diff options
| author | Jeff Layton <jlayton@redhat.com> | 2013-10-21 13:27:22 -0400 |
|---|---|---|
| committer | Steve Dickson <steved@redhat.com> | 2013-10-21 13:27:22 -0400 |
| commit | f9cac65972da588d5218236de60a7be11247a8aa (patch) | |
| tree | 8b0386338b9df6b8bfa7a7838f729cbf06723543 /support/export/hostname.c | |
| parent | 13a454a56040af9146c232760993e35f2b0e1ec4 (diff) | |
| download | nfs-utils-f9cac65972da588d5218236de60a7be11247a8aa.tar.gz nfs-utils-f9cac65972da588d5218236de60a7be11247a8aa.tar.xz nfs-utils-f9cac65972da588d5218236de60a7be11247a8aa.zip | |
gssd: have process_krb5_upcall fork before handling upcall
Most krb5 installations use credcache locations that contain %{uid},
which expands to the real UID of the current process. In order for
GSSAPI to find those properly, we need to be able to switch the real UID
of the process to the designated one. That however, opens the door to
allowing gssd to be killed or reniced during the window where we've
switched credentials.
To combat this, change gssd to fork before trying to handle each upcall.
The child will do the work to establish the context and the parent task
will just wait for it to exit. It's still possible for the child to be
killed or reniced, but that would only affect a single upcall instead of
the entire daemon. Also, If the process is killed prematurely, then log
an error to tip off the admin that there was a problem.
Signed-off-by: Jeff Layton <jlayton@redhat.com>
Signed-off-by: Steve Dickson <steved@redhat.com>
Diffstat (limited to 'support/export/hostname.c')
0 files changed, 0 insertions, 0 deletions