Ubuntu
openssl package

Merge ~schopin/ubuntu/+source/openssl:merge-lp1974035-kinetic into ubuntu/+source/openssl:debian/sid

Proposed by Simon Chopin on 2022-05-23

Status:

Work in progress

Proposed branch:

~schopin/ubuntu/+source/openssl:merge-lp1974035-kinetic

Merge into:

ubuntu/+source/openssl:debian/sid

Diff against target:

5913 lines (+5452/-13)

49 files modified

debian/README.debian (+0/-8)
debian/changelog (+524/-0)
debian/control (+4/-1)
debian/libssl3.postinst (+226/-0)
debian/libssl3.templates (+42/-0)
debian/patches/Drop-the-last-ossl_init_casecmp-call.patch (+36/-0)
debian/patches/Set-systemwide-default-settings-for-libssl-users.patch (+2/-3)
debian/patches/lp1947588.patch (+97/-0)
debian/patches/series (+11/-0)
debian/patches/skip_tls1.1_seclevel3_tests.patch (+51/-0)
debian/patches/strcasecmp-implement-strcasecmp-and-strncasecmp.patch (+215/-0)
debian/patches/tests-use-seclevel-1.patch (+235/-0)
debian/patches/tls1.2-min-seclevel2.patch (+63/-0)
debian/patches/tolower-refine-the-tolower-code-to-avoid-a-memory-ac.patch (+139/-0)
debian/po/ar.po (+108/-0)
debian/po/ca.po (+117/-0)
debian/po/cs.po (+119/-0)
debian/po/da.po (+119/-0)
debian/po/de.po (+119/-0)
debian/po/el.po (+115/-0)
debian/po/es.po (+153/-0)
debian/po/eu.po (+114/-0)
debian/po/fi.po (+121/-0)
debian/po/fr.po (+128/-0)
debian/po/gl.po (+108/-0)
debian/po/hu.po (+101/-0)
debian/po/it.po (+117/-0)
debian/po/ja.po (+109/-0)
debian/po/ko.po (+104/-0)
debian/po/lt.po (+124/-0)
debian/po/ml.po (+106/-0)
debian/po/nb.po (+117/-0)
debian/po/nl.po (+130/-0)
debian/po/pl.po (+120/-0)
debian/po/pt.po (+115/-0)
debian/po/pt_BR.po (+131/-0)
debian/po/ro.po (+115/-0)
debian/po/ru.po (+119/-0)
debian/po/sk.po (+113/-0)
debian/po/sv.po (+126/-0)
debian/po/ta.po (+95/-0)
debian/po/templates.pot (+95/-0)
debian/po/tr.po (+118/-0)
debian/po/uk.po (+105/-0)
debian/po/vi.po (+107/-0)
debian/po/zh_CN.po (+106/-0)
debian/po/zh_TW.po (+98/-0)
debian/rules (+14/-0)
debian/tests/control (+1/-1)

Related bugs:

Bug #1947588: Infinite Loop in OpenSSL s_server	Medium	Fix Released
Bug #1972056: [openssl3] please sync openssl.cnf to ease changing security level	Medium	Fix Released
Bug #1974035: openssl: Merge 3.0.3-4 from Debian unstable	High	Fix Released
Bug #1974037: openssl: EVP_EC_gen() segfault without init	High	Fix Released

Link a bug report

Reviewer	Date Requested	Status
Canonical Server	2022-05-23	Pending
git-ubuntu import	2022-05-23	Pending
Review via email: mp+423153@code.launchpad.net

~schopin/ubuntu/+source/openssl:merge-lp1974035-kinetic updated on 2022-05-25

62a67b5... by Simon Chopin on 2022-05-25: changelog
0732d43... by Simon Chopin on 2022-05-25: update maintainer
3a03b0d... by Simon Chopin on 2022-05-25: Add some more string comparison fixes (LP: #1974037)
8792f08... by Simon Chopin on 2022-05-25: d/p/Set-systemwide-default-settings-for-libssl-users: partially apply
it on Ubuntu to make it easier for user to change security level (LP: #1972056)
2783af1... by Simon Chopin on 2022-05-25: d/p/lp1947588.patch: Cherry-picked as our patches make it very easy to
trigger the underlying bug (LP: #1947588)

Unmerged commits

62a67b5... by Simon Chopin on 2022-05-25: changelog
0732d43... by Simon Chopin on 2022-05-25: update maintainer
f9528ea... by Simon Chopin on 2022-05-23: merge changelog
2783af1... by Simon Chopin on 2022-05-25: d/p/lp1947588.patch: Cherry-picked as our patches make it very easy to
trigger the underlying bug (LP: #1947588)
8792f08... by Simon Chopin on 2022-05-25: d/p/Set-systemwide-default-settings-for-libssl-users: partially apply
it on Ubuntu to make it easier for user to change security level (LP: #1972056)
3a03b0d... by Simon Chopin on 2022-05-25: Add some more string comparison fixes (LP: #1974037)
612dcb0... by Simon Chopin on 2022-05-23: d/p/skip_tls1.1_seclevel3_tests.patch: new Ubuntu-specific patch for the
testsuite
b2fb401... by Simon Chopin on 2022-05-23: Use perl:native in the autopkgtest for installability on i386.
dfd5382... by Simon Chopin on 2022-05-23: Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
below 1.2 and update documentation. Previous default of 1, can be set
by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
using ':@SECLEVEL=1' CipherString value in openssl.cfg.
2720a0b... by Simon Chopin on 2022-05-23: Revert "Enable system default config to enforce TLS1.2 as a
minimum" & "Increase default security level from 1 to 2".

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

The diff has been truncated for viewing.

Subscribers

People subscribed via source and target branches

to all changes:

Simon Chopin

git-ubuntu developers

Ubuntu
openssl package

Merge ~schopin/ubuntu/+source/openssl:merge-lp1974035-kinetic into ubuntu/+source/openssl:debian/sid

Commit message

Description of the change

Unmerged commits

Preview Diff

Subscribers

 diff --git a/debian/README.debian b/debian/README.debian
 index 5013c4d..c438c5f 100644
 --- a/debian/README.debian
 +++ b/debian/README.debian
@@ -11,14 +11,6 @@ Instead of `<application>` please call now `openssl <application>`
  eg:
  instead of `req` please call `openssl req`
--TLS protovol version and RSA key size
---------------------------------------
--The default system global policy is to support TLSv1.2+ and security level two.
--Please see
--  https://www.openssl.org/docs/man1.1.1/man5/config.html
--  https://www.openssl.org/docs/man1.1.1/man3/SSL_CTX_set_security_level.html#DEFAULT-CALLBACK-BEHAVIOUR
--for configurations details of `MinProtocol' and `CipherString' in
--/etc/ssl/openssl.cnf case you really require to support legacy systems.
  PATENT ISSUES
  -------------
 diff --git a/debian/changelog b/debian/changelog
 index 652f86c..ffad16c 100644
 --- a/debian/changelog
 +++ b/debian/changelog
@@ -1,3 +1,33 @@
++openssl (3.0.3-5ubuntu1) kinetic; urgency=medium
++
++  * Merge with Debian unstable (LP: #1974035):
++    Remaining change:
++    - Replace duplicate files in the doc directory with symlinks.
++    - d/libssl3.postinst: Revert Debian deletion
++      + Skip services restart & reboot notification if needrestart is in-use.
++      + Bump version check to to 1.1.1.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++      + Import libraries/restart-without-asking template as used by above.
++    - Add support for building with noudeb build profile.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
++      level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
++      below 1.2 and update documentation. Previous default of 1, can be set
++      by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
++      using ':@SECLEVEL=1' CipherString value in openssl.cfg.
++    - Use perl:native in the autopkgtest for installability on i386.
++    - d/p/skip_tls1.1_seclevel3_tests.patch: new Ubuntu-specific patch for the
++      testsuite
++  * Add some more string comparison fixes (LP: #1974037)
++  * d/p/Set-systemwide-default-settings-for-libssl-users: partially apply it on
++    Ubuntu to make it easier for user to change security level (LP: #1972056)
++  * d/p/lp1947588.patch: Cherry-picked as our patches make it very easy to
++    trigger the underlying bug (LP: #1947588)
++
++ -- Simon Chopin <schopin@ubuntu.com>  Tue, 31 May 2022 09:49:54 +0200
++
  openssl (3.0.3-5) unstable; urgency=medium
    * Don't generate endbr32 opcodes on i386. Thanks to Wolfgang Walter
@@ -47,6 +77,14 @@ openssl (3.0.3-1) experimental; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Fri, 06 May 2022 22:21:52 +0200
++openssl (3.0.3-0ubuntu1) kinetic; urgency=medium
++
++  * New upstream release (LP: #1968997):
++    - d/p/CVE-2022-*: dropped, present upstream
++    - d/p/c_rehash-compat.patch: refreshed
++
++ -- Simon Chopin <simon.chopin@canonical.com>  Thu, 05 May 2022 10:56:04 +0200
++
  openssl (3.0.2-1) experimental; urgency=medium
    * Import 3.0.2
@@ -55,6 +93,40 @@ openssl (3.0.2-1) experimental; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Tue, 15 Mar 2022 20:54:57 +0100
++openssl (3.0.2-0ubuntu2) kinetic; urgency=medium
++
++  * SECURITY UPDATE: c_rehash script allows command injection
++    - debian/patches/CVE-2022-1292.patch: do not use shell to invoke
++      openssl in tools/c_rehash.in.
++    - CVE-2022-1292
++  * SECURITY UPDATE: OCSP_basic_verify may incorrectly verify the response
++    signing certificate
++    - debian/patches/CVE-2022-1343-1.patch: fix OCSP_basic_verify signer
++      certificate validation in crypto/ocsp/ocsp_vfy.c.
++    - debian/patches/CVE-2022-1343-2.patch: test ocsp with invalid
++      responses in test/recipes/80-test_ocsp.t.
++    - CVE-2022-1343
++  * SECURITY UPDATE: incorrect MAC key used in the RC4-MD5 ciphersuite
++    - debian/patches/CVE-2022-1434.patch: fix the RC4-MD5 cipher in
++      providers/implementations/ciphers/cipher_rc4_hmac_md5.c,
++      test/recipes/30-test_evp_data/evpciph_aes_stitched.txt,
++      test/recipes/30-test_evp_data/evpciph_rc4_stitched.txt.
++    - CVE-2022-1434
++  * SECURITY UPDATE: resource leakage when decoding certificates and keys
++    - debian/patches/CVE-2022-1473.patch: fix bug in OPENSSL_LH_flush in
++      crypto/lhash/lhash.c.
++    - CVE-2022-1473
++
++ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Tue, 03 May 2022 12:01:34 -0400
++
++openssl (3.0.2-0ubuntu1) jammy; urgency=medium
++
++  * New upstream bugfix release (LP: #1965141)
++  * d/p/skip_tls1.1_seclevel3_tests.patch: new Ubuntu-specific patch for the
++    testsuite
++
++ -- Simon Chopin <simon.chopin@canonical.com>  Wed, 16 Mar 2022 09:35:51 +0100
++
  openssl (3.0.1-1) experimental; urgency=medium
    * Import 3.0.1
@@ -66,6 +138,60 @@ openssl (3.0.1-1) experimental; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Mon, 27 Dec 2021 11:44:50 +0100
++openssl (3.0.1-0ubuntu1) jammy; urgency=medium
++
++  * New upstream release (LP: #1955026).
++    + Dropped patches, merged upstream:
++      - d/p/double-engine-load*
++      - d/p/Add-null-digest-implementation-to-the-default-provid.patch
++      - d/p/Don-t-create-an-ECX-key-with-short-keys.patch
++    + Refreshed patches:
++      - d/p/c_rehash-compat.patch
++
++ -- Simon Chopin <simon.chopin@canonical.com>  Thu, 16 Dec 2021 09:10:48 +0100
++
++openssl (3.0.0-1ubuntu2) jammy; urgency=medium
++
++  * Cherry-pick upstream fixes to prevent double engine loading (LP: #1951943)
++
++ -- Julian Andres Klode <juliank@ubuntu.com>  Tue, 07 Dec 2021 17:15:51 +0100
++
++openssl (3.0.0-1ubuntu1) jammy; urgency=medium
++
++  * Manual merge of version 3.0.0-1 from Debian experimental, remaining
++    changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers, unless needrestart is available.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++      + Skip services restart & reboot notification if needrestart is in-use.
++      + Bump version check to to 1.1.1.
++      + Import libraries/restart-without-asking template as used by above.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Reword the NEWS entry, as applicable on Ubuntu.
++    - Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
++      level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
++      below 1.2 and update documentation. Previous default of 1, can be set
++      by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
++      using ':@SECLEVEL=1' CipherString value in openssl.cfg.
++    - Add support for building with noudeb build profile.
++  * d/p/Don-t-create-an-ECX-key-with-short-keys.patch:
++    Backported from upstream to fix a regression with short keys (LP: #1946213)
++  * d/p/Add-null-digest-implementation-to-the-default-provid.patch:
++    Backported from upstream to fix a compatibility issue with 1.1.1l
++  * Manually call dh_installdirs to fix build failure
++  * Drop some Ubuntu patches merged upstream
++    + The s390x series (00xx) has been applied upstream
++    + The lp-1927161 Intel CET series has been applied upstream
++    + CVE-2021-3449 has been fixed upstream
++    + CVE-2021-3450 doesn't apply to 3.0 branch
++  * Refresh and adapt the remaining patches
++
++ -- Simon Chopin <simon.chopin@canonical.com>  Mon, 20 Sep 2021 18:09:50 +0200
++
  openssl (3.0.0-1) experimental; urgency=medium
    * Import 3.0.0.
@@ -140,6 +266,152 @@ openssl (3.0.0~~alpha1-1) experimental; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Sat, 25 Apr 2020 23:08:44 +0200
++openssl (1.1.1j-1ubuntu4) impish; urgency=medium
++
++  * Split d/p/pr12272.patch into multiple patchfiles to fix dpkg-source
++    error when attempting to build a source package, due to pr12272.patch
++    patching files multiple times within the same patch. (LP: #1927161)
++    - d/p/lp-1927161-1-x86-Add-endbranch-to-indirect-branch-targets-fo.patch
++    - d/p/lp-1927161-2-Use-swapcontext-for-Intel-CET.patch
++    - d/p/lp-1927161-3-x86-Always-generate-note-gnu-property-section-f.patch
++    - d/p/lp-1927161-4-x86_64-Always-generate-note-gnu-property-sectio.patch
++    - d/p/lp-1927161-5-x86_64-Add-endbranch-at-function-entries-for-In.patch
++
++ -- Matthew Ruffell <matthew.ruffell@canonical.com>  Wed, 05 May 2021 11:49:27 +1200
++
++openssl (1.1.1j-1ubuntu3) hirsute; urgency=medium
++
++  * SECURITY UPDATE: NULL pointer deref in signature_algorithms processing
++    - debian/patches/CVE-2021-3449-1.patch: fix NULL pointer dereference in
++      ssl/statem/extensions.c.
++    - debian/patches/CVE-2021-3449-2.patch: teach TLSProxy how to encrypt
++      <= TLSv1.2 ETM records in util/perl/TLSProxy/Message.pm.
++    - debian/patches/CVE-2021-3449-3.patch: add a test to
++      test/recipes/70-test_renegotiation.t.
++    - debian/patches/CVE-2021-3449-4.patch: ensure buffer/length pairs are
++      always in sync in ssl/s3_lib.c, ssl/ssl_lib.c,
++      ssl/statem/extensions.c, ssl/statem/extensions_clnt.c,
++      ssl/statem/statem_clnt.c, ssl/statem/statem_srvr.c.
++    - CVE-2021-3449
++  * SECURITY UPDATE: CA cert check bypass with X509_V_FLAG_X509_STRICT
++    - debian/patches/CVE-2021-3450-1.patch: do not override error return
++      value by check_curve in crypto/x509/x509_vfy.c,
++      test/verify_extra_test.c.
++    - debian/patches/CVE-2021-3450-2.patch: fix return code check in
++      crypto/x509/x509_vfy.c.
++    - CVE-2021-3450
++
++ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 25 Mar 2021 11:44:30 -0400
++
++openssl (1.1.1j-1ubuntu2) hirsute; urgency=medium
++
++  * No-change upload to pick up lto.
++
++ -- Matthias Klose <doko@ubuntu.com>  Tue, 23 Mar 2021 15:24:20 +0100
++
++openssl (1.1.1j-1ubuntu1) hirsute; urgency=medium
++
++  * Merge from Debian unstable.  Remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers, unless needrestart is available.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++      + Skip services restart & reboot notification if needrestart is in-use.
++      + Bump version check to to 1.1.1.
++      + Import libraries/restart-without-asking template as used by above.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Reword the NEWS entry, as applicable on Ubuntu.
++    - Cherrypick s390x SIMD acceleration patches for poly1305 and chacha20
++      and ECC from master.
++    - Use perl:native in the autopkgtest for installability on i386.
++    - Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
++      level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
++      below 1.2 and update documentation. Previous default of 1, can be set
++      by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
++      using ':@SECLEVEL=1' CipherString value in openssl.cfg.
++    - Import https://github.com/openssl/openssl/pull/12272.patch to enable
++      CET.
++  * Add support for building with noudeb build profile.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Tue, 23 Feb 2021 22:01:12 +0000
++
++openssl (1.1.1j-1) unstable; urgency=medium
++
++  * New upstream version.
++   - CVE-2021-23841 (NULL pointer deref in X509_issuer_and_serial_hash()).
++   - CVE-2021-23840 (Possible overflow of the output length argument in
++     EVP_CipherUpdate(), EVP_EncryptUpdate() and EVP_DecryptUpdate()).
++
++ -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Tue, 16 Feb 2021 20:50:01 +0100
++
++openssl (1.1.1i-3ubuntu2) hirsute; urgency=medium
++
++  * No-change rebuild to drop the udeb package.
++
++ -- Matthias Klose <doko@ubuntu.com>  Mon, 22 Feb 2021 10:35:47 +0100
++
++openssl (1.1.1i-3ubuntu1) hirsute; urgency=medium
++
++  * Merge from Debian unstable.  Remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers, unless needrestart is available.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++      + Skip services restart & reboot notification if needrestart is in-use.
++      + Bump version check to to 1.1.1.
++      + Import libraries/restart-without-asking template as used by above.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Reword the NEWS entry, as applicable on Ubuntu.
++    - Cherrypick s390x SIMD acceleration patches for poly1305 and chacha20
++      and ECC from master.
++    - Use perl:native in the autopkgtest for installability on i386.
++    - Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
++      level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
++      below 1.2 and update documentation. Previous default of 1, can be set
++      by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
++      using ':@SECLEVEL=1' CipherString value in openssl.cfg.
++    - Import https://github.com/openssl/openssl/pull/12272.patch to enable
++      CET.
++
++  * Drop many patches included upstream.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Mon, 08 Feb 2021 11:08:21 +0000
++
++openssl (1.1.1i-3) unstable; urgency=medium
++
++  * Cherry-pick a patch from upstream to address #13931.
++  * Enable LFS. Thanks to Dan Nicholson for debugging (Closes: #923479).
++
++ -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Sat, 30 Jan 2021 14:06:46 +0100
++
++openssl (1.1.1i-2) unstable; urgency=medium
++
++  * Apply two patches from upstream to address x509 related regressions.
++
++ -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Sun, 17 Jan 2021 20:08:26 +0100
++
++openssl (1.1.1i-1) unstable; urgency=medium
++
++  * New upstream version.
++    - CVE-2020-1971 (EDIPARTYNAME NULL pointer de-reference).
++    - Restore rejection of expired trusted (root) certificate
++      (Closes: #976465).
++
++ -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Tue, 08 Dec 2020 20:32:32 +0100
++
++openssl (1.1.1h-1) unstable; urgency=medium
++
++  * New upstream version
++  * Disable CAPI engine, it is designed for Windows.
++
++ -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Sun, 11 Oct 2020 00:00:47 +0200
++
  openssl (1.1.1g-1) unstable; urgency=medium
    * New upstream version
@@ -147,6 +419,87 @@ openssl (1.1.1g-1) unstable; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Tue, 21 Apr 2020 21:45:21 +0200
++openssl (1.1.1f-1ubuntu5) hirsute; urgency=medium
++
++  * SECURITY UPDATE: EDIPARTYNAME NULL pointer de-ref
++    - debian/patches/CVE-2020-1971-1.patch: use explicit tagging for
++      DirectoryString in crypto/x509v3/v3_genn.c.
++    - debian/patches/CVE-2020-1971-2.patch: correctly compare EdiPartyName
++      in crypto/x509v3/v3_genn.c.
++    - debian/patches/CVE-2020-1971-3.patch: check that multi-strings/CHOICE
++      types don't use implicit tagging in crypto/asn1/asn1_err.c,
++      crypto/asn1/tasn_dec.c, crypto/err/openssl.txt,
++      include/openssl/asn1err.h.
++    - debian/patches/CVE-2020-1971-4.patch: complain if we are attempting
++      to encode with an invalid ASN.1 template in crypto/asn1/asn1_err.c,
++      crypto/asn1/tasn_enc.c, crypto/err/openssl.txt,
++      include/openssl/asn1err.h.
++    - debian/patches/CVE-2020-1971-5.patch: add a test for GENERAL_NAME_cmp
++      in test/v3nametest.c.
++    - debian/patches/CVE-2020-1971-6.patch: add a test for
++      encoding/decoding using an invalid ASN.1 Template in
++      test/asn1_decode_test.c, test/asn1_encode_test.c.
++    - CVE-2020-1971
++
++ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Tue, 08 Dec 2020 12:33:52 -0500
++
++openssl (1.1.1f-1ubuntu4) groovy; urgency=medium
++
++  * Cherrypick upstream fix for non-interactive detection on Linux. LP:
++    #1879826
++  * Cherrypick AES CTR-DRGB: performance improvement LP: #1799928
++  * Skip services restart & reboot notification if needrestart is in-use
++    LP: #1895708
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Tue, 15 Sep 2020 18:04:36 +0100
++
++openssl (1.1.1f-1ubuntu3) groovy; urgency=medium
++
++  * Import https://github.com/openssl/openssl/pull/12272.patch to enable
++    CET.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Thu, 25 Jun 2020 14:18:43 +0100
++
++openssl (1.1.1f-1ubuntu2) focal; urgency=medium
++
++  * SECURITY UPDATE: Segmentation fault in SSL_check_chain
++    - debian/patches/CVE-2020-1967-1.patch: add test for CVE-2020-1967 in
++      test/recipes/70-test_sslsigalgs.t.
++    - debian/patches/CVE-2020-1967-2.patch: fix NULL dereference in
++      SSL_check_chain() for TLS 1.3 in ssl/t1_lib.c.
++    - debian/patches/CVE-2020-1967-3.patch: fix test in
++      test/recipes/70-test_sslsigalgs.t.
++    - debian/patches/CVE-2020-1967-4.patch: fix test in
++      test/recipes/70-test_sslsigalgs.t.
++    - CVE-2020-1967
++
++ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Mon, 20 Apr 2020 07:53:50 -0400
++
++openssl (1.1.1f-1ubuntu1) focal; urgency=low
++
++  * Merge from Debian unstable.  Remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++      + Bump version check to to 1.1.1.
++      + Import libraries/restart-without-asking template as used by above.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Reword the NEWS entry, as applicable on Ubuntu.
++    - Cherrypick s390x SIMD acceleration patches for poly1305 and chacha20
++      and ECC from master.
++    - Use perl:native in the autopkgtest for installability on i386.
++    - Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
++      level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
++      below 1.2 and update documentation. Previous default of 1, can be set
++      by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
++      using ':@SECLEVEL=1' CipherString value in openssl.cfg.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Fri, 03 Apr 2020 18:31:00 +0100
++
  openssl (1.1.1f-1) unstable; urgency=medium
    * New upstream version
@@ -167,6 +520,50 @@ openssl (1.1.1e-1) unstable; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Wed, 18 Mar 2020 20:59:39 +0100
++openssl (1.1.1d-2ubuntu6) focal; urgency=medium
++
++  * Revert version number change to 1.1.1e-dev.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Fri, 06 Mar 2020 04:08:51 +0000
++
++openssl (1.1.1d-2ubuntu4) focal; urgency=medium
++
++  * Apply 1_1_1-stable branch patches
++  * Apply s390x ECC assembly pack improvements
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 26 Feb 2020 21:54:47 +0000
++
++openssl (1.1.1d-2ubuntu3) focal; urgency=medium
++
++  * Use perl:native in the autopkgtest for installability on i386.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Thu, 16 Jan 2020 14:15:26 +0000
++
++openssl (1.1.1d-2ubuntu2) focal; urgency=low
++
++  * Merge from Debian unstable.  Remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++      + Bump version check to to 1.1.1.
++      + Import libraries/restart-without-asking template as used by above.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Reword the NEWS entry, as applicable on Ubuntu.
++    - Cherrypick s390x SIMD acceleration patches for poly1305 and chacha20
++      from master.
++
++  * Set OPENSSL_TLS_SECURITY_LEVEL=2 as compiled-in minimum security
++    level. Change meaning of SECURITY_LEVEL=2 to prohibit TLS versions
++    below 1.2 and update documentation. Previous default of 1, can be set
++    by calling SSL_CTX_set_security_level(), SSL_set_security_level() or
++    using ':@SECLEVEL=1' CipherString value in openssl.cfg.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 08 Jan 2020 17:17:41 +0000
++
  openssl (1.1.1d-2) unstable; urgency=medium
    * Reenable AES-CBC-HMAC-SHA ciphers (Closes: #941987).
@@ -185,6 +582,47 @@ openssl (1.1.1d-1) unstable; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Sat, 14 Sep 2019 00:38:12 +0200
++openssl (1.1.1c-1ubuntu4) eoan; urgency=medium
++
++  * Cherrypick s390x SIMD acceleration patches for poly1305 and chacha20
++    from master. LP: #1736705 LP: #1736704
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Tue, 20 Aug 2019 12:46:33 +0100
++
++openssl (1.1.1c-1ubuntu3) eoan; urgency=medium
++
++  * Import libraries/restart-without-asking as used in postinst, to
++    prevent failure to configure the package without debconf database. LP:
++    #1832919
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Thu, 20 Jun 2019 17:59:55 +0100
++
++openssl (1.1.1c-1ubuntu2) eoan; urgency=medium
++
++  * Bump major version of OpenSSL in postinst to trigger services restart
++    upon upgrade. Many services listed there must be restarted when
++    upgrading 1.1.0 to 1.1.1. LP: #1832522
++  * Fix path to Xorg for reboot notifications on desktop. LP: #1832421
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Thu, 13 Jun 2019 15:29:07 +0100
++
++openssl (1.1.1c-1ubuntu1) eoan; urgency=low
++
++  * Merge from Debian unstable.  Remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Drop the NEWS entry, not applicable on Ubuntu.
++  * Cherrypick upstream patch to fix ca -spkac output to be text again
++    LP: #1828215
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Mon, 10 Jun 2019 18:11:35 +0100
++
  openssl (1.1.1c-1) unstable; urgency=medium
    * New upstream version
@@ -193,6 +631,21 @@ openssl (1.1.1c-1) unstable; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Thu, 30 May 2019 17:27:48 +0200
++openssl (1.1.1b-2ubuntu1) devel; urgency=medium
++
++  * Merge from Debian unstable, remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Drop the NEWS entry, not applicable on Ubuntu.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 17 Apr 2019 17:26:42 +0100
++
  openssl (1.1.1b-2) unstable; urgency=medium
    * Fix BUF_MEM regression (Closes: #923516)
@@ -201,6 +654,33 @@ openssl (1.1.1b-2) unstable; urgency=medium
   -- Kurt Roeckx <kurt@roeckx.be>  Tue, 16 Apr 2019 21:31:11 +0200
++openssl (1.1.1b-1ubuntu2) disco; urgency=medium
++
++  * debian/rules: Ship openssl.cnf in libssl1.1-udeb, as required to use
++    OpenSSL by other udebs, e.g. wget-udeb. LP: #1822898
++
++  * Drop debian/patches/UBUNTU-lower-tls-security-level-for-compat.patch
++    to revert TLS_SECURITY_LEVEL back to 1. LP: #1822984
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 03 Apr 2019 11:50:23 +0100
++
++openssl (1.1.1b-1ubuntu1) disco; urgency=medium
++
++  * Merge from Debian unstable, remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Further decrease security level from 1 to 0, for compatibility with
++      openssl 1.0.2.
++    - Drop the NEWS entry, not applicable on Ubuntu.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 27 Feb 2019 18:13:17 -0500
++
  openssl (1.1.1b-1) unstable; urgency=medium
    [ Sebastian Andrzej Siewior ]
@@ -212,6 +692,28 @@ openssl (1.1.1b-1) unstable; urgency=medium
   -- Kurt Roeckx <kurt@roeckx.be>  Tue, 26 Feb 2019 19:52:12 +0100
++openssl (1.1.1a-1ubuntu2) disco; urgency=medium
++
++  * Drop the NEWS entry, not applicable on Ubuntu.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 28 Nov 2018 14:24:28 +0000
++
++openssl (1.1.1a-1ubuntu1) disco; urgency=medium
++
++  * Merge from Debian unstable, remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Further decrease security level from 1 to 0, for compatibility with
++      openssl 1.0.2.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Wed, 28 Nov 2018 14:06:04 +0000
++
  openssl (1.1.1a-1) unstable; urgency=medium
    * Add Breaks on python-boto (See: #909545)
@@ -235,6 +737,28 @@ openssl (1.1.1-2) unstable; urgency=medium
   -- Sebastian Andrzej Siewior <sebastian@breakpoint.cc>  Sun, 28 Oct 2018 23:52:24 +0100
++openssl (1.1.1-1ubuntu2) cosmic; urgency=medium
++
++  * Fixup typpos in the autopkgtest binary name.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Tue, 25 Sep 2018 15:41:07 +0100
++
++openssl (1.1.1-1ubuntu1) cosmic; urgency=medium
++
++  * Merge from Debian unstable, remaining changes:
++    - Replace duplicate files in the doc directory with symlinks.
++    - debian/libssl1.1.postinst:
++      + Display a system restart required notification on libssl1.1
++        upgrade on servers.
++      + Use a different priority for libssl1.1/restart-services depending
++        on whether a desktop, or server dist-upgrade is being performed.
++    - Revert "Enable system default config to enforce TLS1.2 as a
++      minimum" & "Increase default security level from 1 to 2".
++    - Further decrease security level from 1 to 0, for compatibility with
++      openssl 1.0.2.
++
++ -- Dimitri John Ledkov <xnox@ubuntu.com>  Mon, 17 Sep 2018 13:24:38 +0100
++
  openssl (1.1.1-1) unstable; urgency=medium
    * New upstream version.
 diff --git a/debian/control b/debian/control
 index e37a109..32737f9 100644
 --- a/debian/control
 +++ b/debian/control
@@ -2,7 +2,8 @@ Source: openssl
  Build-Depends: debhelper-compat (= 13), m4, bc, dpkg-dev (>= 1.15.7)
  Section: utils
  Priority: optional
--Maintainer: Debian OpenSSL Team <pkg-openssl-devel@alioth-lists.debian.net>
++Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
++XSBC-Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@alioth-lists.debian.net>
  Uploaders: Christoph Martin <christoph.martin@uni-mainz.de>, Kurt Roeckx <kurt@roeckx.be>, Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
  Standards-Version: 4.6.1
  Vcs-Browser: https://salsa.debian.org/debian/openssl
@@ -44,6 +45,7 @@ Description: Secure Sockets Layer toolkit - shared libraries
  Package: libcrypto3-udeb
  Package-Type: udeb
++Build-Profiles: <!noudeb>
  Section: debian-installer
  Architecture: any
  Depends: ${shlibs:Depends}, ${misc:Depends}
@@ -57,6 +59,7 @@ Description: Secure Sockets Layer toolkit - libcrypto udeb
  Package: libssl3-udeb
  Package-Type: udeb
++Build-Profiles: <!noudeb>
  Section: debian-installer
  Architecture: any
  Depends: ${shlibs:Depends}, ${misc:Depends}
 diff --git a/debian/libssl3.postinst b/debian/libssl3.postinst
 new file mode 100644
 index 0000000..74cd4ca
 --- /dev/null
 +++ b/debian/libssl3.postinst
@@ -0,0 +1,226 @@
++#!/bin/sh
++
++. /usr/share/debconf/confmodule
++
++set -e
++
++package_name()
++{
++    echo $(basename $0 .postinst)
++}
++
++# element() is a helper function for file-rc:
++element() {
++    local element list IFS
++
++    element="$1"
++
++    [ "$2" = "in" ] && shift
++    list="$2"
++    [ "$list" = "-" ] && return 1
++    [ "$list" = "*" ] && return 0
++
++    IFS=","
++    set -- $list
++    case $element in
++	"$1"|"$2"|"$3"|"$4"|"$5"|"$6"|"$7"|"$8"|"$9")
++	    return 0
++    esac
++    return 1
++}
++
++# filerc (runlevel, service) returns /etc/init.d/service, if service is
++# running in $runlevel:
++filerc() {
++    local runlevel basename
++    runlevel=$1
++    basename=$2
++    while read LINE
++    do
++	case $LINE in
++	    \#*|"") continue
++	esac
++
++	set -- $LINE
++	SORT_NO="$1"; STOP="$2"; START="$3"; CMD="$4"
++	[ "$CMD" = "/etc/init.d/$basename" ] || continue
++
++	if element "$runlevel" in "$START" || element "S" in "$START"
++	then
++	    echo "/etc/init.d/$basename"
++	    return 0
++	fi
++    done < /etc/runlevel.conf
++    echo ""
++}
++
++if [ "$1" = "configure" ]
++then
++    if [ ! -z "$2" ] && [ ! -x /usr/lib/needrestart/apt-pinvoke ] ; then
++	# This triggers services restarting, so limit this to major upgrades
++	# only. Security updates should not restart services automatically.
++	if dpkg --compare-versions "$2" lt 1.1.1-1ubuntu2.1~18.04.2; then
++            echo -n "Checking for services that may need to be restarted..."
++            check="amanda-server anon-proxy apache2 apache-ssl"
++            check="$check apf-firewall asterisk bacula-director-common"
++            check="$check bacula-fd bacula-sd bind9 bip boinc-client"
++            check="$check boxbackup-client boxbackup-server bozo cfengine2"
++            check="$check cfengine3 citadel-server clamav-daemon clamav-freshclam"
++            check="$check clamcour collectd-core conserver-server courier-imap-ssl"
++            check="$check courier-mta-ssl courier-pop-ssl cyrus21-imapd"
++            check="$check cyrus21-pop3d cyrus-common cyrus-imspd dovecot-core"
++            check="$check ejabberd exim4 fetchmail freeradius ftpd-ssl gatling"
++            check="$check globus-gatekeeper inn inn2 libapache-mod-ssl lighttpd lldpd"
++            check="$check lwresd monit myproxy-server nagios-nrpe-server nginx-common"
++            check="$check ntp openntpd openssh-server openvpn partimage-server"
++            check="$check postfix postgresql-7.4 postgresql-8.0 postgresql-8.1"
++            check="$check postgresql-8.2 postgresql-9.1 postgresql-9.2 postgresql-9.3"
++            check="$check proftpd proftpd-ldap proftpd-basic"
++            check="$check proftpd-mysql proftpd-pgsql racoon sendmail slapd"
++            check="$check spamassassin ssh-nonfree stunnel4 syslog-ng tor unbound"
++            check="$check vsftpd"
++            # Only get the ones that are installed, and configured
++            check=$(dpkg -s $check 2> /dev/null | egrep '^Package:|^Status:' | awk '{if ($1 ~ /^Package:/) { package=$2 } else if ($0 ~ /^Status: .* installed$/) { print package }}')
++            # init script rewrites
++            check=$(echo $check | sed "
++                    # The name of proftpd-{ldap,mysql,pgsql,basic} init script is
++                    # same as "proftpd".
++                    s/proftpd-.*/proftpd/g;
++                    # dovecot-core ships its init script, but the
++                    # script name is dovecot for dovecot-{imapd,pop3d}.
++                    s/dovecot-core/dovecot/g;
++                    # openssh-server's init script it called ssh
++                    s/openssh-server/ssh/g;
++                    # bacula-director-common's init is bacula-director
++                    s/bacula-director-common/bacula-director/g;
++                    # citadel server
++                    s/citadel-server/citadel/g;
++                    # collectd
++                    s/collectd-core/collectd/g;
++                    # cyrus
++                    s/cyrus-common/cyrus-imapd/g;
++                    # nginx
++                    s/nginx-common/nginx/g;
++              ")
++            echo "done."
++	fi
++	if dpkg --compare-versions "$2" lt 1.1.1-1ubuntu2.1~18.04.2; then
++            echo -n "Checking for services that may need to be restarted..."
++            check2="chef chef-expander chef-server-api"
++            check2="$check2 chef-solr pound postgresql-common"
++            check2="$check2 prosody puppet puppetmaster snmpd"
++
++            # Only get the ones that are installed, and configured
++            check2=$(dpkg -s $check2 2> /dev/null | egrep '^Package:|^Status:' | awk '{if ($1 ~ /^Package:/) { package=$2 } else if ($0 ~ /^Status: .* installed$/) { print package }}')
++            # init script rewrites
++            check2=$(echo $check2 | sed -r "
++                    s/chef\s/chef-client/g;
++                    s/chef-server-api/chef-server/g;
++                    s/postgresql-common/postgresql/g;
++              ")
++            echo "done."
++            if [ -n "$check2" ]; then
++                check="$check $check2"
++            fi
++       fi
++
++       if [ -n "$check" ]; then
++            db_version 2.0
++	    echo "Checking init scripts..."
++	    for service in $check; do
++		if [ -x "`which invoke-rc.d 2>/dev/null`" ]; then
++		   idl=$(ls /etc/init.d/${service} 2> /dev/null | head -n 1)
++		   if [ -n "$idl" ] && [ -x $idl ]; then
++			services="$service $services"
++		   else
++			echo "WARNING: init script for $service not found."
++		   fi
++		else
++		    if [ -f /usr/share/file-rc/rc ] || [ -f /usr/lib/file-rc/rc ] && [ -f /etc/runlevel.conf ]; then
++
++			idl=$(filerc $rl $service)
++		    else
++			idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1)
++		    fi
++		    if [ -n "$idl" ] && [ -x $idl ]; then
++		        services="$service $services"
++		    fi
++		fi
++	    done
++	    if [ -n "$services" ]; then
++		db_input critical libraries/restart-without-asking || true
++		db_go || true
++		db_get libraries/restart-without-asking
++		if [ "x$RET" != xtrue ]; then
++			db_reset libssl3/restart-services
++			db_set libssl3/restart-services "$services"
++			db_input critical libssl3/restart-services || true
++			if [ "$RELEASE_UPGRADE_MODE" = desktop ]; then
++			    db_input medium libssl3/restart-services || true
++			else
++			    db_input critical libssl3/restart-services || true
++			fi
++			db_go || true
++			db_get libssl3/restart-services
++
++			if [ "x$RET" != "x" ]
++			then
++				services=$RET
++				answer=yes
++			else
++				answer=no
++			fi
++		else
++			answer=yes
++		fi
++		echo
++		if [ "$answer" = yes ] && [ "$services" != "" ]; then
++		    echo "Restarting services possibly affected by the upgrade:"
++		    failed=""
++		    rl=$(runlevel | sed 's/.*\ //')
++		    for service in $services; do
++			if [ -x "`which invoke-rc.d 2>/dev/null`" ]; then
++			    idl="invoke-rc.d ${service}"
++			elif [ -f /usr/share/file-rc/rc ] || [ -f /usr/lib/file-rc/rc ] && [ -f /etc/runlevel.conf ]; then
++			    idl=$(filerc $rl $service)
++			else
++			    idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1)
++			fi
++
++			if ! $idl restart; then
++			    failed="$service $failed"
++			fi
++		    done
++		    echo
++		    if [ -n "$failed" ]; then
++			db_subst libssl3/restart-failed services "$failed"
++			db_input critical libssl3/restart-failed || true
++			db_go || true
++		    else
++			echo "Services restarted successfully."
++		    fi
++		    echo
++		fi
++	    else
++		echo "Nothing to restart."
++	    fi
++	    # Shut down the frontend, to make sure none of the
++	    # restarted services keep a connection open to it
++	    db_stop
++	fi # end upgrading and $2 lt 0.9.8c-2
++
++	# Here we issue the reboot notification for upgrades and
++	# security updates. We do want services to be restarted when we
++	# update for a security issue, but planned by the sysadmin, not
++	# automatically.
++
++	# Only issue the reboot notification for servers; we proxy this by
++	# testing that the X server is not running (LP: #244250)
++	if ! pidof /usr/lib/xorg/Xorg > /dev/null && [ -x /usr/share/update-notifier/notify-reboot-required ]; then
++		/usr/share/update-notifier/notify-reboot-required
++	fi
++
++    fi # Upgrading
++fi
++
++#DEBHELPER#
 diff --git a/debian/libssl3.templates b/debian/libssl3.templates
 new file mode 100644
 index 0000000..846c3fc
 --- /dev/null
 +++ b/debian/libssl3.templates
@@ -0,0 +1,42 @@
++Template: libssl3/restart-services
++Type: string
++_Description: Services to restart to make them use the new libraries:
++ This release of OpenSSL fixes some security issues. Services will not
++ use these fixes until they are restarted. Please note that restarting
++ the SSH server (sshd) should not affect any existing connections.
++ .
++ Please check the list of detected services that need to be restarted
++ and correct it, if needed. The services names must be identical to the
++ initialization script names in /etc/init.d and separated by
++ spaces. No services will be restarted if the list is empty.
++ .
++ Any service that later fails unexpectedly after this upgrade should
++ be restarted. It is recommended to reboot this host to avoid any
++ SSL-related trouble.
++
++Template: libssl3/restart-failed
++Type: error
++#flag:translate!:3
++#flag:comment:2
++# This paragraph is followed by a (non translatable) paragraph containing
++# a list of services that could not be restarted
++_Description: Failure restarting some services for OpenSSL upgrade
++ The following services could not be restarted for the OpenSSL library upgrade:
++ .
++ ${services}
++ .
++ You will need to start these manually by running
++ '/etc/init.d/<service> start'.
++
++Template: libraries/restart-without-asking
++Type: boolean
++Default: false
++_Description: Restart services during package upgrades without asking?
++ There are services installed on your system which need to be restarted
++ when certain libraries, such as libpam, libc, and libssl, are upgraded.
++ Since these restarts may cause interruptions of service for the system,
++ you will normally be prompted on each upgrade for the list of services
++ you wish to restart.  You can choose this option to avoid being prompted;
++ instead, all necessary restarts will be done for you automatically so you
++ can avoid being asked questions on each library upgrade.
++
 diff --git a/debian/patches/Drop-the-last-ossl_init_casecmp-call.patch b/debian/patches/Drop-the-last-ossl_init_casecmp-call.patch
 new file mode 100644
 index 0000000..eabb4d9
 --- /dev/null
 +++ b/debian/patches/Drop-the-last-ossl_init_casecmp-call.patch
@@ -0,0 +1,36 @@
++From 6eaaa39e36d6ca37697e7cc3d301733947e43da0 Mon Sep 17 00:00:00 2001
++From: Richard Levitte <levitte@openssl.org>
++Date: Mon, 23 May 2022 09:30:36 +0200
++Subject: [PATCH 11/11] Drop the last ossl_init_casecmp() call
++
++This was missed in an earlier merge that removed it.
++
++Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
++Reviewed-by: Tomas Mraz <tomas@openssl.org>
++(Merged from https://github.com/openssl/openssl/pull/18380)
++
++Origin: upstream, https://github.com/openssl/openssl/pull/18380
++Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1974037
++Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010958
++Applied-Upstream: 3.0 branch (probably upcoming 3.0.4)
++---
++ crypto/context.c | 3 +--
++ 1 file changed, 1 insertion(+), 2 deletions(-)
++
++diff --git a/crypto/context.c b/crypto/context.c
++index 4fef24cadd..bdfc4d02a3 100644
++--- a/crypto/context.c
+++++ b/crypto/context.c
++@@ -151,8 +151,7 @@ static CRYPTO_THREAD_LOCAL default_context_thread_local;
++ DEFINE_RUN_ONCE_STATIC(default_context_do_init)
++ {
++     return CRYPTO_THREAD_init_local(&default_context_thread_local, NULL)
++-        && context_init(&default_context_int)
++-        && ossl_init_casecmp();
+++        && context_init(&default_context_int);
++ }
++
++ void ossl_lib_ctx_default_deinit(void)
++--
++2.34.1
++
 diff --git a/debian/patches/Set-systemwide-default-settings-for-libssl-users.patch b/debian/patches/Set-systemwide-default-settings-for-libssl-users.patch
 index be8b0b1..17919b1 100644
 --- a/debian/patches/Set-systemwide-default-settings-for-libssl-users.patch
 +++ b/debian/patches/Set-systemwide-default-settings-for-libssl-users.patch
@@ -25,7 +25,7 @@ index 03330e0120a2..46ae4f2d7758 100644
   # List of providers to load
   [provider_sect]
--@@ -388,3 +389,10 @@ oldcert = $insta::certout # insta.cert.pem
++@@ -388,3 +389,9 @@ oldcert = $insta::certout # insta.cert.pem
   # Certificate revocation
   cmd = rr
   oldcert = $insta::certout # insta.cert.pem
@@ -34,5 +34,4 @@ index 03330e0120a2..46ae4f2d7758 100644
  +system_default = system_default_sect
+ +
  +[system_default_sect]
--+MinProtocol = TLSv1.2
--+CipherString = DEFAULT:@SECLEVEL=2
+++# CipherString = DEFAULT:@SECLEVEL=2
 diff --git a/debian/patches/lp1947588.patch b/debian/patches/lp1947588.patch
 new file mode 100644
 index 0000000..196ddfd
 --- /dev/null
 +++ b/debian/patches/lp1947588.patch
@@ -0,0 +1,97 @@
++From 8b63b174b00b0e8c5cefcea12989d90450e04b24 Mon Sep 17 00:00:00 2001
++From: Daniel Fiala <daniel@openssl.org>
++Date: Thu, 28 Apr 2022 13:35:40 +0200
++Origin: upstream, https://github.com/openssl/openssl/pull/18154
++Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1947588
++Applied-Upstream: on branches master, 3.0 (> 3.0.3), 1.1.1 (> 1.1.1o)
++Subject: [PATCH] s_serve: Report an error if init-connection fails without an
++ attempt to read.
++
++Fixes: openssl#18047.
++
++Reviewed-by: Matt Caswell <matt@openssl.org>
++Reviewed-by: Paul Dale <pauli@openssl.org>
++Reviewed-by: Tomas Mraz <tomas@openssl.org>
++(Merged from https://github.com/openssl/openssl/pull/18154)
++
++(cherry picked from commit a6d52f178c4cb4665d0bf235001b5c9c1ff03da7)
++---
++ apps/s_server.c | 46 ++++++++++++++++++++++++++++++++++++++++++----
++ 1 file changed, 42 insertions(+), 4 deletions(-)
++
++diff --git a/apps/s_server.c b/apps/s_server.c
++index e93cfa1e2c..45b2552d56 100644
++--- a/apps/s_server.c
+++++ b/apps/s_server.c
++@@ -2296,6 +2296,30 @@ static void print_stats(BIO *bio, SSL_CTX *ssl_ctx)
++                SSL_CTX_sess_get_cache_size(ssl_ctx));
++ }
++
+++static long int count_reads_callback(BIO *bio, int cmd, const char *argp, size_t len,
+++                                 int argi, long argl, int ret, size_t *processed)
+++{
+++    unsigned int *p_counter = (unsigned int *)BIO_get_callback_arg(bio);
+++
+++    switch (cmd) {
+++    case BIO_CB_READ:  /* No break here */
+++    case BIO_CB_GETS:
+++        if (p_counter != NULL)
+++            ++*p_counter;
+++        break;
+++    default:
+++        break;
+++    }
+++
+++    if (s_debug) {
+++        BIO_set_callback_arg(bio, (char *)bio_s_out);
+++        ret = (int)bio_dump_callback(bio, cmd, argp, len, argi, argl, ret, processed);
+++        BIO_set_callback_arg(bio, (char *)p_counter);
+++    }
+++
+++    return ret;
+++}
+++
++ static int sv_body(int s, int stype, int prot, unsigned char *context)
++ {
++     char *buf = NULL;
++@@ -2425,10 +2449,7 @@ static int sv_body(int s, int stype, int prot, unsigned char *context)
++     SSL_set_accept_state(con);
++     /* SSL_set_fd(con,s); */
++
++-    if (s_debug) {
++-        BIO_set_callback_ex(SSL_get_rbio(con), bio_dump_callback);
++-        BIO_set_callback_arg(SSL_get_rbio(con), (char *)bio_s_out);
++-    }
+++    BIO_set_callback_ex(SSL_get_rbio(con), count_reads_callback);
++     if (s_msg) {
++ #ifndef OPENSSL_NO_SSL_TRACE
++         if (s_msg == 2)
++@@ -2706,8 +2727,25 @@ static int sv_body(int s, int stype, int prot, unsigned char *context)
++              */
++             if ((!async || !SSL_waiting_for_async(con))
++                     && !SSL_is_init_finished(con)) {
+++                /*
+++                 * Count number of reads during init_ssl_connection.
+++                 * It helps us to distinguish configuration errors from errors
+++                 * caused by a client.
+++                 */
+++                unsigned int read_counter = 0;
+++
+++                BIO_set_callback_arg(SSL_get_rbio(con), (char *)&read_counter);
++                 i = init_ssl_connection(con);
+++                BIO_set_callback_arg(SSL_get_rbio(con), NULL);
++
+++                /*
+++                 * If initialization fails without reads, then
+++                 * there was a fatal error in configuration.
+++                 */
+++                if (i <= 0 && read_counter == 0) {
+++                    ret = -1;
+++                    goto err;
+++                }
++                 if (i < 0) {
++                     ret = 0;
++                     goto err;
++--
++2.34.1
++
 diff --git a/debian/patches/series b/debian/patches/series
 index f9c484a..e1d06f7 100644
 --- a/debian/patches/series
 +++ b/debian/patches/series
@@ -1,8 +1,10 @@
++# Debian patches
  debian-targets.patch
  man-section.patch
  no-symbolic.patch
  pic.patch
  c_rehash-compat.patch
++# Set-systemwide-default-settings-for-libssl-users is only partially applied in Ubuntu
  Set-systemwide-default-settings-for-libssl-users.patch
  TEST-Provide-a-default-openssl.cnf-for-tests.patch
  Configure-allow-to-enable-ktls-if-target-does-not-start-w.patch
@@ -17,3 +19,12 @@ Move-OPENSSL_strcasecmp-and-related-to-o_str.c.patch
  Avoid-code-duplication-for-locale-initialization.patch
  Add-fallback-in-case-of-locale-initialization-failure.patch
  Always-try-locale-initialization-from-OPENSSL_strcasecmp.patch
++tolower-refine-the-tolower-code-to-avoid-a-memory-ac.patch
++strcasecmp-implement-strcasecmp-and-strncasecmp.patch
++Drop-the-last-ossl_init_casecmp-call.patch
++
++# Ubuntu patches
++tests-use-seclevel-1.patch
++tls1.2-min-seclevel2.patch
++skip_tls1.1_seclevel3_tests.patch
++lp1947588.patch
 diff --git a/debian/patches/skip_tls1.1_seclevel3_tests.patch b/debian/patches/skip_tls1.1_seclevel3_tests.patch
 new file mode 100644
 index 0000000..b2a8a61
 --- /dev/null
 +++ b/debian/patches/skip_tls1.1_seclevel3_tests.patch
@@ -0,0 +1,51 @@
++Description: Skip TLS 1.1 tests on seclevel 3
++ In the Ubuntu package, we changed the semantics of seclevel 2 (and above) to
++ also disable TLS <= 1.2. This makes those tests fail.
++Author: Simon Chopin <simon.chopin@canonical.com>
++Forwarded: not-needed
++Last-Update: 2022-03-21
++---
++This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
++--- a/test/recipes/80-test_ssl_old.t
+++++ b/test/recipes/80-test_ssl_old.t
++@@ -583,32 +583,32 @@
++                 if $no_tls1_1;
++
++         SKIP: {
++-            skip "skipping auto DHE PSK test at SECLEVEL 3", 1
++-                if ($no_dh || $no_psk);
+++            skip "skipping auto DHE PSK test at SECLEVEL 3", 1;
+++                # if ($no_dh || $no_psk);
++
++             ok(run(test(['ssl_old_test', '-tls1_1', '-dhe4096', '-psk', '0102030405', '-cipher', '@SECLEVEL=3:DHE-PSK-AES256-CBC-SHA384'])),
++                'test auto DHE PSK meets security strength');
++           }
++
++         SKIP: {
++-            skip "skipping auto ECDHE PSK test at SECLEVEL 3", 1
++-                if ($no_ec || $no_psk);
+++            skip "skipping auto ECDHE PSK test at SECLEVEL 3", 1;
+++                # if ($no_ec || $no_psk);
++
++             ok(run(test(['ssl_old_test', '-tls1_1', '-no_dhe', '-psk', '0102030405', '-cipher', '@SECLEVEL=3:ECDHE-PSK-AES256-CBC-SHA384'])),
++                'test auto ECDHE PSK meets security strength');
++           }
++
++         SKIP: {
++-            skip "skipping no RSA PSK at SECLEVEL 3 test", 1
++-                if ($no_rsa || $no_psk);
+++            skip "skipping no RSA PSK at SECLEVEL 3 test", 1;
+++                # if ($no_rsa || $no_psk);
++
++             ok(!run(test(['ssl_old_test', '-tls1_1', '-no_dhe', '-psk', '0102030405', '-cipher', '@SECLEVEL=3:RSA-PSK-AES256-CBC-SHA384'])),
++                'test auto RSA PSK does not meet security level 3 requirements (PFS)');
++           }
++
++         SKIP: {
++-            skip "skipping no PSK at SECLEVEL 3 test", 1
++-                if ($no_psk);
+++            skip "skipping no PSK at SECLEVEL 3 test", 1;
+++                # if ($no_psk);
++
++             ok(!run(test(['ssl_old_test', '-tls1_1', '-no_dhe', '-psk', '0102030405', '-cipher', '@SECLEVEL=3:PSK-AES256-CBC-SHA384'])),
++                'test auto PSK does not meet security level 3 requirements (PFS)');
 diff --git a/debian/patches/strcasecmp-implement-strcasecmp-and-strncasecmp.patch b/debian/patches/strcasecmp-implement-strcasecmp-and-strncasecmp.patch
 new file mode 100644
 index 0000000..b5716a0
 --- /dev/null
 +++ b/debian/patches/strcasecmp-implement-strcasecmp-and-strncasecmp.patch
@@ -0,0 +1,215 @@
++From 5083f5e0713b7027e33a0cb702bb2863f9970980 Mon Sep 17 00:00:00 2001
++From: Pauli <pauli@openssl.org>
++Date: Thu, 19 May 2022 12:51:07 +1000
++Subject: [PATCH 10/11] strcasecmp: implement strcasecmp and strncasecmp
++
++Rather than relying on the locale code working, instead implement these
++functions directly.
++
++Fixes #18322
++
++Reviewed-by: Tomas Mraz <tomas@openssl.org>
++Reviewed-by: Tim Hudson <tjh@openssl.org>
++Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
++(Merged from https://github.com/openssl/openssl/pull/18344)
++
++(cherry picked from commit fb4cdca053fb9d3f0e11eeaf31f4b4ff87f69a95)
++
++Origin: upstream, https://github.com/openssl/openssl/pull/18344
++Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1974037
++Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010958
++Applied-Upstream: 3.0 branch (probably upcoming 3.0.4)
++---
++ crypto/init.c               |   6 ---
++ crypto/o_str.c              | 102 +++++-------------------------------
++ include/internal/cryptlib.h |   3 --
++ providers/fips/fipsprov.c   |   3 --
++ 4 files changed, 14 insertions(+), 100 deletions(-)
++
++diff --git a/crypto/init.c b/crypto/init.c
++index 447a009e38..85bf76ae8b 100644
++--- a/crypto/init.c
+++++ b/crypto/init.c
++@@ -448,9 +448,6 @@ void OPENSSL_cleanup(void)
++     OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_trace_cleanup()\n");
++     ossl_trace_cleanup();
++
++-    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_deinit_casecmp()\n");
++-    ossl_deinit_casecmp();
++-
++     base_inited = 0;
++ }
++
++@@ -490,9 +487,6 @@ int OPENSSL_init_crypto(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings)
++         aloaddone = 1;
++     }
++
++-    if (!ossl_init_casecmp())
++-        return 0;
++-
++     /*
++      * At some point we should look at this function with a view to moving
++      * most/all of this into OSSL_LIB_CTX.
++diff --git a/crypto/o_str.c b/crypto/o_str.c
++index 789de7bd4d..7fa487dd5f 100644
++--- a/crypto/o_str.c
+++++ b/crypto/o_str.c
++@@ -10,13 +10,8 @@
++ #include "e_os.h"
++ #include <string.h>
++ #include <limits.h>
++-#ifndef OPENSSL_NO_LOCALE
++-# include <locale.h>
++-# ifdef OPENSSL_SYS_MACOSX
++-#  include <xlocale.h>
++-# endif
++-#endif
++ #include <openssl/crypto.h>
+++#include "crypto/ctype.h"
++ #include "internal/cryptlib.h"
++ #include "internal/thread_once.h"
++
++@@ -347,94 +342,25 @@ int openssl_strerror_r(int errnum, char *buf, size_t buflen)
++ #endif
++ }
++
++-#ifndef OPENSSL_NO_LOCALE
++-# ifndef FIPS_MODULE
++-static CRYPTO_ONCE casecmp = CRYPTO_ONCE_STATIC_INIT;
++-DEFINE_RUN_ONCE_STATIC(init_casecmp)
++-{
++-    int ret = ossl_init_casecmp_int();
++-
++-    return ret;
++-}
++-
++-int ossl_init_casecmp(void)
++-{
++-    if (!RUN_ONCE(&casecmp, init_casecmp))
++-        return 0;
++-    return 1;
++-}
++-# endif
++-
++-static locale_t loc;
++-
++-static locale_t ossl_c_locale(void)
++-{
++-# ifndef FIPS_MODULE
++-    if (!ossl_init_casecmp())
++-        return (locale_t)0;
++-# endif
++-    return loc;
++-}
++-
++-int ossl_init_casecmp_int(void)
++-{
++-# ifdef OPENSSL_SYS_WINDOWS
++-    loc = _create_locale(LC_COLLATE, "C");
++-# else
++-    loc = newlocale(LC_COLLATE_MASK, "C", (locale_t) 0);
++-# endif
++-    return (loc == (locale_t)0) ? 0 : 1;
++-}
++-
++-void ossl_deinit_casecmp(void)
++-{
++-    if (loc != (locale_t)0) {
++-        freelocale(loc);
++-        loc = (locale_t)0;
++-    }
++-}
++-
++ int OPENSSL_strcasecmp(const char *s1, const char *s2)
++ {
++-    locale_t l = ossl_c_locale();
+++    int t;
++
++-    /* Fallback in case of locale initialization failure */
++-    if (l == (locale_t)0)
++-        return strcasecmp(s1, s2);
++-    return strcasecmp_l(s1, s2, l);
+++    while ((t = ossl_tolower(*s1) - ossl_tolower(*s2++)) == 0)
+++        if (*s1++ == '\0')
+++            return 0;
+++    return t;
++ }
++
++ int OPENSSL_strncasecmp(const char *s1, const char *s2, size_t n)
++ {
++-    locale_t l = ossl_c_locale();
++-
++-    /* Fallback in case of locale initialization failure */
++-    if (l == (locale_t)0)
++-        return strncasecmp(s1, s2, n);
++-    return strncasecmp_l(s1, s2, n, l);
++-}
++-#else
++-int ossl_init_casecmp(void)
++-{
++-    return 1;
++-}
++-
++-int ossl_init_casecmp_int(void)
++-{
++-    return 1;
++-}
++-
++-void ossl_deinit_casecmp(void)
++-{
++-}
++-
++-int OPENSSL_strcasecmp(const char *s1, const char *s2)
++-{
++-    return strcasecmp(s1, s2);
++-}
+++    int t;
+++    size_t i;
++
++-int OPENSSL_strncasecmp(const char *s1, const char *s2, size_t n)
++-{
++-    return strncasecmp(s1, s2, n);
+++    for (i = 0; i < n; i++)
+++        if ((t = ossl_tolower(*s1) - ossl_tolower(*s2++)) != 0)
+++            return t;
+++        else if (*s1++ == '\0')
+++            return 0;
+++    return 0;
++ }
++-#endif
++diff --git a/include/internal/cryptlib.h b/include/internal/cryptlib.h
++index 4915680c26..1291299b6e 100644
++--- a/include/internal/cryptlib.h
+++++ b/include/internal/cryptlib.h
++@@ -258,7 +258,4 @@ static ossl_inline int ossl_is_absolute_path(const char *path)
++     return path[0] == '/';
++ }
++
++-int ossl_init_casecmp_int(void);
++-int ossl_init_casecmp(void);
++-void ossl_deinit_casecmp(void);
++ #endif
++diff --git a/providers/fips/fipsprov.c b/providers/fips/fipsprov.c
++index a8a508d9ac..872ba4ba0f 100644
++--- a/providers/fips/fipsprov.c
+++++ b/providers/fips/fipsprov.c
++@@ -491,7 +491,6 @@ static void fips_teardown(void *provctx)
++ {
++     OSSL_LIB_CTX_free(PROV_LIBCTX_OF(provctx));
++     ossl_prov_ctx_free(provctx);
++-    ossl_deinit_casecmp();
++ }
++
++ static void fips_intern_teardown(void *provctx)
++@@ -549,8 +548,6 @@ int OSSL_provider_init_int(const OSSL_CORE_HANDLE *handle,
++
++     memset(&selftest_params, 0, sizeof(selftest_params));
++
++-    if (!ossl_init_casecmp_int())
++-        return 0;
++     if (!ossl_prov_seeding_from_dispatch(in))
++         goto err;
++     for (; in->function_id != 0; in++) {
++--
++2.34.1
++
 diff --git a/debian/patches/tests-use-seclevel-1.patch b/debian/patches/tests-use-seclevel-1.patch
 new file mode 100644
 index 0000000..5b87f53
 --- /dev/null
 +++ b/debian/patches/tests-use-seclevel-1.patch
@@ -0,0 +1,235 @@
++Description: Change testsuite to use SECLEVEL 1 by default
++ By default the testsuite assumes that SECLEVEL is set to 1, and many
++ tests fail, when one raises security level to 2. Many test certs use
++ insecure hash algorithms and small key sizes.
++Author: Dimitri John Ledkov <xnox@ubuntu.com>
++
++--- a/test/helpers/ssltestlib.c
+++++ b/test/helpers/ssltestlib.c
++@@ -719,6 +719,11 @@
++         max_proto_version = TLS1_2_VERSION;
++ #endif
++
+++    if (serverctx != NULL && SSL_CTX_get_security_level(serverctx) == 2)
+++            SSL_CTX_set_security_level(serverctx, 1);
+++    if (clientctx != NULL && SSL_CTX_get_security_level(clientctx) == 2)
+++            SSL_CTX_set_security_level(clientctx, 1);
+++
++     if (serverctx != NULL
++             && ((min_proto_version > 0
++                  && !TEST_true(SSL_CTX_set_min_proto_version(serverctx,
++@@ -888,6 +893,11 @@
++     else if (!TEST_ptr(clientssl = SSL_new(clientctx)))
++         goto error;
++
+++    if (SSL_get_security_level(serverssl) == 2)
+++            SSL_set_security_level(serverssl, 1);
+++    if (SSL_get_security_level(clientssl) == 2)
+++            SSL_set_security_level(clientssl, 1);
+++
++     if (SSL_is_dtls(clientssl)) {
++         if (!TEST_ptr(s_to_c_bio = BIO_new(bio_s_mempacket_test()))
++                 || !TEST_ptr(c_to_s_bio = BIO_new(bio_s_mempacket_test())))
++--- a/test/ssl_test.c
+++++ b/test/ssl_test.c
++@@ -409,6 +409,7 @@
++ #ifndef OPENSSL_NO_DTLS
++     if (test_ctx->method == SSL_TEST_METHOD_DTLS) {
++         server_ctx = SSL_CTX_new_ex(libctx, NULL, DTLS_server_method());
+++        SSL_CTX_set_security_level(server_ctx, 1);
++         if (!TEST_true(SSL_CTX_set_options(server_ctx,
++                         SSL_OP_ALLOW_CLIENT_RENEGOTIATION))
++                 || !TEST_true(SSL_CTX_set_max_proto_version(server_ctx, 0)))
++@@ -420,19 +421,23 @@
++                     || !TEST_true(SSL_CTX_set_options(server2_ctx,
++                             SSL_OP_ALLOW_CLIENT_RENEGOTIATION)))
++                 goto err;
+++            SSL_CTX_set_security_level(server2_ctx, 1);
++         }
++         client_ctx = SSL_CTX_new_ex(libctx, NULL, DTLS_client_method());
+++        SSL_CTX_set_security_level(client_ctx, 1);
++         if (!TEST_true(SSL_CTX_set_max_proto_version(client_ctx, 0)))
++             goto err;
++         if (test_ctx->handshake_mode == SSL_TEST_HANDSHAKE_RESUME) {
++             resume_server_ctx = SSL_CTX_new_ex(libctx, NULL,
++                                                DTLS_server_method());
+++            SSL_CTX_set_security_level(resume_server_ctx, 1);
++             if (!TEST_true(SSL_CTX_set_max_proto_version(resume_server_ctx, 0))
++                     || !TEST_true(SSL_CTX_set_options(resume_server_ctx,
++                             SSL_OP_ALLOW_CLIENT_RENEGOTIATION)))
++                 goto err;
++             resume_client_ctx = SSL_CTX_new_ex(libctx, NULL,
++                                                DTLS_client_method());
+++            SSL_CTX_set_security_level(resume_client_ctx, 1);
++             if (!TEST_true(SSL_CTX_set_max_proto_version(resume_client_ctx, 0)))
++                 goto err;
++             if (!TEST_ptr(resume_server_ctx)
++@@ -452,6 +457,7 @@
++ #endif
++
++         server_ctx = SSL_CTX_new_ex(libctx, NULL, TLS_server_method());
+++        SSL_CTX_set_security_level(server_ctx, 1);
++         if (!TEST_true(SSL_CTX_set_max_proto_version(server_ctx, maxversion))
++                 || !TEST_true(SSL_CTX_set_options(server_ctx,
++                             SSL_OP_ALLOW_CLIENT_RENEGOTIATION)))
++@@ -464,17 +470,20 @@
++                     || !TEST_true(SSL_CTX_set_options(server2_ctx,
++                             SSL_OP_ALLOW_CLIENT_RENEGOTIATION)))
++                 goto err;
+++            SSL_CTX_set_security_level(server2_ctx, 1);
++             if (!TEST_true(SSL_CTX_set_max_proto_version(server2_ctx,
++                                                          maxversion)))
++                 goto err;
++         }
++         client_ctx = SSL_CTX_new_ex(libctx, NULL, TLS_client_method());
+++        SSL_CTX_set_security_level(client_ctx, 1);
++         if (!TEST_true(SSL_CTX_set_max_proto_version(client_ctx, maxversion)))
++             goto err;
++
++         if (test_ctx->handshake_mode == SSL_TEST_HANDSHAKE_RESUME) {
++             resume_server_ctx = SSL_CTX_new_ex(libctx, NULL,
++                                                TLS_server_method());
+++            SSL_CTX_set_security_level(resume_server_ctx, 1);
++             if (!TEST_true(SSL_CTX_set_max_proto_version(resume_server_ctx,
++                                                          maxversion))
++                     || !TEST_true(SSL_CTX_set_options(resume_server_ctx,
++@@ -482,6 +491,7 @@
++                 goto err;
++             resume_client_ctx = SSL_CTX_new_ex(libctx, NULL,
++                                                TLS_client_method());
+++            SSL_CTX_set_security_level(resume_client_ctx, 1);
++             if (!TEST_true(SSL_CTX_set_max_proto_version(resume_client_ctx,
++                                                          maxversion)))
++                 goto err;
++--- a/test/recipes/70-test_sslmessages.t
+++++ b/test/recipes/70-test_sslmessages.t
++@@ -421,7 +421,7 @@
++     $proxy->clear();
++     $proxy->clientflags("-no_tls1_3");
++     $proxy->serverflags("-no_tls1_3");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->start();
++     checkhandshake($proxy, checkhandshake::EC_HANDSHAKE,
++                    checkhandshake::DEFAULT_EXTENSIONS
++--- a/test/recipes/70-test_sslsigalgs.t
+++++ b/test/recipes/70-test_sslsigalgs.t
++@@ -129,7 +129,7 @@
++     #        should succeed
++     $proxy->clear();
++     $proxy->serverflags("-no_tls1_3");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->filter(undef);
++     $proxy->start();
++     ok(TLSProxy::Message->success, "TLSv1.3 client TLSv1.2 server");
++@@ -173,7 +173,7 @@
++     $proxy->clear();
++     $testtype = EMPTY_SIG_ALGS_EXT;
++     $proxy->clientflags("-no_tls1_3");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->start();
++     ok(TLSProxy::Message->fail, "Empty TLSv1.2 sigalgs");
++
++@@ -181,7 +181,7 @@
++     $proxy->clear();
++     $testtype = NO_KNOWN_SIG_ALGS;
++     $proxy->clientflags("-no_tls1_3");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->start();
++     ok(TLSProxy::Message->fail, "No known TLSv1.3 sigalgs");
++
++@@ -190,7 +190,7 @@
++     $proxy->clear();
++     $testtype = NO_PSS_SIG_ALGS;
++     $proxy->clientflags("-no_tls1_3");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->start();
++     ok(TLSProxy::Message->success, "No PSS TLSv1.2 sigalgs");
++
++@@ -198,7 +198,7 @@
++     $proxy->clear();
++     $testtype = PSS_ONLY_SIG_ALGS;
++     $proxy->serverflags("-no_tls1_3");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->start();
++     ok(TLSProxy::Message->success, "PSS only sigalgs in TLSv1.2");
++
++@@ -209,7 +209,7 @@
++     $proxy->clear();
++     $testtype = PSS_ONLY_SIG_ALGS;
++     $proxy->clientflags("-no_tls1_3 -sigalgs RSA+SHA256");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->start();
++     ok(TLSProxy::Message->fail, "Sigalg we did not send in TLSv1.2");
++
++@@ -217,7 +217,7 @@
++     #         matches the certificate should fail in TLSv1.2
++     $proxy->clear();
++     $proxy->clientflags("-no_tls1_3 -sigalgs ECDSA+SHA256");
++-    $proxy->ciphers("ECDHE-RSA-AES128-SHA");
+++    $proxy->ciphers("ECDHE-RSA-AES128-SHA:\@SECLEVEL=1");
++     $proxy->filter(undef);
++     $proxy->start();
++     ok(TLSProxy::Message->fail, "No matching TLSv1.2 sigalgs");
++--- a/test/recipes/70-test_sslsignature.t
+++++ b/test/recipes/70-test_sslsignature.t
++@@ -103,8 +103,8 @@
++         $proxy->clear();
++         $testtype = CORRUPT_TLS1_2_SERVER_KEY_EXCHANGE;
++         $proxy->clientflags("-no_tls1_3");
++-        $proxy->cipherc('DHE-RSA-AES128-SHA');
++-        $proxy->ciphers('DHE-RSA-AES128-SHA');
+++        $proxy->cipherc('DHE-RSA-AES128-SHA:\@SECLEVEL=1');
+++        $proxy->ciphers('DHE-RSA-AES128-SHA:\@SECLEVEL=1');
++         $proxy->start();
++         ok(TLSProxy::Message->fail, "Corrupt <=TLSv1.2 ServerKeyExchange");
++     }
++--- a/util/perl/TLSProxy/Proxy.pm
+++++ b/util/perl/TLSProxy/Proxy.pm
++@@ -97,9 +97,9 @@
++         execute => $execute,
++         cert => $cert,
++         debug => $debug,
++-        cipherc => "",
+++        cipherc => "DEFAULT:\@SECLEVEL=1",
++         ciphersuitesc => "",
++-        ciphers => "AES128-SHA",
+++        ciphers => "AES128-SHA:\@SECLEVEL=1",
++         ciphersuitess => "TLS_AES_128_GCM_SHA256",
++         flight => -1,
++         direction => -1,
++@@ -145,7 +145,7 @@
++ {
++     my $self = shift;
++
++-    $self->{cipherc} = "";
+++    $self->{cipherc} = "DEFAULT:\@SECLEVEL=1";
++     $self->{ciphersuitec} = "";
++     $self->{flight} = -1;
++     $self->{direction} = -1;
++@@ -167,7 +167,7 @@
++     my $self = shift;
++
++     $self->clearClient;
++-    $self->{ciphers} = "AES128-SHA";
+++    $self->{ciphers} = "AES128-SHA:\@SECLEVEL=1";
++     $self->{ciphersuitess} = "TLS_AES_128_GCM_SHA256";
++     $self->{serverflags} = "";
++     $self->{serverconnects} = 1;
++--- a/test/bad_dtls_test.c
+++++ b/test/bad_dtls_test.c
++@@ -491,6 +491,8 @@
++         goto end;
++
++     ctx = SSL_CTX_new(DTLS_client_method());
+++    if (TEST_ptr(ctx))
+++        SSL_CTX_set_security_level(ctx, 1);
++     if (!TEST_ptr(ctx)
++             || !TEST_true(SSL_CTX_set_min_proto_version(ctx, DTLS1_BAD_VER))
++             || !TEST_true(SSL_CTX_set_max_proto_version(ctx, DTLS1_BAD_VER))
 diff --git a/debian/patches/tls1.2-min-seclevel2.patch b/debian/patches/tls1.2-min-seclevel2.patch
 new file mode 100644
 index 0000000..b0c11a1
 --- /dev/null
 +++ b/debian/patches/tls1.2-min-seclevel2.patch
@@ -0,0 +1,63 @@
++Description: TLS versions below 1.2 are not permitted as security level 2.
++
++--- a/ssl/ssl_cert.c
+++++ b/ssl/ssl_cert.c
++@@ -1012,18 +1012,12 @@
++         }
++     case SSL_SECOP_VERSION:
++         if (!SSL_IS_DTLS(s)) {
++-            /* SSLv3 not allowed at level 2 */
++-            if (nid <= SSL3_VERSION && level >= 2)
++-                return 0;
++-            /* TLS v1.1 and above only for level 3 */
++-            if (nid <= TLS1_VERSION && level >= 3)
++-                return 0;
++-            /* TLS v1.2 only for level 4 and above */
++-            if (nid <= TLS1_1_VERSION && level >= 4)
+++            /* TLS v1.2 only for level 2 and above */
+++            if (nid <= TLS1_1_VERSION && level >= 2)
++                 return 0;
++         } else {
++-            /* DTLS v1.2 only for level 4 and above */
++-            if (DTLS_VERSION_LT(nid, DTLS1_2_VERSION) && level >= 4)
+++            /* DTLS v1.2 only for level 2 and above */
+++            if (DTLS_VERSION_LT(nid, DTLS1_2_VERSION) && level >= 2)
++                 return 0;
++         }
++         break;
++--- a/doc/man3/SSL_CTX_set_security_level.pod
+++++ b/doc/man3/SSL_CTX_set_security_level.pod
++@@ -84,22 +84,20 @@
++ Security level set to 112 bits of security. As a result RSA, DSA and DH keys
++ shorter than 2048 bits and ECC keys shorter than 224 bits are prohibited.
++ In addition to the level 1 exclusions any cipher suite using RC4 is also
++-prohibited. SSL version 3 is also not allowed. Compression is disabled.
+++prohibited. On Ubuntu, TLS versions below 1.2 are not permitted. Compression is disabled.
++
++ =item B<Level 3>
++
++ Security level set to 128 bits of security. As a result RSA, DSA and DH keys
++ shorter than 3072 bits and ECC keys shorter than 256 bits are prohibited.
++ In addition to the level 2 exclusions cipher suites not offering forward
++-secrecy are prohibited. TLS versions below 1.1 are not permitted. Session
++-tickets are disabled.
+++secrecy are prohibited. Session tickets are disabled.
++
++ =item B<Level 4>
++
++ Security level set to 192 bits of security. As a result RSA, DSA and
++ DH keys shorter than 7680 bits and ECC keys shorter than 384 bits are
++-prohibited.  Cipher suites using SHA1 for the MAC are prohibited. TLS
++-versions below 1.2 are not permitted.
+++prohibited.  Cipher suites using SHA1 for the MAC are prohibited.
++
++ =item B<Level 5>
++
++@@ -116,6 +114,7 @@
++
++ The default security level can be configured when OpenSSL is compiled by
++ setting B<-DOPENSSL_TLS_SECURITY_LEVEL=level>. If not set then 1 is used.
+++On Ubuntu, 2 is used.
++
++ The security framework disables or reject parameters inconsistent with the
++ set security level. In the past this was difficult as applications had to set
 diff --git a/debian/patches/tolower-refine-the-tolower-code-to-avoid-a-memory-ac.patch b/debian/patches/tolower-refine-the-tolower-code-to-avoid-a-memory-ac.patch
 new file mode 100644
 index 0000000..1f80156
 --- /dev/null
 +++ b/debian/patches/tolower-refine-the-tolower-code-to-avoid-a-memory-ac.patch
@@ -0,0 +1,139 @@
++From 267850a9afeedca6dc1cfca1f20c3d06873849e5 Mon Sep 17 00:00:00 2001
++From: Pauli <pauli@openssl.org>
++Date: Thu, 19 May 2022 12:23:55 +1000
++Subject: [PATCH 09/11] tolower: refine the tolower code to avoid a memory
++ access
++
++This improves the performance of this function and the ones that rely on it
++(ossl_lh_strcasehash primarily).
++
++Reviewed-by: Tomas Mraz <tomas@openssl.org>
++Reviewed-by: Tim Hudson <tjh@openssl.org>
++Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
++(Merged from https://github.com/openssl/openssl/pull/18344)
++
++(cherry picked from commit 286053fc8f78e34828a576830ef879c021640aee)
++
++Origin: upstream, https://github.com/openssl/openssl/pull/18344
++Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1974037
++Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010958
++Applied-Upstream: 3.0 branch (probably upcoming 3.0.4)
++---
++ crypto/ctype.c         | 45 ++++++++++++++++++++++++++++++++++++------
++ include/crypto/ctype.h | 12 +++++++----
++ 2 files changed, 47 insertions(+), 10 deletions(-)
++
++diff --git a/crypto/ctype.c b/crypto/ctype.c
++index 83c24a546f..9d2442e1e4 100644
++--- a/crypto/ctype.c
+++++ b/crypto/ctype.c
++@@ -257,6 +257,36 @@ int ossl_ctype_check(int c, unsigned int mask)
++     return a >= 0 && a < max && (ctype_char_map[a] & mask) != 0;
++ }
++
+++/*
+++ * Implement some of the simplier functions directly to avoid the overhead of
+++ * accessing memory via ctype_char_map[].
+++ */
+++
+++#define ASCII_IS_DIGIT(c)   (c >= 0x30 && c <= 0x39)
+++#define ASCII_IS_UPPER(c)   (c >= 0x41 && c <= 0x5A)
+++#define ASCII_IS_LOWER(c)   (c >= 0x61 && c <= 0x7A)
+++
+++int ossl_isdigit(int c)
+++{
+++    int a = ossl_toascii(c);
+++
+++    return ASCII_IS_DIGIT(a);
+++}
+++
+++int ossl_isupper(int c)
+++{
+++    int a = ossl_toascii(c);
+++
+++    return ASCII_IS_UPPER(a);
+++}
+++
+++int ossl_islower(int c)
+++{
+++    int a = ossl_toascii(c);
+++
+++    return ASCII_IS_LOWER(a);
+++}
+++
++ #if defined(CHARSET_EBCDIC) && !defined(CHARSET_EBCDIC_TEST)
++ static const int case_change = 0x40;
++ #else
++@@ -265,16 +295,19 @@ static const int case_change = 0x20;
++
++ int ossl_tolower(int c)
++ {
++-    return ossl_isupper(c) ? c ^ case_change : c;
+++    int a = ossl_toascii(c);
+++
+++    return ASCII_IS_UPPER(a) ? c ^ case_change : c;
++ }
++
++ int ossl_toupper(int c)
++ {
++-    return ossl_islower(c) ? c ^ case_change : c;
+++    int a = ossl_toascii(c);
+++
+++    return ASCII_IS_LOWER(a) ? c ^ case_change : c;
++ }
++
++-int ossl_ascii_isdigit(const char inchar) {
++-    if (inchar > 0x2F && inchar < 0x3A)
++-        return 1;
++-    return 0;
+++int ossl_ascii_isdigit(int c)
+++{
+++    return ASCII_IS_DIGIT(c);
++ }
++diff --git a/include/crypto/ctype.h b/include/crypto/ctype.h
++index 8032ccc447..e958a977f8 100644
++--- a/include/crypto/ctype.h
+++++ b/include/crypto/ctype.h
++@@ -22,6 +22,8 @@
++ # define OSSL_CRYPTO_CTYPE_H
++ # pragma once
++
+++# include <openssl/e_os2.h>
+++
++ # define CTYPE_MASK_lower       0x1
++ # define CTYPE_MASK_upper       0x2
++ # define CTYPE_MASK_digit       0x4
++@@ -55,10 +57,15 @@ int ossl_fromascii(int c);
++ #  define ossl_fromascii(c)     (c)
++ # endif
++ int ossl_ctype_check(int c, unsigned int mask);
+++
++ int ossl_tolower(int c);
++ int ossl_toupper(int c);
++
++-int ossl_ascii_isdigit(const char inchar);
+++int ossl_isdigit(int c);
+++int ossl_islower(int c);
+++int ossl_isupper(int c);
+++
+++int ossl_ascii_isdigit(int c);
++
++ # define ossl_isalnum(c)        (ossl_ctype_check((c), CTYPE_MASK_alnum))
++ # define ossl_isalpha(c)        (ossl_ctype_check((c), CTYPE_MASK_alpha))
++@@ -69,13 +76,10 @@ int ossl_ascii_isdigit(const char inchar);
++ # endif
++ # define ossl_isblank(c)        (ossl_ctype_check((c), CTYPE_MASK_blank))
++ # define ossl_iscntrl(c)        (ossl_ctype_check((c), CTYPE_MASK_cntrl))
++-# define ossl_isdigit(c)        (ossl_ctype_check((c), CTYPE_MASK_digit))
++ # define ossl_isgraph(c)        (ossl_ctype_check((c), CTYPE_MASK_graph))
++-# define ossl_islower(c)        (ossl_ctype_check((c), CTYPE_MASK_lower))
++ # define ossl_isprint(c)        (ossl_ctype_check((c), CTYPE_MASK_print))
++ # define ossl_ispunct(c)        (ossl_ctype_check((c), CTYPE_MASK_punct))
++ # define ossl_isspace(c)        (ossl_ctype_check((c), CTYPE_MASK_space))
++-# define ossl_isupper(c)        (ossl_ctype_check((c), CTYPE_MASK_upper))
++ # define ossl_isxdigit(c)       (ossl_ctype_check((c), CTYPE_MASK_xdigit))
++ # define ossl_isbase64(c)       (ossl_ctype_check((c), CTYPE_MASK_base64))
++ # define ossl_isasn1print(c)    (ossl_ctype_check((c), CTYPE_MASK_asn1print))
++--
++2.34.1
++
 diff --git a/debian/po/ar.po b/debian/po/ar.po
 new file mode 100644
 index 0000000..2d7d00b
 --- /dev/null
 +++ b/debian/po/ar.po
@@ -0,0 +1,108 @@
++# translation of openssl-ar.po to Arabic
++# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER
++# This file is distributed under the same license as the PACKAGE package.
++#
++# Ossama M. Khayat <okhayat@yahoo.com>, 2007, 2010.
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl-ar\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2010-09-09 01:29+0300\n"
++"Last-Translator: Ossama M. Khayat <okhayat@yahoo.com>\n"
++"Language-Team: Arabic <support@arabeyes.org>\n"
++"Language: ar\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: Lokalize 1.0\n"
++"Plural-Forms: nplurals=6; plural=n==1 ? 0 : n==0 ? 1 : n==2 ? 2: n%100>=3 && "
++"n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "الخدمات المطلوب إعادة تشغيلها لجعلها تستخدم المكتبات الجديدة:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"هذا الإصدار من OpenSSL يحل بعض المشاكل الأمنية. ولن تستخدم الخدمات هذه "
++"الحلول حتى يتم إعادة تشغيلها. الرجاء التنبه إلى أن إعادة تشغيل خادم SSH "
++"(sshd) لا يؤثر على أية اتصالات حالية."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"الرجاء التحقق من قائمة الخدمات المكتشفة والتي يجب إعادة تشغيلها وقم بتصحيحها "
++"إن كانت هناك حاجة لذلك. يجب أن تكون أسماء الخدمات مطابقة لأسماء ملفات شيفرات "
++"التشغيل في /etc/init.d وتفصلها مسافات. لن تتم إعادة تشغيل أية خدمات إن كانت "
++"القائمة فارغة."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"يجب إعادة تشغيل أية خدمة تفشل بشكل غير متوقع عقب عملية الترقية هذه. كما أنه "
++"من المستحسن إعادة تشغيل هذا الجهاز لتجنب أية مشاكل متعلقة بخدمة SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "فشل إعادة تشغيل بعض الخدمات لترقية OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr "تعذر إعادة تشغيل الخدمات التالية لترقية مكتبة OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"يجب أن تقوم بتشغيل هذه الخدمات يدوياً بتفيذ الأمر '/etc/init.d/<service> "
++"start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
 diff --git a/debian/po/ca.po b/debian/po/ca.po
 new file mode 100644
 index 0000000..f7161d3
 --- /dev/null
 +++ b/debian/po/ca.po
@@ -0,0 +1,117 @@
++#
++# Catalan translation for openssl package.
++# Copyright (C) 2007 Debian OpenSSL Team.
++# This file is distributed under the same license as the openssl package.
++#
++# Aleix Badia i Bosch <abadia@ica.es>, 2004
++# Jordà Polo <jorda@ettin.org>, 2007.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl_0.9.8g-3\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-11-24 16:43+0100\n"
++"Last-Translator: Jordà Polo <jorda@ettin.org>\n"
++"Language-Team: Català <debian-l10n-catalan@lists.debian.org>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Serveis que cal reiniciar perquè utilitzin les noves biblioteques:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Aquesta versió d'OpenSSL resol alguns problemes de seguretat. Els serveis no "
++"utilitzaran les correccions fins que no es tornin a iniciar. Fixeu-vos que "
++"reiniciar el servidor SSH (sshd) no hauria d'afectar cap de les connexions "
++"existents."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Si us plau, comproveu la llista de serveis detectats que caldria reiniciar, "
++"i esmeneu-la si és necessari. Els noms dels serveis han de ser idèntics als "
++"noms dels scripts que hi ha al directori /etc/init.d, i haurien d'estar "
++"separats per espais. Si la llista és buida no es reiniciarà cap servei."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Si després de l'actualització fallen altres serveis de forma inesperada, és "
++"possible que també calgui tornar a iniciar-los. Si els problemes relacionats "
++"amb SSL persisteixen, podeu reiniciar l'ordinador."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++"S'ha trobat un error mentre es reiniciaven alguns serveis per "
++"l'actualització de l'OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"No s'han pogut reiniciar els següents serveis per l'actualització de la "
++"biblioteca OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Aquests els haureu d'iniciar manualment executant «/etc/init.d/<servei> "
++"start»."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++
++#~ msgid "${services}"
++#~ msgstr "${services}"
 diff --git a/debian/po/cs.po b/debian/po/cs.po
 new file mode 100644
 index 0000000..5fc2319
 --- /dev/null
 +++ b/debian/po/cs.po
@@ -0,0 +1,119 @@
++#
++#    Translators, if you are not familiar with the PO format, gettext
++#    documentation is worth reading, especially sections dedicated to
++#    this format, e.g. by running:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'
++#
++#    Some information specific to po-debconf are available at
++#            /usr/share/doc/po-debconf/README-trans
++#         or http://www.debian.org/intl/l10n/po-debconf/README-trans
++#
++#    Developers do not need to manually edit POT or PO files.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-05-12 19:14+0200\n"
++"Last-Translator: Miroslav Kure <kurem@debian.cz>\n"
++"Language-Team: Czech <debian-l10n-czech@lists.debian.org>\n"
++"Language: cs\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Služby, které se mají restartovat, aby začaly využívat nové knihovny:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Toto vydání OpenSSL opravuje některé bezpečnostní problémy. Tyto opravy se v "
++"programech projeví až po jejich restartu. Poznamenejme, že restart SSH "
++"serveru (sshd) by neměl ovlivnit stávající spojení."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Zkontrolujte prosím seznam rozpoznaných služeb, které je třeba restartovat. "
++"Jestliže se vám zdá, že je seznam chybný, můžete jej upravit. Názvy služeb "
++"musí být shodné s názvy skriptů v adresáři /etc/init.d a musí být odděleny "
++"mezerami. Pokud seznam vymažete, nebude restartována žádná služba."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Jestliže po této aktualizaci začnou neočekávaně selhávat některé služby, "
++"měli byste je taktéž restartovat. Abyste se vyhnuli problémům spojeným se "
++"SSL, doporučujeme restartovat celý počítač."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Chyba při restartu některých služeb po aktualizaci OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Následující služby se nepodařilo po aktualizaci knihovny OpenSSL restartovat:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr "Budete je muset spustit ručně příkazem „/etc/init.d/<služba> start“."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Restartovat služby při aktualizaci balíku bez ptaní?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"V systému jsou nainstalovány služby, které je nutno při aktualizaci určitých "
++"knihoven (libpam, libc nebo libssl) restartovat. Během restartu služeb jsou "
++"tyto po nějakou dobu nedostupné. Abychom předešli nechtěné nedostupnosti, je "
++"při každé aktualizaci nabídnut seznam služeb, které se mají restartovat. "
++"Povolíte-li tuto možnost, budou se všechny potřebné služby restartovat při "
++"aktualizaci knihoven automaticky bez ptaní."
 diff --git a/debian/po/da.po b/debian/po/da.po
 new file mode 100644
 index 0000000..dc67d2f
 --- /dev/null
 +++ b/debian/po/da.po
@@ -0,0 +1,119 @@
++# Danish translation openssl.
++# Copyright (C) 2010 openssl & Joe Hansen.
++# This file is distributed under the same license as the openssl package.
++# Claus Hindsgaul <claus_h@image.dk>, 2004.
++# Claus Hindsgaul <claus.hindsgaul@gmail.com>, 2007.
++# Joe Hansen <joedalton2@yahoo.dk>, 2010.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2010-10-07 05:26+0100\n"
++"Last-Translator: Joe Hansen <joedalton2@yahoo.dk>\n"
++"Language-Team: Danish <debian-l10n-danish@lists.debian.org> \n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"Plural-Forms:  nplurals=2; plural=(n != 1);\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Tjenester der skal genstartes for at få dem til at benytte de nye "
++"biblioteker:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Denne version af OpenSSL retter nogle sikkerhedsproblemer. Tjenester vil "
++"ikke benytte disse rettelser, før de er blevet genstartet. Bemærk at det "
++"ikke vil påvirke eksisterende forbindelser at genstarte SSH-serveren (sshd)."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Tjek listen over fundne tjenester, som skal genstartes, og ret den om "
++"nødvendigt. Tjenestenavnene skal være identiske med "
++"initialiseringsskriptenes navne i /etc/init.d, og være adskilt med "
++"mellemrum. Hvis listen er tom, vil ingen tjenester blive genstartet."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Enhver tjeneste, der fejler uden grund efter denne opgradering, bør "
++"genstartes. Det anbefales at genstarte denne maskine for at undgå SSL-"
++"relaterede problemer."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Fejl ved genstart af nogle tjenester for OpenSSl-opgradering"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"De følgende tjenester kunne ikke genstartes for OpenSSL-"
++"biblioteksopgraderingen:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Du skal genstarte disse manuelt ved at køre '/etc/init.d/<tjeneste> start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Genstart tjenester under pakkeopgraderinger uden at spørge?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Der er tjenester installeret på dit system, som kræver at blive genstartet "
++"når bestemte biblioteker, såsom libpam, libc og libssl, opgraderes. Da disse "
++"genstarter kan medføre forstyrrelse af systemets tjenester, vil du normalt "
++"blive spurgt ved hver opgradering om listen over tjenester, du ønsker at "
++"genstarte. Du kan vælge denne indstilling for at undgå at blive spurgt; i "
++"stedet for vil alle nødvendige genstarter blive udført automatisk, så du kan "
++"undgå spørgsmål ved hver biblioteksopgradering."
 diff --git a/debian/po/de.po b/debian/po/de.po
 new file mode 100644
 index 0000000..676f997
 --- /dev/null
 +++ b/debian/po/de.po
@@ -0,0 +1,119 @@
++# German translation of openssl's debconf templates
++# Copyright (C) 2006-2008 Johannes Starosta <feedback-an-johannes@arcor.de>
++# This file is distributed under the same license as the openssl package.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 0.9.8e-4\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-03-24 22:48+0100\n"
++"Last-Translator: Johannes Starosta <feedback-an-johannes@arcor.de>\n"
++"Language-Team: German <debian-l10n-german@lists.debian.org>\n"
++"Language: de\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Welche Dienste sollen erneut gestartet werden, damit sie die neuen "
++"Bibliotheken verwenden?"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"In dieser Version von OpenSSL wurden Sicherheitsprobleme behoben. Dienste "
++"werden diese Aktualisierungen nicht nutzen, bis sie neugestartet werden. "
++"Hinweis: Den SSH-Server (sshd) neu zu starten, dürfte keine bestehenden "
++"Verbindungen beeinträchtigen."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Es folgt nun eine Liste der erkannten Dienste, die neu gestartet werden "
++"sollten. Bitte berichtigen Sie die Liste, falls Sie glauben, dass sie Fehler "
++"enthält. Die Namen der Dienste müssen den Namen der Skripte in /etc/init.d "
++"entsprechen und werden durch Leerzeichen getrennt. Es wird kein Dienst neu "
++"gestartet, falls die Liste leer bleibt."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Falls andere Dienste nach diesem Upgrade ein merkwürdiges Fehlverhalten "
++"zeigen, könnte es nötig werden, sie ebenfalls neu zu starten. Es wird "
++"empfohlen, den Rechner neu zu starten, um Probleme mit SSL zu vermeiden."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Neustarten einiger Dienste beim OpenSSL-Upgrade fehlgeschlagen"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Die folgenden Dienste konnten beim Upgrade der OpenSSL-Bibliothek nicht neu "
++"gestartet werden:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Sie werden sie manuell durch Aufruf von »/etc/init.d/<dienst> start« starten "
++"müssen."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Dienste bei Paket-Upgrades ohne Rückfrage neu starten?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Auf Ihrem System sind Dienste installiert, die beim Upgrade bestimmter "
++"Bibliotheken, wie Libpam, Libc und Libssl, neu gestartet werden müssen. Da "
++"diese Neustarts zu Unterbrechungen der Dienste für dieses System führen "
++"können, werden Sie normalerweise bei jedem Upgrade über die Liste der neu zu "
++"startenden Dienste befragt. Sie können diese Option wählen, um diese Abfrage "
++"zu vermeiden; stattdessen werden alle notwendigen Dienste-Neustarts für Sie "
++"automatisch vorgenommen und die Beantwortung dieser Fragen bei jedem Upgrade "
++"von Bibliotheken vermieden."
 diff --git a/debian/po/el.po b/debian/po/el.po
 new file mode 100644
 index 0000000..9d9dba9
 --- /dev/null
 +++ b/debian/po/el.po
@@ -0,0 +1,115 @@
++# translation of el.po to Greek
++# translation of templates.po to Greek
++#
++#    Translators, if you are not familiar with the PO format, gettext
++#    documentation is worth reading, especially sections dedicated to
++#    this format, e.g. by running:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'
++#    Some information specific to po-debconf are available at
++#            /usr/share/doc/po-debconf/README-trans
++#         or http://www.debian.org/intl/l10n/po-debconf/README-trans#
++#    Developers do not need to manually edit POT or PO files.
++# Konstantinos Margaritis <markos@debian.org>, 2004.
++# Vangelis Skarmoutsos <skarmoutsosv@gmail.com>, 2017.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: el\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2019-06-20 17:58+0100\n"
++"PO-Revision-Date: 2017-07-06 21:00+0300\n"
++"Last-Translator: Vangelis Skarmoutsos <skarmoutsosv@gmail.com>\n"
++"Language-Team: Greek <debian-l10n-greek@lists.debian.org>\n"
++"Language: el\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: Poedit 2.0.2\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.1.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.1.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.1.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++"Επανεκκίνηση υπηρεσιών, κατά την διάρκεια αναβάθμισης πακέτων, χωρίς να "
++"γίνει ερώτηση;"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Αυτές είναι εγκατεστημένες υπηρεσίες στο σύστημα σας, που χρειάζεται να "
++"επανεκκινηθούν, όταν αναβαθμίζονται συγκεκριμένες βιβλιοθήκες, όπως οι "
++"libpam, libc και libssl. Καθώς αυτές οι επανεκκινήσεις μπορούν να "
++"προκαλέσουν διακοπές των υπηρεσιών του συστήματος, φυσιολογικά θα ερωτηθείτε "
++"σε κάθε αναβάθμιση για την λίστα των υπηρεσιών που επιθυμείτε να "
++"επανεκκινήσετε. Μπορείτε να διαλέξετε αυτή την επιλογή για να αποφύγετε να "
++"ερωτηθείτε και έτσι όλες οι απαραίτητες επανεκκινήσεις θα γίνουν αυτόματα "
++"ώστε να αποφύγετε τις ερωτήσεις για κάθε αναβάθμιση βιβλιοθήκης."
 diff --git a/debian/po/es.po b/debian/po/es.po
 new file mode 100644
 index 0000000..daa4f64
 --- /dev/null
 +++ b/debian/po/es.po
@@ -0,0 +1,153 @@
++# openssl translation to spanish
++# Copyright (C) 2004 Software in the Public Interest
++# This file is distributed under the same license as the openssl package.
++#
++# Changes:
++# - Initial translation
++#       Lucas Wall <kthulhu@kadath.com.ar>, 2004
++#
++# - Last revision
++# 	Manuel Porras Peralta «Venturi», 2007
++# 	Maximiliano Marín, 2007
++# 	Manuel "Venturi" Porras Peralta <venturi@openmailbox.org>, 2014.
++#
++#  Traductores, si no conoce el formato PO, merece la pena leer la
++#  documentación de gettext, especialmente las secciones dedicadas a este
++#  formato, por ejemplo ejecutando:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'
++#
++# Equipo de traducción al español, por favor lean antes de traducir
++# los siguientes documentos:
++#
++# - El proyecto de traducción de Debian al español
++#   http://www.debian.org/intl/spanish/coordinacion
++#   especialmente las notas de traducción en
++#   http://www.debian.org/intl/spanish/notas
++#
++# - La guía de traducción de po's de debconf:
++#   /usr/share/doc/po-debconf/README-trans
++#   o http://www.debian.org/intl/l10n/po-debconf/README-trans
++#
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 0.9.7d-3\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2014-12-02 18:29+0100\n"
++"Last-Translator: Manuel «Venturi» Porras Peralta <venturi@openmailbox.org>\n"
++"Language-Team: es <debian-l10n-spanish@lists.debian.org>\n"
++"Language: es\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"Plural-Forms: nplurals=2; plural=(n != 1);\n"
++"X-Generator: Poedit 1.6.10\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Servicios que tienen que reiniciarse para que usen las nuevas bibliotecas:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Esta versión de OpenSSL corrige algunos problemas de seguridad. Los "
++"servicios no aplicarán estas correcciones hasta que se reinicien. Tenga en "
++"cuenta que reiniciar el servicio SSH (sshd) no debería afectar a ninguna de "
++"las conexiones existentes."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Compruebe la lista de los servicios detectados que necesitan reiniciarse y "
++"corríjala si fuera necesario. Los nombres de los servicios deben ser "
++"idénticos a los nombres de los programas de inicio en «/etc/init.d» y deben "
++"estar separados por espacios. No se reiniciará ningún servicio si deja la "
++"lista en blanco."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Debería reiniciar cualquier servicio que tras haber actualizado, falle "
++"inesperadamente. Se recomienda reiniciar el sistema para evitar cualquier "
++"problema relacionado con SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Fallo al reiniciar algunos servicios por la actualización de OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"No fue posible reiniciar los servicios indicados a continuación por la "
++"actualización de la biblioteca de OpenSSL: "
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Tendrá que iniciarlos manualmente ejecutando « /etc/init.d/<servicio> start "
++"»."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++"¿Quiere que los servicios se actualicen durante una actualización de paquete "
++"sin solicitar confirmación?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Hay algunos servicios instalados en el sistema que requieren reiniciarse al "
++"actualizar paquetes como libpam, libc, y libssl. Ya que reiniciar estos "
++"servicios puede provocar una interrupción de servicio del sistema, "
++"habitualmente se le solicitará en cada actualización una lista de los "
++"servicios que desea reiniciar. Puede seleccionar esta opción para impedir "
++"que se le solicite esta información; en su lugar, cada reinicio de servicio "
++"se hará de forma automática de forma que evitará que se le planteen "
++"preguntas cada vez que se actualice una biblioteca."
++
++#~ msgid "${services}"
++#~ msgstr "${services}"
 diff --git a/debian/po/eu.po b/debian/po/eu.po
 new file mode 100644
 index 0000000..bb4b2da
 --- /dev/null
 +++ b/debian/po/eu.po
@@ -0,0 +1,114 @@
++# translation of eu.po to Euskara
++# Openssl debconf template basque translation
++# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER
++# This file is distributed under the same license as the PACKAGE package.
++#
++# Piarres Beobide <pi@beobide.net>, 2007.
++msgid ""
++msgstr ""
++"Project-Id-Version: eu\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-12-21 10:56+0100\n"
++"Last-Translator: Piarres Beobide <pi@beobide.net>\n"
++"Language-Team: Euskara <Librezale@librezale.org>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: KBabel 1.11.4\n"
++"Plural-Forms: nplurals=2; plural=(n != 1)\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Liburutegi berriak erabili ditzaten berrabiarazi behar diren zerbitzuak:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"OpenSSL bertsio honek zenbait segurtasun arazo konpontzen ditu. Zerbitzuak "
++"ez dituzte konponketa hauek erabiliko berrabiarazi arte. Kontutan izan SSH "
++"zerbitzua berrabiarazteak ez dituela sorturik dauden konexioei eragingo."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Mesedez egiaztatu antzemandako berrabiarazi beharra dute zerbitzuen zerrenda "
++"eta zuzendu behar izanez gero. Zerbitzu izenak /etc/init.d-eko abiarazte "
++"Script-en berdinak izan behar dira. Zerrenda hutsik utziaz ez da zerbitzurik "
++"berrabiaraziko."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Bertsio berritze honen ondoren esperogabe huts egiten duen edozein zerbitzu "
++"berrabiarazi egin beharko zenuke. Ostalari osoa berrabiaraztea gomendatzen "
++"da SSL inguruko arazoak saihesteko."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Huts OpenSSL bertsio-berritzerako zerbitzu batzuek berrabiaraztean."
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Hurrengo zerbitzuak ezin izan dira berrabiarazi OpenSSL liburutegi bertsio-"
++"berritzerako:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Eskuz berrabiarazi beharko dituzu '/etc/ init.d/<zerbitzua> start' eginez."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++
++#~ msgid "${services}"
++#~ msgstr "${services}"
 diff --git a/debian/po/fi.po b/debian/po/fi.po
 new file mode 100644
 index 0000000..e246491
 --- /dev/null
 +++ b/debian/po/fi.po
@@ -0,0 +1,121 @@
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl_0.9.8e-8\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-12-30 00:00+0200\n"
++"Last-Translator: Esko Arajärvi <edu@iki.fi>\n"
++"Language-Team: Finnish <debian-l10n-finnish@lists.debian.org>\n"
++"Language: fi\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=utf-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Poedit-Language: Finnish\n"
++"X-Poedit-Country: FINLAND\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Palvelut, jotka käynnistetään uudelleen uusien kirjastojen käyttämiseksi:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Tämä OpenSSL:n julkaisu sisältää joitain turvapäivityksiä. Palvelut eivät "
++"käytä näitä päivityksiä ennen kuin ne on käynnistetty uudelleen. Huomaa, "
++"että SSH-palvelimen (sshd) uudelleenkäynnistyksen ei pitäisi vaikuttaa "
++"olemassa oleviin yhteyksiin."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Tarkista alla oleva lista löydetyistä palveluista, jotka pitää käynnistää "
++"uudelleen, ja korjaa sitä tarvittaessa. Palveluiden nimien pitää täsmätä "
++"hakemistossa /etc/init.d olevien alustustiedostojen nimiin ja olla "
++"välilyönnein eroteltuja. Jos lista on tyhjä, mitään palveluita ei "
++"käynnistetä uudelleen."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Palvelut, joissa esiintyy odottamattomia häiriöitä päivityksen jälkeen "
++"tulisi käynnistää uudelleen. On suositeltavaa käynnistää kone uudelleen SSL:"
++"än liittyvien ongelmien välttämiseksi."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++"Joidenkin palveluiden käynnistäminen uudelleen OpenSSL:n päivityksen "
++"yhteydessä epäonnistui."
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Seuraavia palveluita ei voitu käynnistää uudelleen päivitettäessä OpenSSL-"
++"kirjasto:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Nämä tarvitsee käynnistää käsin ajamalla ”/etc/init.d/<palvelu> start”."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++"Käynnistetäänkö palvelut kysymättä uudelleen pakettien päivityksen "
++"yhteydessä?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Järjestelmässäsi on asennettuna palveluita, jotka tulee käynnistää uudelleen "
++"päivitettäessä tiettyjä ohjelmakirjastoja, kuten libpam, libc ja libssl. "
++"Koska palveluiden uudelleenkäynnistys saattaa aiheuttaa katkoja palveluihin, "
++"kunkin päivityksen yhteydessä yleensä kysytään luetteloa käynnistettävistä "
++"palveluista. Voit valita tämän vaihtoehdon, jos et halua nähdä kysymystä "
++"jokaisen kirjastopäivityksen yhteydessä. Tällöin tarvittavat palvelut "
++"käynnistetään uudelleen automaattisesti."
++
++#~ msgid "${services}"
++#~ msgstr "${services}"
 diff --git a/debian/po/fr.po b/debian/po/fr.po
 new file mode 100644
 index 0000000..b9677ec
 --- /dev/null
 +++ b/debian/po/fr.po
@@ -0,0 +1,128 @@
++#
++#    Translators, if you are not familiar with the PO format, gettext
++#    documentation is worth reading, especially sections dedicated to
++#    this format, e.g. by running:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'
++#    Some information specific to po-debconf are available at
++#            /usr/share/doc/po-debconf/README-trans
++#         or http://www.debian.org/intl/l10n/po-debconf/README-trans#
++#    Developers do not need to manually edit POT or PO files.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl_0.9.8e-4\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-11-11 18:47+0100\n"
++"Last-Translator: Michel Grentzinger <mic.grentz@online.fr>\n"
++"Language-Team: French <debian-l10n-french@lists.debian.org>\n"
++"Language: fr\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Services à redémarrer afin d'utiliser les nouvelles bibliothèques :"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Cette version d'OpenSSL corrige certaines failles de sécurité. Les services "
++"n'utiliseront pas ces correctifs tant qu'ils n'auront pas été redémarrés. "
++"Veuillez noter que le redémarrage du serveur SSH (sshd) n'affectera aucune "
++"connexion existante."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Veuillez vérifier et corriger si nécessaire la liste des services devant "
++"être redémarrés. Les noms des services doivent être identiques aux noms des "
++"scripts présents dans /etc/init.d et doivent être séparés par des espaces. "
++"Si la liste est vide, aucun service ne sera redémarré."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Si d'autres services ne fonctionnent plus correctement après cette mise à "
++"jour, ils devront être redémarrés. Il est fortement recommandé de redémarrer "
++"le système pour éviter les problèmes liés à SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++"Impossible de redémarrer certains services lors de la mise à jour d'OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Les services suivants ne peuvent pas être redémarrés lors de la mise à jour "
++"de la bibliothèque OpenSSL :"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Vous devrez les redémarrer vous-même avec la commande « /etc/init.d/"
++"<service> start »."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++"Redémarrer inconditionnellement les services lors des mises à niveau de "
++"paquets ?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Certains services installés sur le système doivent être redémarrés lorsque "
++"certaines bibliothèques, comme libpam, libc ou libssl, sont mises à niveau. "
++"Comme ces redémarrages peuvent conduire à une interruption du service, le "
++"choix de les redémarrer ou non est en général offert lors de ces mises à "
++"niveau. Vous pouvez choisir ici que ce choix ne soit plus offert et que les "
++"redémarrages aient lieu systématiquement lors des mises à niveau de "
++"bibliothèques."
++
++#~ msgid "${services}"
++#~ msgstr "${services}"
 diff --git a/debian/po/gl.po b/debian/po/gl.po
 new file mode 100644
 index 0000000..9241ba2
 --- /dev/null
 +++ b/debian/po/gl.po
@@ -0,0 +1,108 @@
++# Galician translation of openssl's debconf templates.
++# This file is distributed under the same license as the openssl package.
++# Jacobo Tarrio <jtarrio@debian.org>, 2006, 2007, 2008.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-05-13 00:08+0100\n"
++"Last-Translator: Jacobo Tarrio <jtarrio@debian.org>\n"
++"Language-Team: Galician <proxecto@trasno.net>\n"
++"Language: gl\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Servizos a reiniciar para facer que empreguen as novas bibliotecas:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Esta versión de OpenSSL arranxa algúns fallos de seguridade. Os servizos non "
++"han ter eses fallos arranxados ata que se reinicien. Teña en conta que "
++"reiniciar o servidor de SSH (sshd) non debería afectar a ningunha conexión "
++"existente."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Verifique a lista de servizos detectados que hai que reiniciar e corríxaa se "
++"é preciso. Os nomes dos servizos deben ser idénticos aos nomes dos scripts "
++"de inicialización de /etc/init.d e deben ir separados por espazos. Non se ha "
++"reiniciar ningún servizo se a lista está baleira."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Tamén se debería reiniciar calquera servizo que falle de xeito inesperado "
++"trala actualización. Recoméndase reiniciar esta máquina para evitar "
++"experimentar problemas relacionados con SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Problemas ao reiniciar algúns servizos para a actualización de OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Non se puido reiniciar os seguintes servizos para a actualización da "
++"biblioteca OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Ha ter que reinicialos manualmente executando \"/etc/init.d/<servizo> start"
++"\"."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
 diff --git a/debian/po/hu.po b/debian/po/hu.po
 new file mode 100644
 index 0000000..b9bbd7c
 --- /dev/null
 +++ b/debian/po/hu.po
@@ -0,0 +1,101 @@
++# SZERVÁC Attila <sas@321.hu>,
++# Dr. Nagy Elemér Károly <eknagy@omikk.bme.hu>, 2013.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: glibc\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2019-06-20 17:58+0100\n"
++"PO-Revision-Date: 2013-05-14 18:47+0200\n"
++"Last-Translator: Dr. Nagy Elemér Károly <eknagy@omikk.bme.hu>\n"
++"Language-Team: Hungarian <debian-l10n-hungarian@lists.d.o>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: UTF-8\n"
++"Plural-Forms: ???\n"
++"X-Poedit-Language: Hungarian\n"
++"X-Poedit-Country: HUNGARY\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++
++#. Type: string
++#. Description
++#: ../libssl1.1.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.1.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.1.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.1.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "A csomag frissítésekor kérdés nélkül újraindítsam a szolgáltatásokat?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Ezen a rendszeren olyan szolgáltatások vannak telepítve, amelyeket újra kell "
++"indítani, bizonyos könyvtárak (mint a libpam, libc, libssl) frissítésekor. "
++"Mivel ezek az újraindítások megszakítják a szolgáltatásokat, alapesetben "
++"minden frissítésnél megkérdezi az újraindítandó szolgáltatások listáját a "
++"rendszer. Dönthetsz úgy, hogy ne kérdezzen  - ilyenkor minden szükséges "
++"szolgáltatás-újraindítást elvégez a rendszer és nem kérdezget."
 diff --git a/debian/po/it.po b/debian/po/it.po
 new file mode 100644
 index 0000000..48b8d1f
 --- /dev/null
 +++ b/debian/po/it.po
@@ -0,0 +1,117 @@
++# openssl po-debconf translation to Italian (it)
++# Copyright (C) 2006 Software in the Public Interest
++# This file is distributed under the same license as the openssl package.
++# Luca Monducci <luca.mo@tiscali.it>, 2006-2008.
++# Giuseppe Sacco <eppesuig@debian.org>, 2007
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 0.9.8g italian debconf templates\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-01-19 21:17+0100\n"
++"Last-Translator: Luca Monducci <luca.mo@tiscali.it>\n"
++"Language-Team: Italian <debian-l10n-italian@lists.debian.org>\n"
++"Language: it\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Servizi da riavviare per l'uso delle nuove librerie:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Questo rilascio di OpenSSL corregge alcuni problemi legati alla sicurezza, "
++"ma i servizi non utilizzeranno queste correzioni finché non verranno "
++"riavviati. Notare che il riavvio del server SSH (sshd) non ha effetti sulle "
++"connessioni attive."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Controllare ed eventualmente correggere l'elenco dei servizi che devono "
++"essere riavviati. Il nome dei servizi, separati da spazi, devono essere gli "
++"stessi degli script di inizializzazione che si trovano in /etc/init.d. Se "
++"l'elenco è vuoto non verrà riavviato nessun servizio."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Qualsiasi servizio che si bloccasse in maniera imprevista dopo questo "
++"aggiornamento dovrà essere riavviato. Si consiglia di riavviare la macchina "
++"per evitare qualsiasi problema legato a SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Errore nel riavvio di alcuni servizi per l'aggiornamento di OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Non è stato possibile riavviare i seguenti servizi per l'aggiornamento di "
++"OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"È necessario avviarli manualmente con \"/etc/init.d/<servizio> start\"."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Riavviare i servizi durante l'aggiornamento senza chiedere conferma?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Sul proprio sistema sono installati dei servizi che devono essere riavviati "
++"dopo l'aggiornamento di determinate librerie, quali libpam, libc e libssl. "
++"Poiché questi riavvii possono causare delle interruzioni dei servizi offerti "
++"dal sistema normalmente, a ogni aggiornamento, viene mostrato l'elenco dei "
++"servizi e viene chiesto di confermarne il riavvio. È possibile evitare che "
++"sia chiesta la conferma del riavvio accettando questa opzione; saranno "
++"effettuati automaticamente tutti i riavvii necessari senza fare domande per "
++"ogni aggiornamento della libreria."
 diff --git a/debian/po/ja.po b/debian/po/ja.po
 new file mode 100644
 index 0000000..cbf9b7e
 --- /dev/null
 +++ b/debian/po/ja.po
@@ -0,0 +1,109 @@
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 0.9.8e-4\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-01-22 07:37+0900\n"
++"Last-Translator: Hideki Yamane (Debian-JP) <henrich@debian.or.jp>\n"
++"Language-Team: Japanese <debian-japanese@lists.debian.org>\n"
++"Language: ja\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "新しいライブラリを使うために再起動するサービス:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"OpenSSL は、今回のリリースでセキュリティホールが修正されました。各サービスは"
++"再起動を行わないと、この修正されたライブラリを利用しません。注意: SSH サーバ "
++"(sshd) を再起動しても、現状の接続には何ら影響しません。"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"再起動が必要だと判断されたサービスのリストを確認してください。必要であれば修"
++"正してください。サービス名は /etc/init.d にあるスクリプトの名前を指し、空白で"
++"区切る必要があります。リストが空の場合は、どのサービスも再起動されません。"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"他のサービスがここでのアップグレードの後に何故かエラーを起こし始めた場合、そ"
++"れらも再起動する必要があります。SSL 関連のトラブルを避けるためには、マシンを"
++"再起動するのをお勧めします。"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "OpenSSL のアップグレードによって再起動に失敗したサービス"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"以下のサービスは OpenSSL ライブラリのアップグレードに伴った再起動を行うことが"
++"できませんでした。"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"開始するには '/etc/init.d/<service> start' を手動で実行する必要があります。"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++"パッケージのアップグレード中、質問することなくサービスを再起動しますか?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"このシステムには、libpam や libc、libssl といった特定のライブラリがアップグ"
++"レードされたときに再起動を必要とするサービスがインストールされています。この"
++"再起動はそのシステムで動作しているサービスの中断を伴う可能性があるため、通常"
++"は再起動させるサービス一覧をアップグレードの度に質問します。このオプションを"
++"選択するとその質問を避けられます。代わりに、再起動が必要な場合は全て自動で再"
++"起動させるため、ライブラリをアップグレードする度に質問されるのを避けられま"
++"す。"
 diff --git a/debian/po/ko.po b/debian/po/ko.po
 new file mode 100644
 index 0000000..e78c473
 --- /dev/null
 +++ b/debian/po/ko.po
@@ -0,0 +1,104 @@
++# Korean translations for openssl package
++# openssl 패키지에 대한 한국어 번역문.
++# Copyright (C) 2007 THE openssl'S COPYRIGHT HOLDER
++# This file is distributed under the same license as the openssl package.
++# Sunjae Park <darehanl@gmail.com>, 2007.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-04-11 13:43-0400\n"
++"Last-Translator: Sunjae Park <darehanl@gmail.com>\n"
++"Language-Team: Korean <debian-l10n-korean@lists.debian.org>\n"
++"Language: ko\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"Plural-Forms: nplurals=1; plural=0;\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "새 라이브러리를 사용하도록 재시작할 서비스 목록:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"이번 OpenSSL 릴리즈는 보안 문제를 몇 개 해결합니다. 서비스들을 재시작시킬 때"
++"까지는 이 문제들이 해결되지 않습니다. 참고로 SSH 서버(sshd)를 재시작시키더라"
++"도 기존 연결에는 영향을 주지 않을 것입니다."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"재시작시킬 서비스의 목록을 확인하시고 필요할 경우 목록을 수정하십시오. 서비스"
++"의 이름들은 /etc/init.d에 있는 초기화 스크립트의 이름과 같아야 하며 빈칸으로 "
++"구분되어야 합니다. 목록이 비어있을 경우에는 서비스를 재시작시키지 않습니다."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"이 업그레이드를 적용한 후 갑자기 오동작을 하는 서비스는 재시작시키십시오. "
++"SSL 관련된 문제가 없도록 이 호스트를 재부팅하시길 권장합니다."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
 diff --git a/debian/po/lt.po b/debian/po/lt.po
 new file mode 100644
 index 0000000..e5ee3ef
 --- /dev/null
 +++ b/debian/po/lt.po
@@ -0,0 +1,124 @@
++# translation of openssl_0.9.8b-2_templates.po to Lithuanian
++# opensll debconf translation templates.
++# Copyright (C) 2003 Christoph Martin <christoph.martin@uni-mainz.de>
++# This file is distributed under the same license as the openssl package.
++#    Translators, if you are not familiar with the PO format, gettext
++#    documentation is worth reading, especially sections dedicated to
++#    this format, e.g. by running:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'#
++#    Some information specific to po-debconf are available at
++#            /usr/share/doc/po-debconf/README-trans
++#         or http://www.debian.org/intl/l10n/po-debconf/README-trans#
++#    Developers do not need to manually edit POT or PO files.
++#
++# Gintautas Miliauskas <gintas@akl.lt>, 2006.
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl_0.9.8b-2_templates\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2006-06-19 01:32+0300\n"
++"Last-Translator: Gintautas Miliauskas <gintas@akl.lt>\n"
++"Language-Team: Lithuanian <komp_lt@konferencijos.lt>\n"
++"Language: lt\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: KBabel 1.11.2\n"
++"Plural-Forms:  nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n"
++"%100<10 || n%100>=20) ? 1 : 2);\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++#, fuzzy
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Kuriuos servisus norėtumėte paleisti iš naujo, kad jie naudotų naujas "
++"bibliotekas?"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++#, fuzzy
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Šioje versijoje ištaisytos saugumo skylės. Servisai nenaudos šių pataisymų, "
++"kol nebus iš naujo paleisti. Pastaba: sshd paleidimas iš naujo neturėtų "
++"turėti įtakos esamiems prisijungimams."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++#, fuzzy
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Pateiktas servisų, kuriuos reikėtų paleisti iš naujo, sąrašas. Jei matote "
++"klaidų, sąrašą pataisykite. Servisų vardai turi būti identiški atitinkamų "
++"paleidžiamųjų failų /etc/init.d kataloge vardams ir turi būti atskirti "
++"tarpais. Jei sąrašą paliksite tuščią, nė vienas servisas nebus iš naujo "
++"paleistas."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++#, fuzzy
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Jei kiti servisai po šio atnaujinimo sutriks, gali reikėti ir juos paleisti "
++"iš naujo. Rekomenduojame perkrauti sistemą, jei norite išvengti problemų, "
++"susijusių su SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
 diff --git a/debian/po/ml.po b/debian/po/ml.po
 new file mode 100644
 index 0000000..bf05ede
 --- /dev/null
 +++ b/debian/po/ml.po
@@ -0,0 +1,106 @@
++# English translation of openssl.
++# Copyright (C) 2007 THE openssl'S COPYRIGHT HOLDER
++# This file is distributed under the same license as the openssl package.
++# Praveen|പ്രവീണ്‍ A|എ <pravi.a@gmail.com>, 2007.
++#
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 20070415\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-04-14 07:15+0530\n"
++"Last-Translator: Praveen|പ്രവീണ്‍ A|എ <pravi.a@gmail.com>\n"
++"Language-Team: Swathanthra|സ്വതന്ത്ര Malayalam|മലയാളം Computing|കമ്പ്യൂട്ടിങ്ങ്  <smc-"
++"discuss@googlegroups.com>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "പുിതിയ ലൈബ്രറികള്‍ ഉപയോഗിയ്ക്കാന്‍ പുനരാരംഭിയ്ക്കേണ്ട സേവനങ്ങള്‍:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"OpenSSL ന്റെ ഈ പതിപ്പ് ചില സുരക്ഷാ പ്രശ്നങ്ങളെ പരിഹരിയ്ക്കുന്നുണ്ട്. പുനരാരംഭിയ്ക്കുന്നത് വരെ "
++"സേവനങ്ങള്‍ ഈ പരിഹാരങ്ങള്‍ ഉപയോഗിയ്ക്കുന്നതല്ല. SSH സേവകന്‍ (sshd) പുനരാരംഭിയ്ക്കുന്നത് "
++"നേരത്തെയുള്ള ബന്ധങ്ങളെ ബാധിയ്ക്കുകയില്ല."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"ദയവായി പുനരാരംഭിയ്ക്കേണ്ടതായി കണ്ടുപിടിയ്ക്കപ്പെട്ട സേവനങ്ങളുടെ പട്ടിക ദയവായി "
++"പരിശോദിയ്ക്കുകയും ആവശ്യമെങ്കില്‍ തിരുത്തുകയും ചെയ്യുക. സേവന നാമങ്ങള്‍ /etc/init.d യിലെ ആരംഭ "
++"സ്ക്രിപ്റ്റ് നാമങ്ങളുമായി സമാനമായിരിയ്ക്കുയും സ്പേയ്സുകള്‍ കൊണ്ട് "
++"വേര്‍തിരിയ്ക്കപ്പെട്ടവയുമായിരിയ്ക്കണം. പട്ടിക ശൂന്യമാണെങ്കില്‍ സേവനങ്ങളൊന്നും പുനരാരംഭിയ്ക്കുന്നതല്ല."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"ഈ പുതുക്കലിന് ശേഷം പിന്നീട് അപ്രതീക്ഷിതമായി മുടങ്ങുന്ന ഏതൊരു സേവനങ്ങളേയും "
++"പുനരാരംഭിയ്ക്കേണ്ടതുണ്ട്. SSL ലുമായി ബന്ധപ്പെട്ട പ്രശ്നം ഒഴിവാക്കാന്‍ ഈ ഹോസ്റ്റിനെ "
++"പുനരാരംഭിയ്ക്കാന്‍ ശുപാര്‍ശ ചെയ്തിരിയ്ക്കുന്നു."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
 diff --git a/debian/po/nb.po b/debian/po/nb.po
 new file mode 100644
 index 0000000..b18c98c
 --- /dev/null
 +++ b/debian/po/nb.po
@@ -0,0 +1,117 @@
++# translation of openssl_0.9.8c-4_templates.po to Norwegian Bokmål
++# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER
++# This file is distributed under the same license as the PACKAGE package.
++#
++# Bjørn Steensrud <bjornst@powertech.no>, 2007.
++# Bjørn Steensrud <bjornst@skogkatt.homelinux.org>, 2011.
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl_0.9.8c-4_templates\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2011-12-29 14:19+0100\n"
++"Last-Translator: Bjørn Steensrud <bjornst@skogkatt.homelinux.org>\n"
++"Language-Team: Norwegian Bokmål <i18n-nb@lister.ping.uio.no>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: Lokalize 1.2\n"
++"Plural-Forms: nplurals=2; plural=n != 1;\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Tjenester som skal startes på nytt slik at de bruker de nye bibliotekene."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Denne utgaven av OpenSSL retter noen sikkerhetsproblemer. Tjenester kan ikke "
++"bruke disse rettelsene før de er startet på nytt. Merk: om sshd startes på "
++"nytt blir antakelig ingen eksisterende tilkoblinger påvirket."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Kontroller lista over funne tjenester som trenger omstart. Rett på lista om "
++"den er feil. Tjenestenavnene må være lik skript-navnene i /etc/init.d, og "
++"være atskilt med mellomrom. Hvis du tømmer lista blir ingen tjenester "
++"omstartet."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Hvis andre tjenester begynner å svikte på mystisk måte etter denne "
++"oppgraderingen, så blir det anbefalt at maskinen stoppes og startes for å "
++"unngå vansker i forbindelse med SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Noen tjenester kunne ikke restartes for OpenSSL-oppgradering"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Følgende tjenester kunne ikke restartes for oppgradering av OpenSSL-"
++"biblioteket:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr "Du må starte disse manuelt ved å kjøre «/etc/init.d/<service> start»."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Skal tjenester restartes uten spørsmål under pakkeoppgraderinger?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"På systemet ditt finnes det tjenester som må startes på nytt når visse "
++"biblioteker, slik som libpam, libc og libssl, oppgraderes. Slike omstarter "
++"kan avbryte tjenester på systemet, og normalt blir du spurt ved hver "
++"oppgradering om hvilke tjenester du vil starte på nytt. Du kan slå på dette "
++"valget for å slippe å bli spurt, da blir i stedet alle nødvendige omstarter "
++"gjort automatisk slik at du ikke får spørsmål ved hver "
++"biblioteksoppgradering."
 diff --git a/debian/po/nl.po b/debian/po/nl.po
 new file mode 100644
 index 0000000..9a2774a
 --- /dev/null
 +++ b/debian/po/nl.po
@@ -0,0 +1,130 @@
++#    Translators, if you are not familiar with the PO format, gettext
++#    documentation is worth reading, especially sections dedicated to
++#    this format, e.g. by running:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'
++#
++#    Some information specific to po-debconf are available at
++#            /usr/share/doc/po-debconf/README-trans
++#         or http://www.debian.org/intl/l10n/po-debconf/README-trans
++#
++#    Developers do not need to manually edit POT or PO files.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2007-11-14 20:03+0100\n"
++"Last-Translator: Bart Cornelis <cobaco@skolelinux.no>\n"
++"Language-Team: debian-l10n-dutch <debian-l10n-dutch@lists.debian.org>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=utf-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Poedit-Language: Dutch\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Welke diensten moeten herstart worden (zodat ze de nieuwe bibliotheken "
++"gebruiken)?"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Deze uitgave van OpenSSL dicht een aantal veiligheidslekken. Andere "
++"achtergronddiensten maken pas gebruik van de nieuwe versie eens ze herstart "
++"zijn. Herstarten van de SSH-server (sshd) heeft normaal geen gevolgen voor "
++"bestande verbindingen."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Hierna volgt een lijst van gedetecteerde diensten die herstart moeten "
++"worden. Verbeter de lijst, als u denkt dat ze incorrect is. De namen moeten "
++"overeenkomen met de script-namen in /etc/init.d en moeten gescheiden worden "
++"door spaties. Als de lijst leeg is worden er geen diensten herstart."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Als er andere diensten mysterieus beginnen te falen na deze opwaardering, "
++"dient u deze te herstarten. Er wordt u ten zeerste aanbevolen uw machine te "
++"herstarten om SSL-gerelateerde problemen te vermijden."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Herstarten van sommige diensten na de OpenSSL-opwaardering is mislukt."
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"De volgende diensten konden niet herstart worden na de opwaardering van de "
++"OpenSSL-bibliotheek:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"U zult deze handmatig moeten herstarten via het commando '/etc/init.d/"
++"<dienst> start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Diensten zonder vragen herstarten bij het opwaarderen van pakketten?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Er zijn diensten op uw systeem geïnstalleerd die moeten worden herstart "
++"wanneer bepaalde bibliotheken, zoals libpam, libc en libssl, worden "
++"opgewaardeerd. Omdat deze herstarts dienstonderbrekingen op uw systeem "
++"kunnen veroorzaken, wordt u normaal gesproken bij elke opwaardering gevraagd "
++"welke diensten u wilt herstarten. Als u voor deze optie kiest wordt dit niet "
++"meer aan u gevraagd. In plaats daarvan worden alle noodzakelijke herstarts "
++"automatisch gedaan zodat u geen vragen krijgt bij elke opwaardering van een "
++"bibliotheek."
++
++#~ msgid "${services}"
++#~ msgstr "${services}"
 diff --git a/debian/po/pl.po b/debian/po/pl.po
 new file mode 100644
 index 0000000..92b91a8
 --- /dev/null
 +++ b/debian/po/pl.po
@@ -0,0 +1,120 @@
++# Copyright (C) 2010
++# This file is distributed under the same license as the openssl package.
++#
++# Michał Kułach <michal.kulach@gmail.com>, 2012.
++msgid ""
++msgstr ""
++"Project-Id-Version: \n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2012-01-31 18:52+0100\n"
++"Last-Translator: Michał Kułach <michal.kulach@gmail.com>\n"
++"Language-Team: Polish <debian-l10n-polish@lists.debian.org>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: Lokalize 1.2\n"
++"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 "
++"|| n%100>=20) ? 1 : 2);\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Usługi które mają być zrestartowane, aby mogły używać nowych bibliotek:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"To wydanie OpenSSL naprawia kilka problemów bezpieczeństwa. Usługi nie będą "
++"mogły skorzystać z tych poprawek, dopóki nie zostaną zrestartowane. Proszę "
++"zauważyć, że zrestartowanie serwera SSH (sshd) nie powinno mieć wpływu na "
++"istniejące połączenia."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Proszę sprawdzić listę wykrytych usług, które powinny zostać zrestartowane, "
++"i poprawić ją, jeśli to konieczne. Nazwy usług muszą się zgadzać z nazwami "
++"skryptów startowych w /etc/init.d i muszą być rozdzielone spacjami. Jeśli "
++"lista będzie pusta, żadne usługi nie zostaną zrestartowane."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Każda usługa w której wystąpi nieoczekiwany błąd po tej aktualizacji, "
++"powinna zostać zrestartowana. Zaleca się ponowne uruchomienie komputera, co "
++"umożliwi uniknięcie wszystkich problemów związanych z SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++"Zrestartowanie niektórych usług podczas aktualizacji OpenSSL nie powiodło się"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Następujące usługi nie mogły zostać zrestartowane w celu aktualizacji "
++"biblioteki OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Należy zrestartować te usługi ręcznie, przez wykonanie \"/etc/init.d/"
++"<usługa> start\""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Zrestartować usługi podczas aktualizacji pakietu bez pytania?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Niektóre z zainstalowanych usług wymagają restartu, gdy są aktualizowane "
++"określone biblioteki (np. libpam, libc i libss1). Ponieważ restarty mogą "
++"spowodować przerwanie tych usług, użytkownik jest zwykle pytany podczas "
++"każdej aktualizacji o listę usług, które chce zrestartować. Można wybrać tę "
++"opcję, aby zapobiec takim pytaniom; wtedy wszystkie potrzebne restarty "
++"odbędą się automatycznie, a użytkownik uniknie pytania przy każdej "
++"aktualizacji biblioteki."
 diff --git a/debian/po/pt.po b/debian/po/pt.po
 new file mode 100644
 index 0000000..3b5c8cf
 --- /dev/null
 +++ b/debian/po/pt.po
@@ -0,0 +1,115 @@
++# Portuguese translation for openssl's debconf messages
++# Copyright (C) 2007, Carlos Lisboa <carloslisboa@gmail.com>
++# This file is distributed under the same license as the openssl package.
++# Carlos Lisboa <carloslisboa@gmail.com>, 2007.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-04-10 20:36+0100\n"
++"Last-Translator: Carlos Lisboa <carloslisboa@gmail.com>\n"
++"Language-Team: Portuguese <traduz@debianpt.org>\n"
++"Language: pt\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Serviços a reiniciar para que usem as novas bibliotecas:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Este lançamento do OpenSSL resolve alguns problemas de segurança. Os "
++"serviços podem não usar as correcções até que sejam reiniciados. Note que "
++"reiniciar o servidor SSH (sshd) não deve afectar quaisquer ligações "
++"existentes."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Por favor verifique a lista de serviços detectados que necessitam de ser "
++"reiniciados e corrija-a, se necessário. Os nomes dos serviços devem ser "
++"idênticos aos nomes dos scripts de inicialização em /etc/init.d e separados "
++"por espaços. Nennhum serviço será reiniciado se a lista estiver vazia."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Qualquer serviço que mais tarde falhe de forma inesperada após esta "
++"actualização deverá ser reiniciado. É recomendado que reinicie este "
++"computador para evitar qualquer problema relacionado como SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Falha ao reiniciar alguns serviços para a actualização do OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Os seguintes serviços não poderam ser reiniciados para a actualização da "
++"biblioteca OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Terá que iniciá-los manualmente correndo '/etc/init.d/<serviço> start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Reiniciar serviços sem perguntar durante a actualização do pacote?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Há serviços instalados no seu sistema que necessitam de ser reiniciados "
++"quando são actualizadas certas bibliotecas, como libpam, libc e libssl. Uma "
++"vez que estes reinícios podem causar interrupção de serviços no sistema, é-"
++"lhe normalmente perguntado em cada actualização que serviços deseja "
++"reiniciar. Pode escolher esta opção para que os reinícios necessários sejam "
++"automaticamente tratados pelo processo de actualização em vez de lhe serem "
++"colocadas questões."
 diff --git a/debian/po/pt_BR.po b/debian/po/pt_BR.po
 new file mode 100644
 index 0000000..9cafce9
 --- /dev/null
 +++ b/debian/po/pt_BR.po
@@ -0,0 +1,131 @@
++#
++#    Translators, if you are not familiar with the PO format, gettext
++#    documentation is worth reading, especially sections dedicated to
++#    this format, e.g. by running:
++#         info -n '(gettext)PO Files'
++#         info -n '(gettext)Header Entry'
++#
++#    Some information specific to po-debconf are available at
++#            /usr/share/doc/po-debconf/README-trans
++#         or http://www.debian.org/intl/l10n/po-debconf/README-trans
++#
++#    Developers do not need to manually edit POT or PO files.
++# Flamarion Jorge <jorge.flamarion@gmail.com>, 2010.
++#
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2010-07-18 15:03-0300\n"
++"Last-Translator: Flamarion Jorge <jorge.flamarion@gmail.com>\n"
++"Language-Team: Brazilian Portuguese <debian-l10n-portuguese@lists.debian."
++"org>\n"
++"Language: pt_BR\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"Plural-Forms: nplurals=2; plural=(n > 1);\n"
++"pt_BR utf-8\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Serviços a serem reiniciados para que possam utilizar as novas bibliotecas:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Esta versão do OpenSSL corrige alguns problemas de segurança. Os serviços "
++"não utilizarão essas correções até que sejam reiniciados. Por favor, note "
++"que reiniciar o servidor SSH (sshd) não deve afetar nenhuma conexão "
++"existente."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Por favor, confira a lista de serviços detectados que precisam ser "
++"reiniciados e a corrija, caso necessário. Os nomes dos serviços devem ser "
++"idênticos aos nomes dos scripts de inicialização em /etc/init.d e devem ser "
++"separados por espaços. Nenhum serviço será reiniciado caso a lista esteja "
++"vazia."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Qualquer serviço que falhar inesperadamente após esta atualização deverá ser "
++"reiniciado. É recomendado reinicializar este host para evitar qualquer "
++"problema relacionado a SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Falha ao reiniciar alguns serviços para a atualização do OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Os seguintes serviços não puderam ser reiniciados para a atualização da "
++"biblioteca OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Você terá que iniciá-los manualmente executando '/etc/init.d/<serviço> "
++"start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Reiniciar serviços durante a atualização de pacotes sem perguntar?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Existem serviços instalados no seu sistema que precisam ser reiniciados "
++"quando determinadas bibliotecas, tais como libpam, libc e libssl são "
++"atualizadas. Uma vez que essas reinicializações podem causar interrupções de "
++"serviços para o sistema, normalmente você terá que responder a cada "
++"atualização qual será a lista de serviços que quiser reiniciar. Você pode "
++"escolher esta opção para evitar novas solicitações; ao invés disso, todas as "
++"reinicializações necessárias serão realizadas automaticamente, para evitar "
++"que você responda a cada atualização de biblioteca."
 diff --git a/debian/po/ro.po b/debian/po/ro.po
 new file mode 100644
 index 0000000..5f47e30
 --- /dev/null
 +++ b/debian/po/ro.po
@@ -0,0 +1,115 @@
++# translation of ro.po to Romanian
++# Romanian translation of openssl.
++# Copyright (C) 2006 THE openssl'S COPYRIGHT HOLDER
++# This file is distributed under the same license as the openssl package.
++#
++# Stan Ioan-Eugen <stan.ieugen@gmail.com>, 2006.
++# Eddy Petrișor <eddy.petrisor@gmail.com>, 2007, 2008.
++msgid ""
++msgstr ""
++"Project-Id-Version: ro\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-06-30 02:26+0300\n"
++"Last-Translator: Eddy Petrișor <eddy.petrisor@gmail.com>\n"
++"Language-Team: Romanian <debian-l10n-romanian@lists.debian.org>\n"
++"Language: ro\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: KBabel 1.11.4\n"
++"Plural-Forms:  nplurals=3; plural=n==1 ? 0 : (n==0 || (n%100 > 0 && n%100 < "
++"20)) ? 1 : 2;\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Serviciile repornite pentru a asigura folosirea noilor biblioteci:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Cu această nouă versiune s-au rezolvat probleme de securitate. Serviciile nu "
++"vor folosi aceste îmbunătățiri dacă nu sunt repornite. A se reține că "
++"repornirea serverului SSH (sshd) nu ar trebui să afecteze conexiunile deja "
++"existente."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Verificați și corectați, dacă este nevoie, lista cu serviciile detectate "
++"care ar trebui repornite. Numele serviciilor trebuie să fie identice cu "
++"numele scripturilor de inițializare din /etc/init.d și trebuie să fie "
++"separate prin spații. Dacă lista este goală, nu va fi repornit nici un "
++"serviciu."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Orice alt serviciu care prezintă probleme neașteptate după această "
++"actualizare, ar trebui repornit. Recomandăm să reporniți calculatorul pentru "
++"a evita probleme legate de SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Eșec la repornirea unor servicii pentru actualizarea lui OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Următoarele servicii nu au putut fi repornite pentru actualizarea "
++"bibliotecii OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Va trebui să le porniți manual cu o comandă de tipul „/etc/init.d/<serviciu> "
++"start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr ""
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
 diff --git a/debian/po/ru.po b/debian/po/ru.po
 new file mode 100644
 index 0000000..c4fb2ac
 --- /dev/null
 +++ b/debian/po/ru.po
@@ -0,0 +1,119 @@
++# translation of openssl_0.9.8g-10.1_ru.po to Russian
++# This file is distributed under the same license as the PACKAGE package.
++# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER.
++#
++# Yuriy Talakan' <yt@amur.elektra.ru>, 2006.
++# Yuriy Talakan' <yt@drsk.ru>, 2007.
++# Yuri Kozlov <kozlov.y@gmail.com>, 2008.
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 0.9.8g-10.1\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-06-03 21:21+0400\n"
++"Last-Translator: Yuri Kozlov <kozlov.y@gmail.com>\n"
++"Language-Team: Russian <debian-l10n-russian@lists.debian.org>\n"
++"Language: ru\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=UTF-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: KBabel 1.11.4\n"
++"Plural-Forms:  nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n"
++"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Перезапускаемые службы для использования новой библиотеки:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Этот выпуск OpenSSL исправляет некоторые проблемы безопасности. Службы не "
++"могут использовать эти исправления, пока не будут перезапущены. Обратите "
++"внимание, что перезапуск сервера SSH (sshd) не повлияет на существующие "
++"соединения."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Проверьте список обнаруженных служб, которые надо перезапустить и поправьте "
++"его, если необходимо. Имена служб должны соответствовать именам сценариев "
++"запуска в /etc/init.d и должны быть разделены пробелами. Если список пустой, "
++"службы не будут перезапущены."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Надо перезапустить любую службу, которая после этого обновления неожиданно "
++"начнёт работать с ошибками. Рекомендуется перегрузить машину во избежание "
++"проблем, связанных с SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr "Не удалось перезапустить некоторые службы при обновлении OpenSSL"
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Следующие службы не удалось перезапустить при обновлении библиотеки OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Вам нужно будет перезапустить их вручную с помощью команд '/etc/init.d/"
++"<служба> start'."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Перезапускать службы при обновлении пакета без подтверждения?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"В системе установлены службы, которые требуют перезапуска после обновления "
++"определённых библиотек (например, libpam, libc и libssl). Так как это может "
++"вызвать перерыв в работе службы, то обычно при каждом обновлении "
++"запрашивается подтверждение списка служб, которые нужно перезапустить. Чтобы "
++"этот вопрос не задавался, вы можете ответить утвердительно; в этом случае "
++"все необходимые службы будут перезапущены автоматически."
 diff --git a/debian/po/sk.po b/debian/po/sk.po
 new file mode 100644
 index 0000000..ec613d4
 --- /dev/null
 +++ b/debian/po/sk.po
@@ -0,0 +1,113 @@
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl 0.9.8e-5\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-01-21 11:41+0100\n"
++"Last-Translator: Ivan Masár <helix84@centrum.sk>\n"
++"Language-Team: Slovak <sk-i18n@lists.linux.sk>\n"
++"Language: sk\n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=utf-8\n"
++"Content-Transfer-Encoding: 8bit\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr "Služby, ktoré sa majú reštartovať, aby začali používať nové knižnice:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "
++"these fixes until they are restarted. Please note that restarting the SSH "
++"server (sshd) should not affect any existing connections."
++msgstr ""
++"Táto verzia OpenSSL opravuje niektoré bezpečnostné problémy. Služby nezačnú "
++"používať tieto opravy až pokým nebudú reštartované. Prosím, pamätajte, že "
++"reštartovanie SSH servera (sshd) by nemalo mať vplyv na žiadne už nadviazané "
++"spojenia."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Please check the list of detected services that need to be restarted and "
++"correct it, if needed. The services names must be identical to the "
++"initialization script names in /etc/init.d and separated by spaces. No "
++"services will be restarted if the list is empty."
++msgstr ""
++"Prosím, skontrolujte zoznam zistených služieb, ktoré sa majú reštartovať a "
++"ak je to potrebné, opravte ho. Názvy služieb musia byť rovnaké ako názvy "
++"inicializačných skriptov v /etc/init.d a oddelené medzerami. Ak tento zoznam "
++"bude prázdny, žiadne služby sa nebudú reštartovať."
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"Any service that later fails unexpectedly after this upgrade should be "
++"restarted. It is recommended to reboot this host to avoid any SSL-related "
++"trouble."
++msgstr ""
++"Každá služba, ktorá po vykonaní tejto aktualizácie zlyhá, by mala byť "
++"reštartovaná. Odporúča sa reštartovať tento počítač, aby ste sa vyhli "
++"akýmkoľvek problémom týkajúcim sa SSL."
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid "Failure restarting some services for OpenSSL upgrade"
++msgstr ""
++"Počas aktualizácie knižnice OpenSSL sa nepodarilo sa reštartovať niektoré "
++"služby."
++
++#. Type: error
++#. Description
++#. This paragraph is followed by a (non translatable) paragraph containing
++#. a list of services that could not be restarted
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"The following services could not be restarted for the OpenSSL library "
++"upgrade:"
++msgstr ""
++"Nasledovné služby nebolo možné reštartovať počas aktualizácie knižnice "
++"OpenSSL:"
++
++#. Type: error
++#. Description
++#: ../libssl1.0.0.templates:2001
++msgid ""
++"You will need to start these manually by running '/etc/init.d/<service> "
++"start'."
++msgstr ""
++"Budete ich musieť reštartovať ručne spustením „/etc/init.d/<service> start“."
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid "Restart services during package upgrades without asking?"
++msgstr "Reštartovať služby počas aktualizácie balíka bez pýtania sa?"
++
++#. Type: boolean
++#. Description
++#: ../libssl1.1.templates:3001
++msgid ""
++"There are services installed on your system which need to be restarted when "
++"certain libraries, such as libpam, libc, and libssl, are upgraded. Since "
++"these restarts may cause interruptions of service for the system, you will "
++"normally be prompted on each upgrade for the list of services you wish to "
++"restart.  You can choose this option to avoid being prompted; instead, all "
++"necessary restarts will be done for you automatically so you can avoid being "
++"asked questions on each library upgrade."
++msgstr ""
++"Na vašom systéme sú nainštalované služby, ktoré je potrebné reštartovať pri "
++"aktualizácii určitých knižníc ako libpam, libc, a libssl. Keďže tieto "
++"reštarty môžu spôsobiť prerušenie služby systému, za bežných okolností sa "
++"vám systém správy balíkov pri každej aktualizácii ponúkne zoznam služieb, "
++"ktoré chcete reštartovať. Môžete zvoliť, aby sa vás systém správy balíkov už "
++"viac nepýtal, ale aby sa namiesto toho všetky potrebné reštarty vykonávali "
++"automaticky, takže sa vyhnete kladeniu otázok pri každej aktualizácii "
++"knižnice."
 diff --git a/debian/po/sv.po b/debian/po/sv.po
 new file mode 100644
 index 0000000..c55f796
 --- /dev/null
 +++ b/debian/po/sv.po
@@ -0,0 +1,126 @@
++# translation of openssl_0.9.8g-10_sv.po to swedish
++# Translators, if you are not familiar with the PO format, gettext
++# documentation is worth reading, especially sections dedicated to
++# this format, e.g. by running:
++# info -n '(gettext)PO Files'
++# info -n '(gettext)Header Entry'
++# Some information specific to po-debconf are available at
++# /usr/share/doc/po-debconf/README-trans
++# or http://www.debian.org/intl/l10n/po-debconf/README-trans
++# Developers do not need to manually edit POT or PO files.
++#
++# Martin Bagge <martin.bagge@bthstudent.se>, 2008.
++msgid ""
++msgstr ""
++"Project-Id-Version: openssl_0.9.8g-10_sv\n"
++"Report-Msgid-Bugs-To: openssl@packages.debian.org\n"
++"POT-Creation-Date: 2010-12-13 20:31+0100\n"
++"PO-Revision-Date: 2008-05-23 00:17+0200\n"
++"Last-Translator: Martin Bagge <martin.bagge@bthstudent.se>\n"
++"Language-Team: swedish <sv@li.org>\n"
++"Language: \n"
++"MIME-Version: 1.0\n"
++"Content-Type: text/plain; charset=ISO-8859-1\n"
++"Content-Transfer-Encoding: 8bit\n"
++"X-Generator: KBabel 1.11.4\n"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid "Services to restart to make them use the new libraries:"
++msgstr ""
++"Tj�nster som ska startas om f�r att f� dem att anv�nda de nya biblioteken:"
++
++#. Type: string
++#. Description
++#: ../libssl1.0.0.templates:1001
++msgid ""
++"This release of OpenSSL fixes some security issues. Services will not use "

Ubuntuopenssl package

Merge ~schopin/ubuntu/+source/openssl:merge-lp1974035-kinetic into ubuntu/+source/openssl:debian/sid

Commit message

Description of the change

Unmerged commits

Preview Diff

Subscribers

Ubuntu
openssl package