Recent changes to patches

#10 ecdsa 384 and 521 key verification broken

2022-02-04T14:52:02.989000Z

Hello !
Can you give me a hint how to applicate the patch using the "patch" comand in linux terminal ? Or is there an other way to get a patched JSCH ?
Thanks in advance
Bernhard

Unix line-end in PPK files

2020-06-18T19:56:02.084000Z

Hi, I'd like to offer a patch for KeyPair.java that allows handling PPK-files with Unix-style lineends (LF-only). (Actually, it works this with CR-only, LF-only, LCFR, CRLF lineends -- not EBCDIC though)

#10 ecdsa 384 and 521 key verification broken

2019-03-14T09:36:22.023000Z

Hello.
Do you have any similar patch for ecdsa-sha2-nistp256 host key algorithm?

Allow users to set alternate password encodings

2019-03-06T17:17:40.291000Z

It'd be really useful to expose the existing function in Util.java and allow different password encodings than UTF-8 to be set.

Added support for 256 bit HMAC

2019-02-06T18:56:19.158000Z

I am unsure if you're actively accepting patches for this project, but I figured I'd submit this anyways. This change enables support for 256 bit HMAC if JCE supports >= 256 bit AES keys (which is now default behavior).
One caveat to this is it requires larger buffer sizes for packets sent, so that is now controlled via constant in Channel, which needs to be at least 112 to support the larger MAC.

ecdsa 384 and 521 key verification broken

2017-04-13T13:59:44.322000Z

Hello!

Due to a hardcoded string in com.jcraft.jsch.jce.SignatureECDSA Jsch is unable to connect to any SSH server, providing ecdsa-sha2-nistp384 or ecdsa-sha2-nistp521 keys.

Attached is a proposed patch.

Cheers,
Ilya German

Fix crash on corrupt known_hosts file

2017-03-28T09:03:22.079000Z

The exception is raised in the case where a server host key is bad. In
my case the system administrator had accidentally included the key
type twice:

server.company.com,10.0.0.1 ssh-rsa ssh-rsa <key>

And ssh-rsa was treated as a key. This fails because it is not valid
Base64. My proposed patch treats this line as an invalid line and
continues, like JSch does in other cases.

$ diff -u ./src/main/java/com/jcraft/jsch/KnownHosts.java ./src/main/java/com/jcraft/jsch/KnownHosts2.java
--- ./src/main/java/com/jcraft/jsch/KnownHosts.java 2017-03-28 09:55:32.131080050 +0100
+++ ./src/main/java/com/jcraft/jsch/KnownHosts2.java    2017-03-28 09:57:26.322732339 +0100
@@ -215,12 +215,14 @@
    //System.err.println(host);
    //System.err.println("|"+key+"|");

-   HostKey hk = null;
-        hk = new HashedHostKey(marker, host, type, 
-                               Util.fromBase64(Util.str2byte(key), 0, 
-                                               key.length()), comment);
-   pool.addElement(hk);
-      }
+        try {
+          pool.addElement(new HashedHostKey(marker, host, type, 
+                                            Util.fromBase64(Util.str2byte(key), 0, 
+                                                            key.length()), comment));
+        } catch (JSchException e) {
+          addInvalidLine(Util.byte2str(buf, 0, bufl));
+        }
+
       if(error){
    throw new JSchException("KnownHosts: invalid format");
       }

#8 Memory leak in LocalIdentityRepository

2016-03-13T21:15:23.806000Z

Thank you! I also got out of memory leaks, I hope your decision will help.

#7 Enable DH-SHA2 key exchange

2015-03-02T18:25:28.004000Z

None, sorry. I only identified the problem and proposed a solution.
That's a question for the maintainer, Atsuhiko Yamanaka.
Meanwhile yo can download the source, apply the attached patch and build yourself.

#7 Enable DH-SHA2 key exchange

2015-03-02T08:57:39.252000Z

Dear Antonio

Any idea of a possible release day for this patch?

Thank you in advance