- Feb 14, 2024
-
-
Tianqi Ren authored
-
- Feb 06, 2024
-
-
Guillaume Nodet authored
-
Guillaume Nodet authored
-
Guillaume Nodet authored
-
- Feb 02, 2024
-
-
Thomas Wolf authored
-
- Jan 30, 2024
-
-
FliegenKLATSCH authored
-
Guillaume Nodet authored
-
- Jan 29, 2024
-
-
Guillaume Nodet authored
-
- Jan 20, 2024
-
-
Thomas Wolf authored
JGit 5.13.3 includes the fix for CVE-2023-4759[1]. [1] https://nvd.nist.gov/vuln/detail/CVE-2023-4759
-
- Jan 17, 2024
-
-
Thomas Wolf authored
Fix link in documentation
-
- Jan 16, 2024
-
-
Sascha Wiedenfeld authored
-
- Jan 12, 2024
-
-
Guillaume Nodet authored
-
Guillaume Nodet authored
-
Guillaume Nodet authored
-
- Jan 10, 2024
-
-
Guillaume Nodet authored
-
Thomas Wolf authored
-
Thomas Wolf authored
Change Buffer.getPublicKey() to set the read position to after the key even if reading the key fails. This enables us to continue reading keys from a list of keys in a buffer even when a particular key cannot be decoded. Change the two places where we receive lists of public keys from external sources: from an SSH agent or via the "hostkeys-00@openssh.com" extension. Skip and log keys that cannot be decoded.
-
- Jan 06, 2024
-
-
Lyor Goldstein authored
-
Thomas Wolf authored
-
Thomas Wolf authored
Run an Apache MINA sshd client against OpenSSH servers that do have or do not have strict KEX.
-
Thomas Wolf authored
Add tests for the restricted message handling if strict KEX is active: * Initial KEX fails if KEX_INIT is not the first message * Initial KEX fails if there are spurious messages like DEBUG during KEX * Re-KEX succeeds even if there are spurious messages
-
Thomas Wolf authored
Implements the OpenSSH "strict KEX" protocol extension.[1] If both parties in a an SSH connection announce support for strict KEX in the initial KEX_INIT message, strict KEX is active; otherwise it isn't. With strict KEX active, there must be only KEX-related messages during the initial key exchange (no IGNORE or DEBUG messages are allowed), and the KEX_INIT message must be the first one to have been received after the initial version exchange. If these conditions are violated, the connection is terminated. Strict KEX also resets message sequence numbers to zero after each NEW_KEYS message sent or received. [1] https://github.com/openssh/openssh-portable/blob/master/PROTOCOL
-
- Dec 29, 2023
-
-
Thomas Wolf authored
Using a comment for the bnd.extraImports variable newly produces a build error. It appears this was never correct: no error was generated, but the generated manifests seem to be missing third-party imports. Setting the variable to an empty value works.
-
- Dec 12, 2023
-
-
=?UTF-8?q?Pavel=20Fla=C5=A1ka?= authored
-
- Dec 07, 2023
-
-
Lyor Goldstein authored
-
- Nov 23, 2023
-
-
Lyor Goldstein authored
-
Lyor Goldstein authored
-
Lyor Goldstein authored
GH-428/GH-392 SCP client fails silently when error signalled due to missing file or lacking permissions
-
- Oct 14, 2023
-
-
Thomas Wolf authored
Create Nio2Session using Nio2ServiceFactory
-
- Oct 13, 2023
-
-
Evgeny Pasynkov authored
This allows client code to override and extend the Nio2Session class. Current implementation creates createWriteCycleCompletionHandler which executes OS callback and completes the future on another thread. The overridden implementation may wrap the callbacks with custom code and set up, for example, the logging MDC
-
- Oct 12, 2023
-
-
Guillaume Nodet authored
-
Guillaume Nodet authored
-
Guillaume Nodet authored
-
- Oct 10, 2023
-
-
Thomas Wolf authored
-
- Oct 07, 2023
-
-
Thomas Wolf authored
Fix Nio2Session.doCloseGracefully(): before calling AsynchronousSocketChannel.shutdownOutput(), check that the socket is still open, and if we get an IOException all the same, log it with TRACE level. See also comments in doShutdownOutputStream(). Bug: https://github.com/apache/mina-sshd/issues/420
-
- Oct 05, 2023
-
-
Lyor Goldstein authored
-
Lyor Goldstein authored
-
- Sep 26, 2023
-
-
Thomas Wolf authored
[SSHD-1330] Using common keep-alive global request handler in client as well as server
-
- Sep 19, 2023
-
-
Lyor Goldstein authored
-
Lyor Goldstein authored
-