Bug#784238: systemd: emergency.service restart leads to unusable system

[Michael Biebl]

control: severity -1 important

Am 04.05.2015 um 13:53 schrieb Bernd Zeimetz:
> control: severity -1 grave
> 
> On 05/04/2015 01:41 PM, Michael Biebl wrote:
>>> Restarting emergency.service (as done by needsrestart) within the
>>> emergency.service leads to a prompt for the root password to enter
>>> maintenance, but neither entering a valid password nor pressing ctrl+d
>>> results into a login shell.
>>
>> Why do you run needrestart in emergency mode?
> 
> that is not the question here.

It's important, since emergency mode is not meant to be used to install
packages. emergency mode is only supposed to be entered if something
fatal happened during boot.

> Restarting a service should not be broken, and having a completely
> unusable system which seems to be locked but it is not is clearly a
> security issue, and not being able to return away from this is a grave bug.
> 
> Actually one should discuss if a CVE number should be assigned here.

No, not really. What we probably should do is mark
emergency.service as
RefuseManualStart=yes
RefuseManualStop=yes
because restarting it is stupid and needrestart shouldn't do it.
It's like killing getty while you're logged in.


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20150504/ac1219d9/attachment-0002.sig>