libssh

Автор	SHA1	Сообщение	Дата
Dirk Neukirchen	71ce6592e4	headers: fix missing mode_t (2nd) Reviewed-By: Aris Adamantiadis <aris@0xbadc0de.be>	2015-11-10 18:38:16 +01:00
Andreas Schneider	21bf499bb4	agent: Fix agent auth on big endian machines BUG: https://red.libssh.org/issues/204 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-10-20 17:16:38 +02:00
Aris Adamantiadis	84a85803b4	crypto: old-fashioned aes_ctr when evp_aes_ctr is missing	2015-09-25 11:51:45 +02:00
Aris Adamantiadis	d46fe6a51c	SSH1: fix duplicate identifier	2015-09-25 08:52:38 +02:00
Aris Adamantiadis	e83b4e8129	libcrypto: clean up EVP functions	2015-09-25 00:05:10 +02:00
Axel Eppe	bdfe6870f6	pki: Add certificate loading functions - ssh_pki_import_cert_base64() - ssh_pki_import_cert_file() - ssh_pki_import_cert_blob() Those functions are currently simple wrappers around their pubkey counterpart. - ssh_pki_copy_cert_to_privkey() This function copies the cert-specific data to a private key. Signed-off-by: Axel Eppe <aeppe@google.com> Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-09-07 13:30:14 +02:00
Axel Eppe	6da4e21065	pki: Add rsa, dss certificate key type definitions - Add rsa/dsa (ssh-{rsa,dss}-cert-v01@openssh.com) as key types. - Add a cert_type member in the ssh_key struct. Signed-off-by: Axel Eppe <aeppe@google.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-09-07 13:29:23 +02:00
Andreas Schneider	3b0b1c3ee3	pki: Use the standard logging function Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-09-07 10:57:34 +02:00
Michael Wilder	e6f93c887b	crypto: Add OpenSSL EVP functions for FIPS compatibility Signed-off-by: Michael Wilder <wilder.michael@cimcor.com>	2015-09-07 07:45:01 +02:00
Tilo Eckert	71d86be42e	define our own platform-independent S_IF macros Signed-off-by: Tilo Eckert <tilo.eckert@flam.de> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-07-30 10:47:34 +02:00
Fabiano Fidêncio	2bf6e66ffe	client: handle agent forward open requests with callbacks Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Aris Adamantiadis <aris@badcode.be>	2015-07-07 13:24:55 +02:00
Andreas Schneider	387fd2cf53	include: Add stdarg.h so we can check for va_copy macro Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-06-30 09:58:47 +02:00
Peter Volpe	7aeba71a92	agent: Add ssh_set_agent_socket Allow callers to specify their own socket for an ssh agent. Signed-off-by: Peter Volpe <pvolpe@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-06-29 09:47:02 +02:00
Douglas Heriot	a65af1b3b8	cmake: Do not use CMAKE_(SOURCE\|BINARY)_DIR	2015-06-24 18:17:05 +02:00
Andreas Schneider	30a7229fc5	include: Add support for older MSVC versions Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-06-24 16:23:13 +02:00
Andreas Schneider	3f4b5436e5	Bump version to 0.7.0 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-06 11:01:33 +02:00
Andreas Schneider	ad09009201	include: Fix variadic macro issues with MSVC Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 18:45:47 +02:00
Andreas Schneider	3f04367fb8	bind: Correctly close sockets and invalidate them. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:32:09 +02:00
Andreas Schneider	c699b9ca94	external: Use standard int types Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:02:56 +02:00
Andreas Schneider	53586ed4ba	include: Do not make x11 variables const We allocate them and also free them after the callback has been executed. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 16:19:45 +02:00
Andreas Schneider	dbe7df7571	cmake: Detect __func__ and __FUNCTION__ during configure step Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 13:41:02 +02:00
Andreas Schneider	a3357b8920	include: We should use __func__ which is C99 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 10:58:36 +02:00
Aris Adamantiadis	940cb233ce	buffer: buffer_pack & unpack on non-gnu compilers	2015-02-08 18:49:32 +01:00
Andreas Schneider	de10a7754b	buffer: buffer: Improve argument checking of in ssh_buffer_pack() Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Aris Adamantiadis <aris@0xbadc0de.be>	2015-02-02 17:32:31 +01:00
Andreas Schneider	afc9988c93	buffer: Improve argument checking in ssh_buffer_pack() Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Aris Adamantiadis <aris@0xbadc0de.be>	2015-02-02 17:32:18 +01:00
Aris Adamantiadis	423fa6818b	ed25519: ADd OpenSSH encrypted container import Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 14:45:52 +01:00
Aris Adamantiadis	61e2c8f0f7	external: Add OpenSSH bcrypt and blowfish implementation Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 14:45:52 +01:00
Aris Adamantiadis	c02b260e7e	server: Add support for ed25519 keys in the server. Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 14:45:52 +01:00
Aris Adamantiadis	46bc11f977	ed25519: Add support to export OpenSSH container keys Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 14:45:52 +01:00
Aris Adamantiadis	3ec3a926e5	ed25519: Add support o import OpenSSH container keys Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 14:45:52 +01:00
Aris Adamantiadis	2f7886837f	pki.h: Replace tabs with spaces Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 14:45:52 +01:00
Léo Peltier	8db4520d89	cmake: Add libsshpp.hpp to the distributed headers list. BUG: https://red.libssh.org/issues/163 Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-01-20 19:32:48 +01:00
Jon Simons	6895d0b727	session: add getter for kexalgo Signed-off-by: Jon Simons <jon@jonsimons.org> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-12-05 10:48:07 +01:00
Jon Simons	4745d652b5	pki_crypto.c: plug ecdsa_sig->[r,s] bignum leaks Per ecdsa(3ssl), ECDSA_SIG_new does allocate its 'r' and 's' bignum fields. Fix a bug where the initial 'r' and 's' bignums were being overwritten with newly-allocated bignums, resulting in a memory leak. BUG: https://red.libssh.org/issues/175 Signed-off-by: Jon Simons <jon@jonsimons.org> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-12-05 10:42:32 +01:00
Aris	93c7b81b4e	ed25519: Generate, sign and verify keys. Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-09-07 22:07:34 +02:00
Aris Adamantiadis	93e82fa0c0	crypto: Add ed25519 implementation from OpenSSH. Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-09-07 21:35:20 +02:00
Aris Adamantiadis	86ae6b2251	buffer: Add a secure buffer mechanism to avoid memory spills Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-09-07 10:36:32 +02:00
Aris Adamantiadis	228dc08038	bignums: detach bignum-related functions from dh.c. Reviewed-by: Andreas Schneider <asn@samba.org>	2014-08-06 10:07:36 +02:00
Aris Adamantiadis	33cd594f1f	crypto: fix secure burning, structure members naming Reviewed-by: Andreas Schneider <asn@samba.org>	2014-08-06 10:05:19 +02:00
Aris Adamantiadis	3b4b0f01ec	buffer: add a hidden canary to detect format errors Reviewed-by: Andreas Schneider <asn@samba.org>	2014-08-06 09:58:52 +02:00
Aris Adamantiadis	c341da03d3	buffers: adapt sftp.c to ssh_buffer_(un)pack() Reviewed-by: Andreas Schneider <asn@samba.org>	2014-08-06 09:51:00 +02:00
Aris Adamantiadis	835e34d1eb	Buffer: add ssh_buffer_(un)pack() That function permits chaining of buffer values to minimize buffer handling in packet sending code. Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-08-06 09:04:34 +02:00
Andreas Schneider	c2ee63431b	pki: Add missing semi-colon.	2014-05-07 09:30:29 +02:00
Andreas Schneider	11cfb2903e	pki: Make pki_key_ecdsa_nid_to_name() a shared function.	2014-04-23 11:12:08 +02:00
Dirkjan Bussink	6c74d6f891	Add options support for setting and getting HMAC algorithms BUG: https://red.libssh.org/issues/91 Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-04-22 10:57:18 +02:00
Dirkjan Bussink	262c82ac06	Add negotiation for SHA2 HMAC algorithms BUG: https://red.libssh.org/issues/91 Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-04-22 10:57:00 +02:00
Dirkjan Bussink	164b8e99cc	Add logic to support SHA2 HMAC algorithms BUG: https://red.libssh.org/issues/91 Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-04-22 10:56:46 +02:00
Dirkjan Bussink	4a08902664	Add SHA2 algorithms for HMAC BUG: https://red.libssh.org/issues/91 Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-04-22 10:55:59 +02:00
Jon Simons	eb86fd8cdf	kex: server fix for first_kex_packet_follows Ensure to honor the 'first_kex_packet_follow' field when processing KEXINIT messages in the 'ssh_packet_kexinit' callback. Until now libssh would assume that this field is always unset (zero). But some clients may set this (dropbear at or beyond version 2013.57), and it needs to be included when computing the session ID. Also include logic for handling wrongly-guessed key exchange algorithms. Save whether a client's guess is wrong in a new field in the session struct: when set, the next KEX_DHINIT message to be processed will be ignored per RFC 4253, 7.1. While here, update both 'ssh_packet_kexinit' and 'make_sessionid' to use softabs with a 4 space indent level throughout, and also convert various error-checking to store intermediate values into an explicit 'rc'. Patch adjusted from original to ensure that client tests remain passing (ie 'torture_connect'): restrict the changes in 'ssh_packet_kexinit' only for the 'server_kex' case. Signed-off-by: Jon Simons <jon@jonsimons.org> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2014-04-22 09:26:59 +02:00
Andreas Schneider	e2805abbf7	Revert "kex: server fix for first_kex_packet_follows" The patch breaks the client with ECDSA. This reverts commit `5865b9436f`.	2014-04-15 09:49:25 +02:00

1 2 3 4 5 ...

831 Коммитов