Navigation:
Browse pkgsrc
(this page) 2024-11-13 11:31:54 by Adam Ciarcinski | Files touched by this commit (3) |  |
Log message: py-asyncssh: updated to 2.18.0 Release 2.18.0 (26 Oct 2024) ---------------------------- * Added support for post-quantum ML-KEM key exchange algorithms, interoperable with OpenSSH 9.9. * Added support for the OpenSSH "limits" extension, allowing the client to query server limits such as the maximum supported read and write sizes. The client will automatically default to the reported maximum size on servers that support this extension. * Added more ways to specify environment variables via the `env` option. Sequences of either 'key=value' strings or (key, value) tuples are now supported, in addition to a dict. * Added support for getting/setting environment variables as byte strings on platforms which support it. Previously, only Unicode strings were accepted and they were always encoded on the wire using UTF-8. * Added support for non-TCP sockets (such as a socketpair) as the `sock` parameter in connect calls. Thanks go to Christian Wendt for reporting this problem and proposing a fix. * Changed compression to be disabled by default to avoid it becoming a performance bottleneck on high-bandwidth connections. This now also matches the OpenSSH default. * Improved speed of parallelized SFTP reads when read-ahead goes beyond the end of the file. Thanks go to Maximilian Knespel for reporting this issue and providing performance measurements on the code before and after the change. * Improved cancellation handling during SCP transfers. * Improved support for selecting the currently available security key when the application lists multiple keys to try. Thanks go to GitHub user zanda8893 for reporting the issue and helping to work out the details of the problem. * Improved handling of reverse DNS failures in host-based authentication. Thanks go to GitHub user xBiggs for suggesting this change. * Improved debug logging of byte strings with non-printable characters. * Switched to using an executor on GSSAPI calls to avoid blocking the event loop. * Fixed handling of "UserKnownHostsFile none" in config files. This previously caused it to use the default known hosts, rather than disabling known host checking. * Fixed a runtime warning about not awaiting a coroutine in unit tests. * Fixed a unit test failure on Windows when calling abort on a transport. * Fixed a problem where a "MAC verification failed" error was sometimes sent on connection close. * Fixed SSHClientProcess code to not raise a runtime exception when waiting more than once for a process to finish. Thanks go to GitHub user starflows for reporting this issue. * Handled an error when attempting to import older verions of pyOpenSSL. Thanks go to Maximilian Knespel for reporting this issue and testing the fix. * Updated simple_server example code to switch from crypt to bcrypt, since crypt has been removed in Python 3.13. Thanks go to Colin Watson for providing this update. |
| 2024-11-11 08:29:31 by Thomas Klausner | Files touched by this commit (862) |
Log message: py-*: remove unused tool dependency py-setuptools includes the py-wheel functionality nowadays |
| 2024-09-09 09:04:00 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-asyncssh: updated to 2.17.0 Release 2.17.0 (2 Sep 2024) * Add support for specifying a per-connection credential store for GSSAPI authentication. Thanks go to GitHub user zarganum for suggesting this feature and proposing a detailed design. * Fixed a regression introduced in AsyncSSH 2.15.0 which could cause connections to be closed with an uncaught exception when a session on the connection was closed. Thanks go to Wilson Conley for being the first to help reproduce this issue, and others who also helped to confirm the fix. * Added a workaround where getaddrinfo() on some systems may return duplicate entries, causing bind() to fail when opening a listener. Thanks go to Colin Watson for reporting this issue and suggesting a fix. * Relaxed padding length check on OpenSSH private keys to provide better compatibility with keys generated by PuTTYgen. * Improved documentation on SSHClient and SSHServer classes to explain when they are created and their relationship to the SSHClientConnection and SSHServerConnection classes. * Updated examples to use Python 3.7 and made some minor improvements. |
| 2024-08-20 15:03:12 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-asyncssh: updated to 2.16.0 Release 2.16.0 (17 Aug 2024) ---------------------------- * Added client and server support for the OpenSSH "hostkeys" extension. When using known_hosts, clients can provide a handler which will be called with the changes between the keys currently trusted in the client's known hosts and those available on the server. On the server side, an application can choose whether or not to enable the sending of this host key information. Thanks go to Matthijs Kooijman for getting me to take another look at how this might be supported. * Related to the above, AsyncSSH now allows the configuration of multiple server host keys of the same type when the send_server_host_keys option is enabled. Only the first key of each type will be used in the SSH handshake, but the others can appear in the list of supported host keys for clients to begin trusting, allowing for smoother key rotation. * Fixed logging and typing issues in SFTP high-level copy functions. A mix of bytes, str, and PurePath entries are now supported in places where a list of file paths is allowed, and the type signatures have been updated to reflect that the functions accept either a single path or a list of paths. Thanks go to GitHub user eyalgolan1337 for reporting these issues. * Improved typing on SFTP listdir() function. Thanks go to Tim Stumbaugh for contributing this change. * Reworked the config file parser to improve on a previous fix related to handling key/value pairs with an equals delimiter. * Improved handling of ciphers deprecated in cryptography 43.0.0. Thanks go to Guillaume Mulocher for reporting this issue. * Improved support for use of Windows pathnames in ProxyCommand. Thanks go to GitHub user chipolux for reporting this issue and investigating the existing OpenSSH parsing behavior. |
| 2023-12-18 17:11:17 by Thomas Klausner | Files touched by this commit (2) | |
Log message: py-asyncssh: update to 2.14.2. Release 2.14.2 (18 Dec 2023) ---------------------------- * Implemented "strict kex" support and other countermeasures to protect against the Terrapin Attack described in `CVE-2023-48795 <https://github.com/advisories/GHSA-hfmc-7525-mj55>`. Thanks once again go to Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk for identifying and reporting this vulnerability and providing detailed analysis and suggestions about proposed fixes. * Fixed config parser to properly an optional equals delimiter in all config arguments. Thanks go to Fawaz Orabi for reporting this issue. * Fixed TCP send error handling to avoid race condition when receiving incoming disconnect message. * Improved type signature in SSHConnection async context manager. Thanks go to Pieter-Jan Briers for providing this. |
| 2023-12-18 16:52:20 by Thomas Klausner | Files touched by this commit (1) |
Log message: py-asyncssh: bump PKGREVISION for previous |
| 2023-12-18 16:52:05 by Thomas Klausner | Files touched by this commit (2) |
Log message: py-asyncssh: convert to wheel.mk Fix LICENSE while here. |
| 2023-11-17 21:45:34 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-asyncssh: updated to 2.14.1 Release 2.14.1 (8 Nov 2023) --------------------------- * Hardened AsyncSSH state machine against potential message injection attacks, described in more detail in `CVE-2023-46445 <https://github.com/advisories/CVE-2023-46445>`_ and `CVE-2023-46446 <https://github.com/advisories/CVE-2023-46446>`_. Thanks go to Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk for identifying and reporting these vulnerabilities and providing detailed analysis and suggestions about the proposed fixes. * Added support for passing in a regex in readuntil in SSHReader, contributed by Oded Engel. * Added support for get_addresses() and get_port() methods on SSHAcceptor. Thanks go to Allison Karlitskaya for suggesting this feature. * Fixed an issue with AsyncFileWriter potentially writing data out of order. Thanks go to Chan Chun Wai for reporting this issue and providing code to reproduce it. * Updated testing to include Python 3.12. * Updated readthedocs integration to use YAML config file. |
| 2023-10-01 18:11:32 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-asyncssh: updated to 2.14.0 Release 2.14.0 (30 Sep 2023) ---------------------------- * Added support for a new accept_handler argument when setting up local port forwarding, allowing the client host and port to be validated and/or logged for each new forwarded connection. An accept handler can also be returned from the server_requested function to provide this functionality when acting as a server. Thanks go to GitHub user zgxkbtl for suggesting this feature. * Added an option to disable expensive RSA private key checks when using OpenSSL 3.x. Functions that read private keys have been modified to include a new unsafe_skip_rsa_key_validation argument which can be used to avoid these additional checks, if you are loading keys from a trusted source. * Added host information into AsyncSSH exceptions when host key validation fails, and a few other improvements related to X.509 certificate validation errors. Thanks go to Peter Moore for suggesting this and providing an example. * Fixed a regression which prevented keys loaded into an SSH agent with a certificate from working correctly beginning in AsyncSSH after version 2.5.0. Thanks go to GitHub user htol for reporting this issue and suggesting the commit which caused the problem. * Fixed an issue which was triggering an internal exception when shutting down server sessions with the line editor enabled which could cause some output to be lost on exit, especially when running on Windows. Thanks go to GitHub user jerrbe for reporting this issue. * Fixed an issue in a unit test seen in Python 3.12 beta. Thanks go to Georg Sauthoff for providing this fix. * Fixed a documentation error in SSHClientConnectionOptions and SSHServerConnectionOptions. Thanks go to GitHub user bowenerchen for reporting this issue. |
| 2023-07-10 18:19:36 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-asyncssh: updated to 2.13.2 Release 2.13.2 (21 Jun 2023) ---------------------------- * Fixed an issue with host-based authentication when using proxy_command, allowing it to be used if the caller explicitly specifies client_host. Thanks go to GitHub user yuqingm7 for reporting this issue. * Improved handling of signature algorithms for OpenSSH certificates so that RSA SHA-2 signatures will work with both older and newer versions of OpenSSH. * Worked around an issue with some Cisco SSH implementations generating invalid "ignore" packets. Thanks go to Jost Luebbe for reporting and helping to debug this issue. * Fixed unit tests to avoid errors when cryptography's version of OpenSSL disables support for SHA-1 signatures. * Fixed unit tests to avoid errors when the filesystem enforces that filenames be valid UTF-8 strings. Thanks go to Robert Schütz and Martin Weinelt for reporting this issue. * Added documentation about which config options apply when passing a string as a tunnel argument. |
New packages: