Re: [ptxdist] [PATCH] tpm2-tss: Version bump. 2.3.1 -> 3.1.0

mailarchive of the ptxdist mailing list
 help / color / mirror / Atom feed

From: Christian Melki <christian.melki@t2data.com>
To: Michael Olbrich <m.olbrich@pengutronix.de>
Cc: ptxdist@pengutronix.de
Subject: Re: [ptxdist] [PATCH] tpm2-tss: Version bump. 2.3.1 -> 3.1.0
Date: Fri, 28 Jan 2022 18:22:19 +0100	[thread overview]
Message-ID: <d8b348d8-ef14-910b-dbe6-dde3adbdd0ba@t2data.com> (raw)
In-Reply-To: <YfQWxqk44CTFihWf@pengutronix.de>

On 1/28/22 17:16, Michael Olbrich wrote:
> On Thu, Jan 27, 2022 at 03:35:30PM +0100, Christian Melki wrote:
>> Approx. 2,5 year worth of fixes.
>> https://github.com/tpm2-software/tpm2-tss/releases
>> Fixes CVE-2020-24455 (three times over).
>> tpm2-tss now depends on JSON_C and LIBCURL.
>> Remove changed configuration options.
> 
> Fails to build here:
> 
> checking for groupadd... no
> configure: error: Missing required program 'groupadd': ensure it is installed and on PATH.
> 
> Adding a group should not be done during install anyways and it would fail,
> so I think this should work:
> 
> TPM2_TSS_CONF_ENV := \
> 	$(CROSS_ENV) \
> 	GROUPADD=: \
> 	USERADD=:
> 
> Michael
> 

Didn't see that one coming. How abusive!
>From a makefile none the less.
I have the required binaries on my development machine so I didn't notice.
Now, I've tried your suggestion, but I can't see that it helps?

Looks like the entire thing goes about the binaries in a very static
fashion.

..
define make_tss_user_and_group
    (id -g tss 2>/dev/null || groupadd -r tss) && \
    (id -u tss 2>/dev/null || useradd -r -g tss tss)
endef

..and..

define set_tss_permissions
    (chown -R tss:tss "$1") && \
    (chmod -R 2775 "$1") && \
    (setfacl -m default:group:tss:rwx "$1")
endef
..


>> Signed-off-by: Christian Melki <christian.melki@t2data.com>
>> ---
>>  rules/tpm2-tss.in   | 2 ++
>>  rules/tpm2-tss.make | 7 ++-----
>>  2 files changed, 4 insertions(+), 5 deletions(-)
>>
>> diff --git a/rules/tpm2-tss.in b/rules/tpm2-tss.in
>> index dbb310072..75d32188c 100644
>> --- a/rules/tpm2-tss.in
>> +++ b/rules/tpm2-tss.in
>> @@ -4,6 +4,8 @@ config TPM2_TSS
>>  	tristate
>>  	select HOST_AUTOTOOLS_AUTOCONF_ARCHIVE
>>  	select OPENSSL
>> +	select JSON_C
>> +	select LIBCURL
>>  	prompt "tpm2-tss"
>>  	help
>>  	  TPM2 Software stack library - TSS and TCTI libraries
>> diff --git a/rules/tpm2-tss.make b/rules/tpm2-tss.make
>> index 768c64426..72aff609a 100644
>> --- a/rules/tpm2-tss.make
>> +++ b/rules/tpm2-tss.make
>> @@ -14,8 +14,8 @@ PACKAGES-$(PTXCONF_TPM2_TSS) += tpm2-tss
>>  #
>>  # Paths and names
>>  #
>> -TPM2_TSS_VERSION	:= 2.3.1
>> -TPM2_TSS_MD5		:= 5744b10e3cef56df5d65b50f51fb3fe9
>> +TPM2_TSS_VERSION	:= 3.1.0
>> +TPM2_TSS_MD5		:= 4d04cf52fff4ee061bb3f7b4f4ea03b7
>>  TPM2_TSS		:= tpm2-tss-$(TPM2_TSS_VERSION)
>>  TPM2_TSS_SUFFIX		:= tar.gz
>>  TPM2_TSS_URL		:= https://github.com/tpm2-software/tpm2-tss/releases/download/$(TPM2_TSS_VERSION)/$(TPM2_TSS).$(TPM2_TSS_SUFFIX)
>> @@ -36,9 +36,6 @@ TPM2_TSS_CONF_OPT	:= \
>>  	$(CROSS_AUTOCONF_USR) \
>>  	--enable-debug=info \
>>  	--disable-unit \
>> -	--enable-esapi \
>> -	--disable-tcti-device-async \
>> -	--disable-tcti-partial-reads \
>>  	--enable-tcti-device \
>>  	--enable-tcti-mssim \
>>  	--disable-tcti-fuzzing \
>> -- 
>> 2.30.2
>>
>>
>> _______________________________________________
>> ptxdist mailing list
>> ptxdist@pengutronix.de
>> To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de
>>
> 


_______________________________________________
ptxdist mailing list
ptxdist@pengutronix.de
To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de

next prev parent reply	other threads:[~2022-01-28 17:23 UTC|newest]

Thread overview: 37+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-01-27 14:35 [ptxdist] [PATCH] wpa_supplicant: Version bump 2.9 -> 2.10 Christian Melki
2022-01-27 14:35 ` [ptxdist] [PATCH] efivar: Version bump 37 -> 38 Christian Melki
2022-01-28 10:17   ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] sysklogd: Version bump. 2.2.3 -> 2.3.0 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] dump1090fa: Version bump 6.1 -> 7.1 Christian Melki
2022-01-27 15:56   ` Bruno Thomsen
2022-01-27 16:31     ` Christian Melki
2022-01-28  9:37       ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] chrony: Version bump. 4.1 -> 4.2 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] strace: Version bump. 5.15 -> 5.16 Christian Melki
2022-01-28  9:19   ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] alsa-lib: Version bump 1.2.5.1 -> 1.2.6.1 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] alsa-utils: Version bump 1.2.5.1 -> 1.2.6 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] libsndfile: Version bump 1.0.25 -> 1.0.31 Christian Melki
2022-01-28 12:46   ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [WIP: PATCH] pps-tools: Version bump. 1.0.2 -> 1.0.3 Christian Melki
2022-01-28  9:26   ` Michael Olbrich
2022-01-28  9:39     ` Christian Melki
2022-01-28 10:36       ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] tpm2-tss: Version bump. 2.3.1 -> 3.1.0 Christian Melki
2022-01-28 16:16   ` Michael Olbrich
2022-01-28 17:22     ` Christian Melki [this message]
2022-01-28 18:32       ` Michael Olbrich
2022-01-29  8:29         ` Christian Melki
2022-01-29 15:36           ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] tpm2-tools: Version bump. 4.1 -> 5.2 Christian Melki
2022-01-27 15:54   ` Bruno Thomsen
2022-01-28  9:31     ` Michael Olbrich
2022-01-28 13:33       ` Christian Melki
2022-01-28 14:56         ` Michael Olbrich
2022-01-27 14:35 ` [ptxdist] [PATCH] ncurses: Version bump. 6.2 -> 6.3 Christian Melki
2022-01-30 15:49   ` [ptxdist] [APPLIED] " Michael Olbrich
2022-01-30 15:49 ` [ptxdist] [APPLIED] wpa_supplicant: Version bump 2.9 -> 2.10 Michael Olbrich

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=d8b348d8-ef14-910b-dbe6-dde3adbdd0ba@t2data.com \
    --to=christian.melki@t2data.com \
    --cc=m.olbrich@pengutronix.de \
    --cc=ptxdist@pengutronix.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox