libssh

lib/libssh

Fork 0

mirror of https://git.libssh.org/projects/libssh.git synced 2025-10-21 16:13:39 +03:00

Commit Graph

Select branches

Hide Pull Requests

master

master-fix

stable-0.10

stable-0.11

stable-0.8

stable-0.9

v0-2

v0-3

v0-4

v0-5

v0-6

v0-7

libssh-0.10.0

libssh-0.10.2

libssh-0.10.3

libssh-0.10.4

libssh-0.10.5

libssh-0.10.6

libssh-0.11.0

libssh-0.11.1

libssh-0.11.2

libssh-0.11.3

libssh-0.5.1

libssh-0.5.2

libssh-0.5.3

libssh-0.5.4

libssh-0.5.5

libssh-0.6.0

libssh-0.6.1

libssh-0.6.3

libssh-0.6.4

libssh-0.6.5

libssh-0.7.0

libssh-0.7.1

libssh-0.7.2

libssh-0.7.3

libssh-0.7.4

libssh-0.7.5

libssh-0.7.6

libssh-0.7.7

libssh-0.8.0

libssh-0.8.1

libssh-0.8.2

libssh-0.8.3

libssh-0.8.4

libssh-0.8.5

libssh-0.8.6

libssh-0.8.7

libssh-0.8.8

libssh-0.8.9

libssh-0.9.0

libssh-0.9.1

libssh-0.9.2

libssh-0.9.3

libssh-0.9.4

libssh-0.9.5

libssh-0.9.6

libssh-0.9.7

libssh-0.9.8

release-0-3-0

release-0-3-1

release-0-3-2

release-0-3-3

release-0-3-4

release-0-4-0

release-0-4-1

release-0-4-2

release-0-4-3

release-0-4-4

release-0-4-5

release-0-4-6

release-0-4-7

release-0-4-8

release-0-5-0

358553e976 scp: Workaround for Cisco devices not handling single quotes master Jakub Jelen 2025-09-16 14:45:40 +02:00
07d099f652 examples: Support passing port to libssh_scp to simplify testing Jakub Jelen 2025-09-16 16:04:50 +02:00
f3d70e54e9 tests(string): add tests for ssh_string_from_data function Praneeth Sarode 2025-10-06 12:38:15 +05:30
74d1bf51b5 feat(string): add ssh_string_from_data function to create ssh_string from data buffer Praneeth Sarode 2025-10-06 12:37:43 +05:30
00f1d6fac2 Add RequiredRsaSize configuration option Jakub Jelen 2025-09-23 18:25:57 +02:00
029754efb3 examples: Reformat Jakub Jelen 2024-08-09 14:54:10 +02:00
a49e0c2a84 examples: Replace magic numbers with FD constants Jakub Jelen 2024-08-09 14:53:57 +02:00
8966e577ab connector: Improve logging Jakub Jelen 2024-07-26 13:50:22 +02:00
dc45b8f3f1 channels: Improve logging information about channels Jakub Jelen 2024-07-22 18:34:22 +02:00
c932790b82 connector: Fix default connector flags Jakub Jelen 2024-07-22 15:17:39 +02:00
8a0aa17bca connector: Reformat Jakub Jelen 2024-07-22 15:26:19 +02:00
ecb11f1a18 tests: Fix wording in comment to make sense Jakub Jelen 2024-07-22 14:01:55 +02:00
6aea779918 sftpserver: Fix loop termination Jakub Jelen 2025-09-08 19:16:01 +02:00
a51384fe4e sftpserver: Remove some needless parts Jakub Jelen 2025-09-08 19:15:10 +02:00
c55140272f examples: Add more flexibility to set verbosity Jakub Jelen 2025-09-08 19:04:08 +02:00
607dad040b mbedtls: Warn about missing featues of mbedTLS build Jakub Jelen 2025-08-11 21:46:15 +02:00
55bb909252 refactor(pki): separate the sk signature buffer packing to a separate function Praneeth Sarode 2025-09-26 18:36:43 +05:30
08cbbea461 pki: update RSA key generation to use default size when parameter is 0 Praneeth Sarode 2025-09-21 04:57:56 +05:30
8c4e337ab7 pki: define RSA_DEFAULT_KEY_SIZE Praneeth Sarode 2025-09-21 04:57:24 +05:30
8541b6584f test(buffer): add unit tests for ssh_buffer_dup function Praneeth Sarode 2025-09-24 20:37:36 +05:30
2f77727796 feat(buffer): add ssh_buffer_dup function to duplicate existing buffers Praneeth Sarode 2025-09-22 16:34:34 +05:30
a3c5d3b256 tests: Rewrite all fuzzers to LLVMFuzzerInitialize and nalloc Jakub Jelen 2025-08-12 11:30:54 +02:00
59a502ede6 fuzz: test allocations failures Philippe Antoine 2025-06-27 12:06:01 +02:00
c94e2efcf1 fix(bind): Remove code duplication in ssh_bind_listen Francesco Rollo 2025-09-17 01:47:59 +03:00
3d3b12891f tests: Avoid prefix matching when selecting algorithmms Jakub Jelen 2025-09-10 13:05:50 +02:00
6ca59307d4 Add non-namespaced alias sntrup761x25519-sha512 that is being standardized Jakub Jelen 2025-09-10 11:52:23 +02:00
e8bbd194c7 refactor(pki): Define RSA_MIN_KEY_SIZE and update related checks Praneeth Sarode 2025-08-28 17:13:48 +05:30
301d0e16df Bump version to 0.11.3 libssh-0.11.3 stable-0.11 Jakub Jelen 2025-08-14 10:49:11 +02:00
c182a21e11 poll: Use is_locked helper where possible Jakub Jelen 2025-08-12 10:39:22 +02:00
3a28fbe5c6 socket: do not free poll object if it is locked Philippe Antoine 2025-07-23 14:37:45 +02:00
65f363c9e3 CVE-2025-8114: Fix NULL pointer dereference after allocation failure Andreas Schneider 2025-08-06 15:17:59 +02:00
1c763e29d1 CVE-2025-8277: mbedtls: Avoid leaking ecdh keys Jakub Jelen 2025-08-06 15:32:56 +02:00
7d85085d2a tests: Invoke all combinations of wrong guesses during rekey Jakub Jelen 2025-07-30 12:27:55 +02:00
8e4d67aa9e CVE-2025-8277: ecdh: Free previously allocated pubkeys Jakub Jelen 2025-08-06 11:10:38 +02:00
266174a6d3 CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess Francesco Rollo 2025-07-24 16:30:07 +03:00
87db2659ec CVE-2025-8277: packet: Adjust packet filter to work when DH-GEX is guessed wrongly Jakub Jelen 2025-08-05 18:42:31 +02:00
0fad4e6307 tests: Enable all key exchange methods in ssh_ping Jakub Jelen 2025-07-30 12:28:23 +02:00
df4e907dff poll: Use is_locked helper where possible Jakub Jelen 2025-08-12 10:39:22 +02:00
c99261437f socket: do not free poll object if it is locked Philippe Antoine 2025-07-23 14:37:45 +02:00
53ac23ded4 CVE-2025-8114: Fix NULL pointer dereference after allocation failure Andreas Schneider 2025-08-06 15:17:59 +02:00
ffed80f8c0 CVE-2025-8277: mbedtls: Avoid leaking ecdh keys Jakub Jelen 2025-08-06 15:32:56 +02:00
9ada7aa0e4 CVE-2025-8277: wrapper: Free cv25519 private key on cleanup Jakub Jelen 2025-08-06 14:22:25 +02:00
d357a9f3e2 tests: Invoke all combinations of wrong guesses during rekey Jakub Jelen 2025-07-30 12:27:55 +02:00
c9d95ab0c7 CVE-2025-8277: ecdh: Free previously allocated pubkeys Jakub Jelen 2025-08-06 11:10:38 +02:00
ccff22d378 CVE-2025-8277: Fix memory leak of unused ephemeral key pair after client's wrong KEX guess Francesco Rollo 2025-07-24 16:30:07 +03:00
4310a696f2 CVE-2025-8277: packet: Adjust packet filter to work when DH-GEX is guessed wrongly Jakub Jelen 2025-08-05 18:42:31 +02:00
771e19a7a9 tests: Enable all key exchange methods in ssh_ping Jakub Jelen 2025-07-30 12:28:23 +02:00
118a747acd socket: Free poll handle when resetting socket state Jakub Jelen 2025-08-11 15:49:32 +02:00
5691e0f609 poll: Initialize ssh_poll_handle pointers Jakub Jelen 2025-08-11 21:22:50 +02:00
5a6e2fd02a poll: Fix memory leak on failed realloc() Jakub Jelen 2025-08-11 20:19:44 +02:00
e8099375fe poll: Check return value of ssh_poll_ctx_add() Jakub Jelen 2025-08-11 18:35:27 +02:00
d00f267bc6 Make ssh_socket_set_fd() return errors Jakub Jelen 2025-08-11 16:28:15 +02:00
35d337834b options: Avoid memory leaks on allocation failures Jakub Jelen 2025-08-11 12:11:44 +02:00
ba1e8303f8 reformat remains of poll.c Jakub Jelen 2025-08-12 12:01:40 +02:00
02cbd41b92 tests: Call disable_secmem() before ssh_init() Andreas Schneider 2024-12-03 13:40:32 +01:00
750693d10b tests: Reformat cmocka_unit_test calls in torture_threads_pki_rsa.c Andreas Schneider 2024-12-03 13:42:45 +01:00
56953f8aab mbedtls: Avoid one more memory leak Jakub Jelen 2025-06-03 15:37:49 +02:00
0f1723b5c7 mbedtls: Rename label to match the current meaning Jakub Jelen 2025-05-14 23:08:50 +02:00
f1998d6064 mbedtls: Avoid code duplication between v2 and v3 branches Jakub Jelen 2025-05-14 22:51:50 +02:00
d0ef7afdfa pki: Make sure the buffer is zeroized too Jakub Jelen 2025-05-14 22:38:46 +02:00
6e459f5756 pki_mbedtls: Simplify memory cleanup Jakub Jelen 2025-05-14 13:34:00 +02:00
51746e51f0 mbedcrypto: Refromat pki_key_to_blob() Jakub Jelen 2025-05-14 22:54:53 +02:00
e7ef3f2962 CentOS 9 and 10 were updated to OpenSSL 3.5 Jakub Jelen 2025-07-24 13:24:55 +02:00
b8d92bbcc7 tests: Fix build script to work also on MacOS correctly Jakub Jelen 2025-07-25 16:40:53 +02:00
f2aaee53df tests: Add more valgrind supressions for krb5 Jakub Jelen 2025-07-25 10:51:31 +02:00
b026b24b55 tests: Avoid needless call to pthread_exit() Jakub Jelen 2025-07-24 19:46:09 +02:00
028859ce99 pkd: Cleanup OpenSSL context Jakub Jelen 2025-07-24 19:19:51 +02:00
d64f06f98a tests: Cleanup OpenSSL in the forked server processes Jakub Jelen 2025-07-24 18:57:31 +02:00
b298a04f96 tests: Cleanup OpenSSL in tests when GSSAPI is built Jakub Jelen 2025-06-19 19:08:34 +02:00
962012bbf6 Cleanup the loaded pkcs11 provider Jakub Jelen 2025-06-02 17:44:43 +02:00
abfc42fad3 Finalize OpenSSL context from tests to make the valgrind output clean Jakub Jelen 2025-06-03 09:51:11 +02:00
1ad67bd66e tests: Adjust valgrind supression to match new calls stack Jakub Jelen 2025-05-30 19:52:10 +02:00
f553a6740a pkd: Run hmac-sha1 tests with OpenSSH Jakub Jelen 2025-07-24 11:19:21 +02:00
bac5d3f10a Fix ssh_handle_key_exchange() timeout Nguyễn Thái Ngọc Duy 2025-07-15 15:38:59 +02:00
c8c3d418ee Enable HMAC SHA1 tests for dropbear <2025.87 abdallah elhdad 2025-07-05 12:07:23 +03:00
33be8038fe Unbreak torture_config_make_absolute() on OpenBSD Theo Buehler 2025-06-27 23:21:32 +02:00
ef50a3c0f0 tests: Remove tests of operations on freed channels Jakub Jelen 2025-07-30 11:18:45 +02:00
e7cffe7e1b pki: Simplify ed25519 private key duplication Jakub Jelen 2025-08-01 11:56:28 +02:00
d1bf9068a9 Use calloc instead of zeroizing structure after malloc Jakub Jelen 2025-08-01 11:55:50 +02:00
737f9ecc3c agent: Reformat the rest of the file Jakub Jelen 2025-08-01 12:04:29 +02:00
cc667021e5 tests(pki): add torture tests for security keys Praneeth Sarode 2025-08-01 00:26:55 +05:30
f9f8c939bc tests(pki): add security key testing helper functions to torture library Praneeth Sarode 2025-08-01 00:26:02 +05:30
aab6ce364a tests(pki): add sk type keys to the testing infrastructure Praneeth Sarode 2025-07-31 15:08:10 +05:30
0cec257077 pki: add security key file import/export functionality Praneeth Sarode 2025-07-30 23:07:45 +05:30
957efe51a2 format(pki): format the pki_import_privkey_buffer function Praneeth Sarode 2025-08-01 00:29:27 +05:30
bb85492d4f feat(pki): add support for SK key types in signature handling Praneeth Sarode 2025-07-30 23:00:53 +05:30
22c1b6970c pki: add security key fields to ssh_key_struct and update compare, copying and cleaning functions Praneeth Sarode 2025-07-05 22:31:35 +05:30
09155adb19 tests(string): add unit tests for ssh_string_cmp function Praneeth Sarode 2025-07-09 22:03:14 +05:30
95f8cbc7f0 feat(string): add ssh_string_cmp function for comparing ssh_strings Praneeth Sarode 2025-07-05 22:30:34 +05:30
3423399f98 fix(pki): remove redundant key type_c assignment in pki_import_pubkey_buffer Praneeth Sarode 2025-07-25 23:14:29 +05:30
ccbec9c275 fix(pki): remove redundant key type_c assignment in build pubkey and privkey functions Praneeth Sarode 2025-07-25 23:12:44 +05:30
ed52c88a03 feat(misc): add burn_free function and BURN_FREE macro for secure memory deallocation Praneeth Sarode 2025-07-09 22:07:54 +05:30
0f0ac314d2 session: add err messages for most common WSA error codes (+ applied clang-format to file) Till Wimmer 2025-07-25 12:31:23 +02:00
95e4c39e8a Refactor: fix inconsistency in ssh_callback_struct Navid Fayezi 2025-07-18 19:41:46 -06:00
8c89633a45 pki: Avoid possible memory leak Jakub Jelen 2025-07-29 15:39:33 +02:00
8069679033 remove unused ssh_string in ssh_channel_open_forward_unix Rémi Coulom 2025-07-25 10:19:16 +02:00
c2e9d39dbe tests: Fix build script to work also on MacOS correctly Jakub Jelen 2025-07-25 16:40:53 +02:00
ab44f606b2 tests: Add more valgrind supressions for krb5 Jakub Jelen 2025-07-25 10:51:31 +02:00
444982b38a tests: Avoid needless call to pthread_exit() Jakub Jelen 2025-07-24 19:46:09 +02:00
3df61a4e86 pkd: Cleanup OpenSSL context Jakub Jelen 2025-07-24 19:19:51 +02:00