我按照此处的官方文档在 CentOS 8 系统上安装了 daemontools-0.76:http://cr.yp.to/daemontools.html。
然后,我创建了一个测试服务符号链接,/service/test其中包含一个将文本回显到 stdout 的简单run文件(尽可能简单)。测试文件夹和运行文件都具有 755 权限。
run文件:
#!/bin/sh
echo "test"
当然,文件可以手动执行,我甚至可以运行/command/supervise /service/test,服务也可以按预期运行。我可以svc -u/-d <service>通过主管使用它来启动/停止。
但是,当我运行时/command/svscan /service出现以下错误:
svscan: warning: unable to start supervise test: permission denied
我还没有找到任何线索来表明这里哪些权限存在冲突。我尝试过的方法:
- 文件
test/supervise夹存在(supervise手动运行时创建)和删除此文件夹(即从头开始启动服务);两种方式结果相同(注意:supervise当我尝试启动时没有运行svscan,虽然我也尝试过在后台运行它,但出现了同样的错误) - 已验证命令本身的权限 (755)(在 下
/package/admin/daemontools-0.76/command/) - 已验证所有文件夹(/command、/service、/package 和服务文件夹)的权限 (755)
- 我认为,也许因为
/tmp已安装,noexec如果有任何东西试图使用此目录,那么这可能是一个问题,但我在安装后重试,exec但没有帮助 - 我认为这
strace可能会有帮助,但似乎没有任何我未经训练的眼睛可以看到的问题:
execve("/usr/local/bin/svscan", ["svscan", "/service"], 0x7ffc7385cfe8 /* 21 vars */) = 0
brk(NULL) = 0x1eab000
arch_prctl(0x3001 /* ARCH_??? */, 0x7fff479dd530) = -1 EINVAL (Invalid argument)
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
openat(AT_FDCWD, "/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3
fstat(3, {st_mode=S_IFREG|0644, st_size=34379, ...}) = 0
mmap(NULL, 34379, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f7af1b35000
close(3) = 0
openat(AT_FDCWD, "/lib64/libc.so.6", O_RDONLY|O_CLOEXEC) = 3
read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\2607\2\0\0\0\0\0"..., 832) = 832
fstat(3, {st_mode=S_IFREG|0755, st_size=4176104, ...}) = 0
mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7af1b33000
mmap(NULL, 3938144, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x7f7af1554000
mprotect(0x7f7af170d000, 2093056, PROT_NONE) = 0
mmap(0x7f7af190c000, 24576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1b8000) = 0x7f7af190c000 mmap(0x7f7af1912000, 14176, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x7f7af1912000
close(3) = 0
arch_prctl(ARCH_SET_FS, 0x7f7af1b34500) = 0
mprotect(0x7f7af190c000, 16384, PROT_READ) = 0
mprotect(0x603000, 4096, PROT_READ) = 0
mprotect(0x7f7af1b3e000, 4096, PROT_READ) = 0
munmap(0x7f7af1b35000, 34379) = 0
chdir("/service") = 0
wait4(-1, 0x7fff479dd4fc, WNOHANG, NULL) = -1 ECHILD (No child processes)
openat(AT_FDCWD, ".", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
brk(NULL) = 0x1eab000
brk(0x1ecc000) = 0x1ecc000
brk(NULL) = 0x1ecc000
getdents64(3, /* 3 entries */, 32768) = 72
stat("test", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
stat("test/log", 0x7fff479dd430) = -1 ENOENT (No such file or directory)
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x7f7af1b347d0) = 2884
getdents64(3, /* 0 entries */, 32768) = 0
close(3) = 0
nanosleep({tv_sec=5, tv_nsec=0}, svscan: warning: unable to start supervise test: permission denied
有什么想法吗?
编辑:我刚刚在 CentOS 7 机器上尝试了这些完全相同的步骤,并且运行正常。也许是代码库中 glibc 调用与更高版本(2.17 与 2.28)不兼容的问题?