> Andreas Kusalananda K=C3=A4h=C3=A4ri <andreas.kah...@icm.uu.se> writes: > > > Hi, > > > > I noticed that ntpd would die if I tried to use ntpctl to check on it: > > > > [...] > > 29946 ntpd CALL poll(0xda8993ab5c0,4,1000) > > 29946 ntpd RET poll 1 > > 29946 ntpd CALL kbind(0x7f7ffffc2558,0x18,0x7bb3facd5f812ed9) > > 29946 ntpd RET kbind 0 > > 29946 ntpd CALL accept(5,0x7f7ffffc2630,0x7f7ffffc262c) > > 29946 ntpd PLDG accept, "unix", errno 1 Operation not permitted > > 29946 ntpd PSIG SIGABRT SIG_DFL > > [...] > > > > I also get ntpd(<pid>): syscall 30 "unix" in the console. > > Confirmed, the failure is in control_accept(), which should be allowed > to speak on a Unix socket. > > See the diff below. > > > Cheer, > > > > ps. is tech@ the right list for these sorts of things? > > For this case I'd say "yes", as it was trivial for me to reproduce the > bug. > > Index: ntp.c > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
you are sending mime again. the kernel has been fixed for this issue, not ntpd. We don't want that process able to open sockets outbound, which your diff does.
