From owner-freebsd-security  Wed Apr 19 15:03:59 1995
Return-Path: security-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id PAA00845
          for security-outgoing; Wed, 19 Apr 1995 15:03:59 -0700
Received: from ibp.ibp.fr (ibp.ibp.fr [132.227.60.30])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id PAA00829
          ; Wed, 19 Apr 1995 15:03:49 -0700
Received: from blaise.ibp.fr (blaise.ibp.fr [132.227.60.1])
	by ibp.ibp.fr (8.6.12/jtpda-5.0) with ESMTP id AAA07905
	; Thu, 20 Apr 1995 00:03:40 +0200
Received: from (roberto@localhost)
	by blaise.ibp.fr (8.6.12/jtpda-5.0) id AAA29578
	; Thu, 20 Apr 1995 00:03:39 +0200
From: roberto@blaise.ibp.fr (Ollivier Robert)
Message-Id: <199504192203.AAA29578@blaise.ibp.fr>
Subject: Re: Call for remove setr[ug]id() and setre[ug]id() from libc
To: ache@astral.msk.su (Andrey A. Chernov, Black Mage)
Date: Thu, 20 Apr 1995 00:03:39 +0200 (MET DST)
Cc: arch@FreeBSD.org, core@FreeBSD.org, security@FreeBSD.org
In-Reply-To: <OH5bMbl8U5@astral.msk.su> from "Andrey A. Chernov, Black Mage" at Apr 19, 95 11:49:25 pm
X-Operating-System: FreeBSD 2.0.950416-SNAP ctm#562
X-Mailer: ELM [version 2.4 PL23beta2]
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Content-Length: 989       
Sender: security-owner@FreeBSD.org
Precedence: bulk

> Those fuctions never sets real [ug]id which strongly confuse
> programs which expect it to do. I.e. most autoconf scripts
> find them into library and suppose them to work.
> Moreover under some circumstanes they even return 0 instead
> of -1, i.e. mimics to working right. There is more backdoors:
> saved[ug]id = get[ug]id() is static variable which is
> set on first call to setre[ug]id(). It is very depends _where_
> you call it for first time.

We should implement them correctly in order to achieve POSIX saved uids
compatibility and compatibility with the rest of UNIX...

More, if you remove them from libc we should bump the *major* version
number of libc...

> I vote for removing this fuctions completely from library
> sources, it is only one safe variant, if we can't implement
> them in 100%.

I think we can make them work.
-- 
Ollivier ROBERT     -=- The daemon is FREE! -=-     roberto@FreeBSD.ORG
  FreeBSD keltia 2.0.950416-SNAP #17: Sun Apr 16 17:12:07 MET DST 1995