| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
* hans/ssh/pwdfun/OTP-13055:
ssh: changes after doc review
ssh: Document pwdfun
ssh: make corrections of keyboard-interactive client
ssh: enable users to give option keyboard_interact_fun
ssh: pwdfun/4 and simple tests
Conflicts:
lib/ssh/doc/src/ssh.xml
|
|
* hans/ssh/random_modulus/OTP-13054:
ssh: correct a bad doc xref
public_key: renamed priv/ssh_moduli -> priv/moduli
ssh, public_key: updates after doc review
ssh: changes after doc review
ssh: extend 'dh_gex_limits' to server side
ssh: option dh_gex_groups with tag ssh_moduli_file
ssh, public_key: random selection of diffie-hellman moduli
|
|
|
|
|
|
|
|
|
|
This commit does not change any behaviour, since the spelling was internally
consistent.
|
|
* weiss/case-insensitive-lookups:
inet_res: Make host name lookups case-insensitive
OTP-13083
|
|
|
|
Fix mistakes found by 'xmllint'.
|
|
Fix mistakes found by 'xmllint'.
|
|
Fix mistakes found by 'xmllint'.
|
|
Fix mistakes found by 'xmllint'.
|
|
Fix mistakes found by 'xmllint'.
|
|
Fix mistakes found by 'xmllint'.
|
|
Fix mistakes found by 'xmllint'.
|
|
|
|
OTP-13066
|
|
Makes this existing option also accept a file in openssh format
OTP-13052
|
|
Also tool (public_key:gen_moduli_hrl) to convert an openssh moduli file to erlang format.
|
|
|
|
|
|
* Newlines should be added after Name and Instructions field according to rfc4256.
* There was an error in the argument list of the last clause of ssh_auth:keyboard_interact_get_responses/9
* Correct client kb-interactive behaviour at auth failure
|
|
It is on purpose not documented. It needs more thinking before being finalized.
|
|
Also solves OTP-13053
|
|
Term tag matching switch statement was missing external fun tag.
|
|
|
|
|
|
Includes a ssh_transport:pack/3 function for generating invalid packets
|
|
* lukas/runtime_tools/dbg_stop_docs/OTP-13078:
runtime_tools: Explain that dbg:stop only clears local trace patterns
|
|
|
|
* bjorn/stdlib/beam_lib-doc/OTP-13063:
beam_lib: Document all_chunks/1 and build_module/1
|
|
- Remove random length padding to make the data volume deterministic
- Increase data volume limit for re-keying because the kexinit message has grown
|
|
|
|
As described in the comments in the patch, doing a TLS handshake
requires the crypto module to be loaded. The crypto module needs the
code server to find its NIF library. However, there is a time window
between opening the listening ports for distribution and starting the
code server, and if we get an incoming connection in that time window,
the node would believe that it's alive, but it wouldn't actually
accept any more connections.
|
|
If ssl:ssl_accept/2 returns an error related to options, it's most
likely something we want to log. In particular, if the specified
certificate file doesn't exist, this is where the error ends up, so we
shouldn't just throw the error away.
|
|
Starting an SSL connection with a nonexistent keyfile will obviously
return an error:
> ssl:connect("www.google.com", 443, [{keyfile, "nonexistent"}]).
{error,{options,{keyfile,"nonexistent",{error,enoent}}}}
But it also generates an error report with the following backtrace:
** Reason for termination =
** {badarg,[{ets,select_delete,
[undefined,[{{{undefined,'_','_'},'_'},[],[true]}]],
[]},
{ets,match_delete,2,[{file,"ets.erl"},{line,700}]},
{ssl_pkix_db,remove_certs,2,[{file,"ssl_pkix_db.erl"},{line,243}]},
{ssl_connection,terminate,3,
[{file,"ssl_connection.erl"},{line,941}]},
{tls_connection,terminate,3,
[{file,"tls_connection.erl"},{line,335}]},
{gen_fsm,terminate,7,[{file,"gen_fsm.erl"},{line,610}]},
{gen_fsm,handle_msg,7,[{file,"gen_fsm.erl"},{line,532}]},
{proc_lib,init_p_do_apply,3,[{file,"proc_lib.erl"},{line,240}]}]}
This happens because the ssl_connection process receives its cert_db
while handling the {start, Timeout} message, but if the handshake
fails, the cert_db will never be inserted into the state data, and the
terminate function will use 'undefined' as an ETS table name.
Avoid this by checking for 'undefined' in the handle_trusted_certs_db
function.
|
|
* hans/ssh/handle_bad_service_names/OTP-12791:
ssh: testcases for bad service names
|
|
|
|
|
|
httpc should work properly if streaming option {self, once} is
chosen and the corresponding response does not get streamed.
|
|
httpc_handler should respond with correct and complete
responses seeing non-streamed status codes i.e. codes
other than 200 or 206.
|
|
* scrapinghub/http_uri_scheme_validation:
inets: scheme validation fun for http_uri
OTP-13071
|
|
* schlagert/remove_xmerl_xsd_builtin_definitions:
Remove built-in definition of xml.xsd from xmerl
OTP-13070
|
|
* scrapinghub/obs_folded_headers:
inets: fix suppport of HTTP headers with obs-fold
OTP-13069
|
|
* lucafavatella/dialyzer-fun-literal-arity:
Teach Dialyzer arity of funs with literal arity
OTP-13068
|
|
* dgud/observer/cdv-ets-owner/OTP-13030:
cdv: Fix crashdump ets table type
observer: Show ets owner pid in crashdump viewers ets popup window
|
|
The type was set in the wrong datastructure.
|
