Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | options: Allow use of host ECDSA key | Alan Dunn | 2014-03-27 | 1 | -1/+2 |
| | | | | | Signed-off-by: Alan Dunn <amdunn@gmail.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | security: fix for vulnerability CVE-2014-0017 | Aris Adamantiadis | 2014-03-04 | 1 | -0/+1 |
| | | | | | | | | | | When accepting a new connection, a forking server based on libssh forks and the child process handles the request. The RAND_bytes() function of openssl doesn't reset its state after the fork, but simply adds the current process id (getpid) to the PRNG state, which is not guaranteed to be unique. This can cause several children to end up with same PRNG state which is a security issue. | ||||
* | Add session/channel byte/packet counters | Audrius Butkevicius | 2014-02-12 | 3 | -0/+16 |
| | | | | Signed-off-by: Audrius Butkevicius <audrius.butkevicius@elastichosts.com> | ||||
* | session: add getters for session cipher names | Jon Simons | 2014-02-06 | 1 | -0/+2 |
| | | | | Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | knownhosts: detect variations of ecdsa | Aris Adamantiadis | 2014-02-04 | 2 | -1/+27 |
| | |||||
* | doc: correct ssh_channel_read_timeout units | Jon Simons | 2014-02-02 | 1 | -1/+1 |
| | | | | Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | doc: Document expected return value of channel data callback | Audrius Butkevicius | 2014-02-02 | 1 | -0/+2 |
| | | | | | Signed-off-by: Audrius Butkevicius <audrius.butkevicius@gmail.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | src: Define MAX_BUF_SIZE globally and use it. | Joseph Southwell | 2014-02-02 | 1 | -0/+13 |
| | | | | Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | build: remove OSX deprecated warnings for openssl | Aris Adamantiadis | 2014-02-02 | 1 | -10/+0 |
| | |||||
* | server: allow custom server banners (bug #83) | Aris Adamantiadis | 2014-02-01 | 1 | -0/+1 |
| | |||||
* | known_hosts: add ssh_knownhosts_algorithms() | Aris Adamantiadis | 2014-02-01 | 1 | -0/+1 |
| | | | | | Goal of that function is to test the preferred key exchange methods based on what's available in the known_hosts file | ||||
* | src: Rename buffer_add_data() to ssh_buffer_add_data(). | Andreas Schneider | 2014-01-19 | 1 | -1/+1 |
| | |||||
* | src: Rename buffer_init to ssh_buffer_init(). | Andreas Schneider | 2014-01-19 | 1 | -1/+1 |
| | |||||
* | include: Mark functions as deprecated! | Andreas Schneider | 2014-01-16 | 1 | -45/+45 |
| | |||||
* | channel: Fix the name scheme of the forward functions. | Andreas Schneider | 2014-01-16 | 2 | -8/+22 |
| | |||||
* | channel: Add ssh_channel_accept_forward(). | Oleksandr Shneyder | 2014-01-16 | 1 | -0/+1 |
| | | | | | | | | This works same way as ssh_forward_accept() but can return a destination port of the channel (useful if SSH connection forwarding several TCP/IP ports). Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | threads: support libgcrypt 1.6 hack | Aris Adamantiadis | 2014-01-08 | 1 | -0/+2 |
| | | | | | | | Not 100% satisfied of this patch, but the way libgcrypt handles threading in 1.6 is not compatible with custom handlers. The new code basicaly uses pthreads in every case. This will probably not work on windows. | ||||
* | include: Remove warning cause VSC doesn't know about it. | Andreas Schneider | 2014-01-08 | 1 | -1/+0 |
| | |||||
* | include: Fix building if we do not have asm volatile. | Andreas Schneider | 2014-01-08 | 1 | -1/+2 |
| | |||||
* | session: Add ssh_get_clientbanner(). | Jon Simons | 2013-12-07 | 1 | -0/+1 |
| | |||||
* | channels: Add a ssh_channel_read_timeout function. | Andreas Schneider | 2013-12-04 | 1 | -0/+1 |
| | |||||
* | pki: Add ssh_pki_import_privkey_file(). | Andreas Schneider | 2013-11-27 | 1 | -0/+5 |
| | |||||
* | pki_gcrypt: Add pki_private_key_to_pem() stub. | Andreas Schneider | 2013-11-27 | 1 | -0/+5 |
| | |||||
* | ecdh: Check if we have ECC support. | Andreas Schneider | 2013-11-27 | 2 | -2/+7 |
| | |||||
* | server: Add a ssh_send_keepalive() function. | Nicolas Viennot | 2013-11-24 | 1 | -0/+2 |
| | | | | Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | options: Add SSH_OPTIONS_GSSAPI_DELEGATE_CREDENTIALS option. | Simo Sorce | 2013-11-15 | 2 | -1/+3 |
| | | | | | Signed-off-by: Simo Sorce <simo@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | options: Add SSH_OPTIONS_GSSAPI_CLIENT_IDENTITY option. | Andreas Schneider | 2013-11-15 | 2 | -1/+3 |
| | |||||
* | gssapi: Add suppport to set GSSAPI server identity. | Andreas Schneider | 2013-11-15 | 2 | -1/+3 |
| | |||||
* | Add ssh_get_poll_flags() | Colin Walters | 2013-11-09 | 2 | -0/+2 |
| | | | | | | | | | | For integration with an external mainloop, we need to know how to replicate libssh's internal poll() calls. We originally through ssh_get_status() was that API, but it's not really - those flags only get updated from the *result* of a poll(), where what we really need is to know how libssh would *start* a poll(). Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | dh: Add new ssh_get_publickey_hash() function. | Andreas Schneider | 2013-11-06 | 1 | -1/+13 |
| | |||||
* | remove warnings on OSX (workaround) | Aris Adamantiadis | 2013-11-04 | 1 | -0/+10 |
| | |||||
* | curve25519: include reference implementation | Aris Adamantiadis | 2013-11-03 | 1 | -2/+10 |
| | |||||
* | socket: Fix check for pending data. | Aris Adamantiadis | 2013-11-03 | 1 | -1/+5 |
| | | | | | | BUG: https://red.libssh.org/issues/119 Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | priv: Fix brackets of burn macros. | Andreas Schneider | 2013-11-03 | 1 | -2/+2 |
| | |||||
* | SSH_AUTH_OK -> SSH_AUTH_SUCCESS in comments | Alan Dunn | 2013-10-31 | 1 | -4/+4 |
| | | | | | | | | A few callback descriptions refer to a non-existent value SSH_AUTH_OK, which should be SSH_AUTH_SUCCESS. This commit fixes these. Signed-off-by: Alan Dunn <amdunn@gmail.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org> | ||||
* | cmake: Check for isblank(). | Andreas Schneider | 2013-10-30 | 1 | -1/+3 |
| | |||||
* | include: Fix build on platforms without ECC. | Andreas Schneider | 2013-10-21 | 1 | -0/+2 |
| | |||||
* | wrapper: Fix compilation with gcrypt. | Andreas Schneider | 2013-10-19 | 1 | -0/+1 |
| | |||||
* | pki: Add the type as a char pointer. | Andreas Schneider | 2013-10-18 | 1 | -0/+1 |
| | |||||
* | wrapper: Add more evp functions. | Andreas Schneider | 2013-10-18 | 2 | -0/+6 |
| | |||||
* | kex: implement curve25519-sha256@libssh.org | Aris Adamantiadis | 2013-09-27 | 2 | -1/+55 |
| | |||||
* | callbacks: Improve the documentation of ssh_threads_set_callbacks(). | Andreas Schneider | 2013-09-16 | 1 | -6/+11 |
| | | | | BUG: https://red.libssh.org/issues/123 | ||||
* | callbacks: Improve the documentation of ssh_threads_get_noop(). | Andreas Schneider | 2013-09-16 | 1 | -3/+7 |
| | | | | BUG: https://red.libssh.org/issues/123 | ||||
* | session: Remove obsolete status variables. | Andreas Schneider | 2013-09-16 | 1 | -3/+0 |
| | | | | BUG: https://red.libssh.org/issues/121 | ||||
* | channel: Make channel_write_common() static. | Andreas Schneider | 2013-08-13 | 1 | -2/+0 |
| | |||||
* | include: Add a MIN macro. | Andreas Schneider | 2013-08-13 | 1 | -2/+3 |
| | |||||
* | include: Fix a build warning in MinGW. | Andreas Schneider | 2013-07-27 | 1 | -0/+1 |
| | |||||
* | cmake: Check for HAVE_GCC_VOLATILE_MEMORY_PROTECTION. | Andreas Schneider | 2013-07-23 | 1 | -2/+35 |
| | | | | | This ensures that the memset call is not optimized out by the compiler (works works with gcc and clang). | ||||
* | cmake: Check for _strtoui64() on Windows. | Andreas Schneider | 2013-07-22 | 1 | -13/+12 |
| | |||||
* | pki: Fix declaration of ssh_pki_convert functions. | Andreas Schneider | 2013-07-22 | 1 | -3/+3 |
| |