CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2011/04/23 13:47:06
Modified files:
libexec/security: security
Log message:
When a device or setuid file is owned by a nonexistent user or group,
undefined data got used.
Fix this by reporting the UID/GID numerically in that case.
Problem reported and patch provided by rd at thrush dot com.
While here, use // rather than || everywhere to detect get*id failure,
as suggested by RD Thrush. The edge case where it matters - a username
of "0" - is rather insane, but the // is more precise anyway.
