unleashed-userland README

[unleashed-userland.git] / components / network / openssh / patches / 0010-PAM-conversation-fix.patch

From dfad796450e2a215b9c8c96629da8439e5052983 Mon Sep 17 00:00:00 2001
From: oracle <solaris@oracle.com>
Date: Mon, 3 Aug 2015 14:36:13 -0700
Subject: [PATCH 10/34] PAM conversation fix

#
# This patch contains an important bug fix for the PAM password userauth
# conversation function. This bug fix was contributed back to the upstream in
# 2009, but it was not accepted by the upstream.  For more information, see
# https://bugzilla.mindrot.org/show_bug.cgi?id=1681.
#
---
 auth-pam.c | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)

diff --git a/auth-pam.c b/auth-pam.c
index 8425af1..92c3b1c 100644
--- a/auth-pam.c
+++ b/auth-pam.c
@@ -1112,11 +1112,13 @@ free_pam_environment(char **env)
        free(env);
 }
 
+#ifndef PAM_BUGFIX
 /*
  * "Blind" conversation function for password authentication.  Assumes that
  * echo-off prompts are for the password and stores messages for later
  * display.
  */
+#endif
 static int
 sshpam_passwd_conv(int n, sshpam_const struct pam_message **msg,
     struct pam_response **resp, void *data)
@@ -1138,12 +1140,24 @@ sshpam_passwd_conv(int n, sshpam_const struct pam_message **msg,
        for (i = 0; i < n; ++i) {
                switch (PAM_MSG_MEMBER(msg, i, msg_style)) {
                case PAM_PROMPT_ECHO_OFF:
+#ifdef PAM_BUGFIX
+                       /*
+                        * PAM conversation function for the password userauth
+                       * method (non-interactive) really cannot do any 
+                       * prompting.  We set the PAM_AUTHTOK item in 
+                        * sshpam_auth_passwd()to avoid conversation. If some
+                       * modules still try to converse, then the password
+                       * userauth will fail.
+                       */
+                       goto fail;
+#else
                        if (sshpam_password == NULL)
                                goto fail;
                        if ((reply[i].resp = strdup(sshpam_password)) == NULL)
                                goto fail;
                        reply[i].resp_retcode = PAM_SUCCESS;
                        break;
+#endif
                case PAM_ERROR_MSG:
                case PAM_TEXT_INFO:
                        len = strlen(PAM_MSG_MEMBER(msg, i, msg));
@@ -1179,6 +1193,9 @@ static struct pam_conv passwd_conv = { sshpam_passwd_conv, NULL };
 int
 sshpam_auth_passwd(Authctxt *authctxt, const char *password)
 {
+#ifdef PAM_BUGFIX
+        int set_item_rtn;
+#endif
        int flags = (options.permit_empty_passwd == 0 ?
            PAM_DISALLOW_NULL_AUTHTOK : 0);
 
@@ -1198,6 +1215,15 @@ sshpam_auth_passwd(Authctxt *authctxt, const char *password)
            options.permit_root_login != PERMIT_YES))
                sshpam_password = badpw;
 
+#ifdef PAM_BUGFIX
+       sshpam_err = pam_set_item(sshpam_handle, PAM_AUTHTOK, password);
+       if (sshpam_err != PAM_SUCCESS) {
+               debug("PAM: %s: failed to set PAM_AUTHTOK: %s", __func__,
+                   pam_strerror(sshpam_handle, sshpam_err));
+               return 0;
+       }
+#endif
+
        sshpam_err = pam_set_item(sshpam_handle, PAM_CONV,
            (const void *)&passwd_conv);
        if (sshpam_err != PAM_SUCCESS)
@@ -1206,6 +1232,16 @@ sshpam_auth_passwd(Authctxt *authctxt, const char *password)
 
        sshpam_err = pam_authenticate(sshpam_handle, flags);
        sshpam_password = NULL;
+
+#ifdef PAM_BUGFIX
+        set_item_rtn = pam_set_item(sshpam_handle, PAM_AUTHTOK, NULL);
+       if (set_item_rtn != PAM_SUCCESS) {
+               debug("PAM: %s: failed to set PAM_AUTHTOK: %s", __func__,
+                   pam_strerror(sshpam_handle, set_item_rtn));
+               return 0;
+       }
+#endif
+
        free(fake);
        if (sshpam_err == PAM_MAXTRIES)
                sshpam_set_maxtries_reached(1);
-- 
2.5.4 (Apple Git-61)