Rebex SSH Pack 2020 R4
Released: Sep 30, 2020
2020 R4 での更新項目
機能
- All: Rebex assemblies targeting Microsoft .NET Standard 2.1 have been fully tested on Microsoft .NET 5.0 RC1 and are suitable to be used in production on Microsoft's latest .NET platform.
- File Server: Added Length property to the NodeContent class.
- File Server: Added OriginalNode property to FileSystemNotifier.RenameCompleted event argument.
- File Server: Added SaveContentPreview, SaveContentSurrogate and SaveContentCompleted events to virtual file systems.
- File Server: Added workarounds for incompatibilities in SSH renegotiation with JSCH, SSH.NET and very old OpenSSH.
- File Server: Enhanced FileServer infrastructure API to make it possible to start SFTP/SSH session on a pre-connected Socket.
- File Server: Enhanced virtual shell's mkdir command to support '-p' option.
- TLS Core: Updated TlsCipherSuite.Secure/Weak/Fast enum values. Updated TlsParameters.AllowedSuite default.
- Cryptography: Added Ed25519 support to Certificate class. (Not yet supported by the built-in certificate validator due to lack of support in Microsoft Windows and Microsoft .NET).
- Cryptography: Prohibited usage of Chacha20/Poly1305 in TLS 1.3 in FIPS-only mode. (Already prohibited in TLS 1.2 or earlier.)
- Cryptography: Updated RSAManaged constructor logic to make it suitable as a base for derived classes on Microsoft .NET Framework in FIPS-compliant mode.
- Cryptography: Added the ability to use Microsoft Windows CNG API for Diffie-Hellman parameter generation on Microsoft Windows 10 and Windows Server 2016/2019.
- Common: Optimized internal cancellation infrastructure on old platforms.
- Common: Removed usage of BinaryFormatter which has been found to be insecure.
- Common: Updated EncodingTools.GetEncoding method to prefer encodings provided by Microsoft .NET.
不具合の修正
- All: Fixed several minor compatibility issues on .NET 5.0 RC1.
- File Server: Fixed algorithm support check when adding an Ed25519 key to FileServer.Keys collection.
- File Server: Fixed behavior of SSH_FXP_MKDIR on non-Windows operating systems.
- Networking: Restored missing NetworkSession.InstanceId property.
- TLS Core: Fixed concurrent access in server-side TLS session cache.
- TLS Core: Fixed normalization of premaster secret in server-side ECDH calculations in TLS 1.2 and earlier.
- Cryptography: Fixed handling of non-content data in Certificate(byte[]) constructor and CertificateChain.LoadP7b(Stream)/certificateRevocationList.Load(Stream) methods.
- Cryptography: Fixed parsing of constructed primitive ASN.1 types with more than two layers of nesting.
- Cryptography: Fixed version number in PKCS #10 CertificationRequest structure.