[Fedora-directory-devel] Please review: (200988) mod_admserv: use setresuid() in lieu of seteuid() on HP-UX

Richard Megginson rmeggins at redhat.com
Tue Aug 8 19:38:49 UTC 2006 

Ok.

Rob Crittenden wrote:
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=200988
> Bug(s) fixed: 200988
> Bug Description: mod_admserv: use setresuid() in lieu of seteuid() on 
> HP/ux
> Reviewed by: ???
> Files: See diff
> Branch: HEAD
> Fix Description: Per Ulf's suggestion, use SETEUID macro. apxs will 
> define -DHPUX11 on an HP/ux machine causing this code to be executed. 
> I also included a generic HPUX and HPUX10 for completeness. I've only 
> tested that it won't break FC, not that it works on HP/ux (but it 
> seems obvious that it will). Maybe we can get Ulf's help in testing...
> Platforms tested: FC4
> Flag Day: no
> Doc impact: no
> QA impact: no
> ------------------------------------------------------------------------
>
> Index: mod_admserv.c
> ===================================================================
> RCS file: /cvs/dirsec/mod_admserv/mod_admserv.c,v
> retrieving revision 1.26
> diff -u -r1.26 mod_admserv.c
> --- mod_admserv.c	17 Jul 2006 19:01:29 -0000	1.26
> +++ mod_admserv.c	8 Aug 2006 19:27:55 -0000
> @@ -65,6 +65,12 @@
>  
>  #include "mod_admserv.h"
>  
> +#if defined(HPUX) || defined(HPUX10) || defined(HPUX11)
> +#define SETEUID(id) setresuid((uid_t) -1, id, (uid_t) -1)
> +#else
> +#define SETEUID(id) seteuid(id)
> +#endif
> +
>  /*
>   * These are keys for items we store in r->notes to pass data from one stage
>   * in the request to another.  They must be unique.  If necessary, prefix
> @@ -2031,7 +2037,7 @@
>  #ifdef CHANGE_EUID
>      /* make sure pset creates the cache file owned by the server uid, not root */
>      if (geteuid() == 0) {
> -        seteuid(unixd_config.user_id);
> +        SETEUID(unixd_config.user_id);
>          reseteuid = 1;
>      }
>  #endif /* CHANGE_EUID */
> @@ -2044,7 +2050,7 @@
>  
>  #ifdef CHANGE_EUID
>      if (reseteuid) {
> -        seteuid(0);
> +        SETEUID(0);
>      }
>  #endif /* CHANGE_EUID */
>  
>   
> ------------------------------------------------------------------------
>
> --
> Fedora-directory-devel mailing list
> Fedora-directory-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-devel
>   
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3178 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-devel/attachments/20060808/00452f8c/attachment.bin>

More information about the Fedora-directory-devel mailing list