Your message dated Sun, 19 May 2019 12:18:26 +0000
with message-id <[email protected]>
and subject line Bug#928877: fixed in dbus 1.12.14-1
has caused the Debian Bug report #928877,
regarding dbus: some system services' fd limits not reset with systemd >= 240
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
928877: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928877
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: dbus
Version: 1.12.12-1
Severity: important
Tags: upstream fixed-upstream
Forwarded: https://gitlab.freedesktop.org/dbus/dbus/merge_requests/103
The system dbus-daemon currently sets its hard and soft RLIMIT_NOFILE
to 64K, with the intention of changing back to the rlimits with which
it was invoked when it carries out traditional system service activation
(without SystemdService). In stretch this worked fine, because dbus-daemon
was typically invoked with RLIMIT_NOFILE set to 1K (soft)/4K (hard), and
reducing limits from 64K/64K back to 1K/4K does not require privileges.
However, systemd since v240 invokes system services like dbus-daemon with
RLIMIT_NOFILE set to 1K (soft)/512K (hard)[1]. This means dbus-daemon, which
does not retain CAP_SYS_RESOURCE when it drops privileges, cannot restore
the original rlimit (because the hard limit in its original rlimit was
higher than the hard limit it is running with). This causes dbus-daemon to
log a warning and run system services with the same rlimits that
dbus-daemon itself has.
The result is that some system services are invoked with a
higher-than-intended soft limit (which might break buggy services that
assume they can select() on all fds below their soft limit, which were
the justification for systemd 240 keeping a relatively low soft limit),
and with a lower-than-intended hard limit (which might break services
that want to increase their soft limit so they can have lots of fds
open). It also results in dbus-daemon logging a warning for every
traditional activation, causing unnecessary noise in syslog.
This is already fixed in upstream git by a change that makes a privileged
dbus-daemon set its own hard and soft RLIMIT_NOFILE to
MIN(64K, its current hard limit) before dropping privileges, with the
result that dbus-daemon runs with RLIMIT_NOFILE set to 512K, and going
back to 1K (soft)/512K (hard) for traditional activation does not require
exercising CAP_SYS_RESOURCE. At the time I wrote that change I thought it
was an enhancement rather than a regression fix.
Now that I know this is a regression fix, I'm intending to release a
fixed version of dbus next week.
smcv
[1] On some systems, such as my laptop, an interaction that I don't fully
understand between systemd and pam_limits results in the hard
limit being even higher: 1M instead of 512K. On those systems,
every mention of 512K in this bug report becomes 1M, but everything
else remains true.
--- End Message ---
--- Begin Message ---
Source: dbus
Source-Version: 1.12.14-1
We believe that the bug you reported is fixed in the latest version of
dbus, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Simon McVittie <[email protected]> (supplier of updated dbus package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 18 May 2019 17:37:08 +0100
Source: dbus
Architecture: source
Version: 1.12.14-1
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team
<[email protected]>
Changed-By: Simon McVittie <[email protected]>
Closes: 928877
Changes:
dbus (1.12.14-1) unstable; urgency=medium
.
* New upstream release
- Improve fd limit handling so that system services launched by
traditional activation get the intended limit (Closes: #928877)
* d/rules, d/tests: Run automated tests with DBUS_TEST_MALLOC_FAILURES=0.
Testing the code paths for memory allocation failures is too slow
to do routinely as a downstream.
* d/tests/system-bus: Add a smoke-test for traditional activation,
and a smoke-test for systemd activation on systems booted with systemd.
Checksums-Sha1:
e1ab6dc31ff6b7d0f66f6e79152df8c6cd00036b 3752 dbus_1.12.14-1.dsc
2b467bf0fcaed883343e291f4a4e7f8c2ff5e0ef 2091526 dbus_1.12.14.orig.tar.gz
c05e9170fcef1de2fabbc0b749b566e3e047faae 833 dbus_1.12.14.orig.tar.gz.asc
fccc13a9cc306bcc365f3b817bd69473d765030c 63884 dbus_1.12.14-1.debian.tar.xz
85839fae5e33e7dd23159e4c6cf0ad43c2832622 7062 dbus_1.12.14-1_source.buildinfo
Checksums-Sha256:
670cb290e703f657e763e2b41770eeab78ee134e41339df307f424c19ccd1703 3752
dbus_1.12.14-1.dsc
44f9c290ae8f6cadeb2c329316c03716f171ce10daddd85c0bffd0f7df514c8d 2091526
dbus_1.12.14.orig.tar.gz
5a6b8d987e095b4e1cd4331e1dec397ac6c3914c882519efa2b4109e74ea3af7 833
dbus_1.12.14.orig.tar.gz.asc
9477cac87f4cbf6712aa720f979d6c431f3294aa492bc3bcfb02271c30f045d0 63884
dbus_1.12.14-1.debian.tar.xz
3c27e8e5a3bd376628998236e8a3d1b0ead45cf7bf1fe47f3036a539fc16f53a 7062
dbus_1.12.14-1_source.buildinfo
Files:
5114ee1e1ff84de68a883ae2685b17f1 3752 admin optional dbus_1.12.14-1.dsc
9e748b8c50dae17ae639f1c55ae6417d 2091526 admin optional
dbus_1.12.14.orig.tar.gz
df41776c83b43e02d702250ba2218a60 833 admin optional
dbus_1.12.14.orig.tar.gz.asc
9bfd256fe72ae8c7ef5bc396325f4202 63884 admin optional
dbus_1.12.14-1.debian.tar.xz
55e8947140425f9dffb6c2becb7822c5 7062 admin optional
dbus_1.12.14-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=NyHP
-----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________
Pkg-utopia-maintainers mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-utopia-maintainers
