Asyncssh

---------------------------

* Added basic support for running AsyncSSH on Windows. Some functionality
such as UNIX domain sockets will not work there, and the test suite will
not run there yet, but basic functionality has been tested and seems
to work. This includes features like bcrypt and support for newer
ciphers provided by libnacl when these optional packages are installed.

* Greatly improved the performance of known_hosts matching on exact
hostnames and addresses. Full wildcard pattern matching is still
supported, but entries involving exact hostnames or addresses are
now matched thousands of times faster.

* Split known_hosts parsing and matching into separate calls so that a
known_hosts file can be parsed once and used to make connections to
several different hosts. Thanks go to Josh Yudaken for suggesting
this and providing a sample implementation.

* Updated AsyncSSH to allow SSH agent forwarding when it is requested
even when local client keys are used to perform SSH authentication.

* Updaded channel state machine to better handle close being received
while the channel is paused for reading. Previously, some data would
not be delivered in this case.

* Set TCP_NODELAY on sockets to avoid latency problems caused by TCP
delayed ACK.

* Fixed a bug where exceptions were not always returned properly when
attempting to drain writes on a stream.

* Fixed a bug which could leak a socket object after an error opening
a local TCP listening socket.

* Fixed a number of race conditions uncovered during unit testing.

---------------------------

* Added support for OpenSSH-compatible direct and forwarded UNIX domain
socket channels and local and remote UNIX domain socket forwarding.

* Added support for client and server side ssh-agent forwarding.

* Fixed the open_connection() method on SSHServerConnection to not include
a handler_factory argument. This should only have been present on the
start_server() method.

* Fixed wait_closed() on SSHForwardListener to work properly when a
close is in progress at the time of the call.

---------------------------

* Fixed a bug in SFTP introduced in 1.4.0 related to handling of
responses to non-blocking file closes.

* Updated code to avoid calling asyncio.async(), deprecated in
Python 3.4.4.

* Updated unit tests to avoid errors on systems with an older version
of OpenSSL installed.

---------------------------

* Added ssh-agent client support, automatically using it when SSH_AUTH_SOCK
is set and client private keys aren't explicitly provided.

* Added new wait_closed() API on SSHConnection to allow applications to wait
for a connection to be fully closed and updated examples to use it.

* Added a new login_timeout argument when create an SSH server.

* Added a missing acknowledgement response when canceling port forwarding
and fixed a few other issues related to cleaning up port forwarding
listeners.

* Added handlers to improve the catching and reporting of exceptions that
are raised in asynchronous tasks.

* Reworked channel state machine to perform clean up on a channel only
after a close is both sent and received.

* Fixed SSHChannel to run the connection_lost() handler on the SSHSession
before unblocking callers of wait_closed().

* Fixed wait_closed() on SSHListener to wait for the acknowledgement from
the SSH server before returning.

* Fixed a race condition in port forwarding code.

* Fixed a bug related to sending a close on a channel which got a failure
when being opened.

* Fixed a bug related to handling term_type being set without term_size.

* Fixed some issues related to the automatic conversion of client
keyboard-interactive auth to password auth. With this change, automatic
conversion will only occur if the application doesn't override the
kbdint_challenge_received() method and it will only attempt to
authenticate once with the password provided.

---------------------------

* Added server-side support for handling password changes during password
authentication, and fixed a few other auth-related bugs.

* Added the ability to override the automatic support for keyboard-interactive
authentication when password authentication is supported.

* Fixed a race condition in unblocking streams.

* Removed support for OpenSSH v00 certificates now that OpenSSH no longer
supports them.

* Added unit tests for auth module.

--------------------------

* Updated AsyncSSH to depend on version 1.1 or later of PyCA and added
support for using its new Elliptic Curve Diffie Hellman (ECDH)
implementation, replacing the previous AsyncSSH native Python
version.

* Added support for specifying a passphrase in the create_connection,
create_server, connect, and listen functions to allow file names
or byte strings containing encrypted client and server host keys
to be specified in those calls.

* Fixed handling of cancellation in a few AsyncSSH calls, so it is
now possible to make calls to things like stream read or drain which
time out.

* Fixed a bug in keyboard-interactive fallback to password auth which
was introduced when support was added for auth functions optionally
being coroutines.

* Move bcrypt check in encrypted key handling until it is needed so
better errors can be returned if a passphrase is not specified or the
key derivation function used in a key is unknown.

* Added unit tests for the auth_keys module.

* Updated unit tests to better handle bcrypt or libnacl not being
installed.