Bugzilla – Attachment 1788 Details for
Bug 1710
aix_setauthdb/aix_restoredb are not called in getpwnamallow() causing permanently_set_uid() to fail
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
Level 3 debug logs showing the problem
sshd.logs (text/plain), 10.72 KB, created by
Alexandre Letourneau
on 2010-02-02 05:49:02 AEDT
(
hide
)
Description:
Level 3 debug logs showing the problem
Filename:
MIME Type:
Creator:
Alexandre Letourneau
Created:
2010-02-02 05:49:02 AEDT
Size:
10.72 KB
patch
obsolete
>debug2: load_server_config: filename /usr/local/openssh/etc/sshd_config >debug2: load_server_config: done config len = 343 >debug2: parse_server_config: config /usr/local/openssh/etc/sshd_config len 343 >debug3: /usr/local/openssh/etc/sshd_config:2 setting Protocol 2 >debug3: /usr/local/openssh/etc/sshd_config:10 setting KeyRegenerationInterval 1h >debug3: /usr/local/openssh/etc/sshd_config:12 setting ServerKeyBits 1024 >debug3: /usr/local/openssh/etc/sshd_config:19 setting LoginGraceTime 2m >debug3: /usr/local/openssh/etc/sshd_config:21 setting PermitRootLogin no >debug3: /usr/local/openssh/etc/sshd_config:23 setting StrictModes yes >debug3: /usr/local/openssh/etc/sshd_config:25 setting MaxAuthTries 5 >debug3: /usr/local/openssh/etc/sshd_config:28 setting PermitEmptyPasswords no >debug3: /usr/local/openssh/etc/sshd_config:30 setting GatewayPorts no >debug3: /usr/local/openssh/etc/sshd_config:32 setting TCPKeepAlive yes >debug3: /usr/local/openssh/etc/sshd_config:34 setting PermitUserEnvironment no >debug3: /usr/local/openssh/etc/sshd_config:37 setting UsePrivilegeSeparation yes >debug3: /usr/local/openssh/etc/sshd_config:38 setting X11Forwarding yes >debug3: /usr/local/openssh/etc/sshd_config:41 setting Subsystem sftp /usr/local/openssh/libexec/sftp-server >debug1: sshd version OpenSSH_5.3p1 >debug3: Not a RSA1 key file /usr/local/openssh/etc/ssh_host_rsa_key. >debug1: read PEM private key done: type RSA >debug1: private host key: #0 type 1 RSA >debug3: Not a RSA1 key file /usr/local/openssh/etc/ssh_host_dsa_key. >debug1: read PEM private key done: type DSA >debug1: private host key: #1 type 2 DSA >debug1: rexec_argv[0]='/usr/local/openssh/sbin/sshd' >debug1: rexec_argv[1]='-ddd' >debug1: rexec_argv[2]='-f' >debug1: rexec_argv[3]='/usr/local/openssh/etc/sshd_config' >debug2: fd 3 setting O_NONBLOCK >debug1: Bind to port 22 on 0.0.0.0. >Server listening on 0.0.0.0 port 22. >debug2: fd 4 setting O_NONBLOCK >debug1: Bind to port 22 on ::. >Bind to port 22 on :: failed: Address already in use. >debug1: fd 4 clearing O_NONBLOCK >debug1: Server will not fork when running in debugging mode. >debug3: send_rexec_state: entering fd = 7 config len 343 >debug3: ssh_msg_send: type 0 >debug3: send_rexec_state: done >debug1: rexec start in 4 out 4 newsock 4 pipe -1 sock 7 >debug1: inetd sockets after dupping: 3, 3 >Connection from 9.54.36.48 port 3460 >debug1: Client protocol version 2.0; client software version PuTTY_Release_0.60 >debug1: no match: PuTTY_Release_0.60 >debug1: Enabling compatibility mode for protocol 2.0 >debug1: Local version string SSH-2.0-OpenSSH_5.3 >debug2: fd 3 setting O_NONBLOCK >debug3: privsep user:group 554:554 >debug1: permanently_set_uid: 554/554 >debug1: list_hostkey_types: ssh-rsa,ssh-dss >debug1: SSH2_MSG_KEXINIT sent >debug3: Wrote 784 bytes for a total of 805 >debug1: SSH2_MSG_KEXINIT received >debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 >debug2: kex_parse_kexinit: ssh-rsa,ssh-dss >debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se >debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se >debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96 >debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96 >debug2: kex_parse_kexinit: none,zlib@openssh.com >debug2: kex_parse_kexinit: none,zlib@openssh.com >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: first_kex_follows 0 >debug2: kex_parse_kexinit: reserved 0 >debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 >debug2: kex_parse_kexinit: ssh-rsa,ssh-dss >debug2: kex_parse_kexinit: aes256-ctr,aes256-cbc,rijndael-cbc@lysator.liu.se,aes192-ctr,aes192-cbc,aes128-ctr,aes128-cbc,blowfish-ctr,blowfish-cbc,3des-ctr,3des-cbc,arcfour256,arcfour128 >debug2: kex_parse_kexinit: aes256-ctr,aes256-cbc,rijndael-cbc@lysator.liu.se,aes192-ctr,aes192-cbc,aes128-ctr,aes128-cbc,blowfish-ctr,blowfish-cbc,3des-ctr,3des-cbc,arcfour256,arcfour128 >debug2: kex_parse_kexinit: hmac-sha1,hmac-sha1-96,hmac-md5 >debug2: kex_parse_kexinit: hmac-sha1,hmac-sha1-96,hmac-md5 >debug2: kex_parse_kexinit: none,zlib >debug2: kex_parse_kexinit: none,zlib >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: first_kex_follows 0 >debug2: kex_parse_kexinit: reserved 0 >debug2: mac_setup: found hmac-sha1 >debug1: kex: client->server aes256-ctr hmac-sha1 none >debug2: mac_setup: found hmac-sha1 >debug1: kex: server->client aes256-ctr hmac-sha1 none >debug2: Network child is on pid 237612 >debug3: preauth child monitor started >debug3: mm_request_receive entering >debug1: SSH2_MSG_KEX_DH_GEX_REQUEST_OLD received >debug3: mm_request_send entering: type 0 >debug3: mm_choose_dh: waiting for MONITOR_ANS_MODULI >debug3: mm_request_receive_expect entering: type 1 >debug3: mm_request_receive entering >debug3: monitor_read: checking request 0 >debug3: mm_answer_moduli: got parameters: 1024 4096 8192 >debug3: mm_request_send entering: type 1 >debug3: mm_choose_dh: remaining 0 >debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent >debug3: Wrote 536 bytes for a total of 1341 >debug2: monitor_read: 0 used once, disabling now >debug3: mm_request_receive entering >debug2: dh_gen_key: priv key bits set: 258/512 >debug2: bits set: 2000/4096 >debug1: expecting SSH2_MSG_KEX_DH_GEX_INIT >debug2: bits set: 1997/4096 >debug3: mm_key_sign entering >debug3: mm_request_send entering: type 4 >debug3: monitor_read: checking request 4 >debug3: mm_answer_sign >debug3: mm_answer_sign: signature 20061eb8(271) >debug3: mm_request_send entering: type 5 >debug2: monitor_read: 4 used once, disabling now >debug3: mm_request_receive entering >debug3: mm_key_sign: waiting for MONITOR_ANS_SIGN >debug3: mm_request_receive_expect entering: type 5 >debug3: mm_request_receive entering >debug1: SSH2_MSG_KEX_DH_GEX_REPLY sent >debug2: kex_derive_keys >debug2: set_newkeys: mode 1 >debug2: cipher_init: set keylen (16 -> 32) >debug1: SSH2_MSG_NEWKEYS sent >debug1: expecting SSH2_MSG_NEWKEYS >debug3: Wrote 1104 bytes for a total of 2445 >debug2: set_newkeys: mode 0 >debug2: cipher_init: set keylen (16 -> 32) >debug1: SSH2_MSG_NEWKEYS received >debug1: KEX done >debug3: Wrote 52 bytes for a total of 2497 >debug1: userauth-request for user aletourn service ssh-connection method none >debug1: attempt 0 failures 0 >debug3: mm_getpwnamallow entering >debug3: mm_request_send entering: type 6 >debug3: monitor_read: checking request 6 >debug3: mm_answer_pwnamallow >debug3: Trying to reverse map address 9.54.36.48. >debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM >debug3: mm_request_receive_expect entering: type 7 >debug3: mm_request_receive entering >debug2: parse_server_config: config reprocess config len 343 >debug3: ******* getpwnamallow(aletourn) called ************ > >debug3: AIX/loginrestrictions returned 0 msg (none) >debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1 >debug3: mm_request_send entering: type 7 >debug2: monitor_read: 6 used once, disabling now >debug3: mm_request_receive entering >debug2: input_userauth_request: setting up authctxt for aletourn >debug3: mm_inform_authserv entering >debug3: mm_request_send entering: type 3 >debug3: monitor_read: checking request 3 >debug3: mm_answer_authserv: service=ssh-connection, style= >debug2: monitor_read: 3 used once, disabling now >debug3: mm_request_receive entering >debug2: input_userauth_request: try method none >debug3: mm_auth_password entering >debug3: mm_request_send entering: type 10 >debug3: monitor_read: checking request 10 >debug3: mm_answer_authpassword: sending result 0 >debug3: mm_request_send entering: type 11 >Failed none for aletourn from 9.54.36.48 port 3460 ssh2 >debug3: mm_request_receive entering >debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD >debug3: mm_request_receive_expect entering: type 11 >debug3: mm_request_receive entering >debug3: mm_auth_password: user not authenticated >debug3: Wrote 84 bytes for a total of 2581 >debug1: userauth-request for user aletourn service ssh-connection method keyboard-interactive >debug1: attempt 1 failures 0 >debug2: input_userauth_request: try method keyboard-interactive >debug1: keyboard-interactive devs >debug1: auth2_challenge: user=aletourn devs= >debug1: kbdint_alloc: devices '' >debug2: auth2_challenge_start: devices >debug3: Wrote 84 bytes for a total of 2665 >debug1: userauth-request for user aletourn service ssh-connection method password >debug1: attempt 2 failures 1 >debug2: input_userauth_request: try method password >debug3: mm_auth_password entering >debug3: mm_request_send entering: type 10 >debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD >debug3: mm_request_receive_expect entering: type 11 >debug3: mm_request_receive entering >debug3: monitor_read: checking request 10 >debug3: AIX/authenticate result 0, authmsg >debug3: AIX SYSTEM attribute DCE >debug3: AIX/setauthdb set registry 'DCE' >debug3: AIX/passwdexpired returned 0 msg [DCE]: Password expiration date is Wed Apr 7 10:15:52 2010 >debug3: aix_restoreauthdb: restoring old registry '' >debug3: mm_answer_authpassword: sending result 1 >debug3: mm_request_send entering: type 11 >Accepted password for aletourn from 9.54.36.48 port 3460 ssh2 >debug3: AIX/setauthdb set registry 'DCE' >debug3: aix_restoreauthdb: restoring old registry '' >debug1: monitor_child_preauth: aletourn has been authenticated by privileged process >debug3: mm_get_keystate: Waiting for new keys >debug3: mm_request_receive_expect entering: type 24 >debug3: mm_request_receive entering >debug3: mm_auth_password: user authenticated >debug3: Wrote 36 bytes for a total of 2701 >debug3: mm_send_keystate: Sending new keys: 20061c18 2003fdc8 >debug3: mm_newkeys_to_blob: converting 20061c18 >debug3: mm_newkeys_to_blob: converting 2003fdc8 >debug3: mm_send_keystate: New keys have been sent >debug3: mm_send_keystate: Sending compression state >debug3: mm_request_send entering: type 24 >debug3: mm_send_keystate: Finished sending state >debug3: mm_newkeys_from_blob: 2007ed58(139) >debug2: mac_setup: found hmac-sha1 >debug3: mm_get_keystate: Waiting for second key >debug3: mm_newkeys_from_blob: 2007ed58(139) >debug2: mac_setup: found hmac-sha1 >debug3: mm_get_keystate: Getting compression state >debug3: mm_get_keystate: Getting Network I/O buffers >debug3: mm_share_sync: Share sync >debug3: mm_share_sync: Share sync end >debug3: AIX/UsrInfo: set len 31 >User child is on pid 237614 >debug3: mm_request_receive entering >debug1: permanently_set_uid: 411495/731477 >setegid 731477: Operation not permitted. >debug1: do_cleanup >debug1: do_cleanup
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1788">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 1710
:
1787
| 1788