[pkg-dhcp-devel] Bug#763013: closed by Thijs Kinkhorst <thijs at debian.org> (Re: isc-dhcp-client depends on /bin/bash, not /bin/sh)

Troy Benjegerdes troy at 7el.us
Sat Sep 27 14:20:52 UTC 2014


I will follow up with #763013, it's an obvious duplicate.

I had an unusable system after removing bash because of dhclient. Although
there is probably some other case where dhclient-script does not work correctly,
using /bin/sh instead got me an operational desktop system.

I find the risk of breakage over scripts that require /bin/bash is far easier
to manage than the risk of a new 0-day remote bash exploit worm.


On Sat, Sep 27, 2014 at 07:21:06AM +0000, Debian Bug Tracking System wrote:
> This is an automatic notification regarding your Bug report
> which was filed against the isc-dhcp-client package:
> 
> #763013: isc-dhcp-client depends on /bin/bash, not /bin/sh
> 
> It has been closed by Thijs Kinkhorst <thijs at debian.org>.
> 
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact Thijs Kinkhorst <thijs at debian.org> by
> replying to this email.
> 
> 
> -- 
> 763013: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=763013
> Debian Bug Tracking System
> Contact owner at bugs.debian.org with problems

> Date: Sat, 27 Sep 2014 09:17:47 +0200
> From: Thijs Kinkhorst <thijs at debian.org>
> To: 763013-done at bugs.debian.org
> Subject: Re: isc-dhcp-client depends on /bin/bash, not /bin/sh
> X-Spam-Status: No, score=-6.0 required=4.0 tests=BAYES_00,FROMDEVELOPER,
>  MURPHY_DRUGS_REL8,RCVD_IN_DNSWL_NONE autolearn=ham
>  version=3.3.2-bugs.debian.org_2005_01_02
> 
> Hi Troy,
> 
> > Severity: critical
> > Tags: patch
> > Justification: breaks the whole system
> 
> > Remove dependency on bash. Fixes ifup/ifdown with dhcp on unbashed-system.
> 
> This is not a critical bug since using bash does not 'break the whole system'.
> 
> The patch is also not correct because this script is marked /bin/bash for a 
> reason, because it's not fully posix compliant and therefore will not run with 
> just any /bin/sh.
> 
> It's a valid request for the script to be modified to change its interpreter, 
> it's already filed at #762923. Maybe you can help develop a tested patch for 
> that to move it forward.
> 
> 
> Cheers,
> Thijs

> Date: Sat, 27 Sep 2014 00:23:56 -0500
> From: Troy Benjegerdes <troy-debbugs at 7el.us>
> To: Debian Bug Tracking System <submit at bugs.debian.org>
> Subject: isc-dhcp-client depends on /bin/bash, not /bin/sh
> X-Spam-Status: No, score=-10.6 required=4.0
>  tests=BAYES_00,FOURLA,HAS_PACKAGE,
>  MURPHY_DRUGS_REL8,RCVD_IN_PBL,RCVD_IN_SORBS_DUL,RDNS_DYNAMIC,
>  XMAILER_REPORTBUG,X_DEBBUGS_CC autolearn=ham
>  version=3.3.2-bugs.debian.org_2005_01_02
> X-Mailer: reportbug 6.4.4
> 
> Package: isc-dhcp-client
> Version: 4.2.2.dfsg.1-5+deb70u6
> Severity: critical
> Tags: patch
> Justification: breaks the whole system
> 
> Remove dependency on bash. Fixes ifup/ifdown with dhcp on unbashed-system.
> 
> Also see bug 763012
> 
> --- dhclient-script.bad	2014-09-27 00:21:48.377145358 -0500
> +++ /sbin/dhclient-script	2014-09-27 00:15:31.508982652 -0500
> @@ -1,4 +1,4 @@
> -#!/bin/bash
> +#!/bin/sh
>  
>  # dhclient-script for Linux. Dan Halbert, March, 1997.
>  # Updated for Linux 2.[12] by Brian J. Murrell, January 1999.
> 
> 
> -- System Information:
> Debian Release: 7.6
>   APT prefers stable-updates
>   APT policy: (500, 'stable-updates'), (500, 'stable')
> Architecture: amd64 (x86_64)
> 
> Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> 
> Versions of packages isc-dhcp-client depends on:
> ii  debianutils      4.3.2
> ii  iproute          20120521-3+b3
> ii  isc-dhcp-common  4.2.2.dfsg.1-5+deb70u6
> ii  libc6            2.13-38+deb7u4
> 
> isc-dhcp-client recommends no packages.
> 
> Versions of packages isc-dhcp-client suggests:
> ii  avahi-autoipd  0.6.31-2
> pn  resolvconf     <none>
> 
> -- no debconf information


-- 
----------------------------------------------------------------------------
Troy Benjegerdes                                                 troy at 7el.us                  
7 elements      earth::water::air::fire::mind::spirit::soul        grid.coop

      Never pick a fight with someone who buys ink by the barrel,
         nor try buy a hacker who makes money by the megahash



More information about the pkg-dhcp-devel mailing list