summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/channels.h
AgeCommit message (Collapse)Author
2006-08-03almost entirely get rid of the culture of ".h files that include .h files"Theo de Raadt
ok djm, sort of ok stevesk makes the pain stop in one easy step
2006-07-21Make PermitOpen take a list of permitted ports and act more like most otherDarren Tucker
keywords (ie the first match is the effective setting). This also makes it easier to override a previously set PermitOpen. ok djm@
2006-07-17Add PermitOpen directive to sshd_config which is equivalent to theDarren Tucker
"permitopen" key option. Allows server admin to allow TCP port forwarding only two specific host/port pairs. Useful when combined with Match. If permitopen is used in both sshd_config and a key option, both must allow a given connection before it will be permitted. Note that users can still use external forwarders such as netcat, so to be those must be controlled too for the limits to be effective. Feedback & ok djm@, man page corrections & ok jmc@.
2006-07-11add ExitOnForwardFailure: terminate the connection if ssh(1)Markus Friedl
cannot set up all requested dynamic, local, and remote port forwardings. ok djm, dtucker, stevesk, jmc
2006-03-25standardise spacing in $OpenBSD$ tags; requested by deraadt@Damien Miller
2005-12-30add channel output filter interface.Reyk Floeter
ok djm@, suggested by markus@
2005-12-12make sure protocol messages for internal channels are ignored.Markus Friedl
allow adjust messages for non-open channels; with and ok djm@
2005-12-06Add support for tun(4) forwarding over OpenSSH, based on an idea andReyk Floeter
initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others
2005-10-10fix regression I introduced in 4.2: X11 forwardings initiated afterDamien Miller
a session has exited (e.g. "(sleep 5; xterm) &") would not start. bz #1086 reported by t8m AT centrum.cz; ok markus@ dtucker@
2005-07-17Fix a number of X11 forwarding channel leaks:Damien Miller
1. Refuse multiple X11 forwarding requests on the same session 2. Clean up all listeners after a single_connection X11 forward, not just the one that made the single connection 3. Destroy X11 listeners when the session owning them goes away testing and ok dtucker@
2005-07-08race when efd gets closed while there is still buffered data:Markus Friedl
change CHANNEL_EFD_OUTPUT_ACTIVE() 1) c->efd must always be valid AND 2a) no EOF has been seen OR 2b) there is buffered data report, initial fix and testing Chuck Cranor
2005-06-16move x11_get_proto from ssh.c to clientloop.c, to make muliplexed xfwd easierDamien Miller
later; ok deraadt@
2005-03-01bz#413: allow optional specification of bind address for port forwardings.Damien Miller
Patch originally by Dan Astorian, but worked on by several people Adds GatewayPorts=clientspecified option on server to allow remote forwards to bind to client-specified ports. ok markus@
2004-10-29fix some window size change bugs for multiplexed connections: windows sizesDamien Miller
were not being updated if they had changed after ~^Z suspends and SIGWINCH was not being processed unless the first connection had requested a tty; ok markus
2004-08-11some signed/unsigned int comparison cleanups; markus@ okAnil Madhavapeddy
2004-06-13implement session multiplexing in the client (the server has supported thisDamien Miller
since 2.0); ok markus@
2004-05-21bz #756: add support for the cancel-tcpip-forward request for the server andDamien Miller
the client (through the ~C commandline). reported by z3p AT twistedmatrix.com; ok markus@
2003-09-23move client only agent code to clientloop.cMarkus Friedl
2002-06-24move channel counter to u_intMarkus Friedl
2002-06-23display, screen, row, col, xpixel, ypixel are u_int; markus okTheo de Raadt
2002-06-10move creation of agent socket to session.c; no need for uidswappingMarkus Friedl
in channel.c.
2002-03-26CHANNEL_EFD_OUTPUT_ACTIVE is false for CHAN_CLOSE_RCVD, tooMarkus Friedl
2002-03-25don't send stderr data after EOF, accept this from older known (broken)Markus Friedl
sshd servers only, fixes http://bugzilla.mindrot.org/show_bug.cgi?id=179
2002-03-04$OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; addKevin Steves
missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c files. ok markus@
2002-02-14increase the SSH v2 window size to 4 packets. comsumes a littleMarkus Friedl
bit more memory for slow receivers but increases througput.
2002-02-05merge channel_request() into channel_request_start()Markus Friedl
2002-02-03generic callbacks are not really used, remove andMarkus Friedl
add a callback for msg of type SSH2_MSG_CHANNEL_OPEN_CONFIRMATION ok djm@
2002-02-03remove unused channel_input_channel_requestMarkus Friedl
2002-01-16wrapper for channel_setup_fwd_listenerMarkus Friedl
2002-01-14(c) 2002Markus Friedl
2002-01-14remove function pointers for events, remove chan_init*; ok provos@Markus Friedl
2002-01-13add chan_set_[io]state(), order states, state is now an u_int,Markus Friedl
simplifies debugging messages; ok provos@
2001-12-28remove plen from the dispatch fn. it's no longer used.Markus Friedl
2001-12-20Conformance fix: we should send failing packet sequence number whenDamien Miller
responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by yakk@yakk.dot.net; ok markus@
2001-12-20setup x11 listen socket for just one connect if the client requests so.Markus Friedl
(v2 only, but the openssh client does not support this feature).
2001-11-29sshd X11 fake server will now listen on localhost by default:Kevin Steves
$ echo $DISPLAY localhost:12.0 $ netstat -an|grep 6012 tcp 0 0 127.0.0.1.6012 *.* LISTEN tcp6 0 0 ::1.6012 *.* LISTEN sshd_config gatewayports=yes can be used to revert back to the old behavior. will control this with another option later. ok markus@
2001-11-29remove dead function prototype; ok markus@Kevin Steves
2001-11-07crank c->path to 256 so they can hold a full hostname; dwd@bell-labs.comMarkus Friedl
2001-10-10try to keep channels open until an exit-status message is sent.Markus Friedl
don't kill the login shells if the shells stdin/out/err is closed. this should now work: ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
2001-10-09simplify session close: no more delayed session_close, no more blocking ↵Markus Friedl
wait() calls.
2001-10-07avoid possible FD_ISSET overflow for channels establishedMarkus Friedl
during channnel_after_select() (used for dynamic channels).
2001-10-01remove ugliness; vp@drexel.edu via angelosMarkus Friedl
2001-09-17try to fix agent-forwarding-backconnection-bug, as seen on HPUX, for example;Markus Friedl
with Lutz.Jaenicke@aet.TU-Cottbus.DE,
2001-07-17keep track of both maxfd and the size of the malloc'ed fdsets.Markus Friedl
update maxfd if maxfd gets closed.
2001-07-02improve cleanup/exit logic in ssh2:Markus Friedl
stop listening to channels, detach channel users (e.g. sessions). wait for children (i.e. dying sessions), send exit messages, cleanup all channels.
2001-06-30adress -> address; ok markus@Kevin Steves
2001-06-26remove comments from .h, since they are cut&paste from the .c filesMarkus Friedl
and out of sync
2001-06-26prototype pedant. not very creative...Jun-ichiro itojun Hagino
- () -> (void) - no variable names
2001-06-25update copyright for 2001Markus Friedl
2001-06-20move from channel_stop_listening to channel_free_all,Markus Friedl
call channel_free_all before calling waitpid() in serverloop. fixes the utmp handling; report from Lutz.Jaenicke@aet.TU-Cottbus.DE
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-16 16:50:44 +0000