 |
≫ |
|
|
|
パッチ名: PHNE_35770
パッチ摘要: s700_800 11.23 telnetカーネル、telnetd(1M)、telnet(1)パッチ
作成日: 07/05/22
公開日: 07/06/01
ハードウェアプラットフォームおよびOSリリース:
s700: 11.23
s800: 11.23
現象:
PHNE_35770:
1.(SR:8606481982 CR:JAGag35906) 重複
(SR:8606477400 CR:JAGag31812)
ターミナルのボーレートをゼロに設定すると、telnet(1)セッションがハング
することがあります。
2.(SR:8606458825 CR:JAGag15023) 重複
(SR:8606458574 CR:JAGag14786)
tels(7)デバイスが完全にクローズされないため、reboot(1M)がハングします。
問題点の説明:
PHNE_35770:
1.(SR:8606481982 CR:JAGag35906) 重複
(SR:8606477400 CR:JAGag31812)
telnet(1)がゼロのボーレートを適切に処理しなかったため、ボーレートをゼ
ロに設定すると、telnet(1)セッションがハングすることがありました。
解決方法:
ゼロのボーレートを適切に処理するようにtelnet(1)を修正しました。
2.(SR:8606458825 CR:JAGag15023) 重複
(SR:8606458574 CR:JAGag14786)
telnetマスターおよびスレーブのクローズルーチンがロックを取得できずに休
眠していたため、reboot(1M)がハングしていました。
解決方法:
ロックを取得できるようにクローズルーチンを修正しました。これで、
reboot(1M)は正常に実行されます。
-----------------------------------------------------------------------------
Patch Name: PHNE_35770
Patch Description: s700_800 11.23 telnet kernel, telnetd(1M), telnet(1) patch
Creation Date: 07/05/22
Post Date: 07/06/01
Hardware Platforms - OS Releases:
s700: 11.23
s800: 11.23
Products: N/A
Filesets:
InternetSrvcs.INET-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP
OS-Core.KERN-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP
Automatic Reboot?: Yes
Status: General Release
Critical:
Yes
PHNE_35770: HANG
PHNE_33724: PANIC
PHNE_31733: PANIC
Category Tags:
defect_repair enhancement general_release critical panic
halts_system
Path Name: /hp-ux_patches/s700_800/11.X/PHNE_35770
Symptoms:
PHNE_35770:
( SR:8606481982 CR:JAGag35906 ) Duplicate
( SR:8606477400 CR:JAGag31812 )
Under certain circumstances, a telnet(1) session may hang
when the terminal baud rate is set to zero.
( SR:8606458825 CR:JAGag15023 ) Duplicate
( SR:8606458574 CR:JAGag14786 )
reboot(1M) hangs due to a partially closed tels(7) device.
PHNE_33724:
( SR:8606422017 CR:JAGaf81842 ) Duplicate
( SR:8606227237 CR:JAGad96299 )
In some cases, telnet(1) consumes lot of CPU time.
( SR:8606396581 CR:JAGaf56564 ) Duplicate
( SR:8606396269 CR:JAGaf56252 )
The telnetd(1M) man page lists an incorrect usage of the
-TCP_DELAY option.
( SR:8606405048 CR:JAGaf64968 )
In a Secure Internet Services environment, telnet(1) fails
to forward credentials when the KDC is Windows 2000 and the
user is a member of a large number of groups in the KDC.
( SR:8606434839 CR:JAGaf93329 ) Duplicate
( SR:8606412116 CR:JAGaf71981 )
System may panic with the following stack trace:
panic+0x6c
report_trap_or_int_and_panic+0x94
trap+0xf04
thandler+0xd20
qenable+0xc
telnet_lwsrv+0xec
sq_wrapper+0x94
csq_turnover_with_lock+0xa8
str_sched_mp_daemon+0x1d8
( SR:8606439183 CR:JAGaf97184 )
telnetd(1M) does not pass the LANG environment variable
to login(1).
PHNE_31733:
( SR:8606373859 CR:JAGaf34250 )
In an IPv6 environment, when Kerberos is enabled on
PA-RISC systems, telnet does not handle IPv6
addresses.
( SR:8606236622 CR:JAGae05675 )
Requirement for an optional change of the telnetd session
proceedings.
( SR:8606357337 CR:JAGaf18037 )
telnet client receives some unwanted characters in response
to the "send ec" command.
( SR:8606359337 CR:JAGaf20033 )
This product update provides pre-enablement for future
expansion of the maximum length of the system nodename
and hostname. Any actual expansion capability may be
provided in a future HP-UX nodename and hostname
expansion product. Upon installation, the nodename and
hostname expansion bundle (NodeHostNameXpnd) will install
the full set of product updates (including this one)
needed to enable the expansion.
If the nodename and hostname expansion bundle is not
installed, this product update will have no affect on your
system.
( SR:8606359028 CR:JAGaf19724 )
Tunable values do not match default/recommended values as
specified in man-pages.
( SR:8606365530 CR:JAGaf26162 )
telnet client displays the IPv4-mapped-IPv6 address of the
remote host instead of the IPv4 address.
telnetd logs the IPv4-mapped-IPv6 address of the remote
host instead of the IPv4 address in the utmps database,
audit database, and the syslog file.
( SR:8606367869 CR:JAGaf28433 )
System may panic with the following stack trace when telnetd
is used with -z and -s options :
freeb+0x3b8
tcp_rput+0x28b4
puthere+0xc8
tcp_rput_context_check+0x1c4
tcp_rput+0x328
str_spu_sw_isr+0x1a0
sw_service+0x100
mp_ext_interrupt+0x14c
ihandler+0x90c
Defect Description:
PHNE_35770:
( SR:8606481982 CR:JAGag35906 ) Duplicate
( SR:8606477400 CR:JAGag31812 )
As telnet(1) does not handle the zero baud rate processing
properly, the telnet(1) session may hang when the baud rate
is set to zero.
Resolution:
telnet(1) now handles the zero baud rate processing
properly.
( SR:8606458825 CR:JAGag15023 ) Duplicate
( SR:8606458574 CR:JAGag14786 )
reboot(1M) hangs as the close routine of telnet master and
slave sleeps due to its inability to acquire a lock.
Resolution:
Now, the close routines are able to acquire the lock and
hence reboot(1M) is successful.
PHNE_33724:
( SR:8606422017 CR:JAGaf81842 ) Duplicate
( SR:8606227237 CR:JAGad96299 )
telnet(1) enters an infinite loop when it is not able to
write data to the terminal, thus, consuming lot of CPU time.
Resolution:
telnet(1) code has been modified to exit when it is not
able to write to the terminal.
( SR:8606396581 CR:JAGaf56564 ) Duplicate
( SR:8606396269 CR:JAGaf56252 )
The telnetd(1M) man page lists an example of the -TCP_DELAY
option with -s and -z options. When the -TCP_DELAY option is
specified with the -s and -z options, the behavior of
telnetd(1M) may not be as according to the -TCP_DELAY
option, or the -s and -z options.
Resolution:
The usage example for the -TCP_DELAY option is now corrected
In the telnetd(1M) man page.
( SR:8606405048 CR:JAGaf64968 )
The credential of a user is large when the user is a member
of a large number of groups in the KDC. When the size of
the user's credentials exceed 4096 bytes, telnet(1) fails to
forward these credentials to telnetd(1M). A large credential
size can also lead to the failure of Kerberos
authentication.
Resolution:
telnet(1) now handles credentials of any size.
( SR:8606434839 CR:JAGaf93329 ) Duplicate
( SR:8606412116 CR:JAGaf71981 )
The telnet multiplexor passes a NULL pointer to qenable()
that causes the panic.
Resolution:
The telnet multiplexor now passes the correct pointer to
qenable().
( SR:8606439183 CR:JAGaf97184 )
telnetd(1M) unsets most of the environment variables,
including LANG, while invoking login(1).
Resolution:
A new command-line option "-e" is provided for telnetd(1M)
to pass all the environment variables while invoking
login(1).
PHNE_31733:
( SR:8606373859 CR:JAGaf34250 )
telnet does not process an IPv6 address, when
Kerberos is enabled on PA-RISC systems in an IPv6
environment.
Resolution:
telnet now handles IPv6 addresses when Kerberos
is enabled on PA-RISC systems.
( SR:8606236622 CR:JAGae05675 )
Requirement for an optional change of the telnetd session
proceedings.
Resolution:
Code has been modified to rectify the problem.
( SR:8606357337 CR:JAGaf18037 )
When telnetd receives "IAC EC" from the telnet client as
a result of the "send ec" command, it should send the erase
character to the slave pty but telnetd incorrectly sends
some unwanted characters along with the erase character.
These unwanted characters are sent to the telnet client.
Resolution:
telnetd sends only the erase character to the slave pty.
( SR:8606359337 CR:JAGaf20033 )
This product update contains some minor enhancements
required to pre-enable a future HP-UX nodename and
hostname expansion product bundle (NodeHostNameXpnd).
Resolution:
Internal buffers for the nodename or hostname are
expanded in preparation for a future increase to the
associated maximum length constraint.
( SR:8606359028 CR:JAGaf19724 )
Some kernel software components change tunable values during
their installation. This causes tunable values on a system
to mismatch with those recommended in tunable man-pages.
Some of these software components are factory installed by
HP as part of an Operating Environment (OE).
Resolution:
A footnote has been added to each kernel tunable man-page
which describes the cause for the tunables not being at
default/recommended values. A reference (web-link) to
release notes is also provided in the man-page.
( SR:8606365530 CR:JAGaf26162 )
telnet/telnetd does not convert an IPv4-mapped-IPv6 address
to an IPv4 address before displaying to the standard output
or logging into the database.
Resolution:
telnet/telnetd now converts an IPv4-mapped-IPv6 address to
an IPv4 address before displaying to the standard output or
logging into the database.
( SR:8606367869 CR:JAGaf28433 )
The telnet multiplexor does not handle the message buffer
used for -z and -s options properly.
Resolution:
The telnet multiplexor has been modified to work properly
when -z and -s options are set in telnetd.
Enhancement:
No (superseded patches contained enhancements)
PHNE_33724:
( SR:8606439183 CR:JAGaf97184 )
A new command-line option "-e" is provided for
telnetd(1M) to pass all the environment variables
while invoking login(1).
PHNE_31733:
( SR:8606373859 CR:JAGaf34250 )
Kerberos support in an IPv6 environment for telnet
for PA-RISC systems.
( SR:8606236622 CR:JAGae05675 )
Requirement for an optional change of the telnetd session
proceedings.
( SR:8606359337 CR:JAGaf20033 )
Support added for future maximum length expansion of
nodename and hostname.
SR:
8606477400 8606481982 8606458574 8606458825 8606227237
8606422017 8606396269 8606396581 8606405048 8606412116
8606434839 8606439183 8606236622 8606357337 8606359028
8606359337 8606365530 8606367869 8606373859
Patch Files:
InternetSrvcs.INET-ENG-A-MAN,fr=B.11.23,
fa=HP-UX_B.11.23_IA/PA,v=HP:
/usr/share/man/man1m.Z/telnetd.1m
OS-Core.KERN-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,
v=HP:
/usr/share/man/man5.Z/nstrtel.5
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_IA,
v=HP:
/usr/bin/telnet
/usr/lbin/telnetd
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP:
/usr/conf/lib/libtelnet.a
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_PA,
v=HP:
/usr/bin/telnet
/usr/lbin/telnetd
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP:
/usr/conf/lib/libtelnet.a
what(1) Output:
InternetSrvcs.INET-ENG-A-MAN,fr=B.11.23,
fa=HP-UX_B.11.23_IA/PA,v=HP:
/usr/share/man/man1m.Z/telnetd.1m:
None
OS-Core.KERN-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,
v=HP:
/usr/share/man/man5.Z/nstrtel.5:
None
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_IA,
v=HP:
/usr/bin/telnet:
Copyright (c) 1988 Regents of the University of Cali
fornia.
$Revision: @(#) map_all R11.23_BL2007_0522_3 PATCH_1
1.23 PHNE_35770
/usr/lbin/telnetd:
Copyright (c) 1983, 1986 Regents of the University o
f California.
$Revision: @(#) map_all R11.23_BL2007_0522_3 PATCH_1
1.23 PHNE_35770
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP:
/usr/conf/lib/libtelnet.a:
$Revision: libtelnet.a: @(#) lib/libtelnet.a R11
.23_BL2007_0522_3 PATCH_11.23 PHNE_35770
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_PA,
v=HP:
/usr/bin/telnet:
$Revision: 92453-07 linker linker crt0.o B.11.16.01
030415 $
$Revision: @(#) map_all R11.23_BL2007_0522_3 PATCH_1
1.23 PHNE_35770
Copyright (c) 1988 Regents of the University of Cali
fornia.
/usr/lbin/telnetd:
$Revision: 92453-07 linker linker crt0.o B.11.16.01
030415 $
$Revision: @(#) map_all R11.23_BL2007_0522_3 PATCH_1
1.23 PHNE_35770
Copyright (c) 1983, 1986 Regents of the University o
f California.
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP:
/usr/conf/lib/libtelnet.a:
$Revision: libtelnet.a: @(#) lib/libtelnet.a R11
.23_BL2007_0522_3 PATCH_11.23 PHNE_35770
cksum(1) Output:
InternetSrvcs.INET-ENG-A-MAN,fr=B.11.23,
fa=HP-UX_B.11.23_IA/PA,v=HP:
4133598557 6679 /usr/share/man/man1m.Z/telnetd.1m
OS-Core.KERN-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,
v=HP:
2443453483 2283 /usr/share/man/man5.Z/nstrtel.5
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_IA,
v=HP:
3752431254 250724 /usr/bin/telnet
2684968853 239460 /usr/lbin/telnetd
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP:
3199322527 147032 /usr/conf/lib/libtelnet.a
InternetSrvcs.INETSVCS2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_PA,
v=HP:
2815358250 159744 /usr/bin/telnet
1850983400 143360 /usr/lbin/telnetd
Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP:
2970274078 79488 /usr/conf/lib/libtelnet.a
Patch Conflicts: None
Patch Dependencies:
s700: 11.23: PHKL_31500
s800: 11.23: PHKL_31500
Hardware Dependencies: None
Other Dependencies: None
Supersedes:
PHNE_33724 PHNE_31733
Equivalent Patches: None
Patch Package Size: 450 KBytes
Installation Instructions:
Please review all instructions and the Hewlett-Packard
SupportLine User Guide or your Hewlett-Packard support terms
and conditions for precautions, scope of license,
restrictions, and, limitation of liability and warranties,
before installing this patch.
------------------------------------------------------------
1. Back up your system before installing a patch.
2. Login as root.
3. Copy the patch to the /tmp directory.
4. Move to the /tmp directory and unshar the patch:
cd /tmp
sh PHNE_35770
5. Run swinstall to install the patch:
swinstall -x autoreboot=true -x patch_match_target=true \
-s /tmp/PHNE_35770.depot
By default swinstall will archive the original software in
/var/adm/sw/save/PHNE_35770. If you do not wish to retain a
copy of the original software, include the patch_save_files
option in the swinstall command above:
-x patch_save_files=false
WARNING: If patch_save_files is false when a patch is installed,
the patch cannot be deinstalled. Please be careful
when using this feature.
For future reference, the contents of the PHNE_35770.text file is
available in the product readme:
swlist -l product -a readme -d @ /tmp/PHNE_35770.depot
To put this patch on a magnetic tape and install from the
tape drive, use the command:
dd if=/tmp/PHNE_35770.depot of=/dev/rmt/0m bs=2k
Special Installation Instructions: None
|
