Revert "upstream: Update default IPQoS in ssh(1), sshd(8) to DSCP AF21 for"

This reverts commit 5ee8448ad7c306f05a9f56769f95336a8269f379. The IPQoS default changes have some unfortunate interactions with iptables (see https://bugs.debian.org/923880) and VMware, so I'm temporarily reverting them until those have been fixed. Bug-Debian: https://bugs.debian.org/923879 Bug-Debian: https://bugs.debian.org/926229 Bug-Ubuntu: https://bugs.launchpad.net/bugs/1822370 Last-Update: 2019-04-08 Patch-Name: revert-ipqos-defaults.patch
author: Colin Watson <cjwatson@debian.org> 2019-04-08 10:46:29 +0100
committer: Colin Watson <cjwatson@debian.org> 2020-06-07 10:25:35 +0100
commit: 39b8d128ef980a410bb1ea0ee80e95ac9fff59c3 (patch)
tree: 8f4b2d0795835960f2591d0555a507e007c843ec
parent: f2697f0c5ff23bc13dce1c90fb4c1c934c02070b (diff)
4 files changed, 8 insertions, 12 deletions
diff --git a/readconf.c b/readconf.c
index 87b0dc62a..9a646dcaa 100644
--- a/readconf.c
+++ b/readconf.c
@@ -2254,9 +2254,9 @@ fill_default_options(Options * options)
        if (options->visual_host_key == -1)
                options->visual_host_key = 0;
        if (options->ip_qos_interactive == -1)
-                options->ip_qos_interactive = IPTOS_DSCP_AF21;
+                options->ip_qos_interactive = IPTOS_LOWDELAY;
        if (options->ip_qos_bulk == -1)
-                options->ip_qos_bulk = IPTOS_DSCP_CS1;
+                options->ip_qos_bulk = IPTOS_THROUGHPUT;
        if (options->request_tty == -1)
                options->request_tty = REQUEST_TTY_AUTO;
        if (options->proxy_use_fdpass == -1)
diff --git a/servconf.c b/servconf.c
index cf4e52f3b..c290e9786 100644
--- a/servconf.c
+++ b/servconf.c
@@ -452,9 +452,9 @@ fill_default_server_options(ServerOptions *options)
        if (options->permit_tun == -1)
                options->permit_tun = SSH_TUNMODE_NO;
        if (options->ip_qos_interactive == -1)
-                options->ip_qos_interactive = IPTOS_DSCP_AF21;
+                options->ip_qos_interactive = IPTOS_LOWDELAY;
        if (options->ip_qos_bulk == -1)
-                options->ip_qos_bulk = IPTOS_DSCP_CS1;
+                options->ip_qos_bulk = IPTOS_THROUGHPUT;
        if (options->version_addendum == NULL)
                options->version_addendum = xstrdup("");
        if (options->fwd_opts.streamlocal_bind_mask == (mode_t)-1)
diff --git a/ssh_config.5 b/ssh_config.5
index aac3fabb7..2574b1004 100644
--- a/ssh_config.5
+++ b/ssh_config.5
@@ -1140,11 +1140,9 @@ If one argument is specified, it is used as the packet class unconditionally.
 If two values are specified, the first is automatically selected for
 interactive sessions and the second for non-interactive sessions.
 The default is
-.Cm af21
+.Cm lowdelay
-(Low-Latency Data)
 for interactive sessions and
-.Cm cs1
+.Cm throughput
-(Lower Effort)
 for non-interactive sessions.
 .It Cm KbdInteractiveAuthentication
 Specifies whether to use keyboard-interactive authentication.
diff --git a/sshd_config.5 b/sshd_config.5
index b38025dbf..88db4db07 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -925,11 +925,9 @@ If one argument is specified, it is used as the packet class unconditionally.
 If two values are specified, the first is automatically selected for
 interactive sessions and the second for non-interactive sessions.
 The default is
-.Cm af21
+.Cm lowdelay
-(Low-Latency Data)
 for interactive sessions and
-.Cm cs1
+.Cm throughput
-(Lower Effort)
 for non-interactive sessions.
 .It Cm KbdInteractiveAuthentication
 Specifies whether to allow keyboard-interactive authentication.
author	Colin Watson <cjwatson@debian.org>	2019-04-08 10:46:29 +0100
committer	Colin Watson <cjwatson@debian.org>	2020-06-07 10:25:35 +0100
commit	39b8d128ef980a410bb1ea0ee80e95ac9fff59c3 (patch)
tree	8f4b2d0795835960f2591d0555a507e007c843ec
parent	f2697f0c5ff23bc13dce1c90fb4c1c934c02070b (diff)