Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency phpseclib/phpseclib to v3 #416

Closed
wants to merge 1 commit into from
Closed

chore(deps): update dependency phpseclib/phpseclib to v3 #416

wants to merge 1 commit into from

Conversation

renovate-bot
Copy link
Contributor

@renovate-bot renovate-bot commented Sep 26, 2022
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Type Update Change
phpseclib/phpseclib (source) require-dev major ^2.0.31 -> ^3.0.0

Release Notes

phpseclib/phpseclib

v3.0.17

Compare Source

  • X509: make it so CRLs, CSRs and SPKACs can support PSS keys (#​1837)
  • X509: make it so PKCS1 X509 certs can create PSS sigs (#​1837)
  • SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#​1841)
  • SFTP: restore orig behavior when deleting non-existant folder (#​1847)
  • Random: fix fallback on PHP 8.1+

v3.0.16

Compare Source

  • SSH2: fix type hinting for keyboard_interactive_process (#​1836)

v3.0.15

Compare Source

  • PublicKeyLoader: add support for OpenSSH encrypted keys (#​1737, #​1733, #​1531, #​1490)
  • PublicKeyLoader: add support for JSON Web Keys (#​1817)
  • SSH2: make login method return false under rare situation (#​1790)
  • SSH2: fix possibly undefined variable error (#​1802)
  • SFTP: fix enableDatePreservation bug w.r.t. mtime (#​1670)
  • SFTP: try to delete dir even if it can't be opened (#​1791)
  • SFTP: try without path canonicalization if initial realpath() fails (#​1796)
  • SFTP: detect if stream metadata has wrapper_type set for put() method (#​1792)
  • BigInteger: tweak to the phpinfo checks (#​1726)
  • BigInteger: fix behavior on 32-bit PHP installs (#​1820)
  • EC/PKCS8: OpenSSL didn't like phpseclib formed Ed25519 public keys (#​1819)
  • don't use dynamic properties, which are deprecated in PHP 8.2 (#​1808, #​1822)
  • fix deprecated implicit float to int on 32-bit PHP 8.1

v3.0.14

Compare Source

  • RSA: add support for loading PuTTY v3 keys
  • Crypt/Base: fix CTR mode with continuous buffer with non-eval PHP
  • Crypt/Base: use sodium_increment in _increment_str
  • Crypt/Base: fix deprecation notice (#​1770)
  • SSH2/Agent: rm unused parameter (#​1757)
  • BigInteger: add precision to __debugInfo
  • BigInteger: fix random engine issues
  • call useBestEngine() when getEngine() is called

v3.0.13

Compare Source

  • SSH2: make login() return false if no valid auth methods are found (#​1744)
  • SSH2: show a more helpful error message when logging in with pubkey (#​1718)
  • SSH2: rsa-sha2-256 and rsa-sha2-512 sigs weren't verifying (#​1743)
  • SFTP: fix chgrp() for version < 4 (#​1730)
  • Crypt/Base: add OFB8 as a new mode (phpseclib/mcrypt_compat#​33)
  • Crypt/Salsa20: fix PHP 5.6 error (#​1717)
  • RSA & BigInteger: check phpinfo() available before using it (#​1726)
  • Fixed psalm level 6 errors in phpseclib/Net/ (#​1746)

v3.0.12

Compare Source

  • SSH2: add "smart multi factor" login mode (enabled by default) (#​1648)
  • SSH2: error out when no data is received from the server (#​1647)
  • SFTP: don't attempt to parse unsupported attributes (#​1708)
  • SFTP: getSupportedVersions() call didn't work
  • EC: error out when scalar is out of range (#​1712)
  • RSA: add support for raw private keys (#​1711)
  • SymmetricKey: add getMode()

v3.0.11

Compare Source

  • SSH2: add support for zlib and zlib@openssh.com compression
  • SFTP: add support for SFTPv4/5/6
  • SFTP: add option to allow arbitrary length packets (#​1691)
  • SFTP: errors weren't being logged (#​1702)
  • RSA: ssh-keygen -yf private.key fails if \r is present (#​1698)

v3.0.10

Compare Source

  • SFTP: don't check SFTP packet size after SFTP initialization (#​1606)
  • SFTP: timeout during SFTP init should return false (#​1684)
  • SFTP: return false if get_channel_packet returns false (#​1678)
  • ASN1: return false when not enough bytes are available (#​1676)
  • BigInteger: Serializable is being deprecated in PHP 8.1 (#​1680)
  • explicitly define methods as being static (#​1689)
  • plug memory leaks (#​1672)

v3.0.9

Compare Source

  • SSH2: add getAuthMethodsToContinue() method (#​1648)
  • SSH2: timeout would occasionally infinitely loop
  • SSH2: fix PHP7.4 errors about accessing bool as string (#​1656)
  • SSH2: fix issue with key re-exchange (#​1644)
  • SFTP: reopen channel on channel closure (#​1654)
  • X509: extra characters before cert weren't being removed (#​1659)
  • X509: signing with pw protected PSS keys yielded errors (#​1657)
  • ASN1: fix timezone issue when non-utc time is given (#​1562)
  • ASN1: change how default values are processed for ints and enums (#​1665)
  • RSA: OAEP decryption didn't check labels correctly (#​1669)

v3.0.8

Compare Source

  • AsymetrticKey: add getComment() method (#​1638)
  • SymmetricKey: cipher_name_openssl_ecb shouldn't be static because of AES (#​1636)
  • X509: don't filter basicConstraints on unique values (#​1639)
  • X509: make it so extensions can be set as critical (#​1640)

v3.0.7

Compare Source

  • X509: always parse the first cert of a bundle (#​1568)
  • SSH2: behave like putty with broken publickey auth (#​1572)
  • SSH2: don't close channel on unexpected response to channel request (#​1631)
  • RSA: cleanup RSA PKCS#​1 v1.5 signature verification (CVE-2021-30130)
  • Crypt: use a custom error handler for mcrypt to avoid deprecation errors

v3.0.6

Compare Source

  • SFTP/Stream: make it so you can write past the end of a file (#​1618)
  • SFTP/Stream: fix undefined index notice in stream touch() (#​1615)
  • SFTP/Stream: mkdir didn't work (#​1617)
  • BigInteger: fix issue with toBits on 32-bit PHP 8 installs
  • SFTP: digit only filenames were converted to integers by php (#​1623)

v3.0.5

Compare Source

  • X509: add getCurrentCert method (since $currentCert is now private) (#​1602)
  • PublicKeyLoader: add loadPrivateKey() and loadPublicKey() methods (#​1603)
  • Rijndael: calling setIV() after setBlockLength() can result in err (#​1599)
  • RSA: use OpenSSL for generating private keys (#​1596)
  • BigInteger: big speedups for when OpenSSL is used (#​1596)

v3.0.4

Compare Source

  • Random: use v9.99.99 of random_compat if appropriate (#​1585, #​1571)
  • SSH/Agent: EC keys didn't work with agent (#​1593)
  • X509: fix niche issue with computeKeyIdentifier (#​1586)

v3.0.3

Compare Source

  • X509: passing DateTime objects to setEndDate produced errors (#​1578)
  • X509: always parse the first cert of a bundle (#​1568)
  • X509: streamline the management of custom extensions (#​1573)
  • EC: fix case sensitivity errors when using Symfony autoloader (#​1570)
  • RSA: improve identification of public / private PKCS1 / PKCS8 keys (#​1579)
  • RSA: add support for PSS keys that don't have parameters present (#​1583)
  • RSA: tweaks to how the salt length works
  • RSA: throw exceptions instead of returning false
  • SSH2: behave like putty with broken publickey auth (#​1572)

v3.0.2

Compare Source

  • EC/PKCS1: throw exception when trying to load non-strings (#​1559)
  • X509: make date methods accept DateTimeInterface instead of DateTime (#​1562)
  • SSH2: suppress errors on stream_select calls (#​1560)

v3.0.1

Compare Source

  • X509: make it so CRLs, CSRs and SPKACs can support PSS keys (#​1837)
  • X509: make it so PKCS1 X509 certs can create PSS sigs (#​1837)
  • SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#​1841)
  • SFTP: restore orig behavior when deleting non-existant folder (#​1847)
  • Random: fix fallback on PHP 8.1+

v3.0.0

Compare Source

  • drop SSH1 and SCP support
  • add support for the following crypto algorithms:
    • Ed25519 / Ed449 / Curve25519 / Curve449
    • ECDSA / ECDH (66 curves)
    • DSA / DH
    • GCM / Poly1305
    • Salsa20 / ChaCha20
  • namespace changed from phpseclib\ to \phpseclib3 to facilitate phpseclib 2 shim (phpseclib2_compat)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate-bot renovate-bot requested a review from a team as a code owner September 26, 2022 19:53
@trusted-contributions-gcf trusted-contributions-gcf bot added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Sep 26, 2022
@renovate-bot renovate-bot force-pushed the renovate/phpseclib-phpseclib-3.x branch from 46c503b to 8b6f7b8 Compare October 28, 2022 11:18
@bshaffer bshaffer mentioned this pull request Nov 4, 2022
Merged
@bshaffer
Copy link
Contributor

bshaffer commented Nov 4, 2022

superseded by #425

@bshaffer bshaffer closed this Nov 4, 2022
@forking-renovate
Copy link

Renovate Ignore Notification

As this PR has been closed unmerged, Renovate will ignore this upgrade and you will not receive PRs for any future 3.x releases. However, if you upgrade to 3.x manually then Renovate will reenable minor and patch updates automatically.

If this PR was closed by mistake or you changed your mind, you can simply rename this PR and you will soon get a fresh replacement PR opened.

@renovate-bot renovate-bot deleted the renovate/phpseclib-phpseclib-3.x branch November 4, 2022 19:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
kokoro:force-run Add this label to force Kokoro to re-run the tests.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@renovate-bot @bshaffer