[Buildroot] [PATCH] openssh: bump to version 6.7p1

All of lore.kernel.org
 help / color / mirror / Atom feed

* [Buildroot] [PATCH] openssh: bump to version 6.7p1
@ 2014-10-07 11:11 Gustavo Zacarias
  2014-10-07 12:39 ` Baruch Siach
  2014-10-07 13:38 ` Peter Korsgaard
  0 siblings, 2 replies; 6+ messages in thread
From: Gustavo Zacarias @ 2014-10-07 11:11 UTC (permalink / raw)
  To: buildroot

Also add hash file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
 package/openssh/openssh.hash | 2 ++
 package/openssh/openssh.mk   | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)
 create mode 100644 package/openssh/openssh.hash

diff --git a/package/openssh/openssh.hash b/package/openssh/openssh.hash
new file mode 100644
index 0000000..0b57d48
--- /dev/null
+++ b/package/openssh/openssh.hash
@@ -0,0 +1,2 @@
+# Locally calculated after checking pgp signature
+sha256	b2f8394eae858dabbdef7dac10b99aec00c95462753e80342e530bbb6f725507	openssh-6.7p1.tar.gz
diff --git a/package/openssh/openssh.mk b/package/openssh/openssh.mk
index b934722..17097d5 100644
--- a/package/openssh/openssh.mk
+++ b/package/openssh/openssh.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-OPENSSH_VERSION = 6.6p1
+OPENSSH_VERSION = 6.7p1
 OPENSSH_SITE = http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable
 OPENSSH_LICENSE = BSD-3c BSD-2c Public Domain
 OPENSSH_LICENSE_FILES = LICENCE
-- 
2.0.4

^ permalink raw reply related	[flat|nested] 6+ messages in thread

* [Buildroot] [PATCH] openssh: bump to version 6.7p1
  2014-10-07 11:11 [Buildroot] [PATCH] openssh: bump to version 6.7p1 Gustavo Zacarias
@ 2014-10-07 12:39 ` Baruch Siach
  2014-10-07 12:46   ` Gustavo Zacarias
  2014-10-07 13:38 ` Peter Korsgaard
  1 sibling, 1 reply; 6+ messages in thread
From: Baruch Siach @ 2014-10-07 12:39 UTC (permalink / raw)
  To: buildroot

Hi Gustavo,

On Tue, Oct 07, 2014 at 08:11:45AM -0300, Gustavo Zacarias wrote:
> Also add hash file.
> 
> Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
> ---
>  package/openssh/openssh.hash | 2 ++
>  package/openssh/openssh.mk   | 2 +-
>  2 files changed, 3 insertions(+), 1 deletion(-)
>  create mode 100644 package/openssh/openssh.hash
> 
> diff --git a/package/openssh/openssh.hash b/package/openssh/openssh.hash
> new file mode 100644
> index 0000000..0b57d48
> --- /dev/null
> +++ b/package/openssh/openssh.hash
> @@ -0,0 +1,2 @@
> +# Locally calculated after checking pgp signature
> +sha256	b2f8394eae858dabbdef7dac10b99aec00c95462753e80342e530bbb6f725507	openssh-6.7p1.tar.gz

Why not use the (base64 encoded) hash values from 
http://www.openssh.com/txt/release-6.7? The output of

	echo svg5Tq6Fjau9732sELma7ADJVGJ1PoA0LlMLu29yVQc= |base64 -d |hd

matches your calculated SHA256 AFAICS.

baruch

-- 
     http://baruch.siach.name/blog/                  ~. .~   Tk Open Systems
=}------------------------------------------------ooO--U--Ooo------------{=
   - baruch at tkos.co.il - tel: +972.2.679.5364, http://www.tkos.co.il -

^ permalink raw reply	[flat|nested] 6+ messages in thread

* [Buildroot] [PATCH] openssh: bump to version 6.7p1
  2014-10-07 12:39 ` Baruch Siach
@ 2014-10-07 12:46   ` Gustavo Zacarias
  2014-10-07 19:01     ` Baruch Siach
  0 siblings, 1 reply; 6+ messages in thread
From: Gustavo Zacarias @ 2014-10-07 12:46 UTC (permalink / raw)
  To: buildroot

On 10/07/2014 09:39 AM, Baruch Siach wrote:

> Why not use the (base64 encoded) hash values from 
> http://www.openssh.com/txt/release-6.7? The output of
> 
> 	echo svg5Tq6Fjau9732sELma7ADJVGJ1PoA0LlMLu29yVQc= |base64 -d |hd
> 
> matches your calculated SHA256 AFAICS.

Hi.
Because i've found out about the release from another source.
Both are equally good though.
Regards.

^ permalink raw reply	[flat|nested] 6+ messages in thread

* [Buildroot] [PATCH] openssh: bump to version 6.7p1
  2014-10-07 11:11 [Buildroot] [PATCH] openssh: bump to version 6.7p1 Gustavo Zacarias
  2014-10-07 12:39 ` Baruch Siach
@ 2014-10-07 13:38 ` Peter Korsgaard
  1 sibling, 0 replies; 6+ messages in thread
From: Peter Korsgaard @ 2014-10-07 13:38 UTC (permalink / raw)
  To: buildroot

>>>>> "Gustavo" == Gustavo Zacarias <gustavo@zacarias.com.ar> writes:

 > Also add hash file.
 > Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>

Committed, thanks.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 6+ messages in thread

* [Buildroot] [PATCH] openssh: bump to version 6.7p1
  2014-10-07 12:46   ` Gustavo Zacarias
@ 2014-10-07 19:01     ` Baruch Siach
  2014-10-07 19:04       ` Peter Korsgaard
  0 siblings, 1 reply; 6+ messages in thread
From: Baruch Siach @ 2014-10-07 19:01 UTC (permalink / raw)
  To: buildroot

Hi Gustavo,

On Tue, Oct 07, 2014 at 09:46:42AM -0300, Gustavo Zacarias wrote:
> On 10/07/2014 09:39 AM, Baruch Siach wrote:
> > Why not use the (base64 encoded) hash values from 
> > http://www.openssh.com/txt/release-6.7? The output of
> > 
> > 	echo svg5Tq6Fjau9732sELma7ADJVGJ1PoA0LlMLu29yVQc= |base64 -d |hd
> > 
> > matches your calculated SHA256 AFAICS.
> 
> Because i've found out about the release from another source.
> Both are equally good though.

I think this link is worth mentioning in the .hash file. It allows the user to 
verify the hash against an external source, adding to the warm and fuzzy 
feeling that is the whole point of .hash files. This is especially important 
for sensitive packages like OpenSSH.

baruch

-- 
     http://baruch.siach.name/blog/                  ~. .~   Tk Open Systems
=}------------------------------------------------ooO--U--Ooo------------{=
   - baruch at tkos.co.il - tel: +972.2.679.5364, http://www.tkos.co.il -

^ permalink raw reply	[flat|nested] 6+ messages in thread

* [Buildroot] [PATCH] openssh: bump to version 6.7p1
  2014-10-07 19:01     ` Baruch Siach
@ 2014-10-07 19:04       ` Peter Korsgaard
  0 siblings, 0 replies; 6+ messages in thread
From: Peter Korsgaard @ 2014-10-07 19:04 UTC (permalink / raw)
  To: buildroot

>>>>> "Baruch" == Baruch Siach <baruch@tkos.co.il> writes:

 >> Because i've found out about the release from another source.
 >> Both are equally good though.

 > I think this link is worth mentioning in the .hash file. It allows
 > the user to verify the hash against an external source, adding to the
 > warm and fuzzy feeling that is the whole point of .hash files. This
 > is especially important for sensitive packages like OpenSSH.

Agreed.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2014-10-07 19:04 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2014-10-07 11:11 [Buildroot] [PATCH] openssh: bump to version 6.7p1 Gustavo Zacarias
2014-10-07 12:39 ` Baruch Siach
2014-10-07 12:46   ` Gustavo Zacarias
2014-10-07 19:01     ` Baruch Siach
2014-10-07 19:04       ` Peter Korsgaard
2014-10-07 13:38 ` Peter Korsgaard

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.