summaryrefslogtreecommitdiffstats
path: root/entropy.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* unexpandBen Lindstrom2002-06-091-2/+2
|
* [entropy.c.] Portability fix for SCO Unix 3.2v4.x (SCO OSR 3.0).Tim Rice2002-04-211-4/+5
| | | | | entropy.c needs seteuid(getuid()) for the setuid(original_uid) to succeed. Patch by gert@greenie.muc.de. This fixes one part of Bug 208
* - (djm) Avoid SIGCHLD breakage when run from rsync. Fix fromDamien Miller2002-04-181-1/+4
| | | | Sturle Sunde <sturle.sunde@usit.uio.no>
* - (stevesk) entropy.c: typo in debug messageKevin Steves2002-03-111-2/+2
|
* - (djm) autoconf hacking:Damien Miller2002-01-221-3/+12
| | | | | | | | | - We don't support --without-zlib currently, so don't allow it. - Rework cryptographic random number support detection. We now detect whether OpenSSL seeds itself. If it does, then we don't bother with the ssh-rand-helper program. You can force the use of ssh-rand-helper using the --with-rand-helper configure argument - Simplify and clean up ssh-rand-helper configuration
* - (djm) Ignore fix & patchlevel in OpenSSL version check. Patch fromDamien Miller2001-12-231-851/+75
| | | | | | | | | | solar@openwall.com - (djm) Rework entropy code. If the OpenSSL PRNG is has not been internally seeded, execute a subprogram "ssh-rand-helper" to obtain some entropy for us. Rewrite the old in-process entropy collecter as an example ssh-rand-helper. - (djm) Always perform ssh_prng_cmds path lookups in configure, even if we don't end up using ssh_prng_cmds (so we always get a valid file)
* - (djm) Fix interrupted read in entropy gatherer. Spotted by markus@ onDamien Miller2001-08-061-2/+4
| | | | a fast UltraSPARC.
* - (djm) Fix a few warnings the above turned upDamien Miller2001-06-271-3/+3
|
* - (djm) Seed PRNG at startup, rather than waiting for arc4random calls toDamien Miller2001-03-181-10/+16
| | | | do it implicitly.
* - Allow PRNGd entropy collection from localhost TCP socket. ReplaceDamien Miller2001-03-031-23/+52
| | | | | | "--with-egd-pool" configure option with "--with-prngd-socket" and "--with-prngd-port" options. Debugged and improved by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
* avoid warningDamien Miller2001-02-271-3/+3
|
* - (djm) Warning fix on entropy.c saved uid stuff. Patch from Mark MillerDamien Miller2001-02-261-5/+5
| | | | <markm@swoon.net>
* - (djm) fatal() on OpenSSL version mismatchDamien Miller2001-02-261-3/+16
|
* - (djm) Fix up POSIX saved uid support. Report from Mark MillerDamien Miller2001-02-261-1/+5
| | | | | <markm@swoon.net> - (djm) Search for -lcrypt on FreeBSD too
* - (djm) Some systems (SCO3, NeXT) have weird saved uid semantics.Damien Miller2001-02-261-1/+22
| | | | Based on patch from Tim Rice <tim@multitalents.net>
* - (stevesk) entropy.c: typo; should be SIGPIPEKevin Steves2001-02-181-2/+2
|
* - (djm) Move entropy.c over to mysignal()Damien Miller2001-02-181-9/+8
|
* - (djm) Robustify EGD/PRNGd code in face of socket closures. Patch fromDamien Miller2001-02-181-12/+29
| | | | Todd C. Miller <Todd.Miller@courtesan.com>
* - stevesk@cvs.openbsd.org 2001/02/04 08:32:27Kevin Steves2001-02-051-65/+65
| | | | | [many files; did this manually to our top-level source dir] unexpand and remove end-of-line whitespace; ok markus@
* 20010123Ben Lindstrom2001-01-221-2/+3
| | | | | - (bal) regexp.h typo in configure.in. Should have been regex.h - (bal) SSH_USER_DIR to _PATH_SSH_USER_DIR patch by stevesk@
* Hopefully things did not get mixed around too much. It compiles underBen Lindstrom2001-01-221-4/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Linux and works. So that is at least a good sign. =) 20010122 - (bal) OpenBSD Resync - markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus [servconf.c ssh.h sshd.c] only auth-chall.c needs #ifdef SKEY - markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus [auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c packet.c pathname.h readconf.c scp.c servconf.c serverloop.c session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h ssh1.h sshconnect1.c sshd.c ttymodes.c] move ssh1 definitions to ssh1.h, pathnames to pathnames.h - markus@cvs.openbsd.org 2001/01/19 16:48:14 [sshd.8] fix typo; from stevesk@ - markus@cvs.openbsd.org 2001/01/19 16:50:58 [ssh-dss.c] clear and free digest, make consistent with other code (use dlen); from stevesk@ - markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus [auth-options.c auth-options.h auth-rsa.c auth2.c] pass the filename to auth_parse_options() - markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001 [readconf.c] fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com - stevesk@cvs.openbsd.org 2001/01/20 18:20:29 [sshconnect2.c] dh_new_group() does not return NULL. ok markus@ - markus@cvs.openbsd.org 2001/01/20 21:33:42 [ssh-add.c] do not loop forever if askpass does not exist; from andrew@pimlott.ne.mediaone.net - djm@cvs.openbsd.org 2001/01/20 23:00:56 [servconf.c] Check for NULL return from strdelim; ok markus - djm@cvs.openbsd.org 2001/01/20 23:02:07 [readconf.c] KNF; ok markus - jakob@cvs.openbsd.org 2001/01/21 9:00:33 [ssh-keygen.1] remove -R flag; ok markus@ - markus@cvs.openbsd.org 2001/01/21 19:05:40 [atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c bufaux.c bufaux.h buffer.c canahost.c canahost.h channels.c cipher.c cli.c clientloop.c clientloop.h compat.c compress.c deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c key.c key.h log-client.c log-server.c log.c log.h login.c login.h match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h ttysmodes.c uidswap.c xmalloc.c] split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. rename util.[ch] -> misc.[ch] - (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree - (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve conflict when compiling for non-kerb install - (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes on 1/19.
* - (djm) Only write random seed file at exitDamien Miller2001-01-161-7/+2
|
* give up privs when reading seed fileDamien Miller2000-11-251-1/+13
|
* - (djm) Make inability to read/write PRNG seedfile non-fatalDamien Miller2000-10-161-15/+18
|
* - (djm) Clean up. Strip some unnecessary differences with OpenBSD's code,Damien Miller2000-09-291-17/+10
| | | | tidy necessary differences. Use Markus' new debugN() in entropy.c
* - (djm) Add Steve VanDevender's <stevev@darkwing.uoregon.edu> PAMDamien Miller2000-09-161-6/+1
| | | | | password change patch. - (djm) Bring licenses on my stuff in line with OpenBSD's
* - Fixes for SunOS 4.1.4 from Gordon Atwood <gordon@cs.ualberta.ca>Damien Miller2000-07-151-1/+6
| | | | | - Include floatingpoint.h for entropy.c - strerror replacement
* - (djm) Fix pam sprintf fixDamien Miller2000-07-091-40/+49
| | | | | | - (djm) Cleanup entropy collection code a little more. Split initialisation from seeding, perform intialisation immediatly at start, be careful with uids. Based on problem report from Jim Watt <jimw@peisj.pebio.com>
* Fix fixed egd codeDamien Miller2000-06-261-6/+8
|
* - (djm) Make EGD failures non-fatal if OpenSSL's entropy pool is still OKDamien Miller2000-06-261-38/+61
| | | | based on patch from Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
* - (djm) Add summary of configure options to end of ./configure runDamien Miller2000-06-181-6/+13
| | | | | | | | | | | - (djm) Not all systems define RUSAGE_SELF & RUSAGE_CHILDREN. Report from Michael Stone <mstone@cs.loyola.edu> - (djm) rusage is a privileged operation on some Unices (incl. Solaris 2.5.1). Report from Paul D. Smith <pausmith@nortelnetworks.com> - (djm) Avoid PAM failures when running without a TTY. Report from Martin Petrak <petrak@spsknm.schools.sk> - (djm) Include sys/types.h when including netinet/in.h in configure tests. Patch from Jun-ichiro itojun Hagino <itojun@iijlab.net>
* - (djm) Cleanup of entropy.c. Reorganised code, removed second pass throughDamien Miller2000-06-071-123/+134
| | | | | | list of commands (by default). Removed verbose debugging (by default). - (djm) Increased command entropy estimates and default entropy collection timeout
* - Fix EGD read bug by IWAMURO Motonori <iwa@mmp.fujitsu.co.jp>Damien Miller2000-05-311-3/+1
| | | | update credits
* - Avoid WCOREDUMP complation errors for systems that lack itDamien Miller2000-05-171-1/+9
| | | | - Avoid SIGCHLD warnings from entropy commands
* - Fix from Andre Lucas <andre.lucas@dial.pipex.com>Damien Miller2000-05-171-21/+58
| | | | | | | | | | | | - Fixes command line printing segfaults (spotter: Bladt Norbert) - Fixes erroneous printing of debug messages to syslog - Fixes utmp for MacOS X (spotter: Aristedes Maniatis) - Gives useful error message if PRNG initialisation fails - Reduced ssh startup delay - Measures cumulative command time rather than the time between reads after select() - 'fixprogs' perl script to eliminate non-working entropy commands, and optionally run 'ent' to measure command entropy
* - Fix for prng_seed permissions checking from Lutz JaenickeDamien Miller2000-05-111-2/+2
| | | | <Lutz.Jaenicke@aet.TU-Cottbus.DE>
* - Add Andre Lucas' <andre.lucas@dial.pipex.com> patch to read entropyV_2_0_0_BETA1Damien Miller2000-05-021-67/+140
| | | | gathering commands from a text file
* - Irix portability fixes - don't include netinet headers more than onceDamien Miller2000-05-011-1/+3
| | | | - Make sure we don't save PRNG seed more than once
* - Integrate Andre Lucas' <andre.lucas@dial.pipex.com> entropy collectionDamien Miller2000-04-301-80/+304
| | | | | | | | | | patch. - Adds timeout to entropy collection - Disables slow entropy sources - Load and save seed file - Changed entropy seed code to user per-user seeds only (server seed is saved in root's .ssh directory) - Use atexit() and fatal cleanups to save seed on exit
* - Reduce diff against OpenBSD sourceDamien Miller2000-04-161-9/+3
| | | | | | | - All OpenSSL includes are now unconditionally referenced as openssl/foo.h - Pick up formatting changes - Other minor changed (typecasts, etc) that I missed
* - Avoid some compiler warnings in fake-get*.cDamien Miller2000-04-081-2/+1
| | | | - Add IPTOS macros for systems which lack them
* - Generate manpages before make install not at the end of make allDamien Miller2000-04-041-7/+6
| | | | | - Don't seed the rng quite so often - Always reseed rng when requested
* remove debugging junkV_1_2_3_TEST1Damien Miller2000-04-031-3/+1
|
* - Wrote entropy collection routines for systems that lack /dev/randomDamien Miller2000-04-031-0/+436
and EGD