[Bug 3349] Test sshd in chroot fails when syscall close_range is undefined and openssh is built with glibc 2.34

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Oct 8 18:17:34 AEDT 2021


https://bugzilla.mindrot.org/show_bug.cgi?id=3349

--- Comment #5 from Darren Tucker <dtucker at dtucker.net> ---
Created attachment 3550
  --> https://bugzilla.mindrot.org/attachment.cgi?id=3550&action=edit
shim closefrom and check kernel version

The best we could come up with to still be able to use the native
closefrom was to shim it, check the kernel version at run time and call
the existing fallback function if the kernel was older than the first
version that had close_range.  Please try this patch (I don't have
anything with glibc 2.34 to test on).

I'm not sure if this is better or worse than disabling native
closefrom() entirely on Linux.

We also discussed moving the last closefrom for this case to
immediately before the chroot but we were less confident in that.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list