AsyncSSH 2.5.0 released!
25 views
Skip to first unread message
Ron Frederick
Dec 23, 2020, 3:19:20 PM12/23/20
to asyncssh...@googlegroups.com, asyncssh-users
AsyncSSH version 2.5.0 is now available on Github and PyPI, with some new features and a handful of bug fixes. Here’s a list of changes since 2.4.2:
* Added support for limiting which identities in an SSH agent will be
used when making a connection, via a new "agent_identities" config
option. This change also adds compatibility with the OpenSSL config
file option "IdentitiesOnly".
* Added support for including Subject Key Identifier and Authority Key
Identifier extensions in generated X.509 certificates to better comply
with RFC 5280.
* Added support for makedirs() and rmtree() methods in the AsyncSSH
SFTP client, as well as a new scandir() method which returns an async
iterator to more efficiently process very large directories. Thanks
go to Joseph Ernest for suggesting these improvements.
* Significantly reworked AsyncSSH line editor support to improve its
performance by several orders of magnitude on long input lines, and
added a configurable maximum line length when the editor is in use to
avoid potential denial-of-service attacks. This limit defaults to
1024 bytes, but with the improvements it can reasonably handle lines
which are megabytes in size if needed.
* Changed AsyncSSH to allow SSH agent identities to still be used when
an explicit list of client keys is specified, for better compatibility
with OpenSSH. The previous behavior can still be achieved by explicitly
setting the agent_path option to None when setting client_keys.
* Changed AsyncSSH to enforce a limit of 1024 characters on usernames
when acting as a server to avoid a potential denial-of-service issue
related to SASLprep username normalization.
* Changed SCP implementation to explicitly yield to other coroutines
when sending a large file to better share an event loop.
* Fixed a few potential race conditions related to cleanup of objects
during connection close. Thanks go to Thomas Léveil for reporting one
of these places and suggesting a fix.
* Re-applied a previous fix which was unintentionally lost to allow
Pageant to be used by default on Windows.
Downloads can be found in the usual place:
Home page: http://asyncssh.readthedocs.io
PyPI: https://pypi.python.org/pypi/asyncssh
GitHub: https://github.com/ronf/asyncssh
Please let me know if you have any questions or problems with this new release.
--
Ron Frederick
ro...@timeheart.net
* Added support for limiting which identities in an SSH agent will be
used when making a connection, via a new "agent_identities" config
option. This change also adds compatibility with the OpenSSL config
file option "IdentitiesOnly".
* Added support for including Subject Key Identifier and Authority Key
Identifier extensions in generated X.509 certificates to better comply
with RFC 5280.
* Added support for makedirs() and rmtree() methods in the AsyncSSH
SFTP client, as well as a new scandir() method which returns an async
iterator to more efficiently process very large directories. Thanks
go to Joseph Ernest for suggesting these improvements.
* Significantly reworked AsyncSSH line editor support to improve its
performance by several orders of magnitude on long input lines, and
added a configurable maximum line length when the editor is in use to
avoid potential denial-of-service attacks. This limit defaults to
1024 bytes, but with the improvements it can reasonably handle lines
which are megabytes in size if needed.
* Changed AsyncSSH to allow SSH agent identities to still be used when
an explicit list of client keys is specified, for better compatibility
with OpenSSH. The previous behavior can still be achieved by explicitly
setting the agent_path option to None when setting client_keys.
* Changed AsyncSSH to enforce a limit of 1024 characters on usernames
when acting as a server to avoid a potential denial-of-service issue
related to SASLprep username normalization.
* Changed SCP implementation to explicitly yield to other coroutines
when sending a large file to better share an event loop.
* Fixed a few potential race conditions related to cleanup of objects
during connection close. Thanks go to Thomas Léveil for reporting one
of these places and suggesting a fix.
* Re-applied a previous fix which was unintentionally lost to allow
Pageant to be used by default on Windows.
Downloads can be found in the usual place:
Home page: http://asyncssh.readthedocs.io
PyPI: https://pypi.python.org/pypi/asyncssh
GitHub: https://github.com/ronf/asyncssh
Please let me know if you have any questions or problems with this new release.
--
Ron Frederick
ro...@timeheart.net
Reply all
Reply to author
Forward
0 new messages