From nobody Tue Feb 07 20:34:24 2023 X-Original-To: dev-commits-src-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4PBFGn1jT1z3ngxf; Tue, 7 Feb 2023 20:34:25 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4PBFGn0vV6z3HHr; Tue, 7 Feb 2023 20:34:25 +0000 (UTC) (envelope-from git@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1675802065; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=j4IlLxFDuKaYs7JeXgimt+3kuySmKnlWqRxJxhwnwjM=; b=HtFbYkZGUmHRDJ+6yhq3exqpLi1f2QVwK7rI/KOGcFjqC6vsdTzj2TStEAjY4+cOrobSCU cZ8RdPll2qQqu9hrF9YvqpHE9Hz64qvacsFzMrZ7hxTMnIDGLpayVPj7JzRjq+AkjfVctk ZbeTNFyo01u4HuqnOXBNex7w1l+aLddkbxKjWhspUem+JqbAc5dnlV7vI+zy4fPDM9ArQT 3FuEPWv2STMPP6eR7vbxfhDyddv7wLIkMF9W88F7eZcr05+DPjecsrfbxWdNwjuzqtj/vO 5NbD65rShGjBiJ1JjCvHb5r4ZdnTRtNqqN0osXSLWKERZCgc/wzerRO2A0hbbw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1675802065; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=j4IlLxFDuKaYs7JeXgimt+3kuySmKnlWqRxJxhwnwjM=; b=NWuBm/2M97g3+e/H/xBPtFRYlvK4immY/9WQILOYuuoi6BjRhLBNVo2DSIg9HoSANagAh+ EwmRndw0bIjEdxwFCv5QqLNQhvdDlLwmvsbt87Emp9+uzqU1CVIrZg4UXLWvifhywh/TuT 6TVAHh0z/Yx5jhnDmIEj3Tqg5jRIAWVYAii8k+n+WUYAOwJvgfzm7sgnUnY4uqI2QfKNbq WH2u6rV0qfUF5d5Tb6ej6htEF8b98hd+bvIu7m0XMja0SKMYnfc7FEbcT3VzcWy1snES34 8zc0klQ42GRtzVn6W8BJ9mA3+1wQ5Y4dePIGp0bpVbpAN2v0iLcY2qlgZV94gg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1675802065; a=rsa-sha256; cv=none; b=ByCTmTdHS+A+rGvHNtg9Rqb3QPnUwU3UdXMV8DQlEsvtGzYPxNW73rD5C/3zN/U80UBYQZ jar2e/YsDRCrUgez85BJeQNb3Lpw2KSw6/EaFTDowPbCdcfFwV0DmzO5uIVtqfxxXkH846 ZaFDh9LguOaqyk29eOxgo7pvcZvJvdFYNz0v4iXDzYK0/4K3brJljmHZmzxQfOWLSUGirK DoLh4x1EmDFHpH2r83/3k8g4ME7NpWPiJRtSyroUxhehtpS0P4BdFIqjkSxJBQIeAWgcfx 52duNcuFVfYZQtCacMVI2UVy2Av/RigRN7os4LNNOWaLG9608dmV9+wsy7u4Ig== Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4PBFGm6r7dzVtK; Tue, 7 Feb 2023 20:34:24 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.16.1/8.16.1) with ESMTP id 317KYO3t065883; Tue, 7 Feb 2023 20:34:24 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.16.1/8.16.1/Submit) id 317KYO0M065882; Tue, 7 Feb 2023 20:34:24 GMT (envelope-from git) Date: Tue, 7 Feb 2023 20:34:24 GMT Message-Id: <202302072034.317KYO0M065882@gitrepo.freebsd.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-main@FreeBSD.org From: Ed Maste Subject: git: 232b4f33b435 - main - ssh: add information on hostname canonicalization patch List-Id: Commit messages for the main branch of the src repository List-Archive: https://lists.freebsd.org/archives/dev-commits-src-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-src-main@freebsd.org X-BeenThere: dev-commits-src-main@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: emaste X-Git-Repository: src X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: 232b4f33b4352cc84f3f07721345117d2486b013 Auto-Submitted: auto-generated X-ThisMailContainsUnwantedMimeParts: N The branch main has been updated by emaste: URL: https://cgit.FreeBSD.org/src/commit/?id=232b4f33b4352cc84f3f07721345117d2486b013 commit 232b4f33b4352cc84f3f07721345117d2486b013 Author: Ed Maste AuthorDate: 2023-02-07 20:09:30 +0000 Commit: Ed Maste CommitDate: 2023-02-07 20:34:11 +0000 ssh: add information on hostname canonicalization patch We introduced hostname canonicalization in 2002, while upstream OpenSSH added similar support in 2014. It would be good to review our handling of CNAMEs in hostname canonicalization. Sponsored by: The FreeBSD Foundation --- crypto/openssh/FREEBSD-upgrade | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/crypto/openssh/FREEBSD-upgrade b/crypto/openssh/FREEBSD-upgrade index 5f0e399deb04..bc1122768790 100644 --- a/crypto/openssh/FREEBSD-upgrade +++ b/crypto/openssh/FREEBSD-upgrade @@ -130,6 +130,10 @@ reading options but before trying to connect. This eliminates the usual problem with duplicate known_hosts entries. + We added this support in 2002 (r99054 / bf2e2524a2ce). In 2014 + upstream introduced CanonicalDomains and related options to serve a + similar purpose but they require environment-specific configuration. + 4) setusercontext() environment Our setusercontext(3) can set environment variables, which we must