summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* - (djm) [loginrec.c] Relax permission requirement on btmp logs to allowDamien Miller2010-11-242-1/+3
| | | | group read/write. ok dtucker@
* - (dtucker) [platform.c session.c] Move the getluid call out of session.c andDarren Tucker2010-11-243-7/+13
| | | | into the platform-specific code Only affects SCO, tested by and ok tim@.
* - (dtucker) Bug #1840: fix warning when configuring --with-ssl-engine, patchDarren Tucker2010-11-222-1/+6
| | | | from vapier at gentoo org.
* - jmc@cvs.openbsd.org 2010/11/18 15:01:00Damien Miller2010-11-205-9/+15
| | | | | [scp.1 sftp.1 ssh.1 sshd_config.5] add IPQoS to the various -o lists, and zap some trailing whitespace;
* - jmc@cvs.openbsd.org 2010/11/15 07:40:14Damien Miller2010-11-202-3/+6
| | | | | [ssh_config.5] libary -> library;
* - djm@cvs.openbsd.org 2010/11/13 23:27:51Damien Miller2010-11-2014-27/+230
| | | | | | | | | [clientloop.c misc.c misc.h packet.c packet.h readconf.c readconf.h] [servconf.c servconf.h session.c ssh.c ssh_config.5 sshd_config.5] allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead of hardcoding lowdelay/throughput. bz#1733 patch from philipp AT redfish-solutions.com; ok markus@ deraadt@
* - djm@cvs.openbsd.org 2010/11/10 01:33:07Damien Miller2010-11-207-17/+37
| | | | | | [kexdhc.c kexdhs.c kexgexc.c kexgexs.c key.c moduli.c] use only libcrypto APIs that are retained with OPENSSL_NO_DEPRECATED. these have been around for years by this time. ok markus
* - djm@cvs.openbsd.org 2010/11/05 02:46:47Damien Miller2010-11-202-11/+16
| | | | | [packet.c] whitespace KNF
* - (djm) [servconf.c ssh-add.c ssh-keygen.c] don't look for ECDSA keys onDamien Miller2010-11-114-0/+11
| | | | | platforms that don't support ECC. Fixes some spurious warnings reported by tim@
* - (tim) [configure.ac openbsd-compat/bsd-misc.h openbsd-compat/bsd-misc.c] AddTim Rice2010-11-084-3/+27
| | | | support for platforms missing isblank(). ok djm@
* - (tim) [regress/kextype.sh] Not all platforms have time in /usr/bin.Tim Rice2010-11-082-1/+9
| | | | Feedback from dtucker@
* - (tim) [regress/kextype.sh] Shell portability fix.Tim Rice2010-11-072-2/+3
|
* - (tim) [regress/Makefile] Fixes to allow building/testing outside sourceTim Rice2010-11-072-9/+13
| | | | tree.
* - (dtucker) [platform.c] includes.h instead of defines.h so that we getDarren Tucker2010-11-072-2/+6
| | | | the correct typedefs.
* - (dtucker) [platform.c] Need servconf.h and extern options.Darren Tucker2010-11-052-1/+8
|
* - (dtucker) [regress/kextype.sh] Make sha256 test depend on ECC. This is notDarren Tucker2010-11-052-1/+4
| | | | | strictly correct since while ECC requires sha256 the reverse is not true however it does prevent spurious test failures.
* - (dtucker) [regress/kextype.sh] Add missing "test".Darren Tucker2010-11-052-1/+2
|
* - (dtucker) [Makefile configure.ac regress/Makefile regress/keytype.sh]Darren Tucker2010-11-057-8/+44
| | | | | Import recent changes to regress/Makefile, pass a flag to enable ECC tests from configure through to regress/Makefile and use it in the tests.
* - (dtucker) [regress/keytype.sh] Import new test.Darren Tucker2010-11-052-0/+49
|
* - (dtucker) [platform.c platform.h session.c] Move the Cygwin special-caseDarren Tucker2010-11-054-6/+22
| | | | check into platform.c
* - (dtucker) [platform.c session.c] Move PAM credential establishment for theDarren Tucker2010-11-053-11/+14
| | | | non-LOGIN_CAP case into platform.c.
* - (dtucker) [platform.c session.c] Move irix setusercontext fragment intoDarren Tucker2010-11-053-5/+9
| | | | platform.c.
* - (dtucker) platform.c session.c] Move aix_usrinfo frament into platform.c.Darren Tucker2010-11-053-4/+6
|
* - (dtucker) platform.c session.c] Move the USE_LIBIAF fragment intoDarren Tucker2010-11-053-6/+9
| | | | platform.c
* - (dtucker) [platform.c session.c] Move the PAM credential establishment forDarren Tucker2010-11-053-6/+17
| | | | the LOGIN_CAP case into platform.c.
* - (dtucker) [platform.c] Only call setpgrp on BSDI if running as root toDarren Tucker2010-11-052-2/+5
| | | | retain previous behavior.
* - (dtucker) [platform.c session.c] Move the BSDI setpgrp into platform.c.Darren Tucker2010-11-053-4/+6
|
* - (dtucker) [platform.c session.c] Move the AIX setpcred+chroot hack intoDarren Tucker2010-11-053-19/+21
| | | | platform.c
* - (dtucker) [platform.c platform.h session.c] Add a platform hook to runDarren Tucker2010-11-054-10/+27
| | | | after the user's groups are established and move the selinux calls into it.
* - (dtucker) [configure.ac platform.{c,h} session.cDarren Tucker2010-11-057-6/+71
| | | | | | openbsd-compat/port-solaris.{c,h}] Bug #1824: Add Solaris Project support. Patch from cory.erickson at csu mnscu edu with a bit of rework from me. ok djm@
* - (djm) [loginrec.c loginrec.h] Use correct uid_t/pid_t types instead ofDamien Miller2010-11-053-12/+15
| | | | int. Should fix bz#1817 cleanly; ok dtucker@
* - djm@cvs.openbsd.org 2010/11/04 02:45:34Damien Miller2010-11-052-8/+12
| | | | | | [sftp-server.c] umask should be parsed as octal. reported by candland AT xmission.com; ok markus@
* - jmc@cvs.openbsd.org 2010/10/28 18:33:28Damien Miller2010-11-058-23/+17
| | | | | [scp.1 ssh-add.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8 sshd_config.5] knock out some "-*- nroff -*-" lines;
* - djm@cvs.openbsd.org 2010/10/28 11:22:09Damien Miller2010-11-055-23/+39
| | | | | | | | | | [authfile.c key.c key.h ssh-keygen.c] fix a possible NULL deref on loading a corrupt ECDH key store ECDH group information in private keys files as "named groups" rather than as a set of explicit group parameters (by setting the OPENSSL_EC_NAMED_CURVE flag). This makes for shorter key files and retrieves the group's OpenSSL NID that we need for various things.
* - djm@cvs.openbsd.org 2010/09/22 12:26:05Damien Miller2010-11-053-2/+35
| | | | | [regress/Makefile regress/kextype.sh] regress test for each of the key exchange algorithms that we support
* - (dtucker) [defines.h] Use SIZE_T_MAX for SIZE_MAX for platforms that have aDarren Tucker2010-10-252-5/+7
| | | | native one.
* - (tim) [openbsd-compat/glob.h] Remove sys/cdefs.h include that came withTim Rice2010-10-242-1/+5
| | | | | 1.12 to unbreak Solaris build. ok djm@
* - (dtucker) [defines.h] Add SIZE_MAX for the benefit of platforms that don'tDarren Tucker2010-10-242-1/+7
| | | | have it.
* - (dtucker) [regress/cert-userkey.sh] Disable ECC-based tests on platformsDarren Tucker2010-10-242-4/+13
| | | | which don't have ECC support in libcrypto.
* - (dtucker) [regress/cert-hostkey.sh] Disable ECC-based tests on platformsDarren Tucker2010-10-242-6/+15
| | | | which don't have ECC support in libcrypto.
* - sthen@cvs.openbsd.org 2010/10/23 22:06:12Darren Tucker2010-10-242-2/+8
| | | | | | [sftp.c] escape '[' in filename tab-completion; fix a type while there. ok djm@
* - (dtucker) [includes.h] Add missing ifdef GLOB_HAS_GL_STATV to fix build.Darren Tucker2010-10-242-1/+4
|
* - djm@cvs.openbsd.org 2010/08/31 12:24:09Damien Miller2010-10-213-13/+32
| | | | | [regress/cert-hostkey.sh regress/cert-userkey.sh] tests for ECDSA certificates
* - OpenBSD CVS SyncDamien Miller2010-10-212-2/+9
| | | | | | - dtucker@cvs.openbsd.org 2010/10/12 02:22:24 [mux.c] Typo in confirmation message. bz#1827, patch from imorgan at nas nasa gov
* - (djm) [sshconnect.c] Need signal.h for prototype for kill(2)Damien Miller2010-10-122-0/+2
|
* - (djm) [canohost.c] Zero a4 instead of addr to better match type.Damien Miller2010-10-122-1/+5
| | | | bz#1825, reported by foo AT mailinator.com
* - (djm) [configure.ac] Use = instead of == in shell tests. Patch fromDamien Miller2010-10-112-3/+7
| | | | dr AT vasco.com
* - (djm) [openbsd-compat/Makefile.in] Actually link timingsafe_bcmpDamien Miller2010-10-072-2/+3
|
* - (djm) [cipher-acss.c] Add missing header.Damien Miller2010-10-072-0/+2
|
* - (djm) [openbsd-compat/glob.c] restore ARG_MAX compat code.Damien Miller2010-10-072-1/+2
|
View Lorry Controller Status