![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.35 / (download) - annotate - [select for diffs], Fri May 17 00:30:23 2024 UTC (110 minutes, 38 seconds ago) by djm
Branch: MAIN
CVS Tags: HEAD
Changes since 1.34: +15 -24 lines
Diff to previous 1.34 (colored)
Start the process of splitting sshd into separate binaries. This step splits sshd into a listener and a session binary. More splits are planned. After this changes, the listener binary will validate the configuration, load the hostkeys, listen on port 22 and manage MaxStartups only. All session handling will be performed by a new sshd-session binary that the listener fork+execs. This reduces the listener process to the minimum necessary and sets us up for future work on the sshd-session binary. feedback/ok markus@ deraadt@ NB. if you're updating via source, please restart sshd after installing, otherwise you run the risk of locking yourself out.
Revision 1.34 / (download) - annotate - [select for diffs], Fri Mar 31 04:22:27 2023 UTC (13 months, 2 weeks ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.33: +9 -3 lines
Diff to previous 1.33 (colored)
clamp max number of GSSAPI mechanisms to 2048; ok dtucker
Revision 1.33 / (download) - annotate - [select for diffs], Sun Dec 19 22:12:07 2021 UTC (2 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3,
OPENBSD_7_2_BASE,
OPENBSD_7_2,
OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.32: +3 -2 lines
Diff to previous 1.32 (colored)
prepare for multiple names for authmethods allow authentication methods to have one additional name beyond their primary name. allow lookup by this synonym Use primary name for authentication decisions, e.g. for PermitRootLogin=publickey Pass actual invoked name to the authmethods, so they can tell whether they were requested via the their primary name or synonym. ok markus@
Revision 1.32 / (download) - annotate - [select for diffs], Wed Jan 27 10:15:08 2021 UTC (3 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.31: +2 -1 lines
Diff to previous 1.31 (colored)
this needs kex.h now
Revision 1.31 / (download) - annotate - [select for diffs], Wed Jan 27 10:05:28 2021 UTC (3 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.30: +2 -2 lines
Diff to previous 1.30 (colored)
make ssh->kex->session_id a sshbuf instead of u_char*/size_t and use that instead of global variables containing copies of it. feedback/ok markus@
Revision 1.30 / (download) - annotate - [select for diffs], Sun Oct 18 11:32:01 2020 UTC (3 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.29: +13 -13 lines
Diff to previous 1.29 (colored)
use the new variant log macros instead of prepending __func__ and appending ssh_err(r) manually; ok markus@
Revision 1.29 / (download) - annotate - [select for diffs], Tue Jul 31 03:10:27 2018 UTC (5 years, 9 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7,
OPENBSD_6_6_BASE,
OPENBSD_6_6,
OPENBSD_6_5_BASE,
OPENBSD_6_5,
OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.28: +7 -4 lines
Diff to previous 1.28 (colored)
delay bailout for invalid authenticating user until after the packet containing the request has been fully parsed. Reported by Dariusz Tytko and MichaĆ Sajdak; ok deraadt
Revision 1.28 / (download) - annotate - [select for diffs], Tue Jul 10 09:13:30 2018 UTC (5 years, 10 months ago) by djm
Branch: MAIN
Changes since 1.27: +12 -5 lines
Diff to previous 1.27 (colored)
kerberos/gssapi fixes for buffer removal
Revision 1.27 / (download) - annotate - [select for diffs], Mon Jul 9 21:37:55 2018 UTC (5 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.26: +55 -40 lines
Diff to previous 1.26 (colored)
sshd: switch GSSAPI to sshbuf API; ok djm@
Revision 1.26 / (download) - annotate - [select for diffs], Sat Jun 24 06:34:38 2017 UTC (6 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.25: +11 -1 lines
Diff to previous 1.25 (colored)
refactor authentication logging optionally record successful auth methods and public credentials used in a file accessible to user sessions feedback and ok markus@
Revision 1.25 / (download) - annotate - [select for diffs], Tue May 30 14:29:59 2017 UTC (6 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.24: +22 -21 lines
Diff to previous 1.24 (colored)
switch auth2 to ssh_dispatch API; ok djm@
Revision 1.24 / (download) - annotate - [select for diffs], Tue May 30 14:23:52 2017 UTC (6 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.23: +9 -13 lines
Diff to previous 1.23 (colored)
protocol handlers all get struct ssh passed; ok djm@
Revision 1.23 / (download) - annotate - [select for diffs], Tue May 30 14:18:15 2017 UTC (6 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.22: +9 -5 lines
Diff to previous 1.22 (colored)
sshd: pass struct ssh to auth functions; ok djm@
Revision 1.22 / (download) - annotate - [select for diffs], Mon Jan 19 20:07:45 2015 UTC (9 years, 3 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1,
OPENBSD_6_0_BASE,
OPENBSD_6_0,
OPENBSD_5_9_BASE,
OPENBSD_5_9,
OPENBSD_5_8_BASE,
OPENBSD_5_8,
OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.21: +13 -9 lines
Diff to previous 1.21 (colored)
move dispatch to struct ssh; ok djm@
Revision 1.21 / (download) - annotate - [select for diffs], Wed Feb 26 20:28:44 2014 UTC (10 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6,
OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.20: +2 -7 lines
Diff to previous 1.20 (colored)
bz#2107 - cache OIDs of supported GSSAPI mechanisms before privsep sandboxing, as running this code in the sandbox can cause violations; ok markus@
Revision 1.20 / (download) - annotate - [select for diffs], Fri May 17 00:13:13 2013 UTC (11 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4
Changes since 1.19: +8 -9 lines
Diff to previous 1.19 (colored)
bye, bye xfree(); ok markus@
Revision 1.19 / (download) - annotate - [select for diffs], Fri Apr 5 00:14:00 2013 UTC (11 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.18: +1 -4 lines
Diff to previous 1.18 (colored)
hush some {unused, printf type} warnings
Revision 1.18 / (download) - annotate - [select for diffs], Sun Dec 2 20:34:09 2012 UTC (11 years, 5 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE,
OPENBSD_5_3
Changes since 1.17: +4 -4 lines
Diff to previous 1.17 (colored)
Fixes logging of partial authentication when privsep is enabled Previously, we recorded "Failed xxx" since we reset authenticated before calling auth_log() in auth2.c. This adds an explcit "Partial" state. Add a "submethod" to auth_log() to report which submethod is used for keyboard-interactive. Fix multiple authentication when one of the methods is keyboard-interactive. ok markus@
Revision 1.17 / (download) - annotate - [select for diffs], Thu Mar 10 02:52:57 2011 UTC (13 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0
Changes since 1.16: +3 -1 lines
Diff to previous 1.16 (colored)
allow GSSAPI authentication to detect when a server-side failure causes authentication failure and don't count such failures against MaxAuthTries; bz#1244 from simon AT sxw.org.uk; ok markus@ before lock
Revision 1.16 / (download) - annotate - [select for diffs], Mon Oct 29 00:52:45 2007 UTC (16 years, 6 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_4_9_BASE,
OPENBSD_4_9,
OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7,
OPENBSD_4_6_BASE,
OPENBSD_4_6,
OPENBSD_4_5_BASE,
OPENBSD_4_5,
OPENBSD_4_4_BASE,
OPENBSD_4_4,
OPENBSD_4_3_BASE,
OPENBSD_4_3
Changes since 1.15: +4 -1 lines
Diff to previous 1.15 (colored)
Allow build without -DGSSAPI; ok deraadt@
Revision 1.10.2.2 / (download) - annotate - [select for diffs], Fri Oct 6 03:19:32 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.10.2.1: +9 -9 lines
Diff to previous 1.10.2.1 (colored) to branchpoint 1.10 (colored) next main 1.11 (colored)
upgrade to OpenSSH 4.4
Revision 1.12.2.1 / (download) - annotate - [select for diffs], Sat Sep 30 04:06:50 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_9
Changes since 1.12: +9 -9 lines
Diff to previous 1.12 (colored) next main 1.13 (colored)
upgrade to OpenSSH 4.4
Revision 1.15 / (download) - annotate - [select for diffs], Thu Aug 3 03:34:41 2006 UTC (17 years, 9 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1,
OPENBSD_4_0_BASE,
OPENBSD_4_0
Changes since 1.14: +7 -9 lines
Diff to previous 1.14 (colored)
almost entirely get rid of the culture of ".h files that include .h files" ok djm, sort of ok stevesk makes the pain stop in one easy step
Revision 1.14 / (download) - annotate - [select for diffs], Sat Mar 25 22:22:42 2006 UTC (18 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.13: +1 -1 lines
Diff to previous 1.13 (colored)
standardise spacing in $OpenBSD$ tags; requested by deraadt@
Revision 1.13 / (download) - annotate - [select for diffs], Mon Mar 20 04:07:22 2006 UTC (18 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.12: +3 -1 lines
Diff to previous 1.12 (colored)
GSSAPI related leaks detected by Coverity via elad AT netbsd.org; reviewed by simon AT sxw.org.uk; deraadt@ ok
Revision 1.10.2.1 / (download) - annotate - [select for diffs], Fri Feb 3 03:01:55 2006 UTC (18 years, 3 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.10: +3 -4 lines
Diff to previous 1.10 (colored)
upgrade to OpenSSH 4.3
Revision 1.8.4.2 / (download) - annotate - [select for diffs], Fri Feb 3 02:53:44 2006 UTC (18 years, 3 months ago) by brad
Branch: OPENBSD_3_7
Changes since 1.8.4.1: +3 -4 lines
Diff to previous 1.8.4.1 (colored) to branchpoint 1.8 (colored) next main 1.9 (colored)
upgrade to OpenSSH 4.3
Revision 1.12 / (download) - annotate - [select for diffs], Thu Oct 13 22:24:31 2005 UTC (18 years, 7 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE
Branch point for: OPENBSD_3_9
Changes since 1.11: +3 -3 lines
Diff to previous 1.11 (colored)
KNF; ok djm@
Revision 1.11 / (download) - annotate - [select for diffs], Thu Oct 13 14:03:01 2005 UTC (18 years, 7 months ago) by stevesk
Branch: MAIN
Changes since 1.10: +1 -2 lines
Diff to previous 1.10 (colored)
remove unneeded #includes; ok markus@
Revision 1.8.4.1 / (download) - annotate - [select for diffs], Sun Sep 4 18:39:58 2005 UTC (18 years, 8 months ago) by brad
Branch: OPENBSD_3_7
Changes since 1.8: +4 -5 lines
Diff to previous 1.8 (colored)
upgrade to OpenSSH 4.2
Revision 1.8.2.1 / (download) - annotate - [select for diffs], Fri Sep 2 03:44:59 2005 UTC (18 years, 8 months ago) by brad
Branch: OPENBSD_3_6
Changes since 1.8: +4 -5 lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
upgrade to OpenSSH 4.2
Revision 1.10 / (download) - annotate - [select for diffs], Sun Jul 17 07:17:54 2005 UTC (18 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_3_8_BASE
Branch point for: OPENBSD_3_8
Changes since 1.9: +3 -4 lines
Diff to previous 1.9 (colored)
knf says that a 2nd level indent is four (not three or five) spaces
Revision 1.9 / (download) - annotate - [select for diffs], Fri Jun 17 02:44:32 2005 UTC (18 years, 11 months ago) by djm
Branch: MAIN
Changes since 1.8: +2 -2 lines
Diff to previous 1.8 (colored)
make this -Wsign-compare clean; ok avsm@ markus@
Revision 1.3.2.2 / (download) - annotate - [select for diffs], Thu Aug 19 22:37:30 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.3.2.1: +6 -6 lines
Diff to previous 1.3.2.1 (colored) to branchpoint 1.3 (colored) next main 1.4 (colored)
upgrade to OpenSSH 3.9
Revision 1.7.2.1 / (download) - annotate - [select for diffs], Thu Aug 19 04:13:26 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_5
Changes since 1.7: +6 -6 lines
Diff to previous 1.7 (colored) next main 1.8 (colored)
upgrade to OpenSSH 3.9
Revision 1.8 / (download) - annotate - [select for diffs], Mon Jun 21 17:36:31 2004 UTC (19 years, 10 months ago) by avsm
Branch: MAIN
CVS Tags: OPENBSD_3_7_BASE,
OPENBSD_3_6_BASE
Branch point for: OPENBSD_3_7,
OPENBSD_3_6
Changes since 1.7: +6 -6 lines
Diff to previous 1.7 (colored)
make ssh -Wshadow clean, no functional changes markus@ ok
Revision 1.3.4.2 / (download) - annotate - [select for diffs], Thu Mar 4 18:18:15 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.3.4.1: +66 -18 lines
Diff to previous 1.3.4.1 (colored) to branchpoint 1.3 (colored) next main 1.4 (colored)
upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8
Revision 1.3.2.1 / (download) - annotate - [select for diffs], Sat Feb 28 03:51:32 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.3: +66 -18 lines
Diff to previous 1.3 (colored)
upgrade to OpenSSH 3.8
Revision 1.7 / (download) - annotate - [select for diffs], Fri Nov 21 11:57:03 2003 UTC (20 years, 6 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE
Branch point for: OPENBSD_3_5
Changes since 1.6: +11 -11 lines
Diff to previous 1.6 (colored)
unexpand and delete whitespace at EOL; ok markus@
Revision 1.6 / (download) - annotate - [select for diffs], Mon Nov 17 11:06:07 2003 UTC (20 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.5: +57 -11 lines
Diff to previous 1.5 (colored)
replace "gssapi" with "gssapi-with-mic"; from Simon Wilkinson; test + ok jakob.
Revision 1.5 / (download) - annotate - [select for diffs], Sun Nov 2 11:01:03 2003 UTC (20 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.4: +11 -11 lines
Diff to previous 1.4 (colored)
remove support for SSH_BUG_GSSAPI_BER; simon@sxw.org.uk
Revision 1.4 / (download) - annotate - [select for diffs], Tue Oct 21 09:50:06 2003 UTC (20 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.3: +3 -1 lines
Diff to previous 1.3 (colored)
make sure the doid is larger than 2
Revision 1.3.6.1 / (download) - annotate - [select for diffs], Tue Sep 16 21:20:24 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_2
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored) next main 1.4 (colored)
upgrade to OpenSSH 3.7
Revision 1.3.4.1 / (download) - annotate - [select for diffs], Tue Sep 16 20:50:42 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)
upgrade to OpenSSH 3.7
Revision 1.3 / (download) - annotate - [select for diffs], Mon Sep 1 20:44:54 2003 UTC (20 years, 8 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_4_BASE
Branch point for: OPENBSD_3_4,
OPENBSD_3_3,
OPENBSD_3_2
Changes since 1.2: +4 -2 lines
Diff to previous 1.2 (colored)
fix leak
Revision 1.2 / (download) - annotate - [select for diffs], Sun Aug 24 17:36:51 2003 UTC (20 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.1: +4 -2 lines
Diff to previous 1.1 (colored)
64 bit cleanups; markus ok
Revision 1.1 / (download) - annotate - [select for diffs], Fri Aug 22 10:56:08 2003 UTC (20 years, 8 months ago) by markus
Branch: MAIN
support GSS API user authentication; patches from Simon Wilkinson, stripped down and tested by Jakob and myself.