make install errors in openssh(when openpam is to be integrated with openssh)

ankita pal pal.ankita.ankita at gmail.com
Tue Oct 9 23:24:31 EST 2012 

should I use the option "--with-skey " (something like
--with-skey[=/home/mpal/ws2/dawn_v1/3dParty/build_apal] ) , since the
error mentions ssh-keygen?








On Tue, Oct 9, 2012 at 4:04 PM, ankita pal <pal.ankita.ankita at gmail.com> wrote:
>
> Hi,
>
> I want to integrate openpam with openssh in our server (which uses QNX632 operating system). I am facing some problems in the "make install" part of openssh. Following are the steps I followed to build zlib, openssl, openpam and openssh.
>
> NOTE: Since I want the sshd and ssh binaries in my server(using QNX), I had to cross compile the packages for QNX (environment was set to x86)
>
>
> 1. zlib(1.2.7):
>
> CC=qcc CFLAGS+=-Vgcc_ntox86 ./configure --prefix=/home/mpal/ws2/dawn_v1/3dParty/build_apal
>
> make clean
> make
> make install
>
>
> 2. openssl(1.0.1c):
>
> CC=qcc CXX=qcc AR=ntox86-ar LD=qcc RANLIB=ntox86-ranlib CFLAGS+="-Vgcc_ntox86 -fPIC" LDFLAGS+="-Vgcc_ntox86 -shared" ./Configure zlib-dynamic QNX6-i386 --prefix=/home/mpal/ws2/dawn_v1/3dParty/build_apal
>
> make clean
> make
> make install
>
> 3. openpam(20120526 Micrampelis)(with some modifications- added source codes of vasprintf and asprintf):
>
> ./configure --enable-shared --without-doc --with-pamtest --host=i386-pc-linux-gnu --enable-debug --enable-debugging-symbols CC=qcc CFLAGS="-Vgcc_ntox86" --prefix=/home/mpal/ws2/dawn_v1/3dParty/build_apal
>
> make clean
> make
> make install
>
> The libraries were installed in /home/mpal/ws2/dawn_v1/3dParty/build_apal/lib
>
>
>
> 4. openssh:
>
> CC=qcc CFLAGS="-Vgcc_ntox86 -I${INF_WRK_AREA_FWD}/../3dParty/openpam/include -L${INF_WRK_AREA_FWD}/../3dParty/openpam/lib/.libs -L${INF_WRK_AREA_FWD}/../3dParty/build_apal/lib" LD=qcc LDFLAGS+=-Vgcc_ntox86 CXX=qcc CPPFLAGS+="-DMISSING_HOWMANY -DMISSING_NFDBITS -DMISSING_NFDMASK" ./configure --with-pam=${INF_WRK_AREA_FWD}/../3dParty/openpam --disable-lastlog --host=i386 --with-ssl-dir=${INF_WRK_AREA_FWD}/../3dParty/openssl --prefix=/home/mpal/ws2/dawn_v1/3dParty/build_apal --datarootdir=/home/mpal/ws2/dawn_v1/3dParty/build_apal --datadir=/home/mpal/ws2/dawn_v1/3dParty/ --with-privsep-path=/home/mpal/ws2/dawn_v1/3dParty/build_apal --with-pid-dir=/home/mpal/ws2/dawn_v1/3dParty/build_apal
>
> ------------------------------------------------------------------------------------------------------------------
> message got after doing configure:
> OpenSSH has been configured with the following options:
>                      User binaries: /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin
>                    System binaries: /home/mpal/ws2/dawn_v1/3dParty/build_apal/sbin
>                Configuration files: /home/mpal/ws2/dawn_v1/3dParty/build_apal/etc
>                    Askpass program: /home/mpal/ws2/dawn_v1/3dParty/build_apal/libexec/ssh-askpass
>                       Manual pages: /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/manX
>                           PID file: /home/mpal/ws2/dawn_v1/3dParty/build_apal
>   Privilege separation chroot path: /home/mpal/ws2/dawn_v1/3dParty/build_apal
>             sshd default user PATH: /usr/bin:/bin:/usr/sbin:/sbin:/home/mpal/ws2/dawn_v1/3dParty/build_apal/bin
>                     Manpage format: doc
>                        PAM support: yes
>                    OSF SIA support: no
>                  KerberosV support: no
>                    SELinux support: no
>                  Smartcard support:
>                      S/KEY support: no
>               TCP Wrappers support: no
>               MD5 password support: no
>                    libedit support: no
>   Solaris process contract support: no
>            Solaris project support: no
>        IP address in $DISPLAY hack: no
>            Translate v4 in v6 hack: no
>                   BSD Auth support: no
>               Random number source: OpenSSL internal ONLY
>              Privsep sandbox style: rlimit
>
>               Host: i386-pc-none
>           Compiler: qcc
>     Compiler flags: -Vgcc_ntox86 -I/home/mpal/ws2/dawn_v1/main/../3dParty/openpam/include -L/home/mpal/ws2/dawn_v1/main/../3dParty/openpam/lib/.libs -Wall -Wpointer-arith -Wuninitialized -Wsign-compare -Wformat-security -fno-strict-aliasing -fno-builtin-memset
> Preprocessor flags: -I/home/mpal/ws2/dawn_v1/main/../3dParty/openssl/include -DMISSING_HOWMANY -DMISSING_NFDBITS -DMISSING_NFDMASK
>       Linker flags: -L/home/mpal/ws2/dawn_v1/main/../3dParty/openssl -Vgcc_ntox86
>          Libraries: -lcrypto -lz -lsocket
>          +for sshd:  -lpam
>
> PAM is enabled. You may need to install a PAM control file
> for sshd, otherwise password authentication may fail.
> Example PAM control files can be found in the contrib/
> subdirectory
>
> WARNING: the operating system that you are using does not
> appear to support getpeereid(), getpeerucred() or the
> SO_PEERCRED getsockopt() option. These facilities are used to
> enforce security checks to prevent unauthorised connections to
> ssh-agent. Their absence increases the risk that a malicious
> user can connect to your agent.
> ---------------------------------------------------------------------------------------------------------------------
>
> vim config.h:
>
> #define MISSING_FD_MASK 1      //in line 1276
> #undef HAVE_SYS_POL_H           //in line 1016
> #undef HAVE_POLL                      //in line 710
>
>
>
> vim Makefile:
> --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
> SSHDLIBS= -lpam                                                                                                                                     //line 48
>
> LDFLAGS=-L. -Lopenbsd-compat/ -L/home/mpal/ws2/dawn_v1/main/../3dParty/openssl -Vgcc_ntox86 -L/home/mpal/ws2/dawn_v1/3dParty/build_apal/lib -L/home/mpal/ws2/dawn_v1/3dParty/openpam/lib/.libs            //line 58
>
> CFLAGS=-Vgcc_ntox86 -I/home/mpal/ws2/dawn_v1/main/../3dParty/openpam/include -L/home/mpal/ws2/dawn_v1/main/../3dParty/build_apal/lib -L/home/mpal/ws2/dawn_v1/3dParty/openpam/lib/.libs -Wall -Wpointer-arith -Wuninitialized -Wsign-compare -Wformat-security -fno-strict-aliasing -fno-builtin-memset                           //line 44
> ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
>
>
> make clean
> make
> make INSTALL_PREFIX="/home/mpal/ws2/dawn_v1/3dParty/build_openssh" install
> ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
> message got after doing make install:
>
> IN-NeAppsLnxBld3:openssh-5.9p1[x86-main]$make INSTALL_PREFIX="/home/mpal/ws2/dawn_v1/3dParty/build_apal" install
> (cd openbsd-compat && make)
> make[1]: Entering directory `/home/mpal/ws2/dawn_v1/3dParty/openssh-5.9p1/openbsd-compat'
> make[1]: Nothing to be done for `all'.
> make[1]: Leaving directory `/home/mpal/ws2/dawn_v1/3dParty/openssh-5.9p1/openbsd-compat'
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/sbin
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/man
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man5
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man8
> ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/libexec
> (umask 022 ; ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal)
> /usr/bin/install -c -m 0755 -s ssh /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/ssh
> /usr/bin/install -c -m 0755 -s scp /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/scp
> /usr/bin/install -c -m 0755 -s ssh-add /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/ssh-add
> /usr/bin/install -c -m 0755 -s ssh-agent /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/ssh-agent
> /usr/bin/install -c -m 0755 -s ssh-keygen /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/ssh-keygen
> /usr/bin/install -c -m 0755 -s ssh-keyscan /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/ssh-keyscan
> /usr/bin/install -c -m 0755 -s sshd /home/mpal/ws2/dawn_v1/3dParty/build_apal/sbin/sshd
> /usr/bin/install -c -m 4711 -s ssh-keysign /home/mpal/ws2/dawn_v1/3dParty/build_apal/libexec/ssh-keysign
> /usr/bin/install -c -m 0755 -s ssh-pkcs11-helper /home/mpal/ws2/dawn_v1/3dParty/build_apal/libexec/ssh-pkcs11-helper
> /usr/bin/install -c -m 0755 -s sftp /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/sftp
> /usr/bin/install -c -m 0755 -s sftp-server /home/mpal/ws2/dawn_v1/3dParty/build_apal/libexec/sftp-server
> /usr/bin/install -c -m 644 ssh.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/ssh.1
> /usr/bin/install -c -m 644 scp.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/scp.1
> /usr/bin/install -c -m 644 ssh-add.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/ssh-add.1
> /usr/bin/install -c -m 644 ssh-agent.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/ssh-agent.1
> /usr/bin/install -c -m 644 ssh-keygen.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/ssh-keygen.1
> /usr/bin/install -c -m 644 ssh-keyscan.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/ssh-keyscan.1
> /usr/bin/install -c -m 644 moduli.5.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man5/moduli.5
> /usr/bin/install -c -m 644 sshd_config.5.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man5/sshd_config.5
> /usr/bin/install -c -m 644 ssh_config.5.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man5/ssh_config.5
> /usr/bin/install -c -m 644 sshd.8.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man8/sshd.8
> /usr/bin/install -c -m 644 sftp.1.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/sftp.1
> /usr/bin/install -c -m 644 sftp-server.8.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man8/sftp-server.8
> /usr/bin/install -c -m 644 ssh-keysign.8.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man8/ssh-keysign.8
> /usr/bin/install -c -m 644 ssh-pkcs11-helper.8.out /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man8/ssh-pkcs11-helper.8
> rm -f /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/slogin
> ln -s ./ssh /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/slogin
> rm -f /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/slogin.1
> ln -s ./ssh.1 /home/mpal/ws2/dawn_v1/3dParty/build_apal/man/man1/slogin.1
> if [ ! -d /home/mpal/ws2/dawn_v1/3dParty/build_apal/etc ]; then \
>         ./mkinstalldirs /home/mpal/ws2/dawn_v1/3dParty/build_apal/etc; \
> fi
> /home/mpal/ws2/dawn_v1/3dParty/build_apal/etc/ssh_config already exists, install will not overwrite
> /home/mpal/ws2/dawn_v1/3dParty/build_apal/etc/sshd_config already exists, install will not overwrite
> /home/mpal/ws2/dawn_v1/3dParty/build_apal/etc/moduli already exists, install will not overwrite
> /bin/sh: ./ssh-keygen: not found
> /bin/sh: ./ssh-keygen: not found
> /bin/sh: ./ssh-keygen: not found
> /bin/sh: ./ssh-keygen: not found
> make: *** [host-key] Error 127
> -------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
> This is the error I am getting (during make install of openssh). How can I remove it?
> ssh-keygen binary is been created in:
>
> /usr/bin/install -c -m 0755 -s ssh-keygen /home/mpal/ws2/dawn_v1/3dParty/build_apal/bin/ssh-keygen
>
> still it says ./ssh-keygen: not found
>
> Can you suggest some trick to get this correct.
>
> Regards,
> Ankita
>

More information about the openssh-unix-dev mailing list