Opened 2 years ago

Closed 2 years ago

#16163 closed enhancement (fixed)

openssh-8.9p1 with ssh-askpass

Reported by: Bruce Dubbs Owned by: pierre
Priority: normal Milestone: 11.2
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New patch version.

Change History (10)

comment:1 by Xi Ruoyao, 2 years ago

I hope it does not contain security fixes... But it would be easier to handle than libxml2 or expat because it does not contain any library :).

comment:2 by Xi Ruoyao, 2 years ago

I get:

configure: WARNING: unrecognized options: --with-md5-passwords

The ChangeLog says:

remove built-in support for md5crypt()

Users of MD5-hashed password should arrange for ./configure to link against libxcrypt or similar. Though it would be better to avoid use of MD5 password hashing entirely, it's arguably worse than DEScrypt.

comment:3 by Xi Ruoyao, 2 years ago

As LFS has switched to use SHA-512 for passwords ten years ago, we can just remove --with-md5-passwords.

comment:4 by Xi Ruoyao, 2 years ago

Changelog is very long at http://www.openssh.com/txt/release-8.9.

There is a security-related change, but the upstream says the fixed issue was not exploitable. No need to put this in 11.1.

comment:5 by Xi Ruoyao, 2 years ago

All tests passed without the sed for conch-ciphers.

comment:6 by Xi Ruoyao, 2 years ago

It seems causing libssh2 test ssh2.sh to fail.

in reply to:  6 ; comment:7 by Douglas R. Reno, 2 years ago

Replying to Xi Ruoyao:

It seems causing libssh2 test ssh2.sh to fail.

Can you try with openssh-8.8p1 as well? 

PASS: simple
PASS: mansyntax.sh
FAIL: ssh2.sh
============================================================================
Testsuite summary for libssh2 -
============================================================================
# TOTAL: 3
# PASS:  2
# SKIP:  0
# XFAIL: 0
# FAIL:  1
# XPASS: 0
# ERROR: 0
============================================================================
See tests/test-suite.log
Please report to libssh2-devel@cool.haxx.se
============================================================================

in reply to:  7 comment:8 by Xi Ruoyao, 2 years ago

Replying to Douglas R. Reno:

Replying to Xi Ruoyao:

It seems causing libssh2 test ssh2.sh to fail.

Can you try with openssh-8.8p1 as well?

Well, it also fails with openssh-8.8p1.

I can't remember why I didn't see it with openssh-8.8p1 before. Maybe I skipped the test because I usually install libssh2 before gnupg and the book says gnupg is needed for testing libssh2.

test-suite.log contains: 

FAIL: ssh2.sh
=============

command-line line 0: Deprecated option UsePrivilegeSeparation
command-line line 0: Deprecated option UsePrivilegeSeparation
Failure establishing SSH session
FAIL ssh2.sh (exit status: 1)

comment:9 by pierre, 2 years ago

Owner: changed from blfs-book to pierre
Status: newassigned

comment:10 by pierre, 2 years ago

Resolution: fixed
Status: assignedclosed
Summary: openssh-8.9p1openssh-8.9p1 with ssh-askpass

Fixed at 02cb68493

Note: See TracTickets for help on using tickets.