PrivSep and portability

Ben Lindstrom mouring at etoh.eviladmin.org
Sat Apr 6 10:19:48 EST 2002


Can we do something simple at this point.

If mmap() not found #ifdef out the one spot where it uses.  Then go into
sshd.c and change the #define of PRIVSEP() to never use the privalege
code.

Something that will ensure compiling, be simple, and allow us to find
potentally other ways of handling this for such platforms?

I don't think it should be too hard to disable the code if no mmap()
is detected.

- Ben

On Fri, 5 Apr 2002, Wendy Palm wrote:

> i second this.  I currently cannot get the current snapshot to compile.
> Crays do not have mmap and don't support shared memory.  compile-time
> configuration would be a name-your-own-deity-send.
>
> wendy
>
> Gert Doering wrote:
> >
> > Hi,
> >
> > I've seen a few patches related to the PrivSep works.  As far as I can
> > see, it seems to work by using a shared memory segment to communicate.
> >
> > I just want to point out that there are some unix systems that do not
> > have mmap() (SCO, older SVR3 systems) or that might have problems with
> > anonymous shared mmap() (don't have an examples, but e.g. the INN docs
> > are full of warnings concerning mmap()).
> >
> > So I want to ask you to make the PrivSep stuff compile-time configurable,
> > to enable building on "legacy" platforms.
> >
> > gert
> >
> > PS: my SCO 3 fix for the suid problem seems to have been lost, I'll
> > resubmit via bugzilla.
> > --
> > USENET is *not* the non-clickable part of WWW!
> >                                                            //www.muc.de/~gert/
> > Gert Doering - Munich, Germany                             gert at greenie.muc.de
> > fax: +49-89-35655025                        gert.doering at physik.tu-muenchen.de
> > _______________________________________________
> > openssh-unix-dev at mindrot.org mailing list
> > http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>
> --
> wendy palm
> Cray OS Sustaining Engineering, Cray Inc.
> wendyp at cray.com, 651-605-9154
> _______________________________________________
> openssh-unix-dev at mindrot.org mailing list
> http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>




More information about the openssh-unix-dev mailing list