summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/ssh.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* more details and clarity for tun(4) device forwarding; ok and helpstevesk2006-07-021-2/+2
| | | | jmc@
* Prevent ssh from trying to open private keys with bad permissions more thandtucker2006-04-251-4/+4
| | | | | once or prompting for their passphrases (which it subsequently ignores anyway), similar to a previous change in ssh-add. bz #1186, ok djm@
* add percent escape chars to the IdentityFile option, bz #1159 baseddjm2006-03-301-6/+16
| | | | on a patch by imaging AT math.ualberta.ca; feedback and ok dtucker@
* spacingderaadt2006-03-281-2/+2
|
* Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatdjm2006-03-251-0/+1
| | | | Theo nuked - our scripts to sync -portable need them in the files
* introduce xcalloc() and xasprintf() failure-checked allocations functionsdjm2006-03-251-2/+3
| | | | | | | | | | and use them throughout openssh xcalloc is particularly important because malloc(nmemb * size) is a dangerous idiom (subject to integer overflow) and it is time for it to die feedback and ok deraadt@
* be strict with tolower() castingderaadt2006-03-201-1/+1
|
* annoying spacing fixes getting in the way of real diffsderaadt2006-03-201-2/+2
|
* sprinkle u_int throughout pty subsystem, ok markusderaadt2006-03-201-4/+4
|
* spacingderaadt2006-03-191-14/+14
|
* RCSID() can diederaadt2006-03-191-1/+0
|
* knf nitdjm2006-03-121-2/+2
|
* move #include <ctype.h> out of includes.h; ok djm@stevesk2006-02-221-1/+2
|
* move #include <sys/stat.h> out of includes.h; ok markus@stevesk2006-02-201-1/+2
|
* move #include <signal.h> out of includes.h; ok markus@stevesk2006-02-201-1/+2
|
* move #include <sys/un.h> out of includes.h; ok djm@stevesk2006-02-201-1/+3
|
* add a %l expansion code to the ControlPath, which is filled in with thedjm2006-02-121-2/+6
| | | | | local hostname at runtime. Requested by henning@ to avoid some problems with /home on NFS; ok dtucker@
* move #include <sys/ioctl.h> out of includes.h; ok markus@stevesk2006-02-101-1/+2
|
* move #include <sys/resource.h> out of includes.h; ok markus@stevesk2006-02-081-1/+3
|
* move #include <paths.h> out of includes.h; ok markus@stevesk2006-02-081-1/+3
|
* exit(255) on error to match description in ssh(1); bz #1137; ok deraadt@dtucker2005-12-201-14/+14
|
* two changes to the new ssh tunnel support. this breaks compatibilityreyk2005-12-081-5/+8
| | | | | | | | | | | | with the initial commit but is required for a portable approach. - make the tunnel id u_int and platform friendly, use predefined types. - support configuration of layer 2 (ethernet) or layer 3 (point-to-point, default) modes. configuration is done using the Tunnel (yes|point-to-point|ethernet|no) option is ssh_config(5) and restricted by the PermitTunnel (yes|point-to-point|ethernet|no) option in sshd_config(5). ok djm@, man page bits by jmc@
* Add support for tun(4) forwarding over OpenSSH, based on an idea andreyk2005-12-061-3/+36
| | | | | | | | | | | | initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others
* no need to escape single quotes in comments, no binary changedjm2005-10-301-3/+3
|
* fix misleading debug message; ok dtucker@djm2005-10-301-3/+2
|
* no trailing "\n" for log functions; ok djm@stevesk2005-10-141-4/+4
|
* update -D usage here too;jmc2005-09-191-2/+2
|
* ensure that stdio fds are attached; ok deraadt@djm2005-09-131-1/+4
|
* fix -D listen_host initialisation, so it picks up gateway_ports settingdjm2005-07-301-2/+2
| | | | correctly
* spacingdjm2005-07-161-6/+6
|
* implement support for X11 and agent forwarding over multiplex slavedjm2005-07-041-8/+11
| | | | | | | | connections. Because of protocol limitations, the slave connections inherit the master's DISPLAY and SSH_AUTH_SOCK rather than distinctly forwarding their own. ok dtucker@ "put it in" deraadt@
* do the default port filling code a few lines earlier, so it really does fix %pdjm2005-06-251-7/+7
|
* allow ControlPath=none, patch from dwmw2 AT infradead.org; ok dtucker@djm2005-06-181-1/+4
|
* Fix ControlPath's %p expanding to "0" for a default port,djm2005-06-171-1/+8
| | | | spotted dwmw2 AT infradead.org; ok markus@
* move x11_get_proto from ssh.c to clientloop.c, to make muliplexed xfwd easierdjm2005-06-161-112/+14
| | | | later; ok deraadt@
* add ControlMaster=auto/autoask options to support opportunistic multiplexing;djm2005-06-081-8/+24
| | | | tested avsm@ and jakob@, ok markus@
* introduce a generic %foo expansion function. replace existing % expansion anddjm2005-06-061-3/+7
| | | | add expansion to ControlPath; ok markus@
* fix -O for cases where no ControlPath has been specified or socket atdjm2005-05-271-3/+12
| | | | ControlPath is not contactable; spotted by and ok avsm@
* report real errors on fallback from ControlMaster=no to normal connectdjm2005-05-101-2/+7
|
* print nice error message for EADDRINUSE as welldjm2005-05-101-2/+2
|
* fallback gracefully if client cannot connect to ControlPath. ok djm@jakob2005-04-261-14/+17
|
* don't allocate a pty when -n flag (/dev/null stdin) is set, patch fromdjm2005-04-211-2/+2
| | | | ignasi.roca AT fujitsu-siemens.com (bz #829); ok dtucker@
* Fix debug call for port forwards; patch from pete at seebeyond.com, ok djm@dtucker2005-04-061-1/+3
|
* spacingderaadt2005-03-101-4/+4
|
* sync usage() w/ man SYNOPSIS;jmc2005-03-011-4/+4
| | | | ok markus@
* bz#413: allow optional specification of bind address for port forwardings.djm2005-03-011-45/+65
| | | | | | | | Patch originally by Dan Astorian, but worked on by several people Adds GatewayPorts=clientspecified option on server to allow remote forwards to bind to client-specified ports. ok markus@
* Better diagnostic if an identity file is not accesible. ok markus@ djm@otto2005-02-161-2/+3
|
* usage():jmc2004-11-071-4/+5
| | | | | | - add -O - sync -S w/ manpage - remove -h
* add basic control of a running multiplex master connection; including thedjm2004-11-071-14/+52
| | | | ability to check its status and request it to exit; ok markus@
* correctly honour -n in multiplex client mode; spotted by sturm@ ok markus@djm2004-09-231-2/+11
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.