From patchwork Fri Mar 2 18:07:55 2018 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Christopher McCrory X-Patchwork-Id: 880715 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (mailfrom) smtp.mailfrom=busybox.net (client-ip=140.211.166.136; helo=silver.osuosl.org; envelope-from=buildroot-bounces@busybox.net; receiver=) Authentication-Results: ozlabs.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.b="uvFrXdox"; dkim-atps=neutral Received: from silver.osuosl.org (smtp3.osuosl.org [140.211.166.136]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 3ztHNK6Hsdz9s4q for ; Sat, 3 Mar 2018 05:08:16 +1100 (AEDT) Received: from localhost (localhost [127.0.0.1]) by silver.osuosl.org (Postfix) with ESMTP id D5E982E6D0; Fri, 2 Mar 2018 18:08:14 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from silver.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w--Q+qXH71o1; Fri, 2 Mar 2018 18:08:12 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by silver.osuosl.org (Postfix) with ESMTP id 3D4102E434; Fri, 2 Mar 2018 18:08:12 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from whitealder.osuosl.org (smtp1.osuosl.org [140.211.166.138]) by ash.osuosl.org (Postfix) with ESMTP id A7BC61C2272 for ; Fri, 2 Mar 2018 18:08:11 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by whitealder.osuosl.org (Postfix) with ESMTP id A30C389002 for ; Fri, 2 Mar 2018 18:08:11 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from whitealder.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qiT2b44XpWzm for ; Fri, 2 Mar 2018 18:08:10 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.7.6 Received: from mail-pf0-f194.google.com (mail-pf0-f194.google.com [209.85.192.194]) by whitealder.osuosl.org (Postfix) with ESMTPS id DD3CB88CF8 for ; Fri, 2 Mar 2018 18:08:10 +0000 (UTC) Received: by mail-pf0-f194.google.com with SMTP id h11so3927742pfn.4 for ; Fri, 02 Mar 2018 10:08:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id; bh=z/6oeNSAvo5o+ES3oCfJD6X8OZZy/ThdWLrTb0BNoNE=; b=uvFrXdoxnV/BJCoH2bkR5klPTFLomPpmwRU8OKJMpIyK78vzP1Uk01SwORhUT95niz eqdO0ueaTXTK6pOUsv40CCTcjLuzNcE9qgGTS7ZnazRfm3dqZrUlSXSLO93qCS2Ki6Ul Nn1n8p61Vv4IzdLRTpyVj8om6Ku9isiP8RAls+LeduBwv+h/itJLfVSUA+I74E2bpuNJ MF8y0MEHZB3kpci6j9guKlMPjpSI9svWdH8s05EYLfVmrPQrq2P/wtOYlQyz3IsA2YNb FNfqNa74hRiQXdv5A5nO1fIXsJFj4jitb5ljr9dTKXdGWRathLjdI3eqT5wRmCawO3aq VEdQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id; bh=z/6oeNSAvo5o+ES3oCfJD6X8OZZy/ThdWLrTb0BNoNE=; b=k2Jy7gzmyrmhVMhJzoEHvdUn6UlT3uEusAfiyNrbrkeJUF4YAIedsv3xGVR919xf9W 1qALYZbnJ6e40VOylWFpZHJYHBvrYc2siflJi6+SEfyny1At3FYrz0a332KocijXCR0s Lb60GxIg0u+vwQFw/zfbKmRccBnyHdYiCrjZ0sQFYojcw6muIXMfUoSa4GmDqPHpNkK7 faRdnpREGQSt/U1zkfihEOauFkAZSDUBA8ZZaMw3NozoWIgApkOpxhY16a6s8si29slI uG3gpv5ytoCZwqtSfMOTLIrp4AXpduey5PnLcqXs/tLCleoQ6AzYJ0KkVtCYOe46kwOd 7Vxg== X-Gm-Message-State: APf1xPBOURmqkinlZ8JNcTYx48JQqxWr9yhedBtkFHb8/H2QeZThdn45 SkagFYiMfYJyWEv+XRZVjNQyVIVm X-Google-Smtp-Source: AG47ELuyZCdhv7kWLhVsV+qbARKuL2G/uOsdpvhPnuBT6DHb4h3K77DhtIVahBERBU8GlMeiA2Eynw== X-Received: by 10.101.73.7 with SMTP id p7mr5134073pgs.250.1520014090144; Fri, 02 Mar 2018 10:08:10 -0800 (PST) Received: from localhost.localdomain ([2600:1012:b04a:58de:a72c:768f:3ebb:2df]) by smtp.gmail.com with ESMTPSA id d13sm9787314pgn.64.2018.03.02.10.08.08 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Fri, 02 Mar 2018 10:08:09 -0800 (PST) From: Christopher McCrory To: buildroot@buildroot.org Date: Fri, 2 Mar 2018 10:07:55 -0800 Message-Id: <20180302180756.14315-1-chrismcc@gmail.com> X-Mailer: git-send-email 2.14.3 Subject: [Buildroot] [PATCH 1/2] memcached: bump to version 1.5.6 X-BeenThere: buildroot@busybox.net X-Mailman-Version: 2.1.24 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Christopher McCrory MIME-Version: 1.0 Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" From ReleaseNotes156 This is a bugfix release, but it primarily disables the UDP protocol by default. In the last few days reports of UDP amplification attacks utilizing inesure memcached instances have surfaced. Attackers are able to set large values into memcached, then send requests via spoofed UDP packets. Memcached will then send a very large number of very large UDP packets back in response. Signed-off-by: Christopher McCrory --- package/memcached/memcached.hash | 7 +++---- package/memcached/memcached.mk | 2 +- 2 files changed, 4 insertions(+), 5 deletions(-) diff --git a/package/memcached/memcached.hash b/package/memcached/memcached.hash index 204590d27c..8278933827 100644 --- a/package/memcached/memcached.hash +++ b/package/memcached/memcached.hash @@ -1,4 +1,3 @@ -# From http://www.memcached.org/files/memcached-1.5.0.tar.gz.sha1 -sha1 e12af93e63c05ab7e89398e4cfd0bfc7b7bff1c5 memcached-1.5.0.tar.gz -# Calculated based on the hash above -sha256 c001f812024bb461b5e4d7d0506daab63dff9614eea26f46536c3b7e1e601c32 memcached-1.5.0.tar.gz +# From http://www.memcached.org/files/memcached-1.5.6.tar.gz.sha1 +sha1 ca35929e74b132c2495a6957cfdc80556337fb90 memcached-1.5.6.tar.gz +sha256 9675ee859d7d81f7a950f190a6812720b26f08228d356044ec517d4d5af25f03 memcached-1.5.6.tar.gz diff --git a/package/memcached/memcached.mk b/package/memcached/memcached.mk index d0e3bc01d9..c15abc79bf 100644 --- a/package/memcached/memcached.mk +++ b/package/memcached/memcached.mk @@ -4,7 +4,7 @@ # ################################################################################ -MEMCACHED_VERSION = 1.5.0 +MEMCACHED_VERSION = 1.5.6 MEMCACHED_SITE = http://www.memcached.org/files MEMCACHED_DEPENDENCIES = libevent MEMCACHED_CONF_ENV = ac_cv_prog_cc_c99='-std=gnu99' From patchwork Fri Mar 2 18:07:56 2018 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Christopher McCrory X-Patchwork-Id: 880716 Return-Path: X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (mailfrom) smtp.mailfrom=busybox.net (client-ip=140.211.166.138; helo=whitealder.osuosl.org; envelope-from=buildroot-bounces@busybox.net; receiver=) Authentication-Results: ozlabs.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.b="J+Orrnry"; dkim-atps=neutral Received: from whitealder.osuosl.org (smtp1.osuosl.org [140.211.166.138]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 3ztHNN5bmbz9s71 for ; Sat, 3 Mar 2018 05:08:20 +1100 (AEDT) Received: from localhost (localhost [127.0.0.1]) by whitealder.osuosl.org (Postfix) with ESMTP id D51D489029; Fri, 2 Mar 2018 18:08:16 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from whitealder.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MzO20ksCwKwb; Fri, 2 Mar 2018 18:08:14 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by whitealder.osuosl.org (Postfix) with ESMTP id AE15B89002; Fri, 2 Mar 2018 18:08:14 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from whitealder.osuosl.org (smtp1.osuosl.org [140.211.166.138]) by ash.osuosl.org (Postfix) with ESMTP id DEA511C2272 for ; Fri, 2 Mar 2018 18:08:13 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by whitealder.osuosl.org (Postfix) with ESMTP id DB9F989002 for ; Fri, 2 Mar 2018 18:08:13 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from whitealder.osuosl.org ([127.0.0.1]) by localhost (.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FJ+G1cwlq-e9 for ; Fri, 2 Mar 2018 18:08:13 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.7.6 Received: from mail-pl0-f65.google.com (mail-pl0-f65.google.com [209.85.160.65]) by whitealder.osuosl.org (Postfix) with ESMTPS id 69EB488CF8 for ; Fri, 2 Mar 2018 18:08:13 +0000 (UTC) Received: by mail-pl0-f65.google.com with SMTP id m22-v6so2609201pls.5 for ; Fri, 02 Mar 2018 10:08:13 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:date:message-id:in-reply-to:references; bh=FOk67rYpdkw+twlif9OBzdCR7FiYzocNTMEQUHJFRjs=; b=J+OrrnryCjKQbFF247s53gSDi1t5CUvZbEifKrTNSJ6A/JzPRGm48+I6SjTAdpLkZJ zGhF3zhBr2MP3CjhFrABcUwP3yg3wCC7z9vc883rGv1oW7itrnttg8bShwTCYYyQfhhE Ckl4YfOVd/movr8qlhq/vZ93Mgqwc0Eu2o3EvOYUvYnDC9MX4yDxuAQfqy7dXIXiDztu Iv0Fgc7JmjAsX3hP3GEwdvZ29ThSjLS1bEXmq+/J527Sq3Zs7PXehypL3ut9m3jPcV1x ob+DgJZXhElzPhK54hch9srZFcPiRLwEFJ/8l8nqs7j7k/5f3c0csRY3kmFuyb7Ukhqf 0M5Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references; bh=FOk67rYpdkw+twlif9OBzdCR7FiYzocNTMEQUHJFRjs=; b=XmbWyX4tLSN6gU73h3Px7lEDzXDj+NOdZRX/QWYLodaZ17PNVZsnb8InOjUkjMANgb LeKS5Xr5iWZUto79OHqmwDpXwv0CPR8NvZkRWWJYZlgDutivXoWoGOVMhXPF7t1xzHLT cq5srdtdg9IXnsQ0vnO/evVWYG801T4EcOX9r9+NCTn2t49FDtAAefdUwybp7kXk4Dss Ki1wbByI8fKOgdvh/UkXK3sbyu+7Ai40IQnV+eVAdh7c+RS0KUGo5oo7385FF4+twZl0 HLyDGG+WDjeyB7JZjEYxdxKPEM0jiVpJFwrsqE0nAJOl47q8pLQ0/J2tH7KS7sMdmIPP CKJQ== X-Gm-Message-State: APf1xPCj0plu+new6mDEpoG8FEJQNKiezBHBxvI6uEkU1ADt+zVYXoy2 /yFKKgaSnV8Ltap0KQpU6kq7gBkc X-Google-Smtp-Source: AG47ELv5BDwybQKUZpiSWtnqryJifa8J9q2LX6voA9IUiz1MVwkkOwcxsHybVChaIMtHE5BsyhKmRg== X-Received: by 2002:a17:902:6a17:: with SMTP id m23-v6mr6009023plk.342.1520014092786; Fri, 02 Mar 2018 10:08:12 -0800 (PST) Received: from localhost.localdomain ([2600:1012:b04a:58de:a72c:768f:3ebb:2df]) by smtp.gmail.com with ESMTPSA id d13sm9787314pgn.64.2018.03.02.10.08.10 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Fri, 02 Mar 2018 10:08:12 -0800 (PST) From: Christopher McCrory To: buildroot@buildroot.org Date: Fri, 2 Mar 2018 10:07:56 -0800 Message-Id: <20180302180756.14315-2-chrismcc@gmail.com> X-Mailer: git-send-email 2.14.3 In-Reply-To: <20180302180756.14315-1-chrismcc@gmail.com> References: <20180302180756.14315-1-chrismcc@gmail.com> Subject: [Buildroot] [PATCH 2/2] apache: pass explicit sbindir X-BeenThere: buildroot@busybox.net X-Mailman-Version: 2.1.24 Precedence: list List-Id: Discussion and development of buildroot List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: Christopher McCrory MIME-Version: 1.0 Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" The apache configure script help indicates that the sbindir is PREFIX/sbin , but it actually uses PREFIX/bin. Most people probably expect httpd to be located in /usr/sbin/httpd Signed-off-by: Christopher McCrory --- package/apache/apache.mk | 3 +++ 1 file changed, 3 insertions(+) diff --git a/package/apache/apache.mk b/package/apache/apache.mk index e1b1a209cb..4fd5896d59 100644 --- a/package/apache/apache.mk +++ b/package/apache/apache.mk @@ -28,7 +28,10 @@ else ifeq ($(BR2_PACKAGE_APACHE_MPM_WORKER),y) APACHE_MPM = worker endif +# Explicitly pass sbindir, because apache configure script defines it +# to PREFIX/bin, which doesn't make much sense APACHE_CONF_OPTS = \ + --sbindir=/usr/sbin \ --sysconfdir=/etc/apache2 \ --with-apr=$(STAGING_DIR)/usr \ --with-apr-util=$(STAGING_DIR)/usr \