Hi all. I know that kernel will close opened file handlers on the end of process life... This will make coverity more happy and also it's good habit to cleanup your mess :).

modules/pam_exec/pam_exec.c | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/modules/pam_exec/pam_exec.c b/modules/pam_exec/pam_exec.c index 12c4444..87b542d 100644 --- a/modules/pam_exec/pam_exec.c +++ b/modules/pam_exec/pam_exec.c @@ -371,13 +371,17 @@ call_exec (const char *pam_type, pam_handle_t *pamh, dup2 (STDOUT_FILENO, STDERR_FILENO) == -1) { int err = errno; + if (logfile) close(i); pam_syslog (pamh, LOG_ERR, "dup2 failed: %m"); _exit (err); }

if (pam_modutil_sanitize_helper_fds(pamh, redirect_stdin, redirect_stdout, redirect_stdout) < 0) + { + if (logfile) close(i); _exit(1); + } if (call_setuid) if (setuid (geteuid ()) == -1) @@ -385,6 +389,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, int err = errno; pam_syslog (pamh, LOG_ERR, "setuid(%lu) failed: %m", (unsigned long) geteuid ()); + if (logfile) close(i); _exit (err); } @@ -392,12 +397,15 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { int err = errno; pam_syslog (pamh, LOG_ERR, "setsid failed: %m"); + if (logfile) close(i); _exit (err); } arggv = calloc (argc + 4, sizeof (char *)); - if (arggv == NULL) + if (arggv == NULL) { + if (logfile) close(i); _exit (ENOMEM); + } for (i = 0; i < (argc - optargc); i++)

arggv[i] = strdup(argv[i+optargc]); @@ -417,6 +425,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "realloc environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist = tmp; @@ -430,6 +439,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "prepare environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist[envlen++] = envstr; @@ -440,6 +450,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "prepare environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist[envlen++] = envstr; @@ -452,6 +463,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, i = errno; pam_syslog (pamh, LOG_ERR, "execve(%s,...) failed: %m", arggv[0]); free(envlist); + if (logfile) close(i); _exit (i); } return PAM_SYSTEM_ERR; /* will never be reached. */

Hi all. I know that kernel will close opened file handlers on the end of process life... This will make coverity more happy and also it's good habit to cleanup your mess :).

--- modules/pam_exec/pam_exec.c | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/modules/pam_exec/pam_exec.c b/modules/pam_exec/pam_exec.c index 12c4444..87b542d 100644 --- a/modules/pam_exec/pam_exec.c +++ b/modules/pam_exec/pam_exec.c @@ -371,13 +371,17 @@ call_exec (const char *pam_type, pam_handle_t *pamh, dup2 (STDOUT_FILENO, STDERR_FILENO) == -1) { int err = errno; + if (logfile) close(i); pam_syslog (pamh, LOG_ERR, "dup2 failed: %m"); _exit (err); } if (pam_modutil_sanitize_helper_fds(pamh, redirect_stdin, redirect_stdout, redirect_stdout) < 0) + { + if (logfile) close(i); _exit(1); + } if (call_setuid) if (setuid (geteuid ()) == -1) @@ -385,6 +389,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, int err = errno; pam_syslog (pamh, LOG_ERR, "setuid(%lu) failed: %m", (unsigned long) geteuid ()); + if (logfile) close(i); _exit (err); } @@ -392,12 +397,15 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { int err = errno; pam_syslog (pamh, LOG_ERR, "setsid failed: %m"); + if (logfile) close(i); _exit (err); } arggv = calloc (argc + 4, sizeof (char *)); - if (arggv == NULL) + if (arggv == NULL) { + if (logfile) close(i); _exit (ENOMEM); + } for (i = 0; i < (argc - optargc); i++) arggv[i] = strdup(argv[i+optargc]); @@ -417,6 +425,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "realloc environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist = tmp; @@ -430,6 +439,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "prepare environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist[envlen++] = envstr; @@ -440,6 +450,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "prepare environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist[envlen++] = envstr; @@ -452,6 +463,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, i = errno; pam_syslog (pamh, LOG_ERR, "execve(%s,...) failed: %m", arggv[0]); free(envlist); + if (logfile) close(i); _exit (i); } return PAM_SYSTEM_ERR; /* will never be reached. */

On Čt, 2014-08-14 at 13:59 +0200, Tomas Mraz wrote: > On Čt, 2014-08-14 at 08:40 +0200, Robin Hack wrote: > > Hi all. > > > > I know that kernel will close opened file handlers on the end of process > > life... This will make coverity more happy and also it's good habit to > > cleanup your mess :). > > I'd like to have an opinion of other Linux PAM upstream developers > whether we want to fix all these cases where we do not close file > descriptors before _exit(). > > Also there is a problem this patch is not correct although the current > implementation is disputable. The current implementation uses this file > to replace the stdout but this is done by close(STDOUT_FILENO) just > before the open() call but there is no guarantee that STDIN is opened at > that time, which means the file descriptor might be in reality > STDIN_FILENO. > > The attached patch fixes it. And I do not think closing STDOUT_FILENO is > appropriate as in theory something could be written to it even during > the _exit() call. diff --git a/modules/pam_exec/pam_exec.c b/modules/pam_exec/pam_exec.c index 12c4444..0f18fcc 100644 --- a/modules/pam_exec/pam_exec.c +++ b/modules/pam_exec/pam_exec.c @@ -360,9 +360,20 @@ call_exec (const char *pam_type, pam_handle_t *pamh, logfile); _exit (err); } + if (i != STDOUT_FILENO) + { + if (dup2 (i, STDOUT_FILENO) == -1) + { + int err = errno; + pam_syslog (pamh, LOG_ERR, "dup2 failed: %m"); + close (i); + _exit (err); + } + close (i); + } if (asprintf (&buffer, "*** %s", ctime (&tm)) > 0) { - pam_modutil_write (i, buffer, strlen (buffer)); + pam_modutil_write (STDOUT_FILENO, buffer, strlen (buffer)); free (buffer); } } Anybody wants to comment on this patch above, that tries to avoid depending on the stdin in pam_exec being opened?

Hi all. I know that kernel will close opened file handlers on the end of process life... This will make coverity more happy and also it's good habit to cleanup your mess :). --- modules/pam_exec/pam_exec.c | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/modules/pam_exec/pam_exec.c b/modules/pam_exec/pam_exec.c index 12c4444..87b542d 100644 --- a/modules/pam_exec/pam_exec.c +++ b/modules/pam_exec/pam_exec.c @@ -371,13 +371,17 @@ call_exec (const char *pam_type, pam_handle_t *pamh, dup2 (STDOUT_FILENO, STDERR_FILENO) == -1) { int err = errno; + if (logfile) close(i); pam_syslog (pamh, LOG_ERR, "dup2 failed: %m"); _exit (err); } if (pam_modutil_sanitize_helper_fds(pamh, redirect_stdin, redirect_stdout, redirect_stdout) < 0) + { + if (logfile) close(i); _exit(1); + } if (call_setuid) if (setuid (geteuid ()) == -1) @@ -385,6 +389,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, int err = errno; pam_syslog (pamh, LOG_ERR, "setuid(%lu) failed: %m", (unsigned long) geteuid ()); + if (logfile) close(i); _exit (err); } @@ -392,12 +397,15 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { int err = errno; pam_syslog (pamh, LOG_ERR, "setsid failed: %m"); + if (logfile) close(i); _exit (err); } arggv = calloc (argc + 4, sizeof (char *)); - if (arggv == NULL) + if (arggv == NULL) { + if (logfile) close(i); _exit (ENOMEM); + } for (i = 0; i < (argc - optargc); i++) arggv[i] = strdup(argv[i+optargc]); @@ -417,6 +425,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "realloc environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist = tmp; @@ -430,6 +439,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "prepare environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist[envlen++] = envstr; @@ -440,6 +450,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, { free(envlist); pam_syslog (pamh, LOG_ERR, "prepare environment failed: %m"); + if (logfile) close(i); _exit (ENOMEM); } envlist[envlen++] = envstr; @@ -452,6 +463,7 @@ call_exec (const char *pam_type, pam_handle_t *pamh, i = errno; pam_syslog (pamh, LOG_ERR, "execve(%s,...) failed: %m", arggv[0]); free(envlist); + if (logfile) close(i); _exit (i); } return PAM_SYSTEM_ERR; /* will never be reached. */ -- 1.9.3