libssh

lib/libssh

Fork 0

mirror of https://git.libssh.org/projects/libssh.git synced 2025-07-29 13:01:13 +03:00

Commit Graph

Select branches

Hide Pull Requests

master

master-fix

stable-0.10

stable-0.11

stable-0.8

stable-0.9

v0-2

v0-3

v0-4

v0-5

v0-6

v0-7

libssh-0.10.0

libssh-0.10.2

libssh-0.10.3

libssh-0.10.4

libssh-0.10.5

libssh-0.10.6

libssh-0.11.0

libssh-0.11.1

libssh-0.11.2

libssh-0.5.1

libssh-0.5.2

libssh-0.5.3

libssh-0.5.4

libssh-0.5.5

libssh-0.6.0

libssh-0.6.1

libssh-0.6.3

libssh-0.6.4

libssh-0.6.5

libssh-0.7.0

libssh-0.7.1

libssh-0.7.2

libssh-0.7.3

libssh-0.7.4

libssh-0.7.5

libssh-0.7.6

libssh-0.7.7

libssh-0.8.0

libssh-0.8.1

libssh-0.8.2

libssh-0.8.3

libssh-0.8.4

libssh-0.8.5

libssh-0.8.6

libssh-0.8.7

libssh-0.8.8

libssh-0.8.9

libssh-0.9.0

libssh-0.9.1

libssh-0.9.2

libssh-0.9.3

libssh-0.9.4

libssh-0.9.5

libssh-0.9.6

libssh-0.9.7

libssh-0.9.8

release-0-3-0

release-0-3-1

release-0-3-2

release-0-3-3

release-0-3-4

release-0-4-0

release-0-4-1

release-0-4-2

release-0-4-3

release-0-4-4

release-0-4-5

release-0-4-6

release-0-4-7

release-0-4-8

release-0-5-0

8069679033 remove unused ssh_string in ssh_channel_open_forward_unix master Rémi Coulom 2025-07-25 10:19:16 +02:00
c2e9d39dbe tests: Fix build script to work also on MacOS correctly Jakub Jelen 2025-07-25 16:40:53 +02:00
ab44f606b2 tests: Add more valgrind supressions for krb5 Jakub Jelen 2025-07-25 10:51:31 +02:00
444982b38a tests: Avoid needless call to pthread_exit() Jakub Jelen 2025-07-24 19:46:09 +02:00
3df61a4e86 pkd: Cleanup OpenSSL context Jakub Jelen 2025-07-24 19:19:51 +02:00
961c79637c options: Fix possible memory leaks on error conditions when setting keys for bind Jakub Jelen 2025-07-24 19:19:12 +02:00
7eefbbd478 tests: Cleanup OpenSSL in the forked server processes Jakub Jelen 2025-07-24 18:57:31 +02:00
c4c28c6473 tests: Skip test leaking handle under valgrind Jakub Jelen 2025-07-24 17:47:58 +02:00
08a32ac381 tests: Cleanup OpenSSL in tests when GSSAPI is built Jakub Jelen 2025-06-19 19:08:34 +02:00
62762bbbc9 Cleanup the loaded pkcs11 provider Jakub Jelen 2025-06-02 17:44:43 +02:00
ab3e08c2b5 Finalize OpenSSL context from tests to make the valgrind output clean Jakub Jelen 2025-06-03 09:51:11 +02:00
809898b980 tests: Adjust valgrind supression to match new calls stack Jakub Jelen 2025-05-30 19:52:10 +02:00
51bd08027e CentOS 9 and 10 were updated to OpenSSL 3.5 Jakub Jelen 2025-07-24 13:24:55 +02:00
0b4b71cc11 fix(callbacks): make is_callback_valid's behaviour consistent with its name Praneeth Sarode 2025-07-23 23:10:50 +05:30
5d3ef7261c refactor(callbacks): reformat to improve readability Praneeth Sarode 2025-07-23 23:08:54 +05:30
9817392e26 pkd: Run hmac-sha1 tests with OpenSSH Jakub Jelen 2025-07-24 11:19:21 +02:00
168302b9d6 Fix ssh_handle_key_exchange() timeout Nguyễn Thái Ngọc Duy 2025-07-15 15:38:59 +02:00
82c8bbc504 tests: Add missing header file to unbreak build on freebsd Jakub Jelen 2025-07-21 21:15:15 +02:00
1ea1782036 Add simple sshsig fuzzer Jakub Jelen 2025-07-21 21:11:47 +02:00
c17112f070 Enable HMAC SHA1 tests for dropbear <2025.87 abdallah elhdad 2025-07-05 12:07:23 +03:00
28c0056bca Add logging for private API functions Nicolas Graves 2025-07-09 00:52:07 +02:00
7e4f08e22a Add logging to public API functions Nicolas Graves 2025-06-18 17:57:36 +02:00
aeb0b2ec6f Add unittests for sshsig functions Nicolas Graves 2025-05-27 15:18:15 +02:00
67cf8e3702 Implement sshsig functions Nicolas Graves 2025-05-22 08:58:24 +02:00
309f36fa83 pki: Add key_to_type_hash helper Nicolas Graves 2025-05-30 22:29:38 +02:00
7a2a743a39 fix(string): handle empty string case in ssh_string_copy Praneeth Sarode 2025-06-29 12:08:20 +05:30
ccb8cf88c8 Unbreak torture_config_make_absolute() on OpenBSD Theo Buehler 2025-06-27 23:21:32 +02:00
b43392c31d tests(string): add unit tests for ssh_string functions Praneeth Sarode 2025-06-29 12:08:56 +05:30
5fc65e7270 agent: Fix resource leak Andreas Schneider 2025-06-26 10:10:49 +02:00
8310b8cc2b Remove redundant line and change strlen(buffer) to sizeof(buffer) in examples/authentication.c Navid Fayezi 2025-06-19 18:10:18 -06:00
b0063b52d8 Remove more redundant casts Navid 2025-06-08 16:49:25 -06:00
33a947dcb0 Remove unnecessary char* cast in memset call in examples/examples_common.h Navid 2025-06-08 16:12:31 -06:00
dff6c0821e Bump version to 0.11.2 libssh-0.11.2 stable-0.11 Andreas Schneider 2025-06-24 09:48:43 +02:00
82175044dc dh-gex: Reformat the dhgex_server_callbacks structure Jakub Jelen 2025-05-16 19:17:22 +02:00
8559f59404 dh-gex.c: Fix typo in the constant name Jakub Jelen 2025-05-16 19:10:04 +02:00
160fc7df10 packet: Implement missing packet filter for DH GEX Jakub Jelen 2025-05-16 19:09:30 +02:00
72c282434b dh-gex: Reformat the dhgex_server_callbacks structure Jakub Jelen 2025-05-16 19:17:22 +02:00
ba9642882d dh-gex.c: Fix typo in the constant name Jakub Jelen 2025-05-16 19:10:04 +02:00
a6b73219e2 packet: Implement missing packet filter for DH GEX Jakub Jelen 2025-05-16 19:09:30 +02:00
a9d8a3d448 CVE-2025-5372 libgcrypto: Simplify error checking and handling of return codes in ssh_kdf() Jakub Jelen 2025-05-14 14:07:58 +02:00
f13b91c2d8 libgcrypto: Reformat ssh_kdf() Jakub Jelen 2025-05-14 13:57:24 +02:00
90b4845e0c CVE-2025-5987 libcrypto: Correctly detect failures of chacha initialization Jakub Jelen 2025-05-06 22:51:41 +02:00
6ddb730a27 CVE-2025-5351 pki_crypto: Avoid double-free on low-memory conditions Jakub Jelen 2025-05-06 22:43:31 +02:00
b35ee876ad CVE-2025-4878 legacy: Properly check return value to avoid NULL pointer dereference Jakub Jelen 2025-04-28 11:04:55 +02:00
697650caa9 CVE-2025-4878 Initialize pointers where possible Jakub Jelen 2025-04-23 17:57:11 +02:00
5504ff4051 CVE-2025-5449 sftpserver: Use constant for return values Jakub Jelen 2025-04-23 13:42:13 +02:00
f79ec51b7f CVE-2025-5449 sftpserver: Fix possible read behind buffer on 32bit arch Jakub Jelen 2025-04-23 12:44:33 +02:00
78485f446a CVE-2025-5449 sftpserver: Avoid NULL dereference for invalid handles Jakub Jelen 2025-04-23 11:38:52 +02:00
3443aec901 CVE-2025-5449 tests: Reproducer for sftp handles exhaustion Jakub Jelen 2025-04-22 21:32:25 +02:00
261612179f CVE-2025-5449 sftpserver: Avoid memory leak when we run out of handles during sftp_open Jakub Jelen 2025-04-22 21:37:29 +02:00
5f4ffda887 CVE-2025-5318: sftpserver: Fix possible buffer overrun Jakub Jelen 2025-04-22 21:18:44 +02:00
6fd9cc8ce3 CVE-2025-4877 base64: Prevent integer overflow and potential OOB Jakub Jelen 2025-04-15 11:41:24 +02:00
e2afe196d8 CVE-2025-5372 libgcrypto: Simplify error checking and handling of return codes in ssh_kdf() Jakub Jelen 2025-05-14 14:07:58 +02:00
32833b40bc libgcrypto: Reformat ssh_kdf() Jakub Jelen 2025-05-14 13:57:24 +02:00
bc4804aa9b CVE-2025-5987 libcrypto: Correctly detect failures of chacha initialization Jakub Jelen 2025-05-06 22:51:41 +02:00
acb158e827 CVE-2025-5351 pki_crypto: Avoid double-free on low-memory conditions Jakub Jelen 2025-05-06 22:43:31 +02:00
faf9caafc6 pki_crypto: Reformat pki_key_to_blob() Jakub Jelen 2025-05-06 22:32:43 +02:00
8dc29f140b CVE-2025-4878 legacy: Properly check return value to avoid NULL pointer dereference Jakub Jelen 2025-04-28 11:04:55 +02:00
7501ca1e08 examples: Fix possible pass of NULL into strchr() Jakub Jelen 2025-04-25 10:28:28 +02:00
2eb2af4426 CVE-2025-4878 Initialize pointers where possible Jakub Jelen 2025-04-23 17:57:11 +02:00
5d27f69494 string: Reformat Jakub Jelen 2025-04-24 16:20:57 +02:00
6fc1bf6901 session: Reformat ssh_get_publickey_hash Jakub Jelen 2025-04-24 16:19:08 +02:00
a85813e6e6 poll: Reformat ssh_poll_ctx_resize Jakub Jelen 2025-04-24 16:17:34 +02:00
f039edd85d examples: Reformat sshnetcat.c Jakub Jelen 2025-04-24 16:11:52 +02:00
1229ad650b src: Reformat pki_gcrypt.c Andreas Schneider 2025-06-23 15:23:34 +02:00
b595cc7ada gitlab-ci.yml: Run fedora without pkcs11 Norbert Pocs 2024-11-13 13:38:30 +01:00
d044b79de0 tests: Remove p11-kit remoting from pkcs11 tests Jakub Jelen 2025-01-22 17:45:43 +01:00
937552aed2 pki: Reformat ssh_pki_copy_cert_to_privkey() Jakub Jelen 2025-04-24 15:15:59 +02:00
f6709b03e6 misc: Reformat Jakub Jelen 2025-04-24 15:14:57 +02:00
96595d1674 messages: Reformat Jakub Jelen 2025-04-24 15:13:10 +02:00
c799a18d89 channels: Reformat Jakub Jelen 2025-04-24 15:10:27 +02:00
babd891e82 examples: Reformat senddata.c Jakub Jelen 2025-04-24 14:54:07 +02:00
320e5154b2 examples: Reformat scp_download.c Jakub Jelen 2025-04-24 14:52:38 +02:00
986e0c593f examples: Reformat connect_ssh.c Jakub Jelen 2025-04-24 14:47:23 +02:00
d38007c4be CVE-2025-5449 sftpserver: Use constant for return values Jakub Jelen 2025-04-23 13:42:13 +02:00
c22bfa792f CVE-2025-5449 tests: Reproducer for payload length overrun Jakub Jelen 2025-04-23 12:46:35 +02:00
926d45b6dd CVE-2025-5449 sftpserver: Fix possible read behind buffer on 32bit arch Jakub Jelen 2025-04-23 12:44:33 +02:00
681a5aaa26 CVE-2025-5449 tests: Reproducer for server processing invalid handles Jakub Jelen 2025-04-23 11:39:39 +02:00
e322e8f50c CVE-2025-5449 sftpserver: Avoid NULL dereference for invalid handles Jakub Jelen 2025-04-23 11:38:52 +02:00
a4118ddc06 CVE-2025-5449 tests: Reproducer for sftp handles exhaustion Jakub Jelen 2025-04-22 21:32:25 +02:00
db7f101d1c CVE-2025-5449 sftpserver: Avoid memory leak when we run out of handles during sftp_open Jakub Jelen 2025-04-22 21:37:29 +02:00
ae8881dfe5 CVE-2025-5318: sftpserver: Fix possible buffer overrun Jakub Jelen 2025-04-22 21:18:44 +02:00
00f09acbec CVE-2025-4877 base64: Prevent integer overflow and potential OOB Jakub Jelen 2025-04-15 11:41:24 +02:00
827c24055f sftp: Do not fail if the status message does not contain error message Jakub Jelen 2024-09-03 10:43:07 +02:00
1eff5d68f4 tests: Cleanup torture_channel_exit_signal Lucas Mulling 2025-05-30 18:08:29 -03:00
e4ede51d87 pki: Set ECDSA signature buffers secure Jakub Jelen 2025-06-03 10:18:26 +02:00
991b4422bd tests: Auth without none method Jakub Jelen 2025-05-30 09:52:16 +02:00
1a2c46781c auth: Process outstanding packets before selecting signature algorithm Jakub Jelen 2025-05-30 09:47:34 +02:00
65699380cf buffer: Use sizeof instead of magic number Jakub Jelen 2025-05-30 09:20:41 +02:00
52e648c7f1 tests: remove unsupported SHA1 HMAC tests for compatibility with latest dropbear version Praneeth Sarode 2025-05-27 16:42:05 +05:30
66314eeb71 misc: Fix OpenSSH banner parsing Lucas Mulling 2025-04-24 15:48:32 -03:00
573e0e48dc sftpserver: Free memory on error condition Jakub Jelen 2025-04-16 16:48:18 +02:00
a2bb9b5d0c test: Fix potential leak of fds on error Jakub Jelen 2025-04-16 16:39:17 +02:00
0de97c48d0 test: Fix unused variables and potential memory leaks Jakub Jelen 2025-04-16 16:38:55 +02:00
eeb498c0e3 Make sure we pass right parameters to buffer_pack Jakub Jelen 2025-04-14 22:17:02 +02:00
715855d888 tests: Do not build zlib test when built without Jakub Jelen 2025-04-14 22:16:27 +02:00
38004ecf94 CmakeLists: Fix multiple digit major version for OpenSSH Norbert Pocs 2025-04-11 09:04:40 +02:00
edb1b8ba2c tests: Fix variable names to avoid codespell issues Jakub Jelen 2025-03-04 14:11:16 +01:00
1e9e37580f tests: Reproducer for graceful failure on ignored Match arguments Jakub Jelen 2025-03-04 13:55:04 +01:00
8b5b785e0c config: Be less strict when parsing unknown Match keywords Jakub Jelen 2025-03-04 13:48:50 +01:00