diff options
| author | Sergey Bugaev <bugaevc@gmail.com> | 2021-05-29 17:32:13 +0300 |
|---|---|---|
| committer | Samuel Thibault <samuel.thibault@ens-lyon.org> | 2022-08-10 22:14:28 +0200 |
| commit | 386d55dd471accafea06502c74e67de0ceb3351d (patch) | |
| tree | eb1f8bc977958f536491be750e06aca7ddbdc9d7 /proc/mgt.c | |
| parent | 865e37787d2331d2d5b18a8cfaa31ba7bec9f71b (diff) | |
| download | hurd-386d55dd471accafea06502c74e67de0ceb3351d.tar.gz hurd-386d55dd471accafea06502c74e67de0ceb3351d.tar.bz2 hurd-386d55dd471accafea06502c74e67de0ceb3351d.zip | |
libfshelp: Handle proc port in fshelp_start_translator_long ()
While fshelp_start_translator_long () has been calling proc_setowner () on the
task it creates, it has never reauthenticated its process. This meant that the
translator, once started, could access processes authenticated same as the
process that called fshelp_start_translator_long (). In particular, this means
that any unprivileged translator started by a privileged parent translator had
in fact had a privileged proc port, and could access other processes through
it.
With this change, fshelp_start_translator_long () will now reauthenticate the
process it creates. Moreover, it will now respect a custom proc server port
passed in the given ports.
Diffstat (limited to 'proc/mgt.c')
0 files changed, 0 insertions, 0 deletions