src/usr.bin/ssh/sshd.c - diff

Return to sshd.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sshd.c between version 1.290.2.1 and 1.290.2.2

version 1.290.2.1, 2004/08/19 04:13:28

version 1.290.2.2, 2005/03/10 17:15:05

Line 108

char *config_file_name = _PATH_SERVER_CONFIG_FILE;

* Flag indicating whether IPv4 or IPv6. This can be set on the command line.

* Default value is AF_UNSPEC means both IPv4 and IPv6.

int IPv4or6 = AF_UNSPEC;

* Debug mode flag. This can be set on the command line. If debug

* mode is enabled, extra debugging output will be sent to the system

* log, the daemon will not go to background, and will exit after processing

Line 650

Line 644

else if (pmonitor->m_pid != 0) {

debug2("User child is on pid %ld", (long)pmonitor->m_pid);

close(pmonitor->m_recvfd);

buffer_clear(&loginmsg);

monitor_child_postauth(pmonitor);

/* NEVERREACHED */

Line 740

Line 735

static int

drop_connection(int startups)

{

double p, r;

int p, r;

if (startups < options.max_startups_begin)

return 0;

Line 751

Line 746

p = 100 - options.max_startups_rate;

p *= startups - options.max_startups_begin;

p /= (double) (options.max_startups - options.max_startups_begin);

p /= options.max_startups - options.max_startups_begin;

p += options.max_startups_rate;

p /= 100.0;

r = arc4random() % 100;

r = arc4random() / (double) UINT_MAX;

debug("drop_connection: p %g, r %g", p, r);

debug("drop_connection: p %d, r %d", p, r);

return (r < p) ? 1 : 0;

}

Line 874

Line 868

char ntop[NI_MAXHOST], strport[NI_MAXSERV];

char *line;

int listen_sock, maxfd;

int startup_p[2], config_s[2];

int startup_p[2] = { -1 , -1 }, config_s[2] = { -1 , -1 };

int startups = 0;

Key *key;

Authctxt *authctxt;

Line 892

Line 886

while ((opt = getopt(ac, av, "f:p:b:k:h:g:u:o:dDeiqrtQR46")) != -1) {

switch (opt) {

case '4':

IPv4or6 = AF_INET;

options.address_family = AF_INET;

break;

case '6':

IPv4or6 = AF_INET6;

options.address_family = AF_INET6;

break;

case 'f':

config_file_name = optarg;

Line 996

Line 990

closefrom(REEXEC_DEVCRYPTO_RESERVED_FD);

SSLeay_add_all_algorithms();

channel_set_af(IPv4or6);

* Force logging to stderr until we have loaded the private host

Line 1030

Line 1023

/* Fill in default values for those options not explicitly set. */

fill_default_server_options(&options);

/* set default channel AF */

channel_set_af(options.address_family);

/* Check that there are no remaining arguments. */

if (optind < ac) {

fprintf(stderr, "Extra argument %s.\n", av[optind]);

Line 1135

Line 1131

}

/* Initialize the log (it is reinitialized below in case we forked). */

if (debug_flag && !inetd_flag)

if (debug_flag && (!inetd_flag || rexeced_flag))

log_stderr = 1;

log_init(__progname, options.log_level, options.log_facility, log_stderr);

Line 1211

Line 1207

if (num_listen_socks >= MAX_LISTEN_SOCKS)

fatal("Too many listen sockets. "

"Enlarge MAX_LISTEN_SOCKS");

if (getnameinfo(ai->ai_addr, ai->ai_addrlen,

if ((ret = getnameinfo(ai->ai_addr, ai->ai_addrlen,

ntop, sizeof(ntop), strport, sizeof(strport),

NI_NUMERICHOST|NI_NUMERICSERV) != 0) {

NI_NUMERICHOST|NI_NUMERICSERV)) != 0) {

error("getnameinfo failed");

error("getnameinfo failed: %.100s",

(ret != EAI_SYSTEM) ? gai_strerror(ret) :

strerror(errno));

continue;

}

/* Create socket for listening. */

Line 1444

Line 1442

sock_in = newsock;

sock_out = newsock;

log_init(__progname, options.log_level, options.log_facility, log_stderr);

close(config_s[0]);

if (rexec_flag)

close(config_s[0]);

break;

}

Line 1604

Line 1603

/* XXX global for cleanup, access from other modules */

the_authctxt = authctxt;

/* prepare buffer to collect messages to display to user after login */

buffer_init(&loginmsg);

if (use_privsep)

if (privsep_preauth(authctxt) == 1)

goto authenticated;

/* prepare buffer to collect messages to display to user after login */

buffer_init(&loginmsg);

/* perform the key exchange */

/* authenticate user and start session */