1
1
The SSH library (BSD license) https://www.libssh2.org
Перейти к файлу
Dave McCaldon 8f102b8f56 Handle SSH_MSG_USERAUTH_FAILURE for password and kbd-int authentication
Neither libssh2_userauth_password_ex() nor
libssh2_userauth_keyboard_interactive_ex() would return a login failure
error if the server responded with a SSH_MSG_USERAUTH_FAILURE, instead
you would see whatever previous error had occurred, typically
LIBSSH2_ERROR_EAGAIN.

This patch changes error code -18 to LIBSSH2_ERROR_AUTHENTICATION_FAILED
and makes LIBSSH2_ERROR_PUBLICKEY_UNRECOGNIZED an alias for
LIBSSH2_ERROR_AUTHENTICATION_FAILED.  In addition, new logic in
userauth_password() properly handles SSH_MSG_USERAUTH_FAILURE and both
this function and userauth_keyboard_interactive() now properly return
LIBSSH2_ERROR_AUTHENTICATION_FAILED.
2010-01-29 09:14:11 +01:00
docs Handle SSH_MSG_USERAUTH_FAILURE for password and kbd-int authentication 2010-01-29 09:14:11 +01:00
example ignore more generated files 2010-01-20 19:46:36 +01:00
include Handle SSH_MSG_USERAUTH_FAILURE for password and kbd-int authentication 2010-01-29 09:14:11 +01:00
m4 Ignore generated files 2009-06-04 18:20:29 +02:00
nw Move examples from example/simple to example/. 2009-12-19 10:54:45 +01:00
src Handle SSH_MSG_USERAUTH_FAILURE for password and kbd-int authentication 2010-01-29 09:14:11 +01:00
tests Make it simpler to get more debug info. 2010-01-07 19:43:40 +01:00
win32 Move examples from example/simple to example/. 2009-12-19 10:54:45 +01:00
.gitattribute Ensure that win32/libssh2.dsp will be generated with CRLF line endings 2009-10-17 02:58:53 +02:00
.gitignore Add libssh2.pc to top-level .gitignore 2009-12-24 02:18:40 +01:00
acinclude.m4 Fix shell usage. 2009-09-23 09:39:47 +02:00
AUTHORS added contributors from the 1.2 release notes 2009-08-11 10:11:11 +02:00
buildconf generate a libssh2_config.h in the example dir 2010-01-13 13:46:56 +01:00
config.rpath Use Bruno's M4 macros to search for libgcrypt. 2007-04-05 10:23:54 +00:00
configure.ac generate a libssh2_config.h in the example dir 2010-01-13 13:46:56 +01:00
COPYING Support AES-Counter ciphers. 2009-11-16 16:04:00 +01:00
get_ver.awk fixed space detection 2007-06-13 22:20:13 +00:00
HACKING Mention libssh2-style.el. 2009-10-29 10:39:15 +01:00
libssh2-style.el helper script for emacs users to get the code style done libssh2-style 2008-12-20 12:36:50 +00:00
libssh2.pc.in first take at producing and installing a pkg-config file 2009-09-01 09:55:25 +02:00
Makefile.am Ensure that win32/libssh2.dsp will be generated with CRLF line endings 2009-10-17 02:58:53 +02:00
Makefile.inc Add ssh-agent API. 2009-12-21 12:19:20 +01:00
maketgz Added LIBSSH2_TIMESTAMP to the public header and it contains the timestamp of 2007-07-15 21:36:29 +00:00
NEWS Fix. 2010-01-28 15:06:40 +01:00
NMakefile Move examples from example/simple to example/. 2009-12-19 10:56:03 +01:00
README Update mailing list URL to new address 2009-07-10 20:11:29 +02:00
RELEASE-NOTES Fix typo in RELEASE-NOTES 2010-01-21 20:55:53 +01:00
TODO Add TODO: Expose error messages sent by the server 2009-12-24 02:18:39 +01:00

libssh2 - SSH2 library
======================

libssh2 is a library implementing the SSH2 protocol, available under
the revised BSD license.

Web site: http://www.libssh2.org/

Mailing list: http://cool.haxx.se/mailman/listinfo/libssh2-devel

Generic installation instructions are in INSTALL.  Some ./configure
options deserve additional comments:

	* --enable-crypt-none

		The SSH2 Transport allows for unencrypted data
		transmission using the "none" cipher.  Because this is
		such a huge security hole, it is typically disabled on
		SSH2 implementations and is disabled in libssh2 by
		default as well.

		Enabling this option will allow for "none" as a
		negotiable method, however it still requires that the
		method be advertized by the remote end and that no
		more-preferable methods are available.

	* --enable-mac-none

		The SSH2 Transport also allows implementations to
		forego a message authentication code.  While this is
		less of a security risk than using a "none" cipher, it
		is still not recommended as disabling MAC hashes
		removes a layer of security.

		Enabling this option will allow for "none" as a
		negotiable method, however it still requires that the
		method be advertized by the remote end and that no
		more-preferable methods are available.

	* --disable-gex-new

		The diffie-hellman-group-exchange-sha1 (dh-gex) key
		exchange method originally defined an exchange
		negotiation using packet type 30 to request a
		generation pair based on a single target value.  Later
		refinement of dh-gex provided for range and target
		values.  By default libssh2 will use the newer range
		method.

		If you experience trouble connecting to an old SSH
		server using dh-gex, try this option to fallback on
		the older more reliable method.

  	* --with-libgcrypt
  	* --without-libgcrypt
	* --with-libgcrypt-prefix=DIR

		libssh2 can use the Libgcrypt library
		(http://www.gnupg.org/) for cryptographic operations.
		Either Libgcrypt or OpenSSL is required.

		Configure will attempt to locate Libgcrypt
		automatically.

 		If your installation of Libgcrypt is in another
		location, specify it using --with-libgcrypt-prefix.

	* --with-openssl
	* --without-openssl
	* --with-libssl-prefix=[DIR]

		libssh2 can use the OpenSSL library
		(http://www.openssl.org) for cryptographic operations.
		Either Libgcrypt or OpenSSL is required.

		Configure will attempt to locate OpenSSL in the
		default location.

		If your installation of OpenSSL is in another
		location, specify it using --with-libssl-prefix.

	* --with-libz
	* --without-libz
	* --with-libz-prefix=[DIR]

		If present, libssh2 will attempt to use the zlib
		(http://www.zlib.org) for payload compression, however
		zlib is not required.

		If your installation of Libz is in another location,
		specify it using --with-libz-prefix.

	* --enable-debug

		Will make the build use more pedantic and strict compiler
		options as well as enable the libssh2_trace() function (for
		showing debug traces).