[jira] [Commented] (DIRMINA-1170) Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches?
[ https://issues.apache.org/jira/browse/DIRMINA-1170?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17713341#comment-17713341 ] Radar wen commented on DIRMINA-1170: Thank you for your reply. > Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches? > - > > Key: DIRMINA-1170 > URL: https://issues.apache.org/jira/browse/DIRMINA-1170 > Project: MINA > Issue Type: Wish >Reporter: Radar wen >Priority: Major > > Excuse me, I would like to ask whether Apache MINA 2.1 and 2.2 will be > dual-branch evolution in the future? > In other words, if the 2.1 version has vulnerabilities in the future, will > the 2.1.x version be released to fix the vulnerabilities? Or just release > 2.2.x to fix the vulnerabilities? -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[jira] [Commented] (DIRMINA-1170) Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches?
[ https://issues.apache.org/jira/browse/DIRMINA-1170?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17713339#comment-17713339 ] Jonathan Valliere commented on DIRMINA-1170: Yes, we maintain at least two branches as LTS. However new features will likely only be added to the newest branch. > Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches? > - > > Key: DIRMINA-1170 > URL: https://issues.apache.org/jira/browse/DIRMINA-1170 > Project: MINA > Issue Type: Wish >Reporter: Radar wen >Priority: Major > > Excuse me, I would like to ask whether Apache MINA 2.1 and 2.2 will be > dual-branch evolution in the future? > In other words, if the 2.1 version has vulnerabilities in the future, will > the 2.1.x version be released to fix the vulnerabilities? Or just release > 2.2.x to fix the vulnerabilities? -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
Re: [jira] [Created] (DIRMINA-1170) Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches?
Yes, we maintain at least two branches as LTS. However new features will likely only be added to the newest branch. On Mon, Apr 17, 2023 at 9:36 PM Radar wen (Jira) wrote: > Radar wen created DIRMINA-1170: > -- > > Summary: Will Apache MINA 2.1 and Apache MINA 2.2 evolve in > dual branches? > Key: DIRMINA-1170 > URL: https://issues.apache.org/jira/browse/DIRMINA-1170 > Project: MINA > Issue Type: Wish > Reporter: Radar wen > > > Excuse me, I would like to ask whether Apache MINA 2.1 and 2.2 will be > dual-branch evolution in the future? > In other words, if the 2.1 version has vulnerabilities in the future, will > the 2.1.x version be released to fix the vulnerabilities? Or just release > 2.2.x to fix the vulnerabilities? > > > > -- > This message was sent by Atlassian Jira > (v8.20.10#820010) > > - > To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org > For additional commands, e-mail: dev-h...@mina.apache.org > >
[jira] [Created] (DIRMINA-1170) Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches?
Radar wen created DIRMINA-1170: -- Summary: Will Apache MINA 2.1 and Apache MINA 2.2 evolve in dual branches? Key: DIRMINA-1170 URL: https://issues.apache.org/jira/browse/DIRMINA-1170 Project: MINA Issue Type: Wish Reporter: Radar wen Excuse me, I would like to ask whether Apache MINA 2.1 and 2.2 will be dual-branch evolution in the future? In other words, if the 2.1 version has vulnerabilities in the future, will the 2.1.x version be released to fix the vulnerabilities? Or just release 2.2.x to fix the vulnerabilities? -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[jira] [Commented] (SSHD-1322) How to identify received LSTAT command is part of PUT command at Server
[ https://issues.apache.org/jira/browse/SSHD-1322?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17713257#comment-17713257 ] Thomas Wolf commented on SSHD-1322: --- I don't think you can. The LSTAT comes from OpenSSH querying [whether is a directory|https://github.com/openssh/openssh-portable/blob/ac383f3a5/sftp.c#L747]. > How to identify received LSTAT command is part of PUT command at Server > > > Key: SSHD-1322 > URL: https://issues.apache.org/jira/browse/SSHD-1322 > Project: MINA SSHD > Issue Type: Question >Reporter: Sreedhar J >Priority: Major > > From SFTP client, when I execute PUT , > SFTP Server recieves first LS command SSH_FXP_LSTAT followed by PUT > commands ( SSH_FXP_OPEN, SSH_FXP_WRITE ). > where as if we issue PUT < local file>, Server would get the commands as > SSH_FXP_OPEN, SSH_FXP_WRITE > *So, my question is,at Server level LSTAT command was invoked as part > of embeeded PUT command vs normal LSTAT command from sftp client.* -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-sshd] dependabot[bot] opened a new pull request, #361: Bump spring-core from 5.3.26 to 5.3.27
dependabot[bot] opened a new pull request, #361: URL: https://github.com/apache/mina-sshd/pull/361 Bumps [spring-core](https://github.com/spring-projects/spring-framework) from 5.3.26 to 5.3.27. Release notes Sourced from https://github.com/spring-projects/spring-framework/releases";>spring-core's releases. v5.3.27 :star: New Features Limit string concatenation in SpEL expressions https://redirect.github.com/spring-projects/spring-framework/issues/30331";>#30331 Limit SpEL expression length https://redirect.github.com/spring-projects/spring-framework/issues/30329";>#30329 Disable variable assignment in SimpleEvaluationContext https://redirect.github.com/spring-projects/spring-framework/issues/30327";>#30327 Introduce StringUtils.truncate() https://redirect.github.com/spring-projects/spring-framework/issues/30291";>#30291 Introduce ObjectUtils.nullSafeConciseToString() https://redirect.github.com/spring-projects/spring-framework/issues/30287";>#30287 Make HttpComponentsHeadersAdapter#getFirst nullable https://redirect.github.com/spring-projects/spring-framework/issues/30269";>#30269 :lady_beetle: Bug Fixes Fix regression in ReactorServerHttpRequest related to IPV6 Zone id with "%" https://redirect.github.com/spring-projects/spring-framework/issues/30314";>#30314 SSE breaks with indenting serializer in WebMvc.fn https://redirect.github.com/spring-projects/spring-framework/issues/30302";>#30302 Increase max regex length in SpEL expressions https://redirect.github.com/spring-projects/spring-framework/issues/30298";>#30298 NullPointerException on timeout in HttpComponentsClientHttpConnector when using Apache HttpComponents https://redirect.github.com/spring-projects/spring-framework/issues/30246";>#30246 Wrong MockRestRequestMatchers.header() method in spring-test being invoked (JDK issue?) https://redirect.github.com/spring-projects/spring-framework/issues/30235";>#30235 TypeNotPresentException: org/springframework/cglib/proxy/NoOp not present on Java 17 https://redirect.github.com/spring-projects/spring-framework/issues/30228";>#30228 Refine generic type management in AbstractMessageWriterResultHandler https://redirect.github.com/spring-projects/spring-framework/issues/30215";>#30215 MvcUriComponentsBuilder.fromMethodCall breaks for controller with CharSequence return type https://redirect.github.com/spring-projects/spring-framework/issues/30212";>#30212 Handle all exceptions for stored proc output param retrieval in SharedEntityManagerCreator https://redirect.github.com/spring-projects/spring-framework/issues/30164";>#30164 :notebook_with_decorative_cover: Documentation Fix @PathVariable reference documentation code snippets https://redirect.github.com/spring-projects/spring-framework/issues/30258";>#30258 Fix example in Javadoc for @EnableWebSocket https://redirect.github.com/spring-projects/spring-framework/issues/30187";>#30187 Fix anchor in link to "Web on Reactive Stack" chapter https://redirect.github.com/spring-projects/spring-framework/issues/30163";>#30163 :hammer: Dependency Upgrades Upgrade to Reactor 2020.0.31 https://redirect.github.com/spring-projects/spring-framework/issues/30315";>#30315 Commits https://github.com/spring-projects/spring-framework/commit/08bc1a050ec87cdaad6b05170c27e34d3f90cafa";>08bc1a0 Release v5.3.27 https://github.com/spring-projects/spring-framework/commit/6bfb94a563800313745ddc2c8eca0de6e17f2cb5";>6bfb94a Disable variable assignment in SimpleEvaluationContext https://github.com/spring-projects/spring-framework/commit/ebc82654282bda547fbc20a9749ab1bda886a46f";>ebc8265 Limit SpEL expression length https://github.com/spring-projects/spring-framework/commit/86457464d767284a7c588292a39d6accf1f65bfe";>8645746 Limit string concatenation in SpEL expressions https://github.com/spring-projects/spring-framework/commit/be129dc17160c82da9e56b88321da13199cda2af";>be129dc Change max regex length in SpEL expressions to 1000 https://github.com/spring-projects/spring-framework/commit/8bb1b3eb443ec8c0e497cc1bf4f232d61097adaa";>8bb1b3e Upgrade to Netty 4.1.91 and Checkstyle 10.9.3 https://github.com/spring-projects/spring-framework/commit/6abd822e77722e6c92853f9abd470fb36e68a1e7";>6abd822 Upgrade to Reactor 2020.0.31 https://github.com/spring-projects/spring-framework/commit/1c43a4c7ab46e7e5ac871b0fb1c04830c6299bc4";>1c43a4c Fix regression in ReactorServerHttpRequest https://github.com/spring-projects/spring-framework/commit/423f2215c2c542426afa6682b8240e668bb133ed";>423f221 Remove flaky assertion to fix build on JDK 17 https://github.com/spring-projects/spring-framework/commit/0bad69d5fbab74cd1afded96fbf5ed287ece7f18";>0bad69d Fix SSE with indenting serializer in WebMvc.fn Additional commits viewable in https://github.com/spring-projects/spring-framework/compare/v5.3.26...v5.3.27";>compare view
[GitHub] [mina-asyncweb] dependabot[bot] closed pull request #9: Bump spring-core from 2.0.8 to 5.2.23.RELEASE
dependabot[bot] closed pull request #9: Bump spring-core from 2.0.8 to 5.2.23.RELEASE URL: https://github.com/apache/mina-asyncweb/pull/9 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-asyncweb] dependabot[bot] commented on pull request #9: Bump spring-core from 2.0.8 to 5.2.23.RELEASE
dependabot[bot] commented on PR #9: URL: https://github.com/apache/mina-asyncweb/pull/9#issuecomment-1511795623 Superseded by #10. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-asyncweb] dependabot[bot] opened a new pull request, #10: Bump spring-core from 2.0.8 to 5.2.24.RELEASE
dependabot[bot] opened a new pull request, #10: URL: https://github.com/apache/mina-asyncweb/pull/10 Bumps [spring-core](https://github.com/spring-projects/spring-framework) from 2.0.8 to 5.2.24.RELEASE. Release notes Sourced from https://github.com/spring-projects/spring-framework/releases";>spring-core's releases. v5.2.24.RELEASE :star: New Features Limit string concatenation in SpEL expressions https://redirect.github.com/spring-projects/spring-framework/issues/30332";>#30332 Limit SpEL expression length https://redirect.github.com/spring-projects/spring-framework/issues/30330";>#30330 Disable variable assignment in SimpleEvaluationContext https://redirect.github.com/spring-projects/spring-framework/issues/30328";>#30328 5.2.23.RELEASE :star: New Features Improve diagnostics in SpEL for matches operator https://redirect.github.com/spring-projects/spring-framework/issues/30150";>#30150 Improve diagnostics in SpEL for repeated text https://redirect.github.com/spring-projects/spring-framework/issues/30149";>#30149 Increase scope of regex pattern cache for the SpEL matches operator https://redirect.github.com/spring-projects/spring-framework/issues/30148";>#30148 v5.2.22.RELEASE :star: New Features Refine CachedIntrospectionResults property introspection https://redirect.github.com/spring-projects/spring-framework/issues/28446";>#28446 :lady_beetle: Bug Fixes Ignore invalid STOMP frame https://redirect.github.com/spring-projects/spring-framework/issues/28444";>#28444 v5.2.21.RELEASE :star: New Features Remove DNS lookups during websocket connection initiation https://redirect.github.com/spring-projects/spring-framework/issues/28281";>#28281 :lady_beetle: Bug Fixes Improve documentation and matching algorithm in data binders https://redirect.github.com/spring-projects/spring-framework/issues/28334";>#28334 CodeGenerationException thrown when using AnnotationMBeanExporter on JDK 17 https://redirect.github.com/spring-projects/spring-framework/issues/28279";>#28279 ResponseEntity objects are accumulated in ConcurrentReferenceHashMap https://redirect.github.com/spring-projects/spring-framework/issues/28273";>#28273 NotWritablePropertyException when attempting to declaratively configure ClassLoader properties https://redirect.github.com/spring-projects/spring-framework/issues/28272";>#28272 v5.2.20.RELEASE :star: New Features Restrict access to property paths on Class references https://redirect.github.com/spring-projects/spring-framework/issues/28262";>#28262 Improve diagnostics in SpEL for large array creation https://redirect.github.com/spring-projects/spring-framework/issues/28257";>#28257 v5.2.19.RELEASE :star: New Features Declare serialVersionUID on DefaultAopProxyFactory https://redirect.github.com/spring-projects/spring-framework/issues/27785";>#27785 Use ByteArrayDecoder in DefaultClientResponse::createException https://redirect.github.com/spring-projects/spring-framework/issues/27667";>#27667 :lady_beetle: Bug Fixes ProxyFactoryBean getObject called before setInterceptorNames, silently creating an invalid proxy [SPR-7582] https://redirect.github.com/spring-projects/spring-framework/issues/27817";>#27817 ... (truncated) Commits See full diff in https://github.com/spring-projects/spring-framework/commits/v5.2.24.RELEASE";>compare view [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.springframework:spring-core&package-manager=maven&previous-version=2.0.8&new-version=5.2.24.RELEASE)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for thi
[jira] [Created] (SSHD-1322) How to identify received LSTAT command is part of PUT command at Server
Sreedhar J created SSHD-1322: Summary: How to identify received LSTAT command is part of PUT command at Server Key: SSHD-1322 URL: https://issues.apache.org/jira/browse/SSHD-1322 Project: MINA SSHD Issue Type: Question Reporter: Sreedhar J >From SFTP client, when I execute PUT , >SFTP Server recieves first LS command SSH_FXP_LSTAT followed by PUT >commands ( SSH_FXP_OPEN, SSH_FXP_WRITE ). where as if we issue PUT < local file>, Server would get the commands as SSH_FXP_OPEN, SSH_FXP_WRITE *So, my question is,at Server level LSTAT command was invoked as part of embeeded PUT command vs normal LSTAT command from sftp client.* -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-ftpserver] elecharny commented on issue #25: Apache FTPServer adapt to Apache MINA 2.2.1
elecharny commented on issue #25: URL: https://github.com/apache/mina-ftpserver/issues/25#issuecomment-1511055722 Hi, that is certainly something to be done... If you want to give it a try... -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-sshd] 07070529 opened a new issue, #360: Apache Mina SSHD adapt to Apache MINA 2.2.x
07070529 opened a new issue, #360: URL: https://github.com/apache/mina-sshd/issues/360 ### Description Hi, I see that Apache MINA 2.2.x rewrites the SSL/TLS layer to address some flaws that were hard to fix in 2.1.x. Apache Mina SSHD depends on Apache MINA, but the latest released version of Apache Mina SSHD (2.9.2) depends on Apache MINA 2.0.23. So, I'd like to ask if there are plans to release a new version of Apache Mina SSHD to adapt to Apache MINA 2.2.x. ![image](https://user-images.githubusercontent.com/42636191/232445217-3149cd18-e079-4675-b455-6eed4b1e81c0.png) ### Motivation The motivation I raise this issue is that we are using Apache MINA and Apache Mina SSHD together. Currently, we are using Apache Mina SSHD version 2.9.2, and we want to use the more secure Apache MINA version 2.2.1. However, Apache MINA 2.2 and 2.1 have incompatible changes (https://mina.apache.org/mina-project/2.2-vs-2.1.html) . Using Apache Mina SSHD 2.9.2 and Apache MINA 2.2.1 together has compatibility issues. Therefore, we wanted to know if there are plans to release a new version of Apache Mina SSHD to adapt to Apache MINA 2.2.x? ### Alternatives considered _No response_ ### Additional context _No response_ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-ftpserver] 07070529 commented on issue #25: Apache FTPServer adapt to Apache MINA 2.2.1
07070529 commented on issue #25: URL: https://github.com/apache/mina-ftpserver/issues/25#issuecomment-1511003707 The motivation I raise this issue is that we are using Apache MINA and Apache FTP Server together. Currently, we are using Apache FTP Server version 1.1.3, and we want to use the more secure Apache MINA version 2.2.1. However, Apache MINA 2.2 and 2.1 have incompatible changes (https://mina.apache.org/mina-project/2.2-vs-2.1.html) . Using Apache FTPServer 1.1.3 with Apache MINA 2.2.1 has compatibility issues. Therefore, we wanted to know if there are plans to release a new version of Apache FTPServer to adapt to Apache MINA 2.2.x? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org
[GitHub] [mina-ftpserver] 07070529 opened a new issue, #25: Apache FTPServer adapt to Apache MINA 2.2.1
07070529 opened a new issue, #25: URL: https://github.com/apache/mina-ftpserver/issues/25 Hi, I see that Apache MINA 2.2.x rewrites the SSL/TLS layer to address some flaws that were hard to fix in 2.1.x. Apache FTPServer depends on Apache MINA, but the latest released version of Apache FTPServer (1.2.0) still depends on Apache MINA 2.1.6. So, I'd like to ask if there are plans to release a new version of Apache FTPServer to adapt to Apache MINA 2.2.x. ![image](https://user-images.githubusercontent.com/42636191/232437534-a7b04520-b0f1-4084-82df-d933926891aa.png) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org - To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org For additional commands, e-mail: dev-h...@mina.apache.org