Bug#630609: marked as done (libpam-afs-session: Leaks SIGCHLD to calling process)

Debian Bug Tracking System Mon, 25 Jul 2011 19:51:19 -0700

Your message dated Tue, 26 Jul 2011 02:47:15 +0000
with message-id <[email protected]>
and subject line Bug#630609: fixed in libpam-afs-session 2.5-1
has caused the Debian Bug report #630609,
regarding libpam-afs-session: Leaks SIGCHLD to calling process
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
630609: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=630609
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: libpam-afs-session
Version: 1.7-2
Severity: normal


When using pam_afs_session with local logins for vsftp, a vsftp
process hangs on wait4() shortly after completing pam_setcred(),
hanging the ftp connection.

While running pam, vsftp has a handler for SIGCHLD installed, recording
the signal for the exit of /usr/bin/aklog. The pending signal is then acted
upon later on in vsftp, resulting in a wait4() that has no chance of
completing.

Comparing with other PAM modules, I found that pam_tmpdir also runs a
helper application, but in contrast to pam_afs_session, a default
signal handler for SIGCHLD in installed for the duration of the
fork()-wait().

It seems reasonable that also pam_afs_session should make sure that a
signal handler for SIGCHLD from the calling process is not triggered
by the running of aklog.

Thanks
Arne

-- System Information:
Debian Release: 6.0.1
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=sv_SE.UTF-8, LC_CTYPE=sv_SE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libpam-afs-session depends on:
ii  libc6                       2.11.2-10    Embedded GNU C Library: Shared lib
ii  libkrb5-3                   1.8.3+dfsg-4 MIT Kerberos runtime libraries
ii  libpam-runtime              1.1.1-6.1    Runtime support for the PAM librar
ii  libpam0g                    1.1.1-6.1    Pluggable Authentication Modules l

Versions of packages libpam-afs-session recommends:
ii  heimdal-cl 1.4.0~git20100726.dfsg.1-1+b1 Heimdal Kerberos - clients
ii  libpam-krb 4.3-1                         PAM module for MIT Kerberos
ii  openafs-cl 1.4.12.1+dfsg-4               AFS distributed filesystem client 
ii  openafs-kr 1.4.12.1+dfsg-4               AFS distributed filesystem Kerbero

libpam-afs-session suggests no packages.

-- no debconf information

--- End Message ---

--- Begin Message ---

Source: libpam-afs-session
Source-Version: 2.5-1

We believe that the bug you reported is fixed in the latest version of
libpam-afs-session, which is due to be installed in the Debian FTP archive:

libpam-afs-session_2.5-1.debian.tar.gz
  to main/libp/libpam-afs-session/libpam-afs-session_2.5-1.debian.tar.gz
libpam-afs-session_2.5-1.dsc
  to main/libp/libpam-afs-session/libpam-afs-session_2.5-1.dsc
libpam-afs-session_2.5-1_i386.deb
  to main/libp/libpam-afs-session/libpam-afs-session_2.5-1_i386.deb
libpam-afs-session_2.5.orig.tar.gz
  to main/libp/libpam-afs-session/libpam-afs-session_2.5.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Russ Allbery <[email protected]> (supplier of updated libpam-afs-session package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 25 Jul 2011 18:26:10 -0700
Source: libpam-afs-session
Binary: libpam-afs-session
Architecture: source i386
Version: 2.5-1
Distribution: unstable
Urgency: low
Maintainer: Russ Allbery <[email protected]>
Changed-By: Russ Allbery <[email protected]>
Description: 
 libpam-afs-session - PAM module to set up a PAG and obtain AFS tokens
Closes: 630609
Changes: 
 libpam-afs-session (2.5-1) unstable; urgency=low
 .
   * New upstream release.
     - Reset the SIGCHLD handler while spawning an external aklog program
       so that the application SIGCHLD handler isn't invoked when aklog
       exits.  (Closes: #630609)
   * Convert to multiarch.  Depend on the multiarch version of
     libpam0g, install the module into the multiarch version of
     /lib/security, and declare the package Multi-Arch: same.
   * Update to debhelper compatibility level V9 (experimental).
     - Build-Depend on debhelper 8.1.3 or later.
     - Add Pre-Depends: ${misc:Pre-Depends}.
     - Add Lintian override for using an experimental debhelper level.
   * Remove unnecessary debian/dirs file.
Checksums-Sha1: 
 171cd2fd91055f7be8ff69c2fd42641234e2f2a8 1642 libpam-afs-session_2.5-1.dsc
 5b2ee386b840ccecd38888230a69fe986a4150a9 441713 
libpam-afs-session_2.5.orig.tar.gz
 a6446187035f0932812e30930804832d913d0408 9532 
libpam-afs-session_2.5-1.debian.tar.gz
 ee15e5ae5b44ee3c8f3a952cd29e2b6d41bbbdc3 44736 
libpam-afs-session_2.5-1_i386.deb
Checksums-Sha256: 
 b167066ad20ee28aa3e99f2e517867556f5cec11e38cbe832d736cc9efd9883c 1642 
libpam-afs-session_2.5-1.dsc
 6b187b6a6efc4a76f651b163108ef8df24262cec9b7f865596ad15551fc48d02 441713 
libpam-afs-session_2.5.orig.tar.gz
 5027294dd71917a340ace7824037978a43a9a87bcc2d47dec4b6eada238c4129 9532 
libpam-afs-session_2.5-1.debian.tar.gz
 1a5f0ee7f7595534485f37ecbb46ca00d168b420be306edd8d81eebff0c8d761 44736 
libpam-afs-session_2.5-1_i386.deb
Files: 
 ff6d757f9add8d0fa1c618103ab561b6 1642 admin optional 
libpam-afs-session_2.5-1.dsc
 505167bb8cadfb58579b9137b0deb02e 441713 admin optional 
libpam-afs-session_2.5.orig.tar.gz
 d77e54a60b9a90f279fcbbea9478f16a 9532 admin optional 
libpam-afs-session_2.5-1.debian.tar.gz
 7668e9ea88d9947b47e2f5ccac11c161 44736 admin optional 
libpam-afs-session_2.5-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQEcBAEBCAAGBQJOLh1QAAoJEH2AMVxXNt518MMH/2HPDjNnffgnsB1+7571iczp
QUr+CSh7n89xC3W1APfiBkOohZMZfMf0fk24GZwPpCqZ6cabZaF0zQflZDQA6/fQ
+oAAg7Zil+cGIWs/BQAAdUrxxR2QQAMWieBhylmbM7A6gkQiypJyYjth4wUGzDUX
SFdo3zj2ZqjsXA9AUOtqcVpYtlfo35NpdPzgDj7Q9iPuKLa8k/DLyk9msOdOvCFP
lu6/hyq5aT/Di7y27ZnsL5aJLAdBkLB0Xy+RPbCrb015grYUhppcHOI0Td4M9HwH
anwsOoOdz8SSzsTCIjkbaxN9f5afT7N7sJE1ik++pjZdK3QOOP64NC5kojEJF2s=
=achJ
-----END PGP SIGNATURE-----

--- End Message ---

Bug#630609: marked as done (libpam-afs-session: Leaks SIGCHLD to calling process)

Reply via email to