diff options
| author | Kees Cook <kees@debian.org> | 2011-10-13 12:56:51 -0700 |
|---|---|---|
| committer | Steve Langasek <vorlon@debian.org> | 2019-01-08 22:11:47 -0800 |
| commit | 17c73d8089c6ab8e83684551c35f71ca9f65afcb (patch) | |
| tree | 2cdf7af72c3e42038a70b82d7c0d79805e496c9a | |
| parent | 4c8f5ad6ee34b2f65e0a52a59a15af2ddef8b250 (diff) | |
| download | pam-17c73d8089c6ab8e83684551c35f71ca9f65afcb.tar.gz pam-17c73d8089c6ab8e83684551c35f71ca9f65afcb.tar.bz2 pam-17c73d8089c6ab8e83684551c35f71ca9f65afcb.zip | |
debian/patches-applied/hurd_no_setfsuid: check all set*id() calls.
| -rw-r--r-- | debian/changelog | 1 | ||||
| -rw-r--r-- | debian/patches-applied/hurd_no_setfsuid | 36 |
2 files changed, 23 insertions, 14 deletions
diff --git a/debian/changelog b/debian/changelog index 1b1a7dcf..4c807087 100644 --- a/debian/changelog +++ b/debian/changelog @@ -11,6 +11,7 @@ pam (1.1.3-5) UNRELEASED; urgency=low improve descriptions. * debian/patches-applied/{007_modules_pam_unix,055_pam_unix_nullok_secure}: drop unneeded no-op change to reduce delta from upstream. + * debian/patches-applied/hurd_no_setfsuid: check all set*id() calls. -- Kees Cook <kees@debian.org> Thu, 13 Oct 2011 12:31:03 -0700 diff --git a/debian/patches-applied/hurd_no_setfsuid b/debian/patches-applied/hurd_no_setfsuid index b5e37c0a..8a27b296 100644 --- a/debian/patches-applied/hurd_no_setfsuid +++ b/debian/patches-applied/hurd_no_setfsuid @@ -5,10 +5,10 @@ Authors: Steve Langasek <vorlon@debian.org> Upstream status: to be forwarded, now that pam_modutil_{drop,regain}_priv are implemented -Index: pam.deb/libpam/pam_modutil_priv.c +Index: pam-debian/libpam/pam_modutil_priv.c =================================================================== ---- pam.deb.orig/libpam/pam_modutil_priv.c -+++ pam.deb/libpam/pam_modutil_priv.c +--- pam-debian.orig/libpam/pam_modutil_priv.c 2011-10-10 16:21:57.858599186 -0700 ++++ pam-debian/libpam/pam_modutil_priv.c 2011-10-10 17:31:02.805686298 -0700 @@ -14,7 +14,9 @@ #include <syslog.h> #include <pwd.h> @@ -19,7 +19,7 @@ Index: pam.deb/libpam/pam_modutil_priv.c /* * Two setfsuid() calls in a row are necessary to check -@@ -22,17 +24,53 @@ +@@ -22,17 +24,61 @@ */ static int change_uid(uid_t uid, uid_t *save) { @@ -34,12 +34,16 @@ Index: pam.deb/libpam/pam_modutil_priv.c + if (save) + *save = ruid; + if (ruid == uid && uid != 0) -+ setreuid(euid, uid); ++ if (setreuid(euid, uid)) ++ return -1; + else { -+ setreuid(0, -1); -+ if (setreuid(-1, uid) == -1) { -+ setreuid(-1, 0); -+ setreuid(0, -1); ++ if (setreuid(0, -1)) ++ return -1; ++ if (setreuid(-1, uid)) { ++ if (setreuid(-1, 0)) ++ return -1; ++ if (setreuid(0, -1)) ++ return -1; + if (setreuid(-1, uid)) + return -1; + } @@ -59,12 +63,16 @@ Index: pam.deb/libpam/pam_modutil_priv.c + if (save) + *save = rgid; + if (rgid == gid) -+ setregid(egid, gid); ++ if (setregid(egid, gid)) ++ return -1; + else { -+ setregid(0, -1); -+ if (setregid(-1, gid) == -1) { -+ setregid(-1, 0); -+ setregid(0, -1); ++ if (setregid(0, -1)) ++ return -1; ++ if (setregid(-1, gid)) { ++ if (setregid(-1, 0)) ++ return -1; ++ if (setregid(0, -1)) ++ return -1; + if (setregid(-1, gid)) + return -1; + } |