-
GH-427 SCP client: fix
DefaultScpClient.upload(InputStream, ...) -
GH-455 Fix
BaseCipher: make sure all bytes are processed -
GH-470 MontgomeryCurve: synchronize access to KeyPairGenerator
-
GH-489 SFTP v3 client: better file type determination
-
GH-500 SFTP file system: fix memory leak on exceptions
-
PR-472 sshd-spring-sftp: fix client start
-
PR-476 Fix Android detection
-
PR-486 Add missing
equalsandhashCodeto U2F key classes -
SSHD-1237 Handle keep-alive channel requests
- The key exchange method sntrup761x25519-sha512@openssh.com is now available if the Bouncy Castle library is available.
This uses a post-quantum key encapsulation method (KEM) to make key exchange future-proof against quantum attacks. More information can be found in IETF Memo Secure Shell (SSH) Key Exchange Method Using Hybrid Streamlined NTRU Prime sntrup761 and X25519 with SHA-512: sntrup761x25519-sha512.
- GH-468 SFTP: validate length of data received: must not be more than requested
SFTP read operations now check the amount of data they get back. If it's more than
requested an exception is thrown. SFTP servers must never return more data than the
client requested, but it appears that there are some that do so. If property
SftpModuleProperties.TOLERATE_EXCESS_DATA is set to true, a warning is logged and
such excess data is silently discarded.