Makefile PORTREVISION bumped PLIST_SUB added (CONF_DIR) NOPORTSDOC -> NOPORTDOCS pkg-plist etc -> %%CONF_DIR%% share/doc/op -> %%DOCSDIR%% files/patch-main.c setuid misplaced (security fix) thx to cyrill@econ.krasnoyarsk.su for submitting this patch. Fix: take care, this patch is in two parts, the first one is a diff against /dev/null and the second one a cvs diff. How-To-Repeat: n/a
Responsible Changed From-To: freebsd-ports-bugs->osa I'll handle this.
State Changed From-To: open->closed Committed with little modifications, thanks!
One more patch: --- main.c.ORI Thu Sep 11 07:47:14 2003 +++ main.c Thu Sep 11 08:06:49 2003 @@ -460,6 +460,8 @@ for (cp=GetField(cp, str); cp!=NULL; cp=GetField(cp, str)) { if ((gr = getgrnam(str)) != NULL) gidset[ngroups++] = gr->gr_gid; + else + gidset[ngroups++] = atoi(str); } if (ngroups == 0) fatal("Unable to setgid to any group"); @@ -529,7 +531,7 @@ if ((pw = getpwnam(cp)) == NULL) { if (setuid(atoi(cp)) < 0) fatal("Unable to set uid to %s", cp); - } + } else if (setuid(pw->pw_uid) < 0) fatal("Unable to set uid to %s", cp); } The first part fixes numerical gids, the second one numerical uids. Without the second one, op dumps core when a numerical uid is specified. -Andre -- Failure is not an option -- it comes bundled with Windows.