Commit Graph

33 Commits

Author SHA256 Message Date
a10789ab49 Accepting request 1093948 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
- Update to 1.11.0:
  * Enhancements and bugfixes
    - Adds support for encrypt-then-mac (ETM) MACs
    - Adds support for AES-GCM crypto protocols
    - Adds support for sk-ecdsa-sha2-nistp256 and sk-ssh-ed25519 keys
    - Adds support for RSA certificate authentication
    - Adds FIDO support with *_sk() functions
    - Adds RSA-SHA2 key upgrading to OpenSSL, WinCNG, mbedTLS, OS400 backends
    - Adds Agent Forwarding and libssh2_agent_sign()
    - Adds support for Channel Signal message libssh2_channel_signal_ex()
    - Adds support to get the user auth banner message libssh2_userauth_banner()
    - Adds LIBSSH2_NO_{MD5, HMAC_RIPEMD, DSA, RSA, RSA_SHA1, ECDSA, ED25519,
      AES_CBC, AES_CTR, BLOWFISH, RC4, CAST, 3DES} options
    - Adds direct stream UNIX sockets with libssh2_channel_direct_streamlocal_ex()
    - Adds wolfSSL support to CMake file
    - Adds mbedTLS 3.x support
    - Adds LibreSSL 3.5 support
    - Adds support for CMake "unity" builds
    - Adds CMake support for building shared and static libs in a single pass
    - Adds symbol hiding support to CMake
    - Adds support for libssh2.rc for all build tools
    - Adds .zip, .tar.xz and .tar.bz2 release tarballs
    - Enables ed25519 key support for LibreSSL 3.7.0 or higher
    - Improves OpenSSL 1.1 and 3 compatibility
    - Now requires OpenSSL 1.0.2 or newer
    - Now requires CMake 3.1 or newer
    - SFTP: Adds libssh2_sftp_open_ex_r() and libssh2_sftp_open_r() extended APIs
    - SFTP: No longer has a packet limit when reading a directory
    - SFTP: now parses attribute extensions if they exist
    - SFTP: no longer will busy loop if SFTP fails to initialize

OBS-URL: https://build.opensuse.org/request/show/1093948
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=72
2023-06-20 16:50:58 +00:00
76e14e1783 Accepting request 939227 from home:david.anes:branches:devel:libraries:c_c++
Update to 1.10.0

OBS-URL: https://build.opensuse.org/request/show/939227
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=71
2021-12-10 16:14:35 +00:00
8ed51ae453 Accepting request 829988 from home:dimstar:Factory
- Drop man and groff BuildRequires: both are no longer used in
  current versions.

OBS-URL: https://build.opensuse.org/request/show/829988
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=69
2020-08-27 14:21:47 +00:00
Tomáš Chvátal
194c4edcf2 Accepting request 742231 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
- Security fix: [bsc#1154862, CVE-2019-17498]
  * The SSH_MSG_DISCONNECT:packet.c logic has an integer overflow in
    a bounds check that might lead to disclose sensitive information
    or cause a denial of service
  * Add patch libssh2_org-CVE-2019-17498.patch

OBS-URL: https://build.opensuse.org/request/show/742231
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=67
2019-10-23 19:01:44 +00:00
9307041c2f Accepting request 711121 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
- Version update to 1.9.0:
   Enhancements and bugfixes:
    * adds ECDSA keys and host key support when using OpenSSL
    * adds ED25519 key and host key support when using OpenSSL 1.1.1
    * adds OpenSSH style key file reading
    * adds AES CTR mode support when using WinCNG
    * adds PEM passphrase protected file support for Libgcrypt and WinCNG
    * adds SHA256 hostkey fingerprint
    * adds libssh2_agent_get_identity_path() and libssh2_agent_set_identity_path()
    * adds explicit zeroing of sensitive data in memory
    * adds additional bounds checks to network buffer reads
    * adds the ability to use the server default permissions when creating sftp directories
    * adds support for building with OpenSSL no engine flag
    * adds support for building with LibreSSL
    * increased sftp packet size to 256k
    * fixed oversized packet handling in sftp
    * fixed building with OpenSSL 1.1
    * fixed a possible crash if sftp stat gets an unexpected response
    * fixed incorrect parsing of the KEX preference string value
    * fixed conditional RSA and AES-CTR support
    * fixed a small memory leak during the key exchange process
    * fixed a possible memory leak of the ssh banner string
    * fixed various small memory leaks in the backends
    * fixed possible out of bounds read when parsing public keys from the server
    * fixed possible out of bounds read when parsing invalid PEM files
    * no longer null terminates the scp remote exec command
    * now handle errors when diffie hellman key pair generation fails
    * improved building instructions
    * improved unit tests
- Rebased patch libssh2-ocloexec.patch

OBS-URL: https://build.opensuse.org/request/show/711121
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=65
2019-06-21 09:50:59 +00:00
4dd88213d6 Accepting request 692556 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
- Version update to 1.8.2: [bsc#1130103]
   Bug fixes:
    * Fixed the misapplied userauth patch that broke 1.8.1
    * moved the MAX size declarations from the public header

OBS-URL: https://build.opensuse.org/request/show/692556
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=63
2019-04-09 15:24:57 +00:00
Tomáš Chvátal
95d1d4c548 Accepting request 686341 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
- Version update to 1.8.1:
  Bug Fixes:
   * [bsc#1128471, CVE-2019-3855] Integer overflow when reading a specially
     crafted packet
   * [bsc#1128493, CVE-2019-3863] Integer overflow in userauth_keyboard_interactive
     with a number of extremely long prompt strings
   * [bsc#1128472, CVE-2019-3856] Integer overflow if the server sent an extremely
     large number of keyboard prompts
   * [bsc#1128490, CVE-2019-3861] Out of bounds read when processing a specially
     crafted packet
   * [bsc#1128474, CVE-2019-3857] Integer overflow when receiving a specially
     crafted exit signal message channel packet
   * [bsc#1128492, CVE-2019-3862] Out of bounds read when receiving a specially
     crafted exit status message channel packet
   * [bsc#1128476, CVE-2019-3858] Zero byte allocation when reading a specially
     crafted SFTP packet
   * [bsc#1128481, CVE-2019-3860] Out of bounds reads when processing specially
     crafted SFTP packets
   * [bsc#1128480, CVE-2019-3859] Out of bounds reads in _libssh2_packet_require(v)

OBS-URL: https://build.opensuse.org/request/show/686341
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=61
2019-03-19 10:41:33 +00:00
Tomáš Chvátal
cffaab5577 Accepting request 566490 from home:dimstar:Factory
- Drop openssh BuildRequires: this is only used for one of the
  minor self-tests.

And in plus, this should kill the small cycle

  openssh -> libssh2_org -> systemd -> openssh

OBS-URL: https://build.opensuse.org/request/show/566490
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=59
2018-01-16 19:05:47 +00:00
Tomáš Chvátal
23c9c70d71 Accepting request 507160 from home:jengelh:branches:devel:libraries:c_c++
- Remove --with-pic which is only for static libs

OBS-URL: https://build.opensuse.org/request/show/507160
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=57
2017-06-29 20:13:55 +00:00
Tomáš Chvátal
84a34035da - Version update to 1.8.0:
* support openssl-1.1
  * many bugfixes
- Fixes bsc#1042660
- Remove obsolete conditionals that are no longer needed

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=55
2017-06-14 10:25:35 +00:00
Ismail Dönmez
029f6ff34f Accepting request 361119 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 1.7.0
  * Fixes CVE-2016-0787 (boo#967026)
  * Changes:
    libssh2_session_set_last_error: Add function
    mac: Add support for HMAC-SHA-256 and HMAC-SHA-512
    WinCNG: support for SHA256/512 HMAC
    kex: Added diffie-hellman-group-exchange-sha256 support
    OS/400 crypto library QC3 support
  * and many bugfixes

OBS-URL: https://build.opensuse.org/request/show/361119
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=53
2016-02-23 14:20:38 +00:00
Ismail Dönmez
14b6d6ad9d Accepting request 311823 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 1.6.0
  Changes:
    Added CMake build system
    Added libssh2_userauth_publickey_frommemory()
  Bug fixes:
    wait_socket: wrong use of difftime()
    userauth: Fixed prompt text no longer being copied to the prompts struct
    mingw build: allow to pass custom CFLAGS
    Let mansyntax.sh work regardless of where it is called from
    Init HMAC_CTX before using it
    direct_tcpip: Fixed channel write
    WinCNG: fixed backend breakage
    OpenSSL: caused by introducing libssh2_hmac_ctx_init
    userauth.c: fix possible dereferences of a null pointer
    wincng: Added explicit clear memory feature to WinCNG backend
    openssl.c: fix possible segfault in case EVP_DigestInit fails
    wincng: fix return code of libssh2_md5_init()
    kex: do not ignore failure of libssh2_sha1_init()
    scp: fix that scp_send may transmit not initialised memory
    scp.c: improved command length calculation
    nonblocking examples: fix warning about unused tvdiff on Mac OS X
    configure: make clear-memory default but WARN if backend unsupported
    OpenSSL: Enable use of OpenSSL that doesn't have DSA
    OpenSSL: Use correct no-blowfish #define
    kex: fix libgcrypt memory leaks of bignum
    libssh2_channel_open: more detailed error message
    wincng: fixed memleak in (block) cipher destructor

OBS-URL: https://build.opensuse.org/request/show/311823
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=51
2015-06-13 07:50:45 +00:00
Ismail Dönmez
24c5ad3751 Accepting request 290303 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 1.5.0
  * fixes CVE-2015-1782 (bnc#921070)
- tarball verification
  * added libssh2_org.keyring
  * added libssh2-1.5.0.tar.gz.asc
Changes in 1.5.0:
  Added Windows Cryptography API: Next Generation based backend
Bug fixes:
  Security Advisory: Using `SSH_MSG_KEXINIT` data unbounded, CVE-2015-1782
  missing _libssh2_error in _libssh2_channel_write
  knownhost: Fix DSS keys being detected as unknown.
  knownhost: Restore behaviour of `libssh2_knownhost_writeline` with short buffer.
  libssh2.h: on Windows, a socket is of type SOCKET, not int
  libssh2_priv.h: a 1 bit bit-field should be unsigned
  windows build: do not export externals from static library
  Fixed two potential use-after-frees of the payload buffer
  Fixed a few memory leaks in error paths
  userauth: Fixed an attempt to free from stack on error
  agent_list_identities: Fixed memory leak on OOM
  knownhosts: Abort if the hosts buffer is too small
  sftp_close_handle: ensure the handle is always closed
  channel_close: Close the channel even in the case of errors
  docs: added missing libssh2_session_handshake.3 file
  docs: fixed a bunch of typos
  userauth_password: pass on the underlying error code
  _libssh2_channel_forward_cancel: accessed struct after free
  _libssh2_packet_add: avoid using uninitialized memory
  _libssh2_channel_forward_cancel: avoid memory leaks on error
  _libssh2_channel_write: client spins on write when window full
  windows build: fix build errors

OBS-URL: https://build.opensuse.org/request/show/290303
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=49
2015-03-13 06:55:14 +00:00
Michal Vyskocil
908ef872a9 - ignore groff-full to remove factory build cycle
- add groff to build requires to make tests passing

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=47
2013-06-25 07:56:12 +00:00
08367842ae Accepting request 173167 from home:bmanojlovic:branches:devel:libraries:c_c++
fixed building on older OS/sle targets

OBS-URL: https://build.opensuse.org/request/show/173167
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=45
2013-04-24 16:31:10 +00:00
Ismail Dönmez
581fbe7b99 Accepting request 156888 from home:elvigia:branches:devel:libraries:c_c++
- Use AC_CONFIG_HEADERS instead of AM_CONFIG_HEADER, fixes 
  build with new automake

OBS-URL: https://build.opensuse.org/request/show/156888
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=43
2013-03-01 10:22:28 +00:00
Michal Vyskocil
e7c6234e52 Accepting request 147891 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 1.4.3
    compression: add support for zlib@openssh.com
    Bug fixes:
    sftp_read: return error if a too large package arrives
    libssh2_hostkey_hash.3: update the description of return value
    examples: use stderr for messages, stdout for data
    openssl: do not leak memory when handling errors
    improved handling of disabled MD5 algorithm in OpenSSL
    known_hosts: Fail when parsing unknown keys in known_hosts file
    configure: gcrypt doesn't come with pkg-config support
    session_free: wrong variable used for keeping state
    libssh2_userauth_publickey_fromfile_ex.3: mention publickey == NULL
    comp_method_zlib_decomp: handle Z_BUF_ERROR when inflating
    Return LIBSSH2_ERROR_SOCKET_DISCONNECT on EOF when reading banner
    userauth.c: fread() from public key file to correctly detect any errors
    configure.ac: Add option to disable build of the example applications
    Added 'Requires.private:' line to libssh2.pc
    SFTP: filter off incoming "zombie" responses
    gettimeofday: no need for a replacement under cygwin
    SSH_MSG_CHANNEL_REQUEST: default to want_reply
    win32/libssh2_config.h: Remove hardcoded #define LIBSSH2_HAVE_ZLIB
    build error with gcrypt backend
    always do "forced" window updates to avoid corner case stalls
    aes: the init function fails when OpenSSL has AES support
    transport_send: Finish in-progress key exchange before sending data
    channel_write: acknowledge transport errors
    examples/x11.c: Make sure sizeof passed to read operation is correct
    examples/x11.c:,Fix suspicious sizeof usage
    sftp_packet_add: verify the packet before accepting it
    SFTP: preserve the original error code more

OBS-URL: https://build.opensuse.org/request/show/147891
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=41
2013-01-11 14:43:44 +00:00
Ismail Dönmez
de8818b3f7 Accepting request 102481 from home:elvigia:branches:devel:libraries:c_c++
- fix license

OBS-URL: https://build.opensuse.org/request/show/102481
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=39
2012-02-02 13:39:51 +00:00
Cristian Rodríguez
113852fc13 Accepting request 102437 from home:elvigia:branches:devel:libraries:c_c++
- Update to version 1.4.0 plus git bugfixes

OBS-URL: https://build.opensuse.org/request/show/102437
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=38
2012-02-02 04:31:06 +00:00
Cristian Rodríguez
87203238c9 Accepting request 98259 from home:elvigia:branches:devel:libraries:c_c++
- Refresh patches.

OBS-URL: https://build.opensuse.org/request/show/98259
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=36
2011-12-27 04:11:19 +00:00
f5a95ea363 Remove redundant/unwanted tags/section (cf. specfile guidelines)
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=35
2011-12-01 03:42:14 +00:00
Cristian Rodríguez
73e5b41339 Accepting request 94640 from home:elvigia:branches:devel:libraries:c_c++
- open library file descriptors with O_CLOEXEC

OBS-URL: https://build.opensuse.org/request/show/94640
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=34
2011-12-01 02:46:12 +00:00
Cristian Rodríguez
7ddc07686f Accepting request 89034 from home:elvigia:branches:devel:libraries:c_c++
- Update to version 1.3.0
* sftp_read: advance offset correctly for buffered copies
* libssh2_sftp_seek64: flush packetlist and buffered data
* _libssh2_packet_add: adjust window size when truncating
* sftp_read: a short read is not end of file

OBS-URL: https://build.opensuse.org/request/show/89034
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=32
2011-10-21 18:18:27 +00:00
ee3b284919 Accepting request 86031 from openSUSE:Factory:ARM
- document the reason for the testsuite failure

OBS-URL: https://build.opensuse.org/request/show/86031
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=30
2011-10-02 13:42:30 +00:00
Cristian Rodríguez
aca8bbe8bc Accepting request 85819 from home:elvigia:branches:devel:libraries:c_c++
- Workaround qemu-arm problems.

OBS-URL: https://build.opensuse.org/request/show/85819
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=27
2011-09-30 17:41:48 +00:00
Cristian Rodríguez
0b22ddfb7a Accepting request 81054 from home:elvigia:branches:devel:libraries:c_c++
- respect user's openssl.cnf engine configuration, might 
 want to do crypto with aes-ni, intel-accell or use rdrand

OBS-URL: https://build.opensuse.org/request/show/81054
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=25
2011-09-06 04:48:20 +00:00
Cristian Rodríguez
e461438f7a Accepting request 79178 from home:elvigia:branches:devel:libraries:c_c++
- Update to version 1.2.9
* Added libssh2_session_set_timeout() and 
  libssh2_session_get_timeout() to make blocking calls get a timeout
* userauth_keyboard_interactive: fix buffer overflow

OBS-URL: https://build.opensuse.org/request/show/79178
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=23
2011-08-17 21:20:59 +00:00
Cristian Rodríguez
fd4e13a61b Accepting request 51659 from home:elvigia:branches:devel:libraries:c_c++
OBS-URL: https://build.opensuse.org/request/show/51659
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libssh2_org?expand=0&rev=21
2010-10-29 17:14:28 +00:00
OBS User autobuild
199d4fb5d9 Accepting request 44907 from devel:libraries:c_c++
Copy from devel:libraries:c_c++/libssh2_org based on submit request 44907 from user elvigia

OBS-URL: https://build.opensuse.org/request/show/44907
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libssh2_org?expand=0&rev=9
2010-08-09 00:09:57 +00:00
OBS User autobuild
d2dfdb0287 Accepting request 31722 from devel:libraries:c_c++
Copy from devel:libraries:c_c++/libssh2_org based on submit request 31722 from user msmeissn

OBS-URL: https://build.opensuse.org/request/show/31722
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libssh2_org?expand=0&rev=5
2010-02-11 18:32:00 +00:00
OBS User unknown
f107d9597f OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libssh2_org?expand=0&rev=3 2009-05-28 02:37:51 +00:00
OBS User unknown
a94b173864 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libssh2_org?expand=0&rev=2 2009-01-08 17:45:06 +00:00
OBS User unknown
781df34c8b OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libssh2_org?expand=0&rev=1 2008-11-04 16:48:58 +00:00