chroot fails if compiled with SELinux support
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openssh (Debian) |
Fix Released
|
Unknown
|
|||
openssh (Ubuntu) |
Fix Released
|
Medium
|
Colin Watson |
Bug Description
i am using openssh with libpam_chroot to have a chrooted login but
following error message denies access for chrooted uses
sshd[14644]: fatal: ssh_selinux_
Please include this fix: http://
Index: session.c
=======
RCS file: /usr/local/
retrieving revision 1.364
diff -u -p -r1.364 session.c
--- session.c 15 Mar 2008 06:27:58 -0000 1.364
+++ session.c 22 Mar 2008 01:23:48 -0000
@@ -1350,6 +1350,10 @@ do_setuserconte
#endif /* HAVE_CYGWIN */
{
+#ifdef WITH_SELINUX
+ /* Cache selinux status for later use */
+ (void)ssh_
+#endif
#ifdef HAVE_SETPCRED
if (setpcred(
fatal("Failed to set process credentials");
Index: openbsd-
=======
RCS file: /usr/local/
retrieving revision 1.4
diff -u -p -r1.4 port-linux.c
--- openbsd-
+++ openbsd-
@@ -36,7 +36,7 @@
#include <selinux/
/* Wrapper around is_selinux_
-static int
+int
ssh_selinux_
{
static int enabled = -1;
Index: openbsd-
=======
RCS file: /usr/local/
retrieving revision 1.1
diff -u -p -r1.1 port-linux.h
--- openbsd-
+++ openbsd-
@@ -20,6 +20,7 @@
#define _PORT_LINUX_H
#ifdef WITH_SELINUX
+int ssh_selinux_
void ssh_selinux_
void ssh_selinux_
#endif
Changed in openssh (Debian): | |
status: | Unknown → New |
Changed in openssh (Debian): | |
status: | New → Fix Released |
This fix is in OpenSSH 4.9p1; I'm aiming to get 5.1p1 into Intrepid shortly.