OpenSSH 7.1p1 dietlibc (and future glibc) patch
Damien Miller
djm at mindrot.org
Thu Sep 10 10:58:32 AEST 2015
On Wed, 9 Sep 2015, Felix von Leitner wrote:
> Hi OpenSSH devs,
>
> I noticed that openssh 7.1 does not work when compiled with dietlibc. It
> does build properly, and sshd runs and accepts connections, but every
> connection attempt immediately fails.
>
> The root cause is that dietlibc implements some OpenBSD interfaces
> (getentropy and arc4random) so openssh can use the new getrandom syscall
> that Linux provices. OpenSSH configure detects those APIs and uses them,
> but the seccomp filter sandbox code does not yet allow the getrandom
> syscall.
>
> Here's the trivial patch that makes it work:
...
Applied. This will be in OpenSSH 7.2 - thanks!
-d
More information about the openssh-unix-dev
mailing list