add CVE patch for XZ 5.2.5 + attempt to fix symbol patch for all OSs by ocaisa · Pull Request #15856 · easybuilders/easybuild-easyconfigs

ocaisa · 2022-07-13T19:29:33Z

(created using eb --new-pr)

ocaisa · 2022-07-13T19:39:29Z

This is (I believe) a safe patch as the 5.3 series is the current development version...but I have never seen a .map file before this PR!

ocaisa · 2022-07-13T19:43:44Z

I need a victim to test this on CentOS 7

ocaisa · 2022-07-13T19:46:46Z

Test report by @ocaisa
SUCCESS
Build succeeded for 5 out of 5 (5 easyconfigs in total)
login1 - Linux Rocky Linux 8.5, x86_64, Intel(R) Xeon(R) CPU E5-2690 v3 @ 2.60GHz, Python 3.6.8
See https://gist.github.com/4c4ec00e097b3c9a54f686ddf75b8be4 for a full test report.

ocaisa · 2022-07-13T19:49:49Z

+ 	lzma_cputhreads;
+ 	lzma_get_progress;
+-	lzma_stream_encoder_mt;
+-	lzma_stream_encoder_mt_memusage;


The older patch did not remove these lines but then the linker throws some warnings about them already being declared in XZ_5.1.2alpha

ocaisa · 2022-07-13T19:50:23Z

+-} XZ_5.0;
+} XZ_5.1.2alpha;
+
+XZ_5.2 {


I'm not sure if this is the right way to do this but hopefully the idea is clear

ocaisa · 2022-07-14T20:28:27Z

Confirmation in #14991 (comment) that new patch still solves the old problem on CentOS7

jfgrimm · 2022-07-15T15:16:27Z

Test report by @jfgrimm
SUCCESS
Build succeeded for 13 out of 13 (6 easyconfigs in total)
node029.pri.viking.alces.network - Linux CentOS Linux 7.9.2009, x86_64, Intel(R) Xeon(R) Gold 6138 CPU @ 2.00GHz (skylake_avx512), Python 3.6.8
See https://gist.github.com/e67047f54d5ac159b0f84ed34caf71c1 for a full test report.

boegel · 2022-08-10T21:06:07Z

Test report by @boegel
SUCCESS
Build succeeded for 6 out of 6 (6 easyconfigs in total)
node3521.doduo.os - Linux RHEL 8.4, x86_64, AMD EPYC 7552 48-Core Processor (zen2), Python 3.6.8
See https://gist.github.com/7c3776e5fe9b27299ff9aef4036984e1 for a full test report.

boegel · 2022-08-10T21:29:10Z

Test report by @boegel
SUCCESS
Build succeeded for 6 out of 6 (6 easyconfigs in total)
node3703.slaking.os - Linux RHEL 8.4, x86_64, Intel(R) Xeon(R) CPU E5-2680 v3 @ 2.50GHz (haswell), Python 3.6.8
See https://gist.github.com/26d43c31cf2866d3a080dcbab535ef3a for a full test report.

boegel · 2022-08-11T09:03:40Z

Test report by @boegel
SUCCESS
Build succeeded for 6 out of 6 (6 easyconfigs in total)
node3703.slaking.os - Linux CentOS Linux 7.9.2009, x86_64, Intel(R) Xeon(R) CPU E5-2680 v3 @ 2.50GHz (haswell), Python 2.7.5
See https://gist.github.com/e918f52f72af67a1e651a01a86cba46b for a full test report.

boegel · 2022-08-12T10:39:47Z

Test report by @boegel
SUCCESS
Build succeeded for 6 out of 6 (6 easyconfigs in total)
node3521.doduo.os - Linux Ubuntu 20.04.4 LTS (Focal Fossa), x86_64, AMD EPYC 7552 48-Core Processor (zen2), Python 3.8.10
See https://gist.github.com/ab8c7818c8fd5f62dfe272f0f3b666bc for a full test report.

boegel

Tested on RHEL8, CentOS 7 and Ubuntu 20.04, looks good!

boegel · 2022-08-12T14:37:38Z

Going in, thanks @ocaisa!

Alan O'Cais added 2 commits July 13, 2022 19:29

Add CVE patch, attempt to fix symbol patch for all OSes

c3f3b14

Add the actual patches

bcebb33

ocaisa mentioned this pull request Jul 13, 2022

Patches for XZ 5.2.5 #15846

Closed

ocaisa mentioned this pull request Jul 13, 2022

XZ: patch for symbols still needed? #14991

Closed

ocaisa commented Jul 13, 2022

View reviewed changes

ocaisa changed the title ~~Add CVE patch, attempt to fix symbol patch for all OSes~~ XZ-5.2.5: Add CVE patch, attempt to fix symbol patch for all OSes Jul 13, 2022

deniskristak mentioned this pull request Jul 14, 2022

{phys}[foss/2021b] BigDFT v1.9.1 #15860

Merged

boegel added the bug fix label Aug 3, 2022

boegel changed the title ~~XZ-5.2.5: Add CVE patch, attempt to fix symbol patch for all OSes~~ add CVE patch for XZ 5.2.5 + attempt to fix symbol patch for all OSs Aug 3, 2022

boegel added this to the next release (4.6.1?) milestone Aug 3, 2022

boegel approved these changes Aug 12, 2022

View reviewed changes

boegel merged commit 8970dbe into easybuilders:develop Aug 12, 2022

Conversation

ocaisa commented Jul 13, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

ocaisa commented Jul 13, 2022

Uh oh!

ocaisa commented Jul 13, 2022

Uh oh!

ocaisa commented Jul 13, 2022

Uh oh!

ocaisa Jul 13, 2022

Choose a reason for hiding this comment

Uh oh!

ocaisa Jul 13, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

ocaisa commented Jul 14, 2022

Uh oh!

jfgrimm commented Jul 15, 2022

Uh oh!

boegel commented Aug 10, 2022

Uh oh!

boegel commented Aug 10, 2022

Uh oh!

boegel commented Aug 11, 2022

Uh oh!

boegel commented Aug 12, 2022

Uh oh!

boegel left a comment

Choose a reason for hiding this comment

Uh oh!

boegel commented Aug 12, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

ocaisa commented Jul 13, 2022 •

edited

Loading

ocaisa Jul 13, 2022 •

edited

Loading