ubuntu/+source/openssh:ubuntu/natty-devel

Last commit made on 2011-04-02
Get this branch:
git clone -b ubuntu/natty-devel https://git.launchpad.net/ubuntu/+source/openssh
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/natty-devel
Repository:
lp:ubuntu/+source/openssh

Recent commits

930e820... by Clint Byrum on 2011-04-01

Import patches-unapplied version 1:5.8p1-1ubuntu3 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 9cd08ca94527ef262c1a9362052d4c498a1fd089

New changelog entries:
  * Start on runlevel [2345] so that switching back to runlevel 2
    from single user mode starts ssh again. (LP: #747756)

9cd08ca... by Colin Watson on 2011-03-03

Import patches-unapplied version 1:5.8p1-1ubuntu2 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: a1c534a5fc9ea74625a6019f86673f450199a5bc

New changelog entries:
  [ Clint Byrum ]
  * debian/openssh-server.ssh.init: Adding upstart awareness that will
    call /lib/init/upstart-job when script is run outside of a chroot.
    While this fixes LP: #531912, the change should be reverted when
    upstart gains chroot session support.
  [ Colin Watson ]
  * Only do the above if /etc/init/ssh.conf still exists, since apparently
    some people have been removing it.

a1c534a... by Colin Watson on 2011-02-05

Import patches-unapplied version 1:5.8p1-1ubuntu1 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: d4bf964cb1546220e17784cc703e1543debf69f4

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - Add support for registering ConsoleKit sessions on login.
    - Drop openssh-blacklist and openssh-blacklist-extra to Suggests.
    - Convert to Upstart. The init script is still here for the benefit of
      people running sshd in chroots.
    - Install apport hook.
    - Add mention of ssh-keygen in ssh connect warning.
    - Make openssh-server recommend ssh-import-id.

d4bf964... by Colin Watson on 2011-02-05

Import patches-unapplied version 1:5.8p1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 67e9f2d7456d8aa2cb91e244ef833126b82acc8e

New changelog entries:
  * New upstream release (http://www.openssh.org/txt/release-5.8):
    - Fix stack information leak in legacy certificate signing
      (http://www.openssh.com/txt/legacy-cert.adv).

67e9f2d... by Colin Watson on 2011-01-27

Import patches-unapplied version 1:5.7p1-2 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: cf8c7863e0573799244412646de0069b6e95f888

New changelog entries:
  * Fix crash in ssh_selinux_setfscreatecon when SELinux is disabled
    (LP: #708571).

cf8c786... by Colin Watson on 2011-01-26

Import patches-unapplied version 1:5.7p1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: f9b2e9eccf0af1955c9da5eb1a5d3e049bcca364

New changelog entries:
  * New upstream release (http://www.openssh.org/txt/release-5.7):
    - Implement Elliptic Curve Cryptography modes for key exchange (ECDH)
      and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA
      offer better performance than plain DH and DSA at the same equivalent
      symmetric key length, as well as much shorter keys.
    - sftp(1)/sftp-server(8): add a protocol extension to support a hard
      link operation. It is available through the "ln" command in the
      client. The old "ln" behaviour of creating a symlink is available
      using its "-s" option or through the preexisting "symlink" command.
    - scp(1): Add a new -3 option to scp: Copies between two remote hosts
      are transferred through the local host (closes: #508613).
    - ssh(1): "atomically" create the listening mux socket by binding it on
      a temporary name and then linking it into position after listen() has
      succeeded. This allows the mux clients to determine that the server
      socket is either ready or stale without races (closes: #454784).
      Stale server sockets are now automatically removed (closes: #523250).
    - ssh(1): install a SIGCHLD handler to reap expired child process
      (closes: #594687).
    - ssh(1)/ssh-agent(1): honour $TMPDIR for client xauth and ssh-agent
      temporary directories (closes: #357469, although only if you arrange
      for ssh-agent to actually see $TMPDIR since the setgid bit will cause
      it to be stripped off).
  * Update to current GSSAPI patch from
    http://www.sxw.org.uk/computing/patches/openssh-5.7p1-gsskex-all-20110125.patch:
    - Add GSSAPIServerIdentity option.
  * Generate ECDSA host keys on fresh installations. Upgraders who wish to
    add such host keys should manually add 'HostKey
    /etc/ssh/ssh_host_ecdsa_key' to /etc/ssh/sshd_config and run 'ssh-keygen
    -q -f /etc/ssh/sshd_config -N "" -t ecdsa'.
  * Build-depend on libssl-dev (>= 0.9.8g) to ensure sufficient ECC support.
  * Backport SELinux build fix from CVS.
  * Rearrange selinux-role.patch so that it links properly given this
    SELinux build fix.

f9b2e9e... by Colin Watson on 2010-12-30

Import patches-unapplied version 1:5.6p1-3 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: db07edaec5f1271cea1d4deb879f4f79419fc4b7

New changelog entries:
  * Drop override for desktop-file-but-no-dh_desktop-call, which Lintian no
    longer issues.
  * Merge 1:5.5p1-6.

db07eda... by Colin Watson on 2010-10-26

Import patches-unapplied version 1:5.6p1-2 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 09057d8581203718e61bd9a25e650112698aedac

New changelog entries:
  * Backport upstream patch to install a SIGCHLD handler to reap expired ssh
    child processes, preventing lots of zombies when using ControlPersist
    (closes: #594687).

09057d8... by Colin Watson on 2010-08-23

Import patches-unapplied version 1:5.6p1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: a2793f0d402b49f385a77ccb45ce688c1747fce6

New changelog entries:
  * New upstream release (http://www.openssh.com/txt/release-5.6):
    - Added a ControlPersist option to ssh_config(5) that automatically
      starts a background ssh(1) multiplex master when connecting. This
      connection can stay alive indefinitely, or can be set to automatically
      close after a user-specified duration of inactivity (closes: #335697,
      #350898, #454787, #500573, #550262).
    - Support AuthorizedKeysFile, AuthorizedPrincipalsFile,
      HostbasedUsesNameFromPacketOnly, and PermitTunnel in sshd_config(5)
      Match blocks (closes: #549858).
    - sftp(1): fix ls in working directories that contain globbing
      characters in their pathnames (LP: #530714).

a2793f0... by Colin Watson on 2010-08-23

Import patches-unapplied version 1:5.5p1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9adc09845b0da7943da87a1557d1de606b9ceefd

New changelog entries:
  * Use an architecture wildcard for libselinux1-dev (closes: #591740).
  * debconf template translations:
    - Update Danish (thanks, Joe Hansen; closes: #592800).