diff options
author | Mohammad Akhlaghi <mohammad@akhlaghi.org> | 2019-08-16 18:12:50 +0530 |
---|---|---|
committer | Mohammad Akhlaghi <mohammad@akhlaghi.org> | 2019-08-16 18:16:47 +0530 |
commit | 8dda5d78999ae7620fb77cf208fcb953e05d82aa (patch) | |
tree | 54ce9005f5a715319ca2eaa150684aceeb0f919c /reproduce | |
parent | 9cdef93a050270b63f4fe7bbc99f2c97c0837c43 (diff) |
OpenSSH privsep-path now set within project's build directory
Until now we weren't setting OpenSSH's `privsep-path' configure option. As
a result, it would try to use its default (`/var/empty'). Therefore, when
the host doesn't have `/var/empty', OpenSSH would crash because of not
having permissions to create this directory.
With this commit, we are now using OpenSSH's `--with-privsep-path'
configure-time option to explicitly use a directory with the project's
build directory.
This bug was found by Sheeraz Ahmad and Amina Aahil.
Diffstat (limited to 'reproduce')
-rw-r--r-- | reproduce/software/make/high-level.mk | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/reproduce/software/make/high-level.mk b/reproduce/software/make/high-level.mk index fc2d7a4..832b0b7 100644 --- a/reproduce/software/make/high-level.mk +++ b/reproduce/software/make/high-level.mk @@ -510,9 +510,10 @@ $(ibidir)/openmpi: $(tdir)/openmpi-$(openmpi-version).tar.gz \ $(ibidir)/openssh: $(tdir)/openssh-$(openssh-version).tar.gz $(call gbuild, $<, openssh-$(openssh-version), static, \ - --with-ssl-engine \ + --with-privsep-path=$(ibdir)/.ssh_privsep \ --with-privsep-user=nobody \ --with-md5-passwords \ + --with-ssl-engine \ , -j$(numthreads) V=1) \ && echo "OpenSSH $(openssh-version)" > $@ |