search for: process_config_lin

Is this a misuse of strtok() in OpenSSH-2.1.1p2? readconf.c:process_config_line() calls strtok() to parse config lines. When it finds oProtocol it calls compat.c:proto_spec() which in turns uses strtok(). However on return of proto_spec(), process_config_line() calls strtok() once more to (quoting from the source code) /* Check that there is no garbage at end of line. */...

....c 7 Nov 2001 01:18:31 -0000 1.1.1.2 +++ readconf.c 8 Feb 2002 08:04:10 -0000 @@ -720,8 +720,9 @@ default: linenum = 0; while (fgets(line, sizeof(line), f)) { /* Update line number counter. */ + const char *hostname = (options->hostname)? options->hostname: host; linenum++; - if (process_config_line(options, host, line, filename, linenum, &active) != 0) + if (process_config_line(options, hostname, line, filename, linenum, &active) != 0) bad_options++; } fclose(f); Is this behaviour acceptable? --- Regards, Shun-ichi Goto <gotoh at taiyo.co.jp> R&D Group, TA...

...imb/.ssh/identity type 0 debug1: identity file /home/jimb/.ssh/id_rsa type -1 /bin/sh: line 1: exec: none: not found debug1: identity file /home/jimb/.ssh/id_dsa type 2 ssh_exchange_identification: Connection closed by remote host debug1: Calling cleanup 0x805f31c(0x0) $ The problem seems to be in process_config_line: on entry, 'line' contains a terminating newline: $ gdb ./ssh GNU gdb 2003-04-17-cvs Copyright 2003 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Typ...

On Mon, 30 Mar 2015 09:19:02 +1100 (AEDT) Damien Miller <djm at mindrot.org> wrote: > What version of OpenSSH is this? 6.8 portable on Linux. > Also, when reporting fuzzer-derived problems it really helps to > include the test-case. The "test case" is a one byte file containing a zero byte. But here it is :-) -- Hanno B?ck http://hboeck.de/ mail/jabber: hanno at

...is this? > > > > 6.8 portable on Linux. > > That's strange - the line numbers in the valgrind stack trace don't > match. E.g. > > ==5578== at 0x4C2CFCA: __GI_strchr (in > /usr/lib64/valgrind/vgpreload_memcheck-amd64-linux.so) > ==5578== by 0x117B6B: process_config_line (readconf.c:785) > ==5578== by 0x119DED: read_config_file (readconf.c:1633) reproduced; the line numbers were wrong. diff --git a/readconf.c b/readconf.c index 42a2961..5130407 100644 --- a/readconf.c +++ b/readconf.c @@ -763,7 +763,9 @@ process_config_line(Options *options, struct passwd...

https://bugzilla.mindrot.org/show_bug.cgi?id=1967 Bug #: 1967 Summary: Potential memory leak Classification: Unclassified Product: Portable OpenSSH Version: 5.9p1 Platform: All OS/Version: All Status: NEW Severity: normal Priority: P2 Component: ssh AssignedTo: unassigned-bugs at

...Keywords: patch Severity: minor Priority: P2 Component: Miscellaneous AssignedTo: bitbucket at mindrot.org ReportedBy: dtucker at zip.com.au Blocks: 1353 Recent versions of gcc emit a the following warnings: readconf.c: In function 'process_config_line': readconf.c:695: warning: dereferencing type-punned pointer will break strict-aliasing rules servconf.c: In function 'process_server_config_line': servconf.c:979: warning: dereferencing type-punned pointer will break strict-aliasing rules servconf.c:990: warning: dereferencing type-pu...

...normal Priority: P2 Component: ssh AssignedTo: openssh-unix-dev at mindrot.org ReportedBy: spaceacademy at hotmail.com If I modify my config to change Identityfile to something like: Identityfile /cygdrive/c/documents and settings/user/my documents/.ssh/id_rsa process_config_line() of readconf.c just calls strdelim() once so the path will be truncated at the first space. ssh fails with the error that there is garbage at the end of this line. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

...+++ readconf.c 30 Sep 2002 19:00:22 -0000 @@ -724,6 +724,19 @@ if (bad_options > 0) fatal("%s: terminating, %d bad configuration options", filename, bad_options); + + /* + * If proxy_command is set to 'none' (actually ' none' due to the way + * the code in process_config_line works), unset it. This allows for + * excluding certain hosts from using the proxy command while having it + * enabled by default (i.e. for 'Host *') + */ + if (options->proxy_command != NULL) { + if (strcmp(options->proxy_command, " none") == 0) { + xfree(options-&gt...

On 01/06/15 22:17, Tom G. Christensen wrote: > On sparc-sun-solaris2.6 and sparc-sun-solaris2.7 the testsuite fails: > run test cfgparse.sh ... > reparse minimal config > reparse regress config > listenaddress order > bad addr or host: ::1 (no address associated with name) > listenaddress order 1 > bad addr or host: ::1 (no address associated with name) > listenaddress

....2.3-L/opt/sparc-linux/sparc-linux/sys-include/ -lssh -lopenbsd-compat -lresolv -lcrypto -lutil -lz -lnsl -ldl -lcrypt /opt/sparc-linux/bin/sparc-linux-ld.real: AVERTISSEMENT: ne peut trouver le symbole d'entr?e _start; utilise par d?faut 0000000000012200 readconf.o(.text+0x1014): In function `process_config_line': /usr/src/SparcV8Linux/openssh-4.6p1/readconf.c:527: undefined reference to `__muldi3' readconf.o(.text+0x1028):/usr/src/SparcV8Linux/openssh-4.6p1/readconf.c:529: undefined reference to `__divdi3' ./libssh.a(packet.o)(.text+0xab4): In function `set_newkeys': /usr/src/SparcV8Linux...

...c struct { ... keywords[] = ", add near the end of the keywords[] array: - in initialize_options(), initialize the display_comment_str option to -1. - in fill_default_options(), if the display_comment_str option hasn't been set (-1) then set it to 0 ("no"). - in process_config_line() just before the 'default' case, add a case to process the oDisplayCommentStr option. diff: 118c118,119 < oClearAllForwardings, oNoHostAuthenticationForLocalhost --- > oClearAllForwardings, oNoHostAuthenticationForLocalhost, > oDisplayCommentStr 189a191 &g...

...oglevel", oLogLevel }, + { "prngcommandfile", oPrngCommandFile }, { NULL, 0 } }; @@ -583,6 +586,10 @@ *intptr = value; break; + case oPrngCommandFile: + charptr = &ssh_prng_command_file; /* globally def in ssh.h */ + goto parse_string; + default: fatal("process_config_line: Unimplemented opcode %d", opcode); } @@ -788,6 +795,8 @@ options->user_hostfile2 = SSH_USER_HOSTFILE2; if (options->log_level == (LogLevel) - 1) options->log_level = SYSLOG_LEVEL_INFO; + if (ssh_prng_command_file == NULL) + ssh_prng_command_file = xstrdup(SS...

These patches implement a new mux client request to list the currently opened TCP forwardings. It also removes some todos regarding keeping the list of forwardings in the options up-to-date. Bert Wesarg (6): attach the forwarding type to struct Forward merge local and remote forward lists generate unique ids for forwardings to be used for identification remove closed forwardings from

This patch series consists of minor fixes and cleanups I made during update to openssh V_4_6 branch. openssh/auth-pam.c | 9 ++++----- openssh/auth2.c | 2 -- openssh/readconf.c | 7 ++++--- openssh/servconf.c | 14 ++++++++------ openssh/sftp-server.c | 9 ++++++--- openssh/sshd.c | 2 +- 6 files changed, 23 insertions(+), 20 deletions(-) -- ldv

On Thu, 25 Jun 2015, Michael Felt wrote: > Just running a standard make, and then a make install to a packaging > directory. It seems to be complaining about missing keys - not sure yet if > this is a show stopper For packaging you want the install-nokeys rule not install. -- Tim Rice Multitalents tim at multitalents.net

I'd like a feature whereby ssh puts itself in the background after the first successful X11 (or other port) forwarding. The reason for this is simple: error handling. If the application fails to open the X display and exits, then the client can still exit with the application's exit code. But if the application opens the X display successfully, then it can just display any errors by

...o sshconnect.o sshconnect1.o sshconnect2.o -L. -Lopenbsd-compat/ -L/usr/local/ssl/lib -lssh -lopenbsd-compat -lcrypto -lz collect2: ld returned 1 exit status readconf.o: In function `parse_token': /openssh-3.8p1/readconf.c(263): undefined reference to `strcasecmp' readconf.o: In function `process_config_line': /openssh-3.8p1/readconf.c(723): undefined reference to `strcasecmp' /openssh-3.8p1/readconf.c(725): undefined reference to `strcasecmp' /openssh-3.8p1/readconf.c(727): undefined reference to `strcasecmp' sshconnect.o: In function `timeout_connect': /openssh-3.8p1/sshconnect.c...

Hi, Just a usecase that I'm sure has been covered before but just in case its not an openssh solution would be very helpful. I was trying to install software on a server that was firewalled so no outbound http connections would work. I was also tunnelling via another server. Outbound ssh connections also were a convenient option. What would have been nice would be a remote version of

...ds > 0) { + xfree(options->local_env_mods); + options->num_local_env_mods = 0; + options->local_env_mods = NULL; + } +} + +static int +parse_env_mod(EnvMod *mod, const char *modspec); + +/* * Returns the number of the token pointed to by cp or oBadOption. */ @@ -359,6 +399,7 @@ process_config_line(Options *options, const char *host, long long orig, val64; size_t len; Forward fwd; + EnvMod mod; /* Strip trailing whitespace */ for (len = strlen(line) - 1; len > 0; len--) { @@ -997,6 +1038,20 @@ parse_int: intptr = &options->use_roaming; goto parse_flag; + case oL...