-
- Downloads
Make ControlSocketsGroupWritable work with User.
Original message from bug3393: check_private_dir() to ensure that ControlSocketsGroupWritable is safe to use. Unfortunately, check_private_dir() only checks against the currently running user… which can be root until privileges are dropped to the user and group configured by the User config option. The attached patch fixes the issue by adding a new effective_user argument to check_private_dir() and updating the callers. It might not be the best way to fix the issue, but it did in my tests. (Code by lunar; changelog by nickm)
Showing
- src/common/util.c 26 additions, 7 deletionssrc/common/util.c
- src/common/util.h 2 additions, 1 deletionsrc/common/util.h
- src/or/config.c 4 additions, 2 deletionssrc/or/config.c
- src/or/connection.c 1 addition, 1 deletionsrc/or/connection.c
- src/or/geoip.c 3 additions, 3 deletionssrc/or/geoip.c
- src/or/rendservice.c 1 addition, 1 deletionsrc/or/rendservice.c
- src/or/rephist.c 2 additions, 2 deletionssrc/or/rephist.c
- src/or/router.c 2 additions, 2 deletionssrc/or/router.c
Loading
Please register or sign in to comment