Package Details: openssh-selinux 8.4p1-1

Git Clone URL: https://aur.archlinux.org/openssh-selinux.git (read-only, click to copy)
Package Base: openssh-selinux
Description: Premier connectivity tool for remote login with the SSH protocol, with SELinux support
Upstream URL: https://www.openssh.com/portable.html
Keywords: selinux
Licenses: custom:BSD
Groups: selinux
Conflicts: openssh, selinux-openssh
Provides: openssh=8.4p1-1, selinux-openssh=8.4p1-1
Submitter: Siosm
Maintainer: IooNag
Last Packager: IooNag
Votes: 18
Popularity: 0.191731
First Submitted: 2013-11-03 20:05
Last Updated: 2020-10-10 15:45

Required by (213)

Sources (7)

Latest Comments

1 2 Next › Last »

Unb0rn commented on 2020-02-17 06:16

I seem to have the same problem as in here: https://bugs.archlinux.org/task/65513 Maybe this should be updated too?

IooNag commented on 2020-02-16 07:26

@yar I updated openssh-selinux to 8.2p1-1 a few hours ago, because the tests worked and it fixed the issue of broken systems due to the glibc update (cf. https://github.com/archlinuxhardened/selinux/pull/27#issuecomment-586648511). openssh 8.2p1-1 was in testing a few hours ago, but is now in core, so the issue caused by glibc update is fixed. Thanks again for your bug report!

yar commented on 2020-02-16 03:36

Not sure offhand, but 8.2 is out, maybe that'll work?

Meanwhile anybody with this package who's Syu'd in the past few days has bricked their sshd :/

IooNag commented on 2020-02-14 08:23

@yar Thanks for the update! Unfortunately the tests are broken with the new version I am testing (8.1p1-4, with the backported patch): https://github.com/archlinuxhardened/selinux/pull/27

I do not have time at the moment to debug this and to investigate whether it is an issue from -selinux package, Arch package or OpenSSH upstream. So I will not update openssh-selinux today, but if you want to find out what is going wrong, it would be very helpful.

yar commented on 2020-02-14 07:32

This is broken by glibc 2.31, needs to incorporate new changes in arch package

IooNag commented on 2017-05-12 20:49

MrMuffin: is your system up-to-date? Which version of openssl are you using? The last version of the package is only compatible with 1.1.0.e-1, as OpenSSL 1.1.0 broke backward-compatibility.

MrMuffin commented on 2017-05-12 20:44

Hi. I am getting these errors:

cipher.c: In function ‘cipher_get_keycontext’:
cipher.c:696:35: error: ‘cc->evp’ is a pointer; did you mean to use ‘->’?
#define EVP_X_STATE_LEN(evp) (evp).cipher->ctx_size
^
->
cipher.c:708:10: note: in expansion of macro ‘EVP_X_STATE_LEN’
plen = EVP_X_STATE_LEN(cc->evp);
^~~~~~~~~~~~~~~
cipher.c:695:31: error: ‘cc->evp’ is a pointer; did you mean to use ‘->’?
#define EVP_X_STATE(evp) (evp).cipher_data
^
->
cipher.c:711:15: note: in expansion of macro ‘EVP_X_STATE’
memcpy(dat, EVP_X_STATE(cc->evp), plen);
^~~~~~~~~~~
cipher.c: In function ‘cipher_set_keycontext’:
cipher.c:696:35: error: ‘cc->evp’ is a pointer; did you mean to use ‘->’?
#define EVP_X_STATE_LEN(evp) (evp).cipher->ctx_size
^
->
cipher.c:727:10: note: in expansion of macro ‘EVP_X_STATE_LEN’
plen = EVP_X_STATE_LEN(cc->evp);
^~~~~~~~~~~~~~~
cipher.c:695:31: error: ‘cc->evp’ is a pointer; did you mean to use ‘->’?
#define EVP_X_STATE(evp) (evp).cipher_data
^
->
cipher.c:728:10: note: in expansion of macro ‘EVP_X_STATE’
memcpy(EVP_X_STATE(cc->evp), dat, plen);
^~~~~~~~~~~
make: *** [Makefile:152: cipher.o] Error 1
==> ERROR: A failure occurred in build().
Aborting...
==> ERROR: Makepkg was unable to build openssh-selinux.

Can you help me?

zer01 commented on 2017-05-07 21:59

Looks like API changes in the OpenSSL 1.1 libs have broken compatibility. Got it to compile again using the extra/openssl-1.0 package:

depends=('krb5' 'openssl-1.0' 'libedit' 'ldns' 'libselinux')

and in build():

export CFLAGS="$CFLAGS -I/usr/include/openssl-1.0"
export LDFLAGS="$LDFLAGS -L/usr/lib/openssl-1.0"

RemoteAdmin commented on 2017-02-06 16:37

@IooNag Unfortunately the first upstream fix wasn't working. Therefore you have to update the package again... But this time it has been verified to work. Thanks for keeping this up to date.

IooNag commented on 2017-02-04 09:17

@RemoteAdmin Thanks for having this bug fixed in the upstream package! I have updated openssh-selinux accordingly.