Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backport the security patch of CVE-2024-39894 #1401

Open
wants to merge 1 commit into
base: releng/14.0
Choose a base branch
from

OpenSSH: correct logic error in ObscureKeystrokeTiming

fb78b23
Select commit
Loading
Failed to load commit list.
Open

Backport the security patch of CVE-2024-39894 #1401

OpenSSH: correct logic error in ObscureKeystrokeTiming
fb78b23
Select commit
Loading
Failed to load commit list.
Cirrus CI / amd64-llvm16 World and kernel build and boot smoke test failed Sep 2, 2024 in 36m 34s

Task Summary

Instruction test failed in 01:03

Details

⚠️ Not enough compute credits to prioritize tasks!
ℹ️ Scheduling was delayed due to a concurrency limit on community tasks

✅ 13:00 clone
✅ 00:21 install
✅ 00:01 setup
✅ 13:48 build_world
✅ 04:39 build_kernel
✅ 03:30 package
✅ 00:01 package_check
❌ 01:03 test

  corresponding rc.conf line:

	devfs_system_ruleset="ugen_ruleset"

- Still usb: since the hub is no longer attached to the uchi controller and
  the wakeup mechanism, resume interrupt is not implemented yet linux guests
  will suspend the bus, i.e. they wont see devices usb_add'ed after its
  (linux') uhci module got loaded.  Workaround: either add devices before
  linux loads the module or rmmod and modprobe it afterwards.  [Not sure
  if this still applies to the new libusb host code used on recent
  10-current.]

- If you get repeated `atapi_poll called!' console messages with FreeBSD
  guests or other weird cdrom problems then thats probably because the guest
  has atapicam loaded, which for reasons still to be determined has problems
  with qemu's now by default enabled cdrom dma. You can build the port with
  CDROM_DMA disabled to disable it.  [Looks like this is fixed in recent
  FreeBSD guest versions.]

- If you build qemu wihout SDL and then get crashes running it try passing it
  -nographic.  This should probably be default in that case...

- qemu's network boot roms (-boot n) have a bug when bootfiles sizes are a
  multiple of blksize, if this affects you (like with FreeBSD's /boot/pxeboot)
  you can do like

	cp /boot/pxeboot pxeboot-qemu && chmod +w pxeboot-qemu && echo >>pxeboot-qemu

  and then use pxeboot-qemu.  Actually you need recent btx code
  (from after 7.0 was released) because of the real mode boot
  problem, so use at least pxeboot from there.  And I just did that
  for the pxeboot extracted out of

	ftp://ftp.freebsd.org/pub/FreeBSD/snapshots/200805/7.0-STABLE-200805-i386-bootonly.iso

  and placed it here:

	http://people.freebsd.org/~nox/qemu/pxeboot-qemu

- If you use slirp (usernet, the default) and want to mount nfs into the guest
  and you are not running qemu as root, then mountd(8) on the exporting box
  needs to be run with -n in order to accept requests from ports >= 1024.
sh tools/boot/ci-qemu-test.sh
pkg: Warning: Major OS version upgrade detected.  Running "pkg bootstrap -f" recommended
Updating local repository catalogue...
Fetching meta.conf: . done
Fetching data.pkg: .... done
Processing entries: .........
pkg: Invalid FreeBSD version 0 for package FreeBSD-kernel-generic
pkg: repository local contains packages for wrong OS version: FreeBSD:14:amd64
Processing entries...
Unable to update repository local
Error updating repositories!

Exit status: 3
View more details on Cirrus CI