NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

package/snmppp: security bump to version 3.5.0

Browse Source 
- Improved (security): Avoid timing attacks on authentication
  verification.
- Drop patch (already in version)

https://www.agentpp.com/download/changes_snmp++v3.txt

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
This commit is contained in:
Fabrice Fontaine 2023-03-18 13:32:17 +01:00 committed by Thomas Petazzoni
parent 889fd54f80
commit e011fa0415
3 changed files with 2 additions and 41 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
package/snmppp/0001-fix-build-with-libressl-3-5-0.patch
View File

@ -1,39 +0,0 @@
fix build with libressl >= 3.5.0
Fix the following build failure with libressl >= 3.5.0:
auth_priv.cpp: In member function 'virtual int Snmp_pp::AuthMD5::password_to_key(const unsigned char*, unsigned int, const unsigned char*, unsigned int, unsigned char*, unsigned int*)':
auth_priv.cpp:1132:20: error: aggregate 'Snmp_pp::MD5HashStateType md5_hash_state' has incomplete type and cannot be defined
MD5HashStateType md5_hash_state;
^~~~~~~~~~~~~~
Fixes:
- http://autobuild.buildroot.org/results/b50b883c03e82564198a8b7e91bd14bf007772e0
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[Upstream status: merged (emailed to katz.agentpp.com@magenta.de)]
diff -Naurp snmp++-3.4.9.orig/src/auth_priv.cpp snmp++-3.4.9/src/auth_priv.cpp
--- snmp++-3.4.9.orig/src/auth_priv.cpp 2022-05-13 11:39:14.083038544 +0200
+++ snmp++-3.4.9/src/auth_priv.cpp 2022-05-13 15:00:42.576102348 +0200
@@ -79,8 +79,9 @@ static const char *loggerModuleName = "s
/* -- START: Defines for OpenSSL -- */
-#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
-// OpenSSL versions up to 1.0.x and LibreSSL
+#if OPENSSL_VERSION_NUMBER < 0x10100000L || \
+ (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x30500000L)
+// OpenSSL versions up to 1.0.x and LibreSSL versions up to 3.4.x
typedef EVP_MD_CTX EVPHashStateType;
int evpAllocAndInit(EVP_MD_CTX *ctx, const EVP_MD *md)
@@ -138,7 +139,7 @@ typedef EVP_MD_CTX* MD5HashSta
#define MD5_PROCESS(s, p, l) EVP_DigestUpdate(*(s), p, l)
#define MD5_DONE(s, k) evpDigestFinalAndFree(s, k)
-#endif // OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
+#endif // OPENSSL_VERSION_NUMBER < 0x10100000L || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x30500000L)
typedef DES_key_schedule DESCBCType;
#define DES_CBC_START_ENCRYPT(c, iv, k, kl, r, s) \

2
package/snmppp/snmppp.hash
View File

@ -1,3 +1,3 @@
# Locally computed:
sha256 d7a77fd05ecd99b25c51cbab08dfeef22a5edf2677875695c213631af59d5bae snmp++-3.4.10.tar.gz
sha256 43a433bd5f6fd67add5a26add6521ca664c41aead438405658ed57483664b4bf snmp++-3.5.0.tar.gz
sha256 61337e799c8274e596e5783b22607beea8073ee296c6b27fc5c7487296e56851 src/v3.cpp

2
package/snmppp/snmppp.mk
View File

@ -4,7 +4,7 @@
#
################################################################################
SNMPPP_VERSION = 3.4.10
SNMPPP_VERSION = 3.5.0
SNMPPP_SOURCE = snmp++-$(SNMPPP_VERSION).tar.gz
SNMPPP_SITE = http://www.agentpp.com/download
SNMPPP_DEPENDENCIES = host-pkgconf