Date: Mon, 21 Jan 2019 02:58:07 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 235096] [patch] usr.bin/write broken capabilities checking Message-ID: <bug-235096-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D235096 Bug ID: 235096 Summary: [patch] usr.bin/write broken capabilities checking Product: Base System Version: 12.0-STABLE Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: bin Assignee: bugs@FreeBSD.org Reporter: fullermd@over-yonder.net Created attachment 201301 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D201301&action= =3Dedit patch In r306761 when write(1) was capsicumized, a call to setutxent() was added = to load up the utx db before entering capabilities mode. However, the other setutxent() calls in later functions were left in place, so the actual getutx*() calls would still fail, making write unable to find any users. -CURRENT presumably needs a similar patch. Attach patch applies cleanly to -CURRENT, but I've only tested on stable/12. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-235096-227>