Ubuntu
openssh package

Merge ~paelzer/ubuntu/+source/openssh:lp-1876320-include-does-apply-defaults-mutliple-times-FOCAL into ubuntu/+source/openssh:ubuntu/focal-devel

  1. Git
  2. lp:~paelzer/ubuntu/+source/openssh
  3. lp-1876320-include-does-apply-defaults-mutliple-times-FOCAL
  4. Merge into ubuntu/focal-devel
Proposed by Christian Ehrhardt 
Status: Merged
Approved by: Christian Ehrhardt 
Approved revision: 66bb859eedd8082b1e3818e084ec42bc38971a8f
Merge reported by: Christian Ehrhardt 
Merged at revision: 66bb859eedd8082b1e3818e084ec42bc38971a8f
Proposed branch: ~paelzer/ubuntu/+source/openssh:lp-1876320-include-does-apply-defaults-mutliple-times-FOCAL
Merge into: ubuntu/+source/openssh:ubuntu/focal-devel
Diff against target: 103 lines (+69/-1)
4 files modified
debian/changelog (+7/-0)
debian/control (+2/-1)
debian/patches/lp-1876320-upstream-Do-not-call-process_queued_listen_addrs-for.patch (+59/-0)
debian/patches/series (+1/-0)
Reviewer Review Type Date Requested Status
Lucas Kanashiro (community) Approve
Canonical Server packageset reviewers Pending
Canonical Server Pending
Review via email: mp+384813@code.launchpad.net
To post a comment you must log in.
Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

PPA: https://launchpad.net/~ci-train-ppa-service/+archive/ubuntu/4080

Note: The SRU template isn't ready yet as I wait for the bug reporter to confirm this works first.

Revision history for this message
Lucas Kanashiro (lucaskanashiro) wrote :

* Changelog:
  - [-] old content and logical tag match as expected
  - [√] changelog entry correct version and targeted codename
  - [√] changelog entries correct
  - [√] update-maintainer has been run

* Actual changes:
  - [-] no upstream changes to consider
  - [-] no further upstream version to consider
  - [-] debian changes look safe

* Old Delta:
  - [-] dropped changes are ok to be dropped
  - [-] nothing else to drop
  - [-] changes forwarded upstream/debian (if appropriate)

* New Delta:
  - [-] no new patches added
  - [√] patches match what was proposed upstream
  - [√] patches correctly included in debian/patches/series
  - [√] patches have correct DEP3 metadata

* Build/Test:
  - [√] build is ok
  - [√] verified PPA package installs/uninstalls
  - [√] autopkgtest against the PPA package passes
  - [√] sanity checks test fine

LGTM, +1.

review: Approve
Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

This is still waiting for the SRU Team

Revision history for this message
Christian Ehrhardt  (paelzer) wrote :

SRU completed

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/debian/changelog b/debian/changelog
2index e9ee5d1..2fc7908 100644
3--- a/debian/changelog
4+++ b/debian/changelog
5@@ -1,3 +1,10 @@
6+openssh (1:8.2p1-4ubuntu0.1) focal; urgency=medium
7+
8+ * d/p/lp-1876320-*: avoid applying defaults for every include statement
9+ (LP: #1876320)
10+
11+ -- Christian Ehrhardt <christian.ehrhardt@canonical.com> Fri, 29 May 2020 09:37:09 +0200
12+
13 openssh (1:8.2p1-4) unstable; urgency=medium
14
15 * Add /etc/ssh/ssh_config.d/ to openssh-client.
16diff --git a/debian/control b/debian/control
17index 98ee018..d6618e9 100644
18--- a/debian/control
19+++ b/debian/control
20@@ -1,7 +1,8 @@
21 Source: openssh
22 Section: net
23 Priority: standard
24-Maintainer: Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>
25+Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
26+XSBC-Original-Maintainer: Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>
27 Build-Depends: autotools-dev,
28 debhelper (>= 9.20160709~),
29 debhelper-compat (= 9),
30diff --git a/debian/patches/lp-1876320-upstream-Do-not-call-process_queued_listen_addrs-for.patch b/debian/patches/lp-1876320-upstream-Do-not-call-process_queued_listen_addrs-for.patch
31new file mode 100644
32index 0000000..43865f5
33--- /dev/null
34+++ b/debian/patches/lp-1876320-upstream-Do-not-call-process_queued_listen_addrs-for.patch
35@@ -0,0 +1,59 @@
36+From 0a9a611619b0a1fecd0195ec86a9885f5d681c84 Mon Sep 17 00:00:00 2001
37+From: "djm@openbsd.org" <djm@openbsd.org>
38+Date: Wed, 27 May 2020 21:59:11 +0000
39+Subject: [PATCH] upstream: Do not call process_queued_listen_addrs() for every
40+
41+included file from sshd_config; patch from Jakub Jelen
42+
43+OpenBSD-Commit-ID: 0ff603d6f06a7fab4881f12503b53024799d0a49
44+
45+Backport-Note:
46+ upstreams auto-tagging at the top of the file didn't
47+ match, everything else applied as-is
48+
49+Origin: backport, https://anongit.mindrot.org/openssh.git/commit/?id=0a9a611619b0a1fecd0195ec86a9885f5d681c84
50+Bug-Ubuntu: https://bugs.launchpad.net/bugs/1876320
51+Last-Update: 2020-05-29
52+
53+---
54+ servconf.c | 10 +++++-----
55+ 1 file changed, 5 insertions(+), 5 deletions(-)
56+
57+--- a/servconf.c
58++++ b/servconf.c
59+@@ -75,8 +75,8 @@ static void add_listen_addr(ServerOption
60+ const char *, int);
61+ static void add_one_listen_addr(ServerOptions *, const char *,
62+ const char *, int);
63+-void parse_server_config_depth(ServerOptions *options, const char *filename,
64+- struct sshbuf *conf, struct include_list *includes,
65++static void parse_server_config_depth(ServerOptions *options,
66++ const char *filename, struct sshbuf *conf, struct include_list *includes,
67+ struct connection_info *connectinfo, int flags, int *activep, int depth);
68+
69+ /* Use of privilege separation or not */
70+@@ -2611,7 +2611,7 @@ copy_set_server_options(ServerOptions *d
71+ #undef M_CP_STRARRAYOPT
72+
73+ #define SERVCONF_MAX_DEPTH 16
74+-void
75++static void
76+ parse_server_config_depth(ServerOptions *options, const char *filename,
77+ struct sshbuf *conf, struct include_list *includes,
78+ struct connection_info *connectinfo, int flags, int *activep, int depth)
79+@@ -2637,7 +2637,6 @@ parse_server_config_depth(ServerOptions
80+ if (bad_options > 0)
81+ fatal("%s: terminating, %d bad configuration options",
82+ filename, bad_options);
83+- process_queued_listen_addrs(options);
84+ }
85+
86+ void
87+@@ -2648,6 +2647,7 @@ parse_server_config(ServerOptions *optio
88+ int active = connectinfo ? 0 : 1;
89+ parse_server_config_depth(options, filename, conf, includes,
90+ connectinfo, 0, &active, 0);
91++ process_queued_listen_addrs(options);
92+ }
93+
94+ static const char *
95diff --git a/debian/patches/series b/debian/patches/series
96index 8c1046a..e9dd67a 100644
97--- a/debian/patches/series
98+++ b/debian/patches/series
99@@ -23,3 +23,4 @@ debian-config.patch
100 restore-authorized_keys2.patch
101 conch-old-privkey-format.patch
102 revert-ipqos-defaults.patch
103+lp-1876320-upstream-Do-not-call-process_queued_listen_addrs-for.patch

Subscribers

People subscribed via source and target branches