Skip to content

[docker-ptf]: Fix to set /run/sshd permission affecting 202405#22231

Merged
wangxin merged 1 commit intosonic-net:202405from
opcoder0:fix-docker-ptf-202405
Apr 8, 2025
Merged

[docker-ptf]: Fix to set /run/sshd permission affecting 202405#22231
wangxin merged 1 commit intosonic-net:202405from
opcoder0:fix-docker-ptf-202405

Conversation

@opcoder0
Copy link
Copy Markdown
Contributor

@opcoder0 opcoder0 commented Apr 4, 2025

Why I did it

The docker-ptf image built on 202405 release branch is created with a wrong permission for /run/sshd (/var/run/sshd) with value 0775. This fails to start sshd with the error below. Thus failing add-topo.

/run/sshd must be owned by root and not group or world-writable.

This PR fixes the permission to 0755 for /run/sshd (/var/run/sshd) in the docker-ptf image.

Work item tracking
  • Microsoft ADO (number only):

How I did it

Set permissions in sshd.conf supervisor config.

How to verify it

Local environment

Which release branch to backport (provide reason below if selected)

  • 201811
  • 201911
  • 202006
  • 202012
  • 202106
  • 202111
  • 202205
  • 202211
  • 202305

Tested branch (Please provide the tested image version)

  1. This fix only applicable to 202405 and not required for other branches.

Description for the changelog

[docker-ptf]: Fix to set /run/sshd permission affecting 202405

The docker-ptf image built on 202405 release branch is created with a wrong permission for /run/sshd (/var/run/sshd) with value 0775. This fails to start sshd with the error below. Thus failing add-topo.

/run/sshd must be owned by root and not group or world-writable.

This PR fixes the permission to 0755 for /run/sshd (/var/run/sshd) in the docker-ptf image.

Link to config_db schema for YANG module changes

NA

A picture of a cute animal (not mandatory but encouraged)

NA

@opcoder0 opcoder0 requested a review from lguohan as a code owner April 4, 2025 02:21
@mssonicbld
Copy link
Copy Markdown
Collaborator

mssonicbld commented Apr 4, 2025

/azp run Azure.sonic-buildimage

@azure-pipelines
Copy link
Copy Markdown

azure-pipelines bot commented Apr 4, 2025

Azure Pipelines successfully started running 1 pipeline(s).

@opcoder0 opcoder0 requested a review from wangxin April 4, 2025 02:24
@wangxin wangxin merged commit 3ec660c into sonic-net:202405 Apr 8, 2025
18 checks passed
patrickmacarthur pushed a commit to patrickmacarthur/sonic-buildimage that referenced this pull request Aug 6, 2025
@mssonicbld
[code sync] Merge code from sonic-net/sonic-buildimage:202405 to 2024…
31c84bc 
…05 (sonic-net#958)

```<br>* d5fd28c - (HEAD -> 202405) Merge branch '202405' of https://github.com/sonic-net/sonic-buildimage into 202405 (2025-04-11) [Sonic Automation]
* 3ec660c - (head/202405) [docker-ptf]: Fix to set /run/sshd permission affecting 202405 (sonic-net#22231) (2025-04-08) [Sai Kiran]
* 6fad19a - [submodule] Update submodule sonic-sairedis to the latest HEAD automatically (sonic-net#22215) (2025-04-06) [mssonicbld]
* 5b44167 - [202405] Update to Linux 6.1.123 (sonic-net#21924) (2025-04-04) [Saikrishna Arcot]
* ec07425 - [docker-ptf] Port changes from master (sonic-net#22181) (2025-04-02) [Sai Kiran]
* 0922b06 - [submodule] Update submodule sonic-swss to the latest HEAD automatically (sonic-net#22126) (2025-03-30) [mssonicbld]
* bd03187 - Adding default QoS configurations for Arista-7050CX3-32S-C28S4. (sonic-net#22141) (2025-03-26) [mssonicbld]<br>```
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wangxin wangxin wangxin approved these changes

@lguohan lguohan Awaiting requested review from lguohan lguohan is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@opcoder0 @mssonicbld @wangxin