fix gotd group auth

From:: "Todd C. Miller" <millert@openbsd.org>
Subject:: Re: fix gotd group auth
To:: Stefan Sperling <stsp@stsp.name>
Cc:: gameoftrees@openbsd.org
Date:: Thu, 17 Nov 2022 09:03:52 -0700

Download raw body.

Thread

2022-11-17 10:05 Omar Polo:
fix gotd group auth
- 2022-11-17 10:17 Stefan Sperling:
  fix gotd group auth
2022-11-17 16:03 Todd C. Miller:
fix gotd group auth
- 2022-11-17 16:18 Stefan Sperling:
  fix gotd group auth
- - 2022-11-17 16:22 Todd C. Miller:
    fix gotd group auth

On Thu, 17 Nov 2022 10:03:36 +0100, Stefan Sperling wrote:

> gotd group auth is broken. It matches against the groups of
> the user running gotd instead of the user which is connecting
> to the socket :-) Fix this and add tests for various cases
> where gotd should deny repository read access.

I don't think it makes sense to examine errno on getpwuid() failure.
This should really be an unknown user kind of error.

 - todd

2022-11-17 10:05 Omar Polo:
fix gotd group auth
- 2022-11-17 10:17 Stefan Sperling:
  fix gotd group auth
2022-11-17 16:03 Todd C. Miller:
fix gotd group auth
- 2022-11-17 16:18 Stefan Sperling:
  fix gotd group auth
- - 2022-11-17 16:22 Todd C. Miller:
    fix gotd group auth