mirror of
https://github.com/clearml/dropbear
synced 2025-02-07 05:17:28 +00:00
Update version to 2022.83, finish CHANGES
This commit is contained in:
Matt Johnston
parent
aa6559db66
commit
5a3bc9fa9c
23
CHANGES
23
CHANGES
@ -1,30 +1,28 @@
|
|||||||
2022.83 -
|
2022.83 - 14 November 2022
|
||||||
|
|
||||||
Features and Changes:
|
Features and Changes:
|
||||||
Note >> for compatibility/configuration changes
|
Note >> for compatibility/configuration changes
|
||||||
|
|
||||||
- >> Disable DROPBEAR_DSS by default
|
- >> Disable DROPBEAR_DSS by default
|
||||||
It is only 1024 bit and uses SHA1, most distros disable it by default already.
|
It is only 1024 bit and uses sha1, most distros disable it by default already.
|
||||||
|
|
||||||
- >> Remove HMAC_MD5 entirely
|
|
||||||
|
|
||||||
- Added DROPBEAR_RSA_SHA1 option to allow disabling sha1 rsa signatures.
|
- Added DROPBEAR_RSA_SHA1 option to allow disabling sha1 rsa signatures.
|
||||||
RSA with sha1 will be disabled in a future release (rsa keys will continue
|
>> RSA with sha1 will be disabled in a future release (rsa keys will continue
|
||||||
to work OK, with sha256 signatures used instead).
|
to work OK, with sha256 signatures used instead).
|
||||||
|
|
||||||
- Add option for requiring both password and pubkey (-t)
|
- Add option for requiring both password and pubkey (-t)
|
||||||
Patch from Jackkal
|
Patch from Jackkal
|
||||||
|
|
||||||
|
- Add 'no-touch-required' and 'verify-required' options for sk keys
|
||||||
|
Patch from Egor Duda
|
||||||
|
|
||||||
- >> DROPBEAR_SK_KEYS config option now replaces separate DROPBEAR_SK_ECDSA
|
- >> DROPBEAR_SK_KEYS config option now replaces separate DROPBEAR_SK_ECDSA
|
||||||
and DROPBEAR_SK_ED25519 options.
|
and DROPBEAR_SK_ED25519 options.
|
||||||
|
|
||||||
- Add 'permitopen' option for authorized_keys to restrict forwarded ports
|
- Add 'permitopen' option for authorized_keys to restrict forwarded ports
|
||||||
Patch from Tuomas Haikarainen
|
Patch from Tuomas Haikarainen
|
||||||
|
|
||||||
- Add 'no-touch-required' and 'verify-required' options for sk keys
|
- >> Added LTM_CFLAGS configure argument to set flags for building
|
||||||
Patch from Egor Duda
|
|
||||||
|
|
||||||
- Added LTM_CFLAGS configure argument to set flags for building
|
|
||||||
bundled libtommath. This also restores the previous arguments used
|
bundled libtommath. This also restores the previous arguments used
|
||||||
in 2020.81 (-O3 -funroll-loops). That gives a big speedup for RSA
|
in 2020.81 (-O3 -funroll-loops). That gives a big speedup for RSA
|
||||||
key generation, which regressed in 2022.82.
|
key generation, which regressed in 2022.82.
|
||||||
@ -33,7 +31,8 @@ Features and Changes:
|
|||||||
Reported by David Bernard
|
Reported by David Bernard
|
||||||
|
|
||||||
- Add '-z' flag to disable setting QoS traffic class. This may be necessary
|
- Add '-z' flag to disable setting QoS traffic class. This may be necessary
|
||||||
to work with broken networks or network drivers.
|
to work with broken networks or network drivers, exposed after changes to use
|
||||||
|
AF21 in 2022.82
|
||||||
https://github.com/mkj/dropbear/issues/193
|
https://github.com/mkj/dropbear/issues/193
|
||||||
Reported by yuhongwei380, patch from Petr Štetiar
|
Reported by yuhongwei380, patch from Petr Štetiar
|
||||||
|
|
||||||
@ -43,6 +42,8 @@ Features and Changes:
|
|||||||
- Improve permission error message
|
- Improve permission error message
|
||||||
Patch from k-kurematsu
|
Patch from k-kurematsu
|
||||||
|
|
||||||
|
- >> Remove HMAC_MD5 entirely
|
||||||
|
|
||||||
Regression fixes from 2022.82:
|
Regression fixes from 2022.82:
|
||||||
|
|
||||||
- Fix X11 build
|
- Fix X11 build
|
||||||
@ -79,7 +80,7 @@ Other fixes:
|
|||||||
https://github.com/mkj/dropbear/pull/190
|
https://github.com/mkj/dropbear/pull/190
|
||||||
Patch from Michele Giacomoli
|
Patch from Michele Giacomoli
|
||||||
|
|
||||||
- Flush the terminal when reading the fingerprint confirmation response
|
- Drain the terminal when reading the fingerprint confirmation response
|
||||||
https://github.com/mkj/dropbear/pull/191
|
https://github.com/mkj/dropbear/pull/191
|
||||||
Patch from Michele Giacomoli
|
Patch from Michele Giacomoli
|
||||||
|
|
||||||
|
|||||||
6
debian/changelog
vendored
6
debian/changelog
vendored
@ -1,3 +1,9 @@
|
|||||||
|
dropbear (2022.83-0.1) unstable; urgency=low
|
||||||
|
|
||||||
|
* New upstream release.
|
||||||
|
|
||||||
|
-- Matt Johnston <matt@ucc.asn.au> Mon, 14 Nov 2022 22:51:57 +0800
|
||||||
|
|
||||||
dropbear (2022.82-0.1) unstable; urgency=low
|
dropbear (2022.82-0.1) unstable; urgency=low
|
||||||
|
|
||||||
* New upstream release.
|
* New upstream release.
|
||||||
|
|||||||
@ -4,7 +4,7 @@
|
|||||||
*******************************************************************/
|
*******************************************************************/
|
||||||
|
|
||||||
#ifndef DROPBEAR_VERSION
|
#ifndef DROPBEAR_VERSION
|
||||||
#define DROPBEAR_VERSION "2022.82"
|
#define DROPBEAR_VERSION "2022.83"
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#define LOCAL_IDENT "SSH-2.0-dropbear_" DROPBEAR_VERSION
|
#define LOCAL_IDENT "SSH-2.0-dropbear_" DROPBEAR_VERSION
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user