From 232b4f33b4352cc84f3f07721345117d2486b013 Mon Sep 17 00:00:00 2001
From: Ed Maste <emaste@FreeBSD.org>
Date: Tue, 7 Feb 2023 15:09:30 -0500
Subject: [PATCH] ssh: add information on hostname canonicalization patch

We introduced hostname canonicalization in 2002, while upstream OpenSSH
added similar support in 2014.

It would be good to review our handling of CNAMEs in hostname
canonicalization.

Sponsored by:	The FreeBSD Foundation
---
 crypto/openssh/FREEBSD-upgrade | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/crypto/openssh/FREEBSD-upgrade b/crypto/openssh/FREEBSD-upgrade
index 5f0e399deb04..bc1122768790 100644
--- a/crypto/openssh/FREEBSD-upgrade
+++ b/crypto/openssh/FREEBSD-upgrade
@@ -130,6 +130,10 @@
    reading options but before trying to connect.  This eliminates the
    usual problem with duplicate known_hosts entries.
 
+   We added this support in 2002 (r99054 / bf2e2524a2ce).  In 2014
+   upstream introduced CanonicalDomains and related options to serve a
+   similar purpose but they require environment-specific configuration.
+
 4) setusercontext() environment
 
    Our setusercontext(3) can set environment variables, which we must