freebsd-nq/crypto/openssh
Jacques Vidrine b33edd3956 Bug fix: When the client connects to a server and Kerberos
authentication is  enabled, the  client effectively ignores  any error
from krb5_rd_rep due to a missing branch.

In  theory  this could  result  in  an  ssh  client using  Kerberos  5
authentication accepting  a spoofed  AP-REP.  I doubt  this is  a real
possiblity, however, because  the AP-REP is passed from  the server to
the client via the SSH  encrypted channel.  Any tampering should cause
the decryption or MAC to fail.

Approved by:	green
MFC after:	1 week
2001-07-13 18:12:13 +00:00
..
lib Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
pam_ssh Forgot to remove the old line in the last commit. 2000-12-05 02:41:01 +00:00
scp Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-server Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-add Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-agent Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-keygen Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-keyscan Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sshd Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
atomicio.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
atomicio.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
auth1.c (do_authloop): handle !KRB4 && KRB5 2001-06-16 07:44:17 +00:00
auth2-chall.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
auth2.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth-chall.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth-krb4.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth-krb5.c Enable Kerberos 5 support in sshd again. 2001-06-12 03:43:47 +00:00
auth-options.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
auth-options.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
auth-pam.c Fix some of the handling in the pam module, don't unregister things 2001-05-09 03:40:37 +00:00
auth-pam.h Finish committing _more_ somehow-uncommitted OpenSSH 2.9 updates. 2001-05-05 01:12:45 +00:00
auth-passwd.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth-rh-rsa.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth-rhosts.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
auth-rsa.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
auth.h Unbreak OpenSSH for the KRB5-and-no-KRB4 case. Asking for KRB5 does 2001-06-15 08:12:31 +00:00
authfd.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
authfd.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
authfile.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
authfile.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
bufaux.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
bufaux.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
buffer.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
buffer.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
canohost.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
canohost.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
channels.c Back out the last change which is probably actually a red herring. Argh! 2001-06-26 15:15:22 +00:00
channels.h Switch to the user's uid before attempting to unlink the auth forwarding 2001-06-08 22:22:09 +00:00
cipher.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
cipher.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
cli.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
cli.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
clientloop.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
clientloop.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
compat.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
compat.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
compress.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
compress.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
crc32.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
crc32.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
deattack.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
deattack.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
dh.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
dh.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
dispatch.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
dispatch.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
getput.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
groupaccess.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
groupaccess.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
hostfile.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
hostfile.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
includes.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
kex.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
kex.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
kexdh.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
kexgex.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
key.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
key.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
LICENCE Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
log.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
log.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
mac.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
mac.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
Makefile Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
Makefile.inc Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
match.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
match.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
misc.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
misc.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
mpaux.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
mpaux.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
myproposal.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
nchan2.ms Initial import of OpenSSH v2.1. 2000-05-15 04:37:24 +00:00
nchan.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
nchan.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
nchan.ms Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
OVERVIEW
packet.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
packet.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
pathnames.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
radix.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
radix.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
readconf.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
readconf.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
README Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
readpass.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
readpass.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
RFC.nroff Import of OpenSSH 2.3.0 (virgin OpenBSD source release). 2000-12-05 02:20:19 +00:00
rijndael.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
rijndael.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
rsa.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
rsa.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
scp-common.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
scp-common.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
scp.1 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
scp.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
servconf.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
servconf.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
serverloop.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
serverloop.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
session.c Switch to the user's uid before attempting to unlink the auth forwarding 2001-06-08 22:22:09 +00:00
session.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-client.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-client.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-common.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-common.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-glob.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-glob.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-int.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-int.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-server.8 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp-server.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp.1 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sftp.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh1.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh2.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh_config Fix $FreeBSD$ style committer messed up in rev 1.7 for some reason. 2001-05-24 07:22:08 +00:00
ssh-add.1 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-add.c Also add a colon to "Bad passphrase, please try again ". 2001-06-29 16:43:13 +00:00
ssh-agent.1 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-agent.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
ssh-dss.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-dss.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-keygen.1 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-keygen.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-keyscan.1 Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-keyscan.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-rsa.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh-rsa.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ssh.1 mdoc(7) police: finished fixing conflicts in revision 1.18. 2001-05-14 18:13:34 +00:00
ssh.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
ssh.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
sshconnect1.c Fix an incorrect conflict resolution which prevented TISAuthentication 2001-07-07 14:19:53 +00:00
sshconnect2.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
sshconnect.c Bug fix: When the client connects to a server and Kerberos 2001-07-13 18:12:13 +00:00
sshconnect.h Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
sshd_config Restore the RSA host key to /etc/ssh/ssh_host_key. 2001-05-18 18:10:02 +00:00
sshd.8 Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
sshd.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
sshlogin.c If a host would exceed 16 characters in the utmp entry, record only 2001-05-15 01:50:40 +00:00
sshlogin.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sshpty.c Fix conflicts for OpenSSH 2.9. 2001-05-04 04:14:23 +00:00
sshpty.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sshtty.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
sshtty.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
tildexpand.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
tildexpand.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ttymodes.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
ttymodes.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
uidswap.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
uidswap.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
uuencode.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
uuencode.h Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
version.c Add a "VersionAddendum" configuration setting for sshd which allows 2001-05-03 00:29:28 +00:00
version.h Switch to the user's uid before attempting to unlink the auth forwarding 2001-06-08 22:22:09 +00:00
xmalloc.c Say "hi" to the latest in the OpenSSH series, version 2.9! 2001-05-04 03:57:05 +00:00
xmalloc.h Initial import of OpenSSH post-2.2.0 snapshot dated 2000-09-09 2000-09-10 08:31:17 +00:00

This release of OpenSSH is for OpenBSD systems only.

Please read
        http://www.openssh.com/portable.html
if you want to install OpenSSH on other operating systems.

To extract and install this release on your OpenBSD system use:

      # cd /usr/src/usr.bin
      # tar xvfz .../openssh-x.y.tgz
      # cd ssh
      # make obj
      # make cleandir
      # make depend
      # make
      # make install
      # cp ssh_config sshd_config /etc

OpenSSH is a derivative of the original and free ssh 1.2.12 release
by Tatu Ylonen.  Aaron Campbell, Bob Beck, Markus Friedl, Niels
Provos, Theo de Raadt and Dug Song removed many bugs, re-added newer
features and created OpenSSH.  Markus Friedl contributed the support
for SSH protocol versions 1.5 and 2.0.

See http://www.openssh.com/ for more information.