Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. OpenSSH>
  3. Bugs
[Bug 3349] Test sshd in chroot fails when syscall close_range is undefined and openssh is built with glibc 2.34
bugzilla-daemon at mindrot
Sep 22, 2021, 3:37 PM
Post #1 of 4 (171 views)
Permalink
https://bugzilla.mindrot.org/show_bug.cgi?id=3349

--- Comment #1 from william.wilson@canonical.com ---
I have also created
https://sourceware.org/bugzilla/show_bug.cgi?id=28377 to track this
issue with glibc.

--
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 3349] Test sshd in chroot fails when syscall close_range is undefined and openssh is built with glibc 2.34 [ In reply to ]
bugzilla-daemon at mindrot
Sep 22, 2021, 8:41 PM
Post #2 of 4 (171 views)
Permalink
https://bugzilla.mindrot.org/show_bug.cgi?id=3349

Darren Tucker <dtucker@dtucker.net> changed:

What |Removed |Added
----------------------------------------------------------------------------
CC| |dtucker@dtucker.net

--- Comment #2 from Darren Tucker <dtucker@dtucker.net> ---
I'm not sure what OpenSSH could do about this other than entirely
ignoring closefrom on Linux. closefrom returns void so we are not
aware of it having failed at runtime. Detecting this at build time
would require root permissions, and since the behaviour varies with
running kernel version it probably wouldn't help much anyway.

--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 3349] Test sshd in chroot fails when syscall close_range is undefined and openssh is built with glibc 2.34 [ In reply to ]
bugzilla-daemon at mindrot
Sep 23, 2021, 4:20 AM
Post #3 of 4 (171 views)
Permalink
https://bugzilla.mindrot.org/show_bug.cgi?id=3349

Florian Weimer <fweimer@redhat.com> changed:

What |Removed |Added
----------------------------------------------------------------------------
CC| |fweimer@redhat.com

--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 3349] Test sshd in chroot fails when syscall close_range is undefined and openssh is built with glibc 2.34 [ In reply to ]
bugzilla-daemon at mindrot
Sep 23, 2021, 4:26 AM
Post #4 of 4 (171 views)
Permalink
https://bugzilla.mindrot.org/show_bug.cgi?id=3349

--- Comment #3 from Florian Weimer <fweimer@redhat.com> ---
Does closefrom actually return in your test, or does it crash the
process?

It is impossible to implement closefrom emulation on Linux without
access to /proc: the descriptor range is not constrained by rlimit and
can theoretically extend up to INT_MAX. If you want something that does
not terminate the process, you need to call close_range and perform
your own emulation instead.

--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal