From libssh2-devel-bounces@cool.haxx.se Mon Feb 6 15:51:56 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v16EpOjV007826; Mon, 6 Feb 2017 15:51:50 +0100 Received: from minas.ics.muni.cz (minas.ics.muni.cz [147.251.4.46]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v16EpMZA007814 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Mon, 6 Feb 2017 15:51:22 +0100 Received: from [147.251.17.20] (dhcp17-20.ics.muni.cz [147.251.17.20]) (authenticated user=98998@is.muni.cz bits=0) by minas.ics.muni.cz (8.14.4/8.14.4/Debian-4+deb7u1) with ESMTP id v16EpLjA049564 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Mon, 6 Feb 2017 15:51:22 +0100 To: libssh2-devel@cool.haxx.se From: =?UTF-8?Q?Martin_Dra=c5=a1ar?= Subject: Sending custom message Message-ID: Date: Mon, 6 Feb 2017 15:51:11 +0100 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 X-Muni-Envelope-From: drasar@ics.muni.cz X-Muni-Spam-TestIP: 147.251.17.20 X-Muni-Local-IP: yes X-Muni-Local-Auth: yes X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.3.9 (minas.ics.muni.cz [147.251.4.35]); Mon, 06 Feb 2017 15:51:22 +0100 (CET) X-Virus-Scanned: clamav-milter 0.99.2 at minas X-Virus-Status: Clean X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: multipart/mixed; boundary="===============1819260910==" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" This is a cryptographically signed message in MIME format. --===============1819260910== Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms050203030601060508000505" This is a cryptographically signed message in MIME format. --------------ms050203030601060508000505 Content-Type: text/plain; charset=iso-8859-2 Content-Transfer-Encoding: quoted-printable Hi, I just wanted to ask if it is possible to send custom special messages. E.g., send a debug message. I see that they are callbacks for their repection in API, but I have failed to find a way to send them. Any idea? Thanks, Martin --------------ms050203030601060508000505 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: Elektronicky podpis S/MIME MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC CYcwggS8MIIDpKADAgECAhEAizwTfjTC5Npr6iN0/zCPzjANBgkqhkiG9w0BAQUFADA7MQsw CQYDVQQGEwJOTDEPMA0GA1UEChMGVEVSRU5BMRswGQYDVQQDExJURVJFTkEgUGVyc29uYWwg Q0EwHhcNMTQwNDI5MDAwMDAwWhcNMTcwNDI4MjM1OTU5WjBcMQswCQYDVQQGEwJDWjEeMBwG A1UEChMVTWFzYXJ5a292YSB1bml2ZXJ6aXRhMRcwFQYDVQQDDA5NYXJ0aW4gRHJhxaFhcjEU MBIGCSqGSIb3DQEJAhYFOTg5OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY zj5AgkAWu2TVOqaG/cf6HYkqyJZi176BmOLD/ubuBnFKoYlc240X7pyX5lv+vuXOARiXcgJ2 DhOILIPuey6hurDSFhvZapEVlKPZdK0YF4m8uUyrfdOzoB+nNVn/bHim/tJk3c2DJlmbEMPD dC3vr5R1GXybaHXQVBaxGcgDeZPKAyHCopX3Zz3Fz2Rl3JX61qQuUPapP10SEI8IbesEjkb7 MVQwrG5f7H75QCN9BkYRzaU1Lln6s45li+/LCAjlfdR646ZKaN8D4Pl+jrzNdWJkhFO9Ti4v 36yg4Q3kqCuVfsH0osMGIu2HnnpwQMjUntU2i5KAAiYJwdlIKzhRAgMBAAGjggGYMIIBlDAf BgNVHSMEGDAWgBRjTUNaGUg/xEbBArq/7g7lgrdmpjAdBgNVHQ4EFgQU1APG9V6DLbBDtBqW mbflF3QzHZMwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYB BQUHAwQGCCsGAQUFBwMCMBgGA1UdIAQRMA8wDQYLKwYBBAGyMQECAh0wPwYDVR0fBDgwNjA0 oDKgMIYuaHR0cDovL2NybC50Y3MudGVyZW5hLm9yZy9URVJFTkFQZXJzb25hbENBLmNybDBy BggrBgEFBQcBAQRmMGQwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudGNzLnRlcmVuYS5vcmcv VEVSRU5BUGVyc29uYWxDQS5jcnQwJgYIKwYBBQUHMAGGGmh0dHA6Ly9vY3NwLnRjcy50ZXJl bmEub3JnMEYGA1UdEQQ/MD2BE2RyYXNoYUBtYWlsLm11bmkuY3qBEmRyYXNhckBpY3MubXVu aS5jeoESOTg5OThAbWFpbC5tdW5pLmN6MA0GCSqGSIb3DQEBBQUAA4IBAQBghortv6jFpQPx NMql+mhDOX0Y6mMjrPxfur3isHzyBh+d2KI7ewbi67W1TQix1t9E9cA+8+qUwk7JX8YaYFdZ eKA9ba9wlAbAqO8i0aSbcyE5NzQTFcdB0q7oY/AjfkPyS5bdOvnJhacB2ZFhOlghyGP76UHN TQfUdMAAl3UGuzRodtWwSVx2QGhHdNDjb9+OJVWAc7edn5tqAmOcTCWgudxsxhqAvRZAGpnj k2kG1w1tcS0TnSy+DwxNvykiZthB5n+26rEcj+bLwMQZDKjinGbkwIX37lYMScXdku8vqTqH GNfWvwZAJrAF3mNW6Nc6H2ydSsNuSws8ghgtwQXmMIIEwzCCA6ugAwIBAgIQc/5X+t+4xQiB e2a5a/At7zANBgkqhkiG9w0BAQUFADCBrjELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAlVUMRcw FQYDVQQHEw5TYWx0IExha2UgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3Jr MSEwHwYDVQQLExhodHRwOi8vd3d3LnVzZXJ0cnVzdC5jb20xNjA0BgNVBAMTLVVUTi1VU0VS Rmlyc3QtQ2xpZW50IEF1dGhlbnRpY2F0aW9uIGFuZCBFbWFpbDAeFw0wOTA1MTgwMDAwMDBa Fw0yODEyMzEyMzU5NTlaMDsxCzAJBgNVBAYTAk5MMQ8wDQYDVQQKEwZURVJFTkExGzAZBgNV BAMTElRFUkVOQSBQZXJzb25hbCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMgV2fUzaiOhkA3PuwVEw6sfSjWFGiGFoE/48EDiSkOb/luxsL+0V9x1gEFLZBr2209vj9Al RTX56stK+vva0+1FiBGUNuTMqA3vxT037RZ748KVnlgzfyL7+P/s5r7brgplJSKH2m+Ei0bo QIYoP79WCOJK6YOi6SL7Lfq2KB+RwcNx+1PAK06kDKFunVXt7OEkhzoI4g0c5MRN0Msn+oRk 5tGXnVYkW5O7KS5D4kFqPeJKZfyaX1qGh7yHx3mAlplRxpAPZJGZfRDdrCwDKuF4ZP7OPU70 K1ARS9FY1JsD8H/1O1OwU0P7xS/EBCkaOqzXVenRDpXROzF/eE+uKS0CAwEAAaOCAU0wggFJ MB8GA1UdIwQYMBaAFImCZ33EnSZwAEu0UEh83j2uBG59MB0GA1UdDgQWBBRjTUNaGUg/xEbB Arq/7g7lgrdmpjAOBgNVHQ8BAf8EBAMCAQYwEgYDVR0TAQH/BAgwBgEB/wIBADAYBgNVHSAE ETAPMA0GCysGAQQBsjEBAgIdMFgGA1UdHwRRME8wTaBLoEmGR2h0dHA6Ly9jcmwudXNlcnRy dXN0LmNvbS9VVE4tVVNFUkZpcnN0LUNsaWVudEF1dGhlbnRpY2F0aW9uYW5kRW1haWwuY3Js MG8GCCsGAQUFBwEBBGMwYTA4BggrBgEFBQcwAoYsaHR0cDovL2NydC51c2VydHJ1c3QuY29t L1VUTkFBQUNsaWVudF9DQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVz dC5jb20wDQYJKoZIhvcNAQEFBQADggEBAAYrqVMvE9xcORbMhp9eTHty++yNVYpemgr/U0x2 9AY9UM9X8KLPr5mMqv6gGXY+mQMy+nWDOIq7a5qlDBOy1Bt25pQuZ5hZ45FsApCanMhgS1Wr yohajSvlaZUDB9HUDvwkIi5ZsWOkX+3ZI3LknM46XGwfT6kAyR3++n9FLbYuhN0PJ6BZGE7V diVF9JkmedtvnyP3Q7srDwSjgSYst3s1+T13X0Ah5n8dpZZavdDLFjpsu2GLiv0EOUQKyyzh y84uEJga2+CT7UlkZAggn7ejUPCi3cq0xnwMPedeFdwnhuQ6O1JaF6upBlMrnQlzZBwBw/0w 0ocDb+QVA3o5X2gxggMaMIIDFgIBATBQMDsxCzAJBgNVBAYTAk5MMQ8wDQYDVQQKEwZURVJF TkExGzAZBgNVBAMTElRFUkVOQSBQZXJzb25hbCBDQQIRAIs8E340wuTaa+ojdP8wj84wDQYJ YIZIAWUDBAIBBQCgggGbMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkF MQ8XDTE3MDIwNjE0NTExMVowLwYJKoZIhvcNAQkEMSIEICo2psCjMP0LE+cHhRR6y/WOhCik 3UnnB+cjeV6USUDYMF8GCSsGAQQBgjcQBDFSMFAwOzELMAkGA1UEBhMCTkwxDzANBgNVBAoT BlRFUkVOQTEbMBkGA1UEAxMSVEVSRU5BIFBlcnNvbmFsIENBAhEAizwTfjTC5Npr6iN0/zCP zjBhBgsqhkiG9w0BCRACCzFSoFAwOzELMAkGA1UEBhMCTkwxDzANBgNVBAoTBlRFUkVOQTEb MBkGA1UEAxMSVEVSRU5BIFBlcnNvbmFsIENBAhEAizwTfjTC5Npr6iN0/zCPzjBsBgkqhkiG 9w0BCQ8xXzBdMAsGCWCGSAFlAwQBKjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcwDgYIKoZI hvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMA0GCSqG SIb3DQEBAQUABIIBACbHEs4l6LyKKJsCPsFgStIMWDdfxSirF5AjeBjmb+mNVJOvCHYVcqau 7rMnvjh7U2jYryPxYeZ3OqgsxYeAlrNOj2H4UmHwqeKN6YbxQ4Z8WyCYas47q+xN4RSGOS9N CA1vNsi4QAKmcpRwcedojwF4jSmIm0UMIr/skMpATu2JJutzVbLsn7XxjikB0+ml7QWf/9zZ v0pN6Yq7pz46cNhakLZ5nif2Ovy/n6+6WNJaMQ/vEOPVLhzvR76DYuIgRhb37ar+UbrR4lPn EzG9lQXxTGPXdDXDwuUC7hYAPQXWj0z5LwJBC/DE5aqp/09yCVPaXDFvFYoegvJ030A0iAwA AAAAAAA= --------------ms050203030601060508000505-- --===============1819260910== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlic3NoMi1k ZXZlbCBodHRwczovL2Nvb2wuaGF4eC5zZS9jZ2ktYmluL21haWxtYW4vbGlzdGluZm8vbGlic3No Mi1kZXZlbAo= --===============1819260910==-- From libssh2-devel-bounces@cool.haxx.se Sat Feb 11 22:39:36 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1BLcvkT024276; Sat, 11 Feb 2017 22:39:27 +0100 Received: from box4.thinkface.com (mx.911domain.com [64.182.101.216]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1BLcrI4024270 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sat, 11 Feb 2017 22:38:55 +0100 Received: from MAILSERVER.WITTFAMILY.COM (c-50-170-37-171.hsd1.wa.comcast.net [50.170.37.171]) (authenticated bits=0) by box4.thinkface.com (8.14.4/8.14.4) with ESMTP id v1BLd0DY030770 (version=TLSv1/SSLv3 cipher=AES256-SHA256 bits=256 verify=OK) for ; Sat, 11 Feb 2017 16:39:01 -0500 X-SPAM-Abuse: If this is Spam, please report it to the following link: X-SPAM-Report: http://www.dnsExit.com/Direct.sv?cmd=reportSpam&msgid=v1BLd0DY030770 X-Service-By: http://www.dnsExit.com/Direct.sv?cmd=mailRelay Relay account will be suspended instantly if Spam Received: from MAILSERVER.WITTFAMILY.COM (192.168.1.177) by MAILSERVER.WITTFAMILY.COM (192.168.1.177) with Microsoft SMTP Server (TLS) id 15.1.225.42; Sat, 11 Feb 2017 13:34:38 -0800 Received: from MAILSERVER.WITTFAMILY.COM ([fe80::19bf:8150:2480:f183]) by MAILSERVER.WITTFAMILY.COM ([fe80::19bf:8150:2480:f183%14]) with mapi id 15.01.0225.041; Sat, 11 Feb 2017 13:34:38 -0800 From: Wesley Witt To: "libssh2-devel@cool.haxx.se" Subject: Key Exchange Failure Thread-Topic: Key Exchange Failure Thread-Index: AdKErUrITo67l524RputXGCM0IWxaA== Date: Sat, 11 Feb 2017 21:34:38 +0000 Message-ID: <8d87ff4a0d4c406b81c34617be847ffc@wittfamily.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [192.168.1.1] MIME-Version: 1.0 X-MIME-Autoconverted: from quoted-printable to 8bit by giant.haxx.se id v1BLcrI4024270 X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1BLcvkT024276 I'm new to libssh2 and am trying to get a basic test program working. The problem I'm seeing is when I call libssh2_session_handshake I get back LIBSSH2_ERROR_KEX_FAILURE. The host that I'm connecting to is Ubuntu 16.04. The client OS is Windows 10. I can successfully connect to the host over ssh 2 using putty. I am using the ssh2.c sample code from the libssh repo. Is there some configuration requirement for the host or client? Thanks, Wes _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 00:20:20 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1BNK3QN028962; Sun, 12 Feb 2017 00:20:15 +0100 Received: from giant.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1BNK1uQ028566 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sun, 12 Feb 2017 00:20:01 +0100 Received: from localhost (dast@localhost) by giant.haxx.se (8.15.2/8.15.2/Submit) with ESMTP id v1BNK11e028563 for ; Sun, 12 Feb 2017 00:20:01 +0100 X-Authentication-Warning: giant.haxx.se: dast owned process doing -bs Date: Sun, 12 Feb 2017 00:20:01 +0100 (CET) From: Daniel Stenberg X-X-Sender: dast@giant.haxx.se To: libssh2 development Subject: some help on a security related thing? Message-ID: User-Agent: Alpine 2.20 (DEB 67 2015-01-07) X-fromdanielhimself: yes MIME-Version: 1.0 X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8"; Format="flowed" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1BNK3QN028962 Hi, We recently received an email about a libssh2 security problem, but it turns out basically none of us old "maintainers" of this project (me and Alexander Lamaison at least) feel that we have enough time and energy to handle it. This is ultimately a cry for help that this project needs more hands on deck to function, but to at least handle this immediate short-term crisis I would like you call for volunteers to help us work on this specific problem now. To investigate it and work on a fix, or fixes together with the person who has found the issue. Failing to deal with it will eventually end up with the issue getting published without any action from our end prior to that, and that would be very unfortunate. Any takers? -- / daniel.haxx.se _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 00:45:06 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1BNioCt018223; Sun, 12 Feb 2017 00:45:02 +0100 Received: from foo.stuge.se (foo.stuge.se [212.116.89.98]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1BNin5M018131 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sun, 12 Feb 2017 00:44:49 +0100 Received: (qmail 19618 invoked by uid 1000); 12 Feb 2017 00:23:46 -0000 Date: Sun, 12 Feb 2017 00:23:46 +0000 From: Peter Stuge To: libssh2-devel@cool.haxx.se Subject: Re: some help on a security related thing? Message-ID: <20170212002346.GU21523@foo.stuge.se> References: MIME-Version: 1.0 Content-Disposition: inline In-Reply-To: X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1BNioCt018223 Daniel Stenberg wrote: > Any takers? I can take a look at it. //Peter _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 00:50:59 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1BNos0n022759; Sun, 12 Feb 2017 00:50:58 +0100 Received: from mail-ua0-x22e.google.com (mail-ua0-x22e.google.com [IPv6:2607:f8b0:400c:c08:0:0:0:22e]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1BNoq6E022692 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Sun, 12 Feb 2017 00:50:52 +0100 Received: by mail-ua0-x22e.google.com with SMTP id y9so49202580uae.2 for ; Sat, 11 Feb 2017 15:50:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=0IpgrSR0+Ip9hRuY3xEXMIytyio9oP9lV80LWpecXGQ=; b=efoheqkvXx5a+gNlpI3wcAt6oh3RO/NdqXk9PuBLl29D49InKXDNTdC/KR48fGQ+RM mdv8HWxd5o/77+xJC/3Q0jOaRIzzR6F0mLqpwoJD3A7fQixlaposV+y8fJ4CBMbeFzKf bxMPlAXgoxybfMyCn6p7/jYnojG12Dd1sFJ2E0lMRD/KmgYIJXUiGfbrp/S4b2sBoorz N7Ncfp10RcAZpKpuKE8X7AHpMg7MCQx0qBs6ko2WUFca9lVm6JtC/iCWyD8/hVr8ErEa yxOJXFjUwFZZlC6F6VlPTuq+2/nf47FOrGd4KvpXa/0d0N6BWN7BhheEUSY1zZheu/pk ijdw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=0IpgrSR0+Ip9hRuY3xEXMIytyio9oP9lV80LWpecXGQ=; b=qpQiEWNUGxYXxXZSvpdVXz3FxwwQMUohmr/VbjyAmmG49ANsQjToZyU7/vsSXqofR+ 2yMTMdc/kWCLEQX3Zlxbab4tqNR1mRJN2McKorFpCjor0Q2cDIV2DB/1eWs/6W1LXk8k OO77Uy2Uj+CyvFGAtvI3qstJ7LlOY++cPJ4a5JqMi6b1cSct8JEjegrszHbq4vXkgOzf lXYiUDnRGr4yuWrUMm+R2uzg02RLRai3m+6OveOytfGrdFjbE90QI9kR4vlsP8edsROC 5zoX59DtLwb+6s89s3KM4sA9b+z4jqOGbk7SwlvAHKcyiOPwiCDkEjobrsdN/Ep79+B6 P7dg== X-Gm-Message-State: AMke39mOXBL8Z324vkVkZNBSk8Ajx5tat9WwhFyO2M+zGIWhFsrklNRMnsi5Dcir9tUGg5mIRHlhZ4uuZam5nw== X-Received: by 10.159.41.231 with SMTP id s94mr8258010uas.179.1486857047909; Sat, 11 Feb 2017 15:50:47 -0800 (PST) MIME-Version: 1.0 Received: by 10.103.90.217 with HTTP; Sat, 11 Feb 2017 15:50:47 -0800 (PST) Received: by 10.103.90.217 with HTTP; Sat, 11 Feb 2017 15:50:47 -0800 (PST) In-Reply-To: <20170212002346.GU21523@foo.stuge.se> References: <20170212002346.GU21523@foo.stuge.se> From: bch Date: Sat, 11 Feb 2017 15:50:47 -0800 Message-ID: Subject: Re: some help on a security related thing? To: libssh2 development X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: multipart/mixed; boundary="===============2070985519==" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" --===============2070985519== Content-Type: multipart/alternative; boundary=001a114eed002c2b32054849e29e --001a114eed002c2b32054849e29e Content-Type: text/plain; charset=UTF-8 I may be able to contribute if you're taking the lead Peter. If you want other build environment, independent verification, etc, don't hesitate to ping me. On Feb 11, 2017 15:46, "Peter Stuge" wrote: > Daniel Stenberg wrote: > > Any takers? > > I can take a look at it. > > > //Peter > _______________________________________________ > libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel > --001a114eed002c2b32054849e29e Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
I may be able to contribute if you're taking the lead= Peter. If you want other build environment, independent verification, etc,= don't hesitate to ping me.

On Feb 11, 2017 15:46, "Peter Stuge" <peter@stuge.se> wrote:
Daniel Stenberg wrote:
> Any takers?

I can take a look at it.


//Peter
_______________________________________________
libssh2-devel https://cool.haxx.se/cgi-bi= n/mailman/listinfo/libssh2-devel
--001a114eed002c2b32054849e29e-- --===============2070985519== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlic3NoMi1k ZXZlbCBodHRwczovL2Nvb2wuaGF4eC5zZS9jZ2ktYmluL21haWxtYW4vbGlzdGluZm8vbGlic3No Mi1kZXZlbAo= --===============2070985519==-- From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 01:04:20 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1C049dw029906; Sun, 12 Feb 2017 01:04:17 +0100 Received: from mail.panic.com (mail.panic.com [38.103.165.3]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1C046Cs029784 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sun, 12 Feb 2017 01:04:08 +0100 Message-Id: <201702120004.v1C046Cs029784@giant.haxx.se> Received: from [IPv6:::ffff:10.0.1.28] (c-24-20-220-227.hsd1.or.comcast.net [24.20.220.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.panic.com (Postfix) with ESMTPSA id D496260F4D for ; Sat, 11 Feb 2017 16:03:31 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=panic.com; s=dkim; t=1486857812; bh=/vtXJpq2x5Bsj3Ybw1zkEC3nm1N6ad+J6HPYlx29/C8=; h=To:From:Subject:Date:In-Reply-To:References; b=HOwnaVRUwupU2w5mrYKFZA0iqKWXz1pkjJ6mQOcu8IK99TyfYLJ2jHg9wFdnRVPSv 84+S7oSBbXYVoN7X+Dg9bdGAFFy8gcYZd6sgbRr+s7grg34L+6vVUWg2buxYwJyJTr uWHqcewtSG8dW7vqeGjv8KxvK51Y5oUMHy4rbmUs= MIME-Version: 1.0 To: libssh2 development From: Subject: RE: some help on a security related thing? Date: Sat, 11 Feb 2017 16:04:09 -0800 Importance: normal X-Priority: 3 In-Reply-To: References: <20170212002346.GU21523@foo.stuge.se> X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: multipart/mixed; boundary="===============1641698621==" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" --===============1641698621== Content-Type: multipart/alternative; boundary="_78823B68-74B3-434C-9771-A1940A4AA3D7_" --_78823B68-74B3-434C-9771-A1940A4AA3D7_ Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="utf-8" I can also help out as needed. Will From: bch Sent: Saturday, February 11, 2017 3:53 PM To: libssh2 development Subject: Re: some help on a security related thing? I may be able to contribute if you're taking the lead Peter. If you want ot= her build environment, independent verification, etc, don't hesitate to pin= g me. On Feb 11, 2017 15:46, "Peter Stuge" wrote: Daniel Stenberg wrote: > Any takers? I can take a look at it. //Peter _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel --_78823B68-74B3-434C-9771-A1940A4AA3D7_ Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset="utf-8"

I can also help out as needed.

 

Will

 

From: bch
Sent: Saturday, Februar= y 11, 2017 3:53 PM
To: libssh2 development
Subject: Re: some help on a security = related thing?

 

I may be able to contribute if you're taking the lead Pete= r. If you want other build environment, independent verification, etc, don'= t hesitate to ping me.

 =

On Feb 11, 2017 15:46, "Peter Stuge"= ; <peter@stuge.se> wrote:

Daniel Stenberg = wrote:
> Any takers?

I can take a look at it.


//Pet= er
_______________________________________________
libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel=

 

= --_78823B68-74B3-434C-9771-A1940A4AA3D7_-- --===============1641698621== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlic3NoMi1k ZXZlbCBodHRwczovL2Nvb2wuaGF4eC5zZS9jZ2ktYmluL21haWxtYW4vbGlzdGluZm8vbGlic3No Mi1kZXZlbAo= --===============1641698621==-- From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 01:41:15 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1C0enUe027352; Sun, 12 Feb 2017 01:41:10 +0100 Received: from foo.stuge.se (foo.stuge.se [212.116.89.98]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1C0elx9027341 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sun, 12 Feb 2017 01:40:47 +0100 Received: (qmail 20122 invoked by uid 1000); 12 Feb 2017 01:19:44 -0000 Date: Sun, 12 Feb 2017 01:19:44 +0000 From: Peter Stuge To: libssh2-devel@cool.haxx.se Subject: Re: Key Exchange Failure Message-ID: <20170212011944.GY21523@foo.stuge.se> References: <8d87ff4a0d4c406b81c34617be847ffc@wittfamily.com> MIME-Version: 1.0 Content-Disposition: inline In-Reply-To: <8d87ff4a0d4c406b81c34617be847ffc@wittfamily.com> X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1C0enUe027352 Wesley Witt wrote: > Is there some configuration requirement for the host or client? Not other than that client and server must be able to agree on encryption algorithms. Enable debugging on the server or tracing in libssh2 and find out why kex is failing. We don't know. //Peter _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 02:46:26 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1C1k3er020528; Sun, 12 Feb 2017 02:46:21 +0100 Received: from mail-wm0-x231.google.com (mail-wm0-x231.google.com [IPv6:2a00:1450:400c:c09:0:0:0:231]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1C1k17E020441 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Sun, 12 Feb 2017 02:46:01 +0100 Received: by mail-wm0-x231.google.com with SMTP id v186so135919166wmd.0 for ; Sat, 11 Feb 2017 17:46:03 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=libssh2-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=si9NU8PVhYpeeCg/c6rmg1U/xXFMBw9r9jlBOqiczIE=; b=GZONMbznJATxzpQ3+ov3AfBQS/SjPgPbZQxCLhg0yEfm0AitzSGv+n6EvikkgaigzO 3Jqt/OI3t9dWV2Yv+vF5jLk7cYQSgXzw01EGLKWVt3BWSXWgu+VtrzlTlmSqkOwnDs1E 4TLG27+pDflFpVsEjFsjdDgEOPAqeTDQEUn72gC1ke4cjCOJSNy9C1uY9NMGmOOyC4Ja yfXtPlUz7Dt5jpKQYrWHAuPkZtqw4rsqu3PCdLMsuxSj6hvexR51xd7rs8zYZWrMFkgu ESDq+twxc6d230yh+FB5/jwJvuWQyoSgGEVyAwQMDlTgYjUWciKINOLe4DTr8UwIUdFK 2kNQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=si9NU8PVhYpeeCg/c6rmg1U/xXFMBw9r9jlBOqiczIE=; b=Nhdh4kssuUErMvUx5uftqAP/XGIxCfQPaaNKcuRxWJctjSvw3qG9CpAQ/LoClqgokg lm2kXC6vBwRLpujXgFIsAGZmkDYu44GkWSXpYmvD80jcLvTy5nqgJJOAMJqBhu64x0lq hfQc9mv8O6A+LmW91it3GiHEVnOUPPultsv5NzSvIbD0Jqbci/doGYOYwjeXxACvQGdP bTvgcC3x5XWu0PEkL4HQlKaiidZ3xRpL6b8M61X5EGZxm2j1LwGaPGTdp2GcyMpQGcqI BHdGlmSsK+/szPUZSQtUd2tvuVaRNY64QI03WPwL2UI49NWaAP5sn8SCSbIv0m12Nu7P oxgw== X-Gm-Message-State: AMke39lcvs5uigrwLHCn96h0kuDkTrprerWFb02U6CW2RZQfH625bJ02CI0vU2w4o4pU8PU4Vjr7S1Z8GUkM7g== X-Received: by 10.28.69.17 with SMTP id s17mr13568295wma.60.1486863957471; Sat, 11 Feb 2017 17:45:57 -0800 (PST) MIME-Version: 1.0 Received: by 10.28.109.90 with HTTP; Sat, 11 Feb 2017 17:45:57 -0800 (PST) X-Originating-IP: [73.9.224.155] In-Reply-To: References: From: Sara Golemon Date: Sat, 11 Feb 2017 19:45:57 -0600 Message-ID: Subject: Re: some help on a security related thing? To: libssh2 development X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: multipart/mixed; boundary="===============0196240808==" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" --===============0196240808== Content-Type: multipart/alternative; boundary=94eb2c074c0e03dce205484b7e84 --94eb2c074c0e03dce205484b7e84 Content-Type: text/plain; charset=UTF-8 On Sat, Feb 11, 2017 at 5:20 PM, Daniel Stenberg wrote: > We recently received an email about a libssh2 security problem, but it > turns out basically none of us old "maintainers" of this project (me and > Alexander Lamaison at least) feel that we have enough time and energy to > handle it. > > This is ultimately a cry for help that this project needs more hands on > deck to function, but to at least handle this immediate short-term crisis I > would like you call for volunteers to help us work on this specific problem > now. To investigate it and work on a fix, or fixes together with the person > who has found the issue. > > Failing to deal with it will eventually end up with the issue getting > published without any action from our end prior to that, and that would be > very unfortunate. > > Any takers? > > I'm not really up on most of the changes since handing over the project a decade ago, but I'm more than happy to have something to get my hands dirty taking a look at. -Sara --94eb2c074c0e03dce205484b7e84 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
On S= at, Feb 11, 2017 at 5:20 PM, Daniel Stenberg <daniel@haxx.se> = wrote:
We recently rec= eived an email about a libssh2 security problem, but it turns out basically= none of us old "maintainers" of this project (me and Alexander L= amaison at least) feel that we have enough time and energy to handle it.
This is ultimately a cry for help that this project needs more hands on dec= k to function, but to at least handle this immediate short-term crisis I wo= uld like you call for volunteers to help us work on this specific problem n= ow. To investigate it and work on a fix, or fixes together with the person = who has found the issue.

Failing to deal with it will eventually end up with the issue getting publi= shed without any action from our end prior to that, and that would be very = unfortunate.

Any takers?

I'm not really up on most of the changes since h= anding over the project a decade ago, but I'm more than happy to have s= omething to get my hands dirty taking a look at.

-Sara=C2=A0
--94eb2c074c0e03dce205484b7e84-- --===============0196240808== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlic3NoMi1k ZXZlbCBodHRwczovL2Nvb2wuaGF4eC5zZS9jZ2ktYmluL21haWxtYW4vbGlzdGluZm8vbGlic3No Mi1kZXZlbAo= --===============0196240808==-- From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 03:12:33 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1C2CN5E014712; Sun, 12 Feb 2017 03:12:30 +0100 Received: from mail-wr0-x244.google.com (mail-wr0-x244.google.com [IPv6:2a00:1450:400c:c0c:0:0:0:244]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1C2CMBU014656 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Sun, 12 Feb 2017 03:12:22 +0100 Received: by mail-wr0-x244.google.com with SMTP id o16so19262657wra.2 for ; Sat, 11 Feb 2017 18:12:24 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:content-transfer-encoding:mime-version:date:subject:message-id :references:in-reply-to:to; bh=KgVz9HQtIJsV6b7gjkOPGESBeOqeT+FY14yE7biIdes=; b=iQK670dcMmyM1lOrO5kW+RPeAM7TfC0nJ8GFpLfH24CBoKOjngohbAdKC7obVUXwAz Klwkq1QXw9F3GGZaHcoT9IoWDp6nq8QJRmsHdGBN+GLJeAmgAVpENxRutoOrvo7nGqrP jTH6pOi28A97yNWppJR4wY2y105n+VSMtTNlCg1b9kSVbPwCw3wdtWyw3gxYGw5zSV4y WRLbaSz2nZTC9ba//5xx9rpCcxp7xIvRRV9xrLN8g2f4ArWCrbnSN87CLkvMpM4HYRBQ NNEeTGHs4erfHxYMtG3Ntpb2623F0GYdkM5nkJuTIvty0asQM9buBvUbFI1N14J4OQr5 lgrg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:mime-version:date :subject:message-id:references:in-reply-to:to; bh=KgVz9HQtIJsV6b7gjkOPGESBeOqeT+FY14yE7biIdes=; b=p/jXrbt6s3WpvbhQj7McuIc8EkK5dmLSMGDmZ1Dt2qAqjha9HiJ3zSlbM4ALm53Jk6 PIYFzySSbcOu4RypLJy/WCS+SF7xCiHp3rAVXcm5zIRxMr26t09oi0VKhQ9uEwOMqx4s 9wSCv1bjcF49nm/w4NSaGXMC3VhSWnX0cG8bCgXCO2yCrPEpaRfGw9jqUo08dK0KU4LY 8f9KBIU+2nDs2r5vMdLmnMmcR491r9H1BxP7sTzSovo5Ymo1OUfj2k1I9wpcwVJhWpmb vAFUzvLedO/uokpdzQ98Yfsixd4cj70oxHCYg8aAE/epG4+Rx89nRvVbWGDurxfRZjHJ UFYw== X-Gm-Message-State: AMke39kjJBjwQGNdb6OxYZhYbZAkmZsjqOIYlVHXXT5zCkxicyfn5xB22xaJyuVZt+SusQ== X-Received: by 10.223.138.220 with SMTP id z28mr13636488wrz.26.1486865538552; Sat, 11 Feb 2017 18:12:18 -0800 (PST) Received: from [10.10.63.218] ([203.174.27.19]) by smtp.gmail.com with ESMTPSA id x39sm8297994wrb.3.2017.02.11.18.12.16 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 11 Feb 2017 18:12:16 -0800 (PST) From: Amirul Islam Mime-Version: 1.0 (1.0) Date: Sun, 12 Feb 2017 06:42:15 +0430 Subject: Re: some help on a security related thing? Message-Id: References: In-Reply-To: To: libssh2 development X-Mailer: iPhone Mail (14D27) X-MIME-Autoconverted: from quoted-printable to 8bit by giant.haxx.se id v1C2CMBU014656 X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1C2CN5E014712 I can try my level best. But my limitation is in experience. Regards, Mark > On 12 Feb 2017, at 03:50, Daniel Stenberg wrote: > > Hi, > > We recently received an email about a libssh2 security problem, but it turns out basically none of us old "maintainers" of this project (me and Alexander Lamaison at least) feel that we have enough time and energy to handle it. > > This is ultimately a cry for help that this project needs more hands on deck to function, but to at least handle this immediate short-term crisis I would like you call for volunteers to help us work on this specific problem now. To investigate it and work on a fix, or fixes together with the person who has found the issue. > > Failing to deal with it will eventually end up with the issue getting published without any action from our end prior to that, and that would be very unfortunate. > > Any takers? > > -- > > / daniel.haxx.se > _______________________________________________ > libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 10:45:51 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1C9jHXb026590; Sun, 12 Feb 2017 10:45:43 +0100 Received: from giant.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1C9jFVH026584 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sun, 12 Feb 2017 10:45:15 +0100 Received: from localhost (dast@localhost) by giant.haxx.se (8.15.2/8.15.2/Submit) with ESMTP id v1C9jFgZ026581 for ; Sun, 12 Feb 2017 10:45:15 +0100 X-Authentication-Warning: giant.haxx.se: dast owned process doing -bs Date: Sun, 12 Feb 2017 10:45:15 +0100 (CET) From: Daniel Stenberg X-X-Sender: dast@giant.haxx.se To: libssh2 development Subject: Re: some help on a security related thing? In-Reply-To: Message-ID: References: User-Agent: Alpine 2.20 (DEB 67 2015-01-07) X-fromdanielhimself: yes MIME-Version: 1.0 X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8"; Format="flowed" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1C9jHXb026590 On Sun, 12 Feb 2017, Daniel Stenberg wrote: > We recently received an email about a libssh2 security problem, but it turns > out basically none of us old "maintainers" of this project (me and Alexander > Lamaison at least) feel that we have enough time and energy to handle it. Thank you for all the (offers to) stepping up. It warms my heart to see that there are many friends around prepared to help out! Since both Peter Stuge and Sara Golemon spoke up, I decided to hand over details to them to let them persue this. Sara of course started this project and Peter has been pariticpating since many years. They should have the perfect background and set of skills to handle this. And my trust. Let's see how things develop and what Peter and Sara think of it. Again, thanks for responses. -- / daniel.haxx.se _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Sun Feb 12 13:31:05 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1CCUdwb027312; Sun, 12 Feb 2017 13:30:59 +0100 Received: from mx.uxnr.de (mx.uxnr.de [IPv6:2a00:1828:2000:378:3:25:59ee:5430]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1CCUYEP027236 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sun, 12 Feb 2017 13:30:37 +0100 Received: from Marcs-MBP.bo01.uxnr.net (unknown [IPv6:2a02:908:a31:59bc:455a:f8e8:ae4d:87fa]) by mx.uxnr.de (Postfix) with ESMTPSA id CD9711C5A2D5 for ; Sun, 12 Feb 2017 13:30:28 +0100 (CET) DKIM-Filter: OpenDKIM Filter v2.9.2 mx.uxnr.de CD9711C5A2D5 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=marc-hoersken.de; s=picard; t=1486902628; bh=KDULtqSle+JpNp9JpGSds5/lFqOdgqD+3veVrn1rzsc=; h=Subject:To:References:From:Date:In-Reply-To:From; b=GqKPPQOqka1n3OXPBcyqwdc3JcGiCSrS+3vVKWSs3ur/2L9WF+kd3fZpjZh8MY1SI 7QnMdJXxf82jDxMUb+JK0U5VvFnR3i1EFi9Jz7kaBUri06F335FSll0C5ZC1nIQJL7 ORgfrlyaEODja/3YdoRRKf7eDJtB0Y4yX9Q7Mk4A= Subject: Re: Key Exchange Failure To: libssh2-devel@cool.haxx.se References: <8d87ff4a0d4c406b81c34617be847ffc@wittfamily.com> <20170212011944.GY21523@foo.stuge.se> Message-ID: <88a40ed0-0cc8-d2ab-5e52-c694d5b13289@marc-hoersken.de> Date: Sun, 12 Feb 2017 13:30:26 +0100 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:45.0) Gecko/20100101 Thunderbird/45.7.1 MIME-Version: 1.0 In-Reply-To: <20170212011944.GY21523@foo.stuge.se> X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , From: Marc Hoersken via libssh2-devel Reply-To: libssh2 development Cc: Marc Hoersken Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1CCUdwb027312 Am 12.02.17 um 02:19 schrieb Peter Stuge: > Wesley Witt wrote: >> Is there some configuration requirement for the host or client? > Not other than that client and server must be able to agree on > encryption algorithms. > > Enable debugging on the server or tracing in libssh2 and find out > why kex is failing. We don't know. Yes, this is probably caused by OpenSSH requiring some modern algorithm which libssh2 on Windows using WinCNG does not support. WinCNG does not support AES in CTR or GCM mode yet, but CTR mode is in the works, see: https://github.com/libssh2/libssh2/pull/173 _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Mon Feb 13 01:56:00 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1D0tTno022216; Mon, 13 Feb 2017 01:55:53 +0100 Received: from box4.thinkface.com (mx.911domain.com [64.182.101.216]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1D0tQqi022209 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Mon, 13 Feb 2017 01:55:27 +0100 Received: from MAILSERVER.WITTFAMILY.COM (c-50-170-37-171.hsd1.wa.comcast.net [50.170.37.171]) (authenticated bits=0) by box4.thinkface.com (8.14.4/8.14.4) with ESMTP id v1D0tQtM005530 (version=TLSv1/SSLv3 cipher=AES256-SHA256 bits=256 verify=OK) for ; Sun, 12 Feb 2017 19:55:28 -0500 X-SPAM-Abuse: If this is Spam, please report it to the following link: X-SPAM-Report: http://www.dnsExit.com/Direct.sv?cmd=reportSpam&msgid=v1D0tQtM005530 X-Service-By: http://www.dnsExit.com/Direct.sv?cmd=mailRelay Relay account will be suspended instantly if Spam Received: from MAILSERVER.WITTFAMILY.COM (192.168.1.177) by MAILSERVER.WITTFAMILY.COM (192.168.1.177) with Microsoft SMTP Server (TLS) id 15.1.225.42; Sun, 12 Feb 2017 16:51:08 -0800 Received: from MAILSERVER.WITTFAMILY.COM ([fe80::19bf:8150:2480:f183]) by MAILSERVER.WITTFAMILY.COM ([fe80::19bf:8150:2480:f183%14]) with mapi id 15.01.0225.041; Sun, 12 Feb 2017 16:51:08 -0800 From: Wesley Witt To: libssh2 development Subject: RE: some help on a security related thing? Thread-Topic: some help on a security related thing? Thread-Index: AQHShL1e4kGs3LiCTk2hunulwkcjmKFlJ3yAgAD12TA= Date: Mon, 13 Feb 2017 00:51:08 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [192.168.1.1] MIME-Version: 1.0 X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1D0tQqi022209 X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1D0tTno022216 Thanks everyone for the responses. The help is awesome. I finally got back to this today and got this working. I built my own libssh2 DLL and it works. Lesson here is that DLLs built by others may not be very trustworthy. -Wes -----Original Message----- From: libssh2-devel [mailto:libssh2-devel-bounces@cool.haxx.se] On Behalf Of Amirul Islam Sent: Saturday, February 11, 2017 6:12 PM To: libssh2 development Subject: Re: some help on a security related thing? I can try my level best. But my limitation is in experience. Regards, Mark > On 12 Feb 2017, at 03:50, Daniel Stenberg wrote: > > Hi, > > We recently received an email about a libssh2 security problem, but it turns out basically none of us old "maintainers" of this project (me and Alexander Lamaison at least) feel that we have enough time and energy to handle it. > > This is ultimately a cry for help that this project needs more hands on deck to function, but to at least handle this immediate short-term crisis I would like you call for volunteers to help us work on this specific problem now. To investigate it and work on a fix, or fixes together with the person who has found the issue. > > Failing to deal with it will eventually end up with the issue getting published without any action from our end prior to that, and that would be very unfortunate. > > Any takers? > > -- > > / daniel.haxx.se > _______________________________________________ > libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Mon Feb 13 07:10:10 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1D69gGp017327; Mon, 13 Feb 2017 07:10:04 +0100 Received: from mx.uxnr.de (mx.uxnr.de [89.238.84.48]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1D69e6m016968 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Mon, 13 Feb 2017 07:09:40 +0100 Received: from Marcs-MBP.bo01.uxnr.net (unknown [IPv6:2a02:908:a31:59bc:b850:1d66:fe75:5fdb]) by mx.uxnr.de (Postfix) with ESMTPSA id 2F44E1C5A31B for ; Mon, 13 Feb 2017 07:09:40 +0100 (CET) DKIM-Filter: OpenDKIM Filter v2.9.2 mx.uxnr.de 2F44E1C5A31B DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=marc-hoersken.de; s=picard; t=1486966180; bh=hH1++cHOAou3eVDRQptvBgCTfKy1G+sdohbV1m8KqLA=; h=Subject:To:References:From:Date:In-Reply-To:From; b=OAMX+zxRkuO5fkGIk6bwj9cTqcECg8yEYWQBokmHU6B4qbB7BczzUQ0+to/UoEV9E X4+vgswaKe3Q/ok0Lu2hD7rwPeuzCAnE27Yv1KJTAs3z80lnmuYtaxpY6oOnBN0t7v Qy2IH3Zi48kK9RXDq6cObUMSBlpq3cGP5lvUTBnE= Subject: Re: Key Exchange Failure (was Re: some help on a security related thing?) To: libssh2-devel@cool.haxx.se References: Message-ID: <2b3713d8-f05e-5f5a-57c3-cec0a21084cf@marc-hoersken.de> Date: Mon, 13 Feb 2017 07:09:34 +0100 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:45.0) Gecko/20100101 Thunderbird/45.7.1 MIME-Version: 1.0 In-Reply-To: X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , From: Marc Hoersken via libssh2-devel Reply-To: libssh2 development Cc: Marc Hoersken Content-Type: text/plain; charset="utf-8" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by giant.haxx.se id v1D69gGp017327 Am 13.02.17 um 01:51 schrieb Wesley Witt: > I finally got back to this today and got this working. I built my own libssh2 DLL and it works. Lesson here is that DLLs built by others may not be very trustworthy. Since you are probably referring to the DLLs I built and since I helped you via personal e-mail, I am really interested what you mean with "trustworthy". Did you use OpenSSL to build a new DLL or still WinCNG? _______________________________________________ libssh2-devel https://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel From libssh2-devel-bounces@cool.haxx.se Wed Feb 15 12:31:53 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1FBVH1h025240; Wed, 15 Feb 2017 12:31:46 +0100 Received: from mail1.bemta5.messagelabs.com (mail1.bemta5.messagelabs.com [195.245.231.145]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1FBVGA2025230 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Wed, 15 Feb 2017 12:31:17 +0100 Received: from [85.158.136.83] by server-9.bemta-5.messagelabs.com id E9/6D-01948-40C34A85; Wed, 15 Feb 2017 11:31:16 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrNKsWRWlGSWpSXmKPExsViZ8MRostisyT C4M4EGYulczezOjB6XDwznSWAMYo1My8pvyKBNePP5dXsBbuzKw5OamFqYDyf0sXIxSEksIRJ omfHFkYI5xijxIV5q9ggnPOMEqseXwByODnYBHwlZt+8ww5iiwjYSvxdvwgsLizgIbF0zhcmi LivxLQJDYwQtp5E//17YPUsAqoSj9ZOA6vhFfCX+HxxPSuIzSggK/GlcTUziM0sIC5x68l8sB oJARGJhxdPs0HYohIvH/9jhbANJLYu3ccCYStI3L12gwXkUGaBTkaJx7s3sEMsEJQ4OfMJywR GoVlI5s5CVjcLSR1EUZ7Eh22vWCFsPYkbU6ewQdjaEssWvmaGsHUlZvw7xIIpriOx+dJOqLii RFvnbKhlixkluvc1scMU9UyYDVc0pfsh+wJG3lWMGsWpRWWpRbqG5npJRZnpGSW5iZk5uoYGp nq5qcXFiempOYlJxXrJ+bmbGIGRzAAEOxgvnvY8xCjJwaQkynvcbEmEEF9SfkplRmJxRnxRaU 5q8SFGGQ4OJQneN1ZAOcGi1PTUirTMHGBKgUlLcPAoifAmWAOleYsLEnOLM9MhUqcYFaXEeY1 AEgIgiYzSPLg2WBq7xCgrJczLCHSIEE9BalFuZgmq/CtGcQ5GJWFeFZApPJl5JXDTXwEtZgJa zBq3EGRxSSJCSqqBMU6iZ4NdU+7Z405tfSs+/mEXsTjlz2UlyFU56x3XubB5tZcOXD3mVyl8/ dlaa+28hfYmLWtvHGbwelHQc6fALlO3hrO+TMN0ZdGKrjvLX33kblwrGmo4m1n1nPNT41s5/t cWJfQbxjYYr5nTk8IYULxxnpX9ySWK9v833psqlfdjlor0MZbDSizFGYmGWsxFxYkAI633v14 DAAA= X-Env-Sender: Magdalena.Matusiak@ts.fujitsu.com X-Msg-Ref: server-10.tower-36.messagelabs.com!1487158276!88087060!1 X-Originating-IP: [62.60.8.84] X-StarScan-Received: X-StarScan-Version: 9.1.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 1910 invoked from network); 15 Feb 2017 11:31:16 -0000 Received: from unknown (HELO mailhost3.uk.fujitsu.com) (62.60.8.84) by server-10.tower-36.messagelabs.com with DHE-RSA-AES256-GCM-SHA384 encrypted SMTP; 15 Feb 2017 11:31:16 -0000 Received: from R01UKEXCASM112.r01.fujitsu.local (ex2k13_112.fs.fujitsu.com [10.183.43.168]) by mailhost3.uk.fujitsu.com (8.14.5/8.14.5) with ESMTP id v1FBSpxC024201 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL) for ; Wed, 15 Feb 2017 11:28:51 GMT Received: from R01UKEXCASM116.r01.fujitsu.local (10.183.43.172) by R01UKEXCASM112.r01.fujitsu.local (10.183.43.168) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Wed, 15 Feb 2017 11:31:15 +0000 Received: from R01UKEXCASM116.r01.fujitsu.local ([fe80::cd45:7ab:36a7:c1cd]) by R01UKEXCASM116.r01.fujitsu.local ([fe80::cd45:7ab:36a7:c1cd%23]) with mapi id 15.00.1178.000; Wed, 15 Feb 2017 11:31:15 +0000 From: "Magdalena.Matusiak@ts.fujitsu.com" To: "libssh2-devel@cool.haxx.se" Subject: libssh2_userauth_keyboard_interactive fails on selected systems Thread-Topic: libssh2_userauth_keyboard_interactive fails on selected systems Thread-Index: AdKHfwMxesRf9qIUS3upVPBBAVcI4g== Date: Wed, 15 Feb 2017 11:31:15 +0000 Message-ID: <2d79ddf290414915aa75ceb491b7f2b0@R01UKEXCASM116.r01.fujitsu.local> Accept-Language: en-GB, en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [10.183.43.10] MIME-Version: 1.0 X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: multipart/mixed; boundary="===============0457948698==" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" --===============0457948698== Content-Language: en-US Content-Type: multipart/related; boundary="_004_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_"; type="multipart/alternative" --_004_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_ Content-Type: multipart/alternative; boundary="_000_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_" --_000_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello, I've got a question regarding problems with libssh2_userauth_keyboard_inter= active method. It fails without any prompt while running on Windows Server= 2008 R2 and RHEL 6.5 32bit. On newer systems problem does not occur. Do yo= u have any idea what can be the cause? Pozdrawiam / With best regards Magdalena Matusiak R&D Development Engineer L=F3dz GDC / Primergy 5 [cid:image004.gif@01CEE08A.195DCF10] FUJITSU Fujitsu Technology Solutions Sp. z o.o. University Business Park, ul.W=F3lczanska 180 90-530 L=F3dz, Poland E-mail: Magdalena.Matusiak@ts.fujitsu.com Web: ts.fujitsu.com Company details: ts.fujitsu.com/imprint This communication contains information that is confidential, proprietary i= n nature and/or privileged. It is for the exclusive use of the intended re= cipient(s). If you are not the intended recipient(s) or the person responsi= ble for delivering it to the intended recipient(s), please note that any fo= rm of dissemination, distribution or copying of this communication is stric= tly prohibited and may be unlawful. If you have received this communication= in error, please immediately notify the sender and delete the original com= munication. Thank you for your cooperation. Please be advised that neither Fujitsu, its affiliates, its employees or ag= ents accept liability for any errors, omissions or damages caused by delays= of receipt or by any virus infection in this message or its attachments, o= r which may otherwise arise as a result of this e-mail transmission. --_000_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_ Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

Hello,

I’ve got a question regarding problems with libssh2_userauth_keyboard_interactive method.  It fails without= any prompt while running on Windows Server 2008 R2 and RHEL 6.5 32bit. On = newer systems problem does not occur. Do you have any idea what can be the = cause?

 

Pozdrawiam / With best reg= ards

 

Magdalena Matusiak=

R&D Development Engine= er

Ł=F3dź GDC / Pri= mergy 5

3D"cid:image004.gif@01CEE08A.195DCF10"

FUJITSU

Fujit= su Technology Solutions Sp. z o.o.

University Business Park, ul.W=F3lczańska 180=

90-530 Ł=F3dź, Poland<= /p>

E-mail: Mag= dalena.Matusiak@ts.fujitsu.com

Web: ts.fujitsu.com

Company details: ts.fujitsu.com/imprint

 

<= span lang=3D"EN-GB" style=3D"font-size:7.0pt;font-family:"Verdana"= ;,"sans-serif";color:black">This communication contains informati= on that is confidential, proprietary in nature and/or privileged.  It is for the exclusive use of the intended recipient(s). If you are not t= he intended recipient(s) or the person responsible for delivering it to the= intended recipient(s), please note that any form of dissemination, distrib= ution or copying of this communication is strictly prohibited and may be unlawful. If you have received this comm= unication in error, please immediately notify the sender and delete the ori= ginal communication. Thank you for your cooperation.

Please be adv= ised that neither Fujitsu, its affiliates, its employees or agents accept l= iability for any errors, omissions or damages caused by delays of receipt or by any virus infection in this message or its attachments, o= r which may otherwise arise as a result of this e-mail transmission<= span lang=3D"EN-GB" style=3D"font-size:7.0pt;font-family:"Verdana"= ;,"sans-serif";color:#999999">.

 

 

--_000_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_-- --_004_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_ Content-Type: image/gif; name="image001.gif" Content-Description: image001.gif Content-Disposition: inline; filename="image001.gif"; size=2774; creation-date="Wed, 15 Feb 2017 11:31:15 GMT"; modification-date="Wed, 15 Feb 2017 11:31:15 GMT" Content-ID: Content-Transfer-Encoding: base64 R0lGODlhTQA8APcAAPsBAv8/P/8CAv8BAf4AAv7+/v7//fz///9/fv5AQP/9/v7+//8/QP3//v9/ gP7+/P//+/+/v/9AP/0AAP8BA/8BAP4CAf/9//0AAv0BAP/+/f5AQv+Af/3+//2Afv4BAP/+/P1B QP+Agf9+gP8/Qv7/+/8CAP4AA/++wP5QUf1/gP9APf0AAf/9/P5gYf9+fv/Awf+Aff9/f/+/wP8f H/9AQf+Pjv6Agf/Pzf+gnv3//P8QD/5BP//AwP7BwP+/vf9gYP4wMPv///8gIP9BQf1BQv3Pz//v 7/+vrv3Av/+foP8vMv8REf9hXv6Bf/4CAP4BA//P0v2fn/7/+v/t7/9RUP2Pjv2/wP6fnf9hYf0x MPyAfv+Qj/6ur//v8P++v/9xcP/Pz/9CPv6Qkf9+fP8hIPy/vv7w8P/g3v9wcP4OD/4fIP8fIP9C QP8ABPv//v4wMv8gIf9BQ/7e3/+Oj//++/0/P/8RD//Pzv8PDv6+vv8CBP9ycP9PUf+em/5QT//w 8/2/wv+9v/8REv7v7P4BBP8eJP3/+v+hn/9BQP2Rj/99ff4QEP8gHv6en/9fYf+wrPvv8fvx8v+P i/3BwP/AvP7g4P+CgP9vb//w7f9/gf1iYP7Awf+9wP/Qzv3Avf6vq/2foP/Q0P/Ozfxwcf98gf9w cvwAAP/f5P3d3vx+f/3t8P9/fP/u8Px/e/79//9APv99fv9RUv5SUv+BgPxhX/9gXf0SDv+Aev4Q Df8SD/8eH/+Pkf9BQv0xMv6vsvy/xP9gZP6Ag/7u7v7u7/1yb/9wbv7OzP5CQ//8//+do/+Ojv3d 4P7u8f/++v6gnvz//f9fX/8/Pf/Oz/1BP//g3f8+QPyQkPyPkvwCBP6goP5+ff5vcf4QDv8RDv6e oP8fHf6Rjv/v6/y+v//Au/0PD/zAv/7g3v/w8P7f3f/e3f9STv2Bf/8QEv8+QvxAP/1APv9gXvzf 4f3f4f4gH/8hHv6gof+en/5CQP2Rjv8PEP///f7///4AAP/+/////yH5BAAAAAAALAAAAABNADwA AAj/AP8JHEiwoMGDCBMqXMiwocOHECNKnEixosWLGDNq3Mixo8ePIEOKHIlwn0kN/Aby2/cv5T5/ Ax/w8+dvJsmIB1oWaPlPgUCTM1f+a8CvA4QDOW9C3PdAIM2B+/gZeJkTAsyfTZU+rNnAnwGVJWh+ K5bCxrx/+xb8K+CPpVaHXlvs3PnPX7MgHypM6DcgB1u0bx/yUyvwwYGrKSqkMONjUbsPEfbtTBmY 4b4DBVLaXCvh0b8FKysR0CIQxD8IlRkqeFlAnLItXY7EO/OgrcAl/S4Appwa4cwO/iAx6cf3jpSr Bi74S5ChLk23vRFC4JcqFwFhEcD0G5TOQFuWO/pF/9Uc3XdPRQOssPTHhcCSaikPNMmQZTVb3uUJ Ai3VL0LTlFX0owYQmgxBQBlU8INaXfkZxI9udAxwjVM4uMLBDgT0QwEQmbDEj4JXNTiQd/tYoo83 XHwhwx0eFDWKD0cIxWBmIhL0YUo5hGcBAe1MA5M/Olx12QEzZVWjQBr4Q2QrY5ChzTAtmVQTCAd0 9ZKMHWEjwZYJbEACDwlIkIASCayQQALc7HPBPnOQwAAPG6RAzB8MUEMEAz64IOaWWOTDQAgrMLCB BH8m8KcN/6DgAjgZELeECPvo2QYDDMxglT821BACA0T48U8c/ZwwAF/9ECBAPw3gk2Ec6EzREgg2 VP+QYWTHWFDqJAWcwcgAFKTgDw0Z8sVCBgN8QMAABCAiBXGjHvsEMvx40Q8UBKShQFs0hcACBe8c Bsao0USAghk9hELDPwhU0A8JKdX2zw+jWuCPEP6cQkE/gpjEwLEO4JAHBy+osIEJ/azhgBNpDNAF cf1gEoYC8rzAQEu9ADABLah9aAACxHHAUgz9YHDJUyx58gAC1CZAWWYznECcPwqAMMBePdSVAHE3 PIODgvzEcG8itV2gxDoh11IXBNeicYg/dvC1zUAKHCDCzBzAhMAAJozwjw4ssWWACMRJ0FZO+8zA 1wD/EEmAuhEIZE2xZLTkkz8c98MAZQaUMeo9PxX/EBVMEoS8BWpXXT0AAjB50I8FMtikwIf7qIAs CfuAkNY/SSx+QlT7INsPCjCFQAABKnyWUgEchFwEgwcEwdcmGrTEmwFyYNBP1ZK15QBfCEjmAbI3 fFiXZPw4kGEAMDXw0hUETDBAMmmpa8I4LMHSPAKg0VV3CD/uE0ypGbyw1mmEBX4CB/iB3Y8DAu0+ AD1hJlCEMTnJQBwRDTh1wA8EEAx5sJSACTzW5gCv+GM6KuhHBmpgAJn4wwj9+MAABkCDHNTEKQwg Di528p+6Va1nFNiLugZggYn9IxYWKOE/vLMSGGRoAAtAzROI07Z/3KwfCCjI7vqxARntwx6kAsAA /9jgiIEErh8j8I5A+KG+GKSEY9lwQQRgEAFQ8IEmKvhAP9owk6/4gxwTmCFM+FGq/gjkhjkkyA4Z 4B2Y5AQPCaCAXmxlC5gwYFRJbEniMkCB3hWvVC8I0SoEwo5SSUAgC9BBohg2EFLVEI06JM4KoqLH y11hBQLYSx/3QQIMFMIDYyyAARR3AgekZAQa6p0B+EGXfxivH3ZYyQXNMTMo7MQfDHskcdI4kDUu 0R8PWAC2/IEEJmSAADvwhxj6MQFWOIWVI7gX4lypIVP+rQSPu0Gp5JA/t/ygH3uYAEwUkMsz7jKS /VAZQZTklH90goQTSEIC8nKDtQgFARRggRPU4v+AAWTAAwb4SwO8wwECfMAQL2lLB5RAnOawJFi6 xCE6xdCVlbzEJG4hxABY4IYwFKFUpEDLA1hSg1Qu4AGqQJbWQPSP2qCAWV/gB1GWM7M+AOZYZrTh OdVInLulBBBW4MkBhFACXvAlDw8wRT8qoAsq/AQHDEMCTETgPF5eKSo8IA4TsOCPcwAhZAOIALbK qVOJ8tRuK2HlEDaAhJ5EwQVrywD71NGNDGmhbT3wRangUBcFzMJ2TSgIUVogiSAgyw16uVc/cuCc f5QxECypB1+ysA+fpKQJxGHDARQADX6k4V6eG9UAHnGjKNxidC8s1S5EcRQYMKAGKyBBBHgjvBb/ eMEDQyCOCVhQBU7UpAQCYdgn+EGHDQyKATUsAAyksYEAuGMMaPEHHhoRLAuoQRZ6OM135mCMNQgA AxiggROOcAGpNOBSlGwnUQaDUWAYoS5vcAlaiIOBJNQhoLmrSwdYkhO/0WSVSzSCHtCAlpcsAKMr VJNtppCSthhgbl25ylNk6o/8ydcAGriAWvwRCeJQYAZDYWVKVmMSgbTAAIf5R3kBg0iaWHgwF9RB g6FSgA6kjSUNSBKNngKYmvzoJ+T7hbrKkZbvCESJ43mJSvSjk6j4LTOcg0kJXMKPayW0wlGxLH7I thJn6G8tGsiC8xrnlcwcUE38OAxMTJIUllzrswAtGEhOvDI+Cn+IJmn9EAiEEqJW1kUDByjxA1ZZ B4EwI2waWCVdavIVp/hjxV38i5ITPROW7EMIa3ELo0vMwZqwVyDXGiNaHseglHyFHw+AQz9EEKIS s5jNd56JaRhEScixZL9Y0uMS12ORmuxjGeFABXSOBBFWvsI2SiY2RK5i4/EoOyL7eINThv1shkjl dLmu9kKuWmRqa9s8Lv5HB/Dz7YSMJyUa8Ha5183udrtbRAEBADs= --_004_2d79ddf290414915aa75ceb491b7f2b0R01UKEXCASM116r01fujits_-- --===============0457948698== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlic3NoMi1k ZXZlbCBodHRwczovL2Nvb2wuaGF4eC5zZS9jZ2ktYmluL21haWxtYW4vbGlzdGluZm8vbGlic3No Mi1kZXZlbAo= --===============0457948698==-- From libssh2-devel-bounces@cool.haxx.se Fri Feb 17 04:08:03 2017 Return-Path: Received: from www.haxx.se (localhost.localdomain [127.0.0.1]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTP id v1H37UC1014459; Fri, 17 Feb 2017 04:07:55 +0100 Received: from mail-ot0-x22e.google.com (mail-ot0-x22e.google.com [IPv6:2607:f8b0:4003:c0f:0:0:0:22e]) by giant.haxx.se (8.15.2/8.15.2/Debian-4) with ESMTPS id v1H37SBw014446 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 17 Feb 2017 04:07:29 +0100 Received: by mail-ot0-x22e.google.com with SMTP id 45so24207254otd.2 for ; Thu, 16 Feb 2017 19:07:29 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=h2rK444E7eYKi/9f4ExXYq3LqdxVMepLILn42V5HWIg=; b=ZhFWhOdLLABqJjABwtmYsSOh2OPk5XmhvUwazqJrXTB7vaj/MzsW4TeGZ9tVBV1WLU 4wK/cSSuTsy001sShgAu3jWk4N6qKOx3tE+GrGEJex1/yZcykx3Um+2+JZ6j41Hnzfc3 U+Z0vxLzjcGe1RuOdj9ell1FdycZ6cd71jsW60UHXV6wQzCWb6PqVi3CHV6Pf5+e/Qyk gKXjREv9YDIz1hp6p9rlxdyv+3yDDigz5cKMQ2wSxc8OOWgYjxawNnqteNchnm82JXCS ogLk7puRh93LEcERx6992fSFZUMZC1r4T04JXhcT6911+tlBMlTTrgkjftCsHgDU5uP1 ywUw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=h2rK444E7eYKi/9f4ExXYq3LqdxVMepLILn42V5HWIg=; b=r8Pacf1x5RwvtQ0eYLnNYTbCnRgIQCsHCgxl7vU6aTV33rHesfoh/LFIzXFkOPb4px 3P6TQthOqX+/tOUQVea8W8u0bQuJIJPkLc693GdAh+0/f3Ek7AkCVBtmuRXaUMDCZCp4 SUFbl98KfXw6j3iGL0tEJ/94HexHA0hpj/NIO5GTx0Qz+98Z2bTTvZ+4z2AOKI2vybEs aRX/baglMo1eYkwsuxHpdX6SOBvaJV8dlVFNPQV4n0NcqqL5lWng9zAmg+v+2Ql9bcFu qQQfpXCK+VeuVc//QINhC3uiURRhvPKMntquEdIQPU7hhFFdZmk3GGeiGfAxG4WOwwVe rK/Q== X-Gm-Message-State: AMke39nr+K2dlGpoEBpaugBh1v89jgeBYpIj2qz65dGcaPI8IA96c0iidedosbLMkbMJANXv7Ba4p0YAdqB23w== X-Received: by 10.157.58.69 with SMTP id j63mr2922919otc.268.1487300843145; Thu, 16 Feb 2017 19:07:23 -0800 (PST) MIME-Version: 1.0 Received: by 10.202.236.21 with HTTP; Thu, 16 Feb 2017 19:07:22 -0800 (PST) From: Brian Morton Date: Thu, 16 Feb 2017 22:07:22 -0500 Message-ID: Subject: Debugging php-ssh2 crash To: libssh2-devel@cool.haxx.se X-BeenThere: libssh2-devel@cool.haxx.se X-Mailman-Version: 2.1.22 Precedence: list List-Id: libssh2 development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: libssh2 development Content-Type: multipart/mixed; boundary="===============0788364956==" Errors-To: libssh2-devel-bounces@cool.haxx.se Sender: "libssh2-devel" --===============0788364956== Content-Type: multipart/alternative; boundary=001a11492b326e10580548b136fe --001a11492b326e10580548b136fe Content-Type: text/plain; charset=UTF-8 Hi Devs, I'm working on tracking down a SIGSEGV in libssh2 when invoking an SFTP dirhandle stream in PHP. I think I know what is wrong, I'm just having some trouble nailing down *why*. Could anyone offer any ideas? I'll file and fix once I understand how it happened. Program received signal SIGSEGV, Segmentation fault. 0x00007ffff0509567 in sftp_close_handle (handle=0x7ffff387d000) at sftp.c:2343 2343 s = handle->close_packet = LIBSSH2_ALLOC(session, packet_len); (gdb) bt #0 0x00007ffff0509567 in sftp_close_handle (handle=0x7ffff387d000) at sftp.c:2343 #1 0x00007ffff0509920 in libssh2_sftp_close_handle (hnd=0x7ffff387d000) at sftp.c:2441 #2 0x00007ffff072edf5 in php_ssh2_sftp_dirstream_close (stream=0x7ffff3873300, close_handle=1) at /root/php-ssh2-0.12-39-g3dfe336+0.12/php-7.0/ssh2-v0.12-39-g3dfe336/ssh2_sftp.c:305 #3 0x000055555576bb87 in _php_stream_free () (gdb) p handle $8 = (LIBSSH2_SFTP_HANDLE *) 0x7ffff387d000 (gdb) p handle->close_packet $9 = (unsigned char *) 0x0 (gdb) p s $10 = (unsigned char *) 0x7ffff387d000 "" (gdb) p packet_len $11 = 17 Here is the moment before. Notice that session is null. I'm assuming that null pointer dereference is the problem. Why would that happen? (gdb) bt full #0 sftp_close_handle (handle=0x7ffff387d000) at sftp.c:2343 sftp = 0x7ffff3899000 channel = 0x7ffff3899180 session = 0x0 data_len = 140737279254528 packet_len = 17 s = 0x7ffff387d000 "" data = 0x0 rc = 0 __PRETTY_FUNCTION__ = "sftp_close_handle" #1 0x00007ffff0509920 in libssh2_sftp_close_handle (hnd=0x7ffff387d000) at sftp.c:2441 entry_time = 1487299481 rc = 32767 #2 0x00007ffff072edf5 in php_ssh2_sftp_dirstream_close (stream=0x7ffff3873300, close_handle=1) at /root/php-ssh2-0.12-39-g3dfe336+0.12/php-7.0/ssh2-v0.12-39-g3dfe336/ssh2_sftp.c:305 data = 0x7ffff3802060 #3 0x000055555576bb87 in _php_stream_free () Thanks, Brian --001a11492b326e10580548b136fe Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
Hi Devs,

I'm working on tracking do= wn a SIGSEGV in libssh2 when invoking an SFTP dirhandle stream in PHP. I th= ink I know what is wrong, I'm just having some trouble nailing down *wh= y*. Could anyone offer any ideas? I'll file and fix once I understand h= ow it happened.

Program received signal SIGSE= GV, Segmentation fault.
0x00007ffff0509567 in sftp_close_handle (= handle=3D0x7ffff387d000) at sftp.c:2343
2343 =C2=A0 =C2=A0 =C2=A0= =C2=A0 =C2=A0 =C2=A0s =3D handle->close_packet =3D LIBSSH2_ALLOC(sessio= n, packet_len);
(gdb) bt
#0 =C2=A00x00007ffff0509567 in= sftp_close_handle (handle=3D0x7ffff387d000) at sftp.c:2343
#1 = =C2=A00x00007ffff0509920 in libssh2_sftp_close_handle (hnd=3D0x7ffff387d000= ) at sftp.c:2441
#2 =C2=A00x00007ffff072edf5 in php_ssh2_sftp_dir= stream_close (stream=3D0x7ffff3873300, close_handle=3D1) at /root/php-ssh2-= 0.12-39-g3dfe336+0.12/php-7.0/ssh2-v0.12-39-g3dfe336/ssh2_sftp.c:305
<= div>#3 =C2=A00x000055555576bb87 in _php_stream_free ()

=
(gdb) p handle
$8 =3D (LIBSSH2_SFTP_HANDLE *) 0x7= ffff387d000
(gdb) p handle->close_packet
$9 =3D (uns= igned char *) 0x0
(gdb) p s
$10 =3D (unsigned char *) 0= x7ffff387d000 ""
(gdb) p packet_len
$11 =3D 1= 7

Here is the moment before. Notice that ses= sion is null. I'm assuming that null pointer dereference is the problem= . Why would that happen?

(gdb) bt full
<= div>#0 =C2=A0sftp_close_handle (handle=3D0x7ffff387d000) at sftp.c:2343
=C2=A0 =C2=A0 =C2=A0 =C2=A0 sftp =3D 0x7ffff3899000
=C2=A0= =C2=A0 =C2=A0 =C2=A0 channel =3D 0x7ffff3899180
=C2=A0 =C2=A0 = =C2=A0 =C2=A0 session =3D 0x0
=C2=A0 =C2=A0 =C2=A0 =C2=A0 data_le= n =3D 140737279254528
=C2=A0 =C2=A0 =C2=A0 =C2=A0 packet_len =3D = 17
=C2=A0 =C2=A0 =C2=A0 =C2=A0 s =3D 0x7ffff387d000 ""<= /div>
=C2=A0 =C2=A0 =C2=A0 =C2=A0 data =3D 0x0
=C2=A0 =C2=A0 = =C2=A0 =C2=A0 rc =3D 0
=C2=A0 =C2=A0 =C2=A0 =C2=A0 __PRETTY_FUNCT= ION__ =3D "sftp_close_handle"
#1 =C2=A00x00007ffff05099= 20 in libssh2_sftp_close_handle (hnd=3D0x7ffff387d000) at sftp.c:2441
=
=C2=A0 =C2=A0 =C2=A0 =C2=A0 entry_time =3D 1487299481
=C2=A0= =C2=A0 =C2=A0 =C2=A0 rc =3D 32767
#2 =C2=A00x00007ffff072edf5 in= php_ssh2_sftp_dirstream_close (stream=3D0x7ffff3873300, close_handle=3D1) = at /root/php-ssh2-0.12-39-g3dfe336+0.12/php-7.0/ssh2-v0.12-39-g3dfe336/ssh2= _sftp.c:305
=C2=A0 =C2=A0 =C2=A0 =C2=A0 data =3D 0x7ffff3802060
#3 =C2=A00x000055555576bb87 in _php_stream_free ()

Thanks,

Brian
--001a11492b326e10580548b136fe-- --===============0788364956== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlic3NoMi1k ZXZlbCBodHRwczovL2Nvb2wuaGF4eC5zZS9jZ2ktYmluL21haWxtYW4vbGlzdGluZm8vbGlic3No Mi1kZXZlbAo= --===============0788364956==--