(please look at my review comments at the end of this mail) Please find, for review, the debconf templates and the debian/control file of openssl. This review will last from Thursday, March 29, 2007 to Sunday, April 08, 2007. Please send reviews as unified diffs (diff -u) against the original files. Comments about your proposed changes will be appreciated. The part to review in debian/control are the package description(s). Your review should be sent as an answer to this mail. When appropriate, I will send intermediate requests for review, with "[RFRn]" (n>=2) as a subject tag. When we will reach a consensus, I send a "Last Chance For Comments" mail with "[LCFC]" as a subject tag. Finally, the reviewed templates will be sent to the package maintainer as a bug report, and a mail will be sent to this list with "[BTS]" as a subject tag. Note to openssl maintainer(s): this review is CC'ed to you so that you can comment on the proposed changes before we propose the rewrite in a bug report. Please note that these changes will be reviewed and are therefore *not* the final version. Please take care to send any comment to debian-l10n-english. Review comments: ---------------- debian/control: - German-style capitalisation removed in some places - Bulleted list made with dashes. We should determine a policy here templates: - attempt to make them shorter - remove the use of 1st person - turn the short description into a prompt. Remove interrogative form --
Template: libssl0.9.8/restart-services Type: string _Description: Services to restart to make them use the new libraries: This release of OpenSSL fixes some security issues. Services may not use these fixes until they are restarted. Please note that restarting the SSH server (sshd) should not affect any existing connections. . Please check the list of detected services that need to be restarted. Please correct this list, if needed. The services are named from the name of their initialisation script in /etc/init.d and must be separated by spaces. No services will be restarted if the list is empty. . Any service that later fails unexpectedly after this upgrade should be restarted. It is recommended to reboot this host to avoid any SSL-related trouble.
--- ../openssl.old/debian/libssl0.9.8.templates 2007-03-29 06:11:35.006946730 +0200 +++ debian/libssl0.9.8.templates 2007-03-29 18:52:31.440400500 +0200 @@ -1,15 +1,15 @@ Template: libssl0.9.8/restart-services Type: string -_Description: Which services should be restarted to make them use the new libraries? - Security holes were fixed with this release. Services may not use these - fixes until they are restarted. Note: restarting sshd should not affect any - existing connections. +_Description: Services to restart to make them use the new libraries: + This release of OpenSSL fixes some security issues. Services may not + use these fixes until they are restarted. Please note that restarting + the SSH server (sshd) should not affect any existing connections. . - Following is a list of detected services that need to be restarted. Please - correct the list, if you think it is incorrect. The services names must be - identical to the script names in /etc/init.d and must be separated by - spaces. If you clear the list, no services will be restarted. + Please check the list of detected services that need to be restarted. Please + correct this list, if needed. The services are named from the + name of their initialisation script in /etc/init.d and must be separated by + spaces. No services will be restarted if the list is empty. . - If other services begin to fail mysteriously after this upgrade, it may be - necessary to restart them too. We strongly recommend you to reboot your - machine to avoid the SSL related trouble. + Any service that later fails unexpectedly after this upgrade should + be restarted. It is recommended to reboot this host to avoid any + SSL-related trouble.
Source: openssl Build-Depends: debhelper (>= 5.0.22), binutils (>= 2.14.90.0.7), zlib1g-dev, m4, bc Section: utils Priority: optional Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org> Uploaders: Christoph Martin <christoph.martin@uni-mainz.de>, Kurt Roeckx <kurt@roeckx.be> Standards-Version: 3.7.0 Package: openssl Priority: optional Architecture: any Depends: ${shlibs:Depends}, ${perl:Depends}, libssl0.9.8 (>= 0.9.8e-1) Conflicts: ssleay (<< 0.9.2b) Suggests: ca-certificates Description: Secure Socket Layer (SSL) binary and related cryptographic tools This package contains the openssl binary and related tools. . It is part of the OpenSSL implementation of SSL. . You need it to perform certain cryptographic actions like: - Creation of RSA, DH and DSA key parameters; - Creation of X.509 certificates, CSRs and CRLs; - Calculation of message digests; - Encryption and decryption with ciphers; - SSL/TLS client and server tests; - Handling of S/MIME signed or encrypted mail. Package: libssl0.9.8 Section: libs Priority: important Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Conflicts: ssleay (<< 0.9.2b), libssl, openssl (<< 0.9.6-2), libssl096-dev (<< 0.9.6-2) Description: SSL shared libraries libssl and libcrypto shared libraries needed by programs like apache-ssl, telnet-ssl and openssh. . It is part of the OpenSSL implementation of SSL. Package: libcrypto0.9.8-udeb XC-Package-Type: udeb Section: debian-installer Priority: optional Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Provides: libssl0.9.8 Description: crypto shared library - udeb libcrypto shared library. . Do not install it on a normal system. Package: libssl-dev Section: libdevel Priority: optional Architecture: any Depends: libssl0.9.8 (= ${Source-Version}), zlib1g-dev Conflicts: ssleay (<< 0.9.2b), libssl08-dev, libssl09-dev, libssl095a-dev, libssl096-dev Description: SSL development libraries, header files and documentation libssl and libcrypt development libraries, header files and manpages. . It is part of the OpenSSL implementation of SSL. Package: libssl0.9.8-dbg Section: libdevel Priority: extra Architecture: any Depends: libssl0.9.8 (= ${Source-Version}) Description: Symbol tables for libssl and libcrypt This package is part of the OpenSSL implementation of SSL.
Attachment:
signature.asc
Description: Digital signature