libssh

shinys000114/libssh

Fork 0

mirror of https://git.libssh.org/projects/libssh.git synced 2026-03-26 05:20:09 +09:00

Commit Graph

Select branches

Hide Pull Requests

master

master-fix

stable-0.10

stable-0.11

stable-0.8

stable-0.9

v0-2

v0-3

v0-4

v0-5

v0-6

v0-7

libssh-0.10.0

libssh-0.10.2

libssh-0.10.3

libssh-0.10.4

libssh-0.10.5

libssh-0.10.6

libssh-0.11.0

libssh-0.11.1

libssh-0.11.2

libssh-0.11.3

libssh-0.11.4

libssh-0.12.0

libssh-0.5.1

libssh-0.5.2

libssh-0.5.3

libssh-0.5.4

libssh-0.5.5

libssh-0.6.0

libssh-0.6.1

libssh-0.6.3

libssh-0.6.4

libssh-0.6.5

libssh-0.7.0

libssh-0.7.1

libssh-0.7.2

libssh-0.7.3

libssh-0.7.4

libssh-0.7.5

libssh-0.7.6

libssh-0.7.7

libssh-0.8.0

libssh-0.8.1

libssh-0.8.2

libssh-0.8.3

libssh-0.8.4

libssh-0.8.5

libssh-0.8.6

libssh-0.8.7

libssh-0.8.8

libssh-0.8.9

libssh-0.9.0

libssh-0.9.1

libssh-0.9.2

libssh-0.9.3

libssh-0.9.4

libssh-0.9.5

libssh-0.9.6

libssh-0.9.7

libssh-0.9.8

release-0-3-0

release-0-3-1

release-0-3-2

release-0-3-3

release-0-3-4

release-0-4-0

release-0-4-1

release-0-4-2

release-0-4-3

release-0-4-4

release-0-4-5

release-0-4-6

release-0-4-7

release-0-4-8

release-0-5-0

07faf95a10 bind_config: Add support for HostKeyAlgorithms Anderson Toshiyuki Sasaki 2019-05-17 13:05:46 +02:00
250a0be0f9 options: Added an option to set server HostKey algorithms Anderson Toshiyuki Sasaki 2019-05-17 11:38:43 +02:00
8f6e6f774e bind_config: Add support for PubkeyAcceptedKeyTypes Anderson Toshiyuki Sasaki 2019-05-16 14:57:49 +02:00
f4363f5655 options: Add option to set server accepted pubkey types Anderson Toshiyuki Sasaki 2019-05-15 11:48:49 +02:00
bc95a51710 kex, known_hosts: Use new tokens functions Anderson Toshiyuki Sasaki 2019-05-15 18:57:14 +02:00
2c4850cbbd token, kex: Add functions to handle tokens lists Anderson Toshiyuki Sasaki 2019-05-15 17:48:41 +02:00
b0ff64bf1b pki: Check if the key is allowed against right list Anderson Toshiyuki Sasaki 2019-05-16 17:07:57 +02:00
d013a94f37 gitlab-ci: Remove cmake cache before building in csbuild Anderson Toshiyuki Sasaki 2019-05-21 15:08:33 +02:00
adfd3cd3f3 gitlab-ci: Do not print crypto debug info Anderson Toshiyuki Sasaki 2019-05-20 16:19:23 +02:00
1a3436d7d3 knownhosts: Fix use after free Andreas Schneider 2019-06-12 10:17:26 +02:00
77ada9e4dc tests: Fix null termination in torture_read_one_line() Andreas Schneider 2019-05-28 08:48:33 +02:00
328a631a0f config: Add missing NULL check Andreas Schneider 2019-05-28 08:43:49 +02:00
a7e17a34ad gzip: Add missing NULL check Andreas Schneider 2019-05-28 08:41:48 +02:00
d9f9bee13f tests: Fix assert_return_code in server test Andreas Schneider 2019-05-28 08:39:18 +02:00
7e344ca052 examples: Fix a possible resource leak in sshd_direct-tcpip Andreas Schneider 2019-05-28 08:36:21 +02:00
18a89c6ec2 pki: Avoid a null pointer derefrence Andreas Schneider 2019-05-28 08:33:22 +02:00
cb502a4a6d pki_crypto: Make sure that we set buf to NULL after free() Andreas Schneider 2019-05-28 08:29:05 +02:00
123db84b2c pki_crypto: Fix a possible null pointer dereference Andreas Schneider 2019-05-28 08:24:33 +02:00
30997a098c Update ChangeLog Anderson Toshiyuki Sasaki 2019-05-22 13:17:30 +02:00
9b1772ecbd sftp: Remove the break statements raminfp 2019-05-21 15:11:29 +00:00
9fb7fb3fac socket: Use calloc in ssh_socket_new() Anderson Toshiyuki Sasaki 2019-05-20 17:10:57 +02:00
59ba3f1896 dh-gex: Fix memory leak in DH GEX with OpenSSL Anderson Toshiyuki Sasaki 2019-05-17 11:41:51 +02:00
38f9802eec config: Add support for PubkeyAcceptedKeyTypes Anderson Toshiyuki Sasaki 2019-05-13 11:55:30 +02:00
eae971c002 tests: Update knownhost tests with reproducer from T110 Jakub Jelen 2019-02-07 17:50:39 +01:00
962bdf806c knownhosts: Handle wildcard ports matches against standard one Jakub Jelen 2019-02-07 17:42:10 +01:00
1e22a089eb Reformat ssh_hostport() Jakub Jelen 2019-02-07 16:57:22 +01:00
8152c6aba4 knownhosts: Ignore OpenSSH markers related to certificates Jakub Jelen 2019-02-07 16:05:32 +01:00
7cc159d720 cmake,options: Allow to set global client config file Anderson Toshiyuki Sasaki 2019-05-06 15:19:40 +02:00
248e5acd5c pki: Fail to sign when using wrong hash algorithm Anderson Toshiyuki Sasaki 2019-05-09 17:38:54 +02:00
550a1a7667 pki: Remove unused code Anderson Toshiyuki Sasaki 2019-05-02 18:58:45 +02:00
db51fa1bc1 pki: Use pki_sign_data() and pki_verify_data_signature() Anderson Toshiyuki Sasaki 2019-05-02 18:31:06 +02:00
d923dc39c1 tests: Use public key to verify signatures Anderson Toshiyuki Sasaki 2019-05-02 16:07:09 +02:00
88a8b1f57c pki_gcrypt: Added pki_sign_data() and pki_verify_data_signature() Anderson Toshiyuki Sasaki 2019-05-02 18:13:50 +02:00
7bc53f3957 pki_mbedcrypto: Added pki_sign_data() and pki_verify_data_signature() Anderson Toshiyuki Sasaki 2019-05-02 18:07:47 +02:00
fd9446553b pki_crypto: Added pki_sign_data() and pki_verify_data_signature() Anderson Toshiyuki Sasaki 2019-05-02 13:56:15 +02:00
33af736555 pki_crypto: Store ECDSA raw signature in ssh_signature Anderson Toshiyuki Sasaki 2019-04-30 16:42:28 +02:00
132c7bee64 pki_crypto: Store DSA raw signature in ssh_signature Anderson Toshiyuki Sasaki 2019-04-30 15:26:08 +02:00
ba67555764 pki_crypto: Store raw RSA signature in ssh_signature Anderson Toshiyuki Sasaki 2019-04-30 11:15:55 +02:00
0ea9e39e81 pki: Add a common place to store raw signatures Anderson Toshiyuki Sasaki 2019-04-30 15:31:19 +02:00
e775182c2e pki: Make DSA signature to use SHA1 instead of AUTO Anderson Toshiyuki Sasaki 2019-05-06 17:33:25 +02:00
76f9808eb2 auth, pki: Calculate hash internally when signing/verifying Anderson Toshiyuki Sasaki 2019-04-29 16:29:16 +02:00
58b3b2696c pki_crypto: Change SSH_KEYTYPE_ED25519 position in switches Anderson Toshiyuki Sasaki 2019-04-25 18:02:56 +02:00
20c03c289e pki_crypto: Refactor pki_signature_to_blob() Anderson Toshiyuki Sasaki 2019-04-25 15:57:00 +02:00
c27d41df75 pki_crypto: Fixed typos transfered -> transferred Anderson Toshiyuki Sasaki 2019-05-10 11:33:33 +02:00
99053a6c33 pki_cryto: Refactor pki_signature_from_blob() Anderson Toshiyuki Sasaki 2019-04-25 15:14:26 +02:00
c3b8f9c0ec pki_crypto: Make pki_signature_from_rsa_blob() to return int Anderson Toshiyuki Sasaki 2019-04-25 10:22:14 +02:00
01e98a6df7 pki: Remove duplicate and unused code Anderson Toshiyuki Sasaki 2019-04-24 15:17:45 +02:00
dbf3f962a4 pki: Refactor ssh_srv_pki_do_sign_sessionid() Anderson Toshiyuki Sasaki 2019-04-24 15:12:14 +02:00
3917a5c916 pki: Refactor ssh_pki_do_sign() Anderson Toshiyuki Sasaki 2019-04-09 19:00:05 +02:00
5f7a3c5c66 wrapper: Make sha{1, 256, 384, 512}() input const Anderson Toshiyuki Sasaki 2019-04-29 14:53:13 +02:00
848f59c37e wrapper.h: Add SSH_DIGEST_SHA384 to ssh_digest_e enum Anderson Toshiyuki Sasaki 2019-04-10 19:08:45 +02:00
0849e44220 dh: fix libcrypto leak via ssh_dh_keypair_set_keys Jon Simons 2019-04-30 12:37:26 -07:00
ee42e3badb dh: fix libcrypto dh_ctx leak in ssh_dh_cleanup Jon Simons 2019-04-30 11:54:33 -07:00
ee82bab801 auth: Avoid memory on error in ssh_userauth_agent_publickey() Andreas Schneider 2019-04-30 08:03:25 +02:00
db8aca69a7 knownhosts: Avoid possible null pointer dereference Andreas Schneider 2019-04-30 08:01:53 +02:00
3fccb24464 tests:pkd: Fix size comparison (payload.len is size_t) Andreas Schneider 2019-04-29 16:52:23 +02:00
19cb6f1b6c server: fix sending SSH_MSG_EXT_INFO upon rekey Jon Simons 2019-04-24 11:09:26 -07:00
c0f3a96089 server: fix queued USERAUTH_SUCCESS rekey bug Jon Simons 2019-04-24 10:41:19 -07:00
7ef2fe7f7b packet: log when data-based rekeying needed Jon Simons 2019-04-24 10:09:03 -07:00
175375bc09 tests/pkd: support --rekey to set rekey data limit Jon Simons 2019-04-24 09:50:17 -07:00
03a1f1dd0c tests/pkd: support optional --buffer for test payload Jon Simons 2019-04-24 09:26:54 -07:00
410f100968 tests/pkd: input test payload buffer Jon Simons 2019-04-24 09:01:36 -07:00
104c696bca dh-gex: Verify received primes in FIPS mode to match one of the known groups Jakub Jelen 2019-03-25 16:42:19 +01:00
e446507352 Provide a function to query crypto backend for FIPS status Jakub Jelen 2019-03-21 17:04:46 +01:00
67beaf363f dh-gex: Fall back to known primes when the moduli file is not readable Jakub Jelen 2019-03-21 14:56:16 +01:00
4012338862 doc: Update the description of the pki_private_key_decrypt() function to match reality Jakub Jelen 2019-03-26 09:40:11 +01:00
bb7920efbc tests: Avoid reading user configuration when running algorithm tests Jakub Jelen 2019-03-25 16:41:11 +01:00
3e8bdb122f knownhosts: Check if the hosts file exists Andreas Schneider 2019-04-29 10:07:31 +02:00
cc536377f9 sftp server: Implementation of sftp_server_free() as counterpart to sftp_server_new() David Wedderwille 2019-04-24 11:37:26 +02:00
643ca67f88 gssapi: Add missing malloc checks Andreas Schneider 2019-04-29 10:39:33 +02:00
8a885f0bd3 channels: Add check if we are authenticated before we create a channel Andreas Schneider 2019-04-29 10:31:20 +02:00
c4348c7b3c sftp: Check if the channel is still valid Andreas Schneider 2019-04-29 10:16:44 +02:00
5ffc595d0d Document more @return values with doxygen for APIs Enji Cooper 2019-04-29 09:59:53 +02:00
815a53375e libcrypto: Fix compilation without deprecated OpenSSL APIs Rosen Penev 2019-04-28 16:53:41 -07:00
6cd506ea81 options: Update doc for SSH_OPTIONS_PORT Till Wimmer 2019-04-09 12:56:39 +02:00
95ab5f0dce channel: Don't send EOF on channel more than once Till Wimmer 2019-04-09 15:57:03 +02:00
9340a0af5e connector: Stop socket-to-channel EOF flooding Till Wimmer 2019-04-01 13:26:08 +02:00
08b3301e4f tests/pkd: connect to openssh using certificates Ben Toews 2019-03-04 19:29:30 -07:00
4a01496810 tests/unittests: test that signatures can be verified with certs Ben Toews 2019-02-14 16:06:38 -07:00
2f26b5d63c pki: allow certificates to be used in signature verification Ben Toews 2019-02-13 13:00:53 -07:00
7c0719e53d pki: parse keys from certificates into ssh_key Ben Toews 2019-02-13 08:49:39 -07:00
04b284dae0 tests/unittests: test ECDSA/ED25519 support Ben Toews 2019-02-28 13:27:31 -07:00
19cd909c8d pki: support ECDSA/ED25519 certificates Ben Toews 2019-03-12 10:27:35 -06:00
b1f3cfec34 libssh: deprecate SSH_KEYTYPE_ECDSA Ben Toews 2019-03-12 10:25:49 -06:00
78f764b7c9 torture_pki: store test case attributes in struct instead of multiple arrays Ben Toews 2019-03-12 09:11:47 -06:00
e036c426f8 tests: add OpenSSL includes dir for torture tests Ben Toews 2019-02-28 12:41:21 -07:00
77a6fe4a62 dh-gex: Add error check for ssh_packet_client_dhgex_group() Andreas Schneider 2019-04-15 19:58:58 +02:00
33ad6bc54e dh: Add compat function for openssl < 1.1.0 Simo Sorce 2019-03-18 09:03:57 -04:00
33399e52f0 dh: Add OpenSSL libcrypto specific DH implementation Simo Sorce 2019-03-17 15:46:41 -04:00
7551857d08 dh: Move DH key handling into a separate file. Simo Sorce 2019-03-17 15:45:24 -04:00
30d97979a2 dh: Confine DH KEX keys handling into fewer functions Simo Sorce 2019-03-13 14:20:52 -04:00
2f38af1559 dh: Rename variables for DH key exchange Simo Sorce 2019-03-12 18:24:36 -04:00
997fe4d418 mbedcrypto: Make bignum_bin2bn behave like others Simo Sorce 2019-03-12 18:43:42 -04:00
fd30cf0676 tests: Add test cases for Match keyword in bind config Anderson Toshiyuki Sasaki 2019-03-14 18:10:47 +01:00
d9e6237a47 bind_config: Added minimal support for Match keyword Anderson Toshiyuki Sasaki 2019-03-12 16:32:08 +01:00
25af8641b3 bind: Apply global configuration automatically Anderson Toshiyuki Sasaki 2019-03-11 17:07:20 +01:00
d6d9b56bb9 cmake,options: Allow to set global bind config file Anderson Toshiyuki Sasaki 2019-03-11 15:56:06 +01:00
68385a2e98 options: Add a bind option to set the config directory Anderson Toshiyuki Sasaki 2019-03-07 13:04:29 +01:00
fd25beff68 options: Introduce ssh_bind_options_parse_config() Anderson Toshiyuki Sasaki 2019-03-07 17:00:44 +01:00
bab4d2b77b tests: Add tests for server side configuration Anderson Toshiyuki Sasaki 2019-03-01 13:15:35 +01:00

... 28 29 30 31 32 ...