The patch between OpenSSH 6.6 and 6.6.1 as applied in OpenSSH's gentoo ebuild changes OpenSSH's version identifier in version.h. But because the ebuild handles version.h specially, that change is lost. Therefore openssh-6.6.1_p1 still reports itself as a 6.6 version. To fix this, the "epatch "${FILESDIR}"/${P}.patch #508604" line in the ebuild has to be moved in front of the "cp version.h version.h.pristine" line. This is *not* only an cosmetic bug, as other OpenSSH 6.6.1 instances (non-gentoo OpenSSH instances, that is, see bug 519076) refuse to use the curve25519 key exchange algorithm when communicating with older OpenSSH versions -- and those older versions are identified by means of their version strings.
+*openssh-6.6.1_p1-r2 (04 Aug 2014) + + 04 Aug 2014; Lars Wendler <polynomial-c@gentoo.org> + -openssh-6.6.1_p1-r1.ebuild, +openssh-6.6.1_p1-r2.ebuild: + Fixed version number reported by openssh. Thanks to Luis Ressel for reporting + this in bug #519078. + Hrm... should not have done the -r1 revbump that quick...
P.S.: Even worse: SSH flooded my RAM and was killed by the kernel’s OOM handler. So it could even be a kind of buffer overflow with security implications. All is in flames…
Ignore my previous comment. Wrong bug. :/
