Blame SOURCES/0027-Don-t-close-STDOUT-when-calling-the-CA-fetch_roots-f.patch
|
 |
0af72f |
From b7bcb1b3b953c2052e2d89cb2b3e9d9ccd1b3864 Mon Sep 17 00:00:00 2001
|
|
|
0af72f |
From: Rob Crittenden <rcritten@redhat.com>
|
|
|
0af72f |
Date: Thu, 10 Oct 2019 16:28:18 -0400
|
|
|
0af72f |
Subject: [PATCH] Don't close STDOUT when calling the CA fetch_roots function
|
|
|
0af72f |
|
|
|
0af72f |
cm_subproc_mark_most_cloexec() now closes all open file
|
|
|
0af72f |
descriptors except for up to three requested for stdin, stdout
|
|
|
0af72f |
and stderr. Before the optimization those three were always
|
|
|
0af72f |
left open.
|
|
|
0af72f |
|
|
|
0af72f |
This was causing errors in the IPA helper ipa-server-guard
|
|
|
0af72f |
because it tries to display the contents of stderr which was
|
|
|
0af72f |
always being closed, causing ipa-server-guard to blow up.
|
|
|
0af72f |
---
|
|
|
0af72f |
src/cadata.c | 2 +-
|
|
|
0af72f |
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
0af72f |
|
|
|
0af72f |
diff --git a/src/cadata.c b/src/cadata.c
|
|
|
0af72f |
index eb87eb76..3e916c96 100644
|
|
|
0af72f |
--- a/src/cadata.c
|
|
|
0af72f |
+++ b/src/cadata.c
|
|
|
0af72f |
@@ -109,7 +109,7 @@ fetch(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *data)
|
|
|
0af72f |
}
|
|
|
0af72f |
return -1;
|
|
|
0af72f |
}
|
|
|
0af72f |
- cm_subproc_mark_most_cloexec(STDOUT_FILENO, -1, -1);
|
|
|
0af72f |
+ cm_subproc_mark_most_cloexec(STDOUT_FILENO, STDERR_FILENO, -1);
|
|
|
0af72f |
cm_log(1, "Running enrollment/cadata helper \"%s\".\n", argv[0]);
|
|
|
0af72f |
execvp(argv[0], argv);
|
|
|
0af72f |
u = errno;
|
|
|
0af72f |
--
|
|
|
0af72f |
2.21.0
|
|
|
0af72f |
|