ubuntu/+source/openssh:ubuntu/oneiric

Last commit made on 2011-07-29
Get this branch:
git clone -b ubuntu/oneiric https://git.launchpad.net/ubuntu/+source/openssh
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/oneiric
Repository:
lp:ubuntu/+source/openssh

Recent commits

5ca4cb1... by Colin Watson on 2011-07-29

Import patches-unapplied version 1:5.8p1-7ubuntu1 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 82899b2a78e280972a4ae664909700a9ee013814

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - Add support for registering ConsoleKit sessions on login.
    - Drop openssh-blacklist and openssh-blacklist-extra to Suggests.
    - Convert to Upstart. The init script is still here for the benefit of
      people running sshd in chroots.
    - Install apport hook.
    - Add mention of ssh-keygen in ssh connect warning.

82899b2... by Colin Watson on 2011-07-29

Import patches-unapplied version 1:5.8p1-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7f20bf27cab26dc8f5109f8527f7d556ec2a6f9f

New changelog entries:
  * Only recommend ssh-import-id when built on Ubuntu (closes: #635887).
  * Use 'dpkg-vendor --derives-from Ubuntu' to detect Ubuntu systems rather
    than 'lsb_release -is' so that Ubuntu derivatives behave the same way as
    Ubuntu itself.

7f20bf2... by Colin Watson on 2011-07-28

Import patches-unapplied version 1:5.8p1-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 26f96cccc495cfed74c6a78b0d0d45e8edd8c161

New changelog entries:
  * openssh-client and openssh-server Suggests: monkeysphere.
  * Quieten logs when multiple from= restrictions are used in different
    authorized_keys lines for the same key; it's still not ideal, but at
    least you'll only get one log entry per key (closes: #630606).
  * Merge from Ubuntu (Dustin Kirkland):
    - openssh-server Recommends: ssh-import-id (no-op in Debian since that
      package doesn't exist there, but this reduces the Ubuntu delta).

26f96cc... by Colin Watson on 2011-07-24

Import patches-unapplied version 1:5.8p1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7de0521a3ad9389c245a3cd63a5b9a7348260108

New changelog entries:
  * Drop openssh-server's dependency on openssh-blacklist to a
    recommendation (closes: #622604).
  * Update Vcs-* fields and README.source for Alioth changes.
  * Backport from upstream:
    - Make hostbased auth with ECDSA keys work correctly (closes: #633368).

7de0521... by Colin Watson on 2011-04-04

Import patches-unapplied version 1:5.8p1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 87ddbacebf1fa1c255574997e344971c66a9b8e0

New changelog entries:
  * Drop hardcoded dependencies on libssl0.9.8 and libcrypto0.9.8-udeb,
    since the required minimum versions are rather old now anyway and
    openssl has bumped its SONAME (thanks, Julien Cristau; closes: #620828).
  * Remove unreachable code from openssh-server.postinst.

87ddbac... by Colin Watson on 2011-03-18

Import patches-unapplied version 1:5.8p1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0fa51add9ae6ed3bff3145ddef643d633f93a017

New changelog entries:
  * Correct ssh-keygen instruction in the changelog for 1:5.7p1-1 (thanks,
    Joel Stanley).
  * Allow ssh-add to read from FIFOs (thanks, Daniel Kahn Gillmor; closes:
    #614897).

0fa51ad... by Colin Watson on 2011-02-08

Import patches-unapplied version 1:5.8p1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d4bf964cb1546220e17784cc703e1543debf69f4

New changelog entries:
  * Upload to unstable.

d4bf964... by Colin Watson on 2011-02-05

Import patches-unapplied version 1:5.8p1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 67e9f2d7456d8aa2cb91e244ef833126b82acc8e

New changelog entries:
  * New upstream release (http://www.openssh.org/txt/release-5.8):
    - Fix stack information leak in legacy certificate signing
      (http://www.openssh.com/txt/legacy-cert.adv).

67e9f2d... by Colin Watson on 2011-01-27

Import patches-unapplied version 1:5.7p1-2 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: cf8c7863e0573799244412646de0069b6e95f888

New changelog entries:
  * Fix crash in ssh_selinux_setfscreatecon when SELinux is disabled
    (LP: #708571).

cf8c786... by Colin Watson on 2011-01-26

Import patches-unapplied version 1:5.7p1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: f9b2e9eccf0af1955c9da5eb1a5d3e049bcca364

New changelog entries:
  * New upstream release (http://www.openssh.org/txt/release-5.7):
    - Implement Elliptic Curve Cryptography modes for key exchange (ECDH)
      and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA
      offer better performance than plain DH and DSA at the same equivalent
      symmetric key length, as well as much shorter keys.
    - sftp(1)/sftp-server(8): add a protocol extension to support a hard
      link operation. It is available through the "ln" command in the
      client. The old "ln" behaviour of creating a symlink is available
      using its "-s" option or through the preexisting "symlink" command.
    - scp(1): Add a new -3 option to scp: Copies between two remote hosts
      are transferred through the local host (closes: #508613).
    - ssh(1): "atomically" create the listening mux socket by binding it on
      a temporary name and then linking it into position after listen() has
      succeeded. This allows the mux clients to determine that the server
      socket is either ready or stale without races (closes: #454784).
      Stale server sockets are now automatically removed (closes: #523250).
    - ssh(1): install a SIGCHLD handler to reap expired child process
      (closes: #594687).
    - ssh(1)/ssh-agent(1): honour $TMPDIR for client xauth and ssh-agent
      temporary directories (closes: #357469, although only if you arrange
      for ssh-agent to actually see $TMPDIR since the setgid bit will cause
      it to be stripped off).
  * Update to current GSSAPI patch from
    http://www.sxw.org.uk/computing/patches/openssh-5.7p1-gsskex-all-20110125.patch:
    - Add GSSAPIServerIdentity option.
  * Generate ECDSA host keys on fresh installations. Upgraders who wish to
    add such host keys should manually add 'HostKey
    /etc/ssh/ssh_host_ecdsa_key' to /etc/ssh/sshd_config and run 'ssh-keygen
    -q -f /etc/ssh/sshd_config -N "" -t ecdsa'.
  * Build-depend on libssl-dev (>= 0.9.8g) to ensure sufficient ECC support.
  * Backport SELinux build fix from CVS.
  * Rearrange selinux-role.patch so that it links properly given this
    SELinux build fix.