isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

auth_getpass() returns a dynamically allocated copy of the plaintext

Browse Source 
password which needs to be freed after checking (and clearing) it.
This commit is contained in:
Todd C. Miller
2016-01-27 15:36:50 -07:00
parent 91bce65e29
commit ab11cdde2c
7 changed files with 26 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
plugins/sudoers/auth/aix_auth.c
View File

@@ -144,6 +144,7 @@ sudo_aix_verify(struct passwd *pw, char *prompt, sudo_auth *auth, struct sudo_co
message = NULL; message = NULL;
result = authenticate(pw->pw_name, pass, &reenter, &message); result = authenticate(pw->pw_name, pass, &reenter, &message);
memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass)); memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass));
free(pass);
prompt = message; prompt = message;
} while (reenter); } while (reenter);

2
plugins/sudoers/auth/bsdauth.c
View File

@@ -141,6 +141,7 @@ bsdauth_verify(struct passwd *pw, char *prompt, sudo_auth *auth, struct sudo_con
log_warningx(0, N_("unable to allocate memory")); log_warningx(0, N_("unable to allocate memory"));
debug_return_int(AUTH_FATAL); debug_return_int(AUTH_FATAL);
} }
free(pass);
pass = auth_getpass(s, def_passwd_timeout * 60, pass = auth_getpass(s, def_passwd_timeout * 60,
SUDO_CONV_PROMPT_ECHO_ON, callback); SUDO_CONV_PROMPT_ECHO_ON, callback);
free(s); free(s);
@@ -150,6 +151,7 @@ bsdauth_verify(struct passwd *pw, char *prompt, sudo_auth *auth, struct sudo_con
if (pass) { if (pass) {
authok = auth_userresponse(as, pass, 1); authok = auth_userresponse(as, pass, 1);
memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass)); memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass));
free(pass);
} }
/* restore old signal handler */ /* restore old signal handler */

4
plugins/sudoers/auth/fwtk.c
View File

@@ -93,6 +93,7 @@ restart:
(void) snprintf(buf, sizeof(buf), "%s\nResponse: ", &resp[10]); (void) snprintf(buf, sizeof(buf), "%s\nResponse: ", &resp[10]);
pass = auth_getpass(buf, def_passwd_timeout * 60, SUDO_CONV_PROMPT_ECHO_OFF, callback); pass = auth_getpass(buf, def_passwd_timeout * 60, SUDO_CONV_PROMPT_ECHO_OFF, callback);
if (pass && *pass == '\0') { if (pass && *pass == '\0') {
free(pass);
pass = auth_getpass("Response [echo on]: ", pass = auth_getpass("Response [echo on]: ",
def_passwd_timeout * 60, SUDO_CONV_PROMPT_ECHO_ON, callback); def_passwd_timeout * 60, SUDO_CONV_PROMPT_ECHO_ON, callback);
} }
@@ -132,8 +133,9 @@ restart:
sudo_warnx("%s", resp); sudo_warnx("%s", resp);
error = AUTH_FAILURE; error = AUTH_FAILURE;
done: done:
memset_s(pass, SUDO_PASS_MAX, 0, strlen(pass));
memset_s(buf, sizeof(buf), 0, sizeof(buf)); memset_s(buf, sizeof(buf), 0, sizeof(buf));
memset_s(pass, SUDO_PASS_MAX, 0, strlen(pass));
free(pass);
debug_return_int(error); debug_return_int(error);
} }

8
plugins/sudoers/auth/pam.c
View File

@@ -443,14 +443,10 @@ converse(int num_msg, PAM_CONST struct pam_message **msg,
sudo_debug_printf(SUDO_DEBUG_ERROR|SUDO_DEBUG_LINENO, sudo_debug_printf(SUDO_DEBUG_ERROR|SUDO_DEBUG_LINENO,
"password longer than %d", PAM_MAX_RESP_SIZE); "password longer than %d", PAM_MAX_RESP_SIZE);
ret = PAM_CONV_ERR; ret = PAM_CONV_ERR;
memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass));
goto done; goto done;
} }
if ((pr->resp = strdup(pass)) == NULL) { pr->resp = pass; /* auth_getpass() malloc's a copy */
sudo_warnx(U_("%s: %s"), __func__, U_("unable to allocate memory"));
ret = PAM_BUF_ERR;
goto done;
}
memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass));
break; break;
case PAM_TEXT_INFO: case PAM_TEXT_INFO:
if (pm->msg) if (pm->msg)

9
plugins/sudoers/auth/securid5.c
View File

@@ -177,6 +177,10 @@ sudo_securid_verify(struct passwd *pw, char *pass, sudo_auth *auth, struct sudo_
/* Sometimes (when current token close to expire?) /* Sometimes (when current token close to expire?)
ACE challenges for the next token displayed ACE challenges for the next token displayed
(entered without the PIN) */ (entered without the PIN) */
if (pass != NULL) {
memset_s(pass, SUDO_PASS_MAX, 0, strlen(pass));
free(pass);
}
pass = auth_getpass("\ pass = auth_getpass("\
!!! ATTENTION !!!\n\ !!! ATTENTION !!!\n\
Wait for the token code to change, \n\ Wait for the token code to change, \n\
@@ -212,6 +216,11 @@ then enter the new token code.\n", \
/* Free resources */ /* Free resources */
SD_Close(*sd); SD_Close(*sd);
if (pass != NULL) {
memset_s(pass, SUDO_PASS_MAX, 0, strlen(pass));
free(pass);
}
/* Return stored state to calling process */ /* Return stored state to calling process */
debug_return_int(rval); debug_return_int(rval);
} }

1
plugins/sudoers/auth/sia.c
View File

@@ -92,6 +92,7 @@ sudo_sia_verify(struct passwd *pw, char *prompt, sudo_auth *auth,
/* Check password and zero out plaintext copy. */ /* Check password and zero out plaintext copy. */
rc = sia_ses_authent(NULL, pass, siah); rc = sia_ses_authent(NULL, pass, siah);
memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass)); memset_s(pass, SUDO_CONV_REPL_MAX, 0, strlen(pass));
free(pass);
if (rc == SIASUCCESS) if (rc == SIASUCCESS)
debug_return_int(AUTH_SUCCESS); debug_return_int(AUTH_SUCCESS);

9
plugins/sudoers/auth/sudo_auth.c
View File

@@ -296,8 +296,10 @@ verify_user(struct passwd *pw, char *prompt, int validated,
if (success != AUTH_FAILURE) if (success != AUTH_FAILURE)
break; break;
} }
if (!standalone) if (!standalone) {
memset_s(p, SUDO_CONV_REPL_MAX, 0, strlen(p)); memset_s(p, SUDO_CONV_REPL_MAX, 0, strlen(p));
free(p);
}
if (success != AUTH_FAILURE) if (success != AUTH_FAILURE)
goto done; goto done;
@@ -387,6 +389,11 @@ sudo_auth_end_session(struct passwd *pw)
debug_return_int(status == AUTH_FATAL ? -1 : 1); debug_return_int(status == AUTH_FATAL ? -1 : 1);
} }
/*
* Prompts the user for a password using the conversation function.
* Returns the plaintext password or NULL.
* The user is responsible for freeing the returned value.
*/
char * char *
auth_getpass(const char *prompt, int timeout, int type, auth_getpass(const char *prompt, int timeout, int type,
struct sudo_conv_callback *callback) struct sudo_conv_callback *callback)