upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-05-24 02:47:27 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/crypto
History
Ed Maste 860508661c ssh: pass 0 to procctl(2) to operate on self 
As of f833ab9dd1 procctl(2) allows idtype P_PID with id = 0 as a
shortcut for the calling process ID.  The shortcut also bypasses the
p_cansee / p_candebug test (since the process is able to act on itself.)

At present if the security.bsd.unprivileged_proc_debug sysctl is 0 then
procctl(P_PID, getpid(), ... for a process to act on itself will fail,
but procctl(P_PID, 0, ... will succeed.  This should likely be addressed
with a kernel change.

In any case the id = 0 shortcut is a tiny optimization for a process to
act on itself and allows the self-procctl to succeed, so use it in ssh.

Reported by:	Shawn Webb
Reviewed by:	kib
Sponsored by:	The FreeBSD Foundation
Differential Revision:	https://reviews.freebsd.org/D33970

(cherry picked from commit 0746301c49)
(cherry picked from commit e38610abca)
2022-02-10 13:09:57 -05:00
..
heimdal kerberos.8: Replace dead link 2021-05-19 17:22:44 -04:00
openssh ssh: pass 0 to procctl(2) to operate on self 2022-02-10 13:09:57 -05:00
openssl Add assembly optimized code for OpenSSL on powerpc, powerpc64 and powerpc64le 2021-12-29 14:45:29 +01:00
README

README 

$FreeBSD$

This directory is for the EXACT same use as src/contrib, except it
holds crypto sources.  In other words, this holds raw sources obtained
from various third party vendors, with FreeBSD patches applied.  No
compilation is done from this directory, it is all done from the
src/secure directory.  The separation between src/contrib and src/crypto
is the result of an old USA law, which made these sources export
controlled, so they had to be kept separate.