Commit eff33db9 authored by Niels Möller's avatar Niels Möller

*** empty log message ***

Rev: ChangeLog:1.464
Rev: NEWS:1.91
Rev: src/gateway_commands.c:1.14
Rev: src/nettle/ChangeLog:1.74
parent 61ef7863
2002-03-14 Niels Möller <nisse@cuckoo.hack.org>
* configure.in: Removed check for 8-bit clean m4.
* src/channel.c (do_channels_after_keyexchange): New function.
(init_connection_service): Call connection_after_keyexchange, to
start reading again after a key exchange.
* src/gateway_channel.c (do_send_adjust): Call FLOW_CONTROL_REPORT
only if i > 0.
* src/handshake.c (handshake_command): Call
connection_after_keyexchange.
* src/connection.h (ssh_connection): Renamed established attribute
to keyexchange_done.
* src/connection.c (make_ssh_connection): Deleted the continuation
argument.
(connection_after_keyexchange): New function.
* src/read_data.c (do_read_data_query): Check the connection's
send_kex_only flag.
* src/keyexchange.c (keyexchange_finish): Moved invocation of
connection->established...
* src/connection.c (connection_send_kex_end): ...to here.
* src/resource.c (do_remember_resource): Assert that resource is
non-NULL.
* src/keyexchange.c (send_kexinit): Create a new kexinit struct.
Disable key-expire timer during the key exchange.
(make_kexinit_handler): Deleted init argument, it's now stored
with the connection.
(SESSION_KEY_LIFETIME_CLIENT, SESSION_KEY_LIFETIME_SERVER): New
constants.
(do_handle_newkeys): Install key expire timeout.
(set_reexchange_timeout): New function.
* src/io.c (lsh_oop_register_callout, lsh_oop_cancel_callout):
Added trace call.
* src/handshake.c (handshake_command): Store the make_kexinit
object in the connection's kexinit attribute.
* src/connection.h (ssh_connection): New attribute kexinit, needed
for initiating keyexchange.
* src/algorithms.c (all_crypto_algorithms): Prefer aes256.
(default_crypto_algorithms): Likewise.
* src/Makefile.am.in (EXTRA_PROGRAMS): Added lsh-pam-checkpw.
2002-03-13 Niels Möller <nisse@cuckoo.hack.org>
* src/keyexchange.c (send_kexinit): Renamed from
initiate_keyexchange. Updated callers. Disable the key re-exchange
timer.
(do_handle_kexinit): Call send_kexinit, instead of duplicating
it.
* src/testsuite/Makefile.am (TS_PROGS): Added parse-config-test.
* src/string_buffer.c (string_buffer_putc): New constant
......
News for the 1.3.7 release
Reorganized server pty handling. Now it works also on Solaris.
Improved key reexchange handling. Should now follow the spec,
and request key reexchange once per hour (reexchange requests
after 1GB data not yet implemented).
Use the aes256-cbc cipher by default. Includes sparc assembler
code, and the C implementation has been optimized as well.
In interactive mode, the client modifyes the terminal's VMIN
and VTIME values to get more than one character per packet.
Implemented handshake timeout, both server and client
disconnects if handshake and userauthentication is not
completed in about ten minutes.
Fixed the default port handling on systems that don't include
ssh in /etc/services.
Helper program to let the server use PAM passwords.
Contributed by Pontus Sköld.
New client option --subsystem for starting a subsystem such as
sftp on the server. Appeared already in 1.3.6, but wasn't
mentioned in NEWS.
......
......@@ -110,7 +110,6 @@ gateway_make_connection(struct listen_value *lv,
struct ssh_connection *connection
= make_ssh_connection(0, /* flags */
lv->peer, "gateway",
NULL, /* established_continuation */
make_exc_finish_read_handler(lv->fd, e, HANDLER_CONTEXT));
/* Instead of calling connection_init_io. */
......
2002-03-13 Niels Möller <nisse@cuckoo.hack.org>
2002-03-14 Niels Möller <nisse@cuckoo.hack.org>
* sparc/aes.asm, x86/aes.asm: Added copyright notice.
* Makefile.am (libnettle_a_SOURCES): Added aes-internal.h.
(EXTRA_DIST): Added assembler files.
* configure.in (asm_path): Use $srcdir when looking for the files.
* configure.in (asm_path): For now, disable x86 assembler code.
Bumped version to 1.6.
2002-02-25 Niels Möller <nisse@cuckoo.hack.org>
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment