------------------------------------------------------------------- Mon May 5 19:50:38 UTC 2025 - Lucas Mulling - Update to 20250501: * Fixed minor strict kex violation, thanks to Fabian Bäumer and Marcus Brinkmann for the bug report. * Updated cryptoint to version 20250414 * Added support for external lib1305 - Included from 20250411: * add lib1305 support ------------------------------------------------------------------- Mon Feb 10 19:40:54 UTC 2025 - Lucas Mulling - Update to 20250201: * Relicensed under CC0-1.0 OR 0BSD OR MIT-0 OR MIT * Final reformatting using clang-format - Included from 20241111 to 20250126: * Fixed more compiler warnings * More used cryptoint * Switched to cryptoint * Switched to tests from SUPERCOP for crypto primitives * Fixed various compiler warnings * Fixed implicit-function-declaration warning packet_put.c (tnx @lanodan) * Modification of the build system to a simple Makefile (old build system still in directory 'old') * Added support for external librandombytes, lib25519, libntruprime library * Dropped support for other NaCl-compatible external libraries - Update spec file to new build system - Add tinyssh.keyring - Enable %check on code streams that support it ------------------------------------------------------------------- Thu Jun 13 10:28:06 UTC 2024 - Gus Kenion - Compatibility fix for upcoming gcc14 release. * tinyssh-gcc14-compat.patch adds a missing #include statement that prevents tinyssh from building with gcc14 ------------------------------------------------------------------- Sat Jan 27 16:28:24 UTC 2024 - Dirk Müller - update to 20240101 (bsc#1218197, CVE-2023-48795): * fixed channel_forkpty() race condition between close(slave) in parent process and login_tty(slave) in child process * fixed behavior when using terminal mode and stdin redirected to /dev/null 'ssh -tt -n' * added an 'strict-key' key exchange kex-strict- s-v00@openssh.com (Mitigates CVE-2023-48795 "Terrapin attack") ------------------------------------------------------------------- Mon Jan 2 13:33:39 UTC 2023 - Dirk Müller - update to 20230101: * LICENCE update from public-domain to CC0, * public domain works differently depending on the country, * to avoid it, set explicitly CC0 * fixed sysdep tests, tnx Johannes Nixdorf ------------------------------------------------------------------- Sun Dec 4 13:40:15 UTC 2022 - Dirk Müller - update to 20220801: * tinyssh/getln.c don't close fd in case of error * use null fields in utmpx calls for logout * do not reverse the argument order in LIBS * fill utmp(x)'s ut_addr_v6 field when it exists * updated crypto/crypto_onetimeauth_poly1305.c ------------------------------------------------------------------- Thu May 5 07:05:47 UTC 2022 - Paolo Stivanin - Update to version 20220311: * fixed build on big-endian platforms * use PACKET_LIMIT/2 as incoming maximum packet size, it's workaround for packets with miscalculated packet_length * add tinysshnoneauthd #29 * fixed return error message when second channel is requested * man/tinysshd-{make,print}key.1 -> man/tinysshd-{make,print}key.8 * add tools/tinyssh-convert * fix log error messages * honor "max packet size" requested from the client * removed sntrup4591761x25519-sha512@tinyssh.org * added sntrup761x25519-sha512@openssh.com ------------------------------------------------------------------- Tue Jan 1 21:38:17 UTC 2019 - Karol Babioch - Update to version 20190101 * removed aes256,nistp256,hmacsha256 * added posquantum KEX sntrup4591761x25519-sha512@tinyssh.org ------------------------------------------------------------------- Fri Dec 7 14:39:22 UTC 2018 - Karol Babioch - Update to version 20181206 * tinysshd binary optimized for smaller size * created multi-call tinysshd binary ------------------------------------------------------------------- Sat Feb 3 00:14:55 UTC 2018 - kbabioch@suse.com - Initial package