From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <guix-patches-bounces+larch=yhetil.org@gnu.org>
Received: from mp0 ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms11 with LMTPS
	id mARWCAoWrF6iVwAA0tVLHw
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 01 May 2020 12:28:58 +0000
Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp0 with LMTPS
	id WHGACxMWrF65fgAA1q6Kng
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Fri, 01 May 2020 12:29:07 +0000
Received: from lists.gnu.org (lists.gnu.org [IPv6:2001:470:142::17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id 03B899435B2
	for <larch@yhetil.org>; Fri,  1 May 2020 12:29:05 +0000 (UTC)
Received: from localhost ([::1]:51536 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <guix-patches-bounces+larch=yhetil.org@gnu.org>)
	id 1jUUmu-0001IT-KP
	for larch@yhetil.org; Fri, 01 May 2020 08:29:04 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:32800)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1jUUlc-0000iL-Ji
 for guix-patches@gnu.org; Fri, 01 May 2020 08:28:56 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.90_1)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1jUUj0-0001K7-Ki
 for guix-patches@gnu.org; Fri, 01 May 2020 08:27:44 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:36845)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1jUUiz-0001Ij-R6
 for guix-patches@gnu.org; Fri, 01 May 2020 08:25:01 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1jUUiz-0005UQ-Mi
 for guix-patches@gnu.org; Fri, 01 May 2020 08:25:01 -0400
X-Loop: help-debbugs@gnu.org
Subject: [bug#40922] gnu: udevil: Fix loading of setuid-programs.
Resent-From: Danny Milosavljevic <dannym@scratchpost.org>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: guix-patches@gnu.org
Resent-Date: Fri, 01 May 2020 12:25:01 +0000
Resent-Message-ID: <handler.40922.B40922.158833585121035@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 40922
X-GNU-PR-Package: guix-patches
X-GNU-PR-Keywords: 
To: Raghav Gururajan <raghavgururajan@disroot.org>
Cc: 40922@debbugs.gnu.org
Received: via spool by 40922-submit@debbugs.gnu.org id=B40922.158833585121035
 (code B ref 40922); Fri, 01 May 2020 12:25:01 +0000
Received: (at 40922) by debbugs.gnu.org; 1 May 2020 12:24:11 +0000
Received: from localhost ([127.0.0.1]:48391 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1jUUiA-0005TD-Mi
 for submit@debbugs.gnu.org; Fri, 01 May 2020 08:24:10 -0400
Received: from dd26836.kasserver.com ([85.13.145.193]:47244)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <dannym@scratchpost.org>) id 1jUUi8-0005T4-OC
 for 40922@debbugs.gnu.org; Fri, 01 May 2020 08:24:09 -0400
Received: from localhost (80-110-127-207.cgn.dynamic.surfer.at
 [80.110.127.207])
 by dd26836.kasserver.com (Postfix) with ESMTPSA id 00E0B3362C63;
 Fri,  1 May 2020 14:24:06 +0200 (CEST)
Date: Fri, 1 May 2020 14:24:05 +0200
From: Danny Milosavljevic <dannym@scratchpost.org>
Message-ID: <20200501142405.75821fbb@scratchpost.org>
In-Reply-To: <20200428025228.09935bde.raghavgururajan@disroot.org>
References: <20200428025228.09935bde.raghavgururajan@disroot.org>
X-Mailer: Claws Mail 3.17.5 (GTK+ 2.24.32; x86_64-unknown-linux-gnu)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="Sig_/mNlzVP66_MXoiScELKezExd";
 protocol="application/pgp-signature"; micalg=pgp-sha256
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-Received-From: 209.51.188.43
X-BeenThere: guix-patches@gnu.org
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-patches>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
 <mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+larch=yhetil.org@gnu.org
Sender: "Guix-patches" <guix-patches-bounces+larch=yhetil.org@gnu.org>
X-Scanner: scn0
X-Spam-Score: -1.11
Authentication-Results: aspmx1.migadu.com;
	dkim=none;
	dmarc=none;
	spf=pass (aspmx1.migadu.com: domain of guix-patches-bounces@gnu.org designates 2001:470:142::17 as permitted sender) smtp.mailfrom=guix-patches-bounces@gnu.org
X-Scan-Result: default: False [-1.11 / 13.00];
	 RCVD_VIA_SMTP_AUTH(0.00)[];
	 GENERIC_REPUTATION(0.00)[-0.49515717857684];
	 TO_DN_SOME(0.00)[];
	 R_SPF_ALLOW(-0.20)[+ip6:2001:470:142::/48:c];
	 IP_REPUTATION_HAM(0.00)[asn: 22989(0.16), country: US(-0.00), ip: 2001:470:142::17(-0.50)];
	 DWL_DNSWL_FAIL(0.00)[2001:470:142::17:server fail];
	 MX_GOOD(-0.50)[cached: eggs.gnu.org];
	 RCPT_COUNT_TWO(0.00)[2];
	 MAILLIST(-0.20)[mailman];
	 FORGED_RECIPIENTS_MAILLIST(0.00)[];
	 RECEIVED_SPAMHAUS_PBL(0.00)[80.110.127.207:received];
	 RCVD_TLS_LAST(0.00)[];
	 R_DKIM_NA(0.00)[];
	 ASN(0.00)[asn:22989, ipnet:2001:470:142::/48, country:US];
	 MID_RHS_MATCH_FROM(0.00)[];
	 TAGGED_FROM(0.00)[larch=yhetil.org];
	 ARC_NA(0.00)[];
	 FROM_NEQ_ENVFROM(0.00)[dannym@scratchpost.org,guix-patches-bounces@gnu.org];
	 FROM_HAS_DN(0.00)[];
	 URIBL_BLOCKED(0.00)[disroot.org:email];
	 MIME_GOOD(-0.20)[multipart/signed,text/plain];
	 MIME_TRACE(0.00)[0:+,1:+,2:~];
	 DMARC_NA(0.00)[scratchpost.org];
	 HAS_LIST_UNSUB(-0.01)[];
	 DNSWL_BLOCKED(0.00)[2001:470:142::17:from];
	 RCVD_COUNT_SEVEN(0.00)[9];
	 FORGED_SENDER_MAILLIST(0.00)[]
X-TUID: iVeuChlXxSRA

--Sig_/mNlzVP66_MXoiScELKezExd
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: quoted-printable

Hi Raghav,

On Tue, 28 Apr 2020 02:52:28 -0400
Raghav Gururajan <raghavgururajan@disroot.org> wrote:

> [1] Patched references to mount, umount, losetup and setfacl; as udevil
> expects these programs to have uid set as root.
> [2] Patched references to udevil; as udevil itself and devmon expects
> udevil to have uid set as root.

Why are both needed at the same time?  If udevil is setuid root, then the
other tools are invoked as root anyway, right?  Or does udevil drop root
privileges?  (short look into src/udevil.c suggests yes)

Is there a description from upstream how all that is supposed to work?

Remainder OK.

--Sig_/mNlzVP66_MXoiScELKezExd
Content-Type: application/pgp-signature
Content-Description: OpenPGP digital signature

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEds7GsXJ0tGXALbPZ5xo1VCwwuqUFAl6sFOUACgkQ5xo1VCww
uqV62Qf9EZr93902BNUtMkbZOwkfbDqzEZePsaKpFS36/s80NzPSlQz61Gv/Nuy6
eaf73ociQg6vWhxnOSGgGN2KUGeqBBSps4SW+ZlT35HLsKnTYV+eR9AYvXsyZbqa
8cqZ+Mx/TyuRF7jznEttmbPdziP+OWiDIRulg0GokW4Brob/WT8ZzHRGk5fNQVOK
fffrQrNxCm0uOoioOgKtKKZ/rznlyTZjqfTaW2LwfKOEIMI4RtBgc96CuJenCy+e
1Idl+CByl5tm3wDoYdK2fSNj8HUjy2NWxFquKclcSgVmH1HW3LWwTvyA//96Q7af
xOhp+FuvFNxCHa5LBsDjhf3mA7YG7Q==
=/LPD
-----END PGP SIGNATURE-----

--Sig_/mNlzVP66_MXoiScELKezExd--