libssh

lib/libssh

Fork 0

mirror of https://git.libssh.org/projects/libssh.git synced 2025-09-04 04:42:09 +03:00

Commit Graph

Select branches

Hide Pull Requests

master

master-fix

stable-0.10

stable-0.11

stable-0.8

stable-0.9

v0-2

v0-3

v0-4

v0-5

v0-6

v0-7

libssh-0.10.0

libssh-0.10.2

libssh-0.10.3

libssh-0.10.4

libssh-0.10.5

libssh-0.10.6

libssh-0.11.0

libssh-0.11.1

libssh-0.11.2

libssh-0.5.1

libssh-0.5.2

libssh-0.5.3

libssh-0.5.4

libssh-0.5.5

libssh-0.6.0

libssh-0.6.1

libssh-0.6.3

libssh-0.6.4

libssh-0.6.5

libssh-0.7.0

libssh-0.7.1

libssh-0.7.2

libssh-0.7.3

libssh-0.7.4

libssh-0.7.5

libssh-0.7.6

libssh-0.7.7

libssh-0.8.0

libssh-0.8.1

libssh-0.8.2

libssh-0.8.3

libssh-0.8.4

libssh-0.8.5

libssh-0.8.6

libssh-0.8.7

libssh-0.8.8

libssh-0.8.9

libssh-0.9.0

libssh-0.9.1

libssh-0.9.2

libssh-0.9.3

libssh-0.9.4

libssh-0.9.5

libssh-0.9.6

libssh-0.9.7

libssh-0.9.8

release-0-3-0

release-0-3-1

release-0-3-2

release-0-3-3

release-0-3-4

release-0-4-0

release-0-4-1

release-0-4-2

release-0-4-3

release-0-4-4

release-0-4-5

release-0-4-6

release-0-4-7

release-0-4-8

release-0-5-0

118a747acd socket: Free poll handle when resetting socket state master Jakub Jelen 2025-08-11 15:49:32 +02:00
5691e0f609 poll: Initialize ssh_poll_handle pointers Jakub Jelen 2025-08-11 21:22:50 +02:00
5a6e2fd02a poll: Fix memory leak on failed realloc() Jakub Jelen 2025-08-11 20:19:44 +02:00
e8099375fe poll: Check return value of ssh_poll_ctx_add() Jakub Jelen 2025-08-11 18:35:27 +02:00
d00f267bc6 Make ssh_socket_set_fd() return errors Jakub Jelen 2025-08-11 16:28:15 +02:00
35d337834b options: Avoid memory leaks on allocation failures Jakub Jelen 2025-08-11 12:11:44 +02:00
ba1e8303f8 reformat remains of poll.c Jakub Jelen 2025-08-12 12:01:40 +02:00
02cbd41b92 tests: Call disable_secmem() before ssh_init() stable-0.11 Andreas Schneider 2024-12-03 13:40:32 +01:00
750693d10b tests: Reformat cmocka_unit_test calls in torture_threads_pki_rsa.c Andreas Schneider 2024-12-03 13:42:45 +01:00
56953f8aab mbedtls: Avoid one more memory leak Jakub Jelen 2025-06-03 15:37:49 +02:00
0f1723b5c7 mbedtls: Rename label to match the current meaning Jakub Jelen 2025-05-14 23:08:50 +02:00
f1998d6064 mbedtls: Avoid code duplication between v2 and v3 branches Jakub Jelen 2025-05-14 22:51:50 +02:00
d0ef7afdfa pki: Make sure the buffer is zeroized too Jakub Jelen 2025-05-14 22:38:46 +02:00
6e459f5756 pki_mbedtls: Simplify memory cleanup Jakub Jelen 2025-05-14 13:34:00 +02:00
51746e51f0 mbedcrypto: Refromat pki_key_to_blob() Jakub Jelen 2025-05-14 22:54:53 +02:00
e7ef3f2962 CentOS 9 and 10 were updated to OpenSSL 3.5 Jakub Jelen 2025-07-24 13:24:55 +02:00
b8d92bbcc7 tests: Fix build script to work also on MacOS correctly Jakub Jelen 2025-07-25 16:40:53 +02:00
f2aaee53df tests: Add more valgrind supressions for krb5 Jakub Jelen 2025-07-25 10:51:31 +02:00
b026b24b55 tests: Avoid needless call to pthread_exit() Jakub Jelen 2025-07-24 19:46:09 +02:00
028859ce99 pkd: Cleanup OpenSSL context Jakub Jelen 2025-07-24 19:19:51 +02:00
d64f06f98a tests: Cleanup OpenSSL in the forked server processes Jakub Jelen 2025-07-24 18:57:31 +02:00
b298a04f96 tests: Cleanup OpenSSL in tests when GSSAPI is built Jakub Jelen 2025-06-19 19:08:34 +02:00
962012bbf6 Cleanup the loaded pkcs11 provider Jakub Jelen 2025-06-02 17:44:43 +02:00
abfc42fad3 Finalize OpenSSL context from tests to make the valgrind output clean Jakub Jelen 2025-06-03 09:51:11 +02:00
1ad67bd66e tests: Adjust valgrind supression to match new calls stack Jakub Jelen 2025-05-30 19:52:10 +02:00
f553a6740a pkd: Run hmac-sha1 tests with OpenSSH Jakub Jelen 2025-07-24 11:19:21 +02:00
bac5d3f10a Fix ssh_handle_key_exchange() timeout Nguyễn Thái Ngọc Duy 2025-07-15 15:38:59 +02:00
c8c3d418ee Enable HMAC SHA1 tests for dropbear <2025.87 abdallah elhdad 2025-07-05 12:07:23 +03:00
33be8038fe Unbreak torture_config_make_absolute() on OpenBSD Theo Buehler 2025-06-27 23:21:32 +02:00
ef50a3c0f0 tests: Remove tests of operations on freed channels Jakub Jelen 2025-07-30 11:18:45 +02:00
e7cffe7e1b pki: Simplify ed25519 private key duplication Jakub Jelen 2025-08-01 11:56:28 +02:00
d1bf9068a9 Use calloc instead of zeroizing structure after malloc Jakub Jelen 2025-08-01 11:55:50 +02:00
737f9ecc3c agent: Reformat the rest of the file Jakub Jelen 2025-08-01 12:04:29 +02:00
cc667021e5 tests(pki): add torture tests for security keys Praneeth Sarode 2025-08-01 00:26:55 +05:30
f9f8c939bc tests(pki): add security key testing helper functions to torture library Praneeth Sarode 2025-08-01 00:26:02 +05:30
aab6ce364a tests(pki): add sk type keys to the testing infrastructure Praneeth Sarode 2025-07-31 15:08:10 +05:30
0cec257077 pki: add security key file import/export functionality Praneeth Sarode 2025-07-30 23:07:45 +05:30
957efe51a2 format(pki): format the pki_import_privkey_buffer function Praneeth Sarode 2025-08-01 00:29:27 +05:30
bb85492d4f feat(pki): add support for SK key types in signature handling Praneeth Sarode 2025-07-30 23:00:53 +05:30
22c1b6970c pki: add security key fields to ssh_key_struct and update compare, copying and cleaning functions Praneeth Sarode 2025-07-05 22:31:35 +05:30
09155adb19 tests(string): add unit tests for ssh_string_cmp function Praneeth Sarode 2025-07-09 22:03:14 +05:30
95f8cbc7f0 feat(string): add ssh_string_cmp function for comparing ssh_strings Praneeth Sarode 2025-07-05 22:30:34 +05:30
3423399f98 fix(pki): remove redundant key type_c assignment in pki_import_pubkey_buffer Praneeth Sarode 2025-07-25 23:14:29 +05:30
ccbec9c275 fix(pki): remove redundant key type_c assignment in build pubkey and privkey functions Praneeth Sarode 2025-07-25 23:12:44 +05:30
ed52c88a03 feat(misc): add burn_free function and BURN_FREE macro for secure memory deallocation Praneeth Sarode 2025-07-09 22:07:54 +05:30
0f0ac314d2 session: add err messages for most common WSA error codes (+ applied clang-format to file) Till Wimmer 2025-07-25 12:31:23 +02:00
95e4c39e8a Refactor: fix inconsistency in ssh_callback_struct Navid Fayezi 2025-07-18 19:41:46 -06:00
8c89633a45 pki: Avoid possible memory leak Jakub Jelen 2025-07-29 15:39:33 +02:00
8069679033 remove unused ssh_string in ssh_channel_open_forward_unix Rémi Coulom 2025-07-25 10:19:16 +02:00
c2e9d39dbe tests: Fix build script to work also on MacOS correctly Jakub Jelen 2025-07-25 16:40:53 +02:00
ab44f606b2 tests: Add more valgrind supressions for krb5 Jakub Jelen 2025-07-25 10:51:31 +02:00
444982b38a tests: Avoid needless call to pthread_exit() Jakub Jelen 2025-07-24 19:46:09 +02:00
3df61a4e86 pkd: Cleanup OpenSSL context Jakub Jelen 2025-07-24 19:19:51 +02:00
961c79637c options: Fix possible memory leaks on error conditions when setting keys for bind Jakub Jelen 2025-07-24 19:19:12 +02:00
7eefbbd478 tests: Cleanup OpenSSL in the forked server processes Jakub Jelen 2025-07-24 18:57:31 +02:00
c4c28c6473 tests: Skip test leaking handle under valgrind Jakub Jelen 2025-07-24 17:47:58 +02:00
08a32ac381 tests: Cleanup OpenSSL in tests when GSSAPI is built Jakub Jelen 2025-06-19 19:08:34 +02:00
62762bbbc9 Cleanup the loaded pkcs11 provider Jakub Jelen 2025-06-02 17:44:43 +02:00
ab3e08c2b5 Finalize OpenSSL context from tests to make the valgrind output clean Jakub Jelen 2025-06-03 09:51:11 +02:00
809898b980 tests: Adjust valgrind supression to match new calls stack Jakub Jelen 2025-05-30 19:52:10 +02:00
51bd08027e CentOS 9 and 10 were updated to OpenSSL 3.5 Jakub Jelen 2025-07-24 13:24:55 +02:00
0b4b71cc11 fix(callbacks): make is_callback_valid's behaviour consistent with its name Praneeth Sarode 2025-07-23 23:10:50 +05:30
5d3ef7261c refactor(callbacks): reformat to improve readability Praneeth Sarode 2025-07-23 23:08:54 +05:30
9817392e26 pkd: Run hmac-sha1 tests with OpenSSH Jakub Jelen 2025-07-24 11:19:21 +02:00
168302b9d6 Fix ssh_handle_key_exchange() timeout Nguyễn Thái Ngọc Duy 2025-07-15 15:38:59 +02:00
82c8bbc504 tests: Add missing header file to unbreak build on freebsd Jakub Jelen 2025-07-21 21:15:15 +02:00
1ea1782036 Add simple sshsig fuzzer Jakub Jelen 2025-07-21 21:11:47 +02:00
c17112f070 Enable HMAC SHA1 tests for dropbear <2025.87 abdallah elhdad 2025-07-05 12:07:23 +03:00
28c0056bca Add logging for private API functions Nicolas Graves 2025-07-09 00:52:07 +02:00
7e4f08e22a Add logging to public API functions Nicolas Graves 2025-06-18 17:57:36 +02:00
aeb0b2ec6f Add unittests for sshsig functions Nicolas Graves 2025-05-27 15:18:15 +02:00
67cf8e3702 Implement sshsig functions Nicolas Graves 2025-05-22 08:58:24 +02:00
309f36fa83 pki: Add key_to_type_hash helper Nicolas Graves 2025-05-30 22:29:38 +02:00
7a2a743a39 fix(string): handle empty string case in ssh_string_copy Praneeth Sarode 2025-06-29 12:08:20 +05:30
ccb8cf88c8 Unbreak torture_config_make_absolute() on OpenBSD Theo Buehler 2025-06-27 23:21:32 +02:00
b43392c31d tests(string): add unit tests for ssh_string functions Praneeth Sarode 2025-06-29 12:08:56 +05:30
5fc65e7270 agent: Fix resource leak Andreas Schneider 2025-06-26 10:10:49 +02:00
8310b8cc2b Remove redundant line and change strlen(buffer) to sizeof(buffer) in examples/authentication.c Navid Fayezi 2025-06-19 18:10:18 -06:00
b0063b52d8 Remove more redundant casts Navid 2025-06-08 16:49:25 -06:00
33a947dcb0 Remove unnecessary char* cast in memset call in examples/examples_common.h Navid 2025-06-08 16:12:31 -06:00
dff6c0821e Bump version to 0.11.2 libssh-0.11.2 Andreas Schneider 2025-06-24 09:48:43 +02:00
82175044dc dh-gex: Reformat the dhgex_server_callbacks structure Jakub Jelen 2025-05-16 19:17:22 +02:00
8559f59404 dh-gex.c: Fix typo in the constant name Jakub Jelen 2025-05-16 19:10:04 +02:00
160fc7df10 packet: Implement missing packet filter for DH GEX Jakub Jelen 2025-05-16 19:09:30 +02:00
72c282434b dh-gex: Reformat the dhgex_server_callbacks structure Jakub Jelen 2025-05-16 19:17:22 +02:00
ba9642882d dh-gex.c: Fix typo in the constant name Jakub Jelen 2025-05-16 19:10:04 +02:00
a6b73219e2 packet: Implement missing packet filter for DH GEX Jakub Jelen 2025-05-16 19:09:30 +02:00
a9d8a3d448 CVE-2025-5372 libgcrypto: Simplify error checking and handling of return codes in ssh_kdf() Jakub Jelen 2025-05-14 14:07:58 +02:00
f13b91c2d8 libgcrypto: Reformat ssh_kdf() Jakub Jelen 2025-05-14 13:57:24 +02:00
90b4845e0c CVE-2025-5987 libcrypto: Correctly detect failures of chacha initialization Jakub Jelen 2025-05-06 22:51:41 +02:00
6ddb730a27 CVE-2025-5351 pki_crypto: Avoid double-free on low-memory conditions Jakub Jelen 2025-05-06 22:43:31 +02:00
b35ee876ad CVE-2025-4878 legacy: Properly check return value to avoid NULL pointer dereference Jakub Jelen 2025-04-28 11:04:55 +02:00
697650caa9 CVE-2025-4878 Initialize pointers where possible Jakub Jelen 2025-04-23 17:57:11 +02:00
5504ff4051 CVE-2025-5449 sftpserver: Use constant for return values Jakub Jelen 2025-04-23 13:42:13 +02:00
f79ec51b7f CVE-2025-5449 sftpserver: Fix possible read behind buffer on 32bit arch Jakub Jelen 2025-04-23 12:44:33 +02:00
78485f446a CVE-2025-5449 sftpserver: Avoid NULL dereference for invalid handles Jakub Jelen 2025-04-23 11:38:52 +02:00
3443aec901 CVE-2025-5449 tests: Reproducer for sftp handles exhaustion Jakub Jelen 2025-04-22 21:32:25 +02:00
261612179f CVE-2025-5449 sftpserver: Avoid memory leak when we run out of handles during sftp_open Jakub Jelen 2025-04-22 21:37:29 +02:00
5f4ffda887 CVE-2025-5318: sftpserver: Fix possible buffer overrun Jakub Jelen 2025-04-22 21:18:44 +02:00
6fd9cc8ce3 CVE-2025-4877 base64: Prevent integer overflow and potential OOB Jakub Jelen 2025-04-15 11:41:24 +02:00