clone 367993 -1 -2 reassign -1 dpkg retitle -1 dpkg: [S-S-D]: --oknodo should exit unsuccessfully if there was stuff to do, but it failed retitle 367993 ssh: fails to show any error when start/stop as normal user fails retitle -2 ssh: immediate failure of a child process doesn't cause an unsuccessful exit. tag 367993 moreinfo thanks
On Fri, May 19, 2006 at 08:37:11AM +0300, Jari Aalto wrote: > Package: openssh-server > Version: 1:4.3p2-1 > Severity: normal > > DESCRIPTION > > [EMAIL PROTECTED]:~$ /etc/init.d/ssh start > [EMAIL PROTECTED]:~$ echo $? > 0 > [EMAIL PROTECTED]:~$ id -a > uid=1000(foo) gid=1000(foo) groups=44(video),1000(foo) > > SUGGESTION > > The service start script > > 1) Should return error (cannot commence any command non-root) This is actually a dpkg bug; start-stop-daemon is failing to do anything, but since --oknodo is given, it succeeds. IMO this is incorrect for the case that it does nothing for any reason other than "there was nothing to do", in particular for the case that permission was denied: $ /sbin/start-stop-daemon --stop --quiet --oknodo --pidfile /var/run/sshd.pid; echo $? /sbin/start-stop-daemon: warning: failed to kill 5870: Operation not permitted 0 > 2) Display error message, that user does not have privileges > to run the command I actually get an error message for both start and stop: $ /etc/init.d/ssh stop Stopping OpenBSD Secure Shell server: sshdstart-stop-daemon: warning: failed to kill 5870: Operation not permitted . $ /etc/init.d/ssh start Starting OpenBSD Secure Shell server: sshdCould not load host key: /etc/ssh/ssh_host_rsa_key Could not load host key: /etc/ssh/ssh_host_dsa_key . Please give the output of bash -x /etc/init.d/ssh start, and then bash -x /etc/init.d/ssh stop (as a normal user). This also seems to be an ssh bug, to the effect of "the parent exits successfully without waiting for necessary startup stuff to happen in the child, which immediately fails". $ /usr/sbin/sshd; echo $? Could not load host key: /etc/ssh/ssh_host_rsa_key Could not load host key: /etc/ssh/ssh_host_dsa_key 0 Hmmm stracing seems to indicate that it isn't an "fork and exit immediately" problem, but rather an "failure message from the child doesn't cause unsuccessful exit" problem. Justin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
