Dropbear 0.46 released

Matt Johnston matt at ucc.asn.au
Sat Jul 9 04:05:25 WST 2005


Dropbear 0.46 is now released, with various bugfixes. For
details, see the CHANGES excerpt below.

I've been using monotone (http://venge.net/monotone) for
version control for a while, and have finally made the
repository publicly available. If you want to get a copy of
the latest Dropbear source, you need monotone 0.20 or later.
The basic steps to get current head:

monotone -d dropbear.db db init
monotone -d dropbear.db pull monotone.ucc.asn.au "au.asn.ucc.matt.dropbear*"
monotone -d dropbear.db -b au.asn.ucc.matt.dropbear co dropbear
cd dropbear
monotone co -b au.asn.ucc.matt.dropbear.ltc libtomcrypt
monotone co -b au.asn.ucc.matt.dropbear.ltm libtommath

You can update your local repository with "monotone pull"
in the working directory, and "monotone up" to update the
directory. The monotone website has some good documentation
on usage.

Alternatively, 
http://viewmtn.angrygoats.net/headofbranch.psp?branch=au.asn.ucc.matt.dropbear
is a web interface for the repository.

Matt


0.46 - Sat July 9 2005

- Fix long-standing bug which caused connections to be closed if an ssh-agent
  socket was no longer available

- Print a warning if we seem to be blocking on /dev/random 
  (suggested by Paul Fox)

- Fixed a memory leak in DSS code (thanks to Boris Berezovsky for the patch)

- dbclient -L no longer segfaults, allocate correct buffer size (thanks
  to David Cook for reporting it, and Christopher Faylor for independently
  sending in a patch)

- Added RSA blinding to signing code (suggested by Dan Kaminsky)

- Rearranged bignum reading/random generation code

- Reset the non-blocking status on stderr and stdout as well as stdin,
  fixes a problem where the shell running dbclient will exit (thanks to 
  Brent Roman for reporting it)

- Fix so that all file descriptors are closed so the child shell doesn't
  inherit descriptors (thanks to Linden May for the patch)

- Change signkey.c to avoid gcc 4 generating incorrect code

- After both sides of a file descriptor have been shutdown(), close()
  it to avoid leaking descriptors (thanks to Ari Hyttinen for a patch)

- Update to LibTomCrypt 1.05 and LibTomMath 0.35


More information about the Dropbear mailing list