_exec_nopty
2001-10-10 15:02:46 +10:00
Kevin Steves
a0957d6898 - (stevesk) session.c: declare do_pre_login() before use
wayned@users.sourceforge.net
2001-09-27 19:50:26 +00:00
Ben Lindstrom
37e41c9019 - markus@cvs.openbsd.org 2001/09/16 14:46:54
[session.c]
      calls krb_afslog() after setting $HOME; mattiasa@e.kth.se; fixes
      pr 1943b
2001-09-16 22:17:15 +00:00
Damien Miller
599d8eba16 - (djm) Make do_pre_login static to avoid prototype #ifdef hell 2001-09-15 12:25:53 +10:00
Ben Lindstrom
b09f6b5b02 - markus@cvs.openbsd.org 2001/09/14
[session.c]
     command=xxx overwrites subsystems, too
2001-09-14 23:12:07 +00:00
Ben Lindstrom
91e9868e4f - jakob@cvs.openbsd.org 2001/08/16 19:18:34
[servconf.c servconf.h session.c sshd.8]
     deprecate CheckMail. ok markus@
2001-09-12 16:32:14 +00:00
Damien Miller
efb1edfc7f - deraadt@cvs.openbsd.org 2001/07/09 07:04:53
[session.c sftp-int.c]
     correct type on last arg to execl(); nordin@cse.ogi.edu
2001-07-14 12:19:36 +10:00
Damien Miller
c62f1fc3ff - (djm) Enable /etc/nologin check on PAM systems, as some lack the
pam_nologin module. Report from William Yodlowsky
   <bsd@openbsd.rutgers.edu>
2001-07-14 11:54:05 +10:00
Kevin Steves
8f63caa197 - (stevesk) more sync for session.c 2001-07-04 18:23:02 +00:00
Ben Lindstrom
4983d5ebd5 - markus@cvs.openbsd.org 2001/07/02 13:59:15
[serverloop.c session.c session.h]
     wait until !session_have_children(); bugreport from
     Lutz.Jaenicke@aet.TU-Cottbus.DE
2001-07-04 05:17:40 +00:00
Ben Lindstrom
bddd551e11 - markus@cvs.openbsd.org 2001/06/27 02:12:54
[serverloop.c serverloop.h session.c session.h]
     quick hack to make ssh2 work again.
2001-07-04 04:53:53 +00:00
Ben Lindstrom
ec95ed9b4c - dugsong@cvs.openbsd.org 2001/06/26 16:15:25
[auth1.c auth.h auth-krb4.c auth-passwd.c readconf.c readconf.h
      servconf.c servconf.h session.c sshconnect1.c sshd.c]
     Kerberos v5 support for SSH1, mostly from Assar Westerlund
     <assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-07-04 04:21:14 +00:00
Ben Lindstrom
4469723325 - markus@cvs.openbsd.org 2001/06/25 08:25:41
[channels.c channels.h cipher.c clientloop.c compat.c compat.h
      hostfile.c kex.c kex.h key.c key.h nchan.c packet.c serverloop.c
      session.c session.h sftp-server.c ssh-add.c ssh-agent.c uuencode.h]
     update copyright for 2001
2001-07-04 03:32:30 +00:00
Kevin Steves
9b26f96c12 - (stevesk) session.c: use u_int for envsize 2001-06-29 17:52:17 +00:00
Damien Miller
665af9cae7 - (djm) Reintroduce pam_session call for non-pty sessions. 2001-06-27 09:34:15 +10:00
Damien Miller
2d5ac08f13 -Wall 2001-06-25 17:07:59 +10:00
Ben Lindstrom
bba81213b9 - itojun@cvs.openbsd.org 2001/06/23 15:12:20
[auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c
      canohost.c channels.c cipher.c clientloop.c deattack.c dh.c
      hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c
      readpass.c scp.c servconf.c serverloop.c session.c sftp.c
      sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c
      ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c
      ssh-keygen.c ssh-keyscan.c]
     more strict prototypes.  raise warning level in Makefile.inc.
     markus ok'ed
     TODO; cleanup headers
2001-06-25 05:01:22 +00:00
Ben Lindstrom
07094e52e7 - markus@cvs.openbsd.org 2001/06/21 21:08:25
[session.c]
      don't reset forced_command (we allow multiple login shells in
      ssh2); dwd@bell-labs.com
2001-06-25 03:59:43 +00:00
Ben Lindstrom
0a7ca6c7ba - markus@cvs.openbsd.org 2001/06/19 15:40:45
[session.c]
     allocate and free at the same level.
2001-06-21 03:17:42 +00:00
Ben Lindstrom
699776e9ec - markus@cvs.openbsd.org 2001/06/19 14:09:45
[session.c sshd.8]
     disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
2001-06-21 03:14:49 +00:00
Ben Lindstrom
c85ab8afab - markus@cvs.openbsd.org 2001/06/19 12:34:09
[session.c]
     cleanup forced command handling, from dwd@bell-labs.com
2001-06-21 03:13:10 +00:00
Ben Lindstrom
7a83722577 - OpenBSD CVS Sync
- markus@cvs.openbsd.org 2001/06/13 09:10:31
     [session.c]
     typo, use pid not s->pid, mstone@cs.loyola.edu
2001-06-13 19:23:32 +00:00
Ben Lindstrom
c51ae1bdaa - markus@cvs.openbsd.org 2001/06/12 21:30:57
[session.c]
     unused
2001-06-13 04:43:52 +00:00
Ben Lindstrom
2bcdf064d8 - markus@cvs.openbsd.org 2001/06/12 21:21:29
[session.c]
     remove xauth-cookie-in-tmp handling. use default $XAUTHORITY, since
     we do already trust $HOME/.ssh
     you can use .ssh/sshrc and .ssh/environment if you want to customize
     the location of the xauth cookies
2001-06-13 04:41:41 +00:00
Ben Lindstrom
49c126044d - markus@cvs.openbsd.org 2001/06/12 16:10:38
[session.c]
     merge ssh1/ssh2 tty msg parse and alloc code
2001-06-13 04:37:36 +00:00
Ben Lindstrom
7eaf8e4e26 - markus@cvs.openbsd.org 2001/06/12 10:58:29
[session.c]
     merge session_free into session_close()
     merge pty_cleanup_proc into session_pty_cleanup()
2001-06-13 04:35:43 +00:00
Ben Lindstrom
88259fbbc5 - markus@cvs.openbsd.org 2001/06/11 10:18:24
[session.c]
     reset pointer to NULL after xfree(); report from solar@openwall.com
2001-06-12 00:21:34 +00:00
Ben Lindstrom
4d3f227699 - markus@cvs.openbsd.org 2001/06/07 22:25:02
[session.c]
     don't overwrite errno
     delay deletion of the xauth cookie
2001-06-09 01:44:07 +00:00
Ben Lindstrom
cb3929d1d9 - markus@cvs.openbsd.org 2001/06/05 16:46:19
[session.c]
     let session_close() delete the pty.  deny x11fwd if xauthfile is set.
2001-06-09 01:34:15 +00:00
Ben Lindstrom
768176b240 - markus@cvs.openbsd.org 2001/06/04 23:16:16
[session.c]
     merge ssh1/2 x11-fwd setup, create listener after tmp-dir
2001-06-09 01:29:12 +00:00
Ben Lindstrom
983c098311 - markus@cvs.openbsd.org 2001/06/04 21:59:43
[channels.c channels.h session.c]
     switch uid when cleaning up tmp files and sockets; reported by
     zen-parse@gmx.net on bugtraq
2001-06-09 01:20:06 +00:00
Ben Lindstrom
838394ca26 - markus@cvs.openbsd.org 2001/06/03 14:55:39
[channels.c channels.h session.c]
     use fatal_register_cleanup instead of atexit, sync with x11 authdir
     handling
2001-06-09 01:11:59 +00:00
Ben Lindstrom
c763767f18 [NOTE: Next patch will sync nchan.c, channels.c and channels.h and all this
pain will be over.]
   - markus@cvs.openbsd.org 2001/05/31 10:30:17
     [auth-options.c auth2.c channels.c channels.h clientloop.c nchan.c
      packet.c serverloop.c session.c ssh.c]
     undo the .c file split, just merge the header and keep the cvs
     history
2001-06-09 00:36:26 +00:00
Ben Lindstrom
e6455aee8f [NOTE: File split is was not done in Portabl Tree]
- markus@cvs.openbsd.org 2001/05/30 12:55:13
     [auth-options.c auth2.c channels.c channels.h clientloop.c nchan.c
      packet.c serverloop.c session.c ssh.c ssh1.h]
     channel layer cleanup: merge header files and split .c files
2001-06-09 00:17:10 +00:00
Ben Lindstrom
7d68fbf4c5 - djm@cvs.openbsd.org 2001/05/19 00:36:40
[session.c]
     Disable X11 forwarding if xauth binary is not found. Patch from Nalin
     Dahyabhai <nalin@redhat.com>; ok markus@
2001-06-05 19:29:20 +00:00
Ben Lindstrom
97c677d4f0 - (bal) UseLogin patch for Solaris/UNICOS. Patch by Wayne Davison
<wayne@blorf.net>
2001-05-08 20:33:05 +00:00
Ben Lindstrom
5428bea574 - (bal) White Space and #ifdef sync with OpenBSD 2001-05-06 02:53:25 +00:00
Ben Lindstrom
60402fd42a - markus@cvs.openbsd.org 2001/05/03 15:45:15
[session.c]
     exec shell -c /bin/sh .ssh/sshrc, from abartlet@pcug.org.au
2001-05-03 22:37:26 +00:00
Ben Lindstrom
005dd22c97 - markus@cvs.openbsd.org 2001/04/17 19:34:25
[session.c]
     move auth_approval to do_authenticated().
     do_child(): nuke hostkeys from memory
     don't source .ssh/rc for subsystems.
2001-04-18 15:29:33 +00:00
Damien Miller
364a9bd9ce - Fix OSF SIA support displaying too much information for quiet
logins and logins where access was denied by SIA. Patch from Chris Adams
   <cmadams@hiwaay.net>
2001-04-16 18:37:05 +10:00
Damien Miller
cf205e8f35 - djm@cvs.openbsd.org 2001/04/16 08:19:31
[session.c]
     Split motd and hushlogin checks into seperate functions, helps for
     portable. From Chris Adams <cmadams@hiwaay.net>; ok markus@
2001-04-16 18:29:15 +10:00
Ben Lindstrom
ae8e2d30db - stevesk@cvs.openbsd.org 2001/04/14 16:33:20
[clientloop.c packet.h session.c ssh.c ttymodes.c ttymodes.h]
     protocol 2 tty modes support; ok markus@
2001-04-14 23:13:02 +00:00
Ben Lindstrom
3fcf1a22b5 - markus@cvs.openbsd.org 2001/04/06 21:00:17
[auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth2.c channels.c session.c
      ssh.c sshconnect.c sshconnect.h uidswap.c uidswap.h]
     do gid/groups-swap in addition to uid-swap, should help if /home/group
     is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks
     to olar@openwall.com is comments.  we had many requests for this.
2001-04-08 18:26:59 +00:00
Ben Lindstrom
f15a386511 - stevesk@cvs.openbsd.org 2001/04/05 15:48:18
[canohost.c canohost.h session.c]
     move get_remote_name_or_ip() to canohost.[ch]; for portable.  ok markus@
2001-04-05 23:32:17 +00:00