jsch-0.2.11

What's Changed

• update dependencies changes by @norrisjeremy in #368
• #369 fix multi-line PEM key parsing to work with windows line endings due to regression from previous fix for #362.

Full Changelog: jsch-0.2.10...jsch-0.2.11

jsch-0.2.10

What's Changed

• Fix new Java 21 compiler warning: possible 'this' escape before subclass is fully initialized. by @norrisjeremy
• Tweak OSGi bundle manifest to allow Log4j 3. by @norrisjeremy
• #362 fix PEM key parsing to work with windows line endings. by @norrisjeremy
• #361 guard against UIKeyboardInteractive implementations that include NULL elements in the String[] returned from promptKeyboardInteractive(). by @norrisjeremy
• Add a default implmentation of the deprecated decrypt() method to the Identity interface that throws an UnsupportedOperationException. by @norrisjeremy

Dedepency updates

• Bump guava from 31.1-jre to 32.0.0-jre by @dependabot in #334
• Bump maven-checkstyle-plugin from 3.2.2 to 3.3.0 by @dependabot in #335
• Bump maven-dependency-plugin from 3.5.0 to 3.6.0 by @dependabot in #336
• Bump maven-bundle-plugin from 5.1.8 to 5.1.9 by @dependabot in #337
• Bump cyclonedx-maven-plugin from 2.7.8 to 2.7.9 by @dependabot in #338
• Bump junit-jupiter from 1.18.1 to 1.18.3 by @dependabot in #340
• Bump formatter-maven-plugin from 2.22.0 to 2.23.0 by @dependabot in #342
• Bump maven-release-plugin from 3.0.0 to 3.0.1 by @dependabot in #341
• Bump surefire.version from 3.1.0 to 3.1.2 by @dependabot in #345
• Bump guava from 32.0.0-jre to 32.0.1-jre by @dependabot in #346
• Bump bcprov-jdk18on from 1.73 to 1.74 by @dependabot in #351
• Bump guava from 32.0.1-jre to 32.1.1-jre by @dependabot in #355
• Bump commons-codec from 1.15 to 1.16.0 by @dependabot in #354
• Bump maven-clean-plugin from 3.2.0 to 3.3.1 by @dependabot in #353
• Bump bcprov-jdk18on from 1.74 to 1.75 by @dependabot in #352
• Bump errorprone.version from 2.19.1 to 2.20.0 by @dependabot in #350
• Bump org.junit.jupiter:junit-jupiter from 5.9.3 to 5.10.0 by @dependabot in #364

Full Changelog: jsch-0.2.9...jsch-0.2.10

jsch-0.2.9

What's Changed

• various improvements by @norrisjeremy in #295
  • #293 allow UserAuthNone to be extended.
  • Make JGSS module optional.
  • Tweak OSGi bundle manifest:
  • Avoid self-import.
  • Mark JGSS as optional.
  • Loosen import versions of dependencies.
  • Correctly adhere to the Multi-release JAR spec by ensuring all public classes under versioned directories preside over classes present in the top-level directory.
  • Eliminate stray System.err.println() calls.
  • Change PageantConnector to use JNA's built-in support for User32.SendMessage().
• Improve error handling in InputStream.close() for SFTP channels by @stsiano in #331

Dependency Updates

• Bump jacoco-maven-plugin from 0.8.8 to 0.8.9 by @dependabot in #301
• Bump cyclonedx-maven-plugin from 2.7.5 to 2.7.6 by @dependabot in #304
• Bump junit-jupiter from 1.17.6 to 1.18.0 by @dependabot in #306
• Bump maven-enforcer-plugin from 3.2.1 to 3.3.0 by @dependabot in #305
• Bump flatten-maven-plugin from 1.4.0 to 1.4.1 by @dependabot in #303
• Bump bcprov-jdk18on from 1.72 to 1.73 by @dependabot in #310
• Bump maven-checkstyle-plugin from 3.2.1 to 3.2.2 by @dependabot in #314
• Bump cyclonedx-maven-plugin from 2.7.6 to 2.7.7 by @dependabot in #313
• Bump jacoco-maven-plugin from 0.8.9 to 0.8.10 by @dependabot in #319
• Bump cyclonedx-maven-plugin from 2.7.7 to 2.7.8 by @dependabot in #318
• Bump junit-jupiter from 5.9.2 to 5.9.3 by @dependabot in #317
• Bump surefire.version from 3.0.0 to 3.1.0 by @dependabot in #321
• Bump maven-gpg-plugin from 3.0.1 to 3.1.0 by @dependabot in #322
• Bump junit-jupiter from 1.18.0 to 1.18.1 by @dependabot in #323
• Bump maven-assembly-plugin from 3.5.0 to 3.6.0 by @dependabot in #324
• Bump build-helper-maven-plugin from 3.3.0 to 3.4.0 by @dependabot in #325
• Bump flatten-maven-plugin from 1.4.1 to 1.5.0 by @dependabot in #326
• Bump errorprone.version from 2.18.0 to 2.19.1 by @dependabot in #327

New Contributors

• @stsiano made their first contribution in #331

Full Changelog: jsch-0.2.8...jsch-0.2.9

jsch-0.2.8

What's Changed

• activate sourcecode formatting by @mwiede in #247
• build improvements by @norrisjeremy in #279
• #287 add algorithm type information to algorithm negotiation logs. by @norrisjeremy in #290
• #289 wrap NoClassDefFoundError's for invalid private keys by @norrisjeremy in #290

Dependency Updates

• Bump maven-enforcer-plugin from 3.1.0 to 3.2.1 by @dependabot in #274
• Bump maven-deploy-plugin from 3.0.0 to 3.1.0 by @dependabot in #278
• Bump maven-javadoc-plugin from 3.4.1 to 3.5.0 by @dependabot in #281
• Update log4j by @norrisjeremy in #285
• Bump maven-compiler-plugin from 3.10.1 to 3.11.0 by @dependabot in #283
• Bump maven-assembly-plugin from 3.4.2 to 3.5.0 by @dependabot in #282

Full Changelog: jsch-0.2.7...jsch-0.2.8

jsch-0.2.7

What's Changed

• #265 change buffer_margin computation to be dynamic based upon the MAC to allow connections that advertise small maximum packet sizes.
• #266 fix PuTTY key parsing to work with unix line endings.
• Add support for ECDSA & EdDSA type PuTTY keys.
• #71 add support for PuTTY version 3 format keys.
  • Encrypted PuTTY version 3 format keys requires Bouncy Castle (bcprov-jdk18on).
• Eliminate KeyPairDeferred and instead change handling of OpenSSH V1 type keys to be more like other KeyPair types.
• Be more vigilant about clearing private key data.
• Improve PKCS8 key handling and add support for PKCS5 2.1 encryption.
• Add support for ECDSA type PKCS8 keys.
• Add support for SCrypt type KDF for PKCS8 keys.
  • PKCS8 keys using SCrypt requires Bouncy Castle (bcprov-jdk18on).
• Add support for EdDSA type PKCS8 keys.
  • EdDSA type PKCS8 keys requires Bouncy Castle (bcprov-jdk18on).
• Attempt to authenticate using other signature algorithms supported by the same public key.
  • Allow this behavior to be disabled via try_additional_pubkey_algorithms config option.
    • Some servers incorrectly respond with SSH_MSG_USERAUTH_PK_OK to an initial auth query that they don't actually support for RSA keys.
• Add a new config option enable_pubkey_auth_query to allow skipping auth queries and proceed directly to attempting full SSH_MSG_USERAUTH_REQUEST's.
• Add a new config option enable_auth_none to control whether an initial auth request for the method none is sent to detect all supported auth methods available on the server.

Updates

• Bump jna.version from 5.12.1 to 5.13.0 by @dependabot in #268
• Bump junit-jupiter from 5.9.1 to 5.9.2 by @dependabot in #269
• Bump maven-dependency-plugin from 3.4.0 to 3.5.0 by @dependabot in #270

Full Changelog: jsch-0.2.6...jsch-0.2.7

jsch-0.2.6

What's Changed

• Bump slf4j-api from 2.0.5 to 2.0.6 by @dependabot in #256
• Include host alias instead of the real host in messages and exceptions by @ShadelessFox in #257
• Fix missing keySize set when loading V1 RSA keys by @Alex-Vol-Amz in #258
• Enhancement to present KeyPair.getKeyTypeString() method by @Alex-Vol-Amz in #259

New Contributors

• @ShadelessFox made their first contribution in #257
• @Alex-Vol-Amz made their first contribution in #258

Full Changelog: jsch-0.2.5...jsch-0.2.6

v0.2.5

What's Changed

• Explictly free resources in Compression implementations by @norrisjeremy in #241
• Fix integration test failures on Apple Silicon by skipping OpenSSH 7.4 tests by @norrisjeremy in #227
• generate osgi bundle manifest data for jar #248 by @mwiede in #249

Dependency Updates

• Bump maven-jar-plugin from 3.2.2 to 3.3.0 by @dependabot in #209
• Bump log4j-api from 2.18.0 to 2.19.0 by @dependabot in #208
• Bump slf4j-api from 2.0.0 to 2.0.1 by @dependabot in #206
• Bump slf4j-api from 2.0.1 to 2.0.2 by @dependabot in #212
• Bump junit-jupiter from 5.9.0 to 5.9.1 by @dependabot in #213
• Bump junit-jupiter from 1.17.3 to 1.17.4 by @dependabot in #216
• Bump scala-maven-plugin from 4.7.1 to 4.7.2 by @dependabot in #218
• Bump scalatest-junit-runner from 0.1.11 to 0.2.0 by @dependabot in #220
• Bump slf4j-api from 2.0.2 to 2.0.3 by @dependabot in #219
• Bump junit-jupiter from 1.17.4 to 1.17.5 by @dependabot in #221
• Bump bcprov-jdk18on from 1.71.1 to 1.72 by @dependabot in #224
• Bump junixsocket.version from 2.5.1 to 2.5.2 by @dependabot in #222
• Bump compiler-annotations from 1.4.6 to 1.4.8 by @dependabot in #223
• Bump junixsocket.version from 2.5.2 to 2.6.0 by @dependabot in #230
• Bump compiler-annotations from 1.4.8 to 1.5.0 by @dependabot in #229
• Bump actions/setup-java from 2 to 3 by @dependabot in #232
• Bump actions/checkout from 2 to 3 by @dependabot in #233
• Bump junixsocket.version from 2.6.0 to 2.6.1 by @dependabot in #235
• Bump compiler-annotations from 1.5.0 to 1.5.1 by @dependabot in #236
• Bump junit-jupiter from 1.17.5 to 1.17.6 by @dependabot in #244
• Bump maven-install-plugin from 3.0.1 to 3.1.0 by @dependabot in #245
• Bump slf4j-api from 2.0.3 to 2.0.5 by @dependabot in #246
• Bump scala-maven-plugin from 4.7.2 to 4.8.0 by @dependabot in #252
• Bump maven-dependency-plugin from 3.3.0 to 3.4.0 by @dependabot in #251

Full Changelog: jsch-0.2.4...jsch-0.2.5

v0.2.4

What's Changed

• Improved excepton handling by @norrisjeremy in #200

Dependency Updates

• Bump logback-classic from 1.3.0-alpha16 to 1.3.0-beta0 by @dependabot in #192
• Bump maven-site-plugin from 3.12.0 to 3.12.1 by @dependabot in #194
• Bump maven-javadoc-plugin from 3.4.0 to 3.4.1 by @dependabot in #193
• Bump flatten-maven-plugin from 1.2.7 to 1.3.0 by @dependabot in #195
• Bump slf4j-api from 2.0.0-beta1 to 2.0.0 by @dependabot in #196
• Bump bcprov-jdk18on from 1.71 to 1.71.1 by @dependabot in #197

Full Changelog: jsch-0.2.3...jsch-0.2.4

jsch-0.2.3

What's Changed

• #188 fix private key length checks for ssh-ed25519 & ssh-ed448. by @norrisjeremy in #189

Dependency Updates

• Bump maven-assembly-plugin from 3.3.0 to 3.4.1 by @dependabot in #173
• Bump maven-enforcer-plugin from 3.0.0 to 3.1.0 by @dependabot in #172
• Bump log4j-api from 2.17.2 to 2.18.0 by @dependabot in #169
• Minor updates by @norrisjeremy in #174
• Bump scala-maven-plugin from 4.6.3 to 4.7.0 by @dependabot in #176
• Bump maven-resources-plugin from 3.2.0 to 3.3.0 by @dependabot in #181
• Bump maven-install-plugin from 2.5.2 to 3.0.1 by @dependabot in #180
• Bump maven-assembly-plugin from 3.4.1 to 3.4.2 by @dependabot in #177
• Bump scala-maven-plugin from 4.7.0 to 4.7.1 by @dependabot in #179
• Bump maven-deploy-plugin from 2.8.2 to 3.0.0 by @dependabot in #178
• Bump junit-jupiter from 5.8.2 to 5.9.0 by @dependabot in #182
• Bump slf4j-api from 2.0.0-alpha7 to 2.0.0-beta1 by @dependabot in #186

Full Changelog: jsch-0.2.2...jsch-0.2.3

v0.2.2

What's Changed

• setup jdk for code-ql analysis by @mwiede in #151
• misc improvements by @norrisjeremy in #152
• Fixing Issue #131 by @kimmerin in #134
• Update link to bcrypt by @turbanoff in #157

Dependency Updates

• Update changelog and dependencies by @norrisjeremy in #145
• Bump actions/cache from 2 to 3 by @dependabot in #164
• Bump scala-maven-plugin from 4.6.1 to 4.6.3 by @dependabot in #162
• Bump actions/upload-artifact from 2 to 3 by @dependabot in #163
• Bump jna.version from 5.11.0 to 5.12.1 by @dependabot in #166
• Bump junit-jupiter from 1.17.1 to 1.17.3 by @dependabot in #165
• Bump compiler-annotations from 1.4.2 to 1.4.6 by @dependabot in #161
• Bump junixsocket.version from 2.4.0 to 2.5.1 by @dependabot in #167

New Contributors

• @dependabot made their first contribution in #164

Full Changelog: jsch-0.2.1...jsch-0.2.2