LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14106 Commits
1 Branch
46 MiB
Tree: ba277390ac
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ba277390ac'
${ noResults }
openwrt-packages-dist/libs/libpam/patches/0007-Replace-strndupa-with-...

75 lines
2.3 KiB
Raw Normal View History

libpam: Update to 1.3.0 Removed upstreamed patches. Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years ago
libpam: Update to 1.3.1 Upstream switched to GitHub for releases. Follow suit. Rearranged Makefile quite a bit to be more similar to other projects. Added PKG_BUILD_PARALLEL for faster compilation. Added PKG_CPE_ID for proper CVE tracking. Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years ago
libpam: Update to 1.3.0 Removed upstreamed patches. Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years ago
libpam: Update to 1.3.1 Upstream switched to GitHub for releases. Follow suit. Rearranged Makefile quite a bit to be more similar to other projects. Added PKG_BUILD_PARALLEL for faster compilation. Added PKG_CPE_ID for proper CVE tracking. Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years ago
libpam: Update to 1.3.0 Removed upstreamed patches. Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years ago
 
  1. From 9f23ba5a40b42acf4463b593bffd73caee8b527c Mon Sep 17 00:00:00 2001
  2. From: Rosen Penev <rosenp@gmail.com>
  3. Date: Sun, 15 Jul 2018 20:43:44 -0700
  4. Subject: [PATCH] Replace strndupa with strcpy
  5. 

  6. glibc only. A static string is better.
  7. 

  8. Signed-off-by: Rosen Penev <rosenp@gmail.com>
  9. ---

  10.  modules/pam_exec/pam_exec.c | 31 +++++++++++--------------------
  11.  1 file changed, 11 insertions(+), 20 deletions(-)
  12. 

  13. diff --git a/modules/pam_exec/pam_exec.c b/modules/pam_exec/pam_exec.c

  14. index 0ab6548..2fbab4f 100644

  15. --- a/modules/pam_exec/pam_exec.c

  16. +++ b/modules/pam_exec/pam_exec.c

  17. @@ -102,7 +102,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh,

  18.    int use_stdout = 0;
  19.    int optargc;
  20.    const char *logfile = NULL;
  21. -  const char *authtok = NULL;

  22. +  char authtok[PAM_MAX_RESP_SIZE];

  23.    pid_t pid;
  24.    int fds[2];
  25.    int stdout_fds[2];
  26. @@ -180,12 +180,12 @@ call_exec (const char *pam_type, pam_handle_t *pamh,

  27.  	      if (resp)
  28.  		{
  29.  		  pam_set_item (pamh, PAM_AUTHTOK, resp);
  30. -		  authtok = strndupa (resp, PAM_MAX_RESP_SIZE);

  31. +		  strcpy (authtok, resp);

  32.  		  _pam_drop (resp);
  33.  		}
  34.  	    }
  35.  	  else
  36. -	    authtok = strndupa (void_pass, PAM_MAX_RESP_SIZE);

  37. +	    strcpy (authtok, void_pass);

  38.  
  39.  	  if (pipe(fds) != 0)
  40.  	    {
  41. @@ -225,23 +225,14 @@ call_exec (const char *pam_type, pam_handle_t *pamh,

  42.  
  43.        if (expose_authtok) /* send the password to the child */
  44.  	{
  45. -	  if (authtok != NULL)

  46. -	    {            /* send the password to the child */

  47. -	      if (debug)

  48. -		pam_syslog (pamh, LOG_DEBUG, "send password to child");

  49. -	      if (write(fds[1], authtok, strlen(authtok)+1) == -1)

  50. -		pam_syslog (pamh, LOG_ERR,

  51. -			    "sending password to child failed: %m");

  52. -	      authtok = NULL;

  53. -	    }

  54. -	  else

  55. -	    {

  56. -	      if (write(fds[1], "", 1) == -1)   /* blank password */

  57. -		pam_syslog (pamh, LOG_ERR,

  58. -			    "sending password to child failed: %m");

  59. -	    }

  60. -        close(fds[0]);       /* close here to avoid possible SIGPIPE above */

  61. -        close(fds[1]);

  62. +	  if (debug)

  63. +	    pam_syslog (pamh, LOG_DEBUG, "send password to child");

  64. +	  if (write(fds[1], authtok, strlen(authtok)) == -1)

  65. +	    pam_syslog (pamh, LOG_ERR,

  66. +			      "sending password to child failed: %m");

  67. +

  68. +          close(fds[0]);       /* close here to avoid possible SIGPIPE above */

  69. +          close(fds[1]);

  70.  	}
  71.  
  72.        if (use_stdout)
  73. -- 

  74. 2.19.1
  75.