Altered code to support salt-ssh on AIX

2025-04-17 10:10:20 +00:00 · 2019-04-02 14:02:14 -06:00 · 2019-04-02 14:02:14 -06:00 · 6d98577e37
commit 6d98577e37
parent 8fa0e51336
2 changed files with 10 additions and 1 deletions
--- a/salt/client/ssh/ssh_py_shim.py
+++ b/salt/client/ssh/ssh_py_shim.py
@ -118,7 +118,8 @@ def need_deployment():
        if dstat.st_uid != euid:
            # Attack detected, try again
            need_deployment()
-        if dstat.st_mode != 16832:
+        # AIX has non-POSIX bit 0o240700, isolate to 0o40700
+        if dstat.st_mode & ~65536 != 16832:
            # Attack detected
            need_deployment()
        # If SUDOing then also give the super user group write permissions
--- a/salt/utils/rsax931.py
+++ b/salt/utils/rsax931.py
@ -45,6 +45,14 @@ def _load_libcrypto():
            # two checks below
            lib = glob.glob('/opt/local/lib/libcrypto.so*') + glob.glob('/opt/tools/lib/libcrypto.so*')
            lib = lib[0] if len(lib) > 0 else None
+        if not lib and salt.utils.platform.is_aix():
+            if os.ospath.isdir('/opt/salt/lib'):
+                # preference for Salt installed fileset
+                lib = glob.glob('/opt/salt/lib/libcrypto.so*')
+                lib = lib[0] if len(lib) > 0 else None
+            else:
+                lib = glob.glob('/opt/freeware/lib/libcrypto.so*')
+                lib = lib[0] if len(lib) > 0 else None
        if lib:
            return cdll.LoadLibrary(lib)
        raise OSError('Cannot locate OpenSSL libcrypto')