Date: Mon, 21 Jan 2019 02:58:07 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 235096] [patch] usr.bin/write broken capabilities checking Message-ID: <bug-235096-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=235096 Bug ID: 235096 Summary: [patch] usr.bin/write broken capabilities checking Product: Base System Version: 12.0-STABLE Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: bin Assignee: bugs@FreeBSD.org Reporter: fullermd@over-yonder.net Created attachment 201301 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=201301&action=edit patch In r306761 when write(1) was capsicumized, a call to setutxent() was added to load up the utx db before entering capabilities mode. However, the other setutxent() calls in later functions were left in place, so the actual getutx*() calls would still fail, making write unable to find any users. -CURRENT presumably needs a similar patch. Attach patch applies cleanly to -CURRENT, but I've only tested on stable/12. -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-235096-227>