summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorDamien Miller <djm@mindrot.org>2011-05-15 08:51:05 +1000
committerDamien Miller <djm@mindrot.org>2011-05-15 08:51:05 +1000
commit7c1b2c4ea8a5d06908dda3f8e406b902b81fe905 (patch)
treed4feec6013425aa759cb0e0d4863de23c8cc2997
parent3219824f2d8b0ea1711818745b046931ffcd3918 (diff)
- djm@cvs.openbsd.org 2011/05/11 04:47:06
[auth.c auth.h auth2-pubkey.c pathnames.h servconf.c servconf.h] remove support for authorized_keys2; it is a relic from the early days of protocol v.2 support and has been undocumented for many years; ok markus@
Diffstat
-rw-r--r--ChangeLog5
-rw-r--r--auth.c8
-rw-r--r--auth.h3
-rw-r--r--auth2-pubkey.c8
-rw-r--r--pathnames.h5
-rw-r--r--servconf.c15
-rw-r--r--servconf.h3
7 files changed, 11 insertions, 36 deletions
diff --git a/ChangeLog b/ChangeLog
index 92aff179..288a202c 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -66,6 +66,11 @@
[authfile.c]
despam debug() logs by detecting that we are trying to load a private key
in key_try_load_public() and returning early; ok markus@
+ - djm@cvs.openbsd.org 2011/05/11 04:47:06
+ [auth.c auth.h auth2-pubkey.c pathnames.h servconf.c servconf.h]
+ remove support for authorized_keys2; it is a relic from the early days
+ of protocol v.2 support and has been undocumented for many years;
+ ok markus@
20110510
- (dtucker) [openbsd-compat/openssl-compat.{c,h}] Bug #1882: fix
diff --git a/auth.c b/auth.c
index 33680b91..be78f1a2 100644
--- a/auth.c
+++ b/auth.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.c,v 1.91 2010/11/29 23:45:51 djm Exp $ */
+/* $OpenBSD: auth.c,v 1.92 2011/05/11 04:47:06 djm Exp $ */
/*
* Copyright (c) 2000 Markus Friedl. All rights reserved.
*
@@ -361,12 +361,6 @@ authorized_keys_file(struct passwd *pw)
}
char *
-authorized_keys_file2(struct passwd *pw)
-{
- return expand_authorized_keys(options.authorized_keys_file2, pw);
-}
-
-char *
authorized_principals_file(struct passwd *pw)
{
if (options.authorized_principals_file == NULL)
diff --git a/auth.h b/auth.h
index 772a8c89..22739586 100644
--- a/auth.h
+++ b/auth.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.h,v 1.67 2011/03/10 11:34:25 djm Exp $ */
+/* $OpenBSD: auth.h,v 1.68 2011/05/11 04:47:06 djm Exp $ */
/*
* Copyright (c) 2000 Markus Friedl. All rights reserved.
@@ -169,7 +169,6 @@ int verify_response(Authctxt *, const char *);
void abandon_challenge_response(Authctxt *);
char *authorized_keys_file(struct passwd *);
-char *authorized_keys_file2(struct passwd *);
char *authorized_principals_file(struct passwd *);
FILE *auth_openkeyfile(const char *, struct passwd *, int);
diff --git a/auth2-pubkey.c b/auth2-pubkey.c
index 7d214135..a97509c2 100644
--- a/auth2-pubkey.c
+++ b/auth2-pubkey.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth2-pubkey.c,v 1.27 2010/11/20 05:12:38 deraadt Exp $ */
+/* $OpenBSD: auth2-pubkey.c,v 1.28 2011/05/11 04:47:06 djm Exp $ */
/*
* Copyright (c) 2000 Markus Friedl. All rights reserved.
*
@@ -451,13 +451,7 @@ user_key_allowed(struct passwd *pw, Key *key)
file = authorized_keys_file(pw);
success = user_key_allowed2(pw, key, file);
xfree(file);
- if (success)
- return success;
- /* try suffix "2" for backward compat, too */
- file = authorized_keys_file2(pw);
- success = user_key_allowed2(pw, key, file);
- xfree(file);
return success;
}
diff --git a/pathnames.h b/pathnames.h
index e2dd49a9..787bdb67 100644
--- a/pathnames.h
+++ b/pathnames.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: pathnames.h,v 1.20 2010/08/31 11:54:45 djm Exp $ */
+/* $OpenBSD: pathnames.h,v 1.21 2011/05/11 04:47:06 djm Exp $ */
/*
* Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -96,9 +96,6 @@
*/
#define _PATH_SSH_USER_PERMITTED_KEYS ".ssh/authorized_keys"
-/* backward compat for protocol v2 */
-#define _PATH_SSH_USER_PERMITTED_KEYS2 ".ssh/authorized_keys2"
-
/*
* Per-user and system-wide ssh "rc" files. These files are executed with
* /bin/sh before starting the shell or command if they exist. They will be
diff --git a/servconf.c b/servconf.c
index 48cb0d5b..03a503d0 100644
--- a/servconf.c
+++ b/servconf.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: servconf.c,v 1.214 2011/03/29 18:54:17 stevesk Exp $ */
+/* $OpenBSD: servconf.c,v 1.215 2011/05/11 04:47:06 djm Exp $ */
/*
* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
* All rights reserved
@@ -127,7 +127,6 @@ initialize_server_options(ServerOptions *options)
options->client_alive_interval = -1;
options->client_alive_count_max = -1;
options->authorized_keys_file = NULL;
- options->authorized_keys_file2 = NULL;
options->num_accept_env = 0;
options->permit_tun = -1;
options->num_permitted_opens = -1;
@@ -264,13 +263,6 @@ fill_default_server_options(ServerOptions *options)
options->client_alive_interval = 0;
if (options->client_alive_count_max == -1)
options->client_alive_count_max = 3;
- if (options->authorized_keys_file2 == NULL) {
- /* authorized_keys_file2 falls back to authorized_keys_file */
- if (options->authorized_keys_file != NULL)
- options->authorized_keys_file2 = xstrdup(options->authorized_keys_file);
- else
- options->authorized_keys_file2 = xstrdup(_PATH_SSH_USER_PERMITTED_KEYS2);
- }
if (options->authorized_keys_file == NULL)
options->authorized_keys_file = xstrdup(_PATH_SSH_USER_PERMITTED_KEYS);
if (options->permit_tun == -1)
@@ -1252,9 +1244,6 @@ process_server_config_line(ServerOptions *options, char *line,
case sAuthorizedKeysFile:
charptr = &options->authorized_keys_file;
goto parse_tilde_filename;
- case sAuthorizedKeysFile2:
- charptr = &options->authorized_keys_file2;
- goto parse_tilde_filename;
case sAuthorizedPrincipalsFile:
charptr = &options->authorized_principals_file;
parse_tilde_filename:
@@ -1519,7 +1508,6 @@ copy_set_server_options(ServerOptions *dst, ServerOptions *src, int preauth)
M_CP_STROPT(trusted_user_ca_keys);
M_CP_STROPT(revoked_keys_file);
M_CP_STROPT(authorized_keys_file);
- M_CP_STROPT(authorized_keys_file2);
M_CP_STROPT(authorized_principals_file);
}
@@ -1737,7 +1725,6 @@ dump_config(ServerOptions *o)
dump_cfg_string(sMacs, o->macs);
dump_cfg_string(sBanner, o->banner);
dump_cfg_string(sAuthorizedKeysFile, o->authorized_keys_file);
- dump_cfg_string(sAuthorizedKeysFile2, o->authorized_keys_file2);
dump_cfg_string(sForceCommand, o->adm_forced_command);
dump_cfg_string(sChrootDirectory, o->chroot_directory);
dump_cfg_string(sTrustedUserCAKeys, o->trusted_user_ca_keys);
diff --git a/servconf.h b/servconf.h
index 5a058a41..3f04b850 100644
--- a/servconf.h
+++ b/servconf.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: servconf.h,v 1.95 2010/11/13 23:27:50 djm Exp $ */
+/* $OpenBSD: servconf.h,v 1.96 2011/05/11 04:47:06 djm Exp $ */
/*
* Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -146,7 +146,6 @@ typedef struct {
*/
char *authorized_keys_file; /* File containing public keys */
- char *authorized_keys_file2;
char *adm_forced_command;
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-29 21:01:53 +0000
n class="w"> "de", "Play audio" : "Reproducir audio", "Download audio" : "Descargar audio", "Download video" : "Descargar video", "Keyboard shortcut" : "Atajo del teclado", "Description" : "Descripción", "right" : "derecha", "Jump to next article" : "Ir al artículo siguiente ", "left" : "izquierda", "Jump to previous article" : "Ir al artículo anterior", "Toggle star article" : "Alternar artículos marcados", "Star article and jump to next one" : "Marcar el artículo y continuar al siguiente", "Toggle keep current article unread" : "Alternar mantener artículo actual como no leído", "Open article in new tab" : "Abrir el artículo en una nueva pestaña", "Toggle expand article in compact view" : "Alternar expandir artículo en vista compacta", "Refresh" : "Actualizar", "Load next feed" : "Cargar la siguiente fuente ", "Load previous feed" : "Cargar fuente anterior", "Load next folder" : "Cargar la siguiente carpeta", "Load previous folder" : "Cargar carpeta anterrior", "Scroll to active navigation entry" : "Desplázate hasta el elemento de navegación activo", "Focus search field" : "Ir al campo de búsqueda", "Mark current article's feed/folder read" : "Marcar la fuente/carpeta del artículo actual como leído", "Ajax or webcron mode detected! Your feeds will not be updated!" : "¡Se ha detectado el modo Ajax o webron! ¡Tus fuentes no serán actualizadas!", "How to set up the operating system cron" : "Cómo establecer las tareas programadas del sistema operativo", "Install and set up a faster parallel updater that uses the News app's update API" : "Instala y configura un actualizador en paralelo más rápido que use el API de actualización de la nueva aplicación", "Subscribe" : "Suscribir", "Web address" : "Dirección web", "Feed exists already!" : "¡La fuente ya existe!", "Folder" : "Carpeta", "No folder" : "No hay carpetas", "New folder" : "Carpeta nueva ", "Folder name" : "Nombre de la carpeta", "Go back" : "Regresar", "Folder exists already!" : "¡La carpeta ya existe!", "Credentials" : "Credenciales", "HTTP Basic Auth credentials must be stored unencrypted! Everyone with access to the server or database will be able to access them!" : "¡Las credenciales HTTP Basic Auth deben ser almacenadas decriptadas! ¡Todos aquellos que tengan acceso al servidor o a la base de datos tendrán acceso a ellas!", "Password" : "Contraseña", "New Folder" : "Carpeta Nueva", "Create" : "Crear", "Explore" : "Explorar", "Update failed more than 50 times" : "La carga falló más de 50 veces", "Deleted feed" : "Borrar fuente", "Undo delete feed" : "Deshacer borrar fuente", "Rename" : "Renombrar", "Menu" : "Menú", "Mark read" : "Marcar como leído", "Unpin from top" : "Desanclar a la parte superior", "Pin to top" : "Anclar a la parte superior", "Newest first" : "Más reciente primero", "Oldest first" : "Más antiguo primero", "Default order" : "Ordenamiento predeterminado", "Enable full text" : "Habilitar texto completo", "Disable full text" : "Deshabilitar texto completo", "Unread updated" : "No-leídos actualizados", "Ignore updated" : "Ignorar actualizados", "Open feed URL" : "Abrir URL de la fuente", "Delete" : "Borrar", "Dismiss" : "Descartar", "Collapse" : "Colapsar", "Deleted folder" : "Borrar carpeta", "Undo delete folder" : "Deshacer borrar carpeta", "Starred" : "Marcados", "Unread articles" : "Artículos sin leer", "All articles" : "Todos los artículos", "Settings" : "Configuraciones ", "Disable mark read through scrolling" : "Deshabilitar el marcar como leído al desplazar", "Compact view" : "Vista compacta", "Expand articles on key navigation" : "Expandir artículos al navegar con el teclado", "Show all articles" : "Mostrar todos los artículos", "Reverse ordering (oldest on top)" : "Orden inverso (más antiguo arriba)", "Subscriptions (OPML)" : "Suscripciones (OPML)", "Import" : "Importar", "Export" : "Exportar", "Error when importing: File does not contain valid OPML" : "Se presentó un error al importar: El archivo no contiene un OPML válido", "Error when importing: OPML is does neither contain feeds nor folders" : "Se presentó un error al importar: OPML no contiene fuentes o carpetas", "Unread/Starred Articles" : "Artículos No Leídos/Marcados", "Error when importing: file does not contain valid JSON" : "Se presentó un error al importar: el archivo no contiene un JSON válido", "Help" : "Ayuda", "Keyboard shortcuts" : "Atajos del teclado", "Documentation" : "Documentación", "Report a bug" : "Reportar una falla" }, "nplurals=2; plural=(n != 1);");