[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1103522: marked as done (openssh-client: ssh-agent socket created in an unpredictable path)

Your message dated Fri, 09 May 2025 09:34:55 +0000
with message-id <E1uDK87-0072Rb-Ug@fasolo.debian.org>
and subject line Bug#1103522: fixed in openssh 1:10.0p1-4
has caused the Debian Bug report #1103522,
regarding openssh-client: ssh-agent socket created in an unpredictable path
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
1103522: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103522
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: openssh-client
Version: 1:10.0p1-2
Severity: important

Since the 1:10.0p1-1 → 1:10.0p1-2 upgrade, the user socket for ssh-agent
is no longer created in ${XDG_RUNTIME_DIR}/openssh_agent, but at an
unpredictable path under /tmp.

As an example, here is what it currently uses on my system:
/tmp/ssh-EwtbKB5qzA6k/agent.3932465
(the path changes each time the ssh-agent user service is restarted)

This breaks the use of commands like ssh-add, as they can no longer find
the socket.

This is most probably related to the fix for the following bug reports:
- https://bugs.debian.org/961311
- https://bugs.debian.org/1039919
- https://bugs.debian.org/1103037

For now it can be worked around by downgrading openssh-client
to the Trixie version (1:9.9p2-2), and open the socket with:
/usr/lib/openssh/agent-launch start

-- System Information:
Debian Release: trixie/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 'stable-debug'), (500, 'oldstable-debug'), (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (1, 'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 6.12.17-amd64 (SMP w/8 CPU threads; PREEMPT)
Kernel taint flags: TAINT_WARN
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages openssh-client depends on:
ii  adduser              3.150
ii  init-system-helpers  1.68
ii  libc6                2.41-7
ii  libedit2             3.1-20250104-1
ii  libfido2-1           1.15.0-1+b1
ii  libgssapi-krb5-2     1.21.3-5
ii  libselinux1          3.8.1-1
ii  libssl3t64           3.5.0-1
ii  passwd               1:4.17.4-1
ii  zlib1g               1:1.3.dfsg+really1.3.1-1+b1

Versions of packages openssh-client recommends:
ii  xauth  1:1.1.2-1.1

Versions of packages openssh-client suggests:
pn  keychain      <none>
pn  libpam-ssh    <none>
pn  monkeysphere  <none>
pn  ssh-askpass   <none>

-- no debconf information

--- End Message ---
--- Begin Message --- 
Source: openssh
Source-Version: 1:10.0p1-4
Done: Colin Watson <cjwatson@debian.org>

We believe that the bug you reported is fixed in the latest version of
openssh, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1103522@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Colin Watson <cjwatson@debian.org> (supplier of updated openssh package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 09 May 2025 10:16:45 +0100
Source: openssh
Architecture: source
Version: 1:10.0p1-4
Distribution: unstable
Urgency: medium
Maintainer: Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
Closes: 1103522
Changes:
 openssh (1:10.0p1-4) unstable; urgency=medium
 .
   [ Daniel Kahn Gillmor ]
   * Add Requires=ssh-agent.socket to ssh-agent.service (closes: #1103522).
Checksums-Sha1:
 ce101a1708116a2b132c4b5ee2481ff8cc5d1857 3500 openssh_10.0p1-4.dsc
 ec3cea4a3c7fbbf1ccc12473655beb0b3cdb15e7 198288 openssh_10.0p1-4.debian.tar.xz
Checksums-Sha256:
 663817b48443243ca4c2aadf9d09409d8b28361c66ffcb2ac14e23dd03fbfec8 3500 openssh_10.0p1-4.dsc
 1df25267a294b906af3cdfb26095e765933474633174afedc6a1d9261508bf5b 198288 openssh_10.0p1-4.debian.tar.xz
Files:
 b171e08af937fffb6b8353fe52412d00 3500 net standard openssh_10.0p1-4.dsc
 626b3eaa9a8574b873c01a8a7c640669 198288 net standard openssh_10.0p1-4.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=1mIs
-----END PGP SIGNATURE-----

Attachment: pgpj_3lmQlWir.pgp
Description: PGP signature


--- End Message ---
Reply to: