diff options
Diffstat (limited to 'debian/patches/keepalive-extensions.patch')
| -rw-r--r-- | debian/patches/keepalive-extensions.patch | 37 |
1 files changed, 19 insertions, 18 deletions
diff --git a/debian/patches/keepalive-extensions.patch b/debian/patches/keepalive-extensions.patch index 2f7ac943d..734118a19 100644 --- a/debian/patches/keepalive-extensions.patch +++ b/debian/patches/keepalive-extensions.patch | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | From 26d9fe60e31c78018bdfd49bba1196ea7c44405d Mon Sep 17 00:00:00 2001 | 1 | From 3558be2914c0127489faae40ce2eae66142c3287 Mon Sep 17 00:00:00 2001 |
| 2 | From: Richard Kettlewell <rjk@greenend.org.uk> | 2 | From: Richard Kettlewell <rjk@greenend.org.uk> |
| 3 | Date: Sun, 9 Feb 2014 16:09:52 +0000 | 3 | Date: Sun, 9 Feb 2014 16:09:52 +0000 |
| 4 | Subject: Various keepalive extensions | 4 | Subject: Various keepalive extensions |
| @@ -16,7 +16,7 @@ keepalives. | |||
| 16 | Author: Ian Jackson <ian@chiark.greenend.org.uk> | 16 | Author: Ian Jackson <ian@chiark.greenend.org.uk> |
| 17 | Author: Matthew Vernon <matthew@debian.org> | 17 | Author: Matthew Vernon <matthew@debian.org> |
| 18 | Author: Colin Watson <cjwatson@debian.org> | 18 | Author: Colin Watson <cjwatson@debian.org> |
| 19 | Last-Update: 2018-10-19 | 19 | Last-Update: 2020-02-21 |
| 20 | 20 | ||
| 21 | Patch-Name: keepalive-extensions.patch | 21 | Patch-Name: keepalive-extensions.patch |
| 22 | --- | 22 | --- |
| @@ -26,27 +26,27 @@ Patch-Name: keepalive-extensions.patch | |||
| 26 | 3 files changed, 34 insertions(+), 4 deletions(-) | 26 | 3 files changed, 34 insertions(+), 4 deletions(-) |
| 27 | 27 | ||
| 28 | diff --git a/readconf.c b/readconf.c | 28 | diff --git a/readconf.c b/readconf.c |
| 29 | index a7fb7ca15..09787c0e5 100644 | 29 | index 0fc996871..2399208f8 100644 |
| 30 | --- a/readconf.c | 30 | --- a/readconf.c |
| 31 | +++ b/readconf.c | 31 | +++ b/readconf.c |
| 32 | @@ -177,6 +177,7 @@ typedef enum { | 32 | @@ -176,6 +176,7 @@ typedef enum { |
| 33 | oStreamLocalBindMask, oStreamLocalBindUnlink, oRevokedHostKeys, | ||
| 34 | oFingerprintHash, oUpdateHostkeys, oHostbasedKeyTypes, | 33 | oFingerprintHash, oUpdateHostkeys, oHostbasedKeyTypes, |
| 35 | oPubkeyAcceptedKeyTypes, oCASignatureAlgorithms, oProxyJump, | 34 | oPubkeyAcceptedKeyTypes, oCASignatureAlgorithms, oProxyJump, |
| 35 | oSecurityKeyProvider, | ||
| 36 | + oProtocolKeepAlives, oSetupTimeOut, | 36 | + oProtocolKeepAlives, oSetupTimeOut, |
| 37 | oIgnore, oIgnoredUnknownOption, oDeprecated, oUnsupported | 37 | oIgnore, oIgnoredUnknownOption, oDeprecated, oUnsupported |
| 38 | } OpCodes; | 38 | } OpCodes; |
| 39 | 39 | ||
| 40 | @@ -326,6 +327,8 @@ static struct { | 40 | @@ -326,6 +327,8 @@ static struct { |
| 41 | { "pubkeyacceptedkeytypes", oPubkeyAcceptedKeyTypes }, | ||
| 42 | { "ignoreunknown", oIgnoreUnknown }, | 41 | { "ignoreunknown", oIgnoreUnknown }, |
| 43 | { "proxyjump", oProxyJump }, | 42 | { "proxyjump", oProxyJump }, |
| 43 | { "securitykeyprovider", oSecurityKeyProvider }, | ||
| 44 | + { "protocolkeepalives", oProtocolKeepAlives }, | 44 | + { "protocolkeepalives", oProtocolKeepAlives }, |
| 45 | + { "setuptimeout", oSetupTimeOut }, | 45 | + { "setuptimeout", oSetupTimeOut }, |
| 46 | 46 | ||
| 47 | { NULL, oBadOption } | 47 | { NULL, oBadOption } |
| 48 | }; | 48 | }; |
| 49 | @@ -1449,6 +1452,8 @@ parse_keytypes: | 49 | @@ -1495,6 +1498,8 @@ parse_keytypes: |
| 50 | goto parse_flag; | 50 | goto parse_flag; |
| 51 | 51 | ||
| 52 | case oServerAliveInterval: | 52 | case oServerAliveInterval: |
| @@ -55,7 +55,7 @@ index a7fb7ca15..09787c0e5 100644 | |||
| 55 | intptr = &options->server_alive_interval; | 55 | intptr = &options->server_alive_interval; |
| 56 | goto parse_time; | 56 | goto parse_time; |
| 57 | 57 | ||
| 58 | @@ -2142,8 +2147,13 @@ fill_default_options(Options * options) | 58 | @@ -2198,8 +2203,13 @@ fill_default_options(Options * options) |
| 59 | options->rekey_interval = 0; | 59 | options->rekey_interval = 0; |
| 60 | if (options->verify_host_key_dns == -1) | 60 | if (options->verify_host_key_dns == -1) |
| 61 | options->verify_host_key_dns = 0; | 61 | options->verify_host_key_dns = 0; |
| @@ -72,24 +72,25 @@ index a7fb7ca15..09787c0e5 100644 | |||
| 72 | options->server_alive_count_max = 3; | 72 | options->server_alive_count_max = 3; |
| 73 | if (options->control_master == -1) | 73 | if (options->control_master == -1) |
| 74 | diff --git a/ssh_config.5 b/ssh_config.5 | 74 | diff --git a/ssh_config.5 b/ssh_config.5 |
| 75 | index f4668673b..bc04d8d02 100644 | 75 | index 3f4906972..3079db19b 100644 |
| 76 | --- a/ssh_config.5 | 76 | --- a/ssh_config.5 |
| 77 | +++ b/ssh_config.5 | 77 | +++ b/ssh_config.5 |
| 78 | @@ -265,8 +265,12 @@ Valid arguments are | 78 | @@ -266,9 +266,13 @@ If set to |
| 79 | If set to | ||
| 80 | .Cm yes , | 79 | .Cm yes , |
| 81 | passphrase/password querying will be disabled. | 80 | user interaction such as password prompts and host key confirmation requests |
| 81 | will be disabled. | ||
| 82 | +In addition, the | 82 | +In addition, the |
| 83 | +.Cm ServerAliveInterval | 83 | +.Cm ServerAliveInterval |
| 84 | +option will be set to 300 seconds by default (Debian-specific). | 84 | +option will be set to 300 seconds by default (Debian-specific). |
| 85 | This option is useful in scripts and other batch jobs where no user | 85 | This option is useful in scripts and other batch jobs where no user |
| 86 | -is present to supply the password. | 86 | is present to interact with |
| 87 | +is present to supply the password, | 87 | -.Xr ssh 1 . |
| 88 | +.Xr ssh 1 , | ||
| 88 | +and where it is desirable to detect a broken network swiftly. | 89 | +and where it is desirable to detect a broken network swiftly. |
| 89 | The argument must be | 90 | The argument must be |
| 90 | .Cm yes | 91 | .Cm yes |
| 91 | or | 92 | or |
| 92 | @@ -1557,7 +1561,14 @@ from the server, | 93 | @@ -1593,7 +1597,14 @@ from the server, |
| 93 | will send a message through the encrypted | 94 | will send a message through the encrypted |
| 94 | channel to request a response from the server. | 95 | channel to request a response from the server. |
| 95 | The default | 96 | The default |
| @@ -105,7 +106,7 @@ index f4668673b..bc04d8d02 100644 | |||
| 105 | .It Cm SetEnv | 106 | .It Cm SetEnv |
| 106 | Directly specify one or more environment variables and their contents to | 107 | Directly specify one or more environment variables and their contents to |
| 107 | be sent to the server. | 108 | be sent to the server. |
| 108 | @@ -1637,6 +1648,12 @@ Specifies whether the system should send TCP keepalive messages to the | 109 | @@ -1673,6 +1684,12 @@ Specifies whether the system should send TCP keepalive messages to the |
| 109 | other side. | 110 | other side. |
| 110 | If they are sent, death of the connection or crash of one | 111 | If they are sent, death of the connection or crash of one |
| 111 | of the machines will be properly noticed. | 112 | of the machines will be properly noticed. |
| @@ -119,10 +120,10 @@ index f4668673b..bc04d8d02 100644 | |||
| 119 | connections will die if the route is down temporarily, and some people | 120 | connections will die if the route is down temporarily, and some people |
| 120 | find it annoying. | 121 | find it annoying. |
| 121 | diff --git a/sshd_config.5 b/sshd_config.5 | 122 | diff --git a/sshd_config.5 b/sshd_config.5 |
| 122 | index cec3c3c4e..eec224158 100644 | 123 | index f6b41a2f8..ebd09f891 100644 |
| 123 | --- a/sshd_config.5 | 124 | --- a/sshd_config.5 |
| 124 | +++ b/sshd_config.5 | 125 | +++ b/sshd_config.5 |
| 125 | @@ -1615,6 +1615,9 @@ This avoids infinitely hanging sessions. | 126 | @@ -1668,6 +1668,9 @@ This avoids infinitely hanging sessions. |
| 126 | .Pp | 127 | .Pp |
| 127 | To disable TCP keepalive messages, the value should be set to | 128 | To disable TCP keepalive messages, the value should be set to |
| 128 | .Cm no . | 129 | .Cm no . |