AgeCommit message (Collapse)AuthorFilesLines
2015-09-17tests: add test for cipher.(de|en)cryptHEADmasterAris Adamantiadis2-0/+108
2015-09-17libcrypto: refactor EVP_(de|en)cryptAris Adamantiadis1-56/+61
2015-09-16kex: Fix zlib compressionAndreas Schneider1-0/+1
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-15cmake: Use tar.xz source package generatorAndreas Schneider1-1/+1
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-15kex: Prefer sha2 over sha1Andreas Schneider1-5/+4
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-09pki: Fix a memory leak on error in ssh_pki_copy_cert_to_privkey()Andreas Schneider1-0/+1
CID 1323516 Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-09pki: Fix a memory leak in pki_import_cert_buffer()Andreas Schneider1-0/+1
CID #1323517
2015-09-09tests: Fix return code of torture_initAndreas Schneider1-1/+1
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07tests: Add tests for the new ssh_pki cert functionsAxel Eppe2-0/+169
Signed-off-by: Axel Eppe <aeppe@google.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07pki: Add certificate loading functionsAxel Eppe3-2/+123
- ssh_pki_import_cert_base64() - ssh_pki_import_cert_file() - ssh_pki_import_cert_blob() Those functions are currently simple wrappers around their pubkey counterpart. - ssh_pki_copy_cert_to_privkey() This function copies the cert-specific data to a private key. Signed-off-by: Axel Eppe <aeppe@google.com> Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07pki: Add Add new pki_import_cert_buffer functionAxel Eppe1-0/+51
Signed-off-by: Axel Eppe <aeppe@google.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07pki: Add rsa, dss certificate key type definitionsAxel Eppe5-1/+28
- Add rsa/dsa (ssh-{rsa,dss}-cert-v01@openssh.com) as key types. - Add a cert_type member in the ssh_key struct. Signed-off-by: Axel Eppe <aeppe@google.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07tests: Migrate pkd_hello to new cmocka APIAndreas Schneider1-19/+33
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07pki: Use the standard logging functionAndreas Schneider7-112/+109
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07tests: Migrate to new cmocka APIAndreas Schneider26-275/+395
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07cmake: Handle libssh threas library correctlyAndreas Schneider5-10/+32
This should fix the build on Windows and would not install pkg files. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-09-07bignum: Fix OpenSSL crash in SAFE_FREEMichael Wilder1-0/+4
Signed-off-by: Michael Wilder <wilder.michael@cimcor.com> Reviewed-by: Andreas Schneider <asn@samba.org>
2015-09-07crypto: Add OpenSSL EVP functions for FIPS compatibilityMichael Wilder2-150/+414
Signed-off-by: Michael Wilder <wilder.michael@cimcor.com>
2015-08-18server: Fix return code check of ssh_buffer_pack()Andreas Schneider1-1/+1
Thanks to Andreas Gutschick <andreas.gutschick@mitel.com> Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-08-18doc: Fix typos in sftp tutorialAndreas Schneider1-2/+2
Thanks to Anthony Baker <AnthonyBaker@fico.com> Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-08-10tests: Add checks for ssh_key_is_private()Andreas Schneider1-0/+30
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-08-10pki: Fix return values of ssh_key_is_(public|private)Andreas Schneider1-2/+2
Thanks to Kevin Haake <khaake@red-cocoa.com> Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-08-01sftp: Fix incorrect handling of received length fieldsTilo Eckert1-7/+13
Signed-off-by: Tilo Eckert <tilo.eckert@flam.de>
2015-07-30auth: Fix return status for ssh_userauth_agent()Peter Volpe1-0/+5
BUG: https://red.libssh.org/issues/201 Return SSH_AUTH_DENIED instead of SSH_AUTH_ERROR when the provided agent offers no public keys. Signed-off-by: Peter Volpe <pvolpe@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-07-30define our own platform-independent S_IF macrosTilo Eckert2-24/+26
Signed-off-by: Tilo Eckert <tilo.eckert@flam.de> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-07-30fix file mode checks in sftp_open()Tilo Eckert1-8/+7
Signed-off-by: Tilo Eckert <tilo.eckert@flam.de> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-07-08fix permissionsAris Adamantiadis2-0/+0
2015-07-07client: handle agent forward open requests with callbacksFabiano Fidêncio4-1/+57
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com> Reviewed-by: Aris Adamantiadis <aris@badcode.be>
2015-07-03cmake: Fix zlib include directoryAndreas Schneider3-7/+7
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-07-03cmake: Fix OpenSSL detection in non-standard pathAndreas Schneider1-6/+6
This should fix the detection on Windows. Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-07-03cmake: Fail if can't find OpenSSL aes and des headersAndreas Schneider1-17/+25
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-30include: Add stdarg.h so we can check for va_copy macroAndreas Schneider1-0/+1
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-29SSH_AUTH_PARTIAL is now correctly passed to the caller of ↵Tilo Eckert1-8/+7
ssh_userauth_publickey_auto(). Implicitly fixed unsafe return code handling that could result in use-after-free. Signed-off-by: Tilo Eckert <tilo.eckert@flam.de> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-29available auth_methods must be reset on partial authenticationTilo Eckert1-1/+1
Signed-off-by: Tilo Eckert <tilo.eckert@flam.de> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-29channels: Fix exit-signal data unpackingPeter Volpe1-1/+1
Signed-off-by: Peter Volpe <pvolpe@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-29agent: Add ssh_set_agent_socketPeter Volpe2-3/+21
Allow callers to specify their own socket for an ssh agent. Signed-off-by: Peter Volpe <pvolpe@redhat.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-24Don't allocate a new identity list in the new session's options.Seb Boving1-6/+0
The previous list is not freed. Since the new session just got created, an identity list is already allocated and empty. Signed-off-by: Sebastien Boving <seb@google.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-24cmake: Do not use CMAKE_(SOURCE|BINARY)_DIRDouglas Heriot5-7/+7
2015-06-24pki: Fix allocation of ed25519 public keysTiamo Laitakari1-2/+2
Signed-off-by: Tiamo Laitakari <tiamo.laitakari@cs.helsinki.fi> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-24Documentation fix where unsigned is used where signed is expectedJordy Moos2-3/+3
Signed-off-by: Jordy Moos <jordymoos@gmail.com> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-24misc: Correctly guard the sys/time.h includeAndreas Schneider2-3/+8
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-24include: Add support for older MSVC versionsAndreas Schneider1-0/+4
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-24kex: Add comments to #if clausesAndreas Schneider1-6/+10
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-06-03channels: fix exit-status not correctly setAris Adamantiadis1-5/+3
2015-05-29Comment that ssh_forward_cancel() is deprecated.Mike DePaulo1-0/+1
Signed-off-by: Aris Adamantiadis <aris@badcode.be>
2015-05-29Reintroduce ssh_forward_listen() (Fixes: #194)Mike DePaulo1-0/+5
Signed-off-by: Aris Adamantiadis <aris@badcode.be>
2015-05-08cpack: Use application version.Andreas Schneider1-3/+3
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-05-06Bump version to 0.7.0Andreas Schneider2-2/+2
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-05-06Update ChangeLogAndreas Schneider1-1/+63
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>
2015-05-06valgrind: Add suppression for openssl FIPS dlopen leakAndreas Schneider1-0/+12
Signed-off-by: Andreas Schneider <asn@cryptomilk.org>