libssh

Автор	SHA1	Сообщение	Дата
Norbert Pocs	58a2943d42	.gitlab-ci: Add centos9 image Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit 84df28ee31281bc7c96211455a8b74f0e7ae4fe2)	2022-08-02 16:03:05 +02:00
Norbert Pocs	54c5472b53	.gitlab-ci: Remove remaining rawhide lines Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit 224298a4d050dfc903885a7dcd81eb694d896cab)	2022-08-02 16:03:03 +02:00
Jakub Jelen	17e9cd70a5	Move digest functions into separate file The external ed25519 requires also the sha512 functions to work. Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit c09b02c573537a63d58a30b035a78232fe9e5da2)	2022-08-02 16:01:42 +02:00
Jakub Jelen	cee5c9f404	Build external override library with all symbols The curve25519 depends on ssh_get_random, which is normally built into libssh. For the external override tests to build, we need to have them in separate source file that can be included for this test. For some reason, this did not happen on CI builds, but it did happen in koji during RPM builds. Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit 0da54f29088687ae9db25caa99d4bd1b3239ae6e)	2022-08-02 16:01:35 +02:00
Andreas Schneider	43fb1d7c8d	packet: Check hmac return codes in ssh_packet_hmac_verify() CID #1490530 Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit b42e9a19a3b72303551158d08b4efdb14ffc387a)	2022-07-14 15:03:58 +02:00
Andreas Schneider	5c629f22f6	packet: Use consistent return codes in ssh_packet_hmac_verify() Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit e27ee9d0a4ae8021e8c83175e3eaf2fff131dafa)	2022-07-14 15:03:57 +02:00
Andreas Schneider	46e0703c6e	packet: Reformat ssh_packet_hmac_verify() Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit 4a7791b78405f1f0e084f10c0928329181a38b57)	2022-07-14 15:03:55 +02:00
Norbert Pocs	cffa103378	Make it work with openssl3.0 The KDF was changed in the new API, fetching the algorithm first then creating the context using it. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit 9a4c5203af474a7bddc4a9adba22e75321734086)	2022-07-13 15:36:07 +02:00
Norbert Pocs	ea6558b3a6	Change cmake files for new openssl API The new API does not provide EVP_KDF_CTX_new_id function, insted it works with EVP_KDF_CTX_new and fetching the algorithm. Adding a check for both to make it work with the new API too. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit 8343a43edc3571b1b16da819e06a4ecdcf217569)	2022-07-13 15:36:04 +02:00
Norbert Pocs	33e12317c3	torture_options: Add test for '@' in login name Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit 964df4dc290c631fe2ece74600e510ca6c0a7385)	2022-07-12 10:45:35 +02:00
Norbert Pocs	d17c635617	options: Parse hostname by last '@' The login name can have '@' char in it Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit bb5f7e2707c1d04cd080bc64ff748ec89cf614fa)	2022-07-12 10:45:34 +02:00
Norbert Pocs	dde5fd8d38	bind.c: Add missing size constant to err_msg Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> (cherry picked from commit e53a2711d3e4459c06b4d8facaca7195902f0405)	2022-07-12 10:43:25 +02:00
Andreas Schneider	46e78aaa3a	gitlab-ci: Drop the rawhide runner Fedora 36 is using OpenSSL 3.0 now. Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit a0c0efaf2e7f0ebd583f19f07c070a08dbf5736e)	2022-07-11 11:02:20 +02:00
Andreas Schneider	3107133d10	tests: Setup Leak Sanitizer suppressions for OpenSSL Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit 21ef4881210d601f33c77fd9b9c7038dfe226281)	2022-07-11 11:02:18 +02:00
Andreas Schneider	b9ccaf6e23	cmake: Build curve25519_ref.c if we build with libgcrypt Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit 0128ed0d2c08fedfb9ae5a2b22d74f67188414b1)	2022-07-11 11:02:17 +02:00
Andreas Schneider	38b17e6e6e	pki: Fix building pki_ed25519.c with libgcrypt Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit 6a25f07777337637bfa54ff18bb9705db4461bf8)	2022-07-11 11:02:16 +02:00
Andreas Schneider	db0a1d6811	src: Fix building curve25519 with libgcrypt Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com> (cherry picked from commit cc0939df731acb7505fbe8bbf277eb73567fc1ff)	2022-07-11 11:02:14 +02:00
Andreas Schneider	ced93a09d1	Bump version to 0.10.0 Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-07 15:27:23 +02:00
Andreas Schneider	3cff0eaa25	Update CHANGELOG for 0.9 changes Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-07 15:19:49 +02:00
Andreas Schneider	51c7816bea	Rename ChangeLog Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-07 15:19:49 +02:00
Norbert Pocs	11a7c7b45b	libgcrypt: Remove useless comparison Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	78d109596c	pki_crypto: Fix segfault error when pkcs11 EVP_PKEY_dup can't be used with ENGINE generated keys and the key can't be freed because it is passing the main key from the struct. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	b80ad81d8e	.gitlab-ci: Add fedora rawhide to gitlab CI Rawhide has openssl 3.0 support which can test the new changes. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	20c13a2c76	Change const bignum to bignum Openssl3.0 API retrieves bignum variables from a key. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	a9dddd89aa	Use EVP_PKEY as a key type in key structs Merge multiple key variables into one variable. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	7792d38157	Port functions to openssl3.0 Remove usage of deprecated functions. Exceptions are: - pkcs11 (no openssl provider support yet) - ec (no support for uncompressed EC keys https://github.com/openssl/openssl/pull/16624) Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	fdf518435c	Define EC name constants for openssl3 Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Norbert Pocs	debd0ea4d3	Update HMAC function parameter type New openssl API, libmbedtls, libgcrypt use size_t for HMAC len pameter. New helper functions were added in libcrypto.c to avoid code duplication. (the header pki.h is needed for this reason) Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:39:39 +02:00
Jakub Jelen	51c940adc9	misc: FreeBSD compatible strerror_r usage Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-07 08:38:09 +02:00
Norbert Pocs	d30cf11cb6	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	e5bc5ffd04	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	4b92d48085	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	a2a037a821	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	4719c09e6a	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	4f09bb3660	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	594608f21b	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	c437ba5c28	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	3efe7c3cfb	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	b44b749f28	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	9837471c2e	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	d92e389a80	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	0dce42c8fd	Rewrite strerror to ssh_strerror Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	face3aadb4	Add constant SSH_ERRNO_MSG_MAX Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	738cedb8be	Add ssh_strerror function - strerror_r for linux - strerror_s for windows Keep in mind that strerror_r has two versions: - XSI - GNU see manpage for more information Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Norbert Pocs	b6a4330fe4	Change include order in unittest files The tests are compiled without -D_GNU_SOURCE, therefore the XSI version of strerror_r is used. Defining _GNU_SOURCE in torture.h then including *.c gives error because it is assuming GNU version of strerror_r in the source file. Signed-off-by: Norbert Pocs <npocs@redhat.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-04 11:55:40 +02:00
Jakub Jelen	2abd4bfb6c	.gitlab-ci: Fix typo in the cmake option name Signed-off-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-04 10:11:57 +02:00
Juraj Vijtiuk	0c08159f53	Fix mbedTLS issues caused by v3 API changes Signed-off-by: Juraj Vijtiuk <vijtiuk.juraj@gmail.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-04 08:52:18 +02:00
Andreas Schneider	9caedca2c6	API: Bump SO version to 4.9.0 Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Jakub Jelen <jjelen@redhat.com>	2022-07-02 07:04:48 +02:00
omsheladia	e0985fc0b4	client: Add ssh_session_set_disconnect_message() Fix #98 by adding 'ssh_session_set_disconnect_message' Whenever the ssh session disconnects a "Bye Bye" message was set and displayed. Now the peer has a choice to set a customised message to be sent after the session is disconnected. The default "Bye Bye" will be set if this function is not called or not called correctly. The testcases in tests/server/torture_server can also demonstrate how this function works. Signed-off-by: Om Sheladia <omsheladia10@gmail.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-02 07:04:48 +02:00
Seung Min Park	4978f30320	Add ssh_send_issue_banner() API Signed-off-by: Seung Min Park <smpark@pnpsecure.com> Reviewed-by: Jakub Jelen <jjelen@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2022-07-02 07:04:48 +02:00

1 2 3 4 5 ...

5465 Коммитов