ClearML/dropbear
1
0
Fork 0
mirror of https://github.com/clearml/dropbear synced 2025-01-30 18:36:56 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,889 Commits 5 Branches 63 Tags 14 MiB
master
Commit Graph

1889 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Matt Johnston
cdc83ad98a Update github action to macos-12 
10.15 is being removed on github soon
 2022-11-10 11:13:00 +08:00
Matt Johnston
80fa169cb9 Move ./configure CFLAGS to the end of the list 
This allows overriding configure-script provided arguments
such as -Wundef with the user provided CFLAGS
 2022-11-10 11:08:26 +08:00
Matt Johnston
50a07a4889 Just disable -Wundef for macos runners instead 
The previous change to set TARGET_OS_EMBEDDED=0 didn't work
for libtommath which doesn't include Dropbear headers
 2022-11-10 10:53:59 +08:00
Matt Johnston
dacc10a8cf Work around macos broken TARGET_OS_EMBEDDED 
Their headers test TARGET_OS_EMBEDDED without
testing if it's defined which breaks Wundef.

Might be fixed in more recent macos, but it broke the github action.
 2022-11-10 10:45:32 +08:00
Matt Johnston
0058cc69c8 Update autoconf workflow to Ubuntu 22.04 
This should let it succeed with autoconf 2.71
 2022-11-10 10:29:03 +08:00
Matt Johnston
963b9eafaa Add -Wundef and fix missing definitions 2022-11-10 10:19:12 +08:00
Matt Johnston
7c9bd09af6 Fix typo in DROPEAR_DSS 
Fixes #195 issue in github
 2022-11-10 10:18:19 +08:00
Matt Johnston
72b28448a1 Fix missing end quote in comment example 2022-11-10 10:07:41 +08:00
Matt Johnston
dc3c1a30cf Allow overriding shells for compat getusershell() 2022-11-09 18:40:10 +08:00
Matt Johnston
71d78653c7 Merge pull request #160 from Jackkal/two-factor-authentication 
Two-factor authentication support (pubkey and password)
 2022-11-09 17:33:48 +08:00
Matt Johnston
9f55ff216b Add check for -t -s clash 
multiauthmethod with noauthpass isn't allowed
 2022-11-09 17:33:04 +08:00
Matt Johnston
b4c30b5e7e Ignore all-zero ed25519 keys in fuzzer-verify 2022-11-09 17:00:18 +08:00
Matt Johnston
561ef41230 Merge egor-duda:sk-authkey-options 
Github pull request #172
 2022-11-09 16:14:59 +08:00
Matt Johnston
ab6ea4d697 Fix plugin argument 
This broke in the re-exec changes, it was altering the argv
argument in-place, but argv was re-used later.

Fixes #194 github issue
 2022-11-09 13:14:22 +08:00
Matt Johnston
9d320a73be Merge remote-tracking branch 'refs/remotes/origin/master' 2022-10-31 09:51:00 +08:00
Matt Johnston
f19a0494d7
Merge pull request #190 from mgiacomoli/fix-dbclient-keyboard-interactive-login 
Dbclient: keyboard_interactive login method never used
 2022-10-27 15:52:02 +08:00
Matt Johnston
ab70167534
Merge pull request #189 from mgiacomoli/utx-typo 
Fix utx var typo
 2022-10-25 23:48:49 +08:00
Matt Johnston
d1fed8b451
Merge pull request #191 from mgiacomoli/ask-fingerprint-flush-stdin 
Dbclient: Flush stdin after fingerprint confirmation
 2022-10-25 23:47:45 +08:00
Matt Johnston
5284a3da56
Merge pull request #182 from tuoha/permitopen_authorized_keys 
Added permitopen option to authorized_keys
 2022-10-25 23:42:41 +08:00
Matt Johnston
f7d306e963 Fix decompression size check 
Dropbear's decompression could erroneously exit with
"bad packet, oversized decompressed"
for a valid 32768 byte decompressed payload (an off-by-one error).
It could be triggered particularly with larger SSH window sizes.

This change also simplifies the function by allocating a
single 32kB buffer rather than incrementally increasing the size.
 2022-10-25 21:17:56 +08:00
Matt Johnston
86efbae708 Add flags so libtommath builds with -O3 
This was the default prior to 2022.82 and makes a significant
difference to performance. Perhaps at a later time
this could be made more configurable.

Discussion in https://github.com/mkj/dropbear/issues/174
 2022-10-25 21:12:08 +08:00
Matt Johnston
64e270b6f2 dropbear_lint.sh: Use grep -- 2022-10-24 11:28:47 +08:00
Michele Giacomoli
b36707ba46 Fix comment style 2022-09-19 18:25:26 +02:00
Michele Giacomoli
acf50a4f98 Flush stdin after fingerprint confirmation 2022-09-19 18:09:38 +02:00
Michele Giacomoli
b734e5a423 Resort cli auth method tries 2022-09-19 17:45:55 +02:00
Michele Giacomoli
4c67d03656 Fix utx var typo 2022-09-19 16:50:43 +02:00
Matt Johnston
17e02fe614 Link to dropbear.nl in README 2022-08-04 21:39:28 +08:00
Matt Johnston
e520d035e7
Merge pull request #184 from wulei-student/patch-1 
Update dropbear.init
 2022-07-22 15:19:51 +08:00
lwu
d48a2ba8b7
Update dropbear.init 
need \ ,at the end of the line.
 2022-07-22 15:14:27 +08:00
Matt Johnston
7de29c2686 Re-add missing setsid(), missed #ifdef conversion 
Fixes: 2a81289 ("Make DEBUG_NOFORK a #if not #ifdef")
Fixes #180 github issue
 2022-07-18 15:01:51 +08:00
Tuomas Haikarainen
1e4d64d300 Added permitopen option to authorized_keys 
It is now possible to limit local port forwarding to specified
destination(s) by using the permitopen option in authorized_keys.

Resolves #181
 2022-07-12 10:35:00 +03:00
Matt Johnston
a7e3b06b04 Remove unused MAX_IP_LEN 2022-06-27 14:36:04 +08:00
Jackkal
427e49003a make comments consistent and fix typo 2022-06-21 22:48:56 +02:00
Matt Johnston
808bc392a0
Merge pull request #175 from k-kurematsu/fix_errmsg 
Fix misleading error message
 2022-06-21 17:18:06 +08:00
k-kurematsu
e03abf0d1a
Fix misleading error message 
As per the message, even if I deleted the write permission(chmod -007), but an error occurred.
It's a source of confusion, so fix the message.
 2022-06-21 17:58:12 +09:00
Egor Duda
62ea53c1e5
Implement no-touch-required and verify-requred for authorized_keys file 2022-06-11 19:17:40 +03:00
Matt Johnston
544f28a051 Fix MAX_UNAUTH_CLIENTS regression 
Since re-exec change in 2022.82 Dropbear count
treat authenticated sessions towards the unauthenticated
session limit. This is fixed by passing the childpipe FD
through to the re-execed process.
 2022-06-08 21:26:20 +08:00
Matt Johnston
f2318d831b
Merge github #169 
Fix compilation when disabling pubkey authentication (DROPBEAR_SVR_PUBKEY_AUTH)
 2022-05-31 09:48:17 +08:00
MaxMougg
1622c80be4
Fix indentations 2022-05-30 11:28:17 -04:00
MaxMougg
c77d02bb11
Update svr-chansession for build issue 
Following issue "Compilation error when disabling pubkey authentication (DROPBEAR_SVR_PUBKEY_AUTH)" from davidbernard04, code is modified to take in account that requesting information from method "ses.authstate.pubkey_info" isn't possible since the method is disabled when DROPBEAR_SVR_PUBKEY_OPTIONS_BUILT value is 0.
 2022-05-30 11:01:16 -04:00
Matt Johnston
50c6e8d3c3 Remove codeql 2022-05-24 09:49:10 +08:00
Matt Johnston
258f6127b4 Remove flawfinder. 
It's too noisy, lacks context
 2022-05-24 09:36:44 +08:00
Matt Johnston
b81c81c047
Add flawfinder action 2022-05-23 16:32:11 +08:00
Matt Johnston
3c3e4f6e6b
Create codeql-analysis.yml 
Experiment whether codeql works
 2022-05-23 16:31:13 +08:00
Jackkal
d8d1db2cf8 Two-factor auth - Fix missing include 2022-04-29 16:54:01 +02:00
Jackkal
0c9318a0b2 Two-factor authentication support (pubkey and password) 2022-04-29 15:43:15 +02:00
Matt Johnston
46654cda85 Increase build.yml DEFAULT_IDLE_TIMEOUT 2022-04-28 10:43:56 +08:00
Matt Johnston
72d8cae7a4 Test linking for hardening options 
Some options depend on correct library support.
 2022-04-26 22:04:38 +08:00
Matt Johnston
2e0a16c334 Avoid UNAUTH_CLOSE_DELAY when testing 
Seeing if this fixes test failures
 2022-04-26 17:12:15 +08:00
Matt Johnston
c4a0304b3f Add a test for off-by-default compile options 
This would have caught broken x11 (gh #156)
 2022-04-23 22:54:39 +08:00