John Safranek
15023f54b6
verify the correct public key type and signature type during auth
2016-06-17 15:54:24 -07:00
John Safranek
89d92bb886
refactor userauth
2016-06-17 14:23:20 -07:00
John Safranek
a275ac59f0
1. Flushed out the authentication callback.
...
2. Added public key authentication.
2016-06-17 14:23:20 -07:00
John Safranek
a744dcc540
refactor DoPacket to pass the correct data pointer and data index update
2016-06-17 14:23:20 -07:00
John Safranek
911ac8c433
1. Adding parsing of publickey authentication data.
...
2. Changed logging of authentication requests.
3. Reply to "none" authentication types with a failure that
has the supported auth type list.
4. Fixed bug where passing payload to the DoUserAuthRequest wasn't
getting the correct payload length.
5. Reordered a couple utility functions.
2016-06-17 14:20:59 -07:00
dgarske
8e3e5a1bf5
Merge pull request #3 from ejohnstown/fixes1
...
Fixes1
2016-06-17 11:29:01 -07:00
John Safranek
49be153c61
verify the mac even if the decrypt fails
2016-04-15 10:25:04 -07:00
John Safranek
24c606527a
echoserver detects CTRL-C and closes the connection
2016-04-11 08:39:55 -07:00
John Safranek
bda5870fc5
more checking of return codes
2016-04-06 15:48:37 -07:00
John Safranek
597eb9e1ca
when freeing ctx resources, use the correct heap
2016-04-06 10:46:14 -07:00
John Safranek
9125396bda
initialize KDF test pointers to NULL
2016-04-06 10:40:02 -07:00
John Safranek
fc192b53be
bump version
2016-04-06 10:26:18 -07:00
John Safranek
5eb8b8111a
Use wolfssl/wolfcrypt instead of cyassl/ctaocrypt, add wc_ prefix to wolfcrypt function calls.
2016-04-05 15:42:38 -07:00
John Safranek
59590e28f3
scan-build fixes:
...
1. Disconnect string was unused in non-debug builds.
2. Check return code from decrypting the length block.
2016-04-04 09:32:49 -07:00
dgarske
2888063b15
Merge pull request #2 from ejohnstown/inline-option
...
Inline Option
2016-04-01 15:07:37 -07:00
John Safranek
0386a3c50f
move shared inline functions to misc file. add configure option to disable inline functions.
2016-04-01 14:40:22 -07:00
dgarske
9c609a14e5
Merge pull request #1 from ejohnstown/public-kdf
...
Public KDF
2016-04-01 10:47:16 -07:00
John Safranek
1566cf82a0
added parameter checks to GenerateKey and an option to print out the session secrets for debugging
2016-04-01 10:42:18 -07:00
John Safranek
19a9b2b7c1
update the readme
2016-03-31 14:12:18 -07:00
John Safranek
564506c038
Make KDF publically accessable. Add KDF test using keys from two successful connections.
2016-03-31 12:10:44 -07:00
John Safranek
4982638781
add ForceZero() and ConstantCompare() to the code
2015-12-09 16:01:23 -08:00
John Safranek
79b61eb786
autogen will touch config.rpath if missing
2015-12-08 14:16:25 -08:00
John Safranek
793a19857f
update copyright banner on sources
2015-12-08 13:45:20 -08:00
John Safranek
a8aa398dca
added unit test stub
2015-12-08 13:31:06 -08:00
John Safranek
7a616ffbf5
fix warning about always true comparison
2015-12-08 12:51:43 -08:00
John Safranek
2ce312400a
example echoserver behaves like a crude echoserver
2015-01-14 15:04:47 -08:00
John Safranek
e21e6fd0eb
copy example server as echoserver
2015-01-14 12:21:26 -08:00
John Safranek
f9fa42e244
1. added in the stream receive function
...
2. example uses the new receive function
2015-01-14 10:53:33 -08:00
John Safranek
d7f1cb321c
switch from CyaSSL to wolfSSL for crypto
2015-01-13 09:39:48 -08:00
John Safranek
d83d9356d2
fixed reference to wrong variable in wolfSSH_stream_send()
2015-01-13 09:35:43 -08:00
John Safranek
21e73bdf88
added some function enter logging
2015-01-07 14:58:19 -08:00
John Safranek
b548720a9a
1. added in the stream send function
...
2. example uses the new send function
3. added in window size update receipt
4. tweaked the accept state machine to actually finish
2015-01-07 13:49:01 -08:00
John Safranek
6975448d1b
1. Fix debug output for DoChannelOpen().
...
2. Added support for the Channel Request messge.
3. Added support for the Channel Data message.
4. Example server works like a very crude echo server.
2014-12-29 16:43:09 -08:00
John Safranek
dab2b248d5
1. Update the accept state machine to account for all the recent
...
messages.
2. Add sending the open channel confirmation.
3. Starting to refine the logging.
2014-12-29 15:11:04 -08:00
John Safranek
4351b91ddf
Starting adding the encrypted bytes tx/rx counters
2014-12-29 09:19:36 -08:00
John Safranek
f60895000a
Begin refactoring the packet parsing.
2014-12-26 11:28:30 -08:00
John Safranek
0455fe43dd
1. Commented out some of the distracting debugging output.
...
2. Accepts the none client authentication.
3. Starts to parse the channel open message.
4. Starting to handle channels.
2014-12-24 14:36:06 -08:00
John Safranek
38e51c45c8
1. Framing in the user authentication messages.
...
2. Removed some outdated/incorrect comments.
3. Removed some of the debugging output clutter.
4. Fixed bug when trying to add multiple messages to a single packet.
2014-12-19 10:59:45 -08:00
John Safranek
89e6d77e10
Updates to wolfSSH_accept()
...
1. Moved SendNewKeys() to SendKexDhReply() so both messages are sent
in the same packet.
2. Accept state machine checks return codes on Send functions.
3. Added a couple new states for some of the Send functions.
2014-12-18 16:01:32 -08:00
John Safranek
d0c6768d5d
fix bug with skipping received unimplemented messages
2014-12-18 15:17:07 -08:00
John Safranek
62d916d016
update buffer index when receiving the service request
2014-12-18 14:57:42 -08:00
John Safranek
4a0f5de683
removed some of the excess logging
2014-12-18 14:47:53 -08:00
John Safranek
9776e237fa
SendServerVersion should have returned success not fail
2014-12-18 14:25:54 -08:00
John Safranek
adcf881278
fix bug in DoPacket when simplifying payloadSz
2014-12-18 13:58:13 -08:00
John Safranek
10844bfc51
make sure code lines stay within 80 col standard
2014-12-17 15:54:33 -08:00
John Safranek
a2f55d517e
removed the unused buffer offset
2014-12-17 09:30:10 -08:00
John Safranek
b1e32737c2
Framing in the service request messages
2014-12-16 19:09:40 -08:00
John Safranek
6c49caf9ab
Added packet encryption and adding MAC
2014-12-16 13:17:18 -08:00
John Safranek
2ae2d6dcdf
1. Fixed bug with GenerateKey() that didn't take into account secret padding.
...
2. Fixed bug in DoPacket() that didn't increment the peer's packet sequence.
3. Fixed bug in Decrypt() where the AesCbcDecrypt case dropped through into error.
4. Refactoring the accept state machine.
5. Separating client and server block and MAC sizes.
6. Added client MAC checking.
7. Fixed bug where algorithm picking preferred server order over client.
8. Fixed bug where the algorithm list matching was checking out of bounds.
2014-12-10 21:01:22 -08:00
John Safranek
71bcd94c5f
1. Starting to add in the Decryption and MAC Verification.
...
2. Fixed bug in getting the entire packet from the socket.
2014-12-08 21:59:21 -08:00