1
0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-17 21:36:36 +00:00
Commit Graph

5988 Commits

Author SHA1 Message Date
Simon Tatham
30e159d112 Be proactively pedantic about channel-close irregularities: we no
longer just sit there like a lemon if we can't find the channel in
question, we bomb out and complain. With any luck, remaining
problems of this type should be easier to catch under this policy.

[originally from svn r1962]
2002-09-15 13:31:11 +00:00
Simon Tatham
9b69e1b8aa Improvements to SSH1 channel close handling: track sending and
receiving of CLOSE and CLOSE_CONFIRMATION separately rather than
taking short cuts. I believe ssh-1.2.33 sending CLOSE_CONFIRMATION
before CLOSE was causing the remaining incidences of bug
`nonexistent-channel'. (ssh-1.2.33 appears to have unilaterally
decreed that CLOSE and CLOSE_CONFIRMATION are respectively renamed
INPUT_EOF and OUTPUT_CLOSING, hence there is no longer an ordering
constraint on them. Bah.)

[originally from svn r1961]
2002-09-15 13:24:00 +00:00
Simon Tatham
994aee285f Log file tinkering: copy Event Log entries into the SSH packet log,
so that when people send us a packet log they never forget to send
the Event Log alongside it :-)

[originally from svn r1960]
2002-09-15 13:21:32 +00:00
Jacob Nevins
9164a7b176 OpenSSH vs OpenSSL Q: mention older OpenSSH versions
[originally from svn r1958]
2002-09-14 10:24:27 +00:00
Jacob Nevins
9f9739602b Semi-bug "long-usernames":
Bump username storage from 32 to 100 chars. Also replaced a couple of magic
numbers with sizeof in ssh.c.
I don't believe this is going to startle any of the protocols PuTTY talks.

[originally from svn r1952]
2002-09-12 16:05:05 +00:00
Jacob Nevins
c7fa2f6183 Updated usage messages for command-line utilities to reflect new options.
Updated manual to reflect reality (e.g. usage messages, '-p port' not actually
  implemented, sprinkle references to '-i keyfile').
(I've put "Release 0.53" in the messages; let's hope this doesn't cause a
  flood of "where is 0.53?" email.)
I don't guarantee that the result is entirely sane and sensible in all
  respects, but it is at least consistent.

[originally from svn r1951]
2002-09-11 17:30:36 +00:00
Jacob Nevins
3711af9a53 Note about separate client-server and server-client encryption in SSH-2
[originally from svn r1949]
2002-09-10 12:30:45 +00:00
Simon Tatham
3391745d2d Introduce the Bugs control panel, for overriding PuTTY's server
version number checks to determine the presence or absence of server
bugs.

[originally from svn r1936]
2002-09-08 13:28:38 +00:00
Jacob Nevins
f9f2042ca2 Update to reflect the last batch of proxy stuff we got from Justin Bradford.
[originally from svn r1935]
2002-09-08 13:25:58 +00:00
Simon Tatham
b15be34edf Increase length limit on SSH1_MSG_DEBUG; 70 chars is short enough to
lose vital information in some existing servers' messages.

[originally from svn r1932]
2002-09-07 12:27:13 +00:00
Simon Tatham
6813094751 After trying a succession of tests on Jacob's machine, I think I've
finally isolated the _important_ difference between Romano Trampus's
working printing.c and my failing one: he ignores the error return
from the first exploratory how-big-does-my-buffer-need-to-be call to
EnumPrinters(), because not having enough buffer space counts as an
error condition. Hence I am officially a klutz, but this should now
work. (Also reverted ENUM_LEVEL to 1, again, because that seems to
be the choice of people whose code works.)

[originally from svn r1915]
2002-09-02 13:47:50 +00:00
Jacob Nevins
9ccb502c47 Convert from CRLF to Unix line endings -- no other change
[originally from svn r1914]
2002-09-02 13:32:37 +00:00
Jacob Nevins
0c59fb9bbd Mention PocketPC in the WinCE question. I'm not sure how similar WinCE and
PocketPC are, though -- perhaps it merits its own question. (Although I don't
know of anyone who's looked into it yet.)

[originally from svn r1913]
2002-09-02 13:04:46 +00:00
Simon Tatham
ddb06b3951 I'm rapidly running out of patience for trying all possible
combinations of options to EnumPrinters() to see which one works,
but here's another one tried at random for now. *sigh*

[originally from svn r1912]
2002-09-01 13:12:51 +00:00
Simon Tatham
c24016e0da Add BUG_SSH2_DERIVEKEY, present (according to OpenSSH) in ssh.com
versions 2.0.*, and causing the shared secret not to be included in
key derivation hashes. (This doesn't quite cause a blatant security
hole because the session ID - _derived_ from the shared secret - is
still included.)

[originally from svn r1853]
2002-08-18 09:27:15 +00:00
Simon Tatham
67cb02d03d In SSH2, if decrypting the packet length gave us a negative value,
subsequent packet-receiver code would fail to notice anything was
wrong and segfault. Since this is clearly a silly packet length
anyway, we now explicitly reject it as a daft encryption error.

[originally from svn r1852]
2002-08-18 09:10:17 +00:00
Jacob Nevins
61a7dd82ca Changed wording of OpenSSH vs bad OpenSSL FAQ so that it's more obvious it
applies to 3.4p1.

[originally from svn r1847]
2002-08-15 14:59:48 +00:00
Simon Tatham
bd361aaca6 Alter the Feedback page, so that instead of saying `at some point we
plan to start blocking executable attachments' it now says we _do_
block executable attachments. :-)

[originally from svn r1841]
2002-08-12 14:08:55 +00:00
Simon Tatham
4b64ea9db9 Final fixes to keyboard-interactive so it now works with packets
containing more than one prompt instead of less than one, and also
correctly enables echo on prompts that the server requests it for.
In the process I've moved the whole username/password input routine
out into its own function, where it's called independently of which
SSH protocol we're using, so this should even have _saved_ code
size. Rock!

[originally from svn r1830]
2002-08-11 13:02:01 +00:00
Simon Tatham
554f9f130a Anecdotal evidence suggests that a single EnumPrinters() call
specifying both PRINTER_ENUM_LOCAL and PRINTER_ENUM_CONNECTIONS
catches more printers in some circumstances than two EnumPrinters()
calls each specifying just one of them. We'll try it for a bit; if
it goes wrong I might have to put back the two original calls as
well and sort out some means of removing duplicate printers from the
list.

[originally from svn r1829]
2002-08-11 12:17:25 +00:00
Simon Tatham
1601559c8c Actually, VirtualLock() looks better as \cw{} not \c{}.
[originally from svn r1826]
2002-08-09 09:14:04 +00:00
Simon Tatham
0011fa6dda Add two more FAQs: why don't you use VirtualLock()' and are you
based on OpenSSH'.

[originally from svn r1825]
2002-08-09 09:11:09 +00:00
Simon Tatham
e8ab511442 ssh.com 3.2.0 uses zlib sync flush (start and close an empty
uncompressed block at the end of each compressed packet) which we
were embarrassingly unable to deal with because we assumed every
uncompressed block contained at least one byte. Particularly silly
because I _knew_ about the existence of sync flush when I coded this
module. Arrgh. Still, now fixed.

[originally from svn r1824]
2002-08-08 17:03:58 +00:00
Simon Tatham
4abd468e14 Document all the new command-line stuff.
[originally from svn r1822]
2002-08-07 19:20:06 +00:00
Simon Tatham
54e9304111 Arrgh, we can't have -p for port number because we're already using
it for preserving file attributes in PSCP! Ah well; looks as if
that's one where we'll have to agree to differ with OpenSSH.

[originally from svn r1821]
2002-08-07 19:09:33 +00:00
Simon Tatham
b844f3c0bf Some of the new options shouldn't be available in the file transfer
tools.

[originally from svn r1820]
2002-08-07 18:43:40 +00:00
Simon Tatham
1f0b28b305 Fix Halibut syntax error (oops).
[originally from svn r1819]
2002-08-07 18:08:29 +00:00
Simon Tatham
5ac941933a Oops. Didn't quite get the new SSH protocol selection code right. *blush*
[originally from svn r1818]
2002-08-07 17:57:06 +00:00
Simon Tatham
6bfb676d8b Add a load of new command-line options pilfered from OpenSSH. Full
list is: -A, -a, -X, -x, -T, -t, -C, -1, -2, -i keyfile.

[originally from svn r1817]
2002-08-07 17:55:06 +00:00
Simon Tatham
6e00685af0 Add an option to force SSH1 protocol only. Partly for symmetry;
mostly because I'm about to want it for the -1 command line option.

[originally from svn r1816]
2002-08-07 17:48:26 +00:00
Simon Tatham
3983b3fc81 Clean up the argv splitter, and in particular stop it from bombing
out ignominiously when given no arguments :-)

[originally from svn r1815]
2002-08-07 17:29:28 +00:00
Simon Tatham
437d740fb3 Pageant's command line handling now uses my new split_into_argv()
function, because it's silly to have two (and because the old one
was not the same as the new one, violating the Principle of Least
Surprise).

[originally from svn r1811]
2002-08-06 17:57:37 +00:00
Simon Tatham
5e49e3fe1c PuTTYgen will now start by loading a private key file if one is
provided on its command line.

[originally from svn r1810]
2002-08-06 17:48:14 +00:00
Simon Tatham
452adcc952 Oops. That is to say, only loading and saving of PuTTY private keys
should default to .PPK - loading and saving of public keys and of
foreign key formats still defaults to All Files. Ahem.

[originally from svn r1809]
2002-08-06 17:35:34 +00:00
Simon Tatham
afbd7779e4 Now that we've decided on a file extension for private key files
(.PPK), make it the default in all the private-key file dialogs.

[originally from svn r1808]
2002-08-06 17:27:18 +00:00
Simon Tatham
af2c66be95 Buttress is now Halibut: change the docs makefile.
[originally from svn r1802]
2002-08-05 10:35:35 +00:00
Simon Tatham
a3a520709e Make it clear that we're only responsible for our own web site, and
people should contact mirror admins for problems with mirrors.

[originally from svn r1801]
2002-08-05 10:35:23 +00:00
Simon Tatham
118fc8c81e Revamp of command-line handling. Most command line options should
now be processed in cmdline.c, which is called from all utilities
(well, not Pageant or PuTTYgen). This should mean we get to
standardise almost all options across almost all tools. Also one
major change: `-load' is now the preferred option for loading a
saved session in PuTTY proper. `@session' still works but is
deprecated.

[originally from svn r1799]
2002-08-04 21:18:56 +00:00
Simon Tatham
949cecd569 Fix culpable lack of generality in keyboard-interactive
authentication: a k-i request packet can contain any number of auth
prompts (including zero!) and we must ask the user all of them and
send back a packet containing the same number of responses. FreeBSD
systems were sending a zero-prompts packet which was crashing us;
this now appears fixed (we correctly return a zero-responses packet)
but I haven't tested a multiple-prompts packet because I can't
immediately think of a server that generates them.

[originally from svn r1797]
2002-08-03 16:22:55 +00:00
Jacob Nevins
73e32fb7c0 OpenSSH/OpenSSL versioning problems: as of 3.4p1 this is _still_ not entirely
fixed.

[originally from svn r1781]
2002-07-09 11:34:10 +00:00
Simon Tatham
0605d6d3c1 Forgot to call fxp_init() in `pscp -ls' mode under SFTP.
[originally from svn r1748]
2002-06-25 18:51:06 +00:00
Simon Tatham
802aeb2d5e Failure to initialise a local variable was leading to free(garbage)
on loading an OpenSSH key and getting the wrong passphrase.

[originally from svn r1737]
2002-06-17 16:45:41 +00:00
Simon Tatham
3f8d151c5a One of the recent port forwarding crash reports contained details
which suggested bufchain_prefix() was finding an improperly
initialised bufchain structure. Looking at the code, this may indeed
have been able to happen, since the bufchain in a SOCKDATA_DORMANT
channel was not initialised until CHANNEL_OPEN_CONFIRMATION was
received. This seems utterly daft, so I now call bufchain_init()
when the channel structure is actually created. With any luck the
crash will mystically disappear now (I wasn't able to reproduce it
myself).

[originally from svn r1735]
2002-06-15 16:52:35 +00:00
Simon Tatham
729512abc2 Padding on the end of the encrypted data in OpenSSH key format was
broken: the OpenSSL EVP layer specifies a very particular form of
padding, which I wasn't generating because it hadn't occurred to me
that it might be mandatory. Irritatingly this was causing our
exported OpenSSH keys to load perfectly happily back in through our
OpenSSH import routines, but to be rejected by OpenSSH proper. Sigh.

[originally from svn r1733]
2002-06-15 16:31:22 +00:00
Simon Tatham
ab1d4f5dce Small memory allocation bug in openssh_encrypted() fixed.
[originally from svn r1732]
2002-06-15 15:37:15 +00:00
Simon Tatham
b6a9610e86 Modify the Feedback page / Appendix B to expand the section about
not sending us large attachments, and in particular remove the
emphasis on screen shots in the hope of also decreasing the number
of _other_ large attachments we get.

[originally from svn r1715]
2002-06-08 09:00:00 +00:00
Simon Tatham
858441ba81 Workaround for the SSH2 RSA padding bug in OpenSSH 2.5 - 3.2
inclusive. Padding is accomplished by rewriting the signature blob
rather than at the point of generation, in order to avoid having to
move part of the workaround into Pageant (and having to corrupt the
agent wire protocol to allow PuTTY to specify whether it wants its
signatures padded!).

[originally from svn r1708]
2002-05-31 17:39:16 +00:00
Jacob Nevins
d5e66f6098 Fix AltGr/Application/Compose/CtrlAlt discrepancies introduced in windlg.c
rev 1.118 [r1033] (pointed out by Rob Pitman).

[originally from svn r1707]
[r1033 == d2369721bb]
2002-05-30 12:41:07 +00:00
Jacob Nevins
f6c9873c96 Trying to use an SSH2 key with an SSH1 connection seems to be quite
common, so I've added a FAQ.

[originally from svn r1697]
2002-05-23 22:02:53 +00:00
Jacob Nevins
2cd8ddb17d Note that answerback string can contain control characters with ^C notation,
and the ^~ escape, but don't go into the gory details.

[originally from svn r1693]
2002-05-22 21:18:06 +00:00