test #248
Closed
test #248
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ssing a file/folder via SFTP
…lback to DH group exchange using SHA-1 if no suitable primes found for SHA-256
SftpInputStreamAsync.transferTo must not have the @OverRide annotation; it's an override only from JAva 11 on.
If the server had announced via server-sig-algs which signature algorithms it supports, UserAuthPubKey tries the known algorithms first. If authentication with such a known signature algorithm fails, there is no point trying other algorithms. Trying different signature algorithms may make sense only if the client doesn't know which algorithms the server supports.
…esProvider#loadIdentities
…eflect the use of a property to govern fallback mode
Install a DefaultClientKexExtensionHandler by default.
When the peer closes the channel, just reply with a CLOSE message. Do not send an EOF before the CLOSE. See RFC 4254, section 5.3.[1] [1] https://tools.ietf.org/html/rfc4254#section-5.3
…Utils#resolveDefaultClass in SecurityProviderRegistrars (apache#189) Signed-off-by: Grzegorz Grzybek <gr.grzybek@gmail.com>
Rename the method to getCertPubKey() in preparation of using the class also for client certificate pubkey login.
Drop the restriction to host keys only in OpenSshCertificate. Add comparison of OpenSshCertificate taking into account the public key of the certificates, their serial number, and their signatures. Add a signature algorithm map to be able to choose the correct signature algorithm name during pubkey authentication. Also-by: Alex Sherwin <alex-sherwin@users.noreply.github.com>
Add a unit test exercising authentication with all supported *-cert key types against a real OpenSSH server run in a docker container. The OpenSSH server runs in an Alpine container and is primed with two host keys, selectable via an environment variable, and two users. It supports pubkey and password authentication. The test case uses org.testcontainers to build a cached docker image and to run and teardown the docker container instance. The test uses the Apache MINA sshd client using client certificate keys to authenticate at the OpenSSH server in the docker container. The test is not run with the mina and netty back-ends; testcontainers has problems resolving files when run from the re-usable test JAR. It also isn't run on Windows; GitHub actions Windows Server VM's don't have Docker (Linux) support. Also note that the test makes sure that the real BouncyCastle security provider is installed; testcontainers contains a shaded BC copy that may fail at runtime due to being unsigned.
|
sss |
|
kj/nn |
|
mmm |
|
merge only comment |
|
yyyyy |
|
mmmm |
|
test |
|
reopen |
1 similar comment
|
comment not |
|
hhhhhhhh |
|
test |
1 similar comment
|
comment @zhoutt96better |
|
xoo |
1 similar comment
|
xoo |
|
,,, |
|
participate |
|
nnnnn |
|
bkbjllblk |
|
nnnnnn |
|
@zhoutt96better , @zhoutt96oci : stop these stupid test pull requests. They are a nuisance; maintainers of this repository get spammed with nonsense e-mails. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.