Fix for BrickFTP (#1489736), spec clean-up
- scp: Do not NUL-terminate the command for remote exec (#1489736, GH#208) - Make devel package dependency on main package arch-specific - Drop EL-5 support - noarch sub-packages always available now - Drop legacy Group: and BuildRoot: tags - Drop explicit buildroot cleaning - %{__isa_bits} always defined now
This commit is contained in:
parent
29d026f712
commit
af56e4903a
|
@ -0,0 +1,45 @@
|
|||
From 819ef4f2037490b6aa2e870aea851b6364184090 Mon Sep 17 00:00:00 2001
|
||||
From: Kamil Dudka <kdudka@redhat.com>
|
||||
Date: Mon, 11 Sep 2017 21:13:45 +0200
|
||||
Subject: [PATCH] scp: do not NUL-terminate the command for remote exec (#208)
|
||||
|
||||
It breaks SCP download/upload from/to certain server implementations.
|
||||
|
||||
The bug does not manifest with OpenSSH, which silently drops the NUL
|
||||
byte (eventually with any garbage that follows the NUL byte) before
|
||||
executing it.
|
||||
|
||||
Bug: https://bugzilla.redhat.com/1489736
|
||||
---
|
||||
src/scp.c | 8 ++++----
|
||||
1 file changed, 4 insertions(+), 4 deletions(-)
|
||||
|
||||
diff --git a/src/scp.c b/src/scp.c
|
||||
index 22778dd..d1665a6 100644
|
||||
--- a/src/scp.c
|
||||
+++ b/src/scp.c
|
||||
@@ -303,8 +303,8 @@ scp_recv(LIBSSH2_SESSION * session, const char *path, libssh2_struct_stat * sb)
|
||||
&session->scpRecv_command[cmd_len],
|
||||
session->scpRecv_command_len - cmd_len);
|
||||
|
||||
- session->scpRecv_command[cmd_len] = '\0';
|
||||
- session->scpRecv_command_len = cmd_len + 1;
|
||||
+ /* the command to exec should _not_ be NUL-terminated */
|
||||
+ session->scpRecv_command_len = cmd_len;
|
||||
|
||||
_libssh2_debug(session, LIBSSH2_TRACE_SCP,
|
||||
"Opening channel for SCP receive");
|
||||
@@ -845,8 +845,8 @@ scp_send(LIBSSH2_SESSION * session, const char *path, int mode,
|
||||
&session->scpSend_command[cmd_len],
|
||||
session->scpSend_command_len - cmd_len);
|
||||
|
||||
- session->scpSend_command[cmd_len] = '\0';
|
||||
- session->scpSend_command_len = cmd_len + 1;
|
||||
+ /* the command to exec should _not_ be NUL-terminated */
|
||||
+ session->scpSend_command_len = cmd_len;
|
||||
|
||||
_libssh2_debug(session, LIBSSH2_TRACE_SCP,
|
||||
"Opening channel for SCP send");
|
||||
--
|
||||
2.9.5
|
||||
|
45
libssh2.spec
45
libssh2.spec
|
@ -1,24 +1,11 @@
|
|||
# Fedora 10 onwards support noarch subpackages; by using one, we can
|
||||
# put the arch-independent docs in a common subpackage and save lots
|
||||
# of space on the mirrors
|
||||
%if 0%{?fedora} > 9 || 0%{?rhel} > 5
|
||||
%global noarch_docs_package 1
|
||||
%else
|
||||
%global noarch_docs_package 0
|
||||
%endif
|
||||
|
||||
# Define %%{__isa_bits} for old releases
|
||||
%{!?__isa_bits: %global __isa_bits %((echo '#include <bits/wordsize.h>'; echo __WORDSIZE) | cpp - | grep -Ex '32|64')}
|
||||
|
||||
Name: libssh2
|
||||
Version: 1.8.0
|
||||
Release: 4%{?dist}
|
||||
Release: 5%{?dist}
|
||||
Summary: A library implementing the SSH2 protocol
|
||||
Group: System Environment/Libraries
|
||||
License: BSD
|
||||
URL: http://www.libssh2.org/
|
||||
Source0: http://libssh2.org/download/libssh2-%{version}.tar.gz
|
||||
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(id -nu)
|
||||
Patch1: 0001-scp-do-not-NUL-terminate-the-command-for-remote-exec.patch
|
||||
|
||||
BuildRequires: coreutils
|
||||
BuildRequires: findutils
|
||||
|
@ -47,8 +34,7 @@ SECSH-DHGEX(04), and SECSH-NUMBERS(10).
|
|||
|
||||
%package devel
|
||||
Summary: Development files for libssh2
|
||||
Group: Development/Libraries
|
||||
Requires: %{name} = %{version}-%{release}
|
||||
Requires: %{name}%{?_isa} = %{version}-%{release}
|
||||
Requires: pkgconfig
|
||||
|
||||
%description devel
|
||||
|
@ -57,11 +43,8 @@ developing applications that use libssh2.
|
|||
|
||||
%package docs
|
||||
Summary: Documentation for libssh2
|
||||
Group: Development/Libraries
|
||||
Requires: %{name} = %{version}-%{release}
|
||||
%if %{noarch_docs_package}
|
||||
BuildArch: noarch
|
||||
%endif
|
||||
|
||||
%description docs
|
||||
The libssh2-docs package contains man pages and examples for
|
||||
|
@ -70,9 +53,14 @@ developing applications that use libssh2.
|
|||
%prep
|
||||
%setup -q
|
||||
|
||||
# scp: do not NUL-terminate the command for remote exec
|
||||
# https://bugzilla.redhat.com/show_bug.cgi?id=1489736
|
||||
# https://github.com/libssh2/libssh2/pull/208
|
||||
%patch1 -p1
|
||||
|
||||
# Replace hard wired port number in the test suite to avoid collisions
|
||||
# between 32-bit and 64-bit builds running on a single build-host
|
||||
sed -i s/4711/47%{?__isa_bits}/ tests/ssh2.{c,sh}
|
||||
sed -i s/4711/47%{__isa_bits}/ tests/ssh2.{c,sh}
|
||||
|
||||
# Make sshd transition appropriately if building in an SELinux environment
|
||||
%if !(0%{?fedora} >= 17 || 0%{?rhel} >= 7)
|
||||
|
@ -86,7 +74,6 @@ chcon $(/usr/sbin/matchpathcon -n /etc/ssh/ssh_host_key) tests/etc/{host,user} |
|
|||
make %{?_smp_mflags}
|
||||
|
||||
%install
|
||||
rm -rf %{buildroot}
|
||||
make install DESTDIR=%{buildroot} INSTALL="install -p"
|
||||
find %{buildroot} -name '*.la' -delete
|
||||
|
||||
|
@ -118,9 +105,6 @@ echo "exit 0" > tests/mansyntax.sh
|
|||
%endif
|
||||
make -C tests check
|
||||
|
||||
%clean
|
||||
rm -rf %{buildroot}
|
||||
|
||||
%post -p /sbin/ldconfig
|
||||
|
||||
%postun -p /sbin/ldconfig
|
||||
|
@ -145,6 +129,15 @@ rm -rf %{buildroot}
|
|||
%{_libdir}/pkgconfig/libssh2.pc
|
||||
|
||||
%changelog
|
||||
* Tue Sep 12 2017 Paul Howarth <paul@city-fan.org> - 1.8.0-5
|
||||
- scp: Do not NUL-terminate the command for remote exec (#1489736, GH#208)
|
||||
- Make devel package dependency on main package arch-specific
|
||||
- Drop EL-5 support
|
||||
- noarch sub-packages always available now
|
||||
- Drop legacy Group: and BuildRoot: tags
|
||||
- Drop explicit buildroot cleaning
|
||||
- %%{__isa_bits} always defined now
|
||||
|
||||
* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.0-4
|
||||
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
|
||||
|
||||
|
@ -345,7 +338,7 @@ rm -rf %{buildroot}
|
|||
- OpenSSL EVP: fix threaded use of structs
|
||||
- _libssh2_channel_read: react on errors from receive_window_adjust
|
||||
- sftp_read: cap the read ahead maximum amount
|
||||
- _libssh2_channel_read: fix non-blocking window adjusting
|
||||
- _libssh2_channel_read: fix non-blocking window adjusting
|
||||
- add upstream patch fixing undefined function reference in libgcrypt backend
|
||||
- BR: /usr/bin/man for test suite
|
||||
|
||||
|
|
Loading…
Reference in New Issue