summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/ssh.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* make ssh(1)'s ConnectTimeout option apply to both the TCP connection anddjm2007-09-041-4/+11
| | | | | | | | SSH banner exchange (previously it just covered the TCP connection). This allows callers of ssh(1) to better detect and deal with stuck servers that accept a TCP connection but don't progress the protocol, and also makes ConnectTimeout useful for connections via a ProxyCommand; feedback and "looks ok" markus@
* make file descriptor passing code return an error rather than call fatal()djm2007-09-041-4/+5
| | | | | when it encounters problems, and use this to make session multiplexing masters survive slaves failing to pass all stdio FDs; ok markus@
* bz#1232: ensure that any specified LocalCommand is executed after thedjm2007-08-071-24/+15
| | | | | | tunnel device is opened. Also, make failures to open a tunnel device fatal when ExitOnForwardFailure is active. Reported by h.goebel AT goebel-consult.de; ok dtucker markus reyk deraadt
* when waiting for the multiplex exit status, read until the master enddjm2007-06-141-13/+21
| | | | | writes an entire int of data *and* closes the client_fd; fixes mux regression spotted by dtucker, ok dtucker@
* handle EINTR when waiting for mux exit status properlydjm2007-06-141-2/+5
|
* improved exit message from multiplex slave sessions; bz #1262djm2007-06-121-2/+3
| | | | reported by alexandre.nunes AT gmail.com; ok dtucker@
* Add "-K" flag for ssh to set GSSAPIAuthentication=yes anddjm2007-06-121-3/+7
| | | | | | GSSAPIDelegateCredentials=yes. This is symmetric with -k (disable GSSAPI) and is useful for hosts with /home on Kerberised NFS; bz #1312 patch from Markus.Kuhn AT cl.cam.ac.uk; ok dtucker@ markus@
* fix slave exit value when a control master goes away without passing thedjm2007-06-121-10/+13
| | | | | full exit status by ensuring that the slave reads a full int. bz#1261 reported by frekko AT gmail.com; ok markus@ dtucker@
* spacesstevesk2007-01-031-2/+2
|
* sys/resource.h needs sys/time.h; prompted by brad@djm2006-10-061-1/+2
|
* almost entirely get rid of the culture of ".h files that include .h files"deraadt2006-08-031-6/+4
| | | | | ok djm, sort of ok stevesk makes the pain stop in one easy step
* clean extra spacesstevesk2006-08-011-2/+2
|
* move #include <stdio.h> out of includes.hstevesk2006-08-011-1/+2
|
* move #include <stdlib.h> out of includes.hstevesk2006-07-261-1/+2
|
* move #include <string.h> out of includes.hstevesk2006-07-221-1/+2
|
* move #include <unistd.h> out of includes.hstevesk2006-07-171-1/+2
|
* move #include <stddef.h> out of includes.hstevesk2006-07-121-1/+2
|
* move #include <netdb.h> out of includes.h; ok djm@stevesk2006-07-121-1/+2
|
* need <errno.h> here also (it's also included in <openssl/err.h>)stevesk2006-07-111-1/+2
|
* cast asterisk field precision argument to int to remove warning;stevesk2006-07-111-2/+2
| | | | ok markus@
* add ExitOnForwardFailure: terminate the connection if ssh(1)markus2006-07-111-6/+21
| | | | | cannot set up all requested dynamic, local, and remote port forwardings. ok djm, dtucker, stevesk, jmc
* Only copy the part of environment variable that we actually use. Preventsdtucker2006-07-111-7/+6
| | | | | ssh bailing when SendEnv is used and an environment variable with a really long value exists. ok djm@
* move #include <fcntl.h> out of includes.hstevesk2006-07-091-1/+2
|
* move #include <sys/socket.h> out of includes.hstevesk2006-07-081-1/+2
|
* move #include <pwd.h> out of includes.h; ok markus@stevesk2006-07-061-1/+2
|
* move #include "version.h" out of includes.h; ok markus@stevesk2006-07-031-1/+2
|
* more details and clarity for tun(4) device forwarding; ok and helpstevesk2006-07-021-2/+2
| | | | jmc@
* Prevent ssh from trying to open private keys with bad permissions more thandtucker2006-04-251-4/+4
| | | | | once or prompting for their passphrases (which it subsequently ignores anyway), similar to a previous change in ssh-add. bz #1186, ok djm@
* add percent escape chars to the IdentityFile option, bz #1159 baseddjm2006-03-301-6/+16
| | | | on a patch by imaging AT math.ualberta.ca; feedback and ok dtucker@
* spacingderaadt2006-03-281-2/+2
|
* Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatdjm2006-03-251-0/+1
| | | | Theo nuked - our scripts to sync -portable need them in the files
* introduce xcalloc() and xasprintf() failure-checked allocations functionsdjm2006-03-251-2/+3
| | | | | | | | | | and use them throughout openssh xcalloc is particularly important because malloc(nmemb * size) is a dangerous idiom (subject to integer overflow) and it is time for it to die feedback and ok deraadt@
* be strict with tolower() castingderaadt2006-03-201-1/+1
|
* annoying spacing fixes getting in the way of real diffsderaadt2006-03-201-2/+2
|
* sprinkle u_int throughout pty subsystem, ok markusderaadt2006-03-201-4/+4
|
* spacingderaadt2006-03-191-14/+14
|
* RCSID() can diederaadt2006-03-191-1/+0
|
* knf nitdjm2006-03-121-2/+2
|
* move #include <ctype.h> out of includes.h; ok djm@stevesk2006-02-221-1/+2
|
* move #include <sys/stat.h> out of includes.h; ok markus@stevesk2006-02-201-1/+2
|
* move #include <signal.h> out of includes.h; ok markus@stevesk2006-02-201-1/+2
|
* move #include <sys/un.h> out of includes.h; ok djm@stevesk2006-02-201-1/+3
|
* add a %l expansion code to the ControlPath, which is filled in with thedjm2006-02-121-2/+6
| | | | | local hostname at runtime. Requested by henning@ to avoid some problems with /home on NFS; ok dtucker@
* move #include <sys/ioctl.h> out of includes.h; ok markus@stevesk2006-02-101-1/+2
|
* move #include <sys/resource.h> out of includes.h; ok markus@stevesk2006-02-081-1/+3
|
* move #include <paths.h> out of includes.h; ok markus@stevesk2006-02-081-1/+3
|
* exit(255) on error to match description in ssh(1); bz #1137; ok deraadt@dtucker2005-12-201-14/+14
|
* two changes to the new ssh tunnel support. this breaks compatibilityreyk2005-12-081-5/+8
| | | | | | | | | | | | with the initial commit but is required for a portable approach. - make the tunnel id u_int and platform friendly, use predefined types. - support configuration of layer 2 (ethernet) or layer 3 (point-to-point, default) modes. configuration is done using the Tunnel (yes|point-to-point|ethernet|no) option is ssh_config(5) and restricted by the PermitTunnel (yes|point-to-point|ethernet|no) option in sshd_config(5). ok djm@, man page bits by jmc@
* Add support for tun(4) forwarding over OpenSSH, based on an idea andreyk2005-12-061-3/+36
| | | | | | | | | | | | initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others
* no need to escape single quotes in comments, no binary changedjm2005-10-301-3/+3
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.