[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH] link parted against glibc dynamically, everything else stati
From: |
Neal H Walfield |
Subject: |
Re: [PATCH] link parted against glibc dynamically, everything else static |
Date: |
Fri, 17 Aug 2001 22:41:03 +0200 |
User-agent: |
Mutt/1.3.18i |
> The attached patch adds a configure flag that results in a parted
> binary that is dynamically linked against libc and statically against
> everything else. parted currently uses NSS functionality
> (getlogin()), which uses dlopen. When you dlopen a library that
> dlopens another in a totally static program it's a bit tricky (insert
> muck about the symbol tables and such). nss_ldap does this, so if
> you're running nss_ldap you'll segfault.
The only reason that parted uses getlogin and, thereby, NSS is so that
it can call initgroups. For parted, however, initgroups is useless: it
an extension designed for simplifying programs that do login services.
I.e. a program which runs as root and, when a user correctly
authenticats himself, calls initgroups to initialize the secondary
groups and follows that with a call to seteuid to assume the user's id
before forking a shell. This is all that initgroups was ever intended
for. It is not useful for much else, if fact, it really is restricted
to this use: this function _only_ ever succeeds for the super user.
Please, let us remove this cruft from parted.
pgpxpLSzS21x9.pgp
Description: PGP signature