Update version to 2022.83, finish CHANGES

2025-02-07 05:17:28 +00:00 · 2022-11-14 10:37:15 +08:00 · 2022-11-14 10:37:15 +08:00 · 5a3bc9fa9c
commit 5a3bc9fa9c
parent aa6559db66
3 changed files with 26 additions and 19 deletions
--- a/23
+++ b/23
@ -1,30 +1,28 @@
-2022.83 - 
+2022.83 - 14 November 2022

 Features and Changes:
  Note >> for compatibility/configuration changes

 - >> Disable DROPBEAR_DSS by default
-  It is only 1024 bit and uses SHA1, most distros disable it by default already.
-
- >> Remove HMAC_MD5 entirely
+  It is only 1024 bit and uses sha1, most distros disable it by default already.

 - Added DROPBEAR_RSA_SHA1 option to allow disabling sha1 rsa signatures.
-  RSA with sha1 will be disabled in a future release (rsa keys will continue
+  >> RSA with sha1 will be disabled in a future release (rsa keys will continue
  to work OK, with sha256 signatures used instead).

 - Add option for requiring both password and pubkey (-t)
  Patch from Jackkal

+- Add 'no-touch-required' and 'verify-required' options for sk keys
+  Patch from Egor Duda
+
  - >> DROPBEAR_SK_KEYS config option now replaces separate DROPBEAR_SK_ECDSA
  and DROPBEAR_SK_ED25519 options.

 - Add 'permitopen' option for authorized_keys to restrict forwarded ports
  Patch from Tuomas Haikarainen

- Add 'no-touch-required' and 'verify-required' options for sk keys
-  Patch from Egor Duda
-
- Added LTM_CFLAGS configure argument to set flags for building
+- >> Added LTM_CFLAGS configure argument to set flags for building
  bundled libtommath. This also restores the previous arguments used
  in 2020.81 (-O3 -funroll-loops). That gives a big speedup for RSA
  key generation, which regressed in 2022.82.
@ -33,7 +31,8 @@ Features and Changes:
  Reported by David Bernard

 - Add '-z' flag to disable setting QoS traffic class. This may be necessary
-  to work with broken networks or network drivers.
+  to work with broken networks or network drivers, exposed after changes to use
+  AF21 in 2022.82
  https://github.com/mkj/dropbear/issues/193
  Reported by yuhongwei380, patch from Petr Štetiar

@ -43,6 +42,8 @@ Features and Changes:
 - Improve permission error message
  Patch from k-kurematsu

+- >> Remove HMAC_MD5 entirely
+
 Regression fixes from 2022.82:

 - Fix X11 build
@ -79,7 +80,7 @@ Other fixes:
  https://github.com/mkj/dropbear/pull/190
  Patch from Michele Giacomoli

- Flush the terminal when reading the fingerprint confirmation response
+- Drain the terminal when reading the fingerprint confirmation response
  https://github.com/mkj/dropbear/pull/191
  Patch from Michele Giacomoli

--- a/debian/changelog
+++ b/debian/changelog
@ -1,3 +1,9 @@
+dropbear (2022.83-0.1) unstable; urgency=low
+
+  * New upstream release.
+
+ -- Matt Johnston <matt@ucc.asn.au>  Mon, 14 Nov 2022 22:51:57 +0800
+
 dropbear (2022.82-0.1) unstable; urgency=low

  * New upstream release.
--- a/sysoptions.h
+++ b/sysoptions.h
@ -4,7 +4,7 @@
 *******************************************************************/

 #ifndef DROPBEAR_VERSION
-#define DROPBEAR_VERSION "2022.82"
+#define DROPBEAR_VERSION "2022.83"
 #endif

 #define LOCAL_IDENT "SSH-2.0-dropbear_" DROPBEAR_VERSION