X-Git-Url: http://git.tremily.us/?a=blobdiff_plain;f=doc%2Fbugs%2Fikiwiki-mass-rebuild_fails_to_drop_privileges_and_execute_ikiwiki.mdwn;fp=doc%2Fbugs%2Fikiwiki-mass-rebuild_fails_to_drop_privileges_and_execute_ikiwiki.mdwn;h=ae7f908d266c369975eb7e342465fe12530059b5;hb=b668227481028db996487cf64cee68a771dc9868;hp=0000000000000000000000000000000000000000;hpb=2697ac99cf3bbc65f2183e07f688c1d93e2047f0;p=ikiwiki.git

diff --git a/doc/bugs/ikiwiki-mass-rebuild_fails_to_drop_privileges_and_execute_ikiwiki.mdwn b/doc/bugs/ikiwiki-mass-rebuild_fails_to_drop_privileges_and_execute_ikiwiki.mdwn
new file mode 100644
index 000000000..ae7f908d2
--- /dev/null
+++ b/doc/bugs/ikiwiki-mass-rebuild_fails_to_drop_privileges_and_execute_ikiwiki.mdwn
@@ -0,0 +1,24 @@
+The ikiwiki-mass-rebuild utility fails to drop privileges and fails to execute ikiwiki on FreeBSD.
+
+The solution is to set the effective UID after setting the real UID, and to set $PATH in the environment before calling exec().
+
+Proposed patch:
+
+    --- ikiwiki-mass-rebuild.orig	2007-08-15 22:21:59.000000000 +0200
+    +++ ikiwiki-mass-rebuild	2007-10-25 13:04:10.000000000 +0200
+    @@ -22,13 +22,14 @@ sub processline {
+     		my ($uuid, $ugid) = (getpwnam($user))[2, 3];
+     		$)="$ugid $ugid";
+     		$(=$ugid;
+    -		$>=$uuid;
+     		$<=$uuid;
+    +		$>=$uuid;
+     		if ($< != $uuid || $> != $uuid || $( != $ugid || $) ne "$ugid $ugid") {
+     			die "failed to drop permissions to $user";
+     		}
+     		%ENV=();
+     		$ENV{HOME}=(getpwnam($user))[7];
+    +		$ENV{PATH}="/usr/bin:/usr/local/bin";
+     		exec("ikiwiki", "-setup", $setup, @ARGV);
+     		die "failed to run ikiwiki: $!";
+     	}