- Version 2.1.0 to 2.2.0
- Version 2.2.0 to 2.3.0
- Version 2.3.0 to 2.4.0
- Version 2.4.0 to 2.5.0
- Version 2.5.0 to 2.5.1
- Version 2.5.1 to 2.6.0
- Version 2.6.0 to 2.7.0
- Version 2.7.0 to 2.8.0
- Version 2.8.0 to 2.9.0
- Version 2.9.0 to 2.9.1
- Version 2.9.1 to 2.9.2
- Version 2.9.2 to 2.10.0
- Version 2.10.0 to 2.11.0
- Version 2.11.0 to 2.12.0
- Version 2.12.0 to 2.12.1
- Version 2.12.1 to 2.13.0
- Version 2.13.0 to 2.13.1
- Version 2.13.1 to 2.13.2
- Version 2.13.2 to 2.14.0
-
GH-650 Use the correct key from a user certificate in server-side pubkey auth
-
GH-663 Fix racy
IoSessioncreation -
GH-664 Skip MAC negotiation if an AEAD cipher was negotiated
-
GH-677 Fix current directory handling in
ScpShellfor WinSCP -
GH-678
ScpShell: write month names in English for WinSCP -
GH-690 Handle append mode for buggy SFTP v3 servers
-
GH-700 Fix race in
AbstractCloseable.doCloseImmediately() -
GH-709
AbstractChannel: Handle keep-alive channel messages sent by an old OpenSSH server -
GH-727 Supply default port 22 for proxy jump hosts for which there is no
HostConfigEntry -
GH-733 Fix
SftpRemotePathChannel.transferTo()(avoid NPE) -
SSHD-1343 Correct documentation in
ChannelDataReceiver
-
GH-705 New method
TcpipServerChannel.getPort()returning theChannelToPortHandler -
SSHD-1161 Support pubkey auth with user certificates (server-side)
- Client-side support was introduced in version 2.8.0 already
-
SSHD-1167 Check host certificates against known_hosts file (implements @cert-authority)
Client-side KEX: we've changed the default of the setting CoreModuleProperties.ABORT_ON_INVALID_CERTIFICATE from false to true.
A client will newly abort an SSH connection if the server presents an invalid OpenSSH host certificate as host key.