Openssl is able to use the issetugid library function for better safety when available. Unfortunately the use of issetugid is only enabled for openbsd and freebsd > 2 and for instance it is not used under Solaris although this function is available since Solaris 9.
I solved this bug by adding a new preprocessor flag (HAVE_ISSETUGID) and patching crypto/uid.c to allows to enable issetugid usage at configure time using -DHAVE_ISSETUGID. However am not sure it is the proper solution so I am submitting this bug so this can be properly fixed in openssl. Thanks in advance for your answer. Best regards, Yann ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
