Skip to content

Latest commit

 

History

History
51 lines (39 loc) · 3.92 KB

CHANGES.md

File metadata and controls

51 lines (39 loc) · 3.92 KB
Raw

Version 2.1.0 to 2.2.0

Version 2.2.0 to 2.3.0

Version 2.3.0 to 2.4.0

Version 2.4.0 to 2.5.0

Version 2.5.0 to 2.5.1

Planned for next version

Major code re-factoring

  • SshServerMain uses by default an ECDSA key instead of an RSA one. This can be overridden either by -key-type / -key-size or -key-file command line option.
  • SSHD-1034 Rename org.apache.sshd.common.ForwardingFilter to Forwarder.
  • SSHD-1035 Move property definitions to common locations.
  • SSHD-1038 Refactor packages from a module into a cleaner hierarchy.

Minor code helpers

  • SSHD-1004 Using a more constant time MAC validation to minimize timing side channel information leak.
  • SSHD-1030 Added a NoneFileSystemFactory implementation
  • SSHD-1042 Added more callbacks to SftpEventListener
  • SSHD-1040 Make server key available after KEX completed.
  • SSHD-1060 Do not store logger level in fields.
  • SSHD-1064 Fixed ClientSession#executeRemoteCommand handling of STDERR in case of exception to behave according to its documentation

Behavioral changes and enhancements

  • SSHD-506 Added support for AES-GCM ciphers.
  • SSHD-1004 Deprecate DES, RC4 and Blowfish ciphers from default setup.
  • SSHD-1004 Deprecate SHA-1 based key exchanges and signatures from default setup.
  • SSHD-1004 Deprecate MD5-based and truncated HMAC algorithms from default setup.
  • SSHD-1005 Added support for SCP remote-to-remote file transfer
  • SSHD-1020 SSH connections getting closed abruptly with timeout exceptions.
  • SSHD-1026 Improve build reproductibility.
  • SSHD-1028 Fix SSH_MSG_DISCONNECT: Too many concurrent connections.
  • SSHD-1032 Fix possible ArrayIndexOutOfBoundsException in ChannelAsyncOutputStream.
  • SSHD-1033 Fix simultaneous usage of dynamic and local port forwarding.
  • SSHD-1039 Fix support for some basic options in ssh/sshd cli.
  • SSHD-1047 Support for SSH jumps.
  • SSHD-1048 Wrap instead of rethrow IOException in Future.
  • SSHD-1050 Fixed race condition in AuthFuture if exception caught before authentication started.
  • SSHD-1056 Added support for SCP remote-to-remote directory transfer - including '-3' option of SCP command CLI.
  • SSHD-1057 Added capability to select a ShellFactory based on the current session + use it for "WinSCP"
  • SSHD-1058 Improve exception logging strategy.
  • SSHD-1059 Do not send heartbeat if KEX state not DONE
  • SSHD-1063 Fixed known-hosts file server key verifier matching of same host with different ports