aboutsummaryrefslogtreecommitdiffstats
path: root/lib/ssh
AgeCommit message (Collapse)Author
2015-11-24Merge branch 'hans/ssh/aes_gcm_crypto/OTP-13018' into maintHans Nilsson
* hans/ssh/aes_gcm_crypto/OTP-13018: ssh: fix dialyzer reported error ssh: renegotiate test group for AES_GCM ssh: documentation updates ssh: AEAD_AES_(128|256)_GCM and aes(128|256)[email protected] crypto ssh: refactor packet reception
2015-11-23ssh: fix dialyzer reported errorHans Nilsson
2015-11-23ssh: renegotiate test group for AES_GCMHans Nilsson
2015-11-23ssh: documentation updatesHans Nilsson
2015-11-23ssh: AEAD_AES_(128|256)_GCM and aes(128|256)[email protected] cryptoHans Nilsson
Note that the rfc5647 is ambigous so this implementation of AEAD_AES_(128|256)_GCM may or may not be compatible with others. They are note enabled by default but may be enabled by the user. See the Reference Manual, Application SSH for details of how we interpret the rfc. To be safe, use [email protected] or [email protected] instead.
2015-11-23ssh: refactor packet receptionHans Nilsson
There was an assymetric relationship between receiving a ssh-packet (decrypting-mac-decompress) and sending one. When sending, most of the work was defined in the ssh_transport module, while at reception the ssh_connection_handler was the one knowing what to do. This commit moves the reception down to the ssh_transport module where it belongs.
2015-11-20Merge branch 'riverrun/maint' into maintZandra
* riverrun/maint: Recommend against using crypto:rand_bytes
2015-11-17[ssh] Correct documentationHans Bolinder
Fix mistakes found by 'xmllint'.
2015-11-17Merge branch 'hans/ssh/doc_updates/OTP-12003' into maintHans Nilsson
* hans/ssh/doc_updates/OTP-12003: ssh: alternative look ssh: list supported rfcs ssh: moved "supported" section from ssh module man page to SSH_app man page ssh: links to crypto and public_key in the ssh app ref ssh: updated ssh_app.xml with ecdsa info ssh: removed pre-historic ssh specs from the doc-dir ssh: document function dependencies in ssh_connection.erl
2015-11-17Merge branch 'hans/ssh/cuddle_tests' into maintHans Nilsson
* hans/ssh/cuddle_tests: ssh: Add env var info printout to ssh_algorithms_SUTE:init_per_suite ssh: more public keys added to test suite
2015-11-17Merge branch 'hans/ssh/sshdir_search_order/OTP-13109' into maintHans Nilsson
* hans/ssh/sshdir_search_order/OTP-13109: ssh: ssh_file:default_user_dir/0 - try HOME env var first
2015-11-16Merge branch 'kanatohodets/ssh-subsystem-typo' into maintHenrik Nord
* kanatohodets/ssh-subsystem-typo: Fix spelling of ssh 'subsystem' OTP-13108
2015-11-13ssh: ssh_file:default_user_dir/0 - try HOME env var firstHans Nilsson
2015-11-13ssh: Add env var info printout to ssh_algorithms_SUTE:init_per_suiteHans Nilsson
2015-11-13ssh: more public keys added to test suiteHans Nilsson
2015-11-13ssh: alternative lookHans Nilsson
2015-11-11ssh: list supported rfcsHans Nilsson
2015-11-11ssh: moved "supported" section from ssh module man page to SSH_app man pageHans Nilsson
2015-11-11ssh: links to crypto and public_key in the ssh app refHans Nilsson
2015-11-11ssh: updated ssh_app.xml with ecdsa infoHans Nilsson
2015-11-11ssh: removed pre-historic ssh specs from the doc-dirHans Nilsson
2015-11-11ssh: document function dependencies in ssh_connection.erlHans Nilsson
2015-11-11ssh: add better error handling in ssh_fileHans Nilsson
ssh_file:lookup_user_key_fd and ssh_file:lookup_host_key
2015-11-09ssh: use crypto for ecdh point validationHans Nilsson
2015-11-06Merge branch 'hans/ssh/pwdfun/OTP-13055' into maintHans Nilsson
* hans/ssh/pwdfun/OTP-13055: ssh: changes after doc review ssh: Document pwdfun ssh: make corrections of keyboard-interactive client ssh: enable users to give option keyboard_interact_fun ssh: pwdfun/4 and simple tests Conflicts: lib/ssh/doc/src/ssh.xml
2015-11-06Recommend against using crypto:rand_bytesDavid Whitlock
2015-11-05ssh: correct a bad doc xrefHans Nilsson
2015-11-05ssh, public_key: updates after doc reviewHans Nilsson
2015-11-05Fix spelling of ssh 'subsystem'Ben Tyler
This commit does not change any behaviour, since the spelling was internally consistent.
2015-11-04ssh: changes after doc reviewHans Nilsson
2015-11-04ssh: extend 'dh_gex_limits' to server sideHans Nilsson
OTP-13066
2015-11-04ssh: option dh_gex_groups with tag ssh_moduli_fileHans Nilsson
Makes this existing option also accept a file in openssh format OTP-13052
2015-11-04ssh, public_key: random selection of diffie-hellman moduliHans Nilsson
Also tool (public_key:gen_moduli_hrl) to convert an openssh moduli file to erlang format.
2015-11-04ssh: changes after doc reviewHans Nilsson
2015-11-04ssh: Document pwdfunHans Nilsson
2015-11-04ssh: make corrections of keyboard-interactive clientHans Nilsson
* Newlines should be added after Name and Instructions field according to rfc4256. * There was an error in the argument list of the last clause of ssh_auth:keyboard_interact_get_responses/9 * Correct client kb-interactive behaviour at auth failure
2015-11-04ssh: enable users to give option keyboard_interact_funHans Nilsson
It is on purpose not documented. It needs more thinking before being finalized.
2015-11-04ssh: pwdfun/4 and simple testsHans Nilsson
Also solves OTP-13053
2015-11-02ssh: Make tests for bad packet_len and field lengths inside packetsHans Nilsson
Includes a ssh_transport:pack/3 function for generating invalid packets
2015-10-29ssh: Adjust the test ssh_renegotiate_SUITE:rekey_limitHans Nilsson
- Remove random length padding to make the data volume deterministic - Increase data volume limit for re-keying because the kexinit message has grown
2015-10-29ssh: fix spelling error pulic -> publicHans Nilsson
2015-10-28ssh: testcases for bad service namesHans Nilsson
2015-10-20ssh: dynamic check of supported algos in ssh_to_openssh_SUITEHans Nilsson
2015-10-20ssh: delete now obsolete test case group 'hardening_tests'Hans Nilsson
Thoose tests are already moved to other test suites. However, the init_per_group and end_per_group clauses were accidently left
2015-10-19ssh: Removed testcases from ssh_to_openssh_SUITEHans Nilsson
They are covered in ssh_algorithms_SUITE
2015-10-19ssh: test suites probes ssh clientHans Nilsson
Previously we called the ssh client with the -Q option to query about supported algorithms. Since old clients do not support this and at least one lies, we now set up a fake server at let the ssh client start negotiation instead. Much more robust hopefully.
2015-10-19ssh: running ssh_algorithms_SUITE tests in parallelHans Nilsson
2015-10-19ssh: wait for subsystem exit in ssh_connection_SUITE:max_channels_optionHans Nilsson
2015-10-19Merge branch 'hans/ssh/cuddle_spec' into maintHans Nilsson
* hans/ssh/cuddle_spec: ssh: dialyzer fix
2015-10-19ssh: Implemented ssh_transport:ecdh_validate_public_key (partly)Hans Nilsson
Defined in http://www.secg.org/sec1-v2.pdf '3.2.2 Validation of Elliptic Curve Public Keys' according to RFC 5656 ch 4. More to be done: check singularities, implement reading compressed points....