This is the mail archive of the libc-alpha@sources.redhat.com mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

Re: getaddrinfo() and PF_LOCAL

To: Andreas Jaeger <aj at suse dot de>
Subject: Re: getaddrinfo() and PF_LOCAL
From: Stig Venaas <venaas at nvg dot ntnu dot no>
Date: Wed, 1 Aug 2001 16:00:15 +0200
Cc: libc-alpha at sources dot redhat dot com
References: <20010801153554.A28963@nvg.ntnu.no> <ho66c76gm3.fsf@gee.suse.de>

On Wed, Aug 01, 2001 at 03:43:00PM +0200, Andreas Jaeger wrote:
> Stig Venaas <venaas@nvg.ntnu.no> writes:
> 
> > Hi
> > 
> > I see that PF_LOCAL support has been removed from getaddrinfo()
> > due to security problems. Could anyone tell me what problems they
> > see? The only thing I can think of is the unlinking, but that's
> > a problem the application must face anyway with domain sockets.
> 
> Check the thread started at:
> http://sources.redhat.com/ml/libc-hacker/2001-05/msg00044.html
> 
> And feel free to send your comments after reading it,

Ah I should have thought of that (: I see Thorsten suggests removing
it completely like BSD, but there might be consensus to add it in
NetBSD now. KAME had it but removed it due to side effects for other
programs. This security issue is an example of these side effects.

I would vote for Thorsten's 2nd alternative (not allowing PF_LOCAL
when PF_UNSPEC set).

Maybe we should wait and see what happens in the BSD camp, my first
priority is portability.

Stig

References:
- getaddrinfo() and PF_LOCAL
  - From: Stig Venaas
- Re: getaddrinfo() and PF_LOCAL
  - From: Andreas Jaeger

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]