pam_get_authtok*: disallow setting pamh to NULL

This also prevents a potential NULL pointer dereference in pam_get_authtok_internal and pam_get_authtok_verify when the pamh argument they access is set to NULL.
author: Andrey Kovalev <ded@altlinux.org> 2024-10-18 10:25:17 +0300
committer: Dmitry V. Levin <ldv@strace.io> 2024-10-18 08:00:00 +0000
commit: 43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56 (patch)
tree: 0bb54c65e292f5ab060968d5d1168f1d33a86953 /libpam
parent: 29c390c7e5c7ee12a1beebd7458aed2fcba53f91 (diff)
download: pam-43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56.tar.gz
pam-43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56.tar.bz2
pam-43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/libpam/pam_get_authtok.c b/libpam/pam_get_authtok.c
index c8973275..2e7a5996 100644
--- a/libpam/pam_get_authtok.c
+++ b/libpam/pam_get_authtok.c
@@ -84,6 +84,8 @@ pam_get_authtok_internal (pam_handle_t *pamh, int item,
 			  unsigned int flags)
 
 {
+  IF_NO_PAMH(pamh, PAM_SYSTEM_ERR);
+
   char *resp[2] = {NULL, NULL};
   const void *prevauthtok;
   const char *authtok_type = "";
@@ -229,6 +231,8 @@ int
 pam_get_authtok_verify (pam_handle_t *pamh, const char **authtok,
 			const char *prompt)
 {
+  IF_NO_PAMH(pamh, PAM_SYSTEM_ERR);
+
   char *resp = NULL;
   const char *authtok_type = "";
   int retval;
author	Andrey Kovalev <ded@altlinux.org>	2024-10-18 10:25:17 +0300
committer	Dmitry V. Levin <ldv@strace.io>	2024-10-18 08:00:00 +0000
commit	43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56 (patch)
tree	0bb54c65e292f5ab060968d5d1168f1d33a86953 /libpam
parent	29c390c7e5c7ee12a1beebd7458aed2fcba53f91 (diff)
download	pam-43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56.tar.gz pam-43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56.tar.bz2 pam-43bdb7ce04c9cb00bdf0f5dda818b077b9dc7c56.zip