NetBSD Problem Report #45805
From www@NetBSD.org Mon Jan 9 09:21:49 2012
Return-Path: <www@NetBSD.org>
Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11])
by www.NetBSD.org (Postfix) with ESMTP id 64AA463B8F3
for <gnats-bugs@gnats.NetBSD.org>; Mon, 9 Jan 2012 09:21:49 +0000 (UTC)
Message-Id: <20120109092148.843CA63B8E0@www.NetBSD.org>
Date: Mon, 9 Jan 2012 09:21:48 +0000 (UTC)
From: onborodin@gmail.com
Reply-To: onborodin@gmail.com
To: gnats-bugs@NetBSD.org
Subject: telnet/telnetd with -DAUTHENTICATION -DENCRYPTION (rfc2941)
X-Send-Pr-Version: www-1.0
>Number: 45805
>Category: bin
>Synopsis: telnet/telnetd with -DAUTHENTICATION -DENCRYPTION (rfc2941)
>Confidential: no
>Severity: non-critical
>Priority: medium
>Responsible: christos
>State: closed
>Class: change-request
>Submitter-Id: net
>Arrival-Date: Mon Jan 09 09:25:00 +0000 2012
>Closed-Date: Sat Jun 30 21:36:08 +0000 2012
>Last-Modified: Sat Jun 30 21:36:08 +0000 2012
>Originator: Borodin Oleg
>Release: NetBSD 5.1
>Organization:
Greenwood Corp.
>Environment:
NetBSD zeenet.home 5.1 NetBSD 5.1 (ZEE) #1: Sun Jan 8 22:29:40 EET 2012 ziggi@zeenet.home:/usr/src/sys/arch/i386/compile/ZEE i386
>Description:
Build telnet/telnetd with SRA/RSA/DES auth/enc (compilation option -DAUTHENTICATION -DENCRYPTION)
I cross tested, it work ok.
# uname -a
FreeBSD zee.home 9.0-RC2 FreeBSD 9.0-RC2 #0 r227981: Sat Nov 26 00:27:21 FET 2011 root@zee.home:/usr/obj/data/bsd9src/sys/ZEE2 i386
# telnet 192.168.55.12
Trying 192.168.55.12...
Connected to 192.168.55.12.
Escape character is '^]'.
Trying SRA secure login:
User (root): ziggi
Password:
[ SRA accepts you ]
NetBSD/i386 (zeenet.home) (pts/4)
Last login: Mon Jan 9 12:29:06 2012 from zee on pts/4
Copyright (c) 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005,
2006, 2007, 2008, 2009, 2010
The NetBSD Foundation, Inc. All rights reserved.
Copyright (c) 1982, 1986, 1989, 1991, 1993
The Regents of the University of California. All rights reserved.
NetBSD 5.1 (ZEE) #1: Sun Jan 8 22:29:40 EET 2012
bash$
>How-To-Repeat:
>Fix:
--- ./lib/libtelnet/Makefile.orig 2008-08-29 03:02:22.000000000 +0300
+++ ./lib/libtelnet/Makefile 2012-01-09 12:08:20.000000000 +0200
@@ -15,6 +15,12 @@
CPPFLAGS+= -DHAS_CGETENT
CPPFLAGS+= -I${.CURDIR}
+
+SRCS+= enc_des.c
+CPPFLAGS+= -DENCRYPTION -DAUTHENTICATION
+CPPFLAGS+= -DDES_ENCRYPTION
+
+
.if (${USE_KERBEROS} != "no")
SRCS+= enc_des.c
CPPFLAGS+= -DENCRYPTION -DAUTHENTICATION
@@ -34,6 +40,13 @@
.for f in auth enc_des kerberos5 pk
COPTS.${f}.c+= -Wno-pointer-sign
.endfor
+
+.else # USE_KERBEROS = no
+
+CPPFLAGS+= -DENCRYPTION -DAUTHENTICATION
+CPPFLAGS+= -DDES_ENCRYPTION
+SRCS+= enc_des.c
+
.endif
.include <bsd.lib.mk>
--- ./libexec/telnetd/Makefile.orig 2006-03-20 06:03:23.000000000 +0200
+++ ./libexec/telnetd/Makefile 2012-01-09 12:13:33.000000000 +0200
@@ -34,6 +35,17 @@
LDADD+= -ldes -lcom_err -L${VERS} -lvers -lroken
DPADD+= ${LIBDES} ${LIBCOM_ERR} ${LIBROKEN}
+.else
+
+CPPFLAGS+= -DAUTHENTICATION -DENCRYPTION
+LDADD+= -lcrypto -lcrypt -ldes
+DPADD+= ${LIBCRYPTO} ${LIBCRYPT}
+
+.if (${USE_PAM} != "no")
+LDADD+= -lpam ${PAM_STATIC_LDADD}
+DPADD+= ${LIBPAM} ${PAM_STATIC_DPADD}
+.endif
+
.endif
.include <bsd.prog.mk>
--- ./usr.bin/telnet/Makefile.orig 2012-01-09 13:05:17.000000000 +0200
+++ ./usr.bin/telnet/Makefile 2012-01-09 12:11:52.000000000 +0200
@@ -73,6 +73,20 @@
LDADD+= -ldes -lcom_err -lroken
DPADD+= ${LIBDES} ${LIBCOM_ERR} ${LIBROKEN}
+
+.else #USE_KERBEROS
+
+
+CPPFLAGS+= -DAUTHENTICATION -DENCRYPTION
+LDADD+= -lcrypto -lcrypt -ldes
+DPADD+= ${LIBCRYPTO} ${LIBCRYPT}
+
+.if (${USE_PAM} != "no")
+LDADD+= -lpam ${PAM_STATIC_LDADD}
+DPADD+= ${LIBPAM} ${PAM_STATIC_DPADD}
+.endif
+
+
.endif
>Release-Note:
>Audit-Trail:
From: "Christos Zoulas" <christos@netbsd.org>
To: gnats-bugs@gnats.NetBSD.org
Cc:
Subject: PR/45805 CVS commit: src/lib/libtelnet
Date: Mon, 9 Jan 2012 10:25:34 -0500
Module Name: src
Committed By: christos
Date: Mon Jan 9 15:25:34 UTC 2012
Modified Files:
src/lib/libtelnet: Makefile auth.c enc-proto.h enc_des.c encrypt.c
encrypt.h genget.c kerberos5.c misc.h sra.c
Log Message:
PR/45805: Borodin Oleg: telnet/telnetd with -DAUTHENTICATION -DENCRYPTION
(rfc2941)
- minimal fixes to compile with WARNS=4
- separate kerberos (USE_KERBEROS) from encryption (MKCRYPTO)
To generate a diff of this commit:
cvs rdiff -u -r1.33 -r1.34 src/lib/libtelnet/Makefile
cvs rdiff -u -r1.19 -r1.20 src/lib/libtelnet/auth.c
cvs rdiff -u -r1.8 -r1.9 src/lib/libtelnet/enc-proto.h \
src/lib/libtelnet/encrypt.h src/lib/libtelnet/misc.h
cvs rdiff -u -r1.14 -r1.15 src/lib/libtelnet/enc_des.c
cvs rdiff -u -r1.15 -r1.16 src/lib/libtelnet/encrypt.c
cvs rdiff -u -r1.11 -r1.12 src/lib/libtelnet/genget.c
cvs rdiff -u -r1.18 -r1.19 src/lib/libtelnet/kerberos5.c
cvs rdiff -u -r1.10 -r1.11 src/lib/libtelnet/sra.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Responsible-Changed-From-To: bin-bug-people->christos
Responsible-Changed-By: wiz@NetBSD.org
Responsible-Changed-When: Mon, 09 Jan 2012 15:42:52 +0000
Responsible-Changed-Why:
christos committed something.
State-Changed-From-To: open->feedback
State-Changed-By: wiz@NetBSD.org
State-Changed-When: Mon, 09 Jan 2012 15:42:52 +0000
State-Changed-Why:
Ok to close?
From: "Christos Zoulas" <christos@netbsd.org>
To: gnats-bugs@gnats.NetBSD.org
Cc:
Subject: PR/45805 CVS commit: src/usr.bin/telnet
Date: Mon, 9 Jan 2012 11:08:56 -0500
Module Name: src
Committed By: christos
Date: Mon Jan 9 16:08:56 UTC 2012
Modified Files:
src/usr.bin/telnet: Makefile authenc.c commands.c externs.h main.c
sys_bsd.c telnet.c utilities.c
Log Message:
PR/45805: Borodin Oleg: telnet/telnetd with -DAUTHENTICATION -DENCRYPTION
(rfc2941)
- Minimal diffs to separate MKCRYPTO from USE_KERBEROS
To generate a diff of this commit:
cvs rdiff -u -r1.48 -r1.49 src/usr.bin/telnet/Makefile
cvs rdiff -u -r1.12 -r1.13 src/usr.bin/telnet/authenc.c
cvs rdiff -u -r1.67 -r1.68 src/usr.bin/telnet/commands.c
cvs rdiff -u -r1.35 -r1.36 src/usr.bin/telnet/externs.h
cvs rdiff -u -r1.27 -r1.28 src/usr.bin/telnet/main.c
cvs rdiff -u -r1.32 -r1.33 src/usr.bin/telnet/sys_bsd.c
cvs rdiff -u -r1.34 -r1.35 src/usr.bin/telnet/telnet.c
cvs rdiff -u -r1.22 -r1.23 src/usr.bin/telnet/utilities.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
From: "Christos Zoulas" <christos@netbsd.org>
To: gnats-bugs@gnats.NetBSD.org
Cc:
Subject: PR/45805 CVS commit: src/libexec/telnetd
Date: Mon, 9 Jan 2012 11:36:48 -0500
Module Name: src
Committed By: christos
Date: Mon Jan 9 16:36:48 UTC 2012
Modified Files:
src/libexec/telnetd: Makefile ext.h state.c sys_term.c telnetd.c
utility.c
Log Message:
PR/45805: Borodin Oleg: telnet/telnetd with -DAUTHENTICATION -DENCRYPTION
(rfc2941)
- separate MKCRYPTO from USE_KERBEROS
- WARNS=4
To generate a diff of this commit:
cvs rdiff -u -r1.48 -r1.49 src/libexec/telnetd/Makefile
cvs rdiff -u -r1.20 -r1.21 src/libexec/telnetd/ext.h
cvs rdiff -u -r1.28 -r1.29 src/libexec/telnetd/state.c
cvs rdiff -u -r1.44 -r1.45 src/libexec/telnetd/sys_term.c
cvs rdiff -u -r1.52 -r1.53 src/libexec/telnetd/telnetd.c
cvs rdiff -u -r1.31 -r1.32 src/libexec/telnetd/utility.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
State-Changed-From-To: feedback->closed
State-Changed-By: dholland@NetBSD.org
State-Changed-When: Sat, 30 Jun 2012 21:36:08 +0000
State-Changed-Why:
Fixed. The change will be in netbsd-6.
>Unformatted:
(Contact us)
$NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2007
The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.