[Bug 3126] Mark the RDomain configuration option unsupported on non-openbsd builds

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Fri Feb 28 00:47:03 AEDT 2020


https://bugzilla.mindrot.org/show_bug.cgi?id=3126

--- Comment #2 from Jakub Jelen <jjelen at redhat.com> ---
(In reply to Darren Tucker from comment #1)
> (In reply to Jakub Jelen from comment #0)
> > Created attachment 3358 [details]
> > Mark the RDomain configuration option unsupported on non-openbsd
> > builds
> 
> I don't think that patch is correct.  sshd should fail with a
> warning on platforms that don't have an rdomain equivalent (in
> sshd.c:set_process_rdomain).  In the case of Linux, it's a little
> convoluted but it should end up using the code in
> openbsd-compat/port-net.c.

Yes, that code contains only

> fatal("%s: not supported", __func__);

> > Experimenting with RDomain configuration option on non-OpenBSD
> > platform prevents sshd from accepting connections.
> 
> If the Linux rdomain code doesn't work as expected that's a separate
> issue.

There is no linux code for this configuration option.

> > The release notes
> > properly described this option as supported only on OpenBSD,
> 
> That was true when rdomain was added, but it's since added Linux
> support.

According to the code, this is still the case. See above. I did not
investigate whether there is already a way to change rdomain for
process in Linux, but having an option which is without warning in
manual page breaking all connections is dangerous.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list