hurd.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	Rename proc_complete_reauthentication to proc_reauthenticate_complete	Samuel Thibault	2022-08-10	1	-1/+1
\| \| \| \|	For coherency with the existing RPCs
*	Make proc_reauthenticate () recreate proc port	Sergey Bugaev	2022-08-10	1	-15/+17
\| \| \| \|	And add proc_complete_reauthentication ()
*	libshouldbeinlibc: Do not reauthenticate proc port when secure	Sergey Bugaev	2022-08-10	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	exec_reauth () is supposed to reauthenticate the given ports and file descriptors with a new authentication. If the secure flag is set, this reauthentication is happening for a future exec with the EXEC_SECURE flag. Now that the exec server uses proc_reauthenticate_reassign (), the process reauthentication is done atomically with task reassignment by the exec server. So stop doing it inside exec_reauth (). This fixes a vulnerability where a process was able to use its reauthenticated proc port before it got exec'ed over.
*	Fix spurious destroy during RPC to self with rendez-vous	Samuel Thibault	2012-09-22	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \|	In that case we have two receive right references, which we should consume one per one, instead of destroying them all at once (and thus fail on second destroy) http://lists.gnu.org/archive/html/bug-hurd/2011-03/msg00045.html * libfshelp/fetch-root.c (fshelp_fetch_root): Unreference rendez-vous port receive right instead of destroying the port. * libshouldbeinlibc/exec-reauth.c (exec_reauth): Likewise.
*	Address gcc warnings	Bob Ham	2012-06-30	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* exec-reauth.c (exec_reauth): Change type of temp var i to unsigned int to address gcc warning. * idvec-impgids.c (idvec_merge_implied_gids) Change type of temp var i to unsigned int to address gcc warning. * idvec-impgids.c (idvec_merge_implied_gids): Change type of temp var i to unsigned int to address gcc warning. * idvec-rep.c (idvec_rep): Change type of temp var i to unsigned int to address gcc warning. * idvec-verify (idvec_verify): Change type of temp var i to unsigned int to address gcc warning. * idvec.c (idvec_merge_ids, idvec_remove): Change type of temp var i to unsigned int to address gcc warning. * portxlate.c (port_name_xlator_create, port_name_xlator_free): Change type of temp var i to unsigned int to address gcc warning. * timefmt.c (fmt_seconds): Cast width to int in test to modify frac_places to address gcc warning. * (ugids_verify_make_auth): Change type of temp var i to unsigned int to address gcc warning.
*	2000-03-17 Thomas Bushnell, BSG <tb@mit.edu>	Thomas Bushnell	2000-03-17	1	-2/+4
\| \| \| \| \|	* exec-reauth.c (exec_reauth): Always destroy REF, even when we get errors.
*	Add braces to silence gcc warnings.	Roland McGrath	1998-10-20	1	-7/+9
\|
*	(exec_reauth): Use new args to auth_user_authenticate.	Michael I. Bushnell	1996-05-09	1	-3/+3
\|
*	(exec_reauth): Doc fix.	Miles Bader	1996-01-02	1	-4/+7
\|
*	Initial revision	Miles Bader	1996-01-02	1	-0/+101