summaryrefslogtreecommitdiffstats
path: root/crypto/telnet
Commit message (Collapse)AuthorAgeFilesLines
* output_data(), output_datalen() and netflush() didn't actually guaranteekris2001-07-236-45/+50
| | | | | | | | | | | | | to do what they are supposed to: under some circumstances output data would be truncated, or the buffer would not actually be flushed (possibly leading to overflows when the caller assumes the operation succeeded). Change the semantics so that these functions ensure they complete the operation before returning. Comment out diagnostic code enabled by '-D reports' which causes an infinite recursion and an eventual crash. Patch developed with assistance from ru and assar.
* More potential buffer overflow fixes.ru2001-07-204-35/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | o Fixed `nfrontp' calculations in output_data(). If `remaining' is initially zero, it was possible for `nfrontp' to be decremented. Noticed by: dillon o Replaced leaking writenet() with output_datalen(): : * writenet : * : * Just a handy little function to write a bit of raw data to the net. : * It will force a transmit of the buffer if necessary : * : * arguments : * ptr - A pointer to a character string to write : * len - How many bytes to write : */ : void : writenet(ptr, len) : register unsigned char *ptr; : register int len; : { : /* flush buffer if no room for new data) */ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ : if ((&netobuf[BUFSIZ] - nfrontp) < len) { : /* if this fails, don't worry, buffer is a little big */ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ : netflush(); : } : : memmove(nfrontp, ptr, len); : nfrontp += len; : : } /* end of writenet */ What an irony! :-) o Optimized output_datalen() a bit.
* vsnprintf() can return a value larger than the buffer size.ru2001-07-191-1/+1
| | | | | Submitted by: assar Obtained from: OpenBSD
* Fixed the exploitable remote buffer overflow.ru2001-07-196-314/+219
| | | | | | Reported on: bugtraq Obtained from: Heimdal, NetBSD Reviewed by: obrien, imp
* mdoc(7) police: removed HISTORY info from the .Os call.ru2001-07-102-3/+2
|
* mdoc(7) police: merge all fixes from non-crypto version.ru2001-07-051-58/+92
|
* MF non-crypto: 1.13: document -u in usage.ru2001-07-051-8/+8
|
* Oops, forgot the 'u' in the getopt for the previous commit.dillon2001-05-241-1/+1
|
* A feature to allow one to telnet to a unix domain socket. (MFC fromdillon2001-05-233-3/+51
| | | | | | | | | non-crypto version) Also update the crypto telnet's man page to reflect other options ported from the non-crypto version. Obtained from: Lyndon Nerenberg <lyndon@orthanc.ab.ca>
* Make the PAM user-override actually override the correect thing.nsayer2001-05-171-3/+3
|
* Back out last commit. This was already fixed. This should never havepeter2001-05-171-2/+0
| | | | | happened, this is why we have commit mail expressly delivered to committers.
* Fix the latest telnet breakage. Obviously this was never compiled.peter2001-05-171-4/+4
|
* Since the root-on-insecure-tty code was added to telnetd, a dependencynsayer2001-05-161-0/+2
| | | | | on char *line was added to libtelnet. Put a dummy one in to keep the linker happy.
* Make sure the protocol actively rejects bad data rather thannsayer2001-05-161-8/+8
| | | | (potentially) not responding to an invalid SRA 'auth is' message.
* srandomdev() affords us the opportunity to radically improve, and at thensayer2001-05-161-0/+7
| | | | same time simplify, the random number selection code.
* Catch any attempted buffer overflows. The magic numbers in this codensayer2001-05-161-2/+6
| | | | | | | (512) are a little distressing, but the method really needs to be extended to allow server-supplied DH parameters anyway. Submitted by: kris
* Catch malloc return failures. This should help avoid dereferencing NULL onnsayer2001-05-161-0/+8
| | | | | | low-memory situations. Submitted by: kris
* Hack to work around braindeath in libtelnet:sra.c. The sra.o filepeter2001-05-151-0/+1
| | | | | | | references global variables from telnetd, but is also linked into telnet as well. I was tempted to back out the last sra.c change as it is 100% bogus and should be taken out and shot, but for now this bandaid should get world working again. :-(
* If the uid of the attempted authentication is 0 and if the pty isnsayer2001-05-151-1/+34
| | | | | insecure, do not succeed. Copied from login.c. This functionality really should be a PAM module.
* Pointy hat fix -- reapply the SRA PAM patch. To -current this time.nsayer2001-05-071-0/+133
|
* mdoc(7) police: removed hard sentence breaks introduced in rev.1.10.ru2001-04-131-4/+5
|
* Clean up telnet's argument processing a bit. autologin and encryption isnsayer2001-04-062-34/+23
| | | | | | | now the default, so ignore the arguments that turn it on. Add a new -y argument to turn off encryption in case someone wants to do that. Sync these changes with the man page (including removing the now obsolete statement about availability only in the US and Canada).
* Reactivate SRA.nsayer2001-04-051-0/+18
| | | | | Make handling of SIGINT and SIGQUIT follow SIGTSTP in TerminalNewMode(). This allows people to break out of SRA authentication if they wish to.
* Fix core noted in -stable with 'auth disable SRA'.nsayer2001-03-181-2/+2
| | | | | I just mistakenly commited this to RELENG_4. I have contacted Jordan to see about how to fix this. Pass the pointy hat.
* enable auto-negotiation of encrypt and decryptassar2001-03-121-0/+13
|
* Synch: Add $FreeBSD$.asmodai2001-02-071-0/+1
|
* Fix typo: compatability -> compatibility.asmodai2001-02-061-1/+1
| | | | Compatability is not an existing english word.
* Fix typo: seperate -> separate.asmodai2001-02-062-2/+2
| | | | | | Seperate does not exist in the english language. Submitted to look at by: kris
* Fix typo: wierd -> weird.asmodai2001-02-062-2/+2
| | | | There is no such thing as wierd in the english language.
* mdoc(7) police: split punctuation characters + misc fixes.ru2001-02-012-36/+38
|
* Prepare for mdoc(7)NG.ru2001-01-102-5/+11
|
* (scrub_env): change to only accept a listed set of variables,assar2000-12-101-23/+37
| | | | including only non-filename contents for TERMCAP
* Add more environment variables to be filtered through scrub_env().asmodai2000-11-301-0/+7
| | | | Synched from normal telnet.
* String paranoia fix. Synched from normal telnet.asmodai2000-11-301-2/+2
|
* String paranoia. Merged from regular telnet.asmodai2000-11-301-2/+2
|
* Correct definition of MAXHOSTNAMELEN in ifdef'ed code.kris2000-11-262-2/+2
| | | | | Submitted by: Edwin Groothuis <mavetju@chello.nl> PR: bin/22787
* mdoc(7) police: use the new features of the Nm macro.ru2000-11-202-42/+42
|
* Fix a buffer overflow from a long local hostname.kris2000-11-191-2/+2
| | | | Obtained from: OpenBSD
* Avoid use of direct troff requests in mdoc(7) manual pages.ru2000-11-102-9/+1
|
* Sync with usr.bin/telnet/telnet.c r1.9 - fix buffer overflow in DISPLAYkris2000-10-291-4/+7
|
* Fix buffer size of ALIGNed buffer.ume2000-07-201-2/+2
| | | | | PR: bin/20053 Submitted by: Alex Kapranoff <alex@kapran.bitmcnit.bryansk.su>
* Add missing $FreeBSD$ to files that are NOT still on vendor a branch.peter2000-07-1619-0/+72
|
* Fix 'telnet -X sra' coredumpnsayer2000-07-111-1/+3
| | | | PR# 19835
* Don't call printf with no format string.kris2000-07-101-1/+5
|
* Make telnet -s work. It is corresponding to EAI_NONAME -> EAI_NODATAume2000-07-081-2/+2
| | | | change (getaddrinfo.c rev 1.12).
* sync with usr.bin/telnet/commands.c 1.21 -> 1.22. pierre.dampure@alveley.orgitojun2000-07-071-18/+16
|
* CMSG_XXX macros alignment fixes to follow RFC2292.shin2000-03-031-14/+12
| | | | Approved by: jkh
* Get crypto from libcrypto, not libdes.markm2000-02-245-5/+13
|
* Freefall/Internat diff reducer.markm2000-02-241-1/+1
|
* Use static buffer to save source route hostnames.shin2000-02-191-1/+1
| | | | Approved by: jkh
OpenPOWER on IntegriCloud