From nobody Wed Dec 28 00:01:51 2022 X-Original-To: ports-bugs@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4NhWsW4lnPz1LnV4 for ; Wed, 28 Dec 2022 00:01:51 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4NhWsW20bKz3Cqv for ; Wed, 28 Dec 2022 00:01:51 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1672185711; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=XeQtHyq4Qi47wHp2eDQLweKjRjVAq578gXQ3iz25h60=; b=vHcYbn81yU8QdK6bSYGtJF+Ic5WZyE1bHMCMwzdQwf/ZjrYnLWS8+49TGwPvS/b6CN/D8X sp6srd/jXkWQ/jeGNICHSyPY/waixcPCymBZf0v4+O2f2wMRRyZsk1f6+3n8ZAfSbO1bMD ppIGZMSY9EeGf4uap1C792DPd4YsBnnpBTpIIrrzLoKUZSnjXkOzV3tMeEPtKSJd1JV6P+ m31lz29wrKWsVxn0p7zGG473ZP9g7zR9hx6hzL5Lqlu+YnxGKRCZ84EGOOvw2G+MyGkS4k vCGWMjVazzOuLn+bhAmWATTnYqbCSXPnxeb+BpbzldcX6SXcJcmRCWj2pTTMmg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1672185711; a=rsa-sha256; cv=none; b=RbmPNJkny515RpsQ2w7WahhArFjt3+nJhJeuJQkNEcuvJO0gVWZ/EMfYSFwuVQdwvZ+VN/ fT5eg9y0AL9djTZGtwtMQKXt2zHoNQ0aMYcEdBkVbA3J0iq/ig9rxjYeOk6T8QP3dLLehJ ZadU7R0maxTi0K7JR2IviwiDcpEOPREQdVmudXalyGRdOmxNovYaN7cUj1lmoDsswyfGPV D+71qcxWXeg89ZaJAuqCgsU2T0OdIVukA2TrxLxf8Jj4xg1k5d6ZaqKUNOKr+e+lY6O9HA O+eocv7brZe41NVjj2cN5KS07qAXu8+bY22zeBIHBbeHyTDFon2ON1MIl3NdAQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4NhWsW15QxzVGq for ; Wed, 28 Dec 2022 00:01:51 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 2BS01pI4096348 for ; Wed, 28 Dec 2022 00:01:51 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 2BS01pj9096347 for ports-bugs@FreeBSD.org; Wed, 28 Dec 2022 00:01:51 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 268604] security/teleport: Update to 5.2.5 Date: Wed, 28 Dec 2022 00:01:51 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kraileth@elderlinux.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: ports-bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter cc flagtypes.name attachments.created Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Ports bug reports List-Archive: https://lists.freebsd.org/archives/freebsd-ports-bugs List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-ports-bugs@freebsd.org X-BeenThere: freebsd-ports-bugs@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268604 Bug ID: 268604 Summary: security/teleport: Update to 5.2.5 Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: ports-bugs@FreeBSD.org Reporter: kraileth@elderlinux.org CC: diizzy@FreeBSD.org Attachment #239072 maintainer-approval+ Flags: Created attachment 239072 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D239072&action= =3Dedit Add security/teleport5, set deprecation and expiry date for security/telepo= rt This patch updates the security/teleport port from 4.4.12 to 5.2.5 (last version compatible for upgrades) as security/teleport5. This is necessary because in 2022q4 the original port is still at version 4.3.9, which cannot= be updated to 5.x. Therefore this update is a second intermediary step necessa= ry to eventually upgrade to version 6.x which I intend to work on next. I had hoped to proceed more quickly after claiming maintainership, but for $reaso= ns it took some more time. Maybe this work can still go in before 2023q1 is branched. What was tested: I set up a 4.4 cluster and tested invitations & joins, acc= ess to nodes via both the WebUI and CLI (tsh), 2FA (via OTP) as well as access = to sshd-only nodes. Then I updated both the server and the regular test node to 5.2 and made sure that everything still worked. In addition I successfully tested the major new feature of 5.x: Web application access (caveat: I could not get it to work regularly via configuration file and using the rc.d serv= ice for some reason; it works when done manually though which is good enough to prove that it's working in general). What was not tested: 2FA via U2F, direct OpenSSH access to teleport nodes (= this should work, though), database access (feature preview in this version, production ready in 6.x). Both the new port and the modified one passed "portlint -AC" and could be b= uilt using Synth in test mode. So they probably are in good shape. However I'm o= nly beginning to learn about ports work; any comments or suggestions are very welcome. --=20 You are receiving this mail because: You are the assignee for the bug.=