Patch Name: PHNE_24821 Patch Description: s700_800 10.20 telnetd(1M) cumulative patch Creation Date: 01/08/21 Post Date: 01/09/12 Hardware Platforms - OS Releases: s700: 10.20 s800: 10.20 Products: N/A Filesets: InternetSrvcs.INETSVCS-RUN InternetSrvcs.INET-ENG-A-MAN Automatic Reboot?: No Status: General Release Critical: No (superseded patches were critical) PHNE_10425: HANG The telnetd(1M) daemon can hang on startup. PHNE_8328: HANG The telnetd(1M) daemon can hang on startup. Path Name: /hp-ux_patches/s700_800/10.X/PHNE_24821 Symptoms: PHNE_24821: SR 8606212875 / CR JAGad82062 1. Buffer handling in telnetd needs to be enhanced. SR 8606212874 / CR JAGad82061 2. Telnetd has a service issue. PHNE_13414: The following symptoms correspond to the descriptions in the defect descriptions field for PHNE_13414: 1. Slow throughput downloading continuous large amounts of data over telnet connection. PHNE_10425: The following symptoms correspond to the descriptions in the defect descriptions field for PHNE_10425: 1. The telnetd(1M) daemon hangs if the initial environment option negotiation reply from the Telnet client is split across multiple TCP packets. 2. The telnetd(1M) daemon sends SIGINT to its corresponding application upon receipt of a Telnet IP from the Telnet client regardless of the VINTR character setting on its pty. PHNE_8328: The following symptoms correspond to the descriptions in the defect descriptions field for PHNE_8328: 1. The telnetd(1M) daemon does not allow use of the port identification feature apart from connections originating on a DTC and, in particular, it does not allow connections from IP addresses only (specifically, PCs logging in via Telnet). 2. The telnetd(1M) daemon hangs if more than 512 characters are received before the initial environment option negotiation is completed. Defect Description: PHNE_24821: SR 8606212875 / CR JAGad82062 1. Buffer handling in telnetd needs to be enhanced. Resolution: Code changes have been made to fix it. SR 8606212874 / CR JAGad82061 2. Telnetd has a service issue. Resolution: Code changes have been made to fix it. PHNE_13414: The following defect descriptions are for PHNE_13414: 1. Currently in output, kernel telnet implements a delay which forces small amounts of data to coalesce before putting it into a packet, since sending too many small packets quickly may overload a system. This delay is slowing down throughput for large amounts of data output. The fix allows the user to have the telnetd option to remove the delay on output, by setting OUT_NO_DELAY. ** For 10.30 and later releases, the implementation of telnet is changed such that throughput is increased, so the OUT_NO_DELAY option is no longer needed and will not be valid. ** PHNE_10425: The following defect descriptions are for PHNE_10425: 1. The problem is that the telnetd(1M) daemon does not handle an initial environment option negotiation reply split across multiple TCP packets as one stream of bytes to be processed. Thus, that reply is not processed and the telnetd(1M) daemon hangs waiting for another such reply (which will never come). 2. The problem is that the telnetd(1M) daemon does not handle a Telnet IP correctly. PHNE_8328: The following defect descriptions are for PHNE_8328: 1. The problem is that allowing the use of the port identification feature apart from connections originating on a DTC is simply not implemented within the telnetd(1M) daemon. 2. The problem is that the telnetd(1M) daemon drops all subsequent characters received after the first 512 characters. Thus, any environment option negotiation received after that point is not processed and the telnetd(1M) daemon waits forever. This condition will be handled by terminating the telnetd(1M) daemon whenever more than 512 characters are received before the completion of the initial environment option negotiation. SR: 8606212875 8606212874 5003395004 5003361626 5003306308 1653197392 Patch Files: /usr/lbin/telnetd /usr/share/man/man1m.Z/telnetd.1m what(1) Output: /usr/lbin/telnetd: Copyright (c) 1983, 1986 Regents of the University o f California. telnetd.c $Revision: 1.27.212.15 $ $Date: 2001/08/30 07:25:33 $ PHNE_24821 telnetd.c 5.31 (Berkeley) 2/23/89 /usr/share/man/man1m.Z/telnetd.1m: None cksum(1) Output: 889237057 53248 /usr/lbin/telnetd 1154174048 4241 /usr/share/man/man1m.Z/telnetd.1m Patch Conflicts: None Patch Dependencies: s700: 10.20: PHNE_13413 s800: 10.20: PHNE_13413 Hardware Dependencies: None Other Dependencies: None Supersedes: PHNE_8328 PHNE_10425 PHNE_13414 Equivalent Patches: PHNE_24762: s700: 11.00 s800: 11.00 PHNE_24829: s700: 11.11 s800: 11.11 Patch Package Size: 120 KBytes Installation Instructions: Please review all instructions and the Hewlett-Packard SupportLine User Guide or your Hewlett-Packard support terms and conditions for precautions, scope of license, restrictions, and, limitation of liability and warranties, before installing this patch. ------------------------------------------------------------ 1. Back up your system before installing a patch. 2. Login as root. 3. Copy the patch to the /tmp directory. 4. Move to the /tmp directory and unshar the patch: cd /tmp sh PHNE_24821 5a. For a standalone system, run swinstall to install the patch: swinstall -x autoreboot=true -x match_target=true \ -s /tmp/PHNE_24821.depot By default swinstall will archive the original software in /var/adm/sw/patch/PHNE_24821. If you do not wish to retain a copy of the original software, you can create an empty file named /var/adm/sw/patch/PATCH_NOSAVE. WARNING: If this file exists when a patch is installed, the patch cannot be deinstalled. Please be careful when using this feature. It is recommended that you move the PHNE_24821.text file to /var/adm/sw/patch for future reference. To put this patch on a magnetic tape and install from the tape drive, use the command: dd if=/tmp/PHNE_24821.depot of=/dev/rmt/0m bs=2k Special Installation Instructions: 1. Ensure that all telnet sessions are closed before the installation/removal of the patch. PHNE_13414: 1. Patch PHNE_13413 must first be installed before the feature from this patch can be used. 2. To enable the OUT_NO_DELAY option for telnetd after installing this patch: 1. modify /etc/inetd.conf file by adding the option, "-OUT_NO_DELAY" to the end of the following line: telnet stream tcp nowait root /usr/lbin/telnetd telnetd 2. # inetd -c (to have inetd re-read the config file) PHNE_24821: 1. To enable the -n option for telnetd after installing this patch: 1. modify /etc/inetd.conf file by adding the option, "-n