API tools faq
paste
Advertisement
maniacbug

PATCH: Configure sshd in Poky

maniacbug
Jul 29th, 2012
1,126
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.29 KB | None | 0 0
raw download clone embed print report
  1. From e4ca22608d5802a8ce19d6a43069251b6bafa086 Mon Sep 17 00:00:00 2001
  2. From: maniacbug <maniacbug@ymail.com>
  3. Date: Mon, 25 Jun 2012 20:31:58 -0700
  4. Subject: [PATCH 1/2] Configure sshd
  5.  
  6. ---
  7. .../openssh/openssh-5.9p1/sshd-keys.tar | Bin 0 -> 10240 bytes
  8. .../openssh/openssh-5.9p1/sshd_config | 6 +++---
  9. meta/recipes-connectivity/openssh/openssh_5.9p1.bb | 9 ++++++++-
  10. .../base-files/base-files/authorized_keys2 | 3 +++
  11. meta/recipes-core/base-files/base-files_3.0.14.bb | 4 +++-
  12. meta/recipes-core/images/core-image-minimal.bb | 2 +-
  13. 6 files changed, 18 insertions(+), 6 deletions(-)
  14. create mode 100644 meta/recipes-connectivity/openssh/openssh-5.9p1/sshd-keys.tar
  15. create mode 100644 meta/recipes-core/base-files/base-files/authorized_keys2
  16.  
  17. diff --git a/meta/recipes-connectivity/openssh/openssh-5.9p1/sshd-keys.tar b/meta/recipes-connectivity/openssh/openssh-5.9p1/sshd-keys.tar
  18. new file mode 100644
  19. index 0000000000000000000000000000000000000000..153075f22c11d931bbddeeaa6c87d7cca7416f4f
  20. GIT binary patch
  21. literal 10240
  22. zcmeHM$FAhY6`gf|#q5bOb6N;6Q<H3lW=<P{Y=&l&&78m9{hk18ER8I{*2os{YQs=O
  23. z@z$+-Pn~;e9PdBg+j06a9pfLXZ2$Bf8uV%e1bup4U=shA>suF$px7rECQ0Pg2!i|s
  24. z!6*t7pFTt1!IobQIge93eE$6D5kIr>SG_;K_`Uw0zx+$xeR*rFAj<k@-ex`<mh3T(
  25. z@L3VU_nwm`%j~?$EW;>lVe&!^RbVF1v?ciqMc}K4=LSC3svH)!l3D$rQ_RlX1a>f<
  26. zI8i7k5)p|^=(4y04Bf39E!CV|*MKOl)$nl!^lny=O`2ICcu?H{Ia%nG!#Yw~@FZCy
  27. zIZco^#(`UyyRc~Xk)TEkZ(`5PRUz<KkMggVV+1cACSme)98O7Y&>fthXnjpZ-|`bl
  28. zlo)ouwQkn3Z3G5uOCw9?NK7j-IS)1wPfh-wFV$GPDeYXCv=-z|aU1Y5U1aTXQl4Q?
  29. z;|!L&g4TO$nciSX#p+5rf(FX?UgQZFOiee)xK5;qmYgtp1W1l%>7|KA|1?UEBV=I{
  30. z_O(35{n0-nNhl^(%=jmENy)rIXhyvG2CVNPTJY5RkmkVzyU|h`I7?4R)rUqTa78FE
  31. zPn#o4a<CF%vO^KO)6`mYcuNpFmD`2kL)j54z&#@tVxo%kREhe2f}5gIp#bJR=QbeW
  32. z;yrJ}t*UC8IdfMg7X#;NoG0y0&CpFg$B4HW>?8{~2alj{Mwb(Q`1E{6p2FR%jD#{!
  33. z_USSfdUsU1q96pI6D@Io*dQMj0uUjvYPBm20(TZJK<Ph>lWP(~9~LHSPMw{Qw9vci
  34. z={?2-o&R?1{iPD=FKX=g3;h3EHz$AeRNg?Iz_8!M{}<f<0{<}>hClHCk6wpwjrUsr
  35. zFX=dbW?qd&^&{rs>V|5sCyr$_JFp!ZD@j;LWAGRnHmE7^xx3@NWaSPQ`w?AvnO#kB
  36. z1d^s_h9yio%&zf1$0*pgv<=z}89MN~cc)SdFyx61iI8Cuo*Dadv2^@?RTl2p@GKbx
  37. zdPXgO>r$KLWt-YmeYpXTK!{t8uo+XsgDu3G>p|5)kryRu=vQ@-YzaWE=FR@I$=?D1
  38. zXy>aOC}*i>Vljs)#YhLj-PYF!GD{giS{XZ>TmZn{Jqv}kibY)WA#`?5J)x@DwLU5b
  39. zwBqlyY3^OXUEm`ym(n+LJ<BcZ+J?pu&@gMIm{KK2|CrGSa*(46NeGZWw|LDAy^uWK
  40. z3paYG<1Nvvo6SK&gk6)OMkl~YAST*E&_yqgj4=*Q%ZP~wo|`b|9*)L#SJ0LDX77K7
  41. z_Wv!||A$!r!{>L7^!MqWjoCb&z7=jC@BYs`@K5~DZr`l}c*p<W=Km0ieTDxx`o{kW
  42. z<OBczlt_7JU_bGHf%^vimu?(m3WBV0NEK1`It&16sFZItn|ItV;M{}dLW#$SkJqqN
  43. zZ2Eb$FJjGcy=ZF~ePUKYYF(2z3r66X!<TBG6L7Ey4sLRZbmn|blraPllN{|6h3_s*
  44. zw%foquRw|;EOBaGi?XF;TfsYy3Xl;dzQ1`!;7F^6`$4>!Km71BkNnmg{uDp{Re$p9
  45. z{Qu(_;P3E12*Jsp`QLl~V;F*b@V`GJrru%y%Xp8GFHJd49fA|@Tu?x~M<nTYHPGA8
  46. zk*DNYAF0Ibx)Z)pE%{%cS(as14Zh=Ealhu+nOX<$+Pv7#gDtQ6a(|*U@!Si-Hl?vz
  47. z#$+^_EG@GBEabu+p>772rJK$pB3zH214A42s_biIbU!%7cMgJo=Kt_N)BjKe{wn`p
  48. z8~>aBhu|Oi|DBiqefY2Tf9p5&KcO?<^}jbFz^u1*L2;GyZ7oeG5P^lqr5u6jLTxYk
  49. zuiJX=u(nr8qwi^=E-7%jpa#uYj=-tQiXODzim<8YHKM#}!M))<sZng=TZmx}oL~4`
  50. zvgv+)wL+X=VFt&u)452cogho%P{YQu(Do9vuHT+}EV_=Paa=uRp6HkC*Yb6m$g^i@
  51. zVG#iv8fUI9*2*bZBk@W?zPRvhT|RDju%}QNAO1O^v^~C>bJJ~IZ&N<FP*Rmj4Ym6%
  52. z(aoR=#*XKo>?dgWhPT^92w|c-+}$=KBfZYGDQf83-rVO#@+?+v0<mqA5*(siyi3Mp
  53. z^9;Bv`)SD0&5Y}gw!7JCmJp0Mw#a~9zXsfrQ9(k>Rkq4JV=^q$zML&igCYiib4{DO
  54. zH*=>>D3tQN0E-bYu12emjhQE$0;-8s<Ek#MK@y@#cp1AJwYg=anlA4?S*#!t28Mg?
  55. zBzke4im+{9`XoD$oVE!^9DqHyJ4R;OR?n4<Gpgo5RKjF(e&^D5<cGq+Shk`>|Fj{S
  56. z**va^-iLC_rSbd#*%9#JyE@&Lh$>rBy<r!{SUJ2?bvfkOD}vp1__&Kczb?ZGnPW4K
  57. zkOH3(X<$t>q{$HlZdYVhE`bV5Ppf@C*0`LsNF34IYd=x=Eamca(1cB7l~YzJ#LDVu
  58. zHVBpO9|{551;TGu+YW_ZAtDNfYxDG<@(3}=1DtMj5i~U?3Tv=#FNxu#GRsaNKZ&Sx
  59. zH%Tif0c1VBT)NVt(S-HQmjvIt_shygP~K>)InRkGmP35hQgS~@NrgLZ)A-AFA&qui
  60. z<&DHG2pU!&)#@ie8T%QU)YU_b{F*`v#698YaZI7AdJUa!C)iS8J|>h)O^Fq`g)4Zm
  61. z(mCnJ7!GXm2Dl-Sbc=x*Sq$U58vDU&TZHy5`|dUhowREz(S}}Xj#3lQ+DF(V2mMmQ
  62. zMst5f3$drZkfg<N<t?iW0~Z^fVGaw<dBRp!tMbz@_fy2j8y+vF?7IU3B3Rf-2QFem
  63. z<wK7-;=&X~g9L7LX2@e`eeS^yOI3Dvxh8f_;OaycML`LaI2EPw-0kdMyLpq~+7NxD
  64. zG4XCh-Rj-sarJ!!XCvf=0Fl$Cru0(d;jR;V=yFC?MW8CEO^6u1ToXsSf)JRti~KmW
  65. zRJ`>UZP;>xqL;V@q6rd^tbrUxP)-wnOCNi}6+2!>quD-u7srOEH8jO9%27kXdh8yp
  66. zhzaJ<mu5(cu|V3^+2N8>lc4ORh%pii4iESXF@`1IKQCbMlB(at^(mW;tLl@qflYpf
  67. zvP24~>h;L8zz*^ad90qToiOL<)j6uGp%)G_T+;PI_ABy?Bx@5BmF>qRJ4Xg}meuNx
  68. z;;xl}R|nrN=wzfaSW~Bnz>3y$kGxEz5aDmO&9v<iEwI{dfx$aT;=yaldq5YK>HfI7
  69. z7>~rN+xRcBZSY@_NLmkQ8GiCI*%88gohe9YnvE!?*vz&U`#KAA+Y{5MD=O>Gl=M_y
  70. zYEmkp6>RS1$p?aaMc+*5TFOr^CM8iW@TTY!pOt7H#S4(`EVS`7=N{F9FPY#jNS?-G
  71. zojMb-Ih{7`ya9JW8}g?mfo5H^@yqa?qm??cX9v=2D?382=|<w>6h*=^GIztwuS&IV
  72. zZa06%miO_GuRQQe{`bdMf1loT|9_|dLj?Sl{`1cNUiv@z!T-Kmrtfz9TK_LE>i@O=
  73. zzuyqyt;YL_j=YWq7?WoY4$Q0Z63H999AM(w+EY0Qs5yk!F+d}>sxAqjCZiX4oM{wm
  74. zZXm>-HB+8JJ~!aFNIV7xf^cwx<=N7HvafO4ZI8#@@Tf}P76FbZ{QPKI$>p0G^I0fY
  75. zhglu8sZ7sOR@B+uiVJ_ZSH!-88t(Q43SZT^xO(td;-0XTY(q+EhnrCBb~#&x<YI*}
  76. zbuE2GKkEE~+Lu8Oy=6TvEzS{HBR)HIO8{`qEGWy5OZ@1cB(>0;?nO#M(IFjN)b8OF
  77. zFF-rncXFx_kJ{m94j)P;61UV7gx6VcT;69DnCfkiZvZT7JSY#!1m<V9_ZwJw;$lWW
  78. p=t>q@l4v3PrqJY;E>LNaAA0$B3+s=8KRoc^fe#OSc;I(D@DHj^O?3bO
  79.  
  80. literal 0
  81. HcmV?d00001
  82.  
  83. diff --git a/meta/recipes-connectivity/openssh/openssh-5.9p1/sshd_config b/meta/recipes-connectivity/openssh/openssh-5.9p1/sshd_config
  84. index 4f9b626..fb464a3 100644
  85. --- a/meta/recipes-connectivity/openssh/openssh-5.9p1/sshd_config
  86. +++ b/meta/recipes-connectivity/openssh/openssh-5.9p1/sshd_config
  87. @@ -45,7 +45,7 @@ Protocol 2
  88.  
  89. #RSAAuthentication yes
  90. #PubkeyAuthentication yes
  91. -#AuthorizedKeysFile .ssh/authorized_keys
  92. +AuthorizedKeysFile /etc/authorized_keys2
  93.  
  94. # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
  95. #RhostsRSAAuthentication no
  96. @@ -58,7 +58,7 @@ Protocol 2
  97. #IgnoreRhosts yes
  98.  
  99. # To disable tunneled clear text passwords, change to no here!
  100. -#PasswordAuthentication yes
  101. +PasswordAuthentication no
  102. #PermitEmptyPasswords no
  103.  
  104. # Change to no to disable s/key passwords
  105. @@ -95,7 +95,7 @@ Protocol 2
  106. #PrintLastLog yes
  107. #TCPKeepAlive yes
  108. #UseLogin no
  109. -UsePrivilegeSeparation yes
  110. +UsePrivilegeSeparation no
  111. #PermitUserEnvironment no
  112. Compression no
  113. ClientAliveInterval 15
  114. diff --git a/meta/recipes-connectivity/openssh/openssh_5.9p1.bb b/meta/recipes-connectivity/openssh/openssh_5.9p1.bb
  115. index 749f89e..461b456 100644
  116. --- a/meta/recipes-connectivity/openssh/openssh_5.9p1.bb
  117. +++ b/meta/recipes-connectivity/openssh/openssh_5.9p1.bb
  118. @@ -7,7 +7,7 @@ SECTION = "console/network"
  119. LICENSE = "BSD"
  120. LIC_FILES_CHKSUM = "file://LICENCE;md5=bae9a689be41581503bcf95d8fb42c4e"
  121.  
  122. -PR = "r3"
  123. +PR = "r4"
  124.  
  125. DEPENDS = "zlib openssl"
  126. DEPENDS += "${@base_contains('DISTRO_FEATURES', 'pam', 'libpam', '', d)}"
  127. @@ -22,6 +22,7 @@ SRC_URI = "ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar.
  128. file://nostrip.patch \
  129. file://sshd_config \
  130. file://ssh_config \
  131. + file://sshd-keys.tar \
  132. file://init \
  133. ${@base_contains('DISTRO_FEATURES', 'pam', '${PAM_SRC_URI}', '', d)}"
  134.  
  135. @@ -81,6 +82,12 @@ do_install_append () {
  136. mv ${D}${bindir}/ssh ${D}${bindir}/ssh.${PN}
  137. rm -f ${D}${bindir}/slogin ${D}${datadir}/Ssh.bin
  138. rmdir ${D}/var/run/sshd ${D}/var/run ${D}/var
  139. + install -m 0600 ${WORKDIR}/ssh_host_dsa_key ${D}${sysconfdir}/ssh
  140. + install -m 0600 ${WORKDIR}/ssh_host_rsa_key ${D}${sysconfdir}/ssh
  141. + install -m 0600 ${WORKDIR}/ssh_host_ecdsa_key ${D}${sysconfdir}/ssh
  142. + install -m 0644 ${WORKDIR}/ssh_host_dsa_key.pub ${D}${sysconfdir}/ssh
  143. + install -m 0644 ${WORKDIR}/ssh_host_rsa_key.pub ${D}${sysconfdir}/ssh
  144. + install -m 0644 ${WORKDIR}/ssh_host_ecdsa_key.pub ${D}${sysconfdir}/ssh
  145. }
  146.  
  147. ALLOW_EMPTY_${PN} = "1"
  148. diff --git a/meta/recipes-core/base-files/base-files/authorized_keys2 b/meta/recipes-core/base-files/base-files/authorized_keys2
  149. new file mode 100644
  150. index 0000000..133eff4
  151. --- /dev/null
  152. +++ b/meta/recipes-core/base-files/base-files/authorized_keys2
  153. @@ -0,0 +1,3 @@
  154. +ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEA33E5JSi48iVvs8Y31/YLI2gWlER6CvlnWoG3TSOHh3nKJflDtSRkboUomm4/F7qy2rwgrFAyd/tiJ7cFqkuEP2/mnLewjy6HsLF7M858OJYJ1l3CPFytcziYrj69XptS4DY1NWid97f5Xt2ohtBrLaSX/yAGS6z5CTDjQeS8xFU= james@nero.attbi.com
  155. +ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIBHihVU85d7blIAuIwIjN1EZpLdE3wA2JzA/KJMJO7iuVciQmT5FHhimn9S9pJ0setOjsigp900jO0cnJGwisy1hwCBcr/gmwmssFJRBK/MzoJ5wsRtvVPATWAmC6ENuM0hEz5YNHd36I/TODCmtCN1tJXbRlh/zVhCps4/xMfxIQ== jcoliz-rsa-key-20041714
  156. +ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIBirZGxnhFZDwlofChvalTshcalK5Ci2Uay0WsH7OStGaiyyWYPiGhRYt0hn1z2Mgb21TDqjRQDfAaaA39wg2tZJCgwjs8LGa+3UKWIJgI35+ShWPHyJ5uu1K5wcdnrCej8B77Taf2wGP5jmP/E9AghewvFLkKPBCozu9VAjfSRew== xena-rsa-key-20050710
  157. diff --git a/meta/recipes-core/base-files/base-files_3.0.14.bb b/meta/recipes-core/base-files/base-files_3.0.14.bb
  158. index 6bab040..d9d96d7 100644
  159. --- a/meta/recipes-core/base-files/base-files_3.0.14.bb
  160. +++ b/meta/recipes-core/base-files/base-files_3.0.14.bb
  161. @@ -1,7 +1,7 @@
  162. SUMMARY = "Miscellaneous files for the base system."
  163. DESCRIPTION = "The base-files package creates the basic system directory structure and provides a small set of key configuration files for the system."
  164. SECTION = "base"
  165. -PR = "r71"
  166. +PR = "r72"
  167. LICENSE = "GPLv2"
  168. LIC_FILES_CHKSUM = "file://licenses/GPL-2;md5=94d55d512a9ba36caa9b7df079bae19f"
  169. # Removed all license related tasks in this recipe as license.bbclass
  170. @@ -22,6 +22,7 @@ SRC_URI = "file://rotation \
  171. file://issue.net \
  172. file://issue \
  173. file://usbd \
  174. + file://authorized_keys2 \
  175. file://share/dot.bashrc \
  176. file://share/dot.profile \
  177. file://licenses/GPL-2 \
  178. @@ -91,6 +92,7 @@ do_install () {
  179. install -m 0644 ${WORKDIR}/rotation ${D}${sysconfdir}/rotation
  180. fi
  181.  
  182. + install -m 0644 ${WORKDIR}/authorized_keys2 ${D}${sysconfdir}/authorized_keys2
  183. install -m 0644 ${WORKDIR}/fstab ${D}${sysconfdir}/fstab
  184. install -m 0644 ${WORKDIR}/filesystems ${D}${sysconfdir}/filesystems
  185. install -m 0644 ${WORKDIR}/usbd ${D}${sysconfdir}/default/usbd
  186. diff --git a/meta/recipes-core/images/core-image-minimal.bb b/meta/recipes-core/images/core-image-minimal.bb
  187. index 7953b80..1075ffd 100644
  188. --- a/meta/recipes-core/images/core-image-minimal.bb
  189. +++ b/meta/recipes-core/images/core-image-minimal.bb
  190. @@ -3,7 +3,7 @@
  191. #
  192. DESCRIPTION = "A small image just capable of allowing a device to boot."
  193.  
  194. -IMAGE_INSTALL = "task-core-boot ${ROOTFS_PKGMANAGE_BOOTSTRAP} ${CORE_IMAGE_EXTRA_INSTALL}"
  195. +IMAGE_INSTALL = "task-core-boot task-core-ssh-openssh ${ROOTFS_PKGMANAGE_BOOTSTRAP} ${CORE_IMAGE_EXTRA_INSTALL}"
  196.  
  197. IMAGE_LINGUAS = " "
  198.  
  199. --
  200. 1.7.9.5
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!