Daemon cannot open device driver

JackD · 09-17-2001, 01:09 AM

I have added some code to OpenSSL. This gets compiled in by apache to create the httpd. httpd is unable to open the device. The same device opens successfully from an application. The open() request fails and never reaches the device (gets rejected by the OS).

Anyone with detailed knowledge about access right and permissions may be able to help. Thanks in advance.

unSpawn · 09-17-2001, 02:03 AM

What device are you referring to?
Could you post some log errors?

JackD · 09-18-2001, 01:31 PM

The device is a driver that I have written to allow some of the OpenSSL PK operations to be accelerated. The driver is started as /dev/ce0.

I have now figured out why the open() on /dev/ce0 and /dev/mem fails. Both these have uid=root, whereas the httpd has uid=nobody. The only way that I got this to work is to recompile the http daemon with -DBIG_SECURITY_HOLE. Then run the httpd with a uid=root.

If anyone knows the correct way to achive this without leaving a big security hole please let me know.