Nick Couchman
171bae1f5c
GUACAMOLE-527: Add basic check for known hosts file for SSH connections.
2018-06-25 08:31:37 -04:00
Nick Couchman
9200bc789f
GUACAMOLE-398: Use freeaddrinfo() instead of free() on the linked list.
2017-09-27 13:24:58 -04:00
Nick Couchman
e4dd8de4f1
GUACAMOLE-398: Fix memory leak identified by Coverity in common ssh code.
2017-09-27 13:02:41 -04:00
James
f559701645
GUACAMOLE-396: Fixing ssh socket for IPv6 address
...
Root Cause:
In the ssh library of guacd, the TCP socket for connecting to ssh server is created with AF_INET. So it does not support IPv6 address.
Solution:
When guacd creates the socket for ssh in guac_common_ssh_create_session(), stop using hard coded AF_INET for socket() call, use the address family which is returned from getaddrinfo().
Test:
- Connected successfully via ssh connections with IPv4 and IPv6 hosts.
- No connection error in guacd logs.
- Simulated a connection failure with specifying a ssh server which does not exist. guacd worked well in this case.
2017-09-26 17:19:18 -07:00
Michael Jumper
7857dd0a9a
GUACAMOLE-303: Ensure there is always space for the null terminator when normalizing.
2017-07-04 12:00:43 -07:00
Michael Jumper
0474f86c46
GUACAMOLE-303: Extend common SFTP filesystem such that arbitrary directories can be used as the root of the filesystem.
2017-06-29 15:36:10 -07:00
Nick Couchman
a5efbb5933
GUACAMOLE-203: Fix function prototype to remove const.
2017-06-25 14:56:50 -04:00
Nick Couchman
650f7a0a32
GUACAMOLE-203: if is not a function...
2017-06-25 14:10:42 -04:00
Nick Couchman
711cdd6929
GUACAMOLE-203: Allow keepalive param to be modified inside the function.
2017-06-25 05:13:12 -04:00
Nick Couchman
05dfb1a6ae
GUACAMOLE-203: Deal correctly with negative keepalive values.
2017-06-25 05:10:22 -04:00
Nick Couchman
ed77114038
GUACAMOLE-203: Fix issue using guac_client_log instead of guac_user_log.
2017-06-14 13:01:01 -04:00
Nick Couchman
af4d762147
GUACAMOLE-203: Move warning about minimum alive interval to single place in common code.
2017-06-14 12:49:49 -04:00
Nick Couchman
e7fc8a0d98
GUACAMOLE-203: Expand SSH keepalives to cover SFTP connections for other protocols.
2017-05-31 21:03:09 -04:00
Michael Jumper
270d51d4d4
GUACAMOLE-205: Use semantically-named macro rather than repeatedly and explicitly check OpenSSL version.
2017-02-28 13:01:30 -08:00
Michael Jumper
98a5faaa77
GUACAMOLE-205: Provide OpenSSL 1.1 API shims for missing accessors.
2017-02-28 13:01:30 -08:00
Michael Jumper
dbfb782dd5
GUACAMOLE-205: Update to 1.1 version of OpenSSL API.
2017-02-28 13:01:30 -08:00
James Muehlner
c4903a8e36
Merge 0.9.12-incubating changes back to master.
2017-02-28 10:32:49 -08:00
Michael Jumper
d371f2d9ee
GUACAMOLE-169: Move common-ssh headers to namespaced directory.
2017-02-27 14:28:23 -08:00
Michael Jumper
58b85da8f2
GUACAMOLE-222: Ensure files downloaded via SFTP are explicitly closed upon completion.
2017-02-26 14:11:42 -08:00
Michael Jumper
4f4643dd2f
GUACAMOLE-208: Report network failures to connect with UPSTREAM_NOT_FOUND.
2017-02-15 21:40:00 -08:00
Michael Jumper
eee928548d
GUACAMOLE-169: Use proper namespace for internal common headers.
2017-01-23 23:26:26 -08:00
Frode Langelo
6c05dc026e
GUACAMOLE-157: Initialize SSH SSL lock array to NULL and test for NULL-ness before freeing.
2017-01-11 22:40:34 +00:00
Michael Jumper
f4b8c70f79
GUACAMOLE-1: Relicense build/shell scripts.
2016-03-28 20:39:38 -07:00
Michael Jumper
4da3bef4ec
GUACAMOLE-1: Relicense C files.
2016-03-28 20:39:19 -07:00
Michael Jumper
0a1f01ce3f
GUAC-1164: Ensure locks used by OpenSSL are always freed.
2016-03-17 18:10:42 -07:00
Michael Jumper
e57c9ddd86
GUAC-1164: Free private key used for SSH login.
2016-03-17 17:30:32 -07:00
Michael Jumper
7c2766b34b
GUAC-1389: Abort correctly if password or keyboard-interactive auth fails (fixes GUAC-1381).
2016-03-14 17:33:17 -07:00
Michael Jumper
b3b5a65923
GUAC-1389: Simply logic surrounding freeaddrinfo().
2016-03-02 20:09:07 -08:00
Michael Jumper
c9346014df
GUAC-1389: Release candidate addresses of no connection can be established.
2016-03-02 10:59:03 -08:00
Michael Jumper
48143f6a0a
GUAC-1389: Add convenience function for exposing SFTP filesystems to specific users.
2016-03-01 17:28:35 -08:00
Michael Jumper
cb70c6e8b9
GUAC-1389: Bring common-ssh up to date with screen sharing changes.
2016-03-01 17:28:35 -08:00
Michael Jumper
ab4af86c7b
GUAC-1323: Send proper Guacamole protocol status codes for SFTP errors.
2015-09-06 13:39:08 -07:00
Michael Jumper
49beb7d7fd
GUAC-1264: Require explicit free for users and sessions. Ensure SSH client data is zeroed upon allocation.
2015-07-24 13:20:36 -07:00
Michael Jumper
f8f16c44a9
GUAC-1264: Validate provided credentials. Log if anything is missing.
2015-07-23 16:28:48 -07:00
Michael Jumper
6ae5b94df3
GUAC-1171: Always close socket file descriptor when session creation fails.
2015-07-14 11:15:21 -07:00
Michael Jumper
cdefe52c67
GUAC-1171: Ensure user and session objects are automatically free'd, and that this is documented.
2015-07-14 11:02:48 -07:00
Michael Jumper
46ce69a8a9
GUAC-1171: Do not attempt to read error strings when there may be no such strings available.
2015-07-12 22:36:08 -07:00
Michael Jumper
4d941545cd
GUAC-1171: Ensure directory names are null-terminated.
2015-07-12 22:27:02 -07:00
Michael Jumper
1316743b02
GUAC-1171: Do not fall through to DSA if RSA signature fails.
2015-07-12 22:24:26 -07:00
Michael Jumper
3eac35c158
GUAC-1171: Handle socket() error return values.
2015-07-12 22:22:32 -07:00
Michael Jumper
c6191f4539
GUAC-1171: Fix resource leaks.
2015-07-12 22:19:36 -07:00
Michael Jumper
5f547a9974
GUAC-1171: Fix naming of guac_common_ssh_buffer_*() functions.
2015-07-10 17:26:04 -07:00
Michael Jumper
a6b46a0ea0
GUAC-1171: Add and document SFTP functionality within common SSH.
2015-07-10 17:21:27 -07:00
Michael Jumper
87be5d43ea
GUAC-1171: Add missing comments around static functions. Add param and return annotations to existing comments.
2015-07-10 14:20:16 -07:00
Michael Jumper
98503a9fb7
GUAC-1171: Initial refactor to require that user credentials be provided prior to connect.
2015-07-10 02:00:23 -07:00
Michael Jumper
ff287aee52
GUAC-1171: Separate key/password management from SSH connection. Maintain connection information within session object.
2015-07-10 01:31:15 -07:00
Michael Jumper
0a015b2843
GUAC-1171: Add key and buffer helpers. Partially implement private key auth.
2015-07-09 16:17:47 -07:00
Michael Jumper
5b627ae5cc
GUAC-1171: Implement SSH connection (without auth).
2015-07-09 12:28:46 -07:00
Michael Jumper
ed70281766
GUAC-1171: Move SFTP functions to own header.
2015-07-09 12:05:57 -07:00
Michael Jumper
fbcf8a1e0d
GUAC-1171: Move initialization of SSH, OpenSSL, etc. to common SSH base.
2015-07-09 12:02:31 -07:00