"require.user: unprivileged" retains operator group
Garrett Cooper
yaneurabeya at gmail.com
Mon Mar 10 15:14:03 UTC 2014
> On Mar 10, 2014, at 8:00, Alan Somers <asomers at freebsd.org> wrote:
>
>> On Mon, Mar 10, 2014 at 4:16 AM, Peter Holm <peter at holm.cc> wrote:
>> $ kyua test user_test
>> user_test:rootuser -> skipped: Requires root privileges [0.001s]
>> user_test:nonrootuser -> broken: Caught unexpected exception: Tester failed with code 2; this is a bug [0.039s]
>>
>> 1/2 passed (1 failed)
>> Committed action 1
>> $ su
>> Password:
>> root at x4:/usr/tests/sys/kern # kyua test user_test
>> user_test:rootuser -> passed [0.031s]
>> user_test:nonrootuser -> passed [0.022s]
>>
>> 2/2 passed (0 failed)
>> Committed action 50
>> root at x4:/usr/tests/sys/kern # kyua debug user_test:rootuser
>> uid=0(root) gid=0(wheel) groups=0(wheel),5(operator)
>> user_test:rootuser -> passed
>> root at x4:/usr/tests/sys/kern # kyua debug user_test:nonrootuser
>> uid=977(tests) gid=65534(nobody) groups=65534(nobody),5(operator)
>> user_test:nonrootuser -> passed
>> root at x4:/usr/tests/sys/kern #
>>
>> http://people.freebsd.org/~pho/user_test.c
>> --
>> Peter
>
> I can reproduce it. Looks like an upstream bug in Kyua.
Yes. Unfortunately unless you get the appropriate mode for Kyua, it won't be able to setuid to a lower privilege unless it's run as root..
Cheers!
-Garrett
More information about the freebsd-testing
mailing list