From owner-freebsd-ports  Fri Feb  1 14:55:54 2002
Delivered-To: freebsd-ports@freebsd.org
Received: from mailgate.rz.uni-karlsruhe.de (mailgate.rz.uni-karlsruhe.de [129.13.64.97])
	by hub.freebsd.org (Postfix) with ESMTP id BFEE937B400
	for <ports@freebsd.org>; Fri,  1 Feb 2002 14:55:48 -0800 (PST)
Received: from wn4-marvin.wn4.uni-karlsruhe.de (qmailr@wn4-marvin.wn4.uni-karlsruhe.de [172.20.12.211])
	by mailgate.rz.uni-karlsruhe.de with smtp (Exim 3.33 #1)
	id 16Wmax-0003ne-00; Fri, 01 Feb 2002 23:55:47 +0100
Received: (qmail 64451 invoked by uid 1000); 1 Feb 2002 22:58:20 -0000
Date: Fri, 1 Feb 2002 23:58:20 +0100
From: Benedikt Schmidt <ry102@rz.uni-karlsruhe.de>
To: "Thomas E. Zander" <riggs@hadiko.de>
Cc: ports@freebsd.org
Subject: Re: gnupg insecure memory
Message-ID: <20020201225820.GA64361@wn4-marvin.wn4.uni-karlsruhe.de>
References: <20020131110513.GE46820@f113.hadiko.de> <20020131111203.A15F63FC05@energyhq.homeip.net> <20020131112001.GF46820@f113.hadiko.de> <20020131185306.A79863@graf.pompo.net> <20020131192316.GA46654@voi.aagh.net> <62348859333.20020201130554@xs4all.nl> <20020201125244.GA59129@f113.hadiko.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20020201125244.GA59129@f113.hadiko.de>
User-Agent: Mutt/1.3.24i
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-ports.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-ports>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-ports>
X-Loop: FreeBSD.org

Thomas E. Zander <riggs@hadiko.de> wrote:
> On Fri, 01. Feb 2002, at 13:05 +0100, Dimitry Andric wrote
> according to [Re: gnupg insecure memory]:
> 
> > On 1/31/2002 at 20:23:16 Thomas Hurst wrote:
> > 
> > TH> It's fine here on -PRERELEASE as of about 40 days ago.
> > 
> > I have no idea why it did work on -PRERELEASE. Maybe the super-user
> > requirement was just added to mlock(2) recently?
> 
> In my first mail I explicitly made clear that the mlock() problem of
> gpg is affected to the super-user, too (in 4.5-R).

Can't reproduce the problem on a fresh 4.5-STABLE. The 'using insecure
memory!' warning only appears when running gpg as user without the SUID
bit set.

strace when running gpg as root or user with SUID:
...
mlock(0x281a0000, 0x4000)               = 0
...

and as user without SUID:
...
mlock(0x281a0000, 0x4000)               = -1 EPERM (Operation not permitted)
...

-- 
Regards, Benedikt

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message