(mina-site) branch asf-site updated: Updated site from master (90d58b1e56c7515b29782c9f50bda59672cb63d8)

git-site-role Thu, 28 May 2026 00:23:30 -0700

This is an automated email from the ASF dual-hosted git repository.

asf-gitbox-commits pushed a commit to branch asf-site
in repository https://gitbox.apache.org/repos/asf/mina-site.git



The following commit(s) were added to refs/heads/asf-site by this push:
     new d819ec824 Updated site from master 
(90d58b1e56c7515b29782c9f50bda59672cb63d8)
d819ec824 is described below

commit d819ec8241a9d82831a2a18ad0a26286350c4cdc
Author: jenkins <[email protected]>
AuthorDate: Thu May 28 07:23:05 2026 +0000

    Updated site from master (90d58b1e56c7515b29782c9f50bda59672cb63d8)
---
 content/index.xml                         |  3 ++-
 content/sitemap.xml                       |  4 ++--
 content/sshd-project/download_2.18.0.html | 23 +++++++++++++++++++++++
 content/sshd-project/index.xml            |  3 ++-
 4 files changed, 29 insertions(+), 4 deletions(-)

diff --git a/content/index.xml b/content/index.xml
index 8ae2a3411..3000eb717 100644
--- a/content/index.xml
+++ b/content/index.xml
@@ -930,7 +930,8 @@ Bug Fixes  GH-875 Use Apache Parent POM 36  Getting the 
Distributions  Source di
       <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
       
       <guid>https://mina.apache.org/sshd-project/download_2.18.0.html</guid>
-      <description>Overview Bug Fixes  GH-743 Ensure the Java ServiceLoader 
use a singleton SftpFileSystemProvider GH-879 Close SSH channel gracefully on 
exception in port forwarding Improve handling of repository paths in sshd-git.  
Getting the Distributions  Source distributions:  Apache Mina SSHD 2.18.0 
Sources (.tar.gz) PGP SHA512 Apache Mina SSHD 2.18.0 Sources (.zip) PGP SHA512  
 Binary distributions:  Apache Mina SSHD 2.18.0 Binary (.tar.gz) PGP SHA512 
Apache Mina SSHD 2.</description>
+      <description>Overview Bug Fixes  GH-743 Ensure the Java ServiceLoader 
use a singleton SftpFileSystemProvider GH-879 Close SSH channel gracefully on 
exception in port forwarding Improve handling of repository paths in sshd-git.  
New Features  GH-892 Align handling certificates without principals with 
OpenSSH 10.3  Wildcard principals in host certificates are handled now.
+ Putty keys with non-ASCII passphrases  The passphrase needs to be converted 
to a byte sequence to compute a decryption key for an encrypted private 
key.</description>
     </item>
     
     <item>
diff --git a/content/sitemap.xml b/content/sitemap.xml
index 0e4233de1..c13b878de 100644
--- a/content/sitemap.xml
+++ b/content/sitemap.xml
@@ -434,7 +434,7 @@
   
   <url>
     <loc>https://mina.apache.org/sshd-project/download_2.18.0.html</loc>
-    <lastmod>2026-05-28T08:38:58+02:00</lastmod>
+    <lastmod>2026-05-28T09:15:04+02:00</lastmod>
   </url>
   
   <url>
@@ -1054,7 +1054,7 @@
   
   <url>
     <loc>https://mina.apache.org/sshd-project.html</loc>
-    <lastmod>2026-05-28T08:38:58+02:00</lastmod>
+    <lastmod>2026-05-28T09:15:04+02:00</lastmod>
   </url>
   
   <url>
diff --git a/content/sshd-project/download_2.18.0.html 
b/content/sshd-project/download_2.18.0.html
index c71d6eb19..b82f9ca90 100644
--- a/content/sshd-project/download_2.18.0.html
+++ b/content/sshd-project/download_2.18.0.html
@@ -99,6 +99,29 @@
 <li><a href="https://github.com/apache/mina-sshd/issues/879";>GH-879</a> Close 
SSH channel gracefully on exception in port forwarding</li>
 <li>Improve handling of repository paths in <code>sshd-git</code>.</li>
 </ul>
+<h2 id="new-features">New Features</h2>
+<ul>
+<li><a href="https://github.com/apache/mina-sshd/issues/892";>GH-892</a> Align 
handling certificates without principals with OpenSSH 10.3</li>
+</ul>
+<p>Wildcard principals in host certificates are handled now.</p>
+<ul>
+<li>Putty keys with non-ASCII passphrases</li>
+</ul>
+<p>The passphrase needs to be converted to a byte sequence to compute a 
decryption key for an encrypted private key. This
+conversion depends on the character encoding. Putty on Windows uses the ANSI 
codepage set when the key was generated.
+Apache MINA SSHD now tries multiple encodings in sequence: UTF-8, then the OS 
encoding, and finally ISO-8859-1 as a
+last-chance fallback.</p>
+<h2 id="potential-compatibility-issues">Potential Compatibility Issues</h2>
+<ul>
+<li><a href="https://github.com/apache/mina-sshd/issues/892";>GH-892</a> Align 
handling certificates without principals with OpenSSH 10.3</li>
+</ul>
+<p>OpenSSH 10.3 changed the way such certificates are handled; see the <a 
href="https://www.openssh.org/txt/release-10.3";>OpenSSH 10.3 release notes</a>.
+In Apache MINA SSHD, there is a new flag 
<code>CoreModuleProperties.ALLOW_EMPTY_CERTIFICATE_PRINCIPALS</code> (by 
default <code>false</code>)
+that can be set on an <code>SshClient</code> or <code>SshServer</code> or also 
on a <code>Session</code> directly. If the value is <code>false</code>, 
certificates
+without principals are rejected as in OpenSSH 10.3; if it is 
<code>true</code>, such certificates are considered to match any
+user or host name as in OpenSSH &lt; 10.3.</p>
+<p>Set the flag on an <code>SshClient</code> or <code>ClientSession</code> to 
determine the handling of host certificates. Set it on an
+<code>SshServer</code> or <code>ServerSession</code> to govern the handling of 
user certificates.</p>
 <h1 id="getting-the-distributions">Getting the Distributions</h1>
 <ul>
 <li>Source distributions:
diff --git a/content/sshd-project/index.xml b/content/sshd-project/index.xml
index 2d77c9b2c..4ae98516c 100644
--- a/content/sshd-project/index.xml
+++ b/content/sshd-project/index.xml
@@ -438,7 +438,8 @@ Bug Fixes  GH-875 Use Apache Parent POM 36  Getting the 
Distributions  Source di
       <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
       
       <guid>https://mina.apache.org/sshd-project/download_2.18.0.html</guid>
-      <description>Overview Bug Fixes  GH-743 Ensure the Java ServiceLoader 
use a singleton SftpFileSystemProvider GH-879 Close SSH channel gracefully on 
exception in port forwarding Improve handling of repository paths in sshd-git.  
Getting the Distributions  Source distributions:  Apache Mina SSHD 2.18.0 
Sources (.tar.gz) PGP SHA512 Apache Mina SSHD 2.18.0 Sources (.zip) PGP SHA512  
 Binary distributions:  Apache Mina SSHD 2.18.0 Binary (.tar.gz) PGP SHA512 
Apache Mina SSHD 2.</description>
+      <description>Overview Bug Fixes  GH-743 Ensure the Java ServiceLoader 
use a singleton SftpFileSystemProvider GH-879 Close SSH channel gracefully on 
exception in port forwarding Improve handling of repository paths in sshd-git.  
New Features  GH-892 Align handling certificates without principals with 
OpenSSH 10.3  Wildcard principals in host certificates are handled now.
+ Putty keys with non-ASCII passphrases  The passphrase needs to be converted 
to a byte sequence to compute a decryption key for an encrypted private 
key.</description>
     </item>
     
     <item>

(mina-site) branch asf-site updated: Updated site from master (90d58b1e56c7515b29782c9f50bda59672cb63d8)

Reply via email to