Bug 29499

Summary:

it is not possible to send creditionals and descriptors in one message through AF_UNIX socket

Product:

Base System

Reporter:

vova <vova>

Component:

kern

Assignee:

dwmalone

Status:

Closed FIXED

Severity:

Affects Only Me

Priority:

Normal

Version:

4.3-RELEASE

Hardware:

Any

OS:

Any

Attachments:

Description	Flags
file.diff	none

Description vova 2001-08-07 16:30:05 UTC

When special message is send with regular data through unix domain socket it
is possible to transfer onle one special message a time (creditionals or file
descriptors), but not possible to send both,
there is CMSG_NXTHDR macro to get next special message.

Fix: There is very ugly patch (it can lead to fd-leak)

patch assumes sizeof(int) == sizeof(struct file *), that in general not
right.

How-To-Repeat: 
Simple code that allows don't use setuids at all located here
http://pm.kmost.express.ru/~pm/nosuid.tgz
without patch it will not work under freebsd, but will work under linux if
use macro CMSG_NXTHDR from freebsd.

Comment 1 dwmalone freebsd_committer

2001-08-07 16:59:45 UTC

Responsible Changed
From-To: freebsd-bugs->dwmalone

I have a large patch set in this area. Maybe you could take a look at 
it for me and see what you think. It also aims to clean up several 
other problems with control messages and unix domain sockets. 

You can find the patch and a short message explaining it at: 

fetch http://www.maths.tcd.ie/~dwmalone/unix-domain-patch 

Any feedback is welcome.

Comment 2 dwmalone freebsd_committer

2002-12-01 21:42:40 UTC

State Changed
From-To: open->closed

This has been fixed in -current and is unlikely to be fixed in -stable 
this late in its lifetime.