[packages/openssh] lock down to openssl version used at compile time to avoid fatal error

glen glen at pld-linux.org
Thu May 30 10:33:01 CEST 2013 

commit 16efbe5bdad4729414c54e3dc632ba4f4dcfb492
Author: Elan Ruusamäe <glen at delfi.ee>
Date:   Thu May 30 11:29:15 2013 +0300

    lock down to openssl version used at compile time to avoid fatal error
    
    $ ssh localhost
    OpenSSL version mismatch. Built against 1000008f, you have 1000105f
    
    $ rpm -q --blink openssl openssh-clients
    openssl-1.0.1e-1.x86_64.rpm
            <= openssl-1.0.0j-1.x86_64.rpm
    openssh-clients-5.9p1-9.x86_64.rpm
            <= openssh-clients-5.9p1-8.x86_64.rpm
    
    similar to neon fix:
    http://git.pld-linux.org/?p=packages/neon.git;a=commitdiff;h=00c6dbc2309d9d93db6a6f469fc8516981bdb405
    
    openssh-6.2p2/entropy.c reads:
    
     void
     seed_rng(void)
     {
     #ifndef OPENSSL_PRNG_ONLY
         unsigned char buf[RANDOM_SEED_SIZE];
     #endif
         /*
          * OpenSSL version numbers: MNNFFPPS: major minor fix patch status
          * We match major, minor, fix and status (not patch) for <1.0.0.
          * After that, we acceptable compatible fix versions (so we
          * allow 1.0.1 to work with 1.0.0). Going backwards is only allowed
          * within a patch series.
          */
         u_long version_mask = SSLeay() >= 0x1000000f ?  ~0xffff0L : ~0xff0L;
         if (((SSLeay() ^ OPENSSL_VERSION_NUMBER) & version_mask) ||
             (SSLeay() >> 12) < (OPENSSL_VERSION_NUMBER >> 12))
             fatal("OpenSSL version mismatch. Built against %lx, you "
                 "have %lx", (u_long)OPENSSL_VERSION_NUMBER, SSLeay());

 openssh.spec | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)
---
diff --git a/openssh.spec b/openssh.spec
index b1d1fe1..354151a 100644
--- a/openssh.spec
+++ b/openssh.spec
@@ -35,7 +35,7 @@ Summary(ru.UTF-8):	OpenSSH - свободная реализация прото
 Summary(uk.UTF-8):	OpenSSH - вільна реалізація протоколу Secure Shell (SSH)
 Name:		openssh
 Version:	6.2p2
-Release:	1
+Release:	2
 Epoch:		2
 License:	BSD
 Group:		Applications/Networking
@@ -258,6 +258,7 @@ Group:		Applications/Networking
 Requires:	%{name}
 Provides:	ssh-clients
 Obsoletes:	ssh-clients
+%requires_eq_to	openssl	openssl-devel
 
 %description clients
 Ssh (Secure Shell) a program for logging into a remote machine and for
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/openssh.git/commitdiff/16efbe5bdad4729414c54e3dc632ba4f4dcfb492

More information about the pld-cvs-commit mailing list