Re: libgcrypt brain dead?

To: Brian May <brian@microcomaustralia.com.au>, debian developers <debian-devel@lists.debian.org>
Subject: Re: libgcrypt brain dead?
From: Vincent Fourmond <fourmond@debian.org>
Date: Tue, 09 Mar 2010 20:44:34 +0100
Message-id: <[🔎] 4B96A522.7030208@debian.org>
In-reply-to: <[🔎] 3c5cf5261003081534s5202413dw4d93c80db1a30150@mail.gmail.com>
References: <[🔎] 3c5cf5261003081534s5202413dw4d93c80db1a30150@mail.gmail.com>

Brian May wrote:
> 2. libgcrypt drops root privileges if called setuid on the assumption
> the only reason the program is setuid root is so it can lock memory.
> 
> Unfortunately this breaks every setuid program tat uses PAM when PAM
> is configured to use ldap and ldap is configured to use gnutls,
> because gnutls uses gcrypt.

  An example is pmount, who sometime calls cryptsetup itself relying on
gcrypt.

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551540

  In that case, the workaround is to call cryptsetup as root, but that
doesn't sound right and could lead to more problems...

  Why gcrypt doesn't leave up to the caller to deal with dropping
privileges ? The not-dropping-privileges hack mentioned by Werner Koch
in #566351 should be fine enough...

	Vincent

-- 
Vincent Fourmond, Debian Developer
http://vince-debian.blogspot.com/

Comme dit mon tonton: plus on est de cons, plus ça se voit !
 -- La Tordue, Où va-t-on

Vincent, listening to Planet Telex (Radiohead)

Reply to:

References:
- libgcrypt brain dead?
  - From: Brian May <brian@microcomaustralia.com.au>

Prev by Date: Bug#573206: ITP: png++ -- C++ interface to the PNG library
Next by Date: Re: Bug#540215: Introduce dh_checksums
Previous by thread: Re: libgcrypt brain dead?
Next by thread: Re: libgcrypt brain dead?
Index(es):
- Date
- Thread