AgeCommit message (Expand)AuthorFilesLines
2012-12-23Implement key re-exchangeAris Adamantiadis8-14/+48
2012-12-19BUG 82: Fix function names of ssh_forward_*.Andreas Schneider1-5/+5
2012-12-19doc: Fix forward function names.Andreas Schneider1-2/+2
2012-12-19Fix an invalid strlen comparison in ssh_message_auth_reply_defaultAndrew Collins1-1/+1
2012-12-13string: Fix memory leak in ssh_string_to_char().Andreas Schneider1-6/+6
2012-12-03BUG 97: Fix strtoull() detection on serveral platforms.Andreas Schneider3-1/+21
2012-12-03BUG 96: Guard ntohll() and htonll prototypes correctly.Andreas Schneider3-1/+10
2012-12-03BUG 98: Use __attribute__ ((packed)) only with GCC.Andreas Schneider1-1/+1
2012-12-03BUG 97: Remove obsolete hsterror().Andreas Schneider2-18/+1
2012-12-03BUG 94: Fix big endian issue.Andreas Schneider1-3/+5
2012-11-27test: Try to fetch wrong values in buffer.Aris Adamantiadis1-0/+33
2012-11-23priv: Add BURN_BUFFER macro and make sure it isn't optimzed out.Andreas Schneider1-2/+5
2012-11-21pki: Add a size limit for pubkey files.Andreas Schneider2-1/+3
2012-11-14CVE-2012-4559: Make sure we don't free name and longname twice on error.Andreas Schneider1-10/+16
2012-11-14CVE-2012-4559: Ensure that we don't free req twice.Andreas Schneider1-1/+1
2012-11-14CVE-2012-4560: Fix a write one past the end of 'buf'.Andreas Schneider1-2/+3
2012-11-14CVE-2012-4560: Fix a write one past the end of the 'u' buffer.Andreas Schneider1-1/+1
2012-11-14CVE-2012-4562: Fix a possible infinite loop in buffer_reinit().Andreas Schneider1-4/+9
2012-11-14CVE-2012-4562: Fix multiple integer overflows in buffer-related functions.Xi Wang1-5/+21
2012-11-14CVE-2012-4562: Fix possible integer overflows.Xi Wang1-2/+14
2012-11-14CVE-2012-4562: Fix possible integer overflow in ssh_get_hexa().Xi Wang1-0/+5
2012-10-22pki: Fix integer overflow in ssh_pki_import_privkey_file().Xi Wang1-0/+5
2012-10-22channels: Fix integer overflow in generate_cookie().Xi Wang1-1/+1
2012-10-22channels1: Add missing request_state and set it to accepted.Andreas Schneider1-0/+1
2012-10-22auth1: Reset error state to no error.Andreas Schneider1-0/+1
2012-10-22session: Fix a possible use after free in ssh_free().Andreas Schneider1-33/+54
2012-10-22cmake: Set GNU compiler flags also for clang.Andreas Schneider1-2/+3
2012-10-15cmake: Add message if we build with static library.Andreas Schneider1-0/+1
2012-10-14doc: Update copyright policy.Andreas Schneider2-28/+198
2012-10-14options: Fix documentation of ssh_options_get_port().Andreas Schneider1-1/+1
2012-10-14doc: Update doxygen config.Andreas Schneider1-134/+423
2012-10-14doc: Use the correct channel functions.Andreas Schneider1-5/+5
2012-10-14cmake: Add better check to detect -fvisibility=hidden.Andreas Schneider1-1/+6
2012-10-12kex: Use getter functions to access kex arrays.Andreas Schneider4-10/+25
2012-10-12cmake: Fix building with gcrypt support.Andreas Schneider1-6/+9
2012-10-12tests: Add a valgrind suppression for getaddrino leak.Andreas Schneider1-0/+10
2012-10-12tests: Add a valgrind suppression for OPENSSL_cleanse().Andreas Schneider1-0/+5
2012-10-12scp: Make sure buffer is initialzed.Andreas Schneider1-1/+1
2012-10-12pki: Make sure the key_buf is null terminated.Andreas Schneider1-0/+1
2012-10-12misc: Use a fixed buffer for getenv().Andreas Schneider1-2/+8
2012-10-12poll: Fix sizeof in ssh_poll_ctx_resize().Andreas Schneider1-2/+2
2012-10-12legacy: Use snprintf instead of sprintf.Andreas Schneider1-2/+3
2012-10-12dh: Don't use strcat for ssh_get_hexa().Andreas Schneider1-9/+8
2012-10-12server: Use strncat instead of strcat.Andreas Schneider1-4/+12
2012-10-12misc: Use strncpy instead of strcat.Andreas Schneider1-1/+1
2012-10-12pki: Fix a possible null pointer dereference.Andreas Schneider1-3/+3
2012-10-12messages: Fix memory leaks in user request callback.Andreas Schneider1-54/+41
2012-10-12connect: Don't leak the addressinfo on error.Andreas Schneider1-0/+1
2012-10-12connect: Don't leak the file descriptor on error.Andreas Schneider1-0/+1
2012-10-12session: Don't leak memory in ssh_send_debug().Andreas Schneider1-4/+4