diff options
| author | Corinna Vinschen <corinna@vinschen.de> | 2004-02-06 10:37:37 +0000 |
|---|---|---|
| committer | Corinna Vinschen <corinna@vinschen.de> | 2004-02-06 10:37:37 +0000 |
| commit | 043878df18006f7243ae2547bcb0c9c43404fa82 (patch) | |
| tree | 9098f5273fe63ddfcb7fca66017e81d28eceb3e5 /winsup/cygwin/spawn.cc | |
| parent | 4ea8488c702529fd5e5bd32c2e7b624be8bad81b (diff) | |
| download | cygnal-043878df18006f7243ae2547bcb0c9c43404fa82.tar.gz cygnal-043878df18006f7243ae2547bcb0c9c43404fa82.tar.bz2 cygnal-043878df18006f7243ae2547bcb0c9c43404fa82.zip | |
* uinfo.cc (cygheap_user::init): Use sec_user_nih to build a
security descriptor. Set both the process and the default DACLs.
* fork.cc (fork_parent): Use sec_none_nih security attributes.
* spawn.cc (spawn_guts): Ditto.
Diffstat (limited to 'winsup/cygwin/spawn.cc')
| -rw-r--r-- | winsup/cygwin/spawn.cc | 15 |
1 files changed, 4 insertions, 11 deletions
diff --git a/winsup/cygwin/spawn.cc b/winsup/cygwin/spawn.cc index e5246b8d0..bfb94bd4b 100644 --- a/winsup/cygwin/spawn.cc +++ b/winsup/cygwin/spawn.cc @@ -639,8 +639,6 @@ spawn_guts (const char * prog_arg, const char *const *argv, syscall_printf ("null_app_name %d (%s, %.9500s)", null_app_name, runpath, one_line.buf); void *newheap; - /* Preallocated buffer for `sec_user' call */ - char sa_buf[1024]; cygbench ("spawn-guts"); @@ -656,14 +654,13 @@ spawn_guts (const char * prog_arg, const char *const *argv, && cygheap->user.saved_gid == cygheap->user.real_gid && !cygheap->user.groups.issetgroups ())) { - PSECURITY_ATTRIBUTES sec_attribs = sec_user_nih (sa_buf); ciresrv.moreinfo->envp = build_env (envp, envblock, ciresrv.moreinfo->envc, real_path.iscygexec ()); newheap = cygheap_setup_for_child (&ciresrv, cygheap->fdtab.need_fixup_before ()); rc = CreateProcess (runpath, /* image name - with full path */ one_line.buf, /* what was passed to exec */ - sec_attribs, /* process security attrs */ - sec_attribs, /* thread security attrs */ + &sec_none_nih,/* process security attrs */ + &sec_none_nih,/* thread security attrs */ TRUE, /* inherit handles from parent */ flags, envblock, /* environment */ @@ -673,14 +670,10 @@ spawn_guts (const char * prog_arg, const char *const *argv, } else { - PSID sid = cygheap->user.sid (); /* Give access to myself */ if (mode == _P_OVERLAY) myself.set_acl(); - /* Set security attributes with sid */ - PSECURITY_ATTRIBUTES sec_attribs = sec_user_nih (sa_buf, sid); - /* allow the child to interact with our window station/desktop */ HANDLE hwst, hdsk; SECURITY_INFORMATION dsi = DACL_SECURITY_INFORMATION; @@ -704,8 +697,8 @@ spawn_guts (const char * prog_arg, const char *const *argv, rc = CreateProcessAsUser (cygheap->user.token (), runpath, /* image name - with full path */ one_line.buf, /* what was passed to exec */ - sec_attribs, /* process security attrs */ - sec_attribs, /* thread security attrs */ + &sec_none_nih, /* process security attrs */ + &sec_none_nih, /* thread security attrs */ TRUE, /* inherit handles from parent */ flags, envblock, /* environment */ |