Permalink
Commits on Feb 28, 2012
  1. Merge remote branch 'upstream/maint'

    IngelaAndin committed Feb 28, 2012
    * upstream/maint:
      Document currently supported algorithms
  2. Merge branch 'ia/ssh/currently-supported-doc/OTP-8109' into maint

    IngelaAndin committed Feb 28, 2012
    * ia/ssh/currently-supported-doc/OTP-8109:
      Document currently supported algorithms
  3. Merge remote branch 'upstream/maint'

    IngelaAndin committed Feb 28, 2012
    * upstream/maint:
      Prevent client hanging. (OTP-8111)
      Added checks of API input
      Improve check so that we will not try to read ssh packet length indicator if not sure we have enough data.
      Improved error handling
  4. Merge branch 'ia/ssh/error-handling' into maint

    IngelaAndin committed Feb 28, 2012
    * ia/ssh/error-handling:
      Prevent client hanging. (OTP-8111)
      Added checks of API input
      Improve check so that we will not try to read ssh packet length indicator if not sure we have enough data.
      Improved error handling
  5. Prevent client hanging. (OTP-8111)

    IngelaAndin committed Feb 22, 2012
    Restored supervisor tree so that error propagation will work as
    intended, although connection processes are set to temporary, instead
    of permanent with restart times set to 0, and termination of the
    connection subtree is initiated by a temporary process spawned by
    ssh_connection_managers terminate.  This is done to avoid unwanted
    supervisor reports.  Pherhaps we need some new supervisor
    functionality.
Commits on Feb 21, 2012
  1. Added checks of API input

    IngelaAndin committed Feb 20, 2012
Commits on Feb 20, 2012
  1. Improve check so that we will not try to read ssh packet length indic…

    IngelaAndin committed Feb 20, 2012
    …ator if not sure we have enough data.
    
    OTP-8380
Commits on Feb 17, 2012
  1. Improved error handling

    IngelaAndin committed Feb 17, 2012
Commits on Feb 16, 2012
  1. Merge remote branch 'upstream/maint'

    IngelaAndin committed Feb 16, 2012
    * upstream/maint:
      Document user_dir for the server
  2. Merge branch 'ia/ssh/server-user-dir-doc' into maint

    IngelaAndin committed Feb 16, 2012
    * ia/ssh/server-user-dir-doc:
      Document user_dir for the server
  3. Merge remote branch 'upstream/maint'

    IngelaAndin committed Feb 16, 2012
    * upstream/maint:
      Remove unused files from test data as it is confusing
      Add support for key files protected by pass phrases
  4. Merge branch 'ia/ssh/pass-phrase-protected-keys/OTP-6400' into maint

    IngelaAndin committed Feb 16, 2012
    * ia/ssh/pass-phrase-protected-keys/OTP-6400:
      Remove unused files from test data as it is confusing
      Add support for key files protected by pass phrases
Commits on Feb 15, 2012
Commits on Feb 14, 2012
  1. Merge branch 'maint'

    IngelaAndin committed Feb 14, 2012
    * maint:
      Client now honors the allow_user_interaction option
      Avoid to crash if the remote side closes the connection prematurely
  2. Merge branch 'ia/ssh/crash-report-with-impatient-SFTP-client/OTP-9391…

    IngelaAndin committed Feb 14, 2012
    …' into maint
    
    * ia/ssh/crash-report-with-impatient-SFTP-client/OTP-9391:
      Avoid to crash if the remote side closes the connection prematurely
  3. Merge branch 'ia/ssh/keyboard-interactive-disable-bug/OTP-9466' into …

    IngelaAndin committed Feb 14, 2012
    …maint
    
    * ia/ssh/keyboard-interactive-disable-bug/OTP-9466:
      Client now honors the allow_user_interaction option
Commits on Feb 13, 2012
  1. Merge branch 'maint'

    IngelaAndin committed Feb 13, 2012
    * maint:
      Correct access flag handling in sftpd
      Client fallbacks to ipv4 if connection is refused with ipv6
      Cleaned up code so that ssh_file can become a template for a documented ssh_keys behavior
      Test case maintenance
      Better handling of IPv6
      Ssh daemon handles RSA host keys
      Removed no longer needed code
      Use the public_key application for all public key handling
  2. Merge branch 'ia/ssh/public_keys/OTP-9911' into maint

    IngelaAndin committed Feb 13, 2012
    * ia/ssh/public_keys/OTP-9911:
      Correct access flag handling in sftpd
      Client fallbacks to ipv4 if connection is refused with ipv6
      Cleaned up code so that ssh_file can become a template for a documented ssh_keys behavior
      Test case maintenance
      Better handling of IPv6
      Ssh daemon handles RSA host keys
      Removed no longer needed code
      Use the public_key application for all public key handling
Commits on Feb 10, 2012
  1. Correct access flag handling in sftpd

    IngelaAndin committed Feb 7, 2012
    Also Moved app test to ssh_basic_SUITE
    There is no reason to have a separate suite for the app test it
    increases maintenance costs
  2. Test case maintenance

    IngelaAndin committed Feb 3, 2012
  3. Better handling of IPv6

    IngelaAndin committed Feb 3, 2012
  4. Ssh daemon handles RSA host keys

    IngelaAndin committed Feb 2, 2012
    Solves OTP-7677
  5. Use the public_key application for all public key handling

    IngelaAndin committed Jan 24, 2012
    Also improved test suites to avoid copying of users keys to
    test server directories as this is a security liability
Commits on Feb 9, 2012
  1. Merge branch 'maint'

    IngelaAndin committed Feb 9, 2012
    * maint:
      User defined verify_fun is now called correctly
      Do not test sslv2 rejection with openssl-1.*
  2. Merge branch 'ia/ssl/test-maint/reject-sslv2-test' into maint

    IngelaAndin committed Feb 9, 2012
    * ia/ssl/test-maint/reject-sslv2-test:
      Do not test sslv2 rejection with openssl-1.*
  3. Merge branch 'ia/ssl/verify_fun' into maint

    IngelaAndin committed Feb 9, 2012
    * ia/ssl/verify_fun:
      User defined verify_fun is now called correctly
Commits on Feb 8, 2012
  1. User defined verify_fun is now called correctly

    IngelaAndin committed Feb 3, 2012
    Background from erlang-questions:
    
    > We use this test suite to verify our PKIX-path-validation code,
    > granted we do not yet support CRL-handling but that is on its
    > way. Our verify_fun will let you work around the problem that it
    > is not yet supported. (Not so fun for you perhaps but a possible
    > solution for now).
    
    this is unfortunately not the case since for versions that contain
    commit 4dbf3c9 (it is in R14B04 and
    R15B) the documented behaviour (verify_fun will be called for every
    certificate) is broken: the verify_fun will only be called, if the
    certificate contains unknown extensions.
    it is therefore not useful as a CRL workaround (anymore).
    
    best regards
    
    Stefan Grundmann