![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.239 / (download) - annotate - [select for diffs], Fri May 17 00:30:24 2024 UTC (2 weeks, 1 day ago) by djm
Branch: MAIN
CVS Tags: HEAD
Changes since 1.238: +4 -40 lines
Diff to previous 1.238 (colored)
Start the process of splitting sshd into separate binaries. This step splits sshd into a listener and a session binary. More splits are planned. After this changes, the listener binary will validate the configuration, load the hostkeys, listen on port 22 and manage MaxStartups only. All session handling will be performed by a new sshd-session binary that the listener fork+execs. This reduces the listener process to the minimum necessary and sets us up for future work on the sshd-session binary. feedback/ok markus@ deraadt@ NB. if you're updating via source, please restart sshd after installing, otherwise you run the risk of locking yourself out.
Revision 1.238 / (download) - annotate - [select for diffs], Tue Apr 30 02:14:10 2024 UTC (4 weeks, 4 days ago) by djm
Branch: MAIN
Changes since 1.237: +2 -2 lines
Diff to previous 1.237 (colored)
correctly restore sigprocmask around ppoll() reported by Tõivo Leedjärv; ok deraadt@
Revision 1.237 / (download) - annotate - [select for diffs], Mon Aug 21 04:59:54 2023 UTC (9 months, 1 week ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.236: +2 -2 lines
Diff to previous 1.236 (colored)
correct math for ClientAliveInterval that caused the probes to be sent less frequently than configured; from Dawid Majchrzak
Revision 1.236 / (download) - annotate - [select for diffs], Wed Mar 8 04:43:12 2023 UTC (14 months, 3 weeks ago) by guenther
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3
Changes since 1.235: +1 -3 lines
Diff to previous 1.235 (colored)
Delete obsolete /* ARGSUSED */ lint comments. ok miod@ millert@
Revision 1.235 / (download) - annotate - [select for diffs], Sun Mar 5 05:34:09 2023 UTC (14 months, 4 weeks ago) by dtucker
Branch: MAIN
Changes since 1.234: +1 -2 lines
Diff to previous 1.234 (colored)
Remove unused compat.h includes. We've previously removed a lot of the really old compatibility code, and with it went the need to include compat.h in most of the files that have it.
Revision 1.234 / (download) - annotate - [select for diffs], Tue Jan 17 09:44:48 2023 UTC (16 months, 2 weeks ago) by djm
Branch: MAIN
Changes since 1.233: +28 -5 lines
Diff to previous 1.233 (colored)
Add a sshd_config UnusedConnectionTimeout option to terminate client connections that have no open channels for some length of time. This complements the recently-added ChannelTimeout option that terminates inactive channels after a timeout. ok markus@
Revision 1.233 / (download) - annotate - [select for diffs], Fri Jan 6 02:38:23 2023 UTC (16 months, 3 weeks ago) by djm
Branch: MAIN
Changes since 1.232: +23 -46 lines
Diff to previous 1.232 (colored)
replace manual poll/ppoll timeout math with ptimeout API feedback markus / ok markus dtucker
Revision 1.232 / (download) - annotate - [select for diffs], Wed Apr 20 04:19:11 2022 UTC (2 years, 1 month ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE,
OPENBSD_7_2
Changes since 1.231: +2 -3 lines
Diff to previous 1.231 (colored)
Try to continue running local I/O for channels in state OPEN during SSH transport rekeying. The most visible benefit is that it should make ~-escapes work in the client (e.g. to exit) if the connection happened to have stalled during a rekey event. Based work by and ok dtucker@
Revision 1.231 / (download) - annotate - [select for diffs], Sat Jan 22 00:49:34 2022 UTC (2 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.230: +12 -15 lines
Diff to previous 1.230 (colored)
add a ssh_packet_process_read() function that reads from a fd directly into the transport input buffer. Use this in the client and server mainloops to avoid unnecessary copying. It also lets us use a more greedy read size without penalty. Yields a 2-3% performance gain on cipher-speed.sh (in a fairly unscientific test tbf) feedback dtucker@ ok markus@
Revision 1.230 / (download) - annotate - [select for diffs], Thu Jan 6 21:55:23 2022 UTC (2 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.229: +18 -9 lines
Diff to previous 1.229 (colored)
Fix signature algorithm selection logic for UpdateHostkeys on the server side. The previous code tried to prefer RSA/SHA2 for hostkey proofs of RSA keys, but missed some cases. This will use RSA/SHA2 signatures for RSA keys if the client proposed these algorithms in initial KEX. bz3375 Mostly by Dmitry Belyavskiy with some tweaks by me. ok markus@
Revision 1.229 / (download) - annotate - [select for diffs], Thu Jan 6 21:48:38 2022 UTC (2 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.228: +67 -65 lines
Diff to previous 1.228 (colored)
convert ssh, sshd mainloops from select() to poll(); feedback & ok deraadt@ and markus@ has been in snaps for a few months
Revision 1.228 / (download) - annotate - [select for diffs], Fri Jul 16 09:00:23 2021 UTC (2 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0
Changes since 1.227: +5 -2 lines
Diff to previous 1.227 (colored)
Explicitly check for and start time-based rekeying in the client and server mainloops. Previously the rekey timeout could expire but rekeying would not start until a packet was sent or received. This could cause us to spin in select() on the rekey timeout if the connection was quiet. ok markus@
Revision 1.227 / (download) - annotate - [select for diffs], Fri Jun 25 03:38:17 2021 UTC (2 years, 11 months ago) by dtucker
Branch: MAIN
Changes since 1.226: +28 -80 lines
Diff to previous 1.226 (colored)
Replace SIGCHLD/notify_pipe kludge with pselect. Previously sshd's SIGCHLD handler would wake up select() by writing a byte to notify_pipe. We can remove this by blocking SIGCHLD, checking for child terminations then passing the original signal mask through to pselect. This ensures that the pselect will immediately wake up if a child terminates between wait()ing on them and the pselect. In -portable, for platforms that do not have pselect the kludge is still there but is hidden behind a pselect interface. Based on other changes for bz#2158, ok djm@
Revision 1.226 / (download) - annotate - [select for diffs], Sat Apr 3 06:18:41 2021 UTC (3 years, 1 month ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.225: +2 -2 lines
Diff to previous 1.225 (colored)
highly polished whitespace, mostly fixing spaces-for-tab and bad indentation on continuation lines. Prompted by GHPR#185
Revision 1.225 / (download) - annotate - [select for diffs], Wed Jan 27 10:05:28 2021 UTC (3 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.224: +3 -3 lines
Diff to previous 1.224 (colored)
make ssh->kex->session_id a sshbuf instead of u_char*/size_t and use that instead of global variables containing copies of it. feedback/ok markus@
Revision 1.224 / (download) - annotate - [select for diffs], Sun Oct 18 11:32:02 2020 UTC (3 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.223: +37 -45 lines
Diff to previous 1.223 (colored)
use the new variant log macros instead of prepending __func__ and appending ssh_err(r) manually; ok markus@
Revision 1.223 / (download) - annotate - [select for diffs], Fri Jul 3 06:29:57 2020 UTC (3 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8
Changes since 1.222: +3 -1 lines
Diff to previous 1.222 (colored)
start ClientAliveInterval bookkeeping before first pass through select() loop; fixed theoretical case where busy sshd may ignore timeouts from client; inspired by and ok dtucker
Revision 1.222 / (download) - annotate - [select for diffs], Thu Jan 30 07:21:38 2020 UTC (4 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_7_BASE,
OPENBSD_6_7
Changes since 1.221: +5 -4 lines
Diff to previous 1.221 (colored)
use sshpkt_fatal() instead of plain fatal() for ssh_packet_write_poll() failures here too as the former yields better error messages; ok dtucker@
Revision 1.221 / (download) - annotate - [select for diffs], Sat Jan 25 22:41:01 2020 UTC (4 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.220: +3 -2 lines
Diff to previous 1.220 (colored)
make sshd_config:ClientAliveCountMax=0 disable the connection killing behaviour, rather than killing the connection after sending the first liveness test probe (regardless of whether the client was responsive) bz2627; ok markus
Revision 1.220 / (download) - annotate - [select for diffs], Sat Jan 25 04:48:26 2020 UTC (4 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.219: +3 -5 lines
Diff to previous 1.219 (colored)
unrevert this: > revision 1.217 > date: 2019/11/27 03:34:04; author: dtucker; state: Exp; lines: +5 -7; commitid: wkiMn49XJyjzoJIs; > Make channel_id u_int32_t and remove unnecessary check and cast that were > left over from the type conversion. Noted by t-hashida@amiya.co.jp in > bz#3098, ok markus@ djm@ Darren was right the first time; ok dtucker@ "agreed" markus@
Revision 1.219 / (download) - annotate - [select for diffs], Thu Jan 23 07:10:22 2020 UTC (4 years, 4 months ago) by dtucker
Branch: MAIN
Changes since 1.218: +5 -5 lines
Diff to previous 1.218 (colored)
Replace all calls to signal(2) with a wrapper around sigaction(2). This wrapper blocks all other signals during the handler preventing races between handlers, and sets SA_RESTART which should reduce the potential for short read/write operations.
Revision 1.218 / (download) - annotate - [select for diffs], Wed Nov 27 05:38:43 2019 UTC (4 years, 6 months ago) by dtucker
Branch: MAIN
Changes since 1.217: +7 -5 lines
Diff to previous 1.217 (colored)
Revert previous commit. The channels code still uses int in many places for channel ids so the INT_MAX check still makes sense.
Revision 1.217 / (download) - annotate - [select for diffs], Wed Nov 27 03:34:04 2019 UTC (4 years, 6 months ago) by dtucker
Branch: MAIN
Changes since 1.216: +5 -7 lines
Diff to previous 1.216 (colored)
Make channel_id u_int32_t and remove unnecessary check and cast that were left over from the type conversion. Noted by t-hashida@amiya.co.jp in bz#3098, ok markus@ djm@
Revision 1.216 / (download) - annotate - [select for diffs], Fri Jun 28 13:35:04 2019 UTC (4 years, 11 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.215: +4 -4 lines
Diff to previous 1.215 (colored)
When system calls indicate an error they return -1, not some arbitrary value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
Revision 1.215 / (download) - annotate - [select for diffs], Wed Mar 27 09:29:14 2019 UTC (5 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5
Changes since 1.214: +4 -3 lines
Diff to previous 1.214 (colored)
fix interaction between ClientAliveInterval and RekeyLimit that could cause connection to close incorrectly; Report and patch from Jakub Jelen in bz#2757; ok dtucker@ markus@
Revision 1.214 / (download) - annotate - [select for diffs], Wed Mar 6 21:06:59 2019 UTC (5 years, 2 months ago) by dtucker
Branch: MAIN
Changes since 1.213: +9 -6 lines
Diff to previous 1.213 (colored)
Reset last-seen time when sending a keepalive. Prevents sending two keepalives successively and prematurely terminating connection when ClientAliveCount=1. While there, collapse two similar tests into one. ok markus@
Revision 1.213 / (download) - annotate - [select for diffs], Sat Jan 19 22:30:52 2019 UTC (5 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.212: +6 -4 lines
Diff to previous 1.212 (colored)
fix error in refactor: use ssh_packet_disconnect() instead of sshpkt_error(). The first one logs the error and exits (what we want) instead of just logging and blundering on.
Revision 1.212 / (download) - annotate - [select for diffs], Sat Jan 19 21:43:56 2019 UTC (5 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.211: +3 -3 lines
Diff to previous 1.211 (colored)
remove last references to active_state with & ok markus@
Revision 1.211 / (download) - annotate - [select for diffs], Sat Jan 19 21:40:48 2019 UTC (5 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.210: +205 -153 lines
Diff to previous 1.210 (colored)
convert serverloop.c to new packet API with & ok markus@
Revision 1.210 / (download) - annotate - [select for diffs], Sat Jan 19 21:31:32 2019 UTC (5 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.209: +4 -1 lines
Diff to previous 1.209 (colored)
begin landing remaining refactoring of packet parsing API, started almost exactly six years ago. This change stops including the old packet_* API by default and makes each file that requires the old API include it explicitly. We will commit file-by-file refactoring to remove the old API in consistent steps. with & ok markus@
Revision 1.209 / (download) - annotate - [select for diffs], Fri Jul 27 05:13:02 2018 UTC (5 years, 10 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.208: +12 -1 lines
Diff to previous 1.208 (colored)
Remove uid checks from low port binds. Now that ssh cannot be setuid and sshd always has privsep on, we can remove the uid checks for low port binds and just let the system do the check. We leave a sanity check for the !privsep case so long as the code is stil there. with & ok djm@
Revision 1.208 / (download) - annotate - [select for diffs], Wed Jul 11 18:53:29 2018 UTC (5 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.207: +2 -2 lines
Diff to previous 1.207 (colored)
remove legacy key emulation layer; ok djm@
Revision 1.207 / (download) - annotate - [select for diffs], Mon Jul 9 21:29:36 2018 UTC (5 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.206: +2 -2 lines
Diff to previous 1.206 (colored)
sshd: switch config to sshbuf API; ok djm@
Revision 1.206 / (download) - annotate - [select for diffs], Fri Jun 8 01:55:40 2018 UTC (5 years, 11 months ago) by djm
Branch: MAIN
Changes since 1.205: +9 -9 lines
Diff to previous 1.205 (colored)
fix some over-long lines and __func__ up some debug messages
Revision 1.205 / (download) - annotate - [select for diffs], Sat Mar 3 03:15:51 2018 UTC (6 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3
Changes since 1.204: +18 -15 lines
Diff to previous 1.204 (colored)
switch over to the new authorized_keys options API and remove the legacy one. Includes a fairly big refactor of auth2-pubkey.c to retain less state between key file lines. feedback and ok markus@
Revision 1.204 / (download) - annotate - [select for diffs], Sun Feb 11 21:16:56 2018 UTC (6 years, 3 months ago) by dtucker
Branch: MAIN
Changes since 1.203: +1 -2 lines
Diff to previous 1.203 (colored)
Don't reset signal handlers inside handlers. The signal handlers from the original ssh1 code on which OpenSSH is based assume unreliable signals and reinstall their handlers. Since OpenBSD (and pretty much every current system) has reliable signals this is not needed. In the unlikely even that -portable is still being used on such systems we will deal with it in the compat layer. ok deraadt@
Revision 1.203 / (download) - annotate - [select for diffs], Tue Jan 23 05:27:21 2018 UTC (6 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.202: +3 -5 lines
Diff to previous 1.202 (colored)
Drop compatibility hacks for some ancient SSH implementations, including ssh.com <=2.* and OpenSSH <= 3.*. These versions were all released in or before 2001 and predate the final SSH RFCs. The hacks in question aren't necessary for RFC- compliant SSH implementations. ok markus@
Revision 1.202 / (download) - annotate - [select for diffs], Mon Dec 18 23:16:24 2017 UTC (6 years, 5 months ago) by djm
Branch: MAIN
Changes since 1.201: +11 -3 lines
Diff to previous 1.201 (colored)
unbreak hostkey rotation; attempting to sign with a desired signature algorithm of kex->hostkey_alg is incorrect when the key type isn't capable of making those signatures. ok markus@
Revision 1.201 / (download) - annotate - [select for diffs], Mon Dec 18 02:25:15 2017 UTC (6 years, 5 months ago) by djm
Branch: MAIN
Changes since 1.200: +3 -2 lines
Diff to previous 1.200 (colored)
pass negotiated signing algorithm though to sshkey_verify() and check that the negotiated algorithm matches the type in the signature (only matters for RSA SHA1/SHA2 sigs). ok markus@
Revision 1.200 / (download) - annotate - [select for diffs], Sun Dec 10 05:55:29 2017 UTC (6 years, 5 months ago) by dtucker
Branch: MAIN
Changes since 1.199: +4 -2 lines
Diff to previous 1.199 (colored)
Put remote client info back into the ClientAlive connection termination message. Based in part on diff from lars.nooden at gmail, ok djm
Revision 1.199 / (download) - annotate - [select for diffs], Mon Oct 23 05:08:00 2017 UTC (6 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.198: +21 -2 lines
Diff to previous 1.198 (colored)
Expose devices allocated for tun/tap forwarding. At the client, the device may be obtained from a new %T expansion for LocalCommand. At the server, the allocated devices will be listed in a SSH_TUNNEL variable exposed to the environment of any user sessions started after the tunnel forwarding was established. ok markus
Revision 1.198 / (download) - annotate - [select for diffs], Tue Sep 12 06:35:32 2017 UTC (6 years, 8 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.197: +5 -1 lines
Diff to previous 1.197 (colored)
Make remote channel ID a u_int Previously we tracked the remote channel IDs in an int, but this is strictly incorrect: the wire protocol uses uint32 and there is nothing in-principle stopping a SSH implementation from sending, say, 0xffff0000. In practice everyone numbers their channels sequentially, so this has never been a problem. ok markus@
Revision 1.197 / (download) - annotate - [select for diffs], Tue Sep 12 06:32:07 2017 UTC (6 years, 8 months ago) by djm
Branch: MAIN
Changes since 1.196: +52 -53 lines
Diff to previous 1.196 (colored)
refactor channels.c Move static state to a "struct ssh_channels" that is allocated at runtime and tracked as a member of struct ssh. Explicitly pass "struct ssh" to all channels functions. Replace use of the legacy packet APIs in channels.c. Rework sshd_config PermitOpen handling: previously the configuration parser would call directly into the channels layer. After the refactor this is not possible, as the channels structures are allocated at connection time and aren't available when the configuration is parsed. The server config parser now tracks PermitOpen itself and explicitly configures the channels code later. ok markus@
Revision 1.196 / (download) - annotate - [select for diffs], Wed Aug 30 03:59:08 2017 UTC (6 years, 9 months ago) by djm
Branch: MAIN
Changes since 1.195: +4 -4 lines
Diff to previous 1.195 (colored)
pass packet state down to some of the channels function (more to come...); ok markus@
Revision 1.195 / (download) - annotate - [select for diffs], Fri Aug 11 04:16:35 2017 UTC (6 years, 9 months ago) by dtucker
Branch: MAIN
Changes since 1.194: +2 -2 lines
Diff to previous 1.194 (colored)
Tweak previous keepalive commit: if last_time + keepalive <= now instead of just "<" so client_alive_check will fire if the select happens to return on exact second of the timeout. ok djm@
Revision 1.194 / (download) - annotate - [select for diffs], Fri Aug 11 03:58:36 2017 UTC (6 years, 9 months ago) by dtucker
Branch: MAIN
Changes since 1.193: +15 -3 lines
Diff to previous 1.193 (colored)
Keep track of the last time we actually heard from the client and use this to also schedule a client_alive_check(). Prevents activity on a forwarded port from indefinitely preventing the select timeout so that client_alive_check() will eventually (although not optimally) be called. Analysis by willchan at google com via bz#2756, feedback & ok djm@
Revision 1.193 / (download) - annotate - [select for diffs], Wed May 31 07:00:13 2017 UTC (7 years ago) by markus
Branch: MAIN
Changes since 1.192: +2 -2 lines
Diff to previous 1.192 (colored)
remove now obsolete ctx from ssh_dispatch_run; ok djm@
Revision 1.192 / (download) - annotate - [select for diffs], Tue May 30 14:23:52 2017 UTC (7 years ago) by markus
Branch: MAIN
Changes since 1.191: +5 -5 lines
Diff to previous 1.191 (colored)
protocol handlers all get struct ssh passed; ok djm@
Revision 1.191 / (download) - annotate - [select for diffs], Wed Feb 1 02:59:09 2017 UTC (7 years, 4 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.190: +10 -7 lines
Diff to previous 1.190 (colored)
Return true reason for port forwarding failures where feasible rather than always "administratively prohibited". bz#2674, ok djm@
Revision 1.190 / (download) - annotate - [select for diffs], Wed Jan 4 05:37:40 2017 UTC (7 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.189: +13 -8 lines
Diff to previous 1.189 (colored)
unbreak Unix domain socket forwarding for root; ok markus@
Revision 1.189 / (download) - annotate - [select for diffs], Wed Dec 14 00:36:34 2016 UTC (7 years, 5 months ago) by djm
Branch: MAIN
Changes since 1.188: +5 -3 lines
Diff to previous 1.188 (colored)
disable Unix-domain socket forwarding when privsep is disabled
Revision 1.188 / (download) - annotate - [select for diffs], Wed Nov 30 03:00:05 2016 UTC (7 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.187: +5 -5 lines
Diff to previous 1.187 (colored)
Add a sshd_config DisableForwaring option that disables X11, agent, TCP, tunnel and Unix domain socket forwarding, as well as anything else we might implement in the future. This, like the 'restrict' authorized_keys flag, is intended to be a simple and future-proof way of restricting an account. Suggested as a complement to 'restrict' by Jann Horn; ok markus@
Revision 1.187 / (download) - annotate - [select for diffs], Sun Oct 23 22:04:05 2016 UTC (7 years, 7 months ago) by dtucker
Branch: MAIN
Changes since 1.186: +3 -3 lines
Diff to previous 1.186 (colored)
Factor out "can bind to low ports" check into its own function. This will make it easier for Portable to support platforms with permissions models other than uid==0 (eg bz#2625). ok djm@, "doesn't offend me too much" deraadt@.
Revision 1.186 / (download) - annotate - [select for diffs], Mon Sep 12 01:22:38 2016 UTC (7 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.185: +4 -5 lines
Diff to previous 1.185 (colored)
Add MAXIMUM(), MINIMUM(), and ROUNDUP() to misc.h, then use those definitions rather than pulling <sys/param.h> and unknown namespace pollution. ok djm markus dtucker
Revision 1.185 / (download) - annotate - [select for diffs], Sat Aug 13 17:47:41 2016 UTC (7 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.184: +20 -547 lines
Diff to previous 1.184 (colored)
remove ssh1 server code; ok djm@
Revision 1.184 / (download) - annotate - [select for diffs], Mon Mar 7 19:02:43 2016 UTC (8 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_0_BASE,
OPENBSD_6_0
Changes since 1.183: +7 -5 lines
Diff to previous 1.183 (colored)
refactor canohost.c: move functions that cache results closer to the places that use them (authn and session code). After this, no state is cached in canohost.c feedback and ok markus@
Revision 1.183 / (download) - annotate - [select for diffs], Fri Mar 4 03:35:44 2016 UTC (8 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.182: +15 -13 lines
Diff to previous 1.182 (colored)
fix ClientAliveInterval when a time-based RekeyLimit is set; previously keepalive packets were not being sent. bz#2252 report and analysis by Christian Wittenhorst and Garrett Lee feedback and ok dtucker@
Revision 1.182 / (download) - annotate - [select for diffs], Mon Feb 8 10:57:07 2016 UTC (8 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.181: +7 -13 lines
Diff to previous 1.181 (colored)
refactor activation of rekeying This makes automatic rekeying internal to the packet code (previously the server and client loops needed to assist). In doing to it makes application of rekey limits more accurate by accounting for packets about to be sent as well as packets queued during rekeying events themselves. Based on a patch from dtucker@ which was in turn based on a patch Aleksander Adamowski in bz#2521; ok markus@
Revision 1.181 / (download) - annotate - [select for diffs], Thu Jan 14 16:17:40 2016 UTC (8 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.180: +2 -6 lines
Diff to previous 1.180 (colored)
remove roaming support; ok djm@
Revision 1.180 / (download) - annotate - [select for diffs], Fri Dec 4 16:41:28 2015 UTC (8 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.179: +2 -2 lines
Diff to previous 1.179 (colored)
implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)
based on draft-rsa-dsa-sha2-256-03.txt and draft-ssh-ext-info-04.txt;
with & ok djm@
Revision 1.179 / (download) - annotate - [select for diffs], Sat Nov 28 06:41:03 2015 UTC (8 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.178: +3 -2 lines
Diff to previous 1.178 (colored)
don't include port number in tcpip-forward replies for requests that don't allocate a port; bz#2509 diagnosed by Ron Frederick ok markus
Revision 1.178 / (download) - annotate - [select for diffs], Fri Feb 20 22:17:21 2015 UTC (9 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8,
OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.177: +5 -5 lines
Diff to previous 1.177 (colored)
UpdateHostKeys fixes: I accidentally changed the format of the hostkeys@openssh.com messages last week without changing the extension name, and this has been causing connection failures for people who are running -current. First reported by sthen@ s/hostkeys@openssh.com/hostkeys-00@openssh.com/ Change the name of the proof message too, and reorder it a little. Also, UpdateHostKeys=ask is incompatible with ControlPersist (no TTY available to read the response) so disable UpdateHostKeys if it is in ask mode and ControlPersist is active (and document this)
Revision 1.177 / (download) - annotate - [select for diffs], Mon Feb 16 22:13:32 2015 UTC (9 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.176: +84 -4 lines
Diff to previous 1.176 (colored)
Revise hostkeys@openssh.com hostkey learning extension. The client will not ask the server to prove ownership of the private halves of any hitherto-unseen hostkeys it offers to the client. Allow UpdateHostKeys option to take an 'ask' argument to let the user manually review keys offered. ok markus@
Revision 1.176 / (download) - annotate - [select for diffs], Tue Jan 20 23:14:00 2015 UTC (9 years, 4 months ago) by deraadt
Branch: MAIN
Changes since 1.175: +2 -2 lines
Diff to previous 1.175 (colored)
Reduce use of <sys/param.h> and transition to <limits.h> throughout. ok djm markus
Revision 1.175 / (download) - annotate - [select for diffs], Mon Jan 19 20:16:15 2015 UTC (9 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.174: +3 -3 lines
Diff to previous 1.174 (colored)
adapt kex to sshbuf and struct ssh; ok djm@
Revision 1.174 / (download) - annotate - [select for diffs], Mon Jan 19 20:07:45 2015 UTC (9 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.173: +16 -9 lines
Diff to previous 1.173 (colored)
move dispatch to struct ssh; ok djm@
Revision 1.173 / (download) - annotate - [select for diffs], Mon Jan 19 19:52:16 2015 UTC (9 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.172: +5 -6 lines
Diff to previous 1.172 (colored)
update packet.c & isolate, introduce struct ssh a) switch packet.c to buffer api and isolate per-connection info into struct ssh b) (de)serialization of the state is moved from monitor to packet.c c) the old packet.c API is implemented in opacket.[ch] d) compress.c/h is removed and integrated into packet.c with and ok djm@
Revision 1.172 / (download) - annotate - [select for diffs], Tue Jul 15 15:54:14 2014 UTC (9 years, 10 months ago) by millert
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6
Changes since 1.171: +83 -22 lines
Diff to previous 1.171 (colored)
Add support for Unix domain socket forwarding. A remote TCP port
may be forwarded to a local Unix domain socket and vice versa or
both ends may be a Unix domain socket. This is a reimplementation
of the streamlocal patches by William Ahern from:
http://www.25thandclement.com/~william/projects/streamlocal.html
OK djm@ markus@
Revision 1.171 / (download) - annotate - [select for diffs], Tue Apr 29 13:10:30 2014 UTC (10 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.170: +2 -2 lines
Diff to previous 1.170 (colored)
bz#1818 - don't send channel success/failre replies on channels that have sent a close already; analysis and patch from Simon Tatham; ok markus@
Revision 1.170 / (download) - annotate - [select for diffs], Sun Feb 2 03:44:31 2014 UTC (10 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.169: +2 -2 lines
Diff to previous 1.169 (colored)
convert memset of potentially-private data to explicit_bzero()
Revision 1.169 / (download) - annotate - [select for diffs], Thu Dec 19 00:19:12 2013 UTC (10 years, 5 months ago) by dtucker
Branch: MAIN
Changes since 1.168: +3 -2 lines
Diff to previous 1.168 (colored)
Cast client_alive_interval to u_int64_t before assinging to max_time_milliseconds to avoid potential integer overflow in the timeout. bz#2170, patch from Loganaden Velvindron, ok djm@
Revision 1.168 / (download) - annotate - [select for diffs], Fri Jul 12 00:19:59 2013 UTC (10 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4
Changes since 1.167: +3 -2 lines
Diff to previous 1.167 (colored)
fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@
Revision 1.167 / (download) - annotate - [select for diffs], Fri May 17 00:13:14 2013 UTC (11 years ago) by djm
Branch: MAIN
Changes since 1.166: +14 -18 lines
Diff to previous 1.166 (colored)
bye, bye xfree(); ok markus@
Revision 1.166 / (download) - annotate - [select for diffs], Thu May 16 09:08:41 2013 UTC (11 years ago) by dtucker
Branch: MAIN
Changes since 1.165: +2 -2 lines
Diff to previous 1.165 (colored)
Fix some "unused result" warnings found via clang and -portable. ok markus@
Revision 1.165 / (download) - annotate - [select for diffs], Thu May 16 04:09:14 2013 UTC (11 years ago) by dtucker
Branch: MAIN
Changes since 1.164: +10 -4 lines
Diff to previous 1.164 (colored)
Add RekeyLimit to sshd with the same syntax as the client allowing rekeying based on traffic volume or time. ok djm@, help & ok jmc@ for the man page.
Revision 1.164 / (download) - annotate - [select for diffs], Fri Dec 7 01:51:35 2012 UTC (11 years, 5 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE,
OPENBSD_5_3
Changes since 1.163: +3 -3 lines
Diff to previous 1.163 (colored)
Cast signal to int for logging. A no-op on openbsd (they're always ints) but will prevent warnings in portable. ok djm@
Revision 1.163 / (download) - annotate - [select for diffs], Sun Dec 2 20:46:11 2012 UTC (11 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.162: +13 -6 lines
Diff to previous 1.162 (colored)
make AllowTcpForwarding accept "local" and "remote" in addition to its current "yes"/"no" to allow the server to specify whether just local or remote TCP forwarding is enabled. ok markus@
Revision 1.162 / (download) - annotate - [select for diffs], Wed Jun 20 04:42:58 2012 UTC (11 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_2_BASE,
OPENBSD_5_2
Changes since 1.161: +2 -2 lines
Diff to previous 1.161 (colored)
initialise accept() backoff timer to avoid EINVAL from select(2) in rekeying
Revision 1.161 / (download) - annotate - [select for diffs], Wed Apr 11 13:16:19 2012 UTC (12 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.160: +10 -4 lines
Diff to previous 1.160 (colored)
don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a while; ok deraadt@ markus@
Revision 1.160 / (download) - annotate - [select for diffs], Sun May 15 08:09:01 2011 UTC (13 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0
Changes since 1.159: +3 -3 lines
Diff to previous 1.159 (colored)
use FD_CLOEXEC consistently; patch from zion AT x96.org
Revision 1.159 / (download) - annotate - [select for diffs], Thu May 28 16:50:16 2009 UTC (15 years ago) by andreas
Branch: MAIN
CVS Tags: OPENBSD_4_9_BASE,
OPENBSD_4_9,
OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7,
OPENBSD_4_6_BASE,
OPENBSD_4_6
Changes since 1.158: +6 -2 lines
Diff to previous 1.158 (colored)
Keep track of number of bytes read and written. Needed for upcoming changes. Most code from Martin Forssen, maf at appgate dot com. ok markus@
Revision 1.158 / (download) - annotate - [select for diffs], Mon May 25 06:48:01 2009 UTC (15 years ago) by andreas
Branch: MAIN
Changes since 1.157: +3 -3 lines
Diff to previous 1.157 (colored)
Put the globals in packet.c into a struct and don't access it directly from other files. No functional changes. ok markus@ djm@
Revision 1.157 / (download) - annotate - [select for diffs], Thu Feb 12 03:16:01 2009 UTC (15 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_5_BASE,
OPENBSD_4_5
Changes since 1.156: +2 -1 lines
Diff to previous 1.156 (colored)
tighten check for -R0:... forwarding: only allow dynamic allocation if want_reply is set in the packet
Revision 1.156 / (download) - annotate - [select for diffs], Thu Feb 12 03:00:56 2009 UTC (15 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.155: +8 -4 lines
Diff to previous 1.155 (colored)
support remote port forwarding with a zero listen port (-R0:...) to dyamically allocate a listen port at runtime (this is actually specified in rfc4254); bz#1003 ok markus@
Revision 1.155 / (download) - annotate - [select for diffs], Thu Jan 22 10:02:34 2009 UTC (15 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.154: +2 -2 lines
Diff to previous 1.154 (colored)
make a2port() return -1 when it encounters an invalid port number rather than 0, which it will now treat as valid (needed for future work) adjust current consumers of a2port() to check its return value is <= 0, which in turn required some things to be converted from u_short => int make use of int vs. u_short consistent in some other places too feedback & ok markus@
Revision 1.154 / (download) - annotate - [select for diffs], Tue Dec 2 19:08:59 2008 UTC (15 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.153: +3 -3 lines
Diff to previous 1.153 (colored)
backout 1.149, since it's not necessary and openssh clients send broken CHANNEL_FAILURE/SUCCESS messages since about 2004; ok djm@
Revision 1.153 / (download) - annotate - [select for diffs], Mon Jun 30 12:15:39 2008 UTC (15 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_4_BASE,
OPENBSD_4_4
Changes since 1.152: +3 -2 lines
Diff to previous 1.152 (colored)
only pass channel requests on session channels through to the session channel handler, avoiding spurious log messages; ok! markus@
Revision 1.152 / (download) - annotate - [select for diffs], Tue Jun 10 22:15:23 2008 UTC (15 years, 11 months ago) by djm
Branch: MAIN
Changes since 1.151: +11 -1 lines
Diff to previous 1.151 (colored)
Add a no-more-sessions@openssh.com global request extension that the client sends when it knows that it will never request another session (i.e. when session multiplexing is disabled). This allows a server to disallow further session requests and terminate the session. Why would a non-multiplexing client ever issue additional session requests? It could have been attacked with something like SSH'jack: http://www.storm.net.nz/projects/7 feedback & ok markus
Revision 1.151 / (download) - annotate - [select for diffs], Fri May 9 16:21:13 2008 UTC (16 years ago) by markus
Branch: MAIN
Changes since 1.150: +5 -2 lines
Diff to previous 1.150 (colored)
unbreak ssh -2 localhost od /bin/ls | true ignoring SIGPIPE by adding a new channel message (EOW) that signals the peer that we're not interested in any data it might send. fixes bz #85; discussion, debugging and ok djm@
Revision 1.150 / (download) - annotate - [select for diffs], Fri May 9 04:55:56 2008 UTC (16 years ago) by djm
Branch: MAIN
Changes since 1.149: +8 -11 lines
Diff to previous 1.149 (colored)
Try additional addresses when connecting to a port forward destination whose DNS name resolves to more than one address. The previous behaviour was to try the first address and give up. Reported by stig AT venaas.com in bz#343 great feedback and ok markus@
Revision 1.149 / (download) - annotate - [select for diffs], Thu May 8 12:02:23 2008 UTC (16 years ago) by djm
Branch: MAIN
Changes since 1.148: +4 -2 lines
Diff to previous 1.148 (colored)
Implement a channel success/failure status confirmation callback mechanism. Each channel maintains a queue of callbacks, which will be drained in order (RFC4253 guarantees confirm messages are not reordered within an channel). Also includes a abandonment callback to clean up if a channel is closed without sending confirmation messages. This probably shouldn't happen in compliant implementations, but it could be abused to leak memory. ok markus@ (as part of a larger diff)
Revision 1.148 / (download) - annotate - [select for diffs], Fri Feb 22 20:44:02 2008 UTC (16 years, 3 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_4_3_BASE,
OPENBSD_4_3
Changes since 1.147: +3 -4 lines
Diff to previous 1.147 (colored)
Allow all SSH2 packet types, including UNIMPLEMENTED to reset the keepalive timer (bz #1307). ok markus@
Revision 1.147 / (download) - annotate - [select for diffs], Wed Jan 23 01:56:54 2008 UTC (16 years, 4 months ago) by dtucker
Branch: MAIN
Changes since 1.146: +0 -2 lines
Diff to previous 1.146 (colored)
Revert the change for bz #1307 as it causes connection aborts if an IGNORE packet arrives while we're waiting in packet_read_expect (and possibly elsewhere).
Revision 1.146 / (download) - annotate - [select for diffs], Fri Dec 28 15:32:24 2007 UTC (16 years, 5 months ago) by dtucker
Branch: MAIN
Changes since 1.145: +3 -1 lines
Diff to previous 1.145 (colored)
Make SSH2_MSG_UNIMPLEMENTED and SSH2_MSG_IGNORE messages reset the ServerAlive and ClientAlive timers. Prevents dropping a connection when these are enabled but the peer does not support our keepalives. bz #1307, ok djm@.
Revision 1.118.2.3 / (download) - annotate - [select for diffs], Wed Nov 8 00:44:05 2006 UTC (17 years, 6 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.118.2.2: +5 -3 lines
Diff to previous 1.118.2.2 (colored) to branchpoint 1.118 (colored) next main 1.119 (colored)
upgrade to OpenSSH 4.5
Revision 1.144.4.1 / (download) - annotate - [select for diffs], Wed Nov 8 00:42:10 2006 UTC (17 years, 6 months ago) by brad
Branch: OPENBSD_4_0
Changes since 1.144: +5 -3 lines
Diff to previous 1.144 (colored) next main 1.145 (colored)
upgrade to OpenSSH 4.5
Revision 1.127.2.2 / (download) - annotate - [select for diffs], Wed Nov 8 00:17:14 2006 UTC (17 years, 6 months ago) by brad
Branch: OPENBSD_3_9
Changes since 1.127.2.1: +5 -3 lines
Diff to previous 1.127.2.1 (colored) to branchpoint 1.127 (colored) next main 1.128 (colored)
upgrade to OpenSSH 4.5
Revision 1.145 / (download) - annotate - [select for diffs], Wed Oct 11 12:38:03 2006 UTC (17 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1
Changes since 1.144: +5 -3 lines
Diff to previous 1.144 (colored)
exit instead of doing a blocking tcp send if we detect a client/server timeout, since the tcp sendqueue might be already full (of alive requests); ok dtucker, report mpf
Revision 1.118.2.2 / (download) - annotate - [select for diffs], Fri Oct 6 03:19:33 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.118.2.1: +33 -11 lines
Diff to previous 1.118.2.1 (colored) to branchpoint 1.118 (colored)
upgrade to OpenSSH 4.4
Revision 1.127.2.1 / (download) - annotate - [select for diffs], Sat Sep 30 04:06:51 2006 UTC (17 years, 8 months ago) by brad
Branch: OPENBSD_3_9
Changes since 1.127: +29 -13 lines
Diff to previous 1.127 (colored)
upgrade to OpenSSH 4.4
Revision 1.144 / (download) - annotate - [select for diffs], Thu Aug 3 03:34:42 2006 UTC (17 years, 10 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_4_0_BASE
Branch point for: OPENBSD_4_0
Changes since 1.143: +6 -4 lines
Diff to previous 1.143 (colored)
almost entirely get rid of the culture of ".h files that include .h files" ok djm, sort of ok stevesk makes the pain stop in one easy step
Revision 1.143 / (download) - annotate - [select for diffs], Wed Jul 26 02:35:17 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.142: +2 -1 lines
Diff to previous 1.142 (colored)
move #include <sys/param.h> out of includes.h
Revision 1.142 / (download) - annotate - [select for diffs], Tue Jul 25 02:59:21 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.141: +2 -1 lines
Diff to previous 1.141 (colored)
move #include <sys/time.h> out of includes.h
Revision 1.141 / (download) - annotate - [select for diffs], Sat Jul 22 20:48:23 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.140: +2 -1 lines
Diff to previous 1.140 (colored)
move #include <string.h> out of includes.h
Revision 1.140 / (download) - annotate - [select for diffs], Thu Jul 20 15:26:15 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.139: +2 -1 lines
Diff to previous 1.139 (colored)
missed some needed #include <unistd.h> when KERBEROS5=no; issue from massimo@cedoc.mo.it
Revision 1.139 / (download) - annotate - [select for diffs], Tue Jul 11 20:07:25 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.138: +2 -1 lines
Diff to previous 1.138 (colored)
move #include <errno.h> out of includes.h; ok markus@
Revision 1.138 / (download) - annotate - [select for diffs], Sun Jul 9 15:15:11 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.137: +2 -1 lines
Diff to previous 1.137 (colored)
move #include <fcntl.h> out of includes.h
Revision 1.137 / (download) - annotate - [select for diffs], Thu Jul 6 16:03:53 2006 UTC (17 years, 11 months ago) by stevesk
Branch: MAIN
Changes since 1.136: +2 -1 lines
Diff to previous 1.136 (colored)
move #include <pwd.h> out of includes.h; ok markus@
Revision 1.136 / (download) - annotate - [select for diffs], Wed Jul 5 02:42:09 2006 UTC (17 years, 11 months ago) by stevesk
Branch: MAIN
Changes since 1.135: +4 -1 lines
Diff to previous 1.135 (colored)
move #include <netinet/in.h> out of includes.h; ok deraadt@
Revision 1.135 / (download) - annotate - [select for diffs], Sat Mar 25 18:30:55 2006 UTC (18 years, 2 months ago) by deraadt
Branch: MAIN
Changes since 1.134: +3 -3 lines
Diff to previous 1.134 (colored)
spacing
Revision 1.134 / (download) - annotate - [select for diffs], Sat Mar 25 13:17:02 2006 UTC (18 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.133: +1 -0 lines
Diff to previous 1.133 (colored)
Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that Theo nuked - our scripts to sync -portable need them in the files
Revision 1.133 / (download) - annotate - [select for diffs], Mon Mar 20 18:48:34 2006 UTC (18 years, 2 months ago) by deraadt
Branch: MAIN
Changes since 1.132: +1 -0 lines
Diff to previous 1.132 (colored)
spacing
Revision 1.132 / (download) - annotate - [select for diffs], Mon Mar 20 18:14:02 2006 UTC (18 years, 2 months ago) by deraadt
Branch: MAIN
Changes since 1.131: +4 -4 lines
Diff to previous 1.131 (colored)
sprinkle u_int throughout pty subsystem, ok markus
Revision 1.131 / (download) - annotate - [select for diffs], Sun Mar 19 18:56:42 2006 UTC (18 years, 2 months ago) by deraadt
Branch: MAIN
Changes since 1.130: +3 -1 lines
Diff to previous 1.130 (colored)
ARGSUSED for signal handlers
Revision 1.130 / (download) - annotate - [select for diffs], Sun Mar 19 18:51:18 2006 UTC (18 years, 2 months ago) by deraadt
Branch: MAIN
Changes since 1.129: +0 -1 lines
Diff to previous 1.129 (colored)
RCSID() can die
Revision 1.129 / (download) - annotate - [select for diffs], Sun Mar 19 02:22:32 2006 UTC (18 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.128: +2 -1 lines
Diff to previous 1.128 (colored)
memory leaks detected by Coverity via elad AT netbsd.org; ok deraadt@ dtucker@
Revision 1.128 / (download) - annotate - [select for diffs], Sat Mar 4 04:12:58 2006 UTC (18 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.127: +2 -2 lines
Diff to previous 1.127 (colored)
move a debug() outside of a signal handler; ok markus@ a little while back
Revision 1.127 / (download) - annotate - [select for diffs], Mon Feb 20 17:02:44 2006 UTC (18 years, 3 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE
Branch point for: OPENBSD_3_9
Changes since 1.126: +2 -1 lines
Diff to previous 1.126 (colored)
move #include <signal.h> out of includes.h; ok markus@
Revision 1.126 / (download) - annotate - [select for diffs], Fri Feb 10 01:44:26 2006 UTC (18 years, 3 months ago) by stevesk
Branch: MAIN
Changes since 1.125: +4 -1 lines
Diff to previous 1.125 (colored)
move #include <sys/wait.h> out of includes.h; ok markus@
Revision 1.125 / (download) - annotate - [select for diffs], Tue Feb 7 01:42:00 2006 UTC (18 years, 3 months ago) by stevesk
Branch: MAIN
Changes since 1.124: +3 -1 lines
Diff to previous 1.124 (colored)
move #include <termios.h> out of includes.h; ok markus@
Revision 1.118.2.1 / (download) - annotate - [select for diffs], Fri Feb 3 03:01:57 2006 UTC (18 years, 4 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.118: +80 -3 lines
Diff to previous 1.118 (colored)
upgrade to OpenSSH 4.3
Revision 1.117.4.2 / (download) - annotate - [select for diffs], Fri Feb 3 02:53:45 2006 UTC (18 years, 4 months ago) by brad
Branch: OPENBSD_3_7
Changes since 1.117.4.1: +80 -3 lines
Diff to previous 1.117.4.1 (colored) to branchpoint 1.117 (colored) next main 1.118 (colored)
upgrade to OpenSSH 4.3
Revision 1.124 / (download) - annotate - [select for diffs], Tue Dec 13 15:03:02 2005 UTC (18 years, 5 months ago) by reyk
Branch: MAIN
Changes since 1.123: +2 -2 lines
Diff to previous 1.123 (colored)
if forced_tun_device is not set, it is -1 and not SSH_TUNID_ANY
Revision 1.123 / (download) - annotate - [select for diffs], Thu Dec 8 18:34:11 2005 UTC (18 years, 5 months ago) by reyk
Branch: MAIN
Changes since 1.122: +18 -7 lines
Diff to previous 1.122 (colored)
two changes to the new ssh tunnel support. this breaks compatibility with the initial commit but is required for a portable approach. - make the tunnel id u_int and platform friendly, use predefined types. - support configuration of layer 2 (ethernet) or layer 3 (point-to-point, default) modes. configuration is done using the Tunnel (yes|point-to-point|ethernet|no) option is ssh_config(5) and restricted by the PermitTunnel (yes|point-to-point|ethernet|no) option in sshd_config(5). ok djm@, man page bits by jmc@
Revision 1.122 / (download) - annotate - [select for diffs], Tue Dec 6 22:38:27 2005 UTC (18 years, 5 months ago) by reyk
Branch: MAIN
Changes since 1.121: +33 -1 lines
Diff to previous 1.121 (colored)
Add support for tun(4) forwarding over OpenSSH, based on an idea and initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others
Revision 1.121 / (download) - annotate - [select for diffs], Mon Oct 31 11:48:29 2005 UTC (18 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.120: +35 -1 lines
Diff to previous 1.120 (colored)
make sure we clean up wtmp, etc. file when we receive a SIGTERM, SIGINT or SIGQUIT when running without privilege separation (the normal privsep case is already OK). Patch mainly by dtucker@ and senthilkumar_sen AT hotpop.com; ok dtucker@
Revision 1.120 / (download) - annotate - [select for diffs], Sun Oct 30 08:52:17 2005 UTC (18 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.119: +2 -2 lines
Diff to previous 1.119 (colored)
no need to escape single quotes in comments, no binary change
Revision 1.119 / (download) - annotate - [select for diffs], Mon Oct 10 10:23:08 2005 UTC (18 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.118: +2 -2 lines
Diff to previous 1.118 (colored)
fix regression I introduced in 4.2: X11 forwardings initiated after a session has exited (e.g. "(sleep 5; xterm) &") would not start. bz #1086 reported by t8m AT centrum.cz; ok markus@ dtucker@
Revision 1.117.4.1 / (download) - annotate - [select for diffs], Sun Sep 4 18:40:03 2005 UTC (18 years, 9 months ago) by brad
Branch: OPENBSD_3_7
Changes since 1.117: +2 -2 lines
Diff to previous 1.117 (colored)
upgrade to OpenSSH 4.2
Revision 1.117.2.1 / (download) - annotate - [select for diffs], Fri Sep 2 03:45:00 2005 UTC (18 years, 9 months ago) by brad
Branch: OPENBSD_3_6
Changes since 1.117: +2 -2 lines
Diff to previous 1.117 (colored) next main 1.118 (colored)
upgrade to OpenSSH 4.2
Revision 1.118 / (download) - annotate - [select for diffs], Sun Jul 17 07:17:55 2005 UTC (18 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_3_8_BASE
Branch point for: OPENBSD_3_8
Changes since 1.117: +2 -2 lines
Diff to previous 1.117 (colored)
knf says that a 2nd level indent is four (not three or five) spaces
Revision 1.110.2.2 / (download) - annotate - [select for diffs], Thu Aug 19 22:37:32 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.110.2.1: +15 -3 lines
Diff to previous 1.110.2.1 (colored) to branchpoint 1.110 (colored) next main 1.111 (colored)
upgrade to OpenSSH 3.9
Revision 1.115.2.1 / (download) - annotate - [select for diffs], Thu Aug 19 04:13:27 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_5
Changes since 1.115: +15 -3 lines
Diff to previous 1.115 (colored) next main 1.116 (colored)
upgrade to OpenSSH 3.9
Revision 1.117 / (download) - annotate - [select for diffs], Wed Aug 11 21:43:05 2004 UTC (19 years, 9 months ago) by avsm
Branch: MAIN
CVS Tags: OPENBSD_3_7_BASE,
OPENBSD_3_6_BASE
Branch point for: OPENBSD_3_7,
OPENBSD_3_6
Changes since 1.116: +4 -3 lines
Diff to previous 1.116 (colored)
some signed/unsigned int comparison cleanups; markus@ ok
Revision 1.116 / (download) - annotate - [select for diffs], Fri May 21 11:33:11 2004 UTC (20 years ago) by djm
Branch: MAIN
Changes since 1.115: +12 -1 lines
Diff to previous 1.115 (colored)
bz #756: add support for the cancel-tcpip-forward request for the server and the client (through the ~C commandline). reported by z3p AT twistedmatrix.com; ok markus@
Revision 1.104.4.2 / (download) - annotate - [select for diffs], Thu Mar 4 18:18:16 2004 UTC (20 years, 3 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.104.4.1: +28 -32 lines
Diff to previous 1.104.4.1 (colored) to branchpoint 1.104 (colored) next main 1.105 (colored)
upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8
Revision 1.110.2.1 / (download) - annotate - [select for diffs], Sat Feb 28 03:51:33 2004 UTC (20 years, 3 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.110: +28 -32 lines
Diff to previous 1.110 (colored)
upgrade to OpenSSH 3.8
Revision 1.115 / (download) - annotate - [select for diffs], Mon Jan 19 21:25:15 2004 UTC (20 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE
Branch point for: OPENBSD_3_5
Changes since 1.114: +7 -7 lines
Diff to previous 1.114 (colored)
fix mem leaks; some fixes from Pete Flugstad; tested dtucker@
Revision 1.114 / (download) - annotate - [select for diffs], Tue Dec 9 15:28:43 2003 UTC (20 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.113: +15 -17 lines
Diff to previous 1.113 (colored)
make ClientKeepAlive work for ssh -N, too (no login shell requested). 1) send a bogus channel request if we find a channel 2) send a bogus global request if we don't have a channel ok + test beck@
Revision 1.113 / (download) - annotate - [select for diffs], Tue Nov 18 00:40:05 2003 UTC (20 years, 6 months ago) by dtucker
Branch: MAIN
Changes since 1.112: +2 -2 lines
Diff to previous 1.112 (colored)
Correct check for authctxt->valid. ok djm@
Revision 1.112 / (download) - annotate - [select for diffs], Tue Nov 4 08:54:09 2003 UTC (20 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.111: +3 -3 lines
Diff to previous 1.111 (colored)
standardise arguments to auth methods - they should all take authctxt. check authctxt->valid rather then pw != NULL; ok markus@
Revision 1.111 / (download) - annotate - [select for diffs], Tue Sep 23 20:17:11 2003 UTC (20 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.110: +6 -8 lines
Diff to previous 1.110 (colored)
replace fatal_cleanup() and linked list of fatal callbacks with static cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
Revision 1.104.2.1 / (download) - annotate - [select for diffs], Tue Sep 16 21:20:27 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_2
Changes since 1.104: +13 -7 lines
Diff to previous 1.104 (colored) next main 1.105 (colored)
upgrade to OpenSSH 3.7
Revision 1.104.4.1 / (download) - annotate - [select for diffs], Tue Sep 16 20:50:43 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.104: +13 -7 lines
Diff to previous 1.104 (colored)
upgrade to OpenSSH 3.7
Revision 1.110 / (download) - annotate - [select for diffs], Tue Jun 24 08:23:46 2003 UTC (20 years, 11 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_4_BASE
Branch point for: OPENBSD_3_4
Changes since 1.109: +3 -3 lines
Diff to previous 1.109 (colored)
int -> u_int; ok djm@, deraadt@, mouring@
Revision 1.109 / (download) - annotate - [select for diffs], Wed Jun 4 12:03:59 2003 UTC (21 years ago) by djm
Branch: MAIN
Changes since 1.108: +2 -2 lines
Diff to previous 1.108 (colored)
remove bitrotten commet; ok markus@
Revision 1.108 / (download) - annotate - [select for diffs], Sun May 11 20:30:24 2003 UTC (21 years ago) by markus
Branch: MAIN
Changes since 1.107: +3 -3 lines
Diff to previous 1.107 (colored)
make channel_new() strdup the 'remote_name' (not the caller); ok theo
Revision 1.107 / (download) - annotate - [select for diffs], Wed Apr 2 09:48:07 2003 UTC (21 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.106: +8 -2 lines
Diff to previous 1.106 (colored)
reapply rekeying chage, tested by henning@, ok djm@
Revision 1.106 / (download) - annotate - [select for diffs], Tue Apr 1 10:22:21 2003 UTC (21 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.105: +2 -8 lines
Diff to previous 1.105 (colored)
backout rekeying changes (for 3.6.1)
Revision 1.105 / (download) - annotate - [select for diffs], Tue Apr 1 10:10:23 2003 UTC (21 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.104: +8 -2 lines
Diff to previous 1.104 (colored)
rekeying bugfixes and automatic rekeying:
* both client and server rekey _automatically_
(a) after 2^31 packets, because after 2^32 packets
the sequence number for packets wraps
(b) after 2^(blocksize_in_bits/4) blocks
(see: http://www.ietf.org/internet-drafts/draft-ietf-secsh-newmodes-00.txt)
(a) and (b) are _enabled_ by default, and only disabled for known
openssh versions, that don't support rekeying properly.
* client option 'RekeyLimit'
* do not reply to requests during rekeying
Revision 1.82.2.6 / (download) - annotate - [select for diffs], Fri Oct 11 14:53:07 2002 UTC (21 years, 7 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.82.2.5: +7 -3 lines
Diff to previous 1.82.2.5 (colored) to branchpoint 1.82 (colored) next main 1.83 (colored)
Update to OpenSSH 3.5
Revision 1.101.2.2 / (download) - annotate - [select for diffs], Fri Oct 11 14:51:52 2002 UTC (21 years, 7 months ago) by miod
Branch: OPENBSD_3_1
Changes since 1.101.2.1: +7 -3 lines
Diff to previous 1.101.2.1 (colored) to branchpoint 1.101 (colored) next main 1.102 (colored)
Update to OpenSSH 3.5
Revision 1.104 / (download) - annotate - [select for diffs], Thu Sep 19 16:03:15 2002 UTC (21 years, 8 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_3_BASE,
OPENBSD_3_2_BASE
Branch point for: OPENBSD_3_3,
OPENBSD_3_2
Changes since 1.103: +7 -3 lines
Diff to previous 1.103 (colored)
log IP address also; ok markus@
Revision 1.82.2.5 / (download) - annotate - [select for diffs], Wed Jun 26 18:22:35 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.82.2.4: +2 -4 lines
Diff to previous 1.82.2.4 (colored) to branchpoint 1.82 (colored)
There was an update to OpenSSH 3.4, and people rejoiced.
Revision 1.101.2.1 / (download) - annotate - [select for diffs], Wed Jun 26 15:30:38 2002 UTC (21 years, 11 months ago) by jason
Branch: OPENBSD_3_1
Changes since 1.101: +4 -6 lines
Diff to previous 1.101 (colored)
Pull in OpenSSH-3.4
Revision 1.103 / (download) - annotate - [select for diffs], Mon Jun 24 14:33:27 2002 UTC (21 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.102: +2 -4 lines
Diff to previous 1.102 (colored)
move channel counter to u_int
Revision 1.82.2.4 / (download) - annotate - [select for diffs], Sat Jun 22 07:23:17 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.82.2.3: +3 -3 lines
Diff to previous 1.82.2.3 (colored) to branchpoint 1.82 (colored)
Update OpenSSH to version 3.3 (with local changes, configuration files still living in /etc and privsep user being nobody).
Revision 1.102 / (download) - annotate - [select for diffs], Tue Jun 11 05:46:20 2002 UTC (21 years, 11 months ago) by mpech
Branch: MAIN
Changes since 1.101: +3 -3 lines
Diff to previous 1.101 (colored)
pid_t cleanup. Markus need this now to keep hacking. markus@, millert@ ok Note: big usr.bin/ cleanup is comming. Now I'm waiting Ok from espie@ for make/.
Revision 1.61.2.5 / (download) - annotate - [select for diffs], Sun Jun 2 22:56:10 2002 UTC (22 years ago) by miod
Branch: OPENBSD_2_9
Changes since 1.61.2.4: +10 -11 lines
Diff to previous 1.61.2.4 (colored) to branchpoint 1.61 (colored) next main 1.62 (colored)
Upgrade to OpenSSH 3.2.3. Except for improbable compilation error fixes, this should be the last commit made to the 2.9-STABLE branche. Have fun upgrading.
Revision 1.82.2.3 / (download) - annotate - [select for diffs], Fri May 17 00:03:24 2002 UTC (22 years ago) by miod
Branch: OPENBSD_3_0
Changes since 1.82.2.2: +10 -11 lines
Diff to previous 1.82.2.2 (colored) to branchpoint 1.82 (colored)
Update OpenSSH to version 3.2.2.
Revision 1.101 / (download) - annotate - [select for diffs], Sat Mar 30 18:51:15 2002 UTC (22 years, 2 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_1_BASE
Branch point for: OPENBSD_3_1
Changes since 1.100: +9 -7 lines
Diff to previous 1.100 (colored)
check waitpid for EINTR; based on patch from peter@ifm.liu.se
Revision 1.100 / (download) - annotate - [select for diffs], Sun Mar 24 16:00:27 2002 UTC (22 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.99: +1 -4 lines
Diff to previous 1.99 (colored)
remove unused debug
Revision 1.99 / (download) - annotate - [select for diffs], Mon Mar 18 17:50:31 2002 UTC (22 years, 2 months ago) by provos
Branch: MAIN
Changes since 1.98: +2 -2 lines
Diff to previous 1.98 (colored)
integrate privilege separated openssh; its turned off by default for now. work done by me and markus@
Revision 1.61.2.4 / (download) - annotate - [select for diffs], Sat Mar 9 00:20:44 2002 UTC (22 years, 2 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.61.2.3: +117 -49 lines
Diff to previous 1.61.2.3 (colored) to branchpoint 1.61 (colored)
Merge OpenSSH 3.1, keeping /etc as configuration files directory. (i.e. OpenSSH 3.1 + openbsd29_3.1.patch)
Revision 1.34.2.8 / (download) - annotate - [select for diffs], Fri Mar 8 17:04:43 2002 UTC (22 years, 2 months ago) by brad
Branch: OPENBSD_2_8
Changes since 1.34.2.7: +117 -49 lines
Diff to previous 1.34.2.7 (colored) to branchpoint 1.34 (colored) next main 1.35 (colored)
Merge OpenSSH 3.1.
Revision 1.82.2.2 / (download) - annotate - [select for diffs], Thu Mar 7 17:37:47 2002 UTC (22 years, 3 months ago) by jason
Branch: OPENBSD_3_0
Changes since 1.82.2.1: +117 -49 lines
Diff to previous 1.82.2.1 (colored) to branchpoint 1.82 (colored)
Update to OpenSSH-3.1 on 3.0-stable branch
Revision 1.98 / (download) - annotate - [select for diffs], Wed Feb 6 14:55:16 2002 UTC (22 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.97: +1 -9 lines
Diff to previous 1.97 (colored)
channel_new never returns NULL, mouring@; ok djm@
Revision 1.97 / (download) - annotate - [select for diffs], Sun Feb 3 17:53:25 2002 UTC (22 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.96: +29 -4 lines
Diff to previous 1.96 (colored)
don't use channel_input_channel_request and callback use new server_input_channel_req() instead: server_input_channel_req does generic request parsing on server side session_input_channel_req handles just session specific things now ok djm@
Revision 1.96 / (download) - annotate - [select for diffs], Thu Jan 31 15:00:05 2002 UTC (22 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.95: +2 -2 lines
Diff to previous 1.95 (colored)
no need for WNOHANG; ok stevesk@
Revision 1.95 / (download) - annotate - [select for diffs], Wed Jan 16 13:17:51 2002 UTC (22 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.94: +3 -6 lines
Diff to previous 1.94 (colored)
wrapper for channel_setup_fwd_listener
Revision 1.94 / (download) - annotate - [select for diffs], Thu Jan 10 11:13:29 2002 UTC (22 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.93: +10 -4 lines
Diff to previous 1.93 (colored)
skip client_alive_check until there are channels; ok beck@
Revision 1.93 / (download) - annotate - [select for diffs], Fri Dec 28 15:06:00 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.92: +7 -7 lines
Diff to previous 1.92 (colored)
remove plen from the dispatch fn. it's no longer used.
Revision 1.92 / (download) - annotate - [select for diffs], Fri Dec 28 14:50:54 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.91: +2 -3 lines
Diff to previous 1.91 (colored)
packet_read* no longer return the packet length, since it's not used.
Revision 1.91 / (download) - annotate - [select for diffs], Fri Dec 28 12:14:27 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.90: +6 -6 lines
Diff to previous 1.90 (colored)
s/packet_done/packet_check_eom/ (end-of-message); ok djm@
Revision 1.90 / (download) - annotate - [select for diffs], Thu Dec 27 20:39:58 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.89: +4 -4 lines
Diff to previous 1.89 (colored)
get rid of packet_integrity_check, use packet_done() instead.
Revision 1.89 / (download) - annotate - [select for diffs], Fri Dec 21 12:17:33 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.88: +1 -9 lines
Diff to previous 1.88 (colored)
remove ifdef for USE_PIPES since fdin != fdout; ok djm@
Revision 1.88 / (download) - annotate - [select for diffs], Thu Dec 20 22:50:24 2001 UTC (22 years, 5 months ago) by djm
Branch: MAIN
Changes since 1.87: +7 -7 lines
Diff to previous 1.87 (colored)
Conformance fix: we should send failing packet sequence number when responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by yakk@yakk.dot.net; ok markus@
Revision 1.87 / (download) - annotate - [select for diffs], Wed Dec 19 16:09:39 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.86: +57 -1 lines
Diff to previous 1.86 (colored)
fix race between SIGCHLD and select with an additional pipe. writing to the pipe on SIGCHLD wakes up select(). using pselect() is not portable and siglongjmp() ugly. W. R. Stevens suggests similar solution. initial idea by pmenage@ensim.com; ok deraadt@, djm@
Revision 1.86 / (download) - annotate - [select for diffs], Wed Dec 19 07:18:56 2001 UTC (22 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.85: +6 -6 lines
Diff to previous 1.85 (colored)
basic KNF done while i was looking for something else
Revision 1.85 / (download) - annotate - [select for diffs], Wed Dec 5 03:50:01 2001 UTC (22 years, 6 months ago) by itojun
Branch: MAIN
Changes since 1.84: +3 -2 lines
Diff to previous 1.84 (colored)
deal with LP64 printf issue with sig_atomic_t. from thorpej
Revision 1.84 / (download) - annotate - [select for diffs], Thu Nov 22 12:34:22 2001 UTC (22 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.83: +2 -2 lines
Diff to previous 1.83 (colored)
volatile sig_atomic_t
Revision 1.61.2.3 / (download) - annotate - [select for diffs], Thu Nov 15 22:51:15 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.61.2.2: +3 -3 lines
Diff to previous 1.61.2.2 (colored) to branchpoint 1.61 (colored)
Merge OpenSSH 3.0.1.
Revision 1.34.2.7 / (download) - annotate - [select for diffs], Thu Nov 15 22:50:30 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.34.2.6: +3 -3 lines
Diff to previous 1.34.2.6 (colored) to branchpoint 1.34 (colored)
Merge OpenSSH 3.0.1. This is likely to be the last commit to the 2.8-STABLE branch.
Revision 1.61.2.2 / (download) - annotate - [select for diffs], Thu Nov 15 00:15:19 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.61.2.1: +57 -61 lines
Diff to previous 1.61.2.1 (colored) to branchpoint 1.61 (colored)
Merge OpenSSH 3.0
Revision 1.34.2.6 / (download) - annotate - [select for diffs], Thu Nov 15 00:14:59 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.34.2.5: +57 -61 lines
Diff to previous 1.34.2.5 (colored) to branchpoint 1.34 (colored)
Merge OpenSSH 3.0
Revision 1.82.2.1 / (download) - annotate - [select for diffs], Wed Nov 14 03:24:39 2001 UTC (22 years, 6 months ago) by jason
Branch: OPENBSD_3_0
Changes since 1.82: +3 -3 lines
Diff to previous 1.82 (colored)
Pull in patches from current (Errata 002): Update to OpenSSH-3.0.1 via errata patch (Instead of using release tarball)
Revision 1.83 / (download) - annotate - [select for diffs], Fri Nov 9 18:59:23 2001 UTC (22 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.82: +3 -3 lines
Diff to previous 1.82 (colored)
don't memset too much memory, ok millert@ original patch from jlk@kamens.brookline.ma.us via nalin@redhat.com
Revision 1.82 / (download) - annotate - [select for diffs], Wed Oct 10 22:18:47 2001 UTC (22 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_0_BASE
Branch point for: OPENBSD_3_0
Changes since 1.81: +29 -28 lines
Diff to previous 1.81 (colored)
try to keep channels open until an exit-status message is sent. don't kill the login shells if the shells stdin/out/err is closed. this should now work: ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
Revision 1.81 / (download) - annotate - [select for diffs], Tue Oct 9 21:59:41 2001 UTC (22 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.80: +14 -22 lines
Diff to previous 1.80 (colored)
simplify session close: no more delayed session_close, no more blocking wait() calls.
Revision 1.80 / (download) - annotate - [select for diffs], Tue Oct 9 19:51:18 2001 UTC (22 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.79: +8 -4 lines
Diff to previous 1.79 (colored)
close all channels if the connection to the remote host has been closed, should fix sshd's hanging with WCHAN==wait
Revision 1.79 / (download) - annotate - [select for diffs], Thu Oct 4 15:12:37 2001 UTC (22 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.78: +24 -27 lines
Diff to previous 1.78 (colored)
client_alive_check cleanup
Revision 1.78 / (download) - annotate - [select for diffs], Thu Oct 4 15:05:40 2001 UTC (22 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.77: +4 -2 lines
Diff to previous 1.77 (colored)
comment out bogus conditions for selecting on connection_in
Revision 1.61.2.1 / (download) - annotate - [select for diffs], Thu Sep 27 19:03:55 2001 UTC (22 years, 8 months ago) by jason
Branch: OPENBSD_2_9
Changes since 1.61: +117 -111 lines
Diff to previous 1.61 (colored)
Pull in OpenSSH-2.9.9
Revision 1.34.2.5 / (download) - annotate - [select for diffs], Thu Sep 27 00:15:42 2001 UTC (22 years, 8 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.34.2.4: +117 -111 lines
Diff to previous 1.34.2.4 (colored) to branchpoint 1.34 (colored)
Pull in OpenSSH 2.9.9 to the 2.8 branch.
Revision 1.77 / (download) - annotate - [select for diffs], Mon Sep 17 21:04:02 2001 UTC (22 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.76: +8 -4 lines
Diff to previous 1.76 (colored)
don't send fake dummy packets on CR (\r) bugreport from yyua@cs.sfu.ca via solar@@openwall.com
Revision 1.76 / (download) - annotate - [select for diffs], Tue Jul 17 21:04:58 2001 UTC (22 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.75: +17 -10 lines
Diff to previous 1.75 (colored)
keep track of both maxfd and the size of the malloc'ed fdsets. update maxfd if maxfd gets closed.
Revision 1.75 / (download) - annotate - [select for diffs], Sun Jul 15 16:17:08 2001 UTC (22 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.74: +4 -5 lines
Diff to previous 1.74 (colored)
schedule client alive for ssh2 only, greg@cheers.bungi.com
Revision 1.74 / (download) - annotate - [select for diffs], Mon Jul 2 22:52:57 2001 UTC (22 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.73: +4 -2 lines
Diff to previous 1.73 (colored)
improve cleanup/exit logic in ssh2: stop listening to channels, detach channel users (e.g. sessions). wait for children (i.e. dying sessions), send exit messages, cleanup all channels.
Revision 1.73 / (download) - annotate - [select for diffs], Mon Jul 2 13:59:14 2001 UTC (22 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.72: +17 -3 lines
Diff to previous 1.72 (colored)
wait until !session_have_children(); bugreport from Lutz.Jaenicke@aet.TU-Cottbus.DE
Revision 1.72 / (download) - annotate - [select for diffs], Wed Jun 27 02:12:52 2001 UTC (22 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.71: +5 -3 lines
Diff to previous 1.71 (colored)
quick hack to make ssh2 work again.
Revision 1.71 / (download) - annotate - [select for diffs], Mon Jun 25 08:25:39 2001 UTC (22 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.70: +2 -2 lines
Diff to previous 1.70 (colored)
update copyright for 2001
Revision 1.70 / (download) - annotate - [select for diffs], Sat Jun 23 15:12:19 2001 UTC (22 years, 11 months ago) by itojun
Branch: MAIN
Changes since 1.69: +24 -22 lines
Diff to previous 1.69 (colored)
more strict prototypes. raise warning level in Makefile.inc. markus ok'ed TODO; cleanup headers
Revision 1.69 / (download) - annotate - [select for diffs], Wed Jun 20 13:56:39 2001 UTC (22 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.68: +4 -4 lines
Diff to previous 1.68 (colored)
move from channel_stop_listening to channel_free_all, call channel_free_all before calling waitpid() in serverloop. fixes the utmp handling; report from Lutz.Jaenicke@aet.TU-Cottbus.DE
Revision 1.68 / (download) - annotate - [select for diffs], Mon Jun 4 23:07:20 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.67: +10 -45 lines
Diff to previous 1.67 (colored)
set flags in the signal handlers, do real work in the main loop, ok provos@
Revision 1.67 / (download) - annotate - [select for diffs], Thu May 31 10:30:16 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.66: +2 -2 lines
Diff to previous 1.66 (colored)
undo the .c file split, just merge the header and keep the cvs history
Revision 1.66 / (download) - annotate - [select for diffs], Wed May 30 12:55:12 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.65: +2 -2 lines
Diff to previous 1.65 (colored)
channel layer cleanup: merge header files and split .c files
Revision 1.65 / (download) - annotate - [select for diffs], Tue May 8 19:17:31 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.64: +10 -9 lines
Diff to previous 1.64 (colored)
adds correct error reporting to async connect()s fixes the server-discards-data-before-connected-bug found by onoe@sm.sony.co.jp
Revision 1.34.2.4 / (download) - annotate - [select for diffs], Mon May 7 21:09:33 2001 UTC (23 years ago) by jason
Branch: OPENBSD_2_8
Changes since 1.34.2.3: +84 -18 lines
Diff to previous 1.34.2.3 (colored) to branchpoint 1.34 (colored)
Pull in OpenSSH-2.9 to 2.8 branch.
Revision 1.64 / (download) - annotate - [select for diffs], Fri May 4 23:47:34 2001 UTC (23 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.63: +24 -16 lines
Diff to previous 1.63 (colored)
move to Channel **channels (instead of Channel *channels), fixes realloc problems. channel_new now returns a Channel *, favour Channel * over channel id. remove old channel_allocate interface.
Revision 1.63 / (download) - annotate - [select for diffs], Sun Apr 29 19:16:52 2001 UTC (23 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.62: +5 -3 lines
Diff to previous 1.62 (colored)
more ssh.com-2.0.x bug-compat; from per@appgate.com
Revision 1.62 / (download) - annotate - [select for diffs], Sun Apr 29 18:32:52 2001 UTC (23 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.61: +4 -4 lines
Diff to previous 1.61 (colored)
fix whitespace
Revision 1.61 / (download) - annotate - [select for diffs], Fri Apr 13 22:46:54 2001 UTC (23 years, 1 month ago) by beck
Branch: MAIN
CVS Tags: OPENBSD_2_9_BASE
Branch point for: OPENBSD_2_9
Changes since 1.60: +60 -4 lines
Diff to previous 1.60 (colored)
Add options ClientAliveInterval and ClientAliveCountMax to sshd. This gives the ability to do a "keepalive" via the encrypted channel which can't be spoofed (unlike TCP keepalives). Useful for when you want to use ssh connections to authenticate people for something, and know relatively quickly when they are no longer authenticated. Disabled by default (of course). ok markus@
Revision 1.60 / (download) - annotate - [select for diffs], Thu Apr 5 23:39:20 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.59: +9 -9 lines
Diff to previous 1.59 (colored)
keep the ssh session even if there is no active channel. this is more in line with the protocol spec and makes ssh -N -L 1234:server:110 host more useful. based on discussion with <mats@mindbright.se> long time ago and recent mail from <res@shore.net>
Revision 1.59 / (download) - annotate - [select for diffs], Thu Apr 5 10:42:51 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.58: +2 -2 lines
Diff to previous 1.58 (colored)
fix whitespace: unexpand + trailing spaces.
Revision 1.58 / (download) - annotate - [select for diffs], Wed Apr 4 22:04:35 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.57: +10 -7 lines
Diff to previous 1.57 (colored)
parse full kexinit packet. make server-side more robust, too.
Revision 1.57 / (download) - annotate - [select for diffs], Wed Apr 4 20:25:37 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.56: +2 -2 lines
Diff to previous 1.56 (colored)
more robust rekeying don't send channel data after rekeying is started.
Revision 1.56 / (download) - annotate - [select for diffs], Wed Apr 4 14:34:58 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.55: +9 -2 lines
Diff to previous 1.55 (colored)
enable server side rekeying + some rekey related clientup. todo: we should not send any non-KEX messages after we send KEXINIT
Revision 1.34.2.3 / (download) - annotate - [select for diffs], Wed Mar 21 19:46:28 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.34.2.2: +6 -12 lines
Diff to previous 1.34.2.2 (colored) to branchpoint 1.34 (colored)
Pull in OpenSSH-2.5.2 for 2.8 branch.
Revision 1.22.2.5 / (download) - annotate - [select for diffs], Wed Mar 21 18:53:02 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.22.2.4: +6 -12 lines
Diff to previous 1.22.2.4 (colored) to branchpoint 1.22 (colored) next main 1.23 (colored)
Pull in OpenSSH-2.5.2 for 2.7 branch.
Revision 1.55 / (download) - annotate - [select for diffs], Fri Mar 16 19:06:29 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.54: +2 -6 lines
Diff to previous 1.54 (colored)
implement "permitopen" key option, restricts -L style forwarding to to specified host:port pairs. based on work by harlan@genua.de
Revision 1.22.2.4 / (download) - annotate - [select for diffs], Mon Mar 12 15:44:14 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.22.2.3: +173 -98 lines
Diff to previous 1.22.2.3 (colored) to branchpoint 1.22 (colored)
OpenSSH-2.5.1 for 2.7 patch branch
Revision 1.54 / (download) - annotate - [select for diffs], Sun Mar 4 01:46:30 2001 UTC (23 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.53: +2 -2 lines
Diff to previous 1.53 (colored)
Rename pty.[ch] -> sshpty.[ch] and login.[ch] to sshlogin.[ch] to avoid header conflicts in portable; ok markus@
Revision 1.53 / (download) - annotate - [select for diffs], Fri Mar 2 18:54:31 2001 UTC (23 years, 3 months ago) by deraadt
Branch: MAIN
Changes since 1.52: +2 -2 lines
Diff to previous 1.52 (colored)
make copyright lines the same format
Revision 1.52 / (download) - annotate - [select for diffs], Wed Feb 28 21:27:48 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.51: +2 -4 lines
Diff to previous 1.51 (colored)
use ignore message to simulate a SSH2_MSG_CHANNEL_DATA message use random content in ignore messages.
Revision 1.51 / (download) - annotate - [select for diffs], Fri Feb 23 15:34:53 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.50: +2 -2 lines
Diff to previous 1.50 (colored)
debug2->3
Revision 1.34.2.2 / (download) - annotate - [select for diffs], Mon Feb 19 17:19:19 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.34.2.1: +6 -2 lines
Diff to previous 1.34.2.1 (colored) to branchpoint 1.34 (colored)
Pull in OpenSSH-2.5.1
Revision 1.50 / (download) - annotate - [select for diffs], Mon Feb 19 09:53:32 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.49: +6 -2 lines
Diff to previous 1.49 (colored)
ssh-1.2.{18-22} has broken handling of ignore messages; report from itojun@
Revision 1.34.2.1 / (download) - annotate - [select for diffs], Fri Feb 16 20:13:13 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.34: +169 -98 lines
Diff to previous 1.34 (colored)
Pull in OpenSSH 2.5.0
Revision 1.49 / (download) - annotate - [select for diffs], Thu Feb 15 23:19:59 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.48: +2 -2 lines
Diff to previous 1.48 (colored)
genericize password padding function for SSH1 and SSH2. add stylized echo to 2, too.
Revision 1.48 / (download) - annotate - [select for diffs], Thu Feb 15 08:38:04 2001 UTC (23 years, 3 months ago) by deraadt
Branch: MAIN
Changes since 1.47: +5 -2 lines
Diff to previous 1.47 (colored)
indent
Revision 1.47 / (download) - annotate - [select for diffs], Thu Feb 8 23:11:42 2001 UTC (23 years, 3 months ago) by dugsong
Branch: MAIN
Changes since 1.46: +12 -2 lines
Diff to previous 1.46 (colored)
mitigate SSH1 traffic analysis - from Solar Designer <solar@openwall.com>, ok provos@
Revision 1.46 / (download) - annotate - [select for diffs], Thu Feb 8 19:30:52 2001 UTC (23 years, 3 months ago) by itojun
Branch: MAIN
Changes since 1.45: +9 -9 lines
Diff to previous 1.45 (colored)
sync with netbsd tree changes. - more strict prototypes, include necessary headers - use paths.h/pathnames.h decls - size_t typecase to int -> u_long
Revision 1.45 / (download) - annotate - [select for diffs], Sun Feb 4 15:32:25 2001 UTC (23 years, 4 months ago) by stevesk
Branch: MAIN
Changes since 1.44: +4 -4 lines
Diff to previous 1.44 (colored)
unexpand and remove end-of-line whitespace; ok markus@
Revision 1.44 / (download) - annotate - [select for diffs], Wed Jan 31 20:37:23 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.43: +2 -3 lines
Diff to previous 1.43 (colored)
do not disconnect if local port forwarding fails, e.g. if port is already in use
Revision 1.43 / (download) - annotate - [select for diffs], Mon Jan 29 16:55:37 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.42: +43 -44 lines
Diff to previous 1.42 (colored)
fix select overflow; ok deraadt@ and stevesk@
Revision 1.42 / (download) - annotate - [select for diffs], Sun Jan 21 19:05:55 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.41: +4 -3 lines
Diff to previous 1.41 (colored)
split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. rename util.[ch] -> misc.[ch]
Revision 1.41 / (download) - annotate - [select for diffs], Fri Jan 19 15:55:11 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.40: +2 -1 lines
Diff to previous 1.40 (colored)
move ssh1 definitions to ssh1.h, pathnames to pathnames.h
Revision 1.40 / (download) - annotate - [select for diffs], Thu Jan 18 17:00:00 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.39: +2 -2 lines
Diff to previous 1.39 (colored)
1) removes fake skey from sshd, since this will be much harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier.
Revision 1.39 / (download) - annotate - [select for diffs], Wed Dec 27 14:19:21 2000 UTC (23 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.38: +2 -2 lines
Diff to previous 1.38 (colored)
less chatty
Revision 1.38 / (download) - annotate - [select for diffs], Tue Dec 19 23:17:58 2000 UTC (23 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.37: +8 -8 lines
Diff to previous 1.37 (colored)
replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned' with u_char.
Revision 1.37 / (download) - annotate - [select for diffs], Mon Dec 11 20:16:22 2000 UTC (23 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.36: +2 -2 lines
Diff to previous 1.36 (colored)
wait indicates failure by returning -1, not arbitrary values < 0
Revision 1.36 / (download) - annotate - [select for diffs], Tue Dec 5 20:34:10 2000 UTC (23 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.35: +2 -2 lines
Diff to previous 1.35 (colored)
async connects for -R/-L; ok deraadt@
Revision 1.22.2.3 / (download) - annotate - [select for diffs], Wed Nov 8 21:31:14 2000 UTC (23 years, 6 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.22.2.2: +42 -12 lines
Diff to previous 1.22.2.2 (colored) to branchpoint 1.22 (colored)
openssh-2.3.0 (again) for 2.7 branch
Revision 1.35 / (download) - annotate - [select for diffs], Mon Nov 6 23:04:56 2000 UTC (23 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.34: +93 -35 lines
Diff to previous 1.34 (colored)
agent forwarding and -R for ssh2, based on work from jhuuskon@messi.uku.fi
Revision 1.34 / (download) - annotate - [select for diffs], Fri Oct 27 07:32:18 2000 UTC (23 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE
Branch point for: OPENBSD_2_8
Changes since 1.33: +3 -3 lines
Diff to previous 1.33 (colored)
enable non-blocking IO on channels, and tty's (except for the client ttys).
Revision 1.33 / (download) - annotate - [select for diffs], Mon Oct 16 09:38:44 2000 UTC (23 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.32: +2 -0 lines
Diff to previous 1.32 (colored)
Add idents for files which lack them Fix idents Id -> OpenBSD for the rest
Revision 1.32 / (download) - annotate - [select for diffs], Sat Oct 14 12:12:09 2000 UTC (23 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.31: +3 -1 lines
Diff to previous 1.31 (colored)
AllowTcpForwarding; from naddy@
Revision 1.31 / (download) - annotate - [select for diffs], Thu Sep 21 11:25:34 2000 UTC (23 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.30: +5 -5 lines
Diff to previous 1.30 (colored)
add context to dispatch_run
Revision 1.30 / (download) - annotate - [select for diffs], Thu Sep 21 11:03:51 2000 UTC (23 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.29: +1 -1 lines
Diff to previous 1.29 (colored)
typo
Revision 1.29 / (download) - annotate - [select for diffs], Thu Sep 7 20:40:30 2000 UTC (23 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.28: +4 -2 lines
Diff to previous 1.28 (colored)
cleanup window and packet sizes for ssh2 flow control; ok niels
Revision 1.28 / (download) - annotate - [select for diffs], Thu Sep 7 20:27:53 2000 UTC (23 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.27: +27 -3 lines
Diff to previous 1.27 (colored)
cleanup copyright notices on all files. I have attempted to be accurate with the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate.
Revision 1.22.2.2 / (download) - annotate - [select for diffs], Fri Sep 1 18:23:22 2000 UTC (23 years, 9 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.22.2.1: +7 -0 lines
Diff to previous 1.22.2.1 (colored) to branchpoint 1.22 (colored)
Pull in the rest of openssh-2.2.0 to 2.7 branch (luvin' cvs...)
Revision 1.27 / (download) - annotate - [select for diffs], Fri Jul 7 08:14:28 2000 UTC (23 years, 11 months ago) by deraadt
Branch: MAIN
Changes since 1.26: +1 -1 lines
Diff to previous 1.26 (colored)
sense of port forwarding flag test was backwards
Revision 1.26 / (download) - annotate - [select for diffs], Sun Jun 18 04:05:02 2000 UTC (23 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.25: +7 -0 lines
Diff to previous 1.25 (colored)
split auth-rsa option parsing into auth-options add options support to authorized_keys2
Revision 1.22.2.1 / (download) - annotate - [select for diffs], Mon Jun 12 02:37:35 2000 UTC (23 years, 11 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.22: +54 -43 lines
Diff to previous 1.22 (colored)
lovin' CVS... update patch branch to OpenSSH-2.1.1
Revision 1.25 / (download) - annotate - [select for diffs], Thu May 25 07:41:19 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.24: +26 -25 lines
Diff to previous 1.24 (colored)
group ssh1 vs. ssh2 in serverloop
Revision 1.24 / (download) - annotate - [select for diffs], Thu May 18 06:35:57 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.23: +3 -1 lines
Diff to previous 1.23 (colored)
we don't have stderr for interactive terminal sessions (fcntl errors)
Revision 1.23 / (download) - annotate - [select for diffs], Wed May 17 08:20:15 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.22: +26 -18 lines
Diff to previous 1.22 (colored)
enable nonblocking IO for sshd w/ proto 1, too; split out common code
Revision 1.22 / (download) - annotate - [select for diffs], Tue May 2 12:44:38 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE
Branch point for: OPENBSD_2_7
Changes since 1.21: +1 -1 lines
Diff to previous 1.21 (colored)
use c-style comments
Revision 1.21 / (download) - annotate - [select for diffs], Thu Apr 27 15:23:02 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.20: +1 -1 lines
Diff to previous 1.20 (colored)
cleanup logging for sshd/2, respect PasswordAuth no
Revision 1.20 / (download) - annotate - [select for diffs], Wed Apr 19 07:05:49 2000 UTC (24 years, 1 month ago) by deraadt
Branch: MAIN
Changes since 1.19: +6 -4 lines
Diff to previous 1.19 (colored)
pid_t
Revision 1.19 / (download) - annotate - [select for diffs], Fri Apr 14 10:30:33 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.18: +16 -16 lines
Diff to previous 1.18 (colored)
whitespace cleanup
Revision 1.18 / (download) - annotate - [select for diffs], Fri Apr 14 10:09:15 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.17: +8 -6 lines
Diff to previous 1.17 (colored)
check payload for (illegal) extra data
Revision 1.17 / (download) - annotate - [select for diffs], Thu Apr 6 08:55:22 2000 UTC (24 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.16: +185 -7 lines
Diff to previous 1.16 (colored)
ssh2 server side, see README.openssh2; enable with 'sshd -2'
Revision 1.16 / (download) - annotate - [select for diffs], Tue Mar 28 20:31:28 2000 UTC (24 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.15: +91 -100 lines
Diff to previous 1.15 (colored)
replace big switch() with function tables (prepare for ssh2)
Revision 1.15 / (download) - annotate - [select for diffs], Tue Mar 28 20:22:49 2000 UTC (24 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.14: +2 -2 lines
Diff to previous 1.14 (colored)
close(fdin) if fdin != fdout, shutdown otherwise, ok theo@
Revision 1.14 / (download) - annotate - [select for diffs], Mon Dec 6 20:15:28 1999 UTC (24 years, 6 months ago) by deraadt
Branch: MAIN
Changes since 1.13: +3 -3 lines
Diff to previous 1.13 (colored)
move atomicio into it's own file. wrap all socket write()s which were doing write(sock, buf, len) != len, with atomicio() calls.
Revision 1.13 / (download) - annotate - [select for diffs], Thu Dec 2 20:13:28 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.12: +1 -1 lines
Diff to previous 1.12 (colored)
indent
Revision 1.12 / (download) - annotate - [select for diffs], Wed Nov 24 19:53:51 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.11: +68 -46 lines
Diff to previous 1.11 (colored)
KNF, final part 3
Revision 1.11 / (download) - annotate - [select for diffs], Wed Nov 24 00:26:03 1999 UTC (24 years, 6 months ago) by deraadt
Branch: MAIN
Changes since 1.10: +48 -44 lines
Diff to previous 1.10 (colored)
much more KNF
Revision 1.10 / (download) - annotate - [select for diffs], Tue Nov 23 22:25:55 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.9: +510 -534 lines
Diff to previous 1.9 (colored)
KNF part 1
Revision 1.9 / (download) - annotate - [select for diffs], Mon Nov 22 21:02:38 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.8: +8 -4 lines
Diff to previous 1.8 (colored)
syslog changes:
* Unified Logmessage for all auth-types, for success and for failed
* Standard connections get only ONE line in the LOG when level==LOG:
Auth-attempts are logged only, if authentication is:
a) successfull or
b) with passwd or
c) we had more than AUTH_FAIL_LOG failues
* many log() became verbose()
* old behaviour with level=VERBOSE
Revision 1.8 / (download) - annotate - [select for diffs], Fri Nov 19 19:58:18 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.7: +4 -4 lines
Diff to previous 1.7 (colored)
SSH_CMSG_MAX_PACKET_SIZE, some clients use this, some need this, niels@ [hope this time my ISP stays alive during commit]
Revision 1.7 / (download) - annotate - [select for diffs], Tue Nov 16 23:04:18 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.6: +3 -2 lines
Diff to previous 1.6 (colored)
bugfix: check for space if child has terminated, from: iedowse@maths.tcd.ie
Revision 1.6 / (download) - annotate - [select for diffs], Mon Oct 4 21:54:40 1999 UTC (24 years, 8 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_6_BASE,
OPENBSD_2_6
Changes since 1.5: +8 -14 lines
Diff to previous 1.5 (colored)
fix shutdown() for sockets, the last one has to close the socket
Revision 1.5 / (download) - annotate - [select for diffs], Sun Oct 3 21:02:12 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.4: +2 -0 lines
Diff to previous 1.4 (colored)
errno trashing in signal handlers
Revision 1.4 / (download) - annotate - [select for diffs], Sun Oct 3 19:22:38 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.3: +5 -5 lines
Diff to previous 1.3 (colored)
use SHUT_* symbols
Revision 1.3 / (download) - annotate - [select for diffs], Sun Oct 3 19:17:40 1999 UTC (24 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.2: +20 -0 lines
Diff to previous 1.2 (colored)
do not call shutdown() on pipes, ok: deraadt
Revision 1.2 / (download) - annotate - [select for diffs], Thu Sep 30 08:34:25 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.1: +1 -1 lines
Diff to previous 1.1 (colored)
even smaller
Revision 1.1 / (download) - annotate - [select for diffs], Sun Sep 26 20:53:37 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
i bet a lot of people didn't know what ssh 1.2.16 had a nice license. well, except for the patent issues. someone in sweden (forget their name at the moment) cleaned out most of the patented code, and now this code removes rsa code. when this is done, it will link against libssl, but the work isn't completely done yet. then we need to bring this up to modern days, featurewise.