This is an automated email from the ASF dual-hosted git repository.
twolf pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/mina-sshd.git
from 1e27daaec OpenSshCertificate: access options and extensions as maps
new 16fbd1972 KEX: Fix key exchange with host certificate
new baa97441b KEX: guard client against buggy servers
new 69102099c KEX: by default abort on invalid certificates
new 18e30f691 [SSHD-1167] KEX: handle "@cert-authority" in known_hosts
files
new e32c262e5 KEX: fix host certificate w/o principals
The 5 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
CHANGES.md | 4 +
.../apache/sshd/common/config/keys/KeyUtils.java | 6 +
.../sshd/common/signature/AbstractSignature.java | 12 +-
.../apache/sshd/common/signature/SignatureDSA.java | 2 +-
.../sshd/common/signature/SignatureECDSA.java | 10 +-
.../apache/sshd/common/signature/SignatureRSA.java | 16 +-
.../eddsa/generic/GenericSignatureEd25519.java | 3 +-
.../java/org/apache/sshd/client/kex/DHGClient.java | 103 +++++++------
.../keyverifier/KnownHostsServerKeyVerifier.java | 20 ++-
.../keyverifier/RequiredServerKeyVerifier.java | 14 +-
.../sshd/client/session/AbstractClientSession.java | 26 +---
.../org/apache/sshd/core/CoreModuleProperties.java | 2 +-
.../signature/KnownHostsCertificateTest.java | 168 +++++++++++++++++++++
.../common/signature/OpenSSHCertificateTest.java | 4 -
.../signature/OpenSshHostCertificateTest.java | 128 ++++++++++++++++
.../sshd/util/test/CoreTestSupportUtils.java | 59 +++++++-
16 files changed, 468 insertions(+), 109 deletions(-)
create mode 100644
sshd-core/src/test/java/org/apache/sshd/common/signature/KnownHostsCertificateTest.java
create mode 100644
sshd-core/src/test/java/org/apache/sshd/common/signature/OpenSshHostCertificateTest.java
