Mailing List Archive: ANNOUNCE: openssh-1.2.1pre18

ANNOUNCE: openssh-1.2.1pre18

Dec 16, 1999, 2:35 AM

Post #1 of 11 (3964 views)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I have just uploaded 1.2.1pre18.

This is mainly merges from the OpenBSD tree, bugfixes for Solaris
and libc5 Linux systems. It should fix all reported bugs except the
snprintf problems on some older Solaris versions.

Please test thoroughly, my hope is to have a stable version
released before Jan 1. At this point the main holdup is Solaris.

I have had to disbale direct downloads from violet.ibs.com.au,
demand for OpenSSH is saturating our little ISDN connection.
I notice that:

ftp://ftp.localhost.ca/pub/openssh/files/ (Canada)
ftp://ftp.firedrake.org/openssh/files/ (UK)
ftp://thermo.stat.ncsu.edu/pub/openssh/files/ (USA *only*)

have already updated.

Regards,
Damien

Changelog:

19991216
- Makefile changes for Solaris from Peter Kocks
<peter.kocks@baygate.com>
- Minor updates to docs
- Merged OpenBSD CVS changes:
- [authfd.c ssh-agent.c]
keysize warnings talk about identity files
- [packet.c]
"Connection closed by x.x.x.x": fatal() -> log()
- Correctly handle empty passwords in shadow file. Patch from:
"Chris, the Young One" <cky@pobox.com>
- Released 1.2.1pre18

19991215
- Integrated patchs from Juergen Keil <jk@tools.de>
- Avoid void* pointer arithmatic
- Use LDFLAGS correctly
- Fix SIGIO error in scp
- Simplify status line printing in scp
- Added better test for inline functions compiler support from
Darren_Hall@progressive.com

19991214
- OpenBSD CVS Changes
- [canohost.c]
fix get_remote_port() and friends for sshd -i;
Holger.Trapp@Informatik.TU-Chemnitz.DE
- [mpaux.c]
make code simpler. no need for memcpy. niels@ ok
- [pty.c]
namebuflen not sizeof namebuflen; bnd@ep-ag.com via djm@mindrot.org
fix proto; markus
- [ssh.1]
typo; mark.baushke@solipsa.com
- [channels.c ssh.c ssh.h sshd.c]
type conflict for 'extern Type *options' in channels.c; dot@dotat.at
- [sshconnect.c]
move checking of hostkey into own function.
- [version.h]
OpenSSH-1.2.1
- Clean up broken includes in pty.c
- Some older systems don't have poll.h, they use sys/poll.h instead
- Doc updates

19991211
- Fix compilation on systems with AFS. Reported by
aloomis@glue.umd.edu
- Fix installation on Solaris. Reported by
Gordon Rowell <gordonr@gormand.com.au>
- Fix gccisms (__attribute__ and inline). Report by edgy@us.ibm.com,
patch from Markus Friedl <markus.friedl@informatik.uni-erlangen.de>
- Auto-locate xauth. Patch from David Agraz <dagraz@jahoopa.com>
- Compile fix from David Agraz <dagraz@jahoopa.com>
- Avoid compiler warning in bsd-snprintf.c
- Added pam_limits.so to default PAM config. Suggested by
Jim Knoble <jmknoble@pobox.com>

- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE4WMBzormJ9RG1dI8RAgl/AJ9Np2Coj/di+ijmZ3uDoY/4ZR/+hgCeJrap
9mpaUL2o7DCCGJ+MWzKAukY=
=PQve
-----END PGP SIGNATURE-----

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

marc.fournier at acadiau

Dec 16, 1999, 5:23 AM

Post #2 of 11 (3898 views)

Permalink

Solaris 7/x86:

gcc -g -O2 -Wall -I/usr/slocal/include -DETCDIR=\"/usr/local/etc\" -DSSH_PROGRAM=\"/usr/slocal/bin/ssh\" -DSSH_ASKPASS_DEFAULT=\"/usr/slocal/libexec/ssh/ssh-askpass\" -DHAVE_CONFIG_H -c canohost.c -o canohost.o
canohost.c: In function `get_remote_hostname':
canohost.c:62: warning: subscript has type `char'
canohost.c: In function `peer_connection_is_on_socket':
canohost.c:163: `AF_INET6' undeclared (first use in this function)
canohost.c:163: (Each undeclared identifier is reported only once
canohost.c:163: for each function it appears in.)
make: *** [canohost.o] Error 1

On Thu, 16 Dec 1999, Damien Miller wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I have just uploaded 1.2.1pre18.
>
> This is mainly merges from the OpenBSD tree, bugfixes for Solaris
> and libc5 Linux systems. It should fix all reported bugs except the
> snprintf problems on some older Solaris versions.
>
> Please test thoroughly, my hope is to have a stable version
> released before Jan 1. At this point the main holdup is Solaris.
>
> I have had to disbale direct downloads from violet.ibs.com.au,
> demand for OpenSSH is saturating our little ISDN connection.
> I notice that:
>
> ftp://ftp.localhost.ca/pub/openssh/files/ (Canada)
> ftp://ftp.firedrake.org/openssh/files/ (UK)
> ftp://thermo.stat.ncsu.edu/pub/openssh/files/ (USA *only*)
>
> have already updated.
>
> Regards,
> Damien
>
> Changelog:
>
> 19991216
> - Makefile changes for Solaris from Peter Kocks
> <peter.kocks@baygate.com>
> - Minor updates to docs
> - Merged OpenBSD CVS changes:
> - [authfd.c ssh-agent.c]
> keysize warnings talk about identity files
> - [packet.c]
> "Connection closed by x.x.x.x": fatal() -> log()
> - Correctly handle empty passwords in shadow file. Patch from:
> "Chris, the Young One" <cky@pobox.com>
> - Released 1.2.1pre18
>
> 19991215
> - Integrated patchs from Juergen Keil <jk@tools.de>
> - Avoid void* pointer arithmatic
> - Use LDFLAGS correctly
> - Fix SIGIO error in scp
> - Simplify status line printing in scp
> - Added better test for inline functions compiler support from
> Darren_Hall@progressive.com
>
> 19991214
> - OpenBSD CVS Changes
> - [canohost.c]
> fix get_remote_port() and friends for sshd -i;
> Holger.Trapp@Informatik.TU-Chemnitz.DE
> - [mpaux.c]
> make code simpler. no need for memcpy. niels@ ok
> - [pty.c]
> namebuflen not sizeof namebuflen; bnd@ep-ag.com via djm@mindrot.org
> fix proto; markus
> - [ssh.1]
> typo; mark.baushke@solipsa.com
> - [channels.c ssh.c ssh.h sshd.c]
> type conflict for 'extern Type *options' in channels.c; dot@dotat.at
> - [sshconnect.c]
> move checking of hostkey into own function.
> - [version.h]
> OpenSSH-1.2.1
> - Clean up broken includes in pty.c
> - Some older systems don't have poll.h, they use sys/poll.h instead
> - Doc updates
>
> 19991211
> - Fix compilation on systems with AFS. Reported by
> aloomis@glue.umd.edu
> - Fix installation on Solaris. Reported by
> Gordon Rowell <gordonr@gormand.com.au>
> - Fix gccisms (__attribute__ and inline). Report by edgy@us.ibm.com,
> patch from Markus Friedl <markus.friedl@informatik.uni-erlangen.de>
> - Auto-locate xauth. Patch from David Agraz <dagraz@jahoopa.com>
> - Compile fix from David Agraz <dagraz@jahoopa.com>
> - Avoid compiler warning in bsd-snprintf.c
> - Added pam_limits.so to default PAM config. Suggested by
> Jim Knoble <jmknoble@pobox.com>
>
>
> - --
> | "Bombay is 250ms from New York in the new world order" - Alan Cox
> | Damien Miller - http://www.mindrot.org/
> | Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.0 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
>
> iD8DBQE4WMBzormJ9RG1dI8RAgl/AJ9Np2Coj/di+ijmZ3uDoY/4ZR/+hgCeJrap
> 9mpaUL2o7DCCGJ+MWzKAukY=
> =PQve
> -----END PGP SIGNATURE-----
>
>
>

Marc G. Fournier marc.fournier@acadiau.ca
Senior Systems Administrator Acadia University

"These are my opinions, which are not necessarily shared by my employer"

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

marc.fournier at acadiau

Dec 16, 1999, 5:28 AM

Post #3 of 11 (3899 views)

Permalink

Solaris 7/x86:

============================================

> ssh new-relay
marc@new-relay's password:
Last login: Thu Dec 16 09:27:06 1999 from atelier.acadiau.
Sun Microsystems Inc. SunOS 5.7 Generic October 1998

login: scrappy
Password:
Login incorrect
login: marc
Password:
No utmpx entry. You must exec "login" from the lowest level "shell".
Connection to new-relay closed.
>

===========================================

Marc G. Fournier marc.fournier@acadiau.ca
Senior Systems Administrator Acadia University

"These are my opinions, which are not necessarily shared by my employer"

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

djm at mindrot

Dec 16, 1999, 6:01 AM

Post #4 of 11 (3898 views)

Permalink

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 16 Dec 1999, Marc G. Fournier wrote:

>
> Solaris 7/x86:
>
> canohost.c:163: `AF_INET6' undeclared (first use in this function)

Could you try the attached patch.

The IPv6 support in the OpenBSD tree must be landing sooner than
I expected.

Damien

- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE4WPDWormJ9RG1dI8RAusbAJ4gFv2WOyCRv4mPsZiAGOtfeE6GfgCffLhV
6OxEsXItr9gc4tRLdWFuBW8=
=JRev
-----END PGP SIGNATURE-----

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

djm at mindrot

Dec 16, 1999, 6:03 AM

Post #5 of 11 (3897 views)

Permalink

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 16 Dec 1999, Marc G. Fournier wrote:

>
> Solaris 7/x86:
>
> ============================================
>
> > ssh new-relay
> marc@new-relay's password:
> Last login: Thu Dec 16 09:27:06 1999 from atelier.acadiau.
> Sun Microsystems Inc. SunOS 5.7 Generic October 1998

[snip]

> No utmpx entry. You must exec "login" from the lowest level "shell".
> Connection to new-relay closed.

Are you using "UseLogin yes" in your sshd_config?

It looks like the utmpx support has broken your installation.

Damien

- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE4WPFBormJ9RG1dI8RApImAJkBTkjiowJSz5GN5Db5XvRvcCxlJACcDhhO
zpNfIbCRsKH8FcuV2dqUzHs=
=5TCW
-----END PGP SIGNATURE-----

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

Markus.Friedl at informatik

Dec 16, 1999, 6:55 AM

Post #6 of 11 (3892 views)

Permalink

On Thu, Dec 16, 1999 at 09:23:41AM -0400, Marc G. Fournier wrote:
> canohost.c:163: `AF_INET6' undeclared (first use in this function)
> canohost.c:163: (Each undeclared identifier is reported only once
> canohost.c:163: for each function it appears in.)
> make: *** [canohost.o] Error 1

you can try
#define AF_INET6 24 /* IPv6 */

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

the_h1ghlander at yahoo

Dec 16, 1999, 7:17 AM

Post #7 of 11 (3892 views)

Permalink

I think a better solution would be to check if
AF_INET6
exists and do the first if it does and do the second
if it doesn't. sorry I don't have the patch as I'm
not at home.

Regards,

Ben

--- Damien Miller <djm@mindrot.org> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Thu, 16 Dec 1999, Marc G. Fournier wrote:
>
> >
> > Solaris 7/x86:
> >
> > canohost.c:163: `AF_INET6' undeclared (first use
> in this function)
>
> Could you try the attached patch.
>
> The IPv6 support in the OpenBSD tree must be landing
> sooner than
> I expected.
>
> Damien
>
> - --
> | "Bombay is 250ms from New York in the new world
> order" - Alan Cox
> | Damien Miller - http://www.mindrot.org/
> | Email: djm@mindrot.org (home) -or- djm@ibs.com.au
> (work)
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.0 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
>
>
iD8DBQE4WPDWormJ9RG1dI8RAusbAJ4gFv2WOyCRv4mPsZiAGOtfeE6GfgCffLhV
> 6OxEsXItr9gc4tRLdWFuBW8=
> =JRev
> -----END PGP SIGNATURE-----
> > Index: canohost.c
>
===================================================================
> RCS file: /var/cvs/openssh/canohost.c,v
> retrieving revision 1.5
> diff -u -r1.5 canohost.c
> --- canohost.c 1999/12/13 23:47:15 1.5
> +++ canohost.c 1999/12/16 14:01:37
> @@ -160,8 +160,9 @@
> memset(&from, 0, sizeof(from));
> if (getpeername(in, (struct sockaddr *) & from,
> &fromlen) < 0)
> return 0;
> - if (from.sin_family != AF_INET && from.sin_family
> != AF_INET6)
> + if (from.sin_family != AF_INET)
> return 0;
> +
> return 1;
> }
>
>

__________________________________________________
Do You Yahoo!?
Thousands of Stores. Millions of Products. All in one place.
Yahoo! Shopping: http://shopping.yahoo.com

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

marc.fournier at acadiau

Dec 16, 1999, 7:22 AM

Post #8 of 11 (3899 views)

Permalink

thats what I did to get around the problem, but still have the utmpx
problem ;(

On Fri, 17 Dec 1999, Damien Miller wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Thu, 16 Dec 1999, Marc G. Fournier wrote:
>
> >
> > Solaris 7/x86:
> >
> > canohost.c:163: `AF_INET6' undeclared (first use in this function)
>
> Could you try the attached patch.
>
> The IPv6 support in the OpenBSD tree must be landing sooner than
> I expected.
>
> Damien
>
> - --
> | "Bombay is 250ms from New York in the new world order" - Alan Cox
> | Damien Miller - http://www.mindrot.org/
> | Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.0 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
>
> iD8DBQE4WPDWormJ9RG1dI8RAusbAJ4gFv2WOyCRv4mPsZiAGOtfeE6GfgCffLhV
> 6OxEsXItr9gc4tRLdWFuBW8=
> =JRev
> -----END PGP SIGNATURE-----
>

Marc G. Fournier marc.fournier@acadiau.ca
Senior Systems Administrator Acadia University

"These are my opinions, which are not necessarily shared by my employer"

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

the_h1ghlander at yahoo

Dec 16, 1999, 7:34 AM

Post #9 of 11 (3894 views)

Permalink

Hmmm. Guess I better go check Solaris 8 again, cause I
could have sworn it was 26. Not only that, it shows
up twice...

I still think the better solution is to not define it
if you don't have it.

Ben
--- Markus Friedl
<Markus.Friedl@informatik.uni-erlangen.de> wrote:
> On Thu, Dec 16, 1999 at 09:23:41AM -0400, Marc G.
> Fournier wrote:
> > canohost.c:163: `AF_INET6' undeclared (first use
> in this function)
> > canohost.c:163: (Each undeclared identifier is
> reported only once
> > canohost.c:163: for each function it appears in.)
> > make: *** [canohost.o] Error 1
>
> you can try
> #define AF_INET6 24 /* IPv6
> */
>
>
>

__________________________________________________
Do You Yahoo!?
Thousands of Stores. Millions of Products. All in one place.
Yahoo! Shopping: http://shopping.yahoo.com

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

Markus.Friedl at informatik

Dec 16, 1999, 7:39 AM

Post #10 of 11 (3896 views)

Permalink

On Thu, Dec 16, 1999 at 07:17:21AM -0800, Ben Taylor wrote:
> I think a better solution would be to check if
> AF_INET6
> exists and do the first if it does and do the second
> if it doesn't. sorry I don't have the patch as I'm
> not at home.

for now it's better to remove the AF_INET6 definition,
things will change anyway if complete IPv6 support will be
added in a few weeks.

Re: ANNOUNCE: openssh-1.2.1pre18 [ In reply to ]

djm at mindrot

Dec 16, 1999, 6:46 PM

Post #11 of 11 (3895 views)

Permalink

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 16 Dec 1999, Marc G. Fournier wrote:

> thats what I did to get around the problem, but still have the utmpx
> problem ;(

The attached patch makes utmpx support optional (disabled by default).
Does it help?

Note that the attached patch does not include the autoconf magic to
actually enable utmpx support.

Regards,
Damien

- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE4WaQcormJ9RG1dI8RAjnBAJ0WQTr1sZdzBNB8jVZ1vXJDYRaUgwCfZFdQ
CblBWPDYpOuV3GimPkgXK6c=
=nOO0
-----END PGP SIGNATURE-----

Mailing List Archive

Attached Files:

Attached Files: