Re: [ptxdist] [PATCH] tpm2-tss: Version bump. 2.3.1 -> 3.1.0

mailarchive of the ptxdist mailing list
 help / color / mirror / Atom feed

From: Michael Olbrich <m.olbrich@pengutronix.de>
To: Christian Melki <christian.melki@t2data.com>
Cc: ptxdist@pengutronix.de
Subject: Re: [ptxdist] [PATCH] tpm2-tss: Version bump. 2.3.1 -> 3.1.0
Date: Fri, 28 Jan 2022 19:32:36 +0100	[thread overview]
Message-ID: <20220128183236.GE11273@pengutronix.de> (raw)
In-Reply-To: <d8b348d8-ef14-910b-dbe6-dde3adbdd0ba@t2data.com>

On Fri, Jan 28, 2022 at 06:22:19PM +0100, Christian Melki wrote:
> On 1/28/22 17:16, Michael Olbrich wrote:
> > On Thu, Jan 27, 2022 at 03:35:30PM +0100, Christian Melki wrote:
> >> Approx. 2,5 year worth of fixes.
> >> https://github.com/tpm2-software/tpm2-tss/releases
> >> Fixes CVE-2020-24455 (three times over).
> >> tpm2-tss now depends on JSON_C and LIBCURL.
> >> Remove changed configuration options.
> > 
> > Fails to build here:
> > 
> > checking for groupadd... no
> > configure: error: Missing required program 'groupadd': ensure it is installed and on PATH.
> > 
> > Adding a group should not be done during install anyways and it would fail,
> > so I think this should work:
> > 
> > TPM2_TSS_CONF_ENV := \
> > 	$(CROSS_ENV) \
> > 	GROUPADD=: \
> > 	USERADD=:
> > 
> > Michael
> > 
> 
> Didn't see that one coming. How abusive!
> From a makefile none the less.
> I have the required binaries on my development machine so I didn't notice.
> Now, I've tried your suggestion, but I can't see that it helps?
> 
> Looks like the entire thing goes about the binaries in a very static
> fashion.
> 
> ..
> define make_tss_user_and_group
>     (id -g tss 2>/dev/null || groupadd -r tss) && \
>     (id -u tss 2>/dev/null || useradd -r -g tss tss)
> endef

	@$(call make_tss_user_and_group) || echo "WARNING Failed to create the tss user and group"

so any error here is ignored. We just need to get through the configure
check.

> ..and..
> 
> define set_tss_permissions
>     (chown -R tss:tss "$1") && \
>     (chmod -R 2775 "$1") && \
>     (setfacl -m default:group:tss:rwx "$1")
> endef
> ..

And 'make install' is called with fakeroot, so this will just be ignored as
well.

Michael

> 
> >> Signed-off-by: Christian Melki <christian.melki@t2data.com>
> >> ---
> >>  rules/tpm2-tss.in   | 2 ++
> >>  rules/tpm2-tss.make | 7 ++-----
> >>  2 files changed, 4 insertions(+), 5 deletions(-)
> >>
> >> diff --git a/rules/tpm2-tss.in b/rules/tpm2-tss.in
> >> index dbb310072..75d32188c 100644
> >> --- a/rules/tpm2-tss.in
> >> +++ b/rules/tpm2-tss.in
> >> @@ -4,6 +4,8 @@ config TPM2_TSS
> >>  	tristate
> >>  	select HOST_AUTOTOOLS_AUTOCONF_ARCHIVE
> >>  	select OPENSSL
> >> +	select JSON_C
> >> +	select LIBCURL
> >>  	prompt "tpm2-tss"
> >>  	help
> >>  	  TPM2 Software stack library - TSS and TCTI libraries
> >> diff --git a/rules/tpm2-tss.make b/rules/tpm2-tss.make
> >> index 768c64426..72aff609a 100644
> >> --- a/rules/tpm2-tss.make
> >> +++ b/rules/tpm2-tss.make
> >> @@ -14,8 +14,8 @@ PACKAGES-$(PTXCONF_TPM2_TSS) += tpm2-tss
> >>  #
> >>  # Paths and names
> >>  #
> >> -TPM2_TSS_VERSION	:= 2.3.1
> >> -TPM2_TSS_MD5		:= 5744b10e3cef56df5d65b50f51fb3fe9
> >> +TPM2_TSS_VERSION	:= 3.1.0
> >> +TPM2_TSS_MD5		:= 4d04cf52fff4ee061bb3f7b4f4ea03b7
> >>  TPM2_TSS		:= tpm2-tss-$(TPM2_TSS_VERSION)
> >>  TPM2_TSS_SUFFIX		:= tar.gz
> >>  TPM2_TSS_URL		:= https://github.com/tpm2-software/tpm2-tss/releases/download/$(TPM2_TSS_VERSION)/$(TPM2_TSS).$(TPM2_TSS_SUFFIX)
> >> @@ -36,9 +36,6 @@ TPM2_TSS_CONF_OPT	:= \
> >>  	$(CROSS_AUTOCONF_USR) \
> >>  	--enable-debug=info \
> >>  	--disable-unit \
> >> -	--enable-esapi \
> >> -	--disable-tcti-device-async \
> >> -	--disable-tcti-partial-reads \
> >>  	--enable-tcti-device \
> >>  	--enable-tcti-mssim \
> >>  	--disable-tcti-fuzzing \
> >> -- 
> >> 2.30.2
> >>
> >>
> >> _______________________________________________
> >> ptxdist mailing list
> >> ptxdist@pengutronix.de
> >> To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de
> >>
> > 
> 
> 

-- 
Pengutronix e.K.                           |                             |
Steuerwalder Str. 21                       | http://www.pengutronix.de/  |
31137 Hildesheim, Germany                  | Phone: +49-5121-206917-0    |
Amtsgericht Hildesheim, HRA 2686           | Fax:   +49-5121-206917-5555 |

_______________________________________________
ptxdist mailing list
ptxdist@pengutronix.de
To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de

next prev parent reply	other threads:[~2022-01-28 18:33 UTC|newest]

Thread overview: 37+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-01-27 14:35 [ptxdist] [PATCH] wpa_supplicant: Version bump 2.9 -> 2.10 Christian Melki
2022-01-27 14:35 ` [ptxdist] [PATCH] efivar: Version bump 37 -> 38 Christian Melki
2022-01-28 10:17   ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] sysklogd: Version bump. 2.2.3 -> 2.3.0 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] dump1090fa: Version bump 6.1 -> 7.1 Christian Melki
2022-01-27 15:56   ` Bruno Thomsen
2022-01-27 16:31     ` Christian Melki
2022-01-28  9:37       ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] chrony: Version bump. 4.1 -> 4.2 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] strace: Version bump. 5.15 -> 5.16 Christian Melki
2022-01-28  9:19   ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] alsa-lib: Version bump 1.2.5.1 -> 1.2.6.1 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] alsa-utils: Version bump 1.2.5.1 -> 1.2.6 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] libsndfile: Version bump 1.0.25 -> 1.0.31 Christian Melki
2022-01-28 12:46   ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [WIP: PATCH] pps-tools: Version bump. 1.0.2 -> 1.0.3 Christian Melki
2022-01-28  9:26   ` Michael Olbrich
2022-01-28  9:39     ` Christian Melki
2022-01-28 10:36       ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] tpm2-tss: Version bump. 2.3.1 -> 3.1.0 Christian Melki
2022-01-28 16:16   ` Michael Olbrich
2022-01-28 17:22     ` Christian Melki
2022-01-28 18:32       ` Michael Olbrich [this message]
2022-01-29  8:29         ` Christian Melki
2022-01-29 15:36           ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] tpm2-tools: Version bump. 4.1 -> 5.2 Christian Melki
2022-01-27 15:54   ` Bruno Thomsen
2022-01-28  9:31     ` Michael Olbrich
2022-01-28 13:33       ` Christian Melki
2022-01-28 14:56         ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] ncurses: Version bump. 6.2 -> 6.3 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-30 15:49 ` [ptxdist] [APPLIED] wpa_supplicant: Version bump 2.9 -> 2.10 Michael Olbrich

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20220128183236.GE11273@pengutronix.de \
    --to=m.olbrich@pengutronix.de \
    --cc=christian.melki@t2data.com \
    --cc=ptxdist@pengutronix.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox