summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorWang Mingyu <wangmy@cn.fujitsu.com>2021-03-23 09:42:38 +0800
committerRichard Purdie <richard.purdie@linuxfoundation.org>2021-03-23 22:51:25 +0000
commit644954038dfd83019a529025a3d7c7cff4fb92f5 (patch)
tree2ad32466d7857ac62461a18804e2145ad8938cbe
parenta1f8ee382f2738eecd3fb705fede920a36650344 (diff)
downloadpoky-644954038dfd83019a529025a3d7c7cff4fb92f5.tar.gz
openssh: upgrade 8.4p1 -> 8.5p1
0f90440ca70abab947acbd77795e9f130967956c.patch removed since it is included in 8.5p1 License Updated : 2-clause BSD license and 4-clause BSD license added (From OE-Core rev: 60ab470f8759539547a96f1b47299b7b16d6a630) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r--meta/recipes-connectivity/openssh/openssh/0f90440ca70abab947acbd77795e9f130967956c.patch28
-rw-r--r--meta/recipes-connectivity/openssh/openssh_8.5p1.bb (renamed from meta/recipes-connectivity/openssh/openssh_8.4p1.bb)5
2 files changed, 2 insertions, 31 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh/0f90440ca70abab947acbd77795e9f130967956c.patch b/meta/recipes-connectivity/openssh/openssh/0f90440ca70abab947acbd77795e9f130967956c.patch
deleted file mode 100644
index b88bc18f12..0000000000
--- a/meta/recipes-connectivity/openssh/openssh/0f90440ca70abab947acbd77795e9f130967956c.patch
+++ /dev/null
@@ -1,28 +0,0 @@
1From 0f90440ca70abab947acbd77795e9f130967956c Mon Sep 17 00:00:00 2001
2From: Darren Tucker <dtucker@dtucker.net>
3Date: Fri, 20 Nov 2020 13:37:54 +1100
4Subject: [PATCH] Add new pselect6_time64 syscall on ARM.
5
6This is apparently needed on armhfp/armv7hl. bz#3232, patch from
7jjelen at redhat.com.
8---
9 sandbox-seccomp-filter.c | 3 +++
10 1 file changed, 3 insertions(+)
11
12Upstream-Status: Backport
13[fixes issues on 32bit IA and probably other 32 bit platforms too with glibc 2.33]
14
15diff --git a/sandbox-seccomp-filter.c b/sandbox-seccomp-filter.c
16index e0768c063..5065ae7ef 100644
17--- a/sandbox-seccomp-filter.c
18+++ b/sandbox-seccomp-filter.c
19@@ -267,6 +267,9 @@ static const struct sock_filter preauth_insns[] = {
20 #ifdef __NR_pselect6
21 SC_ALLOW(__NR_pselect6),
22 #endif
23+#ifdef __NR_pselect6_time64
24+ SC_ALLOW(__NR_pselect6_time64),
25+#endif
26 #ifdef __NR_read
27 SC_ALLOW(__NR_read),
28 #endif
diff --git a/meta/recipes-connectivity/openssh/openssh_8.4p1.bb b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
index 128e2e318a..61d9b95b9e 100644
--- a/meta/recipes-connectivity/openssh/openssh_8.4p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
@@ -6,7 +6,7 @@ and for executing commands on a remote machine."
6HOMEPAGE = "http://www.openssh.com/" 6HOMEPAGE = "http://www.openssh.com/"
7SECTION = "console/network" 7SECTION = "console/network"
8LICENSE = "BSD & ISC & MIT" 8LICENSE = "BSD & ISC & MIT"
9LIC_FILES_CHKSUM = "file://LICENCE;md5=18d9e5a8b3dd1790d73502f50426d4d3" 9LIC_FILES_CHKSUM = "file://LICENCE;md5=d9d2753bdef9f19466dc7bc959114b11"
10 10
11DEPENDS = "zlib openssl virtual/crypt" 11DEPENDS = "zlib openssl virtual/crypt"
12DEPENDS += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}" 12DEPENDS += "${@bb.utils.contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"
@@ -24,9 +24,8 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
24 file://fix-potential-signed-overflow-in-pointer-arithmatic.patch \ 24 file://fix-potential-signed-overflow-in-pointer-arithmatic.patch \
25 file://sshd_check_keys \ 25 file://sshd_check_keys \
26 file://add-test-support-for-busybox.patch \ 26 file://add-test-support-for-busybox.patch \
27 file://0f90440ca70abab947acbd77795e9f130967956c.patch \
28 " 27 "
29SRC_URI[sha256sum] = "5a01d22e407eb1c05ba8a8f7c654d388a13e9f226e4ed33bd38748dafa1d2b24" 28SRC_URI[sha256sum] = "f52f3f41d429aa9918e38cf200af225ccdd8e66f052da572870c89737646ec25"
30 29
31# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 30# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
32# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded 31# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded