On Thu, Jul 03, 2003 at 01:49:46PM +0200, Lars Braeuer wrote: > Herbert Poetzl wrote: > >On Wed, Jul 02, 2003 at 03:57:42PM +0200, Lars Braeuer wrote: > > > >>Hi!
Hi Lars! > >>I haven't been able to try this out until now. > >> > >>Just installed all of Herbert's quota patches and suidperl seems to work > >>with the effective uid now. The actual quota stuff is not completely > >>working for me though (editing a quota with edquota doesn't actually save > >>the quota's for the user). > > > > > >please elaborate! > > Well, at first I setup standard quota stuff in my hostsystem (no vserver > context quota), just to see how everything works etc. I'm able to set user > quota's with edquota. The user quota's are saved. Example: > - edquota -u quota_user > - setting block soft limit 100000 and hard limit 200000 > - exiting edquota > - editing the same user again with "edquota -u quota_user" > - the soft and hard limits I set are still present > > Now I'm trying the same thing (still in the hostsystem) after applying all > the necessary patches: > kernel: patch-2.4.21ctx17, linux-2.4.21-ctx17-vquota-0.10.diff > quota-tools: quota-tools-3.08-ctx17-v0.35.diff > vserver-0.22: vserver-0.22-cap_quotactl.diff okay, here is the checklist: - kernel rebuilt and installed and booted? (check with cat /proc/version) - quota files removed/rebuilt? ( rm, quotacheck -vaugxm ) - quota turned on? ( quotaon -vaugx ) my best guess would be, that quota wasn't activated > Now I'm trying the same stuff again: > - edquota -u quota_user > - setting block soft limit 100000 and hard limit 200000 > - exiting edquota > - editing the same user again with "edquota -u quota_user" > - now soft and hard limits are not saved, all limits remain 0 > > the file /aquota.user is present and even the timestamp is updated after > using edquota. I haven't played with the vserver context quota so far. > > I can give you more details, just tell me what you need. if this remains true, after you positively checked the list above, please send me a transcript of your actions accompanied by results of cat /proc/version cat /proc/mounts repquota -augx > >>I'm curious, is there a way to make that euid thing it work without > >>having to install the vquota patches? I'm talking about a standalone > >>patch for that issue. > >>I tried looking for current->uid and patching it myself, but I didn't > >>find all the places where it has to be changed. Maybe someone can help me? > > > > > >so it works with my vquota patch, but not with plain ctx-17? > > this is what I thought about after writing this mail. I just tried it with > the standard ctx-17 patch and suidperl almost works now the same way it > does with the vquota patches, so the fix seems to be in ctx-17. the only > annoying thing left is that there's this warning: > Insecure dependency in exec while running setuid at /usr/sbin/vps line 28. > I probably have to untaint the variable properly. fine, this saves me work 8-) best, Herbert
