[MacPorts] #62890: openssh 8.4p1 does not compile with +fido2 variant
MacPorts
noreply at macports.org
Fri May 14 12:39:02 UTC 2021
#62890: openssh 8.4p1 does not compile with +fido2 variant
----------------------+--------------------
Reporter: iay | Owner: (none)
Type: defect | Status: new
Priority: Normal | Milestone:
Component: ports | Version:
Resolution: | Keywords:
Port: openssh |
----------------------+--------------------
Comment (by iay):
>Be mindful, that an update to 8.6.p1 will likely break the gsskex
variant.
You're right, the `+gsskex` variant patch does not apply against 8.6p1; I
count 15 failed hunks against 11 different files. Some of them look easy
to adjust, but some of them do not. As you say, this seems to be true from
8.5p1 forwards.
Worse, even if I was to figure out how to apply that patch it doesn't look
like `port test` works on this port at all, either on the existing 8.4p1
or 8.6p1. Both seem to hang permanently in something running `netcat`. I
don't know if there's some kind of test fixture required to get this
working?
Without the ability to test even at that level, I can't be confident that
it's actually working. If carrying the `gsskex` functionality would be a
blocker for moving to 8.6, I guess there's no point in submitting the PR I
was thinking of. Someone who actually understands this patch would have to
resolve that issue first, and the other changes required to run 8.6p1 are
very small by comparison.
>FreeBSD FreshPorts skipped 8.5p1 for the same reason.
They seem to be on 8.6p1 now, does that help us in any way?
https://www.freshports.org/security/openssh-portable/
Any thoughts as to how to make progress? I can meet my personal need just
by keeping my code in a fork so that I can use 8.6p1 +fido2 on my own
machines, but it's hard to share with colleagues that way.
--
Ticket URL: <https://trac.macports.org/ticket/62890#comment:2>
MacPorts <https://www.macports.org/>
Ports system for macOS
More information about the macports-tickets
mailing list