git.ipfire.org Git - thirdparty/util-linux.git/commit

author	Max Kellermann <max.kellermann@ionos.com>
	Sat, 10 May 2025 20:26:50 +0000 (22:26 +0200)
committer	Max Kellermann <max.kellermann@ionos.com>
	Sat, 10 May 2025 20:37:19 +0000 (22:37 +0200)
commit	b36add06585acf77e1a50fc0d2c901a0129582a4
tree	6aa81064bcd29c2adff815738671e6ab8b9b5ba8	tree \| snapshot
parent	4e417332f4154acb0e7a12c775696eb561a405aa	commit \| diff

lib/env, ...: use getauxval(AT_SECURE) for SUID check

Comparing effective and real uid/gid is not a proper way to check for
SUID execution:

1. this does not consider file capabilities

2. this check breaks when NO_NEW_PRIVS is used as the Linux kernel
resets effective ids during execve(); this means the check is
false, but the process still has raised capabilities

For more details about the NO_NEW_PRIVS problem, check this post and
the surrounding thread:

https://lore.kernel.org/lkml/20250509184105.840928-1-max.kellermann@ionos.com/

Signed-off-by: Max Kellermann <max.kellermann@ionos.com>

include/debug.h		diff \| blob \| blame \| history
lib/env.c		diff \| blob \| blame \| history
libmount/src/context.c		diff \| blob \| blame \| history
login-utils/chfn.c		diff \| blob \| blame \| history
login-utils/chsh.c		diff \| blob \| blame \| history
login-utils/su-common.c		diff \| blob \| blame \| history
sys-utils/swapon.c		diff \| blob \| blame \| history
term-utils/wall.c		diff \| blob \| blame \| history
text-utils/more.c		diff \| blob \| blame \| history