[Bug 2418] New: sftp-server connection closed upon openssh6.8P1 upgrade

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Jun 26 05:19:12 AEST 2015


https://bugzilla.mindrot.org/show_bug.cgi?id=2418

            Bug ID: 2418
           Summary: sftp-server connection closed upon openssh6.8P1
                    upgrade
           Product: Portable OpenSSH
           Version: 6.8p1
          Hardware: Sparc
                OS: Solaris
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: sftp-server
          Assignee: unassigned-bugs at mindrot.org
          Reporter: kpcb_la at yahoo.com

Hi,

I am doing a upgrade of below software using source files on Solaris 10
Sparc and x86 hardware.

openssl with fips upgrade from 1.0.1m to 1.0.1o with fips 2.0.9

openssl-fips-ecp-2.0.9
openssl-1.0.1o
openssh-6.8p1

Below is the procedure we have been doing for couple of years now and
did not have an issue until now. Issue I am facing is with sftp-server.
After the upgrade of openssh6.8p1 when an sftp client connects to the
sftp-server connection is establised and password is prompted, however
after entering the password connection is closed with an error message
"connection closed". Error in /var/adm/messages file is "Jun 25
15:12:46 servername sshd[3223]: [ID 800047 auth.info] Accepted password
for username from ipaddress port 32911 ssh2"

When I tried to replace the older sftp-server
(/usr/local/libexec/sftp-server) binary sftp client is able to connect
without any issue. Please suggest.

Compilation procedure 

Sparc Platform
------------------------------------
openssl-fips-ecp-2.0.9
./Configure solaris-sparcv9-gcc shared
make clean
make
make install

openssl-1.0.1o
./Configure solaris-sparcv9-gcc fips
--with-fipslibdir=/usr/local/ssl/fips-2.0/lib/ no-ec2m shared
make clean
make
make install

openssh-6.8p1
./configure -with-ssl-dir=/usr/local/ssl -with-pam -with-libs=-ldl
make clean
make
make install



x86 Platform
------------------------------------
openssl-fips-ecp-2.0.9
./Configure solaris-x86-gcc shared
make clean
make
make install

openssl-1.0.1o
./Configure solaris-x86-gcc fips
--with-fipslibdir=/usr/local/ssl/fips-2.0/lib/ no-ec2m shared
make clean
make
make install

openssh-6.8p1
./configure -with-ssl-dir=/usr/local/ssl -with-pam -with-libs=-ldl
make clean
make
make install

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list