Re: [PATCH] new setprocuid syscall

Petr Vandrovec (VANDROVE@vc.cvut.cz)
Tue, 20 Feb 2001 14:19:01 MET-1

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Stephen Tweedie: "Re: Comparing buffer cache algorithms on 2.2.17. Suggestions?"
Previous message: Eugene Danilchenko: "Re: unresloved symbols in 2.4.1"
Maybe in reply to: BERECZ Szabolcs: "[PATCH] new setprocuid syscall"
Next in thread: Bernd Jendrissek: "Re: [PATCH] new setprocuid syscall"

On 20 Feb 01 at 7:11, Peter Samuelson wrote:
> [Alan Cox]
> > There is an assumption in the kernel that only the task changes its
> > own uid and other related data.
>
> Fair enough but could you explain the potential problems? And how is
> it different from sys_setpriority?

Look at what fs/open.c:sys_access does, at least. It switches
fsuid/fsgid/capabilities during its execution.

sys_setpriority is completely different, no piece of kernel changes that
and nothing except schedule() touches that. But {,fs,e}[ug]id are used
here and there through whole kernel. Also, changing priority does not
remove some access rights from your process, while changing uid/gid does...
Petr Vandrovec
vandrove@vc.cvut.cz

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephen Tweedie: "Re: Comparing buffer cache algorithms on 2.2.17. Suggestions?"
Previous message: Eugene Danilchenko: "Re: unresloved symbols in 2.4.1"
Maybe in reply to: BERECZ Szabolcs: "[PATCH] new setprocuid syscall"
Next in thread: Bernd Jendrissek: "Re: [PATCH] new setprocuid syscall"