Bug 76065
Summary: | rpc.statd can not open privileged socket; impact on lock reclaiming/releasing | ||||||
---|---|---|---|---|---|---|---|
Product: | [Retired] Red Hat Linux | Reporter: | Emmanuel Preveraud <emmanuel.preveraud> | ||||
Component: | nfs-utils | Assignee: | Steve Dickson <steved> | ||||
Status: | CLOSED NEXTRELEASE | QA Contact: | Ben Levenson <benl> | ||||
Severity: | medium | Docs Contact: | |||||
Priority: | medium | ||||||
Version: | 7.3 | CC: | ekanter, juang, nicku, pawsa, per.starback, shishz | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | i386 | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2006-08-04 20:32:54 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Attachments: |
|
Description
Emmanuel Preveraud
2002-10-16 13:58:14 UTC
Created attachment 80645 [details]
patch to open socket before dropping privileges
I have noticed this bug as well and I do not think the patch solves all our problems as statd_get_socket() gets called later as well. You will have to wait until that piece of the code runs as well or move all the calls to statd_get_socket() to a place before you drop_privs() Juan Gomez/IBM (juang.com) The patch will work OK. "statd_get_socket" caches its socket fd, so if you continue to call it after dropping privs you'll still get the old privileged socket back. (Tested locally.) I'll update the bugzilla entry again once I've got a fixed test nfs-utils package built. I've pushed 7.3 (nfs-utils-0.3.3-5.1) and 8.0 (nfs-utils-1.0.1-2.2) rpms to http://people.redhat.com/sct/packages/nfs-utils/ for testing. These are unsigned private builds but should fix the problem, and if you can confirm that I'll queue them for an errata. *** Bug 59245 has been marked as a duplicate of this bug. *** This package makes the messages dissappear on my test system. (to other testers: Care should be taken when deploying the test packages since they do not contain the mountd security fix). Red Hat Linux and Red Hat Powertools are currently no longer supported by Red Hat, Inc. In an effort to clean up bugzilla, we are closing all bugs in MODIFIED state for these products. However, we do want to make sure that nothing important slips through the cracks. If, in fact, these issues are not resolved in a current Fedora Core Release (such as Fedora Core 5), please open a new issues stating so. Thanks. |