mirror of
https://github.com/hackerschoice/segfault.git
synced 2024-06-30 18:51:22 +00:00
43 lines
1.1 KiB
Bash
Executable File
43 lines
1.1 KiB
Bash
Executable File
#! /bin/bash
|
|
|
|
# Executed inside alpine-gcc context to build patched sshd
|
|
# diff -x '!*.[ch]' -u -r openssh-9.2p1-orig openssh-9.2p1-sf | grep -v ^Only
|
|
|
|
# Manual debugging:
|
|
# cd /research/segfault/host
|
|
# docker run --rm -v$(pwd):/host --net=host -it alpine-gcc bash -il
|
|
# export PS1='ssh-build:\w\$ '
|
|
|
|
DSTDIR="/src/fs-root/usr/sbin"
|
|
DSTBIN="${DSTDIR}/sshd"
|
|
set -e
|
|
SRCDIR="/tmp/openssh-9.2p1"
|
|
[[ ! -d "$SRCDIR" ]] && {
|
|
# Cloudflare to often returns 503 - "BLOCKED"
|
|
# wget -O- https://cloudflare.cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-9.2p1.tar.gz | tar xfz -
|
|
wget -O- https://artfiles.org/openbsd/OpenSSH/portable/openssh-9.2p1.tar.gz | tar xfz -
|
|
|
|
cd "$SRCDIR"
|
|
|
|
patch -p1 </src/sf-sshd.patch
|
|
}
|
|
cd "$SRCDIR"
|
|
./configure --prefix=/usr --sysconfdir=/etc/ssh --with-libs=-lcap \
|
|
--disable-utmp \
|
|
--disable-wtmp \
|
|
--disable-utmpx \
|
|
--disable-wtmpx \
|
|
--disable-security-key \
|
|
--disable-lastlog \
|
|
--with-privsep-path=/var/empty \
|
|
--with-privsep-user=sshd \
|
|
--with-ssl-engine
|
|
|
|
make sshd
|
|
strip sshd
|
|
[[ ! -d "${DSTDIR}" ]] && mkdir -p "${DSTDIR}"
|
|
cp sshd "${DSTBIN}"
|
|
chmod 755 "${DSTBIN}"
|
|
rm -rf "${SRCDIR:?}"
|
|
|