[Bugs] [Bug 369] Weird behaviour from getauxval with @paludis profile

bugzilla-daemon at exherbo.org bugzilla-daemon at exherbo.org
Tue Sep 24 01:50:50 UTC 2013


https://bugs.exherbo.org/show_bug.cgi?id=369

Marc-Antoine Perennou <Marc-Antoine at Perennou.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |Marc-Antoine at Perennou.com

--- Comment #2 from Marc-Antoine Perennou <Marc-Antoine at Perennou.com> ---
(In reply to Ali Polatel from comment #1)
> (In reply to Marc-Antoine Perennou from comment #0)
> > Lou ~ # /tmp/test-setgid.0J1Qxy 23                     
> > getauxval(23) == 1
> > Lou ~ # sydbox -c @paludis /tmp/test-setgid.0J1Qxy 23  
> > getauxval(23) == 0
> > Lou ~ # sydbox /tmp/test-setgid.0J1Qxy 23              
> > getauxval(23) == 1
> > 
> > This executable is generated by p11-kit 0.20.1 tests, it just calls the
> > function and prints its exist status. It has setgid on.
> > 
> > Currently tests fail because of this issue.
> 
> Here are a couple of questions which will help me reproduce:
> 
> * What is your version of sydbox? (if -scm, git commit ID please.)
> * What options have you compiled sydbox with? (especially interested in
> [seccomp])
> * What architecture?
> * What is the exact permissions of this file? (ls -la /tmp/test-setgid.*)
> * Is your user a member of the group which this file belongs to?
> 
> This is it for now.
> 
> (Note to self: 23 == AT_SECURE defined in <elf.h>)


paludisbuild at Lou ~ $ sydbox -v
sydbox-1.0.0_beta-cb9bcdb (pinktrace-1.0.0_beta git:cb9bcdb)
Options: seccomp:yes ipv6:yes netlink:yes

amd64

Actually, the result is slightly different when ran as paludisbuild, it returns
0 under sydbox even without paludis profile.

paludisbuild at Lou ~ $ /tmp/test-setgid.fFRD7R 23
getauxval(23) == 1
paludisbuild at Lou ~ $ sydbox /tmp/test-setgid.fFRD7R 23
getauxval(23) == 0
paludisbuild at Lou ~ $ sydbox -c @paludis /tmp/test-setgid.fFRD7R 23
getauxval(23) == 0
paludisbuild at Lou ~ $ ls -l /tmp/test-setgid.fFRD7R 
-rwxr-s--- 1 paludisbuild tty 11713 Sep 24 10:45 /tmp/test-setgid.fFRD7R

paludisbuild is in the tty group

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.exherbo.org/pipermail/bugs/attachments/20130924/d83711cf/attachment.html>


More information about the Bugs mailing list