]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fbdf5e8) | patch
openssh: simplify login class restrictions
authorEd Maste <emaste@FreeBSD.org>
Tue, 31 Aug 2021 19:30:50 +0000 (15:30 -0400)
committerEd Maste <emaste@FreeBSD.org>
Wed, 15 Sep 2021 01:42:23 +0000 (21:42 -0400)
commit719cb45e82be5ebd02a4c121d7fcebba492849b8
tree1f4e34bf81112c6ca2f86a5cda7371ee20c8c558tree | snapshot
parentfbdf5e82a0afc98e14ebb58f4cc8c1c0655b1316commit | diff
openssh: simplify login class restrictions

Login class-based restrictions were introduced in 5b400a39b8ad.  The
code was adapted for sshd's Capsicum sandbox and received many changes
over time, including at least fc3c19a9fceebd393de91cc3, and
e8c56fba2926.

During an attempt to upstream the work a much simpler approach was
suggested.  Adopt it now in the in-tree OpenSSH to reduce conflicts with
future updates.

Submitted by: Yuchiro Naito (against OpenSSH-portable on GitHub)
Obtained from: https://github.com/openssh/openssh-portable/pull/262
Reviewed by: allanjude, kevans
MFC after: 2 weeks
Differential Revision: https://reviews.freebsd.org/D31760

(cherry picked from commit 27ceebbc2402e4c98203c7eef9696f4bd3d326f8)
crypto/openssh/auth.c diff | blob | history
crypto/openssh/auth2.c diff | blob | history
crypto/openssh/config.h diff | blob | history
crypto/openssh/configure.ac diff | blob | history
crypto/openssh/monitor.c diff | blob | history
crypto/openssh/monitor.h diff | blob | history
crypto/openssh/monitor_wrap.c diff | blob | history
crypto/openssh/monitor_wrap.h diff | blob | history
crypto/openssh/ssh_namespace.h diff | blob | history
crypto/openssh/sshbuf-getput-basic.c diff | blob | history
crypto/openssh/sshbuf.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.