Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

lib/shadow.c is 0xDEADBEEF #1228

Open
alejandro-colomar opened this issue Feb 24, 2025 · 1 comment · May be fixed by #1230
Open

lib/shadow.c is 0xDEADBEEF #1228

alejandro-colomar opened this issue Feb 24, 2025 · 1 comment · May be fixed by #1230

Comments

@alejandro-colomar
Copy link
Collaborator

shadow/lib/shadow.c

Line 13 in d3fa0ba

#ifndef HAVE_GETSPNAM

musl libc has getspnam(3), so this very much looks like a dead file.

alx@debian:~/src/musl/libc/master$ grepc -tfd setspent .
./src/passwd/getspent.c:void setspent()
{
}
alx@debian:~/src/musl/libc/master$ grepc -tfd endspent .
./src/passwd/getspent.c:void endspent()
{
}
alx@debian:~/src/musl/libc/master$ grepc -tfd fgetspent .
./src/passwd/fgetspent.c:struct spwd *fgetspent(FILE *f)
{
	static char *line;
	static struct spwd sp;
	size_t size = 0;
	struct spwd *res = 0;
	int cs;
	pthread_setcancelstate(PTHREAD_CANCEL_DISABLE, &cs);
	if (getline(&line, &size, f) >= 0 && __parsespent(line, &sp) >= 0) res = &sp;
	pthread_setcancelstate(cs, 0);
	return res;
}
alx@debian:~/src/musl/libc/master$ grepc -tfd getspent .
./src/passwd/getspent.c:struct spwd *getspent()
{
	return 0;
}
alx@debian:~/src/musl/libc/master$ grepc -tfd getspnam .
./src/passwd/getspnam.c:struct spwd *getspnam(const char *name)
{
	static struct spwd sp;
	static char *line;
	struct spwd *res;
	int e;
	int orig_errno = errno;

	if (!line) line = malloc(LINE_LIM);
	if (!line) return 0;
	e = getspnam_r(name, &sp, line, LINE_LIM, &res);
	errno = e ? e : orig_errno;
	return res;
}
alx@debian:~/src/musl/libc/master$ grepc -tfd getspnam_r .
./src/passwd/getspnam_r.c:int getspnam_r(const char *name, struct spwd *sp, char *buf, size_t size, struct spwd **res)
{
	char path[20+NAME_MAX];
	FILE *f = 0;
	int rv = 0;
	int fd;
	size_t k, l = strlen(name);
	int skip = 0;
	int cs;
	int orig_errno = errno;

	*res = 0;

	/* Disallow potentially-malicious user names */
	if (*name=='.' || strchr(name, '/') || !l)
		return errno = EINVAL;

	/* Buffer size must at least be able to hold name, plus some.. */
	if (size < l+100)
		return errno = ERANGE;

	/* Protect against truncation */
	if (snprintf(path, sizeof path, "/etc/tcb/%s/shadow", name) >= sizeof path)
		return errno = EINVAL;

	fd = open(path, O_RDONLY|O_NOFOLLOW|O_NONBLOCK|O_CLOEXEC);
	if (fd >= 0) {
		struct stat st = { 0 };
		errno = EINVAL;
		if (fstat(fd, &st) || !S_ISREG(st.st_mode) || !(f = fdopen(fd, "rb"))) {
			pthread_setcancelstate(PTHREAD_CANCEL_DISABLE, &cs);
			close(fd);
			pthread_setcancelstate(cs, 0);
			return errno;
		}
	} else {
		if (errno != ENOENT && errno != ENOTDIR)
			return errno;
		f = fopen("/etc/shadow", "rbe");
		if (!f) {
			if (errno != ENOENT && errno != ENOTDIR)
				return errno;
			return 0;
		}
	}

	pthread_cleanup_push(cleanup, f);
	while (fgets(buf, size, f) && (k=strlen(buf))>0) {
		if (skip || strncmp(name, buf, l) || buf[l]!=':') {
			skip = buf[k-1] != '\n';
			continue;
		}
		if (buf[k-1] != '\n') {
			rv = ERANGE;
			break;
		}

		if (__parsespent(buf, sp) < 0) continue;
		*res = sp;
		break;
	}
	pthread_cleanup_pop(1);
	errno = rv ? rv : orig_errno;
	return rv;
}

I'm grinding the axe. :)
alejandro-colomar added a commit to alejandro-colomar/shadow that referenced this issue Feb 24, 2025
@alejandro-colomar
configure.ac, lib/shadow.c: Remove dead file
d959af8 
We didn't even have prototypes for these APIs since long ago, when the
prototypes were removed, but misteriously the implementations remained.

Both glibc and musl provide getspnam(3), so this file was effectively
being ignored by the compiler.  Just remove it.

Also remove the check for getspnam, which isn't used elsewhere.

Fixes: 0ee095a (2007-10-07; "[svn-upgrade] Integrating new upstream version, shadow (4.0.7)")
Closes: <shadow-maint#1228>
Signed-off-by: Alejandro Colomar <[email protected]>
@alejandro-colomar alejandro-colomar linked a pull request Feb 24, 2025 that will close this issue
Open
@zeha
Copy link
Contributor

zeha commented Feb 24, 2025

getusershell also seems documented for both glibc and musl.
futimes checked in configure.ac seems unused

alejandro-colomar added a commit to alejandro-colomar/shadow that referenced this issue Feb 24, 2025
@alejandro-colomar
configure.ac, lib/shadow.c, po/: Remove dead file
22f49d8 
We didn't even have prototypes for these APIs since long ago, when the
prototypes were removed, but misteriously the implementations remained.

Both glibc and musl provide getspnam(3), so this file was effectively
being ignored by the compiler.  Just remove it.

Also remove the check for getspnam, which isn't used elsewhere.

Fixes: 0ee095a (2007-10-07; "[svn-upgrade] Integrating new upstream version, shadow (4.0.7)")
Closes: <shadow-maint#1228>
Signed-off-by: Alejandro Colomar <[email protected]>
alejandro-colomar added a commit to alejandro-colomar/shadow that referenced this issue Mar 3, 2025
@alejandro-colomar
configure.ac, lib/shadow.c, po/: Remove dead file
7e0a3f7 
We didn't even have prototypes for these APIs since long ago, when the
prototypes were removed, but misteriously the implementations remained.

Both glibc and musl provide getspnam(3), so this file was effectively
being ignored by the compiler.  Just remove it.

Also remove the check for getspnam, which isn't used elsewhere.

Fixes: 0ee095a (2007-10-07; "[svn-upgrade] Integrating new upstream version, shadow (4.0.7)")
Closes: <shadow-maint#1228>
Signed-off-by: Alejandro Colomar <[email protected]>
alejandro-colomar added a commit to alejandro-colomar/shadow that referenced this issue Mar 3, 2025
@alejandro-colomar
lib/shadow.c, configure.ac, po/: Remove dead file <lib/shadow.c>
d1c7dbb 
We didn't even have prototypes for these APIs since long ago, when the
prototypes were removed, but misteriously the implementations remained.

Both glibc and musl provide getspnam(3), so this file was effectively
being ignored by the compiler.  Just remove it.

Also remove the check for getspnam, which isn't used elsewhere.

Fixes: 0ee095a (2007-10-07; "[svn-upgrade] Integrating new upstream version, shadow (4.0.7)")
Closes: <shadow-maint#1228>
Signed-off-by: Alejandro Colomar <[email protected]>
alejandro-colomar added a commit to alejandro-colomar/shadow that referenced this issue Mar 3, 2025
@alejandro-colomar
lib/, configure.ac, po/: Remove dead file <lib/shadow.c>
c7e4780 
We didn't even have prototypes for these APIs since long ago, when the
prototypes were removed, but misteriously the implementations remained.

Both glibc and musl provide getspnam(3), so this file was effectively
being ignored by the compiler.  Just remove it.

Also remove the check for getspnam, which isn't used elsewhere.

Fixes: 0ee095a (2007-10-07; "[svn-upgrade] Integrating new upstream version, shadow (4.0.7)")
Closes: <shadow-maint#1228>
Signed-off-by: Alejandro Colomar <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Remove dead beef alejandro-colomar/shadow
2 participants
@zeha @alejandro-colomar