| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
| |
- Fix building on x86 due to undefined socketcall when "hpn" USE
flag was set. [Bug 658232]
- Fix segfault when using sshd with "sctp" USE flag. [Bug 658308]
Closes: https://bugs.gentoo.org/658232
Closes: https://bugs.gentoo.org/658308
Package-Manager: Portage-2.3.40, Repoman-2.3.9
RepoMan-Options: --force
|
|
|
|
|
|
|
|
|
|
|
| |
We switched from dead openssh-lpk patch to Red Hat's rewritten
LDAP patch which makes use of "AuthorizedKeysCommand".
Warning:
Default LDAP scheme isn't compatible. Migration is needed.
Bug: https://bugs.gentoo.org/658044
Package-Manager: Portage-2.3.40, Repoman-2.3.9
|
|
|
|
|
|
| |
Bug: https://bugs.gentoo.org/657366
Package-Manager: Portage-2.3.24, Repoman-2.3.6
RepoMan-Options: --include-arches="sparc"
|
|
|
|
| |
Package-Manager: Portage-2.3.40, Repoman-2.3.9
|
|
|
|
| |
Package-Manager: Portage-2.3.40, Repoman-2.3.9
|
|
|
|
|
|
| |
Bug: https://bugs.gentoo.org/657366
Package-Manager: Portage-2.3.40, Repoman-2.3.9
RepoMan-Options: --include-arches="ia64"
|
|
|
|
| |
Package-Manager: Portage-2.3.40, Repoman-2.3.9
|
|
|
|
|
| |
Bug: https://bugs.gentoo.org/605446
Package-Manager: Portage-2.3.40, Repoman-2.3.9
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Pick: "Use includes.h instead of config.h." [Link 1]
- Pick: "upstream: Since the previous commit, ssh regress test" [Link 2]
- Pick: "upstream: implement EMFILE mitigation for ssh-agent" [Link 3]
- Pick: "fix key-options.sh on platforms without openpty(3)" [Link 4]
- Pick: "sync fmt_scaled.c" [Link 5]
- Pick: "upstream: Emphasise that -w implicitly sets
Tunnel=point-to-point" [Link 6]
- Pick: "upstream: correct keyowrd name (permitemptypasswords)" [Link 7]
- Pick: "Permit getuid()/geteuid() syscalls." [Link 8]
- Pick: "upstream: If select() fails in ssh_packet_read_seqnr go directly
to the error path" [Link 9]
- Pick: "upstream: Fix return value confusion in several
functions" [Link 10]
- Pick: "upstream: Do not ban PTY allocation when a sshd session is
restricted" [Link 11]
- Pick: "upstream: prefer argv0 to "ssh" when re-executing ssh for
ProxyJump" [Link 12]
- Pick: "upstream: return correct exit code when searching for and hashing
known_hosts entries in a single operatio" [Link 13]
- Pick: "upstream: make ssh_remote_ipaddr() capable of being called after
the ssh->state has been torn down" [Link 14]
- Pick: "upstream: whitespace" [Link 15]
- Pick: "upstream: Adapt to extra default verboisity from ssh-keygen when
searching for and hashing known_hosts entries in a single
operation" [Link 16]
- Pick: "upstream: Apply umask to all incoming files and directories not
just file" [Link 17]
Link 1: https://github.com/openssh/openssh-portable/commit/7c15301841e2e9d37cae732400de63ae9c0961d6
Link 2: https://github.com/openssh/openssh-portable/commit/e7751aa4094d51a9bc00778aa8d07e22934c55ee
Link 3: https://github.com/openssh/openssh-portable/commit/b2140a739be4c3b43cc1dc08322dca39a1e39d20
Link 4: https://github.com/openssh/openssh-portable/commit/54268d589e85ecc43d3eba8d83f327bdada9d696
Link 5: https://github.com/openssh/openssh-portable/commit/32e4e94e1511fe0020fbfbb62399d31b2d22a801
Link 6: https://github.com/openssh/openssh-portable/commit/f18bc97151340127859634d20d79fd39ec8a7f39
Link 7: https://github.com/openssh/openssh-portable/commit/f41bcd70f55b4f0fc4d8e1039cb361ac922b23fb
Link 8: https://github.com/openssh/openssh-portable/commit/4ef75926ef517d539f2c7aac3188b09f315c86a7
Link 9: https://github.com/openssh/openssh-portable/commit/1da5934b860ac0378d52d3035b22b6670f6a967e
Link 10: https://github.com/openssh/openssh-portable/commit/f6a59a22b0c157c4c4e5fd7232f868138223be64
Link 11: https://github.com/openssh/openssh-portable/commit/fbb4b5fd4f8e0bb89732670a01954e18b69e15ba
Link 12: https://github.com/openssh/openssh-portable/commit/d8748b91d1d6c108c0c260ed41fa55f37b9ef34b
Link 13: https://github.com/openssh/openssh-portable/commit/3e088aaf236ef35beeef3c9be93fd53700df5861
Link 14: https://github.com/openssh/openssh-portable/commit/854ae209f992465a276de0b5f10ef770510c2418
Link 15: https://github.com/openssh/openssh-portable/commit/01b048c8eba3b021701bd0ab26257fc82903cba8
Link 16: https://github.com/openssh/openssh-portable/commit/a1dcafc41c376332493b9385ee39f9754dc145ec
Link 17: https://github.com/openssh/openssh-portable/commit/e5019da3c5a31e6e729a565f2b886a80c4be96cc
Package-Manager: Portage-2.3.40, Repoman-2.3.9
|
|
|
|
| |
Package-Manager: Portage-2.3.34, Repoman-2.3.9
|
|
|
|
|
|
|
|
|
|
|
| |
Ebuild changes:
===============
- Added patches for various upstream issues like
bug 2840, 2835, 2851, 2837, 2855, 2719.
Closes: https://bugs.gentoo.org/653750
Closes: https://bugs.gentoo.org/653008
Package-Manager: Portage-2.3.31, Repoman-2.3.9
|
|
|
|
|
|
|
|
| |
The X.509 part in sshd only accepts specific PACKAGE VERSION values or will
reject a X.509 ssh client. Because we cannot fix all X.509 sshd servers
we patched the exposed PACKAGE VERSION to pass the "requirement".
Package-Manager: Portage-2.3.28, Repoman-2.3.9
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Ebuild changes:
===============
- HPN patch set updated to v14.14. MT AES CTR cipher are still not
working at the moment but we are working on this.
- SCTP patch updated for openssh-7.7_p1.
- LDAP patch is currently not available because patch isn't compatble
with openssh-7.7_p1 and needs a major rewrite because upstream removed
auth_parse_options() via commit 7c8568576071.
- X.509 patch updated to v11.3.1.
- Previously, SCTP patch sometimes got applied even when "sctp" USE flag
wasn't set, this is now fixed.
- We now always expose applied patches in version string (previously
this was only the case for some patches and was also depending on
whether the "hpn" USE flag was enabled or not).
- Make sure "/var/empty" gets preserved by package manager. [Bug 647034]
- Runscript: "use" entropy. [Bug 470020]
- Runscript: Use "/run" instead of "/var/run". [Bug 555734]
- Runscript: Verify daemon is really up and running. [Bug 617596]
- Runscript: Simplified (thanks to Michael Orlitzky)
- Runscript: Add prefix support. [Bug 640666]
- Runscript: It is now possible to pass any by start-stop-daemon supported
arguments (like "--ionice" or "--nicelevel" for example) to
start-stop-daemon. [Bug 636764]
Closes: https://bugs.gentoo.org/470020
Closes: https://bugs.gentoo.org/555734
Closes: https://bugs.gentoo.org/617596
Closes: https://bugs.gentoo.org/636764
Closes: https://bugs.gentoo.org/640666
Closes: https://bugs.gentoo.org/647034
Closes: https://bugs.gentoo.org/652438
Package-Manager: Portage-2.3.28, Repoman-2.3.9
|
|
|
|
| |
Package-Manager: Portage-2.3.24, Repoman-2.3.6
|
|
|
|
| |
Closes: https://github.com/gentoo/gentoo/pull/7445
|
|
|
|
| |
Package-Manager: Portage-2.3.24, Repoman-2.3.6
|
|
|
|
|
|
|
|
|
| |
PermitOpen directive ignores arguments beyond the second one.
https://www.spinics.net/lists/openssh-unix-dev/msg04433.html
Patch was applied to upstream and only 7.6_p1 has this issue.
Closes: https://github.com/gentoo/gentoo/pull/7376
|
|
|
|
| |
Package-Manager: Portage-2.3.24, Repoman-2.3.6
|
|
|
|
|
|
| |
I forgot about the wget gzip silliness.. oops
Package-Manager: Portage-2.3.24, Repoman-2.3.6
|
|
|
|
| |
Package-Manager: Portage-2.3.24, Repoman-2.3.6
|
|
|
|
| |
Package-Manager: Portage-2.3.20, Repoman-2.3.6
|
|
|
|
|
| |
Closes: https://bugs.gentoo.org/645372
Package-Manager: Portage-2.3.20, Repoman-2.3.6
|
|
|
|
| |
Package-Manager: Portage-2.3.20, Repoman-2.3.6
|
|
|
|
|
|
|
| |
Not revbumping since hpn has been package.use.mask-ed.
Closes: https://bugs.gentoo.org/634594
Package-Manager: Portage-2.3.20, Repoman-2.3.6
|
| |
|
|
|
|
|
|
|
|
| |
Also re-enable hpn USE flag (disabled by default) since it has now
been package.use.mask-ed in the base profile.
Bug: https://bugs.gentoo.org/634594
Package-Manager: Portage-2.3.20, Repoman-2.3.6
|
|
|
|
|
| |
@zmedico: Please leave openssh to base-system team.
Package-Manager: Portage-2.3.20, Repoman-2.3.6
|
|
|
|
| |
This reverts commit de02520f0c9d660af8a2cd0317648f69177f57c1.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Since sys-apps/portage-2.3.20 defaults to --dynamic-deps=n, this revbump
is needed in order to correct the dependencies of installed instances of
openssh.
It's not possible to revbump the 7.6_p1 ebuild to 7.6_p1-r1, since the
7.6_p1-r1 ebuild already exists with the only difference being that
the HPN_PATCH variable is commented out. As a compromise, make 7.6_p1-r2
include HPN_PATCH but also remove the default IUSE setting for hpn in
order to suppress bug 634594 by default.
Fixes: a71042d76cb4 ("net-misc/openssh: Fix net-libs/ldns dependency")
Bug: https://bugs.gentoo.org/645310
Bug: https://bugs.gentoo.org/634594
Package-Manager: Portage-2.3.20, Repoman-2.3.6
RepoMan-Options: --force
|
|
|
|
|
|
|
| |
patch set
Closes: https://bugs.gentoo.org/644252
Package-Manager: Portage-2.3.19, Repoman-2.3.6
|
| |
|
| |
|
|
|
|
| |
Closes: https://github.com/gentoo/gentoo/pull/6637
|
|
|
|
|
| |
Package-Manager: Portage-2.3.19, Repoman-2.3.6
RepoMan-Options: --include-arches="arm64"
|
|
|
|
|
| |
Closes: https://bugs.gentoo.org/641266
Package-Manager: Portage-2.3.19, Repoman-2.3.6
|
|
|
|
| |
Package-Manager: Portage-2.3.19, Repoman-2.3.6
|
| |
|
|
|
|
|
| |
Package-Manager: Portage-2.3.14, Repoman-2.3.6
RepoMan-Options: --include-arches="hppa"
|
|
|
|
|
| |
Package-Manager: Portage-2.3.13, Repoman-2.3.3
RepoMan-Options: --include-arches="arm"
|
|
|
|
|
| |
Package-Manager: Portage-2.3.14, Repoman-2.3.6
RepoMan-Options: --include-arches="ppc"
|
|
|
|
|
| |
Package-Manager: Portage-2.3.14, Repoman-2.3.6
RepoMan-Options: --include-arches="ppc64"
|
|
|
|
|
|
|
| |
Eike Beer)
Package-Manager: Portage-2.3.14, Repoman-2.3.6
RepoMan-Options: --include-arches="sparc"
|
|
|
|
| |
Gentoo-Bug: http://bugs.gentoo.org/633428
|
|
|
|
|
| |
Package-Manager: Portage-2.3.14, Repoman-2.3.6
RepoMan-Options: --include-arches="ia64"
|
|
|
|
| |
Package-Manager: Portage-2.3.13, Repoman-2.3.4
|
|
|
|
|
|
| |
Package-Manager: Portage-2.3.13, Repoman-2.3.3
RepoMan-Options: --include-arches="amd64"
Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
|
|
|
|
|
| |
Bug: https://bugs.gentoo.org/633428
Package-Manager: Portage-2.3.13, Repoman-2.3.4
|
|
|
|
|
|
|
|
| |
Some users aren't affected by bug #634594, rather than forcing them
to downgrade or fork, we should keep the ebuild with hpn around.
Bug: https://bugs.gentoo.org/634594
Package-Manager: Portage-2.3.13, Repoman-2.3.4
|
|
|
|
|
| |
Bug: https://bugs.gentoo.org/634594
Package-Manager: Portage-2.3.13, Repoman-2.3.4
|
|
|
|
| |
Package-Manager: Portage-2.3.13, Repoman-2.3.4
|