libssh

Автор	SHA1	Сообщение	Дата
Andreas Schneider	3eaad77de2	tests: Only link against threading library if available Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 19:09:51 +02:00
Andreas Schneider	9244750a63	cmake: Add missing OpenSSL include directory Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 19:04:49 +02:00
Andreas Schneider	e8720a30e2	cmake: Add --enable-stdcall-fixup for MinGW builds This fixes warnings for getaddrinfo() and freeaddrinfo(). Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 18:59:30 +02:00
Andreas Schneider	ad09009201	include: Fix variadic macro issues with MSVC Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 18:45:47 +02:00
Andreas Schneider	e4e3b3052f	tests: Apply umask before calling mkstemp() CID: #978660 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 11:27:09 +02:00
Andreas Schneider	96882cc58c	example: Fix a use after free in the scp example CID: #1032343 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 11:27:09 +02:00
Andreas Schneider	7c79959e94	example: Check return value of ssh_get_fd() CID: #1199454 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 11:27:09 +02:00
Andreas Schneider	ca501df8c8	sftp: Fix size check CID: #1296588 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-05 11:26:40 +02:00
Andreas Schneider	a4cecf59d5	external: Fix resetting the state Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 18:10:30 +02:00
Andreas Schneider	244881b87d	external: Make sure we burn buffers in bcrypt Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	cf05e653de	external: Fix a possible buffer overrun in bcrypt_pbkdf CID: #1250106 This fixes a 1 byte output overflow for large key length (not reachable in libssh). Pulled from OpenBSD BCrypt PBKDF implementation. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	4b9916136d	sftp: Add bound check for size CID: #1238630 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	33ecff11dd	buffer: Cleanup vaargs in ssh_buffer_unpack_va() CID: #1267977 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	83d3ee7fdb	string: Improve ssh_string_len() to avoid tainted variables CID: #1278978 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	b1a3f4ee33	pki_container: Fix a memory leak CID: #1267980 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	05498e0e33	pki_container: Add check for return value CID: #1267982 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 17:54:01 +02:00
Andreas Schneider	4948fe21cd	tests: Fix ctest default script Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 15:52:17 +02:00
Andreas Schneider	fe8fcb805c	cmake: Add support for Address Sanitizer Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 15:25:17 +02:00
Andreas Schneider	c4af6fbce3	config: Add missing HAVE_ARPA_INET_H define Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-05-04 10:04:26 +02:00
Aris Adamantiadis	3091025472	buffers: Fix a possible null pointer dereference This is an addition to CVE-2015-3146 to fix the null pointer dereference. The patch is not required to fix the CVE but prevents issues in future. Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-23 10:33:52 +02:00
Aris Adamantiadis	bf0c7ae0ae	CVE-2015-3146: Fix state validation in packet handlers The state validation in the packet handlers for SSH_MSG_NEWKEYS and SSH_MSG_KEXDH_REPLY had a bug which did not raise an error. The issue has been found and reported by Mariusz Ziule. Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-23 10:15:47 +02:00
Kevin Fan	b5dc8197f7	Fix leak of sftp->ext when sftp_new() fails Signed-off-by: Kevin Fan <kevinfan@google.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-14 20:56:56 +02:00
Andreas Schneider	19e23e6128	cmake: Require cmake 2.8.5 I've improved FindOpenSSL and FindZLIB in that version to work well with Windows and Linux. This was 2011 it should be old enough that most distributions have at least this version available. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 14:35:29 +02:00
Andreas Schneider	195f25cfbd	cmake: Detect network function correctly on Windows Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:32:09 +02:00
Andreas Schneider	1cb940c44a	socket: Cleanup ssh_socket_close() code. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:32:09 +02:00
Andreas Schneider	3f04367fb8	bind: Correctly close sockets and invalidate them. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:32:09 +02:00
Andreas Schneider	6c7e552509	cmake: Require cmake version 2.8.0	2015-04-10 13:32:09 +02:00
Andreas Schneider	b1cb8de385	cmake: Check for sys/param.h header file Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:07:12 +02:00
Andreas Schneider	69c9cd029f	cmake: Check for arpa/inet.h header file Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:02:56 +02:00
Andreas Schneider	c699b9ca94	external: Use standard int types Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-10 13:02:56 +02:00
Andreas Schneider	53586ed4ba	include: Do not make x11 variables const We allocate them and also free them after the callback has been executed. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 16:19:45 +02:00
Andreas Schneider	5236358a48	messages: Don't leak memory after callback execution Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 16:13:20 +02:00
Andreas Schneider	d6fe9dc220	unittests: Fix memory leak in torture_pki_ed25519 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 15:05:19 +02:00
Andreas Schneider	e0a73d3dbe	poll: Fix compilation with struct ssh_timestamp Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 15:02:29 +02:00
Andreas Schneider	dbe7df7571	cmake: Detect __func__ and __FUNCTION__ during configure step Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 13:41:02 +02:00
Andreas Schneider	a3357b8920	include: We should use __func__ which is C99 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-04-02 10:58:36 +02:00
Seb Boving	7ec798d3e7	Locally restart ssh_poll() upon EINTR. BUG: https://red.libssh.org/issues/186 Reviewed-by: Aris Adamantiadis <aris@0xbadc0de.be> Signed-off-by: Sebastien Boving <seb@google.com>	2015-02-23 22:05:54 +01:00
xjoaalm	f32e5f2191	Sending EOF on Socket that received a Broken Pipe makes call to poll to hang Reviewed-by: Aris Adamantiadis <aris@0xbadc0de.be> Signed-off-by: Joao Pedro Almeida Pereira <joao.almeida@blue-tc.com>	2015-02-23 22:01:15 +01:00
Andreas Schneider	cd078c7085	cmake: Drop reports via https only. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-20 15:47:22 +01:00
Aris Adamantiadis	2e445d5871	torture: fix includes for freebsd10	2015-02-14 22:09:02 +01:00
Aris Adamantiadis	5c46fbc680	tests: torture-misc: check for NULL return codes Use the LOGNAME environment variable if USER is not set, as it sometimes happens in cron jobs.	2015-02-12 11:38:21 +01:00
Aris Adamantiadis	2a780afc57	tests: workaround for compiling with older cmocka	2015-02-12 11:19:04 +01:00
Aris Adamantiadis	940cb233ce	buffer: buffer_pack & unpack on non-gnu compilers	2015-02-08 18:49:32 +01:00
Aris Adamantiadis	a653e27a2e	buffer: detect compilers not supporting __VA_ARGS__	2015-02-08 18:49:02 +01:00
Aris Adamantiadis	d3f30da158	buffer: fix use-before-nullcheck (coverity #1267979 ) Additionally, the function call was already existing after the NULL check	2015-02-03 22:21:22 +01:00
Aris Adamantiadis	760d93e87b	Revert "pki_gcrypt: fix warnings for SSH_KEYTYPE_ED25519" This reverts commit 10f71c67690cf3c0e1b6a733c3641407df2224e2. Commit was redundant with ed25519 branch	2015-02-03 09:58:28 +01:00
Aris Adamantiadis	d42a1a35b0	tests: allow conditionnal execution on pattern Option can be used to filter out irrelevant tests usage: ./torture_pki '*ed25519' Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 17:34:15 +01:00
Aris Adamantiadis	8af829a42a	base64: Use secure buffers Signed-off-by: Aris Adamantiadis <aris@0xbadc0de.be> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>	2015-02-02 17:33:58 +01:00
Andreas Schneider	ad8fa427dd	buffer: Abort if the canary is not intact in ssh_buffer_unpack() Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Aris Adamantiadis <aris@0xbadc0de.be>	2015-02-02 17:32:34 +01:00
Andreas Schneider	de10a7754b	buffer: buffer: Improve argument checking of in ssh_buffer_pack() Signed-off-by: Andreas Schneider <asn@cryptomilk.org> Reviewed-by: Aris Adamantiadis <aris@0xbadc0de.be>	2015-02-02 17:32:31 +01:00

... 5 6 7 8 9 ...

3496 Коммитов