summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/readpass.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Free the previously allocated msg buffer after writing it out.claudio2020-11-101-1/+2
| | | | OK djm@
* unbreak; missing NULL checkdjm2020-11-081-2/+2
|
* when requesting a security key touch on stderr, inform the user oncedjm2020-11-081-8/+28
| | | | the touch has been recorded; requested by claudio@ ok markus@
* use the new variant log macros instead of prepending __func__ anddjm2020-10-181-15/+15
| | | | appending ssh_err(r) manually; ok markus@
* There are lots of place where we want to redirect stdin, stdoutdjm2020-10-031-7/+3
| | | | | | and/or stderr to /dev/null. Factor all these out to a single stdfd_devnull() function that allows selection of which of these to redirect. ok markus@
* let the "Confirm user presence for key ..." ssh-askpass notificationdjm2020-08-111-9/+14
| | | | respect $SSH_ASKPASS_REQUIRE; ok markus@
* allow some additional control over the use of ssh-askpassdjm2020-07-141-5/+20
| | | | | via $SSH_ASKPASS_REQUIRE, including force-enable/disable. bz#69 ok markus@
* Replace all calls to signal(2) with a wrapper around sigaction(2).dtucker2020-01-231-7/+7
| | | | | | This wrapper blocks all other signals during the handler preventing races between handlers, and sets SA_RESTART which should reduce the potential for short read/write operations.
* fix setting of $SSH_ASKPASS_PROMPT - it shouldn't be set when askingdjm2019-12-061-5/+13
| | | | | passphrases, only when confirming the use of a key (i.e. for ssh-agent keys added with "ssh-add -c keyfile")
* bring the __func__djm2019-12-061-6/+6
|
* use error()+_exit() instead of fatal() to avoid running cleanupdjm2019-11-271-2/+3
| | | | | handlers in child process; spotted via weird regress failures in portable
* follow existing askpass logic for security key notifier: fall backdjm2019-11-151-3/+4
| | | | | to _PATH_SSH_ASKPASS_DEFAULT if no $SSH_ASKPASS environment variable is set.
* pass SSH_ASKPASS_PROMPT hint to y/n key confirm toodjm2019-11-121-1/+2
|
* dd API for performing one-shot notifications via tty or SSH_ASKPASSdjm2019-11-121-1/+85
|
* When system calls indicate an error they return -1, not some arbitraryderaadt2019-06-281-5/+5
| | | | | | value < 0. errno is only updated in this case. Change all (most?) callers of syscalls to follow this better, and let's see if this strictness helps us in the future.
* Print an \r in front of the password prompt so parts of a passwordtb2019-01-191-4/+11
| | | | | | | | that was entered too early are likely clobbered by the prompt. Idea from doas. from and ok djm "i like it" deraadt
* Remove support for running ssh(1) setuid and fatal if attempted.dtucker2018-07-181-2/+1
| | | | | Do not link uidwap.c into ssh any more. Neuters UsePrivilegedPort, which will be marked as deprecated shortly. ok markus@ djm@
* Pass (char *)NULL rather than (char *)0 to execl and execlp.mmcc2015-12-111-2/+2
| | | | ok dtucker@
* convert memset of potentially-private data to explicit_bzero()djm2014-02-021-4/+4
|
* bye, bye xfree(); ok markus@djm2013-05-171-2/+2
|
* fix ControlMaster=ask regressiondjm2010-12-151-11/+16
| | | | | | reset SIGCHLD handler before fork (and restore it after) so we don't miss the the askpass child's exit status. Correct test for exit status/signal to account for waitpid() failure; with claudio@ ok claudio@ markus@
* almost entirely get rid of the culture of ".h files that include .h files"deraadt2006-08-031-3/+1
| | | | | ok djm, sort of ok stevesk makes the pain stop in one easy step
* move #include <stdio.h> out of includes.hstevesk2006-08-011-1/+2
|
* move #include <stdlib.h> out of includes.hstevesk2006-07-261-1/+2
|
* move #include <string.h> out of includes.hstevesk2006-07-221-1/+2
|
* move #include <unistd.h> out of includes.hstevesk2006-07-171-1/+2
|
* move #include <errno.h> out of includes.h; ok markus@stevesk2006-07-111-1/+2
|
* move #include <stdarg.h> out of includes.h; ok markus@stevesk2006-07-101-1/+2
|
* move #include <fcntl.h> out of includes.hstevesk2006-07-091-1/+2
|
* do not set the gid, noted by solar; ok djmmarkus2006-06-081-2/+2
|
* replace remaining setuid() calls with permanently_set_uid() andmarkus2006-06-061-3/+3
| | | | check seteuid() return values; report Marcus Meissner; ok dtucker djm
* Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatdjm2006-03-251-0/+1
| | | | Theo nuked - our scripts to sync -portable need them in the files
* RCSID() can diederaadt2006-03-191-1/+0
|
* move #include <sys/wait.h> out of includes.h; ok markus@stevesk2006-02-101-1/+4
|
* move #include <paths.h> out of includes.h; ok markus@stevesk2006-02-081-1/+2
|
* missing {}markus2005-05-021-2/+3
|
* Add debug message if read_passphrase can't open /dev/tty; bz #471; ok djm@dtucker2005-04-231-2/+6
|
* factor out common permission-asking code to separate function; ok markus@djm2004-10-291-1/+27
|
* Add option for confirmation (ControlMaster=ask) via ssh-askpass before openingdjm2004-06-171-2/+7
| | | | shared connections; ok markus@
* kill a tiny header; ok deraadt@djm2004-05-081-2/+2
|
* ssh-add -c, prompt user for confirmation (using ssh-askpass) whenmarkus2003-01-231-4/+12
| | | | private agent key is used; with djm@; test by dugsong@, djm@; ok deraadt@
* client side support for PASSWD_CHANGEREQmarkus2002-03-261-2/+5
| | | | based on work by johan.andersson@appgate.com; ok provos@
* readpass.c is not longer from UCB, since we now use readpassphrase(3)markus2002-02-131-21/+12
|
* use _PATH_TTYmarkus2002-01-111-2/+2
|
* Avoid interruptable passphrase read; ok markus@djm2001-12-211-6/+15
|
* don't strdup too much data; from gotoh@taiyo.co.jp; ok millert.markus2001-11-081-6/+5
|
* delete spurious #includes; ok deraadt@ markus@stevesk2001-07-141-2/+1
|
* don't panic if fork or pipe fail (just return an empty passwd).markus2001-07-101-5/+9
|
* do not return NULL, use "" instead.markus2001-07-021-2/+2
|
* switch to readpassphrase(3)markus2001-06-241-16/+19
| | | | 2.7/8-stable needs readpassphrase.[ch] from libc
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.