libssh

shinys000114/libssh

Fork 0

mirror of https://git.libssh.org/projects/libssh.git synced 2026-03-26 05:20:09 +09:00

Commit Graph

Select branches

Hide Pull Requests

master

master-fix

stable-0.10

stable-0.11

stable-0.8

stable-0.9

v0-2

v0-3

v0-4

v0-5

v0-6

v0-7

libssh-0.10.0

libssh-0.10.2

libssh-0.10.3

libssh-0.10.4

libssh-0.10.5

libssh-0.10.6

libssh-0.11.0

libssh-0.11.1

libssh-0.11.2

libssh-0.11.3

libssh-0.11.4

libssh-0.12.0

libssh-0.5.1

libssh-0.5.2

libssh-0.5.3

libssh-0.5.4

libssh-0.5.5

libssh-0.6.0

libssh-0.6.1

libssh-0.6.3

libssh-0.6.4

libssh-0.6.5

libssh-0.7.0

libssh-0.7.1

libssh-0.7.2

libssh-0.7.3

libssh-0.7.4

libssh-0.7.5

libssh-0.7.6

libssh-0.7.7

libssh-0.8.0

libssh-0.8.1

libssh-0.8.2

libssh-0.8.3

libssh-0.8.4

libssh-0.8.5

libssh-0.8.6

libssh-0.8.7

libssh-0.8.8

libssh-0.8.9

libssh-0.9.0

libssh-0.9.1

libssh-0.9.2

libssh-0.9.3

libssh-0.9.4

libssh-0.9.5

libssh-0.9.6

libssh-0.9.7

libssh-0.9.8

release-0-3-0

release-0-3-1

release-0-3-2

release-0-3-3

release-0-3-4

release-0-4-0

release-0-4-1

release-0-4-2

release-0-4-3

release-0-4-4

release-0-4-5

release-0-4-6

release-0-4-7

release-0-4-8

release-0-5-0

1aef599ab1 messages: Reject tcpip-forward requests as client Anderson Toshiyuki Sasaki 2019-06-25 11:09:07 +02:00
3d7d3f303e messages: Consume unknown global requests messages Anderson Toshiyuki Sasaki 2019-06-24 18:29:43 +02:00
722f979790 Update ChangeLog to add FIPS Andreas Schneider 2019-06-21 16:00:00 +02:00
220f1e1435 Update ChangeLog to add FIPS Andreas Schneider 2019-06-21 16:00:00 +02:00
2c60ef04d9 tests: Skip 1k RSA key generation in FIPS Jakub Jelen 2019-06-21 08:56:30 +02:00
ec486d13db pki_crypto: Correct error checking after RSA key generation Jakub Jelen 2019-06-21 08:55:06 +02:00
ebfe46f6ad tests: Filter out bogus output from openssh in FIPS Mode Jakub Jelen 2019-06-20 17:45:49 +02:00
3c0897b975 tests: Add reproducer for T76 Jakub Jelen 2019-06-19 15:09:00 +02:00
993e0df81e pki: Search for the PEM headers not only on the start of the key file Jakub Jelen 2019-06-19 16:26:24 +02:00
551188d99b pki: Reformat pki_privatekey_type_from_string() Jakub Jelen 2019-06-19 16:04:00 +02:00
cafafe8f5a tests: Reproducer for proxy command with stderr output (T130) Jakub Jelen 2019-06-19 14:28:07 +02:00
c6c7856b51 socket: Do not process stderr of proxy commands (Fixes T130) Jakub Jelen 2019-06-19 14:27:36 +02:00
ea71af9c22 socket: Reformat the rest of the file Jakub Jelen 2019-06-19 14:22:57 +02:00
17a531d2af tests: Skip 1k RSA key generation in FIPS Jakub Jelen 2019-06-21 08:56:30 +02:00
a80547bdf9 pki_crypto: Correct error checking after RSA key generation Jakub Jelen 2019-06-21 08:55:06 +02:00
a4fa514549 tests: Filter out bogus output from openssh in FIPS Mode Jakub Jelen 2019-06-20 17:45:49 +02:00
d5095a55b9 tests: Add reproducer for T76 Jakub Jelen 2019-06-19 15:09:00 +02:00
d627cba476 pki: Search for the PEM headers not only on the start of the key file Jakub Jelen 2019-06-19 16:26:24 +02:00
23c837f4d0 pki: Reformat pki_privatekey_type_from_string() Jakub Jelen 2019-06-19 16:04:00 +02:00
bd69ac63ca tests: Reproducer for proxy command with stderr output (T130) Jakub Jelen 2019-06-19 14:28:07 +02:00
6c49c41c19 socket: Do not process stderr of proxy commands (Fixes T130) Jakub Jelen 2019-06-19 14:27:36 +02:00
bd65568749 socket: Reformat the rest of the file Jakub Jelen 2019-06-19 14:22:57 +02:00
bb98413fc1 Bump version to 0.8.91 Andreas Schneider 2019-06-14 15:34:35 +02:00
2a8cd81e8f Update ChangeLog Andreas Schneider 2019-06-14 15:34:07 +02:00
3cb0a1bf02 Bump SO version to 4.8.1 Andreas Schneider 2019-06-14 13:54:48 +02:00
2d2a4f3784 include: Make sure ssh_session_get_known_hosts_entry is added to the API Andreas Schneider 2019-06-14 13:53:42 +02:00
70dd8b0348 callbacks: Add ssh_threads_get_default() to the callbacks.h David Wedderwille 2019-06-13 22:54:24 +02:00
c4463ba5e7 tests/torture_config: Replace long long with uint64_t Anderson Toshiyuki Sasaki 2019-06-14 12:05:37 +02:00
fba384ac58 tests/torture_rekey: Replace long long with uint64_t Anderson Toshiyuki Sasaki 2019-06-14 12:04:33 +02:00
ab25ca205d channels: Do not mix integer types Anderson Toshiyuki Sasaki 2019-06-14 11:49:59 +02:00
91960409c3 ed25519: Replace unsigned long long with uint64_t Anderson Toshiyuki Sasaki 2019-06-14 11:48:29 +02:00
955d6f1b17 config: Replace long long with int64_t Anderson Toshiyuki Sasaki 2019-06-14 11:43:33 +02:00
0280ff12a5 sftp: Do not mix integer types Anderson Toshiyuki Sasaki 2019-06-14 11:41:06 +02:00
b775e316fa priv.h: Add macro definitions for PRIx32 and PRIx64 Anderson Toshiyuki Sasaki 2019-06-14 13:50:37 +02:00
dc4d4cc8d4 tests/torture_rekey: Do not mix integer types Anderson Toshiyuki Sasaki 2019-06-13 18:37:30 +02:00
4fc37bb6fe tests: Add more reproducers for valid and invalid Match exec blocks Jakub Jelen 2019-06-13 16:48:01 +02:00
ed8284ab09 config: Skip the rest of the line for Match exec Jakub Jelen 2019-06-13 17:22:56 +02:00
f46eff79e2 cmake: Bump API version to 4.8.0 David Wedderwille 2019-06-11 12:10:18 +02:00
658a150991 channels: Make ssh_message_channel_request_open_reply_accept_channel public David Wedderwille 2019-04-30 00:39:27 +02:00
32eec7b418 SSH_LOG: Adjust log level from SSH_LOG_WARNING to SSH_LOG_PROTOCOL David Wedderwille 2019-05-26 22:27:40 +02:00
1f43b52117 tests: Fix the glob test on musl libc Andreas Schneider 2019-06-13 16:38:54 +02:00
c0c1454298 session: OpenSSH is using SHA256 fingerprints now Jakub Jelen 2019-06-13 16:23:35 +02:00
ddece69a07 .gitlab-ci.yml: Add FIPS tests Jakub Jelen 2019-05-23 11:42:46 +02:00
5568e5e520 tests/pkd: Fix OpenSSH version check Anderson Toshiyuki Sasaki 2019-06-13 13:51:41 +02:00
905b027f0f tests/pkd: Check OpenSSH version only once Anderson Toshiyuki Sasaki 2019-06-13 13:18:49 +02:00
57cf0cf230 tests/torture_server_config: Use only allowed algorithms Anderson Toshiyuki Sasaki 2019-06-08 12:15:38 +02:00
4416a0dae6 tests/pkd: Add tests using certificates with SHA2 in signatures Anderson Toshiyuki Sasaki 2019-06-07 11:21:34 +02:00
73b94abea4 tests/pkd: Accept certificates with SHA2 in signatures Anderson Toshiyuki Sasaki 2019-06-07 10:42:05 +02:00
bd32fb020b tests/pkd: Use only allowed algorithms if in FIPS mode Anderson Toshiyuki Sasaki 2019-06-06 18:15:51 +02:00
bb36cc30ee tests/torture_pki_rsa: Avoid using SHA1 in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 18:44:00 +02:00
b6aef1fdd5 tests: Update negative test cases to use EC instead of ED keys Jakub Jelen 2019-05-29 17:34:53 +02:00
c7c3c16fc8 tests: There is no 8B block cipher in FIPS Mode Jakub Jelen 2019-05-29 17:45:30 +02:00
bfafdab035 tests: Use more widely supported RSA key as a hostkey Jakub Jelen 2019-05-29 18:11:45 +02:00
426c6c1321 tests: Avoid mixing stderr with stdout Jakub Jelen 2019-05-29 20:04:24 +02:00
a006c3c451 tests: Use consistent checking for ssh return code Jakub Jelen 2019-05-29 20:06:39 +02:00
20e58be7d8 tests: Adjust for FIPS and simplify initialization Jakub Jelen 2019-05-29 20:08:34 +02:00
8c59f7f236 tests/torture_pki_dsa: Skip completely if in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:31:29 +02:00
9ef0b0b029 tests/torture_pki: Skip some tests if in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:30:00 +02:00
39c69893c7 tests/torture_options: Use only allowed algorithms if in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:28:03 +02:00
ce888fd4c0 tests/torture_config: Use only allowed algorithms in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:19:22 +02:00
af031d8df6 tests/torture_bind_config: Use allowed algorithms in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:16:35 +02:00
92a0d23eac tests/torture_hostkey: Skip some tests in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:14:49 +02:00
1a6ac291a7 tests/torture_client_config: Adjust lists in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:11:50 +02:00
bdb2ef4dcc tests/torture_algorithms: Skip some tests in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:08:22 +02:00
41834f228b tests: Use different config if in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:06:13 +02:00
03ca994cc0 tests: Use the SHA2 extension by default to avoid issues in FIPS mode Jakub Jelen 2019-05-30 17:43:54 +02:00
53ae2502f4 kex: Only advertise allowed signature types Anderson Toshiyuki Sasaki 2019-06-12 18:00:34 +02:00
1b7146e28f server: Send only allowed algorithms in extension Anderson Toshiyuki Sasaki 2019-06-09 01:04:32 +02:00
a3ddc48cb0 pki: Derive correct algorithm identification for certificate authentication with SHA2 extension Jakub Jelen 2019-05-29 16:04:42 +02:00
132ed59d3f agent: Use SHA2 signatures also for RSA certificates Jakub Jelen 2019-05-29 15:59:52 +02:00
f91a5fce6e tests: Use ed25519 keys explicitly Jakub Jelen 2019-05-30 17:30:19 +02:00
63f477181a tests: The DSA is not available in mbedtls Jakub Jelen 2019-05-30 15:08:21 +02:00
2c385c0e13 tests/client/torture_auth: Skip some tests if in FIPS mode Anderson Toshiyuki Sasaki 2019-06-05 15:21:19 +02:00
66755c478c tests: Do not free pcap context while it is in use by the server session Jakub Jelen 2019-05-29 18:11:26 +02:00
9f178be1fa tests: Cover comparison of public keys, which was missing Jakub Jelen 2019-05-30 14:04:46 +02:00
1f66414805 pki_gcrypt: Do not compare private parts when comparing public keys Jakub Jelen 2019-05-30 13:56:38 +02:00
6d5ac15a51 config: Remove bogus trailing newlines in log messages Jakub Jelen 2019-05-30 12:05:02 +02:00
85241c19e9 kex: Reformat ssh_kex_get_supported_method() Jakub Jelen 2019-05-29 13:48:06 +02:00
53cee7c9a3 kex: List also certificate types in list of allowed public key algorithms Jakub Jelen 2019-05-29 13:47:41 +02:00
f64c3dec74 tests: Add PKCS#8 PEM encrypted private keys Anderson Toshiyuki Sasaki 2019-05-23 14:32:53 +02:00
0cfe4c7ab8 tests/torture_auth: Workaround OpenSSH agent bug Anderson Toshiyuki Sasaki 2019-06-06 15:01:42 +02:00
01f4040218 dh: Avoid segmentation fault in GEX if fallback to known moduli Anderson Toshiyuki Sasaki 2019-06-07 19:08:53 +02:00
7656911953 bignum: Define bignum_dup(bignum orig, bignum *dest) Anderson Toshiyuki Sasaki 2019-06-07 19:05:01 +02:00
9f7f5dee18 tests: Verify duplicate items are removed from knownhosts entries list Jakub Jelen 2019-05-27 17:31:22 +02:00
5f01ed0278 tests: Verify duplicate items are removed from knownhosts algorithms Jakub Jelen 2019-05-27 17:25:13 +02:00
196361c1f0 ssh_known_hosts_get_algorithms: Avoid returning duplicate key types from known hosts algorithms Jakub Jelen 2019-05-27 17:16:58 +02:00
79cd2618ec ssh_known_hosts_read_entries: Avoid returning duplicate knownhowst items Jakub Jelen 2019-05-27 17:16:22 +02:00
54d76098ed kex, pki, server, options: Filter algorithms in FIPS mode Anderson Toshiyuki Sasaki 2019-05-22 18:33:14 +02:00
56041dc784 torture_hashes: Skip the MD5 tests in FIPS mode Jakub Jelen 2019-05-23 11:36:54 +02:00
167aa8bc6c pki_crypto: Use the new OpenSSL API to read PEM files Jakub Jelen 2019-05-23 11:34:41 +02:00
0ce1e84d90 pki_crypto: Use the new OpenSSL API to write new PKCS#8 PEM files Jakub Jelen 2019-05-23 11:30:06 +02:00
ee456104f1 session: Do not use MD5 in FIPS mode Anderson Toshiyuki Sasaki 2019-05-22 15:13:51 +02:00
0fb7d9831a tests: Make sure unknown options are ignored in server config Anderson Toshiyuki Sasaki 2019-06-04 13:29:09 +02:00
55c637f2d3 bind_config: Fail if a known option couldn't be set Anderson Toshiyuki Sasaki 2019-06-04 13:09:26 +02:00
d783aec96c kex: Remove unused code Anderson Toshiyuki Sasaki 2019-05-23 11:53:46 +02:00
dc35bbbeb1 server: Use default methods instead of all Anderson Toshiyuki Sasaki 2019-05-22 19:01:18 +02:00
2db2a4e170 kex: Make order of preferred signature algorithms consistent Anderson Toshiyuki Sasaki 2019-05-17 20:28:52 +02:00
a8064cb0ca tests: Added tests for server config file Anderson Toshiyuki Sasaki 2019-05-17 18:04:57 +02:00
e7ef40c8f0 tests: Allow setting configuration file for test server Anderson Toshiyuki Sasaki 2019-05-16 14:16:46 +02:00
79f0c38fbd options: Allow avoiding system-wide configuration Anderson Toshiyuki Sasaki 2019-05-16 13:20:27 +02:00

... 27 28 29 30 31 ...