Re: golang-go.crypto / CVE-2019-11841

To: Brian May <bam@debian.org>, Utkarsh Gupta <utkarsh@debian.org>
Cc: Ola Lundqvist <ola@inguza.com>, Debian LTS <debian-lts@lists.debian.org>
Subject: Re: golang-go.crypto / CVE-2019-11841
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Thu, 8 Oct 2020 09:20:45 +0200
Message-id: <[🔎] 0f05e2e5-a26d-179f-18d4-c4abdddc5fec@debian.org>
In-reply-to: <[🔎] 87y2kjghen.fsf@canidae.wired.pri>
References: <87k0xes8kr.fsf@canidae.wired.pri> <87pn75t6vb.fsf@canidae.wired.pri> <87eenju6qa.fsf@canidae.wired.pri> <877dtatsa2.fsf@canidae.wired.pri> <87r1refqqe.fsf@canidae.wired.pri> <CABY6=0nu1DP42xdGA-1whSZVY08fd0JSrarJijHAzAFMycfD7Q@mail.gmail.com> <874ko9p70k.fsf@canidae.wired.pri> <CABY6=0nbk71vcgXX3yHeKmm1kYZi=+PduFCbiyNCDx8WXDwEQA@mail.gmail.com> <871rjbq50z.fsf@canidae.wired.pri> <CABY6=0mSxsXpjhz-X+=p2wSSeXFuffVf=7X3AQ0GEyy1YRF9-A@mail.gmail.com> <87k0x2edaf.fsf@canidae.wired.pri> <CABY6=0=xDdOo1RH9iJiG=xS0T=GaQ48k+w-RSoLPSbTDcZxCUA@mail.gmail.com> <871rj6m8jr.fsf@canidae.wired.pri> <CABY6=0ku8-9tztUoYS_nU=jX_aUP_VVhyGyZefS+a3jh=tv--A@mail.gmail.com> <[🔎] 87a6x1ism5.fsf@canidae.wired.pri> <[🔎] CAPP0f95wioPcjGJcdr5-asTvnF2Wfq-JC+fhL=7ORiKnr1P97A@mail.gmail.com> <[🔎] 877ds5ir5a.fsf@canidae.wired.pri> <[🔎] CAPP0f95oKvN+F2mZrscoGx-Ji+=PUcGopL+HusTd47gp6oakQQ@mail.gmail.com> <[🔎] 87y2kjghen.fsf@canidae.wired.pri>

Hi,

On 06/10/2020 23:42, Brian May wrote:

Utkarsh Gupta <utkarsh@debian.org> writes:

Ah, great. It'd nice to include this then! :)


Done. See attached patch. I had to apply it manually, because patch was
misapplying one of the hunks in the wrong place. There were several
hunks that apply to SKEd25519 public key stuff I skipped also because
this version does not have SKEd25519 public key stuff.

I note that some of the ssh tests are skipped because sshd is not
installed. So I added "openssh-server" to the build depends, and found
that one of the tests hangs. Even if I revert my changes.

The tests related to these change appear to pass, even without
openssh-server installed, so I think this is good to go.


Have you checked if any rdeps need to be rebuilt?

Cheers,
Emilio

Reply to:

Follow-Ups:
- Re: golang-go.crypto / CVE-2019-11841
  - From: Brian May <bam@debian.org>

References:
- Re: golang-go.crypto / CVE-2019-11841
  - From: Brian May <bam@debian.org>
- Re: golang-go.crypto / CVE-2019-11841
  - From: Utkarsh Gupta <utkarsh@debian.org>
- Re: golang-go.crypto / CVE-2019-11841
  - From: Brian May <bam@debian.org>
- Re: golang-go.crypto / CVE-2019-11841
  - From: Utkarsh Gupta <utkarsh@debian.org>
- Re: golang-go.crypto / CVE-2019-11841
  - From: Brian May <bam@debian.org>

Prev by Date: [security tracker role] Processing a16b55300564d69f4c3d37a0c84cc41bf9b5638b failed
Next by Date: Re: [security tracker role] Processing a16b55300564d69f4c3d37a0c84cc41bf9b5638b failed
Previous by thread: Re: golang-go.crypto / CVE-2019-11841
Next by thread: Re: golang-go.crypto / CVE-2019-11841
Index(es):
- Date
- Thread