summaryrefslogtreecommitdiff
path: root/paramiko/client.py
Commit message (Collapse)AuthorAgeFilesLines
...
| | * SSHClient: fix the host key testAnselm Kruis2017-08-041-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | Skip the host key check only, if the transport actually used gssapi-keyex. Add tests for the missing-host-key RejectPolicy. Before this change, a man-in-the-middle attack on the paramiko ssh client with gss_kex=True was possible by having a server that does not support gssapi-keyex and gives any or no host key.
* | | Merge branch '2.1'Jeff Forcier2017-06-091-19/+25
|\ \ \ | |/ /
| * | Re-apply ResourceManager removalJeff Forcier2017-06-091-2/+0
| | |
| * | Merge branch '2.1' into 910-intJeff Forcier2017-06-091-1/+0
| |\ \
| * | | SSHClient: adjust Transport preferred host key types if known hostPierce Lopez2017-06-071-21/+27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we have a host keys that will be checked, we need to negotiate for the type we have. Commonly, openssh could have saved an ecdsa key in known_hosts, but SSHClient will let the Transport negotiate for an rsa key. Then it would consider a key of a non-corresponding type to be "missing". That situation is also now a BadHostKeyException. Before this change, a man-in-the-middle attack on the paramiko ssh client was possible by having only a host key type which differs from what the client has in known_hosts (and then giving any key of that type).
* | | | Merge branch '2.1'Jeff Forcier2017-06-091-3/+0
|\ \ \ \ | | |/ / | |/| |
| * | | Merge branch '2.0' into 2.1Jeff Forcier2017-06-091-3/+0
| |\ \ \ | | |/ / | |/| / | | |/
| | * Merge branch '2.0' into 952-intJeff Forcier2017-06-091-9/+11
| | |\
| | * | remove back-reference from Transport to SSHClientPierce Lopez2017-06-021-1/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | It was only recently added, and it's not really needed after the ResourceManager removal. Removing it allows the SSHClient to be garbage-collected if only the Transport (and Channels) are still in use.
| | * | remove ResourceManager to fix leak of Transport/SSHClientKyle Agronick2017-06-021-2/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The back-reference from Transport to SSHClient was added because the SSHClient had a destructor that would close the Transport, and some users did not want the Transport closed when the SSHClient was garbage collected. The SSHClient destructor was not a normal destructor, it was implemented with the ResourceManager singleton. Together with the back-reference, this prevented the GC cycle detector from freeing the SSHClient and Transport.
* | | | Trailing commaJeff Forcier2017-06-061-1/+1
| | | |
* | | | Merge branch 'master' into 869-intJeff Forcier2017-06-061-60/+82
|\ \ \ \
| * | | | That was easy. Closes #857Jeff Forcier2017-06-061-0/+3
| | | | |
| * | | | DDD re #857Jeff Forcier2017-06-061-10/+4
| | | | |
| * | | | Merge branch '2.1'Jeff Forcier2017-06-051-9/+11
| |\ \ \ \ | | |/ / /
| | * | | Merge branch '2.0' into 2.1Jeff Forcier2017-06-051-9/+11
| | |\ \ \ | | | | |/ | | | |/|
| | | * | Move to 'inv sites' style doc nitpicking.Jeff Forcier2017-06-051-9/+11
| | | |/ | | | | | | | | | | | | | | | | | | | | | | | | Existing just-warnings setup was old and not as rigorous as my usual. Required a lot of stupid little changes, but now same tooling for all projects, toot toot.
| | * | Merge branch '2.0' into 2.1Jeff Forcier2017-05-311-21/+46
| | |\ \ | | | |/
| * | | fixed long lineAlex Gaynor2017-06-031-2/+4
| | | |
| * | | integration test, with ourselvesAlex Gaynor2017-06-031-1/+1
| | | |
| * | | small cleanupsAlex Gaynor2017-06-031-8/+5
| | | |
| * | | Fixes #325 -- add support for Ed25519 keysAlex Gaynor2017-06-031-19/+16
| | | |
| * | | Merge branch '2.0'Jeff Forcier2017-05-311-21/+46
| |\ \ \ | | |/ / | |/| / | | |/
| | * Flake8 improvements for more of paramiko.Dorian Pula2017-05-311-3/+4
| | |
| | * More flake8 fixes and fix tests.Dorian Pula2017-05-311-18/+42
| | |
| * | Merge branch '2.0' into 2.1Jeff Forcier2017-02-201-0/+1
| |\ \ | | |/
| | * Add back-reference from Transport to the SSHClient that created itOmer Anson2017-02-201-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In some cases, the SSH client is created, the command is executed, the streams are extracted, and the explicit reference to SSHClient is then discarded (since it was e.g. created in a function that only returns the streams). In this case, the SHSClient may be garbage collected, and the connection's state is undefined. This fix adds a reference from Transport to the SSHClient that created it. The streams have a reference to the Channel, which references the Transport. Now that the Transport references the SSHClient, it won't be garbage collected until it is closed. Closes-Bug: #44 Related-Bug: #344
* | | Added a auth_timeout to handle situations where SSH server stops responding ↵Tim Savage2016-12-221-2/+6
|/ / | | | | | | | | | | during auth. This is has been observed with certain windows SSH servers.
* | Merge branch '2.0' into 2.1Jeff Forcier2016-12-121-1/+0
|\ \ | |/
| * Remove code re #398 from 2.0 branch, as it's feature workJeff Forcier2016-12-121-21/+2
| |
| * Revert "Add timeout to Transport.start_client()"Jeff Forcier2016-12-121-1/+1
| | | | | | | | This reverts commit 5c7f30be9737f73fd024a23f5db0b6a7578026b6.
* | Fixing invoke_shell reference to obsolete update_environment_variablesKirk Byers2016-12-121-1/+1
|/
* Add timeout to Transport.start_client()Mark Hirota2016-12-051-1/+1
|
* Add some warnings about AcceptEnv to env var setting bits.Jeff Forcier2016-12-051-0/+5
| | | | Re #398
* Cleanup / rename / doc updates / changelog, re #398Jeff Forcier2016-12-051-4/+13
|
* Support transmission of environment variablesPhilip Lorenz2016-12-051-2/+7
| | | | | | | | | | | | | | | | The SSH protocol allows the client to transmit environment variables to the server. This is particularly useful if the user wants to modify the environment of an executed command without having to reexecute the actual command from a shell. This patch extends the Client and Channel interface to allow the transmission of environment variables to the server side. In order to use this feature the SSH server must accept environment variables from the client (e.g. the AcceptEnv configuration directive of OpenSSH). FROM BITPROPHET: backport cherry-pick to 1.x line
* Enhance docs a bit re #520 and related hang issues.Jeff Forcier2016-06-171-0/+6
|
* Merge branch '1.15' into 1.16Jeff Forcier2016-04-241-4/+17
|\
| * Attempt clarification of `set_missing_host_key_policy` param.Jeff Forcier2016-04-241-4/+17
| | | | | | | | This trips up lots of users. Re #45
* | Patch up a missed spot re: 2FA plus keys, thanks @mattrobenoltJeff Forcier2015-11-041-1/+1
| |
* | Merge branch 'master' into 467-intJeff Forcier2015-11-031-25/+85
|\ \
| * | 80-colJeff Forcier2015-11-031-1/+2
| | |
| * | Merge branch '1.15'Jeff Forcier2015-09-301-1/+1
| |\ \ | | |/
| | * Patch resolving the timeout issue on lost conection.Olle Lundberg2015-02-241-1/+1
| | | | | | | | | | | | (This rolls in patch in #439)
| * | Rename new exception class to be less genericJeff Forcier2015-03-051-2/+2
| | | | | | | | | | | | Re #22
| * | Some 80-col fixesJeff Forcier2015-02-271-8/+27
| | |
| * | Fix a Python 3 incompat bit from recent mergeJeff Forcier2015-02-271-1/+1
| | |
| * | Raise usefully ambiguous error when every connect attempt fails.Jeff Forcier2015-02-061-4/+20
| | | | | | | | | | | | Re #22
| * | CommentJeff Forcier2015-02-061-0/+1
| | |
| * | Fix docstring for SphinxJeff Forcier2015-02-061-5/+3
| | |
View Lorry Controller Status