OpenBSD CVS

CVS log for src/usr.bin/ssh/ssh.h

[BACK] Up to [local] / src / usr.bin / ssh

Request diff between arbitrary revisions

Default branch: MAIN

Revision 1.90 / (download) - annotate - [select for diffs], Tue Jul 14 23:57:01 2020 UTC (3 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE, OPENBSD_7_5, OPENBSD_7_4_BASE, OPENBSD_7_4, OPENBSD_7_3_BASE, OPENBSD_7_3, OPENBSD_7_2_BASE, OPENBSD_7_2, OPENBSD_7_1_BASE, OPENBSD_7_1, OPENBSD_7_0_BASE, OPENBSD_7_0, OPENBSD_6_9_BASE, OPENBSD_6_9, OPENBSD_6_8_BASE, OPENBSD_6_8, HEAD
Changes since 1.89: +6 -1 lines
Diff to previous 1.89 (colored) 

allow some additional control over the use of ssh-askpass
via $SSH_ASKPASS_REQUIRE, including force-enable/disable.
bz#69 ok markus@

Revision 1.89 / (download) - annotate - [select for diffs], Thu Dec 27 03:25:25 2018 UTC (5 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_7_BASE, OPENBSD_6_7, OPENBSD_6_6_BASE, OPENBSD_6_6, OPENBSD_6_5_BASE, OPENBSD_6_5
Changes since 1.88: +5 -1 lines
Diff to previous 1.88 (colored) 

move client/server SSH-* banners to buffers under ssh->kex and factor
out the banner exchange. This eliminates some common code from the
client and server.

Also be more strict about handling \r characters - these should only
be accepted immediately before \n (pointed out by Jann Horn).

Inspired by a patch from Markus Schmidt.
(lots of) feedback and ok markus@

Revision 1.88 / (download) - annotate - [select for diffs], Wed Jun 6 18:29:18 2018 UTC (5 years, 11 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE, OPENBSD_6_4
Changes since 1.87: +1 -8 lines
Diff to previous 1.87 (colored) 

switch config file parsing to getline(3) as this avoids static limits
noted by gerhard@; ok dtucker@, djm@

Revision 1.87 / (download) - annotate - [select for diffs], Sun May 7 23:15:59 2017 UTC (7 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE, OPENBSD_6_3, OPENBSD_6_2_BASE, OPENBSD_6_2
Changes since 1.86: +1 -4 lines
Diff to previous 1.86 (colored) 

Refuse RSA keys <1024 bits in length. Improve reporting for keys that
do not meet this requirement. ok markus@

Revision 1.86 / (download) - annotate - [select for diffs], Wed May 3 21:08:09 2017 UTC (7 years ago) by naddy
Branch: MAIN
Changes since 1.85: +2 -2 lines
Diff to previous 1.85 (colored) 

remove miscellaneous SSH1 leftovers; ok markus@

Revision 1.85 / (download) - annotate - [select for diffs], Sun Apr 30 23:28:12 2017 UTC (7 years ago) by djm
Branch: MAIN
Changes since 1.84: +2 -2 lines
Diff to previous 1.84 (colored) 

exterminate the -1 flag from scp

ok markus@

Revision 1.84 / (download) - annotate - [select for diffs], Sun Apr 30 23:18:44 2017 UTC (7 years ago) by djm
Branch: MAIN
Changes since 1.83: +2 -2 lines
Diff to previous 1.83 (colored) 

remove KEY_RSA1

ok markus@

Revision 1.83 / (download) - annotate - [select for diffs], Fri Dec 11 03:19:09 2015 UTC (8 years, 5 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE, OPENBSD_6_1, OPENBSD_6_0_BASE, OPENBSD_6_0, OPENBSD_5_9_BASE, OPENBSD_5_9
Changes since 1.82: +2 -2 lines
Diff to previous 1.82 (colored) 

use SSH_MAX_PUBKEY_BYTES consistently as buffer size when reading key
files. Increase it to match the size of the buffers already being used.

Revision 1.82 / (download) - annotate - [select for diffs], Thu Sep 24 06:15:11 2015 UTC (8 years, 7 months ago) by djm
Branch: MAIN
Changes since 1.81: +7 -1 lines
Diff to previous 1.81 (colored) 

add ssh_config CertificateFile option to explicitly list
a certificate; patch from Meghana Bhat on bz#2436; ok markus@

Revision 1.81 / (download) - annotate - [select for diffs], Tue Aug 4 05:23:06 2015 UTC (8 years, 9 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE, OPENBSD_5_8
Changes since 1.80: +2 -2 lines
Diff to previous 1.80 (colored) 

backout SSH_RSA_MINIMUM_MODULUS_SIZE increase for this release;
problems spotted by sthen@ ok deraadt@ markus@

Revision 1.80 / (download) - annotate - [select for diffs], Fri Jul 3 03:49:45 2015 UTC (8 years, 10 months ago) by djm
Branch: MAIN
Changes since 1.79: +2 -2 lines
Diff to previous 1.79 (colored) 

refuse to generate or accept RSA keys smaller than 1024 bits;
feedback and ok dtucker@

Revision 1.79 / (download) - annotate - [select for diffs], Fri Jun 25 07:14:46 2010 UTC (13 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_7_BASE, OPENBSD_5_7, OPENBSD_5_6_BASE, OPENBSD_5_6, OPENBSD_5_5_BASE, OPENBSD_5_5, OPENBSD_5_4_BASE, OPENBSD_5_4, OPENBSD_5_3_BASE, OPENBSD_5_3, OPENBSD_5_2_BASE, OPENBSD_5_2, OPENBSD_5_1_BASE, OPENBSD_5_1, OPENBSD_5_0_BASE, OPENBSD_5_0, OPENBSD_4_9_BASE, OPENBSD_4_9, OPENBSD_4_8_BASE, OPENBSD_4_8
Changes since 1.78: +1 -4 lines
Diff to previous 1.78 (colored) 

bz#1327: remove hardcoded limit of 100 permitopen clauses and port
forwards per direction; ok markus@ stevesk@

Revision 1.76.4.1 / (download) - annotate - [select for diffs], Fri Oct 6 03:19:33 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.76: +1 -6 lines
Diff to previous 1.76 (colored) next main 1.77 (colored) 

upgrade to OpenSSH 4.4

Revision 1.76.6.1 / (download) - annotate - [select for diffs], Sat Sep 30 04:06:51 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_9
Changes since 1.76: +1 -6 lines
Diff to previous 1.76 (colored) next main 1.77 (colored) 

upgrade to OpenSSH 4.4

Revision 1.78 / (download) - annotate - [select for diffs], Thu Aug 3 03:34:42 2006 UTC (17 years, 9 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_4_7_BASE, OPENBSD_4_7, OPENBSD_4_6_BASE, OPENBSD_4_6, OPENBSD_4_5_BASE, OPENBSD_4_5, OPENBSD_4_4_BASE, OPENBSD_4_4, OPENBSD_4_3_BASE, OPENBSD_4_3, OPENBSD_4_2_BASE, OPENBSD_4_2, OPENBSD_4_1_BASE, OPENBSD_4_1, OPENBSD_4_0_BASE, OPENBSD_4_0
Changes since 1.77: +1 -6 lines
Diff to previous 1.77 (colored) 

almost entirely get rid of the culture of ".h files that include .h files"
ok djm, sort of ok stevesk
makes the pain stop in one easy step

Revision 1.77 / (download) - annotate - [select for diffs], Sat Mar 25 22:22:43 2006 UTC (18 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.76: +1 -1 lines
Diff to previous 1.76 (colored) 

standardise spacing in $OpenBSD$ tags; requested by deraadt@

Revision 1.75.2.1 / (download) - annotate - [select for diffs], Thu Mar 10 17:15:05 2005 UTC (19 years, 2 months ago) by brad
Branch: OPENBSD_3_5
Changes since 1.75: +8 -1 lines
Diff to previous 1.75 (colored) next main 1.76 (colored) 

upgrade to OpenSSH 4.0

Revision 1.75.4.1 / (download) - annotate - [select for diffs], Thu Mar 10 16:28:28 2005 UTC (19 years, 2 months ago) by brad
Branch: OPENBSD_3_6
Changes since 1.75: +8 -1 lines
Diff to previous 1.75 (colored) next main 1.76 (colored) 

upgrade to OpenSSH 4.0

Revision 1.76 / (download) - annotate - [select for diffs], Mon Dec 6 11:41:03 2004 UTC (19 years, 5 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE, OPENBSD_3_8_BASE, OPENBSD_3_7_BASE, OPENBSD_3_7
Branch point for: OPENBSD_3_9, OPENBSD_3_8
Changes since 1.75: +8 -1 lines
Diff to previous 1.75 (colored) 

Discard over-length authorized_keys entries rather than complaining when
they don't decode.  bz #884, with & ok djm@

Revision 1.71.4.2 / (download) - annotate - [select for diffs], Thu Mar 4 18:18:16 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.71.4.1: +4 -1 lines
Diff to previous 1.71.4.1 (colored) to branchpoint 1.71 (colored) next main 1.72 (colored) 

upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8

Revision 1.74.2.1 / (download) - annotate - [select for diffs], Sat Feb 28 03:51:34 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.74: +4 -1 lines
Diff to previous 1.74 (colored) next main 1.75 (colored) 

upgrade to OpenSSH 3.8

Revision 1.75 / (download) - annotate - [select for diffs], Tue Dec 2 17:01:15 2003 UTC (20 years, 5 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_6_BASE, OPENBSD_3_5_BASE
Branch point for: OPENBSD_3_6, OPENBSD_3_5
Changes since 1.74: +4 -1 lines
Diff to previous 1.74 (colored) 

use SSH_LISTEN_BACKLOG (=128) in listen(2).

Revision 1.71.2.1 / (download) - annotate - [select for diffs], Tue Sep 16 21:20:28 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_2
Changes since 1.71: +1 -4 lines
Diff to previous 1.71 (colored) next main 1.72 (colored) 

upgrade to OpenSSH 3.7

Revision 1.71.4.1 / (download) - annotate - [select for diffs], Tue Sep 16 20:50:44 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.71: +1 -4 lines
Diff to previous 1.71 (colored) 

upgrade to OpenSSH 3.7

Revision 1.74 / (download) - annotate - [select for diffs], Mon Sep 1 13:52:18 2003 UTC (20 years, 8 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_4_BASE
Branch point for: OPENBSD_3_4
Changes since 1.73: +1 -2 lines
Diff to previous 1.73 (colored) 

rm whitespace

Revision 1.73 / (download) - annotate - [select for diffs], Tue Jul 22 13:35:22 2003 UTC (20 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.72: +1 -4 lines
Diff to previous 1.72 (colored) 

remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1);
test+ok henning@

Revision 1.72 / (download) - annotate - [select for diffs], Sat Jun 28 16:23:06 2003 UTC (20 years, 10 months ago) by deraadt
Branch: MAIN
Changes since 1.71: +2 -1 lines
Diff to previous 1.71 (colored) 

deal with typing of write vs read in atomicio

Revision 1.63.2.4 / (download) - annotate - [select for diffs], Wed Jun 26 18:22:36 2002 UTC (21 years, 10 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.63.2.3: +3 -3 lines
Diff to previous 1.63.2.3 (colored) to branchpoint 1.63 (colored) next main 1.64 (colored) 

There was an update to OpenSSH 3.4, and people rejoiced.

Revision 1.66.2.4 / (download) - annotate - [select for diffs], Wed Jun 26 15:30:39 2002 UTC (21 years, 10 months ago) by jason
Branch: OPENBSD_3_1
Changes since 1.66.2.3: +4 -4 lines
Diff to previous 1.66.2.3 (colored) to branchpoint 1.66 (colored) next main 1.67 (colored) 

Pull in OpenSSH-3.4

Revision 1.63.2.3 / (download) - annotate - [select for diffs], Sat Jun 22 07:23:18 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.63.2.2: +3 -3 lines
Diff to previous 1.63.2.2 (colored) to branchpoint 1.63 (colored) 

Update OpenSSH to version 3.3 (with local changes, configuration files still
living in /etc and privsep user being nobody).

Revision 1.71 / (download) - annotate - [select for diffs], Sat Jun 22 02:00:29 2002 UTC (21 years, 11 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_3_BASE, OPENBSD_3_2_BASE
Branch point for: OPENBSD_3_3, OPENBSD_3_2
Changes since 1.70: +3 -3 lines
Diff to previous 1.70 (colored) 

correct comment

Revision 1.70 / (download) - annotate - [select for diffs], Mon Jun 3 12:04:07 2002 UTC (21 years, 11 months ago) by deraadt
Branch: MAIN
Changes since 1.69: +2 -2 lines
Diff to previous 1.69 (colored) 

compatiblity -> compatibility
decriptor -> descriptor
authentciated -> authenticated
transmition -> transmission

Revision 1.62.2.3 / (download) - annotate - [select for diffs], Sun Jun 2 22:56:11 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.62.2.2: +11 -1 lines
Diff to previous 1.62.2.2 (colored) to branchpoint 1.62 (colored) next main 1.63 (colored) 

Upgrade to OpenSSH 3.2.3.

Except for improbable compilation error fixes, this should be the last
commit made to the 2.9-STABLE branche. Have fun upgrading.

Revision 1.66.2.3 / (download) - annotate - [select for diffs], Sun May 19 15:12:46 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.66.2.2: +2 -2 lines
Diff to previous 1.66.2.2 (colored) to branchpoint 1.66 (colored) 

Set privsep user to 'nobody', missed in merge of openssh-3.2.[23];
pointed out by Oleg Safiullin <form@openbsd.ru>.

Revision 1.66.2.2 / (download) - annotate - [select for diffs], Sat May 18 04:50:38 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.66.2.1: +0 -0 lines
Diff to previous 1.66.2.1 (colored) to branchpoint 1.66 (colored) 

Update to OpenSSH-3.2.3

Revision 1.66.2.1 / (download) - annotate - [select for diffs], Sat May 18 04:12:11 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.66: +3 -3 lines
Diff to previous 1.66 (colored) 

Update to OpenSSH-3.2.2

Revision 1.63.2.2 / (download) - annotate - [select for diffs], Fri May 17 00:03:24 2002 UTC (22 years ago) by miod
Branch: OPENBSD_3_0
Changes since 1.63.2.1: +11 -1 lines
Diff to previous 1.63.2.1 (colored) to branchpoint 1.63 (colored) 

Update OpenSSH to version 3.2.2.

Revision 1.69 / (download) - annotate - [select for diffs], Sat May 11 20:24:48 2002 UTC (22 years ago) by stevesk
Branch: MAIN
Changes since 1.68: +2 -2 lines
Diff to previous 1.68 (colored) 

typo in comment

Revision 1.68 / (download) - annotate - [select for diffs], Wed May 8 21:06:34 2002 UTC (22 years ago) by deraadt
Branch: MAIN
Changes since 1.67: +2 -2 lines
Diff to previous 1.67 (colored) 

move to sshd.sshd instead

Revision 1.67 / (download) - annotate - [select for diffs], Tue May 7 19:54:36 2002 UTC (22 years ago) by deraadt
Branch: MAIN
Changes since 1.66: +2 -2 lines
Diff to previous 1.66 (colored) 

use ssh uid

Revision 1.66 / (download) - annotate - [select for diffs], Fri Mar 29 19:18:33 2002 UTC (22 years, 1 month ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_1_BASE
Branch point for: OPENBSD_3_1
Changes since 1.65: +4 -1 lines
Diff to previous 1.65 (colored) 

make RSA modulus minimum #define; ok markus@

Revision 1.65 / (download) - annotate - [select for diffs], Wed Mar 20 19:12:25 2002 UTC (22 years, 2 months ago) by stevesk
Branch: MAIN
Changes since 1.64: +8 -1 lines
Diff to previous 1.64 (colored) 

for unprivileged user, group do:
pw=getpwnam(SSH_PRIVSEP_USER); do_setusercontext(pw).  ok provos@

Revision 1.62.2.2 / (download) - annotate - [select for diffs], Sat Mar 9 00:20:45 2002 UTC (22 years, 2 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.62.2.1: +2 -2 lines
Diff to previous 1.62.2.1 (colored) to branchpoint 1.62 (colored) 

Merge OpenSSH 3.1, keeping /etc as configuration files directory.
(i.e. OpenSSH 3.1 + openbsd29_3.1.patch)

Revision 1.54.2.6 / (download) - annotate - [select for diffs], Fri Mar 8 17:04:43 2002 UTC (22 years, 2 months ago) by brad
Branch: OPENBSD_2_8
Changes since 1.54.2.5: +2 -2 lines
Diff to previous 1.54.2.5 (colored) to branchpoint 1.54 (colored) next main 1.55 (colored) 

Merge OpenSSH 3.1.

Revision 1.63.2.1 / (download) - annotate - [select for diffs], Thu Mar 7 17:37:47 2002 UTC (22 years, 2 months ago) by jason
Branch: OPENBSD_3_0
Changes since 1.63: +2 -2 lines
Diff to previous 1.63 (colored) 

Update to OpenSSH-3.1 on 3.0-stable branch

Revision 1.64 / (download) - annotate - [select for diffs], Mon Mar 4 17:27:39 2002 UTC (22 years, 2 months ago) by stevesk
Branch: MAIN
Changes since 1.63: +2 -2 lines
Diff to previous 1.63 (colored) 

$OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add
missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c
files.  ok markus@

Revision 1.62.2.1 / (download) - annotate - [select for diffs], Thu Sep 27 19:03:55 2001 UTC (22 years, 7 months ago) by jason
Branch: OPENBSD_2_9
Changes since 1.62: +4 -1 lines
Diff to previous 1.62 (colored) 

Pull in OpenSSH-2.9.9

Revision 1.54.2.5 / (download) - annotate - [select for diffs], Thu Sep 27 00:15:43 2001 UTC (22 years, 7 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.54.2.4: +4 -1 lines
Diff to previous 1.54.2.4 (colored) to branchpoint 1.54 (colored) 

Pull in OpenSSH 2.9.9 to the 2.8 branch.

Revision 1.63 / (download) - annotate - [select for diffs], Thu May 24 18:57:53 2001 UTC (22 years, 11 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_0_BASE
Branch point for: OPENBSD_3_0
Changes since 1.62: +4 -1 lines
Diff to previous 1.62 (colored) 

don't perform escape processing when ``EscapeChar none''; ok markus@

Revision 1.54.2.4 / (download) - annotate - [select for diffs], Mon May 7 21:09:36 2001 UTC (23 years ago) by jason
Branch: OPENBSD_2_8
Changes since 1.54.2.3: +0 -0 lines
Diff to previous 1.54.2.3 (colored) to branchpoint 1.54 (colored) 

Pull in OpenSSH-2.9 to 2.8 branch.

Revision 1.54.2.3 / (download) - annotate - [select for diffs], Wed Mar 21 19:46:30 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.54.2.2: +0 -0 lines
Diff to previous 1.54.2.2 (colored) to branchpoint 1.54 (colored) 

Pull in OpenSSH-2.5.2 for 2.8 branch.

Revision 1.45.2.5 / (download) - annotate - [select for diffs], Wed Mar 21 18:53:13 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.45.2.4: +0 -0 lines
Diff to previous 1.45.2.4 (colored) to branchpoint 1.45 (colored) next main 1.46 (colored) 

Pull in OpenSSH-2.5.2 for 2.7 branch.

Revision 1.45.2.4 / (download) - annotate - [select for diffs], Mon Mar 12 15:44:17 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.45.2.3: +4 -432 lines
Diff to previous 1.45.2.3 (colored) to branchpoint 1.45 (colored) 

OpenSSH-2.5.1 for 2.7 patch branch

Revision 1.54.2.2 / (download) - annotate - [select for diffs], Mon Feb 19 17:19:33 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.54.2.1: +0 -0 lines
Diff to previous 1.54.2.1 (colored) to branchpoint 1.54 (colored) 

Pull in OpenSSH-2.5.1

Revision 1.54.2.1 / (download) - annotate - [select for diffs], Fri Feb 16 20:13:20 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.54: +4 -432 lines
Diff to previous 1.54 (colored) 

Pull in OpenSSH 2.5.0

Revision 1.62 / (download) - annotate - [select for diffs], Tue Jan 23 10:45:10 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_9_BASE
Branch point for: OPENBSD_2_9
Changes since 1.61: +1 -4 lines
Diff to previous 1.61 (colored) 

nuke comment

Revision 1.61 / (download) - annotate - [select for diffs], Sun Jan 21 19:05:59 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.60: +3 -266 lines
Diff to previous 1.60 (colored) 

split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.
rename util.[ch] -> misc.[ch]

Revision 1.60 / (download) - annotate - [select for diffs], Fri Jan 19 15:55:11 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.59: +4 -161 lines
Diff to previous 1.59 (colored) 

move ssh1 definitions to ssh1.h, pathnames to pathnames.h

Revision 1.59 / (download) - annotate - [select for diffs], Fri Jan 19 12:45:27 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.58: +1 -7 lines
Diff to previous 1.58 (colored) 

only auth-chall.c needs #ifdef SKEY

Revision 1.58 / (download) - annotate - [select for diffs], Thu Jan 18 16:20:22 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.57: +2 -2 lines
Diff to previous 1.57 (colored) 

log() is at pri=LOG_INFO, since LOG_NOTICE goes to /dev/console on many systems

Revision 1.57 / (download) - annotate - [select for diffs], Sun Jan 7 11:28:06 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.56: +2 -2 lines
Diff to previous 1.56 (colored) 

rename SYSLOG_LEVEL_INFO->SYSLOG_LEVEL_NOTICE
syslog priority changes:
	fatal() LOG_ERR  -> LOG_CRIT
	log()   LOG_INFO -> LOG_NOTICE

Revision 1.56 / (download) - annotate - [select for diffs], Tue Dec 19 23:17:58 2000 UTC (23 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.55: +5 -5 lines
Diff to previous 1.55 (colored) 

replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned'
with u_char.

Revision 1.55 / (download) - annotate - [select for diffs], Sat Nov 25 17:19:33 2000 UTC (23 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.54: +2 -1 lines
Diff to previous 1.54 (colored) 

print keytype when generating a key.
reasonable defaults for RSA1/RSA/DSA keys.

Revision 1.45.2.3 / (download) - annotate - [select for diffs], Wed Nov 8 21:31:25 2000 UTC (23 years, 6 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.45.2.2: +13 -17 lines
Diff to previous 1.45.2.2 (colored) to branchpoint 1.45 (colored) 

openssh-2.3.0 (again) for 2.7 branch

Revision 1.54 / (download) - annotate - [select for diffs], Wed Oct 11 20:27:24 2000 UTC (23 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE
Branch point for: OPENBSD_2_8
Changes since 1.53: +1 -9 lines
Diff to previous 1.53 (colored) 

new cipher framework

Revision 1.53 / (download) - annotate - [select for diffs], Wed Oct 11 20:14:39 2000 UTC (23 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.52: +2 -2 lines
Diff to previous 1.52 (colored) 

add support for s/key (kbd-interactive) to ssh2, based on work by mkiernan@avantgo.com and me

Revision 1.52 / (download) - annotate - [select for diffs], Wed Oct 11 04:02:17 2000 UTC (23 years, 7 months ago) by provos
Branch: MAIN
Changes since 1.51: +2 -1 lines
Diff to previous 1.51 (colored) 

First rough implementation of the diffie-hellman group exchange.  The
client can ask the server for bigger groups to perform the diffie-hellman
in, thus increasing the attack complexity when using ciphers with longer
keys.  University of Windsor provided network, T the company.

Revision 1.51 / (download) - annotate - [select for diffs], Tue Sep 12 20:53:10 2000 UTC (23 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.50: +6 -2 lines
Diff to previous 1.50 (colored) 

multiple debug levels

Revision 1.50 / (download) - annotate - [select for diffs], Thu Sep 7 20:27:54 2000 UTC (23 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.49: +6 -7 lines
Diff to previous 1.49 (colored) 

cleanup copyright notices on all files.  I have attempted to be accurate with
the details.  everything is now under Tatu's licence (which I copied from his
readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd
developers under a 2-term bsd licence.  We're not changing any rules, just
being accurate.

Revision 1.45.2.2 / (download) - annotate - [select for diffs], Fri Sep 1 18:23:24 2000 UTC (23 years, 8 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.45.2.1: +5 -2 lines
Diff to previous 1.45.2.1 (colored) to branchpoint 1.45 (colored) 

Pull in the rest of openssh-2.2.0 to 2.7 branch (luvin' cvs...)

Revision 1.49 / (download) - annotate - [select for diffs], Sat Aug 19 18:48:11 2000 UTC (23 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.48: +2 -2 lines
Diff to previous 1.48 (colored) 

support for ~. in ssh2

Revision 1.48 / (download) - annotate - [select for diffs], Thu Jul 13 22:53:21 2000 UTC (23 years, 10 months ago) by provos
Branch: MAIN
Changes since 1.47: +4 -1 lines
Diff to previous 1.47 (colored) 

allow multiple whitespace but only one '=' between tokens, bug report from
Ralf S. Engelschall <rse@engelschall.com> but different fix. okay deraadt@

Revision 1.47 / (download) - annotate - [select for diffs], Tue Jun 20 01:39:45 2000 UTC (23 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.46: +1 -1 lines
Diff to previous 1.46 (colored) 

OpenBSD tag

Revision 1.45.2.1 / (download) - annotate - [select for diffs], Mon Jun 12 02:37:37 2000 UTC (23 years, 11 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.45: +7 -1 lines
Diff to previous 1.45 (colored) 

lovin' CVS... update patch branch to OpenSSH-2.1.1

Revision 1.46 / (download) - annotate - [select for diffs], Wed May 17 08:20:15 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.45: +7 -1 lines
Diff to previous 1.45 (colored) 

enable nonblocking IO for sshd w/ proto 1, too; split out common code

Revision 1.45 / (download) - annotate - [select for diffs], Mon May 8 17:12:16 2000 UTC (24 years ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE
Branch point for: OPENBSD_2_7
Changes since 1.44: +2 -1 lines
Diff to previous 1.44 (colored) 

complain about invalid ciphers in SSH1 (e.g. arcfour is SSH2 only)

Revision 1.44 / (download) - annotate - [select for diffs], Thu May 4 22:38:00 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.43: +2 -2 lines
Diff to previous 1.43 (colored) 

replace broken uuencode w/ libc b64_ntop

Revision 1.43 / (download) - annotate - [select for diffs], Wed May 3 10:21:48 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.42: +2 -2 lines
Diff to previous 1.42 (colored) 

s/DsaKey/HostDSAKey/, document option

Revision 1.42 / (download) - annotate - [select for diffs], Tue May 2 22:18:04 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.41: +2 -1 lines
Diff to previous 1.41 (colored) 

default DSA key file ~/.ssh/id_dsa

Revision 1.41 / (download) - annotate - [select for diffs], Wed Apr 26 22:38:16 2000 UTC (24 years ago) by deraadt
Branch: MAIN
Changes since 1.40: +2 -2 lines
Diff to previous 1.40 (colored) 

host key becomes /etc/ssh_host_dsa_key

Revision 1.40 / (download) - annotate - [select for diffs], Wed Apr 26 20:56:30 2000 UTC (24 years ago) by markus
Branch: MAIN
Changes since 1.39: +4 -31 lines
Diff to previous 1.39 (colored) 

add DSA pubkey auth and other SSH2 fixes.  use ssh-keygen -[xX]
for trading keys with the real and the original SSH, directly from the
people who invented the SSH protocol.

Revision 1.39 / (download) - annotate - [select for diffs], Wed Apr 19 07:05:49 2000 UTC (24 years, 1 month ago) by deraadt
Branch: MAIN
Changes since 1.38: +4 -4 lines
Diff to previous 1.38 (colored) 

pid_t

Revision 1.38 / (download) - annotate - [select for diffs], Fri Apr 14 10:30:33 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.37: +15 -15 lines
Diff to previous 1.37 (colored) 

whitespace cleanup

Revision 1.37 / (download) - annotate - [select for diffs], Wed Apr 12 07:45:44 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.36: +8 -6 lines
Diff to previous 1.36 (colored) 

add Cipher and Protocol options to ssh/sshd, e.g.:
ssh -o 'Protocol 1,2' if you prefer proto 1, ssh -o 'Ciphers arcfour,3des-cbc'

Revision 1.36 / (download) - annotate - [select for diffs], Thu Apr 6 08:55:22 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.35: +5 -1 lines
Diff to previous 1.35 (colored) 

ssh2 server side, see README.openssh2; enable with 'sshd -2'

Revision 1.35 / (download) - annotate - [select for diffs], Tue Mar 28 20:31:29 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.34: +1 -170 lines
Diff to previous 1.34 (colored) 

replace big switch() with function tables (prepare for ssh2)

Revision 1.34 / (download) - annotate - [select for diffs], Thu Mar 23 22:15:33 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.33: +3 -33 lines
Diff to previous 1.33 (colored) 

initial support for DSA keys. ok deraadt@, niels@

Revision 1.33 / (download) - annotate - [select for diffs], Tue Feb 1 22:32:53 2000 UTC (24 years, 3 months ago) by d
Branch: MAIN
Changes since 1.32: +2 -2 lines
Diff to previous 1.32 (colored) 

int atomicio -> ssize_t (for alpha). ok deraadt@

Revision 1.32 / (download) - annotate - [select for diffs], Tue Jan 4 00:08:00 2000 UTC (24 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.31: +10 -5 lines
Diff to previous 1.31 (colored) 

ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features:
sshd allows multiple ListenAddress and Port options.  note that libwrap is
not IPv6-ready. (based on patches from <kick@kyoto.wide.ad.jp> and
fujiwara@rcac.tdi.co.jp)

Revision 1.31 / (download) - annotate - [select for diffs], Sun Dec 12 19:20:03 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.30: +3 -3 lines
Diff to previous 1.30 (colored) 

type conflict for 'extern Type *options' in channels.c; dot@dotat.at

Revision 1.30 / (download) - annotate - [select for diffs], Mon Dec 6 20:15:29 1999 UTC (24 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.29: +7 -2 lines
Diff to previous 1.29 (colored) 

move atomicio into it's own file.  wrap all socket write()s which were doing
write(sock, buf, len) != len, with atomicio() calls.

Revision 1.29 / (download) - annotate - [select for diffs], Thu Dec 2 20:05:40 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.28: +8 -1 lines
Diff to previous 1.28 (colored) 

document $SSH_ASKPASS, reasonable default

Revision 1.28 / (download) - annotate - [select for diffs], Wed Dec 1 16:54:35 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.27: +3 -1 lines
Diff to previous 1.27 (colored) 

move skey-auth from auth-passwd.c to auth-skey.c, same for krb4

Revision 1.27 / (download) - annotate - [select for diffs], Wed Dec 1 13:59:15 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.26: +6 -6 lines
Diff to previous 1.26 (colored) 

ports are u_short

Revision 1.26 / (download) - annotate - [select for diffs], Wed Nov 24 19:53:52 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.25: +320 -204 lines
Diff to previous 1.25 (colored) 

KNF, final part 3

Revision 1.25 / (download) - annotate - [select for diffs], Wed Nov 24 00:26:03 1999 UTC (24 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.24: +173 -161 lines
Diff to previous 1.24 (colored) 

much more KNF

Revision 1.24 / (download) - annotate - [select for diffs], Mon Nov 22 21:52:42 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.23: +5 -6 lines
Diff to previous 1.23 (colored) 

tranfer s/key challenge/response data in SSH_SMSG_AUTH_TIS_CHALLENGE
messages. allows use of s/key in windows (ttssh, securecrt) and
ssh-1.2.27 clients without 'ssh -v', ok: niels@

Revision 1.23 / (download) - annotate - [select for diffs], Mon Nov 22 21:02:38 1999 UTC (24 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.22: +8 -8 lines
Diff to previous 1.22 (colored) 

syslog changes:
* Unified Logmessage for all auth-types, for success and for failed
* Standard connections get only ONE line in the LOG when level==LOG:
  Auth-attempts are logged only, if authentication is:
        a) successfull or
        b) with passwd or
        c) we had more than AUTH_FAIL_LOG failues
* many log() became verbose()
* old behaviour with level=VERBOSE

Revision 1.22 / (download) - annotate - [select for diffs], Fri Nov 19 16:04:17 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.21: +5 -1 lines
Diff to previous 1.21 (colored) 

bugfix: loglevels are per host in clientconfig,
factor out common log-level parsing code.

Revision 1.21 / (download) - annotate - [select for diffs], Mon Nov 15 20:53:25 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.20: +6 -9 lines
Diff to previous 1.20 (colored) 

the keysize of rsa-parameter 'n' is passed implizit,
a few more checks and warnings about 'pretended' keysizes.

Revision 1.20 / (download) - annotate - [select for diffs], Thu Nov 11 23:36:53 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.19: +57 -65 lines
Diff to previous 1.19 (colored) 

make all access to options via 'extern Options options'
and 'extern ServerOptions options' respectively;
options are no longer passed as arguments:
 * make options handling more consistent
 * remove #include "readconf.h" from ssh.h
 * readconf.h is only included if necessary

Revision 1.19 / (download) - annotate - [select for diffs], Thu Nov 11 22:58:38 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.18: +2 -3 lines
Diff to previous 1.18 (colored) 

IgnoreUserKnownHosts(default=no), used for RhostRSAAuth, ok deraadt,millert

Revision 1.18 / (download) - annotate - [select for diffs], Wed Nov 10 23:36:44 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.17: +56 -56 lines
Diff to previous 1.17 (colored) 

add LogLevel {QUIET, FATAL, ERROR, INFO, CHAT, DEBUG} to ssh/sshd,
obsoletes QuietMode and FascistLogging in sshd.

Revision 1.17 / (download) - annotate - [select for diffs], Wed Nov 10 22:24:01 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.16: +4 -6 lines
Diff to previous 1.16 (colored) 

remove x11- and krb-cleanup from fatal() + krb-cleanup cleanup

Revision 1.16 / (download) - annotate - [select for diffs], Tue Nov 2 19:10:15 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored) 

remove unused argument. ok dugsong

Revision 1.15 / (download) - annotate - [select for diffs], Thu Oct 28 08:43:10 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.14: +5 -1 lines
Diff to previous 1.14 (colored) 

from niklas: Add -c -s and -k support, Create socket early to avoid race,
Don't let child access std{in,out,err}

Revision 1.14 / (download) - annotate - [select for diffs], Mon Oct 25 20:41:55 1999 UTC (24 years, 6 months ago) by markus
Branch: MAIN
Changes since 1.13: +2 -12 lines
Diff to previous 1.13 (colored) 

remove prototypes for old/removed minfd functions

Revision 1.13 / (download) - annotate - [select for diffs], Sat Oct 16 20:47:14 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_6_BASE, OPENBSD_2_6
Changes since 1.12: +8 -3 lines
Diff to previous 1.12 (colored) 

support for SSH protocol 1.5 which is poorly documented, the RFC.troff lies.
interops (x11,agent,etc) with 1.2.27 and protocol 1.3

Revision 1.12 / (download) - annotate - [select for diffs], Sat Oct 16 19:23:35 1999 UTC (24 years, 7 months ago) by provos
Branch: MAIN
Changes since 1.11: +2 -2 lines
Diff to previous 1.11 (colored) 

-Wall cleanup

Revision 1.11 / (download) - annotate - [select for diffs], Thu Oct 14 18:17:42 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored) 

fix old connect() race security-bug for ssh-agent and agent-forwarding
by removing the connect() junk, with the following restrictions:
1) change the version to "OpenSSH-1.1":
   agent-forwarding will work only between OpenSSH-1.1 client and
   OpenSSH-1.1 server
2) renamed the environment variable of OpenSSH-1.1 to
   "SSH_AUTH_SOCKET", since useing OpenSSH-1.0 ssh-add against the new
   ssh-agent does not work

Revision 1.10 / (download) - annotate - [select for diffs], Mon Oct 11 20:00:36 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.9: +2 -2 lines
Diff to previous 1.9 (colored) 

make sure ~/.ssh/authorized_keys is not writable for group/world (sshd)
don't load private keys if they are group/world-{rwx} (ssh,sshd and ssh-add)

Revision 1.9 / (download) - annotate - [select for diffs], Thu Oct 7 21:45:02 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.8: +7 -2 lines
Diff to previous 1.8 (colored) 

add skey to sshd:

1) pass *pw to auth_password() not user_name, do_authentication already
   keeps private copy of struct passwd for current user.
2) limit authentication attemps to 5, otherwise
        ssh -o 'NumberOfPasswordPrompts 100000' host
   lets you enter 100000 passwds
3) make s/key a run-time option in /etc/sshd_config
4) generate fake skeys,
   for s/key for nonexisting users, too
   limit auth-tries for nonexisting users, too.
Note that
% ssh -l nonexisting-user -o 'NumberOfPasswordPrompts 100000' host
has NO limits in ssh-1.2.27

Revision 1.8 / (download) - annotate - [select for diffs], Tue Oct 5 22:18:52 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.7: +1 -15 lines
Diff to previous 1.7 (colored) 

move auth-sockets to private dir
delete minfd residua

Revision 1.7 / (download) - annotate - [select for diffs], Mon Oct 4 20:45:02 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.6: +1 -4 lines
Diff to previous 1.6 (colored) 

nuke genminfd/AUTH_FD

Revision 1.6 / (download) - annotate - [select for diffs], Sun Oct 3 21:50:04 1999 UTC (24 years, 7 months ago) by provos
Branch: MAIN
Changes since 1.5: +9 -6 lines
Diff to previous 1.5 (colored) 

add code to detect DNS spoofing:

the main idea is to not only store the host key for the hostname but
also for the according IP address.  When we check the host key in the
known_hosts file, we also check the key against the according IP address.
When the server key changes, host_status = HOST_CHANGED.  If
check_host_in_hostfile() returns differing status for the IP address
that means that either DNS was spoofed or that the IP address
for the host and the host key changed at the same time.

Revision 1.5 / (download) - annotate - [select for diffs], Fri Oct 1 02:38:10 1999 UTC (24 years, 7 months ago) by provos
Branch: MAIN
Changes since 1.4: +1 -9 lines
Diff to previous 1.4 (colored) 

get rid of references to randomseedfile we dont need it.  for sshd
just spit out a warning that the configuration option is obsolete.

Revision 1.4 / (download) - annotate - [select for diffs], Wed Sep 29 18:16:21 1999 UTC (24 years, 7 months ago) by dugsong
Branch: MAIN
Changes since 1.3: +11 -2 lines
Diff to previous 1.3 (colored) 

update krb4/AFS support to ssh-1.2.27-afs-kerberos-pl1 level, clean up unused variables, update manpages

Revision 1.3 / (download) - annotate - [select for diffs], Tue Sep 28 04:45:37 1999 UTC (24 years, 7 months ago) by provos
Branch: MAIN
Changes since 1.2: +19 -25 lines
Diff to previous 1.2 (colored) 

convert all uses of gmp to SSL bignum
convert all used of rsa to SSL rsa functions
remove all use of randomstate to OpenBSD arc4random() and arc4_stir()
all this done at a long long night in Canada.

Revision 1.2 / (download) - annotate - [select for diffs], Sun Sep 26 21:47:55 1999 UTC (24 years, 7 months ago) by deraadt
Branch: MAIN
Changes since 1.1: +10 -1 lines
Diff to previous 1.1 (colored) 

build ssh components using our build model

Revision 1.1 / (download) - annotate - [select for diffs], Sun Sep 26 20:53:38 1999 UTC (24 years, 7 months ago) by deraadt
Branch: MAIN 

i bet a lot of people didn't know what ssh 1.2.16 had a nice license.
well, except for the patent issues.  someone in sweden (forget their
name at the moment) cleaned out most of the patented code, and now
this code removes rsa code.  when this is done, it will link against
libssl, but the work isn't completely done yet.  then we need to bring
this up to modern days, featurewise.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.