owner of symlink /dev/stdin does not match /dev/pts/7

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

Moderators: spender, PaX Team

owner of symlink /dev/stdin does not match /dev/pts/7

Postby 400thecat » Sat Nov 26, 2016 6:34 am

gradm -C gives me following (false) warning:

Code: Select all
Warning: owner of symlink /dev/stdin in role testuser, subject /bin/zsh does not match that of its target /dev/pts/7


And here is relevant snippet from the subject in role testuser:

Code: Select all
subject /bin/zsh o {
        ...
        /dev/pts/                       rw
        /dev/stdin                      rw
        ...
        /proc/*/fd/                     rw
        ...
}


there are several symlinks involved here:

Code: Select all
/dev/stdin -> /proc/self/fd/0
/proc/self/fd/0 -> /dev/pts/8


and obviously, these symlinks resolve differently for root and testuser

I beleive this is a bug. Although this is only a warning, it is actually annoying.
400thecat
 
Posts: 1
Joined: Sat Nov 26, 2016 6:15 am

Return to grsecurity support

cron