From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Wed, 30 Mar 2022 20:55:13 +0200 Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1nZdTJ-00Bd4U-9p for lore@lore.pengutronix.de; Wed, 30 Mar 2022 20:55:13 +0200 Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de) by metis.ext.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1nZdTM-0006VE-5b; Wed, 30 Mar 2022 20:55:12 +0200 Received: from mail-eopbgr30049.outbound.protection.outlook.com ([40.107.3.49] helo=EUR03-AM5-obe.outbound.protection.outlook.com) by metis.ext.pengutronix.de with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nZdSn-0006Uz-5v; Wed, 30 Mar 2022 20:54:37 +0200 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Qn2rakZLHkbAvSY149Kfn2yYJ8AiudIPdc3NlQcuCDdyrBdCIt2iFFR7wA5dnQNhPQKaqcT9ao/yEXr3JwIyJxe5sg358rwhkO8RfvBqU4XasziPXypD1jx8diRvLSGpPe0egNABQdLyJfK9xcaUB1cQkm1BNQHTRh9oa6cqw/frEPcTs7tlDxgc34Rc6AtwPdzQu3OG46Xkejfhhq58H/UIuhKRCM6Oh79J9BEPSyniuc1fCQMUfhEmXvajaO4kwTP+g2vz/Rbe1nwFR7IWi3I+0SCY16Jr0eSJJzc74N4WTqKf1+3qaxwOs0isuME3puD2wovYkGNYW8dWWV+4Yg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=dfRyy/PISpqPVt5uEtvm9NVdQWLjsJGK5nvrTOFMyLU=; b=ckAiJCmsAbnDXMpOPkaBIDvWKl6f3uX0dRyHyphURMEqsS3Hz/n5SP+lepyvqVV+AO++7FcFrb9NAsMEp2C+5rdMllm/04dWFl5617sGj5n955y9i1nQzEh/7hIBSu96v64x/IYZdZieHwiMygWTqxJ3WubLjeJ9HbCO4wCjF29UpwgTfOY8XVsPRL8+WabZFZSZUuNJuHI2p2y3yHvQSZGW1kHdK27tw7bUjuBAa9Hrx+kAsZ0GfzYHe2SFLQ/VLhqpYH7FC41pdm868ykUfRdcSGsXsDJZ41N4IukiEJt1rKOEzZDB5+ZRBqq+bNF/b+LXjmX/qYPAsmp8SbusEA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=t2data.com; dmarc=pass action=none header.from=t2data.com; dkim=pass header.d=t2data.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=t2datacom.onmicrosoft.com; s=selector1-t2datacom-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=dfRyy/PISpqPVt5uEtvm9NVdQWLjsJGK5nvrTOFMyLU=; b=LKDDkknRzaq+y/NSp02Yn+21hlUvJITjsm0GZRbZNcM83atyTLVyV0LF+M9cMccZcBAU2UoD5cFz7YMazjsh+lAoIuIkPR26enDXjyf4bSR1Ohd6xbHD6qHHnQojW5KBz42sRcc+sEecQTjYA4P8wTPb+kJg+guwPsCopjeJEvs= Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=t2data.com; Received: from DB9P251MB0618.EURP251.PROD.OUTLOOK.COM (2603:10a6:10:334::22) by AS8P251MB0370.EURP251.PROD.OUTLOOK.COM (2603:10a6:20b:405::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5123.21; Wed, 30 Mar 2022 18:54:34 +0000 Received: from DB9P251MB0618.EURP251.PROD.OUTLOOK.COM ([fe80::3ded:58a4:e21d:33db]) by DB9P251MB0618.EURP251.PROD.OUTLOOK.COM ([fe80::3ded:58a4:e21d:33db%3]) with mapi id 15.20.5123.016; Wed, 30 Mar 2022 18:54:34 +0000 Message-ID: <004e99ad-45a3-e67c-cd27-7d01c554b029@t2data.com> Date: Wed, 30 Mar 2022 20:53:47 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.7.0 Content-Language: en-US To: Michael Olbrich References: <20220330132539.3414144-1-christian.melki@t2data.com> From: Christian Melki In-Reply-To: X-ClientProxiedBy: GV3P280CA0032.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:9::33) To DB9P251MB0618.EURP251.PROD.OUTLOOK.COM (2603:10a6:10:334::22) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 96703718-9914-4d29-8da8-08da127ebaf9 X-MS-TrafficTypeDiagnostic: AS8P251MB0370:EE_ X-Microsoft-Antispam-PRVS: X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9P251MB0618.EURP251.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230001)(39830400003)(136003)(396003)(346002)(376002)(366004)(2616005)(450100002)(36756003)(83380400001)(6916009)(508600001)(26005)(6486002)(316002)(186003)(31686004)(8676002)(66946007)(66556008)(38350700002)(38100700002)(5660300002)(3450700001)(31696002)(2906002)(86362001)(44832011)(66476007)(8936002)(52116002)(6666004)(6512007)(6506007)(53546011)(4326008)(43740500002)(45980500001); DIR:OUT; SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?NkZFNi9QOEEyeWQ3YU5xSDJOUXpaTnlRb2NocjRFU3pDYXhnS3lGTXhkdi9q?= =?utf-8?B?MzR4dVhGZ1RkUGV1eHBqUmx3MVh4aC9SVDRML3lhbGdvOUVnT2F3WXVDZjg4?= =?utf-8?B?bEJ2RDAzMjdCbjNJNGlmMVhlQUFHT0FaajBmVTY0SHFDbGhEYU5QQUluRnZQ?= =?utf-8?B?MTNhelFCR1RkWUVmS0UzUUF4VlR6UU1uOHhseEJHRk1oaCt2SDhQMEkzOXVH?= =?utf-8?B?ME5lbkw0MUZjVGZMa2Z4ckpjUHNZRUF3b3FqMkIxViszckcyelRweHVueUNi?= =?utf-8?B?L1ZYWGV4L2xLd2Y5SlNtUVdZNXZOOXJJRGJHT3pHSXlLZ3h5ZDFBSzVpcDFM?= =?utf-8?B?M1p1MXNFWVB4bDZGK213VGZveGNtckZFcUlLcWJUc0gzMXpwdTY3TjNDVmVU?= =?utf-8?B?WjJRVlBWS0EvWVFNbXpZUTBPV245WWtDbDhEa3VSQU9jSGoyR2RUd3VVc2Fy?= =?utf-8?B?ZFNYK3BkYTltT2h3TVV6dWYzQThIOXNSK3JLYWRrNUdtWlQ3WXU4UlRHZXJr?= =?utf-8?B?RHRGUXlBTjRyWEpCNi9ETWhKMVVHR3FYQkdNYytjYkNkbkwzMXB4RDNyK3k5?= =?utf-8?B?K1pNQW1jbEhSaVo4ZzJaQk96dTBUN3JUc0xEVnpSQWdyY3drRGZkRTF2Y0xC?= =?utf-8?B?bGt2UDFzVnh1bnRrVVdPcFU2YVB2Z012MmtHTHlFOXZuNloxN29sMUsxeGNq?= =?utf-8?B?V1RFVlZzNlJhOWRmRER3aUQ4OXhjK2RDNDRkZitpZUtmSXZhVy9SaU1sZDhr?= =?utf-8?B?T0tHYWRtbjhPS004dVFucUczcHRLM1EwYllMZTVWc1ZmKzRqS0lTWXhkUTUv?= =?utf-8?B?R0hhQnh2TEc1VkJQT3AzOU5YRkhDL2JqTXpkSjhsbHc2Qkpkc0ZBcW1manh2?= =?utf-8?B?a0JJRW1mV1hUYlBsYy91UmNHMlA2QVNuN2VTU1hEblpMMTRlakpMUnZzNTBY?= =?utf-8?B?L2htcXh6SU50Y3RRV3I5dDVKOTIxbERGYTVlU0Zxd2RnZnNWYTI3M2NOL2NK?= =?utf-8?B?SlpyL1VISlNRMzE0QUZMOUxVUXUwdisrS0oxWEhhUCtDUUxYMnZRMVZlYm1D?= =?utf-8?B?dnNLaGtsRHY2NG91M1hVWThJbDZrTTc5NUlSbEdzUUZjYXc4WXV2WUJXZVBC?= =?utf-8?B?cGhKQTNGT1ZLNDJES3RMaDlwWUZXRlBZakpXQTA1NnpMVUo0ZFQyKzhFeVc1?= =?utf-8?B?UE5CZlhTL2lmSHJIV3NPTlhIRUZSVzVUT3dBL0NiOGdhZmZGbG8xU2RvdDUw?= =?utf-8?B?TVFhMzg1T1FIMFhycGg1ME5JK0F3cU1zVloza2ZKNWZTcjFmdy9sQUo4NkpE?= =?utf-8?B?UTNSeHdjZFpMUEJEbmFjSEpsQ1M0YVNtT2xUMnV2RmxZYnBTQk9tN2JhL285?= =?utf-8?B?cmd1VWNLSVZpcnNDT2xPM0E0Z0hzRG9hREozRGZ1SDBzSnAxUXBqWnY1RVNH?= =?utf-8?B?N053L2Q5S3M5YXhpcEtqRlJEdmxzT3ZhMEY0aWdpREFsT08vOGgvdENzVGZk?= =?utf-8?B?R3Z1c3dJOTBkUkNKSUJzbmsrM0trRXplUlpVdjhJcit2TkZVUHh1L3dTRnZ4?= =?utf-8?B?VGNqb1AxTE1CSFZYbHpnWFIveEUyQUJhNkwwa25aVzVJdVNhVE02elhJNXRR?= =?utf-8?B?SUxneEM0dEtha3JPREl4QlJNVzBMYk9UNEhKQUZNMEdBdS9wVkNZMUJLK1Fv?= =?utf-8?B?VTJyZTZEdXdOTkRxdk9FTE16Vnk2LzE2V2JYVldSWEMwMnptK2dkTVBiWmxw?= =?utf-8?B?U1MweGlaNS85eEhYZE1RM09vamRMZ0ZtaytVTWRNYVBBMFR5K2ljb0lPZWRH?= =?utf-8?B?cFV4VEhySFA5ZjdOQmN2WWc4TEtNRjJDRURLbDFxWkcyZlQyZFAvbCtJVC9y?= =?utf-8?B?aDIwUzU1eTlUQzVvUFdpSWpFaUtQNGpvMHg1V1I4a1Y5U1hYRjlhZ2MrM05h?= =?utf-8?B?a3huS0pZOWgzUXpobXV2VkoxYXZYZEhIU3lJT1E0aU1pUEp0RWVCQVFxVG8y?= =?utf-8?B?cGtVZ1pEbWlGWUZScVFoSmNjSVFNaGVRZDRaZmtpVE84YXFIZFBjSGJmRkg2?= =?utf-8?B?Z0ZKNjg4KzVJYmJpRzg0MkVZUStNazg4YmVDblFZbG8yaGE3WVQ3Q3NwR1Fl?= =?utf-8?B?Zkh1MVdhTGwzUThVaVc2UkxycE9xVE9JRFh6TEVUOEx5RWVlWk1SZmpNZHdS?= =?utf-8?B?S2ZjRm8rM0pZODh4QVRHQTVnY252TnZzM0JBUlkrQisrZUtjWTA0UlZ5QXVW?= =?utf-8?B?akQ0b1Z1RGVlSkppRGZ1aGM0RkNaWlR1L2xSdWdrZVdYNlFkUzFvaXEwZEYw?= =?utf-8?B?NXhyOEE2bmFmRHpYNUMrQUpSaW9tNDdRM0xMZEtlbE9TNHdMdDZrenIxUGcr?= =?utf-8?Q?6mgE1T4sMN5IcCcs=3D?= X-OriginatorOrg: t2data.com X-MS-Exchange-CrossTenant-Network-Message-Id: 96703718-9914-4d29-8da8-08da127ebaf9 X-MS-Exchange-CrossTenant-AuthSource: DB9P251MB0618.EURP251.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Mar 2022 18:54:33.9535 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 27928da5-aacd-4ba1-9566-c748a6863e6c X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: wryp0lWDFIy5Vd2tmQA00ZRibSstHumJdTu/n829PdaaQYcjQANiQKkwpYbGtNlDiv5BjS1TiEbUZVKGUZd9lHt1lhiwlymvpxZFhxDh30Q= X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8P251MB0370 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on metis.ext.pengutronix.de X-Spam-Level: X-Spam-Status: No, score=-2.1 required=4.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,NICE_REPLY_A,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2, SPF_HELO_PASS,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.2 Subject: Re: [ptxdist] [PATCH] openssh: Version bump. v8.8p1 -> v8.9p1 X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de, christian.melki@t2data.com Cc: "ptxdist@pengutronix.de" Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false On 3/30/22 19:48, Michael Olbrich wrote: > On Wed, Mar 30, 2022 at 03:25:39PM +0200, Christian Melki wrote: >> Security miss, integer overflow in the user auth path. >> Not exploitable due to privsep. >> >> * Update license. md5crypt removed, bcrypt relicensed. >> 4-Clause license removed. >> * Minor spelling fixes in the license file. >> * Remove configure option due to the removal of md5crypt. > > Fails to build here with: > > ssherr.c: In function 'ssh_err': > ssherr.c:151:1: sorry, unimplemented: '-fzero-call-used-regs' not supported on this target > make: *** [Makefile:200: ssherr.o] Error 1 > > The stange thing is there is a configure check for it that that one > succeeds: > > checking if arm-v7a-linux-gnueabihf-gcc supports compile flag -fzero-call-used-regs=all... yes > > Michael > Ack. Will look into it. Could you please tell me which gcc version you've used? I've successfully built it for an armv7-a target, but I am using 11.2. >> Signed-off-by: Christian Melki >> --- >> rules/openssh.make | 11 +++++------ >> 1 file changed, 5 insertions(+), 6 deletions(-) >> >> diff --git a/rules/openssh.make b/rules/openssh.make >> index c801d8a6a..8f48e426e 100644 >> --- a/rules/openssh.make >> +++ b/rules/openssh.make >> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_OPENSSH) += openssh >> # >> # Paths and names >> # >> -OPENSSH_VERSION := 8.8p1 >> -OPENSSH_MD5 := 8ce5f390958baeeab635aafd0ef41453 >> +OPENSSH_VERSION := 8.9p1 >> +OPENSSH_MD5 := f33910174f0af52491277211e2b105bb >> OPENSSH := openssh-$(OPENSSH_VERSION) >> OPENSSH_SUFFIX := tar.gz >> OPENSSH_URL := \ >> @@ -25,8 +25,8 @@ OPENSSH_URL := \ >> >> OPENSSH_SOURCE := $(SRCDIR)/$(OPENSSH).$(OPENSSH_SUFFIX) >> OPENSSH_DIR := $(BUILDDIR)/$(OPENSSH) >> -OPENSSH_LICENSE := BSD AND BSD-2-Clause AND BSD-3-Clause AND BSD-4-Clause AND MIT AND Beerware AND ISC >> -OPENSSH_LICENSE_FILES := file://LICENCE;md5=d9d2753bdef9f19466dc7bc959114b11 >> +OPENSSH_LICENSE := BSD AND BSD-2-Clause AND BSD-3-Clause AND MIT AND Beerware AND ISC >> +OPENSSH_LICENSE_FILES := file://LICENCE;md5=8baf365614c9bdd63705f298c9afbfb9 >> >> # ---------------------------------------------------------------------------- >> # Prepare >> @@ -78,8 +78,7 @@ OPENSSH_CONF_OPT := \ >> --with-privsep-user=sshd \ >> --with-sandbox=$(OPENSSH_SANDBOX-y) \ >> --$(call ptx/wwo, PTXCONF_GLOBAL_SELINUX)-selinux \ >> - --with-privsep-path=/var/run/sshd \ >> - --without-md5-passwords >> + --with-privsep-path=/var/run/sshd >> >> # ---------------------------------------------------------------------------- >> # Target-Install >> -- >> 2.32.0 >> >> >> _______________________________________________ >> ptxdist mailing list >> ptxdist@pengutronix.de >> To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de >> > _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de