Date:Wed, 9 Nov 2022 07:57:47 + (UTC)
From:RVP
Message-ID: <76af8c1a-297c-81dc-8b50-4df6b985d...@sdf.org>
| I don't use seteuid(), but, it looks like you can just re-swap the
| (uid, euid) in a child binary and regain the parent's privileges.
Yes, there's no
> I don't use seteuid(), but, it looks like you can just re-swap the
> (uid, euid) in a child binary and regain the parent's privileges.
Probably. What does that have to do with what I was after? In my
case, the process forks but does not exec; there is only one executable
involved.
I didn't ex
On Wed, 9 Nov 2022, Robert Elz wrote:
Yes, there's no question that setreuid() works.Mouse's issue was
that setreuid(2) (the man page) says "new code should not use this",
yet for what he wanted to achieve (nothing like your code example),
the supposed replacement method (relying upon saved user
i see (having synced the current NetBSD lib/libc/regex to Android) that
regcomp() no longer allows unescaped `{` and `}`. this is technically
correct (since POSIX explicitly calls this undefined behavior), but it's a
change from historical NetBSD behavior.
specifically (since this was the existing
