From 2955ddebc32837b66d9bacb4e925ad0ed0033168 Mon Sep 17 00:00:00 2001 From: Erlang/OTP Date: Tue, 23 Jun 2015 10:24:26 +0200 Subject: Prepare release --- lib/ssh/doc/src/notes.xml | 208 ++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 208 insertions(+) (limited to 'lib/ssh/doc/src/notes.xml') diff --git a/lib/ssh/doc/src/notes.xml b/lib/ssh/doc/src/notes.xml index 74ea649377..9d498c0fdc 100644 --- a/lib/ssh/doc/src/notes.xml +++ b/lib/ssh/doc/src/notes.xml @@ -30,6 +30,214 @@ notes.xml +
Ssh 4.0 + +
Fixed Bugs and Malfunctions + + +

+ Ssh crashed if a message was sent on a channel with + packet_size = 0.

+

+ A new option for ssh:daemon is also introduced: + minimal_remote_max_packet_size. This option sets + the least max packet size declaration that the daemon + will accept from a client. The default value is 0 to + maintain compatibility with OpenSSH and the rfc:s.

+

+ Own Id: OTP-12645 Aux Id: seq12816

+ + +

+ Included test of the 'e' and 'f' parameters in + diffie-hellman key exchange as specified in rfc 4253 + section 8.

+

+ Own Id: OTP-12649

+ + +

+ Fixes the bug that once the rekey_limit bytes (by + default, 1GB) had been transmitted the connection was + rekeyed every minute, not after the next transferred + 'rekey_limit' chunk.

+

+ Thanks to Simon Cornish for the report and the fix!

+

+ Own Id: OTP-12692

+ + +

+ Fixes a bug that causes an SFTP connection to always fail + when {timeout, Timeout} option is used with + ssh_sftp:start_channel.

+

+ Thanks to Simon Cornish

+

+ Own Id: OTP-12708

+ + +

+ Fix various ssh key exchange problems.

+

+ Thanks to Simon Cornish

+

+ Own Id: OTP-12760 Aux Id: pull req + 715

+ + +

+ The options system_dir and user_dir assumes + that the value is a path to a directory which is + readable. This is now checked early, so ssh:daemon + and ssh:connect will fail with an error message + immediately.

+

+ Own Id: OTP-12788

+ + +

+ A daemon now checks that a client doesn't try to + authorize with methods not in the option auth_methods.

+

+ Own Id: OTP-12790

+ + +

+ Disconnectfun now should trigger on all disconnects.

+

+ Own Id: OTP-12811

+ + +
+ + +
Improvements and New Features + + +

+ Better usage of binary matching in ssh_auth.erl and + ssh_message.erl

+

+ Own Id: OTP-11697

+ + +

+ A new option 'preferred_algorithms' is available for + ssh:daemon and ssh:connect.

+

+ This option defines the algorithms presented to the peer + in the algorithm negotiation phase of the ssh protocol.

+

+ The default list can be obtained from the new function + ssh:default_algorithms/0.

+

+ *** INCOMPATIBILITY with removed undocumented options + 'role' and 'compression' ***

+

+ Own Id: OTP-12029

+ + +

+ The internal group to user_drv protocol has been changed + to be synchronous in order to guarantee that output sent + to a process implementing the user_drv protocol is + printed before replying. This protocol is used by the + standard_output device and the ssh application when + acting as a client.

+

+ This change changes the previous unlimited buffer when + printing to standard_io and other devices that end up in + user_drv to 1KB.

+

+ *** POTENTIAL INCOMPATIBILITY ***

+

+ Own Id: OTP-12240

+ + +

+ If ssh_connection:subsystem/4 fails we do not want to + crash but rather terminate gracefully.

+

+ Own Id: OTP-12648 Aux Id: seq12834

+ + +

+ New option id_string for ssh:daemon and + ssh:connect for limiting banner grabbing attempts.

+

+ The possible values are: {id_string,string()} and + {id_string,random}. The latter will make ssh + generate a random nonsence id-string for each new + connection.

+

+ Own Id: OTP-12659

+ + +

+ To enable the ssh daemon to run in a virtualized + environment, where there can be more that one server that + has the same ip-address and port, we add a new option + profile.

+

+ Own Id: OTP-12675

+ + +

+ Upgrade test suite added.

+

+ Own Id: OTP-12676

+ + +

+ A new option for handling the SSH_MSG_DEBUG message's + printouts. A fun could be given in the options that will + be called whenever the SSH_MSG_DEBUG message arrives. + This enables the user to format the printout or just + discard it.

+

+ Own Id: OTP-12738 Aux Id: seq12860

+ + +

+ Testcase improvements and corrections:

+

+ * Add testcases for the disconnectfun option on + both server and client sides

+

+ * Timeout testcases adjusted for slow machines where they + sometimes failed

+

+ Own Id: OTP-12786

+ + +

+ The option disconnectfun can now be used both on + the client and server side.

+

+ Own Id: OTP-12789

+ + +

+ A new option unknown_msgfun/2 for ssh:connect and + ssh:daemon for handling unknown messages. With the option + it is possible to intercept before an INFO log message is + generated.

+

+ One usage is to filter out messages that are not wanted + in the error logger as info reports. An example of such a + message is the 'etimedout' tcp error message that will be + received if a connection has keep_alive and the peer is + restarted.

+

+ Own Id: OTP-12813 Aux Id: seq12881

+ + +
+ +
+
Ssh 3.2.4
Fixed Bugs and Malfunctions -- cgit v1.2.3