proxmox-mirrors/mirror_lxc
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_lxc synced 2025-07-26 07:34:47 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix getpwnam() thread safe issue

Browse Source 
Signed-off-by: Donghwa Jeong <dh48.jeong@samsung.com>
This commit is contained in:
Donghwa Jeong 2018-06-12 17:09:13 +09:00
parent c6d0d3cb30
commit 2dce415b62
No known key found for this signature in database
GPG Key ID: 0BE2750EE612F372
2 changed files with 51 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
src/lxc/pam/pam_cgfs.c
View File

@ -1520,14 +1520,32 @@ static void cg_escape(void)
/* Get uid and gid for @user. */
static bool get_uid_gid(const char *user, uid_t *uid, gid_t *gid)
{
struct passwd *pwent;
strcut passwd pwent;
struct passwd *pwentp = NULL;
char *buf;
size_t bufsize;
int ret;
pwent = getpwnam(user);
if (!pwent)
bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
if (bufsize == -1)
bufsize = 1024;
buf = malloc(bufsize);
if (!buf)
return false;
*uid = pwent->pw_uid;
*gid = pwent->pw_gid;
ret = getpwnam_r(user, &pwent, buf, bufsize, &pwentp);
if (!pwentp) {
if (ret == 0)
mysyslog(LOG_ERR, "Could not find matched password record.\n", NULL);
free(buf);
return false;
}
*uid = pwent.pw_uid;
*gid = pwent.pw_gid;
free(buf);
return true;
}

34
src/lxc/tools/lxc_unshare.c
View File

@ -82,29 +82,51 @@ static void usage(char *cmd)
static bool lookup_user(const char *optarg, uid_t *uid)
{
char name[TOOL_MAXPATHLEN];
struct passwd *pwent = NULL;
struct passwd pwent;
struct passwd *pwentp = NULL;
char *buf;
size_t bufsize;
int ret;
if (!optarg || (optarg[0] == '\0'))
return false;
bufsize = sysconf(_SC_GETPW_R_SIZE_MAX);
if (bufsize == -1)
bufsize = 1024;
buf = malloc(bufsize);
if (!buf)
return false;
if (sscanf(optarg, "%u", uid) < 1) {
/* not a uid -- perhaps a username */
if (sscanf(optarg, "%s", name) < 1)
return false;
pwent = getpwnam(name);
if (!pwent) {
ret = getpwnam_r(name, &pwent, buf, bufsize, &pwentp);
if (!pwentp) {
if (ret == 0)
fprintf(stderr, "could not find matched password record\n");
fprintf(stderr, "invalid username %s\n", name);
free(buf);
return false;
}
*uid = pwent->pw_uid;
*uid = pwent.pw_uid;
} else {
pwent = getpwuid(*uid);
if (!pwent) {
ret = getpwuid_r(*uid, &pwent, buf, bufsize, &pwentp);
if (!pwentp) {
if (ret == 0)
fprintf(stderr, "could not find matched password record\n");
fprintf(stderr, "invalid uid %u\n", *uid);
free(buf);
return false;
}
}
free(buf);
return true;
}