shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-04 20:30:38 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
449954d99afc2a2074c18f44d46f7f196d2be68c
libssh/src
History
Simo Sorce 449954d99a Fix crypto_free zeroing of encryption keys 
The zeroing MUST use the correct cipher length as keys can be both
longer or shorter than the digest. In one case only some part of the key
may end up being zeroed, in the other memory corruption may happen as
we zero memory we do not own.

Signed-off-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2019-03-07 12:02:23 +01:00
..
ABI
cmake: Bump API version to 4.7.4
2019-02-07 14:35:35 +01:00
external
chacha: remove re-declared type
2018-10-13 22:08:39 +02:00
threads
libcrypto: Fix access violation in ssh_init()
2018-11-30 18:26:55 +01:00
agent.c
socket: Undouble socket fds
2018-10-25 18:49:29 +02:00
auth.c
packet: Introduce a new function to access crypto
2019-01-09 10:14:56 +01:00
base64.c
Remove vim modelines from all files
2018-06-28 08:41:08 +02:00
bignum.c
bignum: Reformat ssh_make_string_bn and unbreak build with DEBUG_CRYPTO
2019-01-26 16:40:14 +01:00
bind.c
bind: Check for POLLRDHUP on the server if available
2019-01-15 15:44:50 +01:00
buffer.c
buffer: Fix typo in a comment
2019-02-07 10:30:05 +01:00
callbacks.c
callbacks: Implement list of callbacks for channels
2016-05-02 16:56:54 +02:00
chachapoly.c
libcrypto: Implement OpenSSH-compatible AES-GCM ciphers using OpenSSL
2018-10-09 12:05:40 +02:00
channels.c
channels: Don't call ssh_channel_close() twice
2018-12-12 18:31:31 +01:00
client.c
client: Add missing break, remove useless return
2019-02-21 10:51:28 +01:00
CMakeLists.txt
Allow building without Group Exchange support
2019-02-07 10:30:05 +01:00
config.c
config: Avoid buffer overflow
2019-02-22 11:41:40 +01:00
connect.c
connect: Fix size type for i an j in ssh_select()
2018-12-07 14:08:31 +01:00
connector.c
connector: Don't NULL connector (in|out) channels on event remove
2019-01-30 09:24:26 +01:00
curve25519.c
dh: move state changes inside DH code
2019-01-24 11:56:23 +01:00
dh-gex.c
dh-gex: fix double-ssh_dh_init_common memory leak
2019-01-30 13:22:59 +01:00
dh.c
Allow building without Group Exchange support
2019-02-07 10:30:05 +01:00
ecdh_crypto.c
bignum: harmonize gcrypt, libcrypto and libmcrypt bignum
2019-01-24 11:04:44 +01:00
ecdh_gcrypt.c
kex: use runtime callbacks (server)
2019-01-24 09:19:59 +01:00
ecdh_mbedcrypto.c
kex: use runtime callbacks (server)
2019-01-24 09:19:59 +01:00
ecdh.c
kex: use runtime callbacks (server)
2019-01-24 09:19:59 +01:00
error.c
error: Add ssh_reset_error() function
2018-08-27 11:29:18 +02:00
gcrypt_missing.c
dh: Do some basic refactoring
2019-01-24 11:56:23 +01:00
getpass.c
getpass: Use explicit_bzero()
2018-09-04 19:57:31 +02:00
gssapi.c
packet: Introduce a new function to access crypto
2019-01-09 10:14:56 +01:00
gzip.c
packet: Introduce a new function to access crypto
2019-01-09 10:14:56 +01:00
init.c
libcrypto: detect non matching headers/shared lib
2018-11-21 16:54:15 +01:00
kex.c
Add tests and implementation for Encrypt-then-MAC mode
2019-02-22 15:31:08 +01:00
known_hosts.c
bignum: harmonize gcrypt, libcrypto and libmcrypt bignum
2019-01-24 11:04:44 +01:00
knownhosts.c
knownhosts: Take StrictHostKeyChecking option into account
2018-11-08 16:19:18 +01:00
legacy.c
legacy: Fix possible null pointer dereference
2018-10-24 09:48:35 +02:00
libcrypto-compat.c
crypto: Fix compilation for OpenSSL without deprecated APIs
2018-11-08 09:32:28 +01:00
libcrypto-compat.h
crypto: Fix compilation for OpenSSL without deprecated APIs
2018-11-08 09:32:28 +01:00
libcrypto.c
Remove SHA384 HMAC
2019-02-22 15:30:52 +01:00
libgcrypt.c
Remove SHA384 HMAC
2019-02-22 15:30:52 +01:00
libmbedcrypto.c
Remove SHA384 HMAC
2019-02-22 15:30:52 +01:00
libssh.map
cmake: Bump library version
2018-09-20 16:35:13 +02:00
log.c
log: Make sure the buffer for date is big enough
2018-08-20 18:42:03 +02:00
match.c
config: Parse Match keyword
2018-09-05 11:43:05 +02:00
mbedcrypto_missing.c
mbedcrypto: fixed nasty RNG bugs
2019-01-24 11:53:22 +01:00
messages.c
messages: Fix NULL check, preventing SEGFAULT
2019-01-26 13:56:15 +01:00
misc.c
include: Mark ssh_print_hexa as deprecated
2019-02-07 09:46:13 +01:00
options.c
options: Allow to configure cryptographic algorithms for server
2019-02-07 10:30:05 +01:00
packet_cb.c
kex: use runtime callbacks (client)
2019-01-24 09:11:30 +01:00
packet_crypt.c
Add tests and implementation for Encrypt-then-MAC mode
2019-02-22 15:31:08 +01:00
packet.c
Add tests and implementation for Encrypt-then-MAC mode
2019-02-22 15:31:08 +01:00
pcap.c
pcap: Correctly initialize sockaddr_in in ssh_pcap_context_set_file()
2019-01-22 13:12:25 +01:00
pki_container_openssh.c
pki_container_openssh: Add padding to be compatible with OpenSSH
2019-02-07 10:30:05 +01:00
pki_crypto.c
pki_crypto: plug pki_signature_from_blob leaks
2019-01-30 13:22:59 +01:00
pki_ed25519.c
pki: Allow reading keys in new OpenSSH format
2018-09-18 09:53:49 +02:00
pki_gcrypt.c
pki_gcrypt: Include missing stdbool.h
2019-02-22 11:00:31 +01:00
pki_mbedcrypto.c
pki: NULL check pki_signature_from_rsa_blob result
2019-01-30 13:22:59 +01:00
pki.c
pki: Avoid a possible segfaults in error paths
2019-01-26 14:21:26 +01:00
poll.c
ssh_event_dopoll can also return SSH_AGAIN
2019-02-27 08:17:53 +01:00
scp.c
Remove vim modelines from all files
2018-06-28 08:41:08 +02:00
server.c
connector: Fallback on the socket output callback
2019-02-21 14:03:20 +01:00
session.c
Add flag for tracking EtM HMACs
2019-02-22 15:31:02 +01:00
sftp.c
sftp: Add NULL check in sftp_ext_free()
2019-01-26 13:56:25 +01:00
sftpserver.c
sftpserver: allocate packet on sftp_server_new
2018-09-25 16:41:54 +02:00
socket.c
socket: Use more portable PF_UNIX instead of PF_LOCAL
2019-02-21 10:51:25 +01:00
string.c
string: Don't allow to allocate strings bigger than 256M
2018-09-04 12:29:20 +02:00
threads.c
threads: Automatically call ssh_init on load
2018-08-03 16:43:03 +02:00
wrapper.c
Fix crypto_free zeroing of encryption keys
2019-03-07 12:02:23 +01:00