Maverick Legacy Server 1.6.13 Released

SSHD Maverick 1.6.13 - Sept 14, 2015

Features

  • Optional events EVENT_SFTP_FILE_READ, EVENT_SFTP_FILE_WRITE for SFTP read/write operations. Enable via SshContext setSFTPReadWriteEvents method.
  • DirectFile implementation returns native file attributes if running in Java 7+ environment.
  • New authentication idle timeout option added to allow different idle timeouts depending on connection state.
  • Plumbed in ShellPolicy and ForwardingPolicy to replace functionality provided by AccessManager interface.
  • Added IPPolicy implementation to replace canConnect functionality provided by AccessManager interface.
  • Added getRequiredMechanisms method to AuthenticationMechanismFactory to replace getRequiredAuthentications functionality provided by AccessManager interface.
  • To help protect against Logjam new setting of minimum Diffie Hellman prime size added with default value of 2048 bites.
  • Moved some logging statements to verbose mode to make reading log files easier.
  • RFC 6187 RSA certificate of 2048 bits supporting SHA256WithRSA signature added*
  • Added getMappedFile method to VirtualMappedFile to enable access to actual file.
  • Support for hmac-ripemd160, hmac-ripemd160-etm@openssh.com message authentications.
  • Support for Encrypt then Mac message authentications hmac-md5-etm@openssh.com, hmac-sha1-etm@openssh.com, hmac-sha2-256-etm@openssh.com, hmac-sha2-512-etm@openssh.com
  • Added EVENT_SFTP_FILE_UPLOAD_STARTED, EVENT_SFTP_FILE_DOWNLOAD_STARTED, EVENT_SFTP_FILE_ACCESS_STARTED events
  • Allow revert to old (broken) behaviour to return all supported authentication mechanisms on partial authentication. Set system property -Dmaverick.oldMethodsToContinue=true

Bug Fixes

  • Improved sendChannelDataAndBlock method to ensure data has been written to socket. Previously a rare race condition exists which could see the queued data overwritten before it was transferred to the channel data message.
  • Fixed synchronisation in SocketForwardingChannel after discovering deadlock.
  • ECDSA keys cannot be loaded if another JCE exists that processed EC keys and has a higher priority in security configuration*
  • Session channel fails to kill ScpCommand if its still active on session close.
  • AbstractDirectFile fields changed to protected for better extension support.
  • Extracted RandomAccessImpl to public class with protected fields for better extension support.
  • AbstractFileSystem renameFile would allow non-writable files to be renamed.
  • Open file event not being fired from SFTP subsystem.
  • Ensure enough key data is available for the size of the cipher or mac.
  • SFTP v4 text mode does not ignore read/write offset as specified by SFTP specification.
  • AbstractFileFactory processEvent was not plumbed into SftpSubsystem events.
  • AbstractFileSystem consumes AbstractFile.close IOException.
  • SFTP long name file listing format does not include day of month.
  • SFTP error events do not contain exception. 
  • For clarity call getDefaultPath instead of getFile("") in AbstractFileSystem.
  • VFSFile does not process last modified time correctly. 
  • AbstractFileSystem only checks writable flag in AbstractFile if file exists.


* Requires upgrade to maverick-common 1.1.0 which is included in this release.


*****************

IMPORTANT COMPATIBILITY INFORMATION
For users combining both our client and server APIs in the same classpath you should ensure that both versions of the API used are compatible with a maverick-common version of 1.1.0.
If for any reasons you just use a single product and ship the individual jar files you should ensure you ship the maverick-common 1.1.0 version included in this release.
*****************

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.