[openssh-commits] [openssh] branch master updated (d1c6c67a5 -> 6ebd472c3)

git+noreply at mindrot.org git+noreply at mindrot.org
Tue Aug 5 14:05:44 AEST 2025 

This is an automated email from the git hooks/post-receive script.

djm pushed a change to branch master
in repository openssh.

    from d1c6c67a5 Disable security key tests for bigendian interop
     new 65909fa11 upstream: Set default IPQoS for interactive sessions to Expedited
     new ec3465f59 upstream: Deprecate support for IPv4 type-of-service (TOS) IPQoS
     new 6ebd472c3 upstream: a bunch of the protocol extensions we support now have RFCs

The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit 6ebd472c391a73574abe02771712d407c48e130d
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Tue Aug 5 04:00:15 2025 +0000

    upstream: a bunch of the protocol extensions we support now have RFCs
    
    and I-Ds that are more complete and detailed than what we have in the
    PROTOCOL.* files. Refer to these when possible instead of documenting them
    here.
    
    OpenBSD-Commit-ID: 4fa5b0fcf5d5f24093d33d9e82c7ca4850d50d70

commit ec3465f59c651405e395092f3ad606f8992328d8
Author: job at openbsd.org <job at openbsd.org>
Date:   Thu Jul 31 11:23:39 2025 +0000

    upstream: Deprecate support for IPv4 type-of-service (TOS) IPQoS
    
    keywords
    
    Type of Service (ToS) was deprecated in the late nineties and replaced
    with the Differentiated Services architecture. Diffserv has significant
    advantages for operators because this mechanism offers more granularity.
    
    OpenSSH switched its default IPQoS from ToS to DSCP values in 2018.
    
    IPQoS configurations with 'lowdelay', 'reliability', or 'throughput' will be
    ignored and instead the system default QoS settings apply. Additionally, a
    debug message is logged about the deprecation with a suggestion to use DSCP.
    
    with/OK deraadt@ sthen@ djm@
    
    OpenBSD-Commit-ID: 40c8c0c5cb20151a348728703536af2ec1c754ba

commit 65909fa114e7dd7511800db2b7bacb8774afe887
Author: job at openbsd.org <job at openbsd.org>
Date:   Thu Jul 31 09:38:41 2025 +0000

    upstream: Set default IPQoS for interactive sessions to Expedited
    
    Forwarding (EF)
    
    Marking interactive session data with DSCP value EF (RFC3246, RFC3247)
    helps inform the network on relative priority compared to other traffic.
    This is especially useful for differentiated treatment over wireless media.
    
    Following the reconciled IETF Diffserv to IEEE 802.11 mappings (RFC 8325),
    traffic marked with DSCP value EF maps to User Priority 6 in QoS Control,
    in turn mapping to the high priority WMM AC_VO access category.
    
    OK djm@
    
    OpenBSD-Commit-ID: aadda7b9da794d70d7c6b381a861a0610afce1b3

Summary of changes:
 PROTOCOL                  | 115 +++++++++-------------------------------------
 PROTOCOL.chacha20poly1305 | 107 ------------------------------------------
 misc.c                    |   8 ++--
 readconf.c                |  16 ++++++-
 readconf.h                |   6 +--
 servconf.c                |  16 ++++++-
 ssh_config.5              |  15 +++---
 sshd_config.5             |  15 +++---
 8 files changed, 70 insertions(+), 228 deletions(-)
 delete mode 100644 PROTOCOL.chacha20poly1305

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.

More information about the openssh-commits mailing list