kestrel socks # /etc/init.d/dante-sockd start Jun 1 17:36:17 (1117640177) sockd[0]: no such user "sockd" Jun 1 17:36:17 (1117640177) sockd[0]: sockdexit(): terminating * Something is wrong with your configuration file Excerpt from sockd.conf: " # when doing something that can require privilege, it will use the # userid "sockd". user.privileged: sockd # when running as usual, it will use the unprivileged userid of "sockd". user.notprivileged: sockd " If the sockd user is not intended to be used, then there is no notice in the example config file that gentoo actually doesn't make any sockd user. In such case I would suggest adding such a notice into the file. Reproducible: Always Steps to Reproduce: 1. 2. 3. kestrel socks # emerge info Portage 2.0.51.19 (default-linux/x86/2005.0, gcc-3.3.5-20050130, glibc-2.3.4.20041102-r1, 2.6.11-gentoo-r9 i686) ================================================================= System uname: 2.6.11-gentoo-r9 i686 Intel(R) Pentium(R) M processor 1.50GHz Gentoo Base System version 1.4.16 Python: dev-lang/python-2.3.5 [2.3.5 (#1, May 4 2005, 16:17:52)] dev-lang/python: 2.3.5 sys-apps/sandbox: [Not Present] sys-devel/autoconf: 2.59-r6, 2.13 sys-devel/automake: 1.7.9-r1, 1.8.5-r3, 1.5, 1.4_p6, 1.6.3, 1.9.4 sys-devel/binutils: 2.15.92.0.2-r7 sys-devel/libtool: 1.5.16 virtual/os-headers: 2.6.8.1-r2 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CFLAGS="-O2 -march=pentium3 -fomit-frame-pointer -pipe" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3.3/env /usr/kde/3.3/share/config /usr/kde/3.3/shutdown /usr/kde/3/share/config /usr/lib/X11/xkb /usr/lib/mozilla/defaults/pref /usr/share/config /usr/share/texmf/dvipdfm/config/ /usr/share/texmf/dvips/config/ /usr/share/texmf/tex/generic/config/ /usr/share/texmf/tex/platex/config/ /usr/share/texmf/xdvi/ /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d" CXXFLAGS="-O2 -march=pentium3 -fomit-frame-pointer -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="autoaddcvs autoconfig ccache distlocks sandbox sfperms strict" GENTOO_MIRRORS="http://distfiles.gentoo.org http://distro.ibiblio.org/pub/Linux/distributions/gentoo" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="x86 X alsa apm arts avi berkdb bitmap-fonts cdr crypt cups curl emboss encode esd fam foomaticdb fortran gdbm gif gpm gtk gtk2 guile imagemagick imap imlib ipv6 jack java jpeg kde ldap libg++ libwww mad mikmod motif mozilla mp3 mpeg mysql ncurses nls ogg oggvorbis opengl oss pam pdflib perl png python qt quicktime readline ruby samba sdl slang spell ssl svga tcltk tcpd tetex tiff tls truetype truetype-fonts type1-fonts vorbis xine xml2 xmms xv zlib userland_GNU kernel_linux elibc_glibc" Unset: ASFLAGS, CBUILD, CTARGET, LANG, LC_ALL, LDFLAGS, LINGUAS, PORTDIR_OVERLAY
first of all, the sockd.conf you are talking about is just an example found in /usr/share/doc, so this bug is as invalid as it could be. however, it's true that dante ebuild should install default configuration files, even if we cannot install a sockd.conf which will enable running dante-sockd without user intervention on it. therefore, I've submittet the -r2 in which such files are installed.
Sorry to reopen, but this breaks 'emerge -e system' on fresh Gentoo install with USE="socks5" - dante is being emerged before shadow and therefore 'useradd' is not available. See Bug 95493. # USE="socks5" emerge -epv system <snip> [ebuild N ] net-proxy/dante-1.1.15-r1 -debug +pam (-selinux) +tcpd 819 kB [ebuild N ] net-misc/wget-1.9.1-r5 -build -debug -ipv6 +nls +socks5* +ssl -static 0 kB [ebuild N ] sys-apps/sysvinit-2.86 -bootstrap -build (-selinux) 0 kB ... [ebuild N ] sys-apps/pam-login-3.14 -livecd +nls (-selinux) 0 kB [ebuild N ] sys-apps/shadow-4.0.5-r3 -debug +nls +pam (-selinux) -skey 0 kB </snip>
In my opinion, eutils.eclass should be fixed by adding sys-apps/shadow to its DEPEND. But before I'll fix that, I need to talk with azarah or vapier about this.
Fixed eutils side.
fixed by adding sys-apps/shadow to eutils.eclass dependencies
We cannot add shadow to eutils's depend, as that breaks 'emerge system' (pulls in shadow, and thus also pam-login before pam). I am pretty sure there should already be a useradd present in stage1, else reopen and we need to do another fix.
PS, bug #96209.
Ok, aparently useradd is not in stage1 :/
there is nothing that can be done by net-proxy herd. pls reassign the bug.
Ok, it seems like it should be fine to add shadow to dante's DEPEND.
why not adding sockd user in stage tarballs?
Only people that install dante need it?
Yes, it is true (more exactly, only people who want to run the SOCKS server really need it). However, net-proxy/squid also has its own entry in the initial /etc/passwd... and only squid users need it. IMO, a shadow dependency of the net-proxy/dante would be an abuse.
I've just commited the workaround for this bug. apparently we cannot fix that without adding shadow in dante's dependencies. please note that I'm still against it. eclasses should take care of their own dependencies.
