[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Jailkit-users] SuSE problem
|
From: |
Steve Follmer |
|
Subject: |
Re: [Jailkit-users] SuSE problem |
|
Date: |
Wed, 06 Jun 2007 06:09:02 +0800 |
|
User-agent: |
Thunderbird 2.0.0.0 (X11/20070418) |
> if you don't see anything unusual in the traces, you can post them to
> the list.
>
> regards,
> Olivier
Here are the 3 files from strace... (run together but still readable)
--- SIGCHLD (Child exited) @ 0 (0) ---
open("/etc/localtime", O_RDONLY) = 4
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
--- SIGCHLD (Child exited) @ 0 (0) ---
--- SIGCHLD (Child exited) @ 0 (0) ---
open("/proc/sys/kernel/ngroups_max", O_RDONLY) = 5
open("/proc/self/loginuid", O_WRONLY|O_TRUNC|O_LARGEFILE|O_NOFOLLOW) = 5
open("/etc/security/limits.conf", O_RDONLY|O_LARGEFILE) = 5
open("/etc/login.defs", O_RDONLY|O_LARGEFILE) = 5
stat64("/etc/resolv.conf", {st_mode=S_IFREG|0644, st_size=187, ...}) = 0
open("/etc/resolv.conf", O_RDONLY) = 6
readlink("/proc/self/exe", "/usr/sbin/sshd", 4095) = 14
open("/etc/security/pam_env.conf", O_RDONLY|O_LARGEFILE) = 5
open("/etc/environment", O_RDONLY|O_LARGEFILE) = 5
readlink("/proc/self/exe", "/usr/sbin/sshd", 4095) = 14
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/usr/lib/ssh/sftp-server", {st_mode=S_IFREG|0755, st_size=48132,
...}) = 0
--- SIGCHLD (Child exited) @ 0 (0) ---
open("/etc/security/pam_env.conf", O_RDONLY|O_LARGEFILE) = 7
open("/etc/environment", O_RDONLY|O_LARGEFILE) = 7
readlink("/proc/self/exe", "/usr/sbin/sshd", 4095) = 14
readlink("/proc/self/exe", "/usr/sbin/sshd", 4095) = 14
chdir("/home/sftp/./home/test") = 0
stat64("/etc/ssh/sshrc", 0xbfe3e814) = -1 ENOENT (No such file or
directory)
execve("/usr/sbin/jk_chrootsh", ["jk_chrootsh", "-c",
"/usr/lib/ssh/sftp-server"], [/* 9 vars */]) = 0
access("/etc/suid-debug", F_OK) = -1 ENOENT (No such file or
directory)
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or
directory)
open("/etc/ld.so.cache", O_RDONLY) = 3
open("/lib/libc.so.6", O_RDONLY) = 3
open("/etc/jailkit/jk_chrootsh.ini", O_RDONLY) = 3
chdir("/home/sftp") = 0
getcwd("/home/sftp", 1024) = 11
lstat64("/home/sftp", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
lstat64("/home/sftp/./home/test", {st_mode=S_IFDIR|0755, st_size=4096,
...}) = 0
open("/etc/localtime", O_RDONLY) = 4
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
stat64("/etc/localtime", {st_mode=S_IFREG|0644, st_size=268, ...}) = 0
chroot("/home/sftp") = 0
open("/etc/passwd", O_RDONLY) = 5
lstat64("/usr/sbin/jk_lsh", {st_mode=S_IFREG|0755, st_size=14376, ...}) = 0
chdir("/home/test") = 0
execve("/usr/sbin/jk_lsh", ["/usr/sbin/jk_lsh", "-c",
"/usr/lib/ssh/sftp-server"], [/* 4 vars */]) = 0
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or
directory)
open("/etc/ld.so.cache", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/lib/tls/i686/sse2/libc.so.6", O_RDONLY) = -1 ENOENT (No such file
or directory)
stat64("/lib/tls/i686/sse2", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/tls/i686/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/tls/i686", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/tls/sse2/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/tls/sse2", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/tls/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/tls", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/i686/sse2/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/i686/sse2", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/i686/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/i686", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/sse2/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/sse2", 0xbfc27e80) = -1 ENOENT (No such file or
directory)
open("/lib/libc.so.6", O_RDONLY) = 4
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/nsswitch.conf", O_RDONLY) = 6
open("/lib/libnss_compat.so.2", O_RDONLY) = 6
open("/lib/libnsl.so.1", O_RDONLY) = 6
open("/lib/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/tls/i686/sse2/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No
such file or directory)
stat64("/usr/lib/tls/i686/sse2", 0xbfc27730) = -1 ENOENT (No such file
or directory)
open("/usr/lib/tls/i686/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/tls/i686", 0xbfc27730) = -1 ENOENT (No such file or
directory)
open("/usr/lib/tls/sse2/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/tls/sse2", 0xbfc27730) = -1 ENOENT (No such file or
directory)
open("/usr/lib/tls/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such file
or directory)
stat64("/usr/lib/tls", 0xbfc27730) = -1 ENOENT (No such file or
directory)
open("/usr/lib/i686/sse2/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No
such file or directory)
stat64("/usr/lib/i686/sse2", 0xbfc27730) = -1 ENOENT (No such file or
directory)
open("/usr/lib/i686/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/i686", 0xbfc27730) = -1 ENOENT (No such file or
directory)
open("/usr/lib/sse2/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/sse2", 0xbfc27730) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libnss_nis.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/usr/lib", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
open("/etc/passwd", O_RDONLY) = 6
open("/etc/group", O_RDONLY) = 6
open("/etc/jailkit/jk_lsh.ini", O_RDONLY) = 6
stat64("/usr/lib/ssh/sftp-server", {st_mode=S_IFREG|0755, st_size=48132,
...}) = 0
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/etc/localtime", O_RDONLY) = -1 ENOENT (No such file or
directory)
execve("/usr/lib/ssh/sftp-server", ["/usr/lib/ssh/sftp-server"], [/* 4
vars */]) = 0
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or
directory)
open("/etc/ld.so.cache", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/lib/tls/i686/sse2/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/lib/tls/i686/sse2", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/tls/i686/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such file
or directory)
stat64("/lib/tls/i686", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/tls/sse2/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such file
or directory)
stat64("/lib/tls/sse2", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/tls/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/tls", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/i686/sse2/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/lib/i686/sse2", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/i686/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/i686", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/sse2/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
stat64("/lib/sse2", 0xbf96e730) = -1 ENOENT (No such file or
directory)
open("/lib/libresolv.so.2", O_RDONLY) = 4
open("/lib/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/tls/i686/sse2/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT
(No such file or directory)
stat64("/usr/lib/tls/i686/sse2", 0xbf96e714) = -1 ENOENT (No such file
or directory)
open("/usr/lib/tls/i686/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No
such file or directory)
stat64("/usr/lib/tls/i686", 0xbf96e714) = -1 ENOENT (No such file or
directory)
open("/usr/lib/tls/sse2/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No
such file or directory)
stat64("/usr/lib/tls/sse2", 0xbf96e714) = -1 ENOENT (No such file or
directory)
open("/usr/lib/tls/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/tls", 0xbf96e714) = -1 ENOENT (No such file or
directory)
open("/usr/lib/i686/sse2/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No
such file or directory)
stat64("/usr/lib/i686/sse2", 0xbf96e714) = -1 ENOENT (No such file or
directory)
open("/usr/lib/i686/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/i686", 0xbf96e714) = -1 ENOENT (No such file or
directory)
open("/usr/lib/sse2/libcrypto.so.0.9.8", O_RDONLY) = -1 ENOENT (No such
file or directory)
stat64("/usr/lib/sse2", 0xbf96e714) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libcrypto.so.0.9.8", O_RDONLY) = 4
open("/lib/libutil.so.1", O_RDONLY) = 4
open("/lib/libz.so.1", O_RDONLY) = 4
open("/lib/libnsl.so.1", O_RDONLY) = 4
open("/lib/libcrypt.so.1", O_RDONLY) = 4
open("/lib/libopensc.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libopensc.so.2", O_RDONLY) = 4
open("/lib/libgssapi_krb5.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libgssapi_krb5.so.2", O_RDONLY) = 4
open("/lib/libkrb5.so.3", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libkrb5.so.3", O_RDONLY) = 4
open("/lib/libk5crypto.so.3", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libk5crypto.so.3", O_RDONLY) = 4
open("/lib/libcom_err.so.2", O_RDONLY) = 4
open("/lib/libc.so.6", O_RDONLY) = 4
open("/lib/libdl.so.2", O_RDONLY) = 4
open("/lib/libscconf.so.2", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libscconf.so.2", O_RDONLY) = 4
open("/lib/libssl.so.0.9.8", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libssl.so.0.9.8", O_RDONLY) = 4
open("/lib/libopenct.so.1", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libopenct.so.1", O_RDONLY) = 4
open("/lib/libpcsclite.so.1", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libpcsclite.so.1", O_RDONLY) = 4
open("/lib/libltdl.so.3", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libltdl.so.3", O_RDONLY) = 4
open("/lib/libpthread.so.0", O_RDONLY) = 4
open("/lib/libkrb5support.so.0", O_RDONLY) = -1 ENOENT (No such file or
directory)
open("/usr/lib/libkrb5support.so.0", O_RDONLY) = 4
open("/dev/null", O_RDWR|O_LARGEFILE) = -1 ENOENT (No such file or
directory)
Later, I ran ssh -d and here is the output
debug1: sshd version OpenSSH_4.4p1
debug1: private host key: #0 type 0 RSA1
debug1: read PEM private key done: type RSA
debug1: private host key: #1 type 1 RSA
debug1: read PEM private key done: type DSA
debug1: private host key: #2 type 2 DSA
debug1: rexec_argv[0]='/usr/sbin/sshd'
debug1: rexec_argv[1]='-d'
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
socket: Address family not supported by protocol
Generating 768 bit RSA key.
RSA key generation complete.
debug1: Server will not fork when running in debugging mode.
debug1: rexec start in 4 out 4 newsock 4 pipe -1 sock 7
debug1: inetd sockets after dupping: 3, 3
Connection from 127.0.0.1 port 42875
debug1: Client protocol version 2.0; client software version OpenSSH_4.4
debug1: match: OpenSSH_4.4 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-1.99-OpenSSH_4.4
debug1: permanently_set_uid: 71/65
debug1: list_hostkey_types: ssh-rsa,ssh-dss
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST received
debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_INIT
debug1: SSH2_MSG_KEX_DH_GEX_REPLY sent
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: KEX done
debug1: userauth-request for user test service ssh-connection method none
debug1: attempt 0 failures 0
debug1: PAM: initializing for "test"
debug1: PAM: setting PAM_RHOST to "localhost"
debug1: PAM: setting PAM_TTY to "ssh"
debug1: userauth-request for user test service ssh-connection method
keyboard-interactive
debug1: attempt 1 failures 1
debug1: keyboard-interactive devs
debug1: auth2_challenge: user=test devs=
debug1: kbdint_alloc: devices 'pam'
debug1: auth2_challenge_start: trying authentication method 'pam'
Postponed keyboard-interactive for test from 127.0.0.1 port 42875 ssh2
debug1: do_pam_account: called
debug1: PAM: num PAM env strings 0
Postponed keyboard-interactive/pam for test from 127.0.0.1 port 42875 ssh2
debug1: do_pam_account: called
Accepted keyboard-interactive/pam for test from 127.0.0.1 port 42875 ssh2
debug1: monitor_child_preauth: test has been authenticated by privileged
process
debug1: PAM: reinitializing credentials
debug1: permanently_set_uid: 1005/100
debug1: Entering interactive session for SSH2.
debug1: server_init_dispatch_20
debug1: server_input_channel_open: ctype session rchan 0 win 131072 max
32768
debug1: input_session_request
debug1: channel 0: new [server-session]
debug1: session_new: init
debug1: session_new: session 0
debug1: session_open: channel 0
debug1: session_open: session 0: link with channel 0
debug1: server_input_channel_open: confirm session
debug1: server_input_channel_req: channel 0 request env reply 0
debug1: session_by_channel: session 0 channel 0
debug1: session_input_channel_req: session 0 req env
debug1: server_input_channel_req: channel 0 request subsystem reply 1
debug1: session_by_channel: session 0 channel 0
debug1: session_input_channel_req: session 0 req subsystem
subsystem request for sftp
debug1: subsystem: exec() /usr/lib/ssh/sftp-server
debug1: Received SIGCHLD.
debug1: session_by_pid: pid 12796
debug1: session_exit_message: session 0 channel 0 pid 12796
debug1: session_exit_message: release channel 0
debug1: session_by_channel: session 0 channel 0
debug1: session_close_by_channel: channel 0 child 0
debug1: session_close: session 0 pid 0
debug1: channel 0: free: server-session, nchannels 1
Connection closed by 127.0.0.1
debug1: do_cleanup
debug1: PAM: cleanup
Closing connection to 127.0.0.1
debug1: PAM: cleanup
I thought possibly it was something related to that Yast can't handle
the home directory syntax with the . in the home directory. Or that I
needed to put the 'test' user into the sshd group. But I think I've
accomplished these now. Unless there is some shadow file I need to
activate.
I am really baffled. All the processes involved seem to feel that the
sftp session is proceeding (and ending) perfectly normally. But the
connection is closed immediately, with no special warnings or
messages in the logs or the traces.
sftp address@hidden
Connecting to localhost...
Password:
Connection closed
Same result from another different client machine.
- [Jailkit-users] SuSE problem, Steve Follmer, 2007/06/04
- Re: [Jailkit-users] SuSE problem, Olivier Sessink, 2007/06/04
- Re: [Jailkit-users] SuSE problem, Steve Follmer, 2007/06/05
- Re: [Jailkit-users] SuSE problem, Steve Follmer, 2007/06/05
- Re: [Jailkit-users] SuSE problem, Olivier Sessink, 2007/06/05
- Re: [Jailkit-users] SuSE problem,
Steve Follmer <=
- Re: [Jailkit-users] SuSE problem, Olivier Sessink, 2007/06/05
- Re: [Jailkit-users] SuSE problem, Steve Follmer, 2007/06/05
- Re: [Jailkit-users] SuSE problem, Olivier Sessink, 2007/06/06
- Re: [Jailkit-users] SuSE problem, Steve Follmer, 2007/06/06
- Re: [Jailkit-users] SuSE problem, Olivier Sessink, 2007/06/06
- Re: [Jailkit-users] SuSE problem, Steve Follmer, 2007/06/06
- [Jailkit-users] SuSE QA, Steve Follmer, 2007/06/07
- Re: [Jailkit-users] SuSE problem, Olivier Sessink, 2007/06/07