libssh

lib/libssh

Fork 0

mirror of https://git.libssh.org/projects/libssh.git synced 2025-07-20 18:02:58 +03:00

Commit Graph

Select branches

Hide Pull Requests

master

master-fix

stable-0.10

stable-0.11

stable-0.8

stable-0.9

v0-2

v0-3

v0-4

v0-5

v0-6

v0-7

libssh-0.10.0

libssh-0.10.2

libssh-0.10.3

libssh-0.10.4

libssh-0.10.5

libssh-0.10.6

libssh-0.11.0

libssh-0.11.1

libssh-0.11.2

libssh-0.5.1

libssh-0.5.2

libssh-0.5.3

libssh-0.5.4

libssh-0.5.5

libssh-0.6.0

libssh-0.6.1

libssh-0.6.3

libssh-0.6.4

libssh-0.6.5

libssh-0.7.0

libssh-0.7.1

libssh-0.7.2

libssh-0.7.3

libssh-0.7.4

libssh-0.7.5

libssh-0.7.6

libssh-0.7.7

libssh-0.8.0

libssh-0.8.1

libssh-0.8.2

libssh-0.8.3

libssh-0.8.4

libssh-0.8.5

libssh-0.8.6

libssh-0.8.7

libssh-0.8.8

libssh-0.8.9

libssh-0.9.0

libssh-0.9.1

libssh-0.9.2

libssh-0.9.3

libssh-0.9.4

libssh-0.9.5

libssh-0.9.6

libssh-0.9.7

libssh-0.9.8

release-0-3-0

release-0-3-1

release-0-3-2

release-0-3-3

release-0-3-4

release-0-4-0

release-0-4-1

release-0-4-2

release-0-4-3

release-0-4-4

release-0-4-5

release-0-4-6

release-0-4-7

release-0-4-8

release-0-5-0

7a2a743a39 fix(string): handle empty string case in ssh_string_copy master Praneeth Sarode 2025-06-29 12:08:20 +05:30
ccb8cf88c8 Unbreak torture_config_make_absolute() on OpenBSD Theo Buehler 2025-06-27 23:21:32 +02:00
b43392c31d tests(string): add unit tests for ssh_string functions Praneeth Sarode 2025-06-29 12:08:56 +05:30
5fc65e7270 agent: Fix resource leak Andreas Schneider 2025-06-26 10:10:49 +02:00
8310b8cc2b Remove redundant line and change strlen(buffer) to sizeof(buffer) in examples/authentication.c Navid Fayezi 2025-06-19 18:10:18 -06:00
b0063b52d8 Remove more redundant casts Navid 2025-06-08 16:49:25 -06:00
33a947dcb0 Remove unnecessary char* cast in memset call in examples/examples_common.h Navid 2025-06-08 16:12:31 -06:00
dff6c0821e Bump version to 0.11.2 libssh-0.11.2 stable-0.11 Andreas Schneider 2025-06-24 09:48:43 +02:00
82175044dc dh-gex: Reformat the dhgex_server_callbacks structure Jakub Jelen 2025-05-16 19:17:22 +02:00
8559f59404 dh-gex.c: Fix typo in the constant name Jakub Jelen 2025-05-16 19:10:04 +02:00
160fc7df10 packet: Implement missing packet filter for DH GEX Jakub Jelen 2025-05-16 19:09:30 +02:00
72c282434b dh-gex: Reformat the dhgex_server_callbacks structure Jakub Jelen 2025-05-16 19:17:22 +02:00
ba9642882d dh-gex.c: Fix typo in the constant name Jakub Jelen 2025-05-16 19:10:04 +02:00
a6b73219e2 packet: Implement missing packet filter for DH GEX Jakub Jelen 2025-05-16 19:09:30 +02:00
a9d8a3d448 CVE-2025-5372 libgcrypto: Simplify error checking and handling of return codes in ssh_kdf() Jakub Jelen 2025-05-14 14:07:58 +02:00
f13b91c2d8 libgcrypto: Reformat ssh_kdf() Jakub Jelen 2025-05-14 13:57:24 +02:00
90b4845e0c CVE-2025-5987 libcrypto: Correctly detect failures of chacha initialization Jakub Jelen 2025-05-06 22:51:41 +02:00
6ddb730a27 CVE-2025-5351 pki_crypto: Avoid double-free on low-memory conditions Jakub Jelen 2025-05-06 22:43:31 +02:00
b35ee876ad CVE-2025-4878 legacy: Properly check return value to avoid NULL pointer dereference Jakub Jelen 2025-04-28 11:04:55 +02:00
697650caa9 CVE-2025-4878 Initialize pointers where possible Jakub Jelen 2025-04-23 17:57:11 +02:00
5504ff4051 CVE-2025-5449 sftpserver: Use constant for return values Jakub Jelen 2025-04-23 13:42:13 +02:00
f79ec51b7f CVE-2025-5449 sftpserver: Fix possible read behind buffer on 32bit arch Jakub Jelen 2025-04-23 12:44:33 +02:00
78485f446a CVE-2025-5449 sftpserver: Avoid NULL dereference for invalid handles Jakub Jelen 2025-04-23 11:38:52 +02:00
3443aec901 CVE-2025-5449 tests: Reproducer for sftp handles exhaustion Jakub Jelen 2025-04-22 21:32:25 +02:00
261612179f CVE-2025-5449 sftpserver: Avoid memory leak when we run out of handles during sftp_open Jakub Jelen 2025-04-22 21:37:29 +02:00
5f4ffda887 CVE-2025-5318: sftpserver: Fix possible buffer overrun Jakub Jelen 2025-04-22 21:18:44 +02:00
6fd9cc8ce3 CVE-2025-4877 base64: Prevent integer overflow and potential OOB Jakub Jelen 2025-04-15 11:41:24 +02:00
e2afe196d8 CVE-2025-5372 libgcrypto: Simplify error checking and handling of return codes in ssh_kdf() Jakub Jelen 2025-05-14 14:07:58 +02:00
32833b40bc libgcrypto: Reformat ssh_kdf() Jakub Jelen 2025-05-14 13:57:24 +02:00
bc4804aa9b CVE-2025-5987 libcrypto: Correctly detect failures of chacha initialization Jakub Jelen 2025-05-06 22:51:41 +02:00
acb158e827 CVE-2025-5351 pki_crypto: Avoid double-free on low-memory conditions Jakub Jelen 2025-05-06 22:43:31 +02:00
faf9caafc6 pki_crypto: Reformat pki_key_to_blob() Jakub Jelen 2025-05-06 22:32:43 +02:00
8dc29f140b CVE-2025-4878 legacy: Properly check return value to avoid NULL pointer dereference Jakub Jelen 2025-04-28 11:04:55 +02:00
7501ca1e08 examples: Fix possible pass of NULL into strchr() Jakub Jelen 2025-04-25 10:28:28 +02:00
2eb2af4426 CVE-2025-4878 Initialize pointers where possible Jakub Jelen 2025-04-23 17:57:11 +02:00
5d27f69494 string: Reformat Jakub Jelen 2025-04-24 16:20:57 +02:00
6fc1bf6901 session: Reformat ssh_get_publickey_hash Jakub Jelen 2025-04-24 16:19:08 +02:00
a85813e6e6 poll: Reformat ssh_poll_ctx_resize Jakub Jelen 2025-04-24 16:17:34 +02:00
f039edd85d examples: Reformat sshnetcat.c Jakub Jelen 2025-04-24 16:11:52 +02:00
1229ad650b src: Reformat pki_gcrypt.c Andreas Schneider 2025-06-23 15:23:34 +02:00
b595cc7ada gitlab-ci.yml: Run fedora without pkcs11 Norbert Pocs 2024-11-13 13:38:30 +01:00
d044b79de0 tests: Remove p11-kit remoting from pkcs11 tests Jakub Jelen 2025-01-22 17:45:43 +01:00
937552aed2 pki: Reformat ssh_pki_copy_cert_to_privkey() Jakub Jelen 2025-04-24 15:15:59 +02:00
f6709b03e6 misc: Reformat Jakub Jelen 2025-04-24 15:14:57 +02:00
96595d1674 messages: Reformat Jakub Jelen 2025-04-24 15:13:10 +02:00
c799a18d89 channels: Reformat Jakub Jelen 2025-04-24 15:10:27 +02:00
babd891e82 examples: Reformat senddata.c Jakub Jelen 2025-04-24 14:54:07 +02:00
320e5154b2 examples: Reformat scp_download.c Jakub Jelen 2025-04-24 14:52:38 +02:00
986e0c593f examples: Reformat connect_ssh.c Jakub Jelen 2025-04-24 14:47:23 +02:00
d38007c4be CVE-2025-5449 sftpserver: Use constant for return values Jakub Jelen 2025-04-23 13:42:13 +02:00
c22bfa792f CVE-2025-5449 tests: Reproducer for payload length overrun Jakub Jelen 2025-04-23 12:46:35 +02:00
926d45b6dd CVE-2025-5449 sftpserver: Fix possible read behind buffer on 32bit arch Jakub Jelen 2025-04-23 12:44:33 +02:00
681a5aaa26 CVE-2025-5449 tests: Reproducer for server processing invalid handles Jakub Jelen 2025-04-23 11:39:39 +02:00
e322e8f50c CVE-2025-5449 sftpserver: Avoid NULL dereference for invalid handles Jakub Jelen 2025-04-23 11:38:52 +02:00
a4118ddc06 CVE-2025-5449 tests: Reproducer for sftp handles exhaustion Jakub Jelen 2025-04-22 21:32:25 +02:00
db7f101d1c CVE-2025-5449 sftpserver: Avoid memory leak when we run out of handles during sftp_open Jakub Jelen 2025-04-22 21:37:29 +02:00
ae8881dfe5 CVE-2025-5318: sftpserver: Fix possible buffer overrun Jakub Jelen 2025-04-22 21:18:44 +02:00
00f09acbec CVE-2025-4877 base64: Prevent integer overflow and potential OOB Jakub Jelen 2025-04-15 11:41:24 +02:00
827c24055f sftp: Do not fail if the status message does not contain error message Jakub Jelen 2024-09-03 10:43:07 +02:00
1eff5d68f4 tests: Cleanup torture_channel_exit_signal Lucas Mulling 2025-05-30 18:08:29 -03:00
e4ede51d87 pki: Set ECDSA signature buffers secure Jakub Jelen 2025-06-03 10:18:26 +02:00
991b4422bd tests: Auth without none method Jakub Jelen 2025-05-30 09:52:16 +02:00
1a2c46781c auth: Process outstanding packets before selecting signature algorithm Jakub Jelen 2025-05-30 09:47:34 +02:00
65699380cf buffer: Use sizeof instead of magic number Jakub Jelen 2025-05-30 09:20:41 +02:00
52e648c7f1 tests: remove unsupported SHA1 HMAC tests for compatibility with latest dropbear version Praneeth Sarode 2025-05-27 16:42:05 +05:30
66314eeb71 misc: Fix OpenSSH banner parsing Lucas Mulling 2025-04-24 15:48:32 -03:00
573e0e48dc sftpserver: Free memory on error condition Jakub Jelen 2025-04-16 16:48:18 +02:00
a2bb9b5d0c test: Fix potential leak of fds on error Jakub Jelen 2025-04-16 16:39:17 +02:00
0de97c48d0 test: Fix unused variables and potential memory leaks Jakub Jelen 2025-04-16 16:38:55 +02:00
eeb498c0e3 Make sure we pass right parameters to buffer_pack Jakub Jelen 2025-04-14 22:17:02 +02:00
715855d888 tests: Do not build zlib test when built without Jakub Jelen 2025-04-14 22:16:27 +02:00
38004ecf94 CmakeLists: Fix multiple digit major version for OpenSSH Norbert Pocs 2025-04-11 09:04:40 +02:00
edb1b8ba2c tests: Fix variable names to avoid codespell issues Jakub Jelen 2025-03-04 14:11:16 +01:00
1e9e37580f tests: Reproducer for graceful failure on ignored Match arguments Jakub Jelen 2025-03-04 13:55:04 +01:00
8b5b785e0c config: Be less strict when parsing unknown Match keywords Jakub Jelen 2025-03-04 13:48:50 +01:00
d245706678 config: Fix copy&paste error in error message Jakub Jelen 2025-03-04 13:28:52 +01:00
5911d058f1 tests: Unit test nested quotes Jakub Jelen 2025-02-11 12:35:46 +01:00
3daa06dba7 Reproducer for #291 Jakub Jelen 2025-02-03 10:15:27 +01:00
45888d65ba config: Allow escaping quotes inside of quoted tokens Jakub Jelen 2025-02-06 13:38:02 +01:00
33a73594e6 examples: Fix format string unearthed during macos build Jakub Jelen 2024-08-06 10:18:04 +02:00
9cdcd16e82 cmake: Do not attempt to use -fstack-clash-protection on MacOS M1 chips Jakub Jelen 2024-08-06 10:00:51 +02:00
12077f7294 clang-format: Update config for clang 19 Jakub Jelen 2025-01-03 16:14:17 +01:00
f067d9e0d3 torture_config: Use getpwuid() instead of env variables Andreas Schneider 2025-01-15 13:24:41 +01:00
ec753057a5 torture_misc: Do not rely on environment variables Andreas Schneider 2025-01-15 13:22:38 +01:00
39aefd479f zlib: Move conditional compilation inside of the gzip.c Jakub Jelen 2025-01-14 14:43:22 +01:00
2e5b6beec7 gzip: Move cleanup to separate function Jakub Jelen 2025-01-13 13:40:39 +01:00
11c16531f0 gzip: Avoid potential memory leak Jakub Jelen 2025-01-13 13:38:28 +01:00
69ee0062d7 options: Clarify format of HOST option Jakub Jelen 2024-11-08 17:55:18 +01:00
13c69821dd Happy new year 2025! Jakub Jelen 2025-01-02 11:18:03 +01:00
543c730691 packet: Implement logging of SSH2_MSG_DEBUG message Jakub Jelen 2024-11-18 20:29:06 +01:00
97bda86d41 channels: Remove callbacks from freed channels Jakub Jelen 2024-11-15 10:15:37 +01:00
77c9498dbe tests: Close channel before freeying Jakub Jelen 2024-09-03 14:08:40 +02:00
404452728d tests: Fix random failure on too fast systems Jakub Jelen 2024-12-05 17:18:20 +01:00
e111a63acb ci: Skip torture_rand in mingw as it keeps hanging Jakub Jelen 2024-12-20 10:12:10 +01:00
054682e72d tests:valgrind: Add suppression memleak in krb5_mcc_generate_new Andreas Schneider 2024-12-03 11:46:04 +01:00
5bff8b5dc6 sftpserver: Do not override the ssh error code Jakub Jelen 2024-10-21 21:00:23 +02:00
758fbdd31b Add #ifndef __VA_NARG__ guard to avoid "__VA_NARG__" redefined warnings Axel Lin 2024-10-25 08:36:25 +08:00
5c0add44e7 Add missing #include's to sftpserver.h JamesWrigley 2024-09-24 22:30:38 +02:00
9f4e7eb06b Make codespell ignore PENDIN in CI JamesWrigley 2024-10-21 15:31:55 +02:00
1d157c57a3 tests: Permit slow systems to take 1-450 instead of 1-40ms. Simon Josefsson 2024-10-21 15:38:13 +02:00