From owner-freebsd-stable@FreeBSD.ORG  Sat Jan 14 09:06:34 2012
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A68C9106564A
	for <freebsd-stable@freebsd.org>; Sat, 14 Jan 2012 09:06:34 +0000 (UTC)
	(envelope-from andrej@antiszoc.hu)
Received: from mail.deployis.eu (mail.deployis.eu [217.20.135.253])
	by mx1.freebsd.org (Postfix) with ESMTP id 36E218FC08
	for <freebsd-stable@freebsd.org>; Sat, 14 Jan 2012 09:06:33 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=antiszoc.hu;
	s=default; 
	h=Message-ID:Subject:To:From:Date:Content-Transfer-Encoding:Content-Type:MIME-Version;
	bh=XtT1ZN7c5hReAkm6Qc8Y79rx1Uji7IY7yspC5KKkjZ8=; 
	b=L3oJJhR9LDRbLUn9nxzDct5EoO0f4TaKlalLI04csvN2Igkvkc7iIqw2xH90oZLnmaFo6hUGBvgM3pzRXq+voleCX3JbIG/jTdGTpdpBWLpwVRv4oPryev+3WRZEzLzP;
Authentication-Results: mail.deployis.eu dkim=none
Received: from localhost ([127.0.0.1]:48446 helo=mail.deployis.eu)
	by mail.deployis.eu with esmtp (Exim 4.71 #1 (Debian))
	id 1RlzZI-00015v-Ra from <andrej@antiszoc.hu>
	for <freebsd-stable@freebsd.org>; Sat, 14 Jan 2012 10:06:33 +0100
Received: from pool-232-246.ippark.hu ([31.223.232.246]) by mail.deployis.eu
	with HTTP (HTTP/1.1 POST); Sat, 14 Jan 2012 10:06:32 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8;
 format=flowed
Content-Transfer-Encoding: 7bit
Date: Sat, 14 Jan 2012 10:06:32 +0100
From: =?UTF-8?Q?G=C3=B3t_Andr=C3=A1s?= <andrej@antiszoc.hu>
To: <freebsd-stable@freebsd.org>
Message-ID: <81da2610d448f8f48b2cdbf6f4aa0045@antiszoc.hu>
X-Sender: andrej@antiszoc.hu
User-Agent: RoundCube Webmail/0.2.1
X-Mail-Status-postahivatal: trustedmail (from 127.0.0.1)
X-Spam-Score-postahivatal: -43
Subject: PHP-gnupg in jail - apache and tty
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Jan 2012 09:06:34 -0000

Hello,

Currently I'm facing a wierd problem. I should have an environment in a 
jail where a PHP script (with pecl-gnupg) is able to sign messages with 
PGP. However it turned out, that PGP needs a tty in the jail, which is 
available if I use tmux or ssh login to the jail and signing from shell 
works. From the apache-php side, I got a "data signing failed" and 
nothing more useful. Of course I tried ktrace, but I couldn't find 
anything useful. I know that Apache should have a real login shell if 
php-gnupg is used, so it has one. (Yes I know it's bad, but it's a 
dedicated environment for this web application only.)

On Linux I could do a tty with mknod in a chroot and signing worked 
with php-gnupg.

Anyone has any idea to start with?

Thanks,
Andras