[Bug 255420] pam_exec expose_auth_tok segfaults

bugzilla-noreply Mon, 26 Apr 2021 06:28:22 -0700

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=255420


            Bug ID: 255420
           Summary: pam_exec expose_auth_tok segfaults
           Product: Base System
           Version: 13.0-RELEASE
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: misc
          Assignee: b...@freebsd.org
          Reporter: divver...@gmail.com

Repro: add to a /etc/pam.d/login:

auth optional pam_exec.so expose_authtok -- /bin/sh -c 'cat > /dev/null'

Result: can no longer login; login will segfault in a strlen(...) + 1 call.

Debugging further yields that this happens in the _second_ call to pam_exec,
namely, pam_sm_setcred. pam_exec there queries the auth token but seems to be
getting NULL back.

Suggesting "somehow" handling the case of the pam_get_item(PAM_AUTHTOK) being
NULL.

-- 
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
freebsd-bugs@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-bugs
To unsubscribe, send any mail to "freebsd-bugs-unsubscr...@freebsd.org"

[Bug 255420] pam_exec expose_auth_tok segfaults

Reply via email to