|
|
943807 |
diff -up openssh/auth2-pubkey.c.refactor openssh/auth2-pubkey.c
|
|
|
943807 |
--- openssh/auth2-pubkey.c.refactor 2019-04-04 13:19:12.188821236 +0200
|
|
|
943807 |
+++ openssh/auth2-pubkey.c 2019-04-04 13:19:12.276822078 +0200
|
|
|
943807 |
@@ -72,6 +72,9 @@
|
|
|
943807 |
|
|
|
943807 |
/* import */
|
|
|
943807 |
extern ServerOptions options;
|
|
|
943807 |
+extern int inetd_flag;
|
|
|
943807 |
+extern int rexeced_flag;
|
|
|
943807 |
+extern Authctxt *the_authctxt;
|
|
|
943807 |
|
|
|
943807 |
static char *
|
|
|
943807 |
format_key(const struct sshkey *key)
|
|
|
943807 |
@@ -511,7 +514,8 @@ match_principals_command(struct ssh *ssh
|
|
|
943807 |
if ((pid = subprocess("AuthorizedPrincipalsCommand", command,
|
|
|
943807 |
ac, av, &f,
|
|
|
943807 |
SSH_SUBPROCESS_STDOUT_CAPTURE|SSH_SUBPROCESS_STDERR_DISCARD,
|
|
|
943807 |
- runas_pw, temporarily_use_uid, restore_uid)) == 0)
|
|
|
943807 |
+ runas_pw, temporarily_use_uid, restore_uid,
|
|
|
943807 |
+ (inetd_flag && !rexeced_flag), the_authctxt)) == 0)
|
|
|
943807 |
goto out;
|
|
|
943807 |
|
|
|
943807 |
uid_swapped = 1;
|
|
|
943807 |
@@ -981,7 +985,8 @@ user_key_command_allowed2(struct ssh *ss
|
|
|
943807 |
if ((pid = subprocess("AuthorizedKeysCommand", command,
|
|
|
943807 |
ac, av, &f,
|
|
|
943807 |
SSH_SUBPROCESS_STDOUT_CAPTURE|SSH_SUBPROCESS_STDERR_DISCARD,
|
|
|
943807 |
- runas_pw, temporarily_use_uid, restore_uid)) == 0)
|
|
|
943807 |
+ runas_pw, temporarily_use_uid, restore_uid,
|
|
|
943807 |
+ (inetd_flag && !rexeced_flag), the_authctxt)) == 0)
|
|
|
943807 |
goto out;
|
|
|
943807 |
|
|
|
943807 |
uid_swapped = 1;
|
|
|
943807 |
diff -up openssh/misc.c.refactor openssh/misc.c
|
|
|
943807 |
--- openssh/misc.c.refactor 2019-04-04 13:19:12.235821686 +0200
|
|
|
943807 |
+++ openssh/misc.c 2019-04-04 13:19:12.276822078 +0200
|
|
|
943807 |
@@ -756,7 +756,8 @@ auth_get_canonical_hostname(struct ssh *
|
|
|
943807 |
pid_t
|
|
|
943807 |
subprocess(const char *tag, const char *command,
|
|
|
943807 |
int ac, char **av, FILE **child, u_int flags,
|
|
|
943807 |
- struct passwd *pw, privdrop_fn *drop_privs, privrestore_fn *restore_privs)
|
|
|
943807 |
+ struct passwd *pw, privdrop_fn *drop_privs,
|
|
|
943807 |
+ privrestore_fn *restore_privs, int inetd, void *the_authctxt)
|
|
|
943807 |
{
|
|
|
943807 |
FILE *f = NULL;
|
|
|
943807 |
struct stat st;
|
|
|
943807 |
@@ -872,7 +873,7 @@ subprocess(const char *tag, struct passw
|
|
|
943807 |
_exit(1);
|
|
|
943807 |
}
|
|
|
943807 |
#ifdef WITH_SELINUX
|
|
|
943807 |
- if (sshd_selinux_setup_env_variables() < 0) {
|
|
|
943807 |
+ if (sshd_selinux_setup_env_variables(inetd, the_authctxt) < 0) {
|
|
|
943807 |
error ("failed to copy environment: %s",
|
|
|
943807 |
strerror(errno));
|
|
|
943807 |
_exit(127);
|
|
|
943807 |
diff -up openssh/misc.h.refactor openssh/misc.h
|
|
|
943807 |
--- openssh/misc.h.refactor 2019-04-04 13:19:12.251821839 +0200
|
|
|
943807 |
+++ openssh/misc.h 2019-04-04 13:19:12.276822078 +0200
|
|
|
943807 |
@@ -235,7 +235,7 @@ struct passwd *fakepw(void);
|
|
|
943807 |
#define SSH_SUBPROCESS_UNSAFE_PATH (1<<3) /* Don't check for safe cmd */
|
|
|
943807 |
#define SSH_SUBPROCESS_PRESERVE_ENV (1<<4) /* Keep parent environment */
|
|
|
943807 |
pid_t subprocess(const char *, const char *, int, char **, FILE **, u_int,
|
|
|
943807 |
- struct passwd *, privdrop_fn *, privrestore_fn *);
|
|
|
943807 |
+ struct passwd *, privdrop_fn *, privrestore_fn *, int, void *);
|
|
|
943807 |
|
|
|
943807 |
typedef struct arglist arglist;
|
|
|
943807 |
struct arglist {
|
|
|
943807 |
diff -up openssh/openbsd-compat/port-linux.h.refactor openssh/openbsd-compat/port-linux.h
|
|
|
943807 |
--- openssh/openbsd-compat/port-linux.h.refactor 2019-04-04 13:19:12.256821887 +0200
|
|
|
943807 |
+++ openssh/openbsd-compat/port-linux.h 2019-04-04 13:19:12.276822078 +0200
|
|
|
943807 |
@@ -26,8 +26,8 @@ void ssh_selinux_setfscreatecon(const ch
|
|
|
943807 |
|
|
|
943807 |
int sshd_selinux_enabled(void);
|
|
|
943807 |
void sshd_selinux_copy_context(void);
|
|
|
943807 |
-void sshd_selinux_setup_exec_context(char *);
|
|
|
943807 |
-int sshd_selinux_setup_env_variables(void);
|
|
|
943807 |
+void sshd_selinux_setup_exec_context(char *, int, int(char *, const char *), void *, int);
|
|
|
943807 |
+int sshd_selinux_setup_env_variables(int inetd, void *);
|
|
|
943807 |
void sshd_selinux_change_privsep_preauth_context(void);
|
|
|
943807 |
#endif
|
|
|
943807 |
|
|
|
943807 |
diff -up openssh/openbsd-compat/port-linux-sshd.c.refactor openssh/openbsd-compat/port-linux-sshd.c
|
|
|
943807 |
--- openssh/openbsd-compat/port-linux-sshd.c.refactor 2019-04-04 13:19:12.256821887 +0200
|
|
|
943807 |
+++ openssh/openbsd-compat/port-linux-sshd.c 2019-04-04 13:19:12.276822078 +0200
|
|
|
943807 |
@@ -49,11 +49,6 @@
|
|
|
943807 |
#include <unistd.h>
|
|
|
943807 |
#endif
|
|
|
943807 |
|
|
|
943807 |
-extern ServerOptions options;
|
|
|
943807 |
-extern Authctxt *the_authctxt;
|
|
|
943807 |
-extern int inetd_flag;
|
|
|
943807 |
-extern int rexeced_flag;
|
|
|
943807 |
-
|
|
|
943807 |
/* Wrapper around is_selinux_enabled() to log its return value once only */
|
|
|
943807 |
int
|
|
|
943807 |
sshd_selinux_enabled(void)
|
|
|
943807 |
@@ -223,7 +218,8 @@ get_user_context(const char *sename, con
|
|
|
943807 |
}
|
|
|
943807 |
|
|
|
943807 |
static void
|
|
|
943807 |
-ssh_selinux_get_role_level(char **role, const char **level)
|
|
|
943807 |
+ssh_selinux_get_role_level(char **role, const char **level,
|
|
|
943807 |
+ Authctxt *the_authctxt)
|
|
|
943807 |
{
|
|
|
943807 |
*role = NULL;
|
|
|
943807 |
*level = NULL;
|
|
|
943807 |
@@ -241,8 +237,8 @@ ssh_selinux_get_role_level(char **role,
|
|
|
943807 |
|
|
|
943807 |
/* Return the default security context for the given username */
|
|
|
943807 |
static int
|
|
|
943807 |
-sshd_selinux_getctxbyname(char *pwname,
|
|
|
943807 |
- security_context_t *default_sc, security_context_t *user_sc)
|
|
|
943807 |
+sshd_selinux_getctxbyname(char *pwname, security_context_t *default_sc,
|
|
|
943807 |
+ security_context_t *user_sc, int inetd, Authctxt *the_authctxt)
|
|
|
943807 |
{
|
|
|
943807 |
char *sename, *lvl;
|
|
|
943807 |
char *role;
|
|
|
943807 |
@@ -250,7 +246,7 @@ sshd_selinux_getctxbyname(char *pwname,
|
|
|
943807 |
int r = 0;
|
|
|
943807 |
context_t con = NULL;
|
|
|
943807 |
|
|
|
943807 |
- ssh_selinux_get_role_level(&role, &reqlvl);
|
|
|
943807 |
+ ssh_selinux_get_role_level(&role, &reqlvl, the_authctxt);
|
|
|
943807 |
|
|
|
943807 |
#ifdef HAVE_GETSEUSERBYNAME
|
|
|
943807 |
if ((r=getseuserbyname(pwname, &sename, &lvl)) != 0) {
|
|
|
943807 |
@@ -272,7 +268,7 @@ sshd_selinux_getctxbyname(char *pwname,
|
|
|
943807 |
|
|
|
943807 |
if (r == 0) {
|
|
|
943807 |
/* If launched from xinetd, we must use current level */
|
|
|
943807 |
- if (inetd_flag && !rexeced_flag) {
|
|
|
943807 |
+ if (inetd) {
|
|
|
943807 |
security_context_t sshdsc=NULL;
|
|
|
943807 |
|
|
|
943807 |
if (getcon_raw(&sshdsc) < 0)
|
|
|
943807 |
@@ -333,7 +329,8 @@ sshd_selinux_getctxbyname(char *pwname,
|
|
|
943807 |
|
|
|
943807 |
/* Setup environment variables for pam_selinux */
|
|
|
943807 |
static int
|
|
|
943807 |
-sshd_selinux_setup_variables(int(*set_it)(char *, const char *))
|
|
|
943807 |
+sshd_selinux_setup_variables(int(*set_it)(char *, const char *), int inetd,
|
|
|
943807 |
+ Authctxt *the_authctxt)
|
|
|
943807 |
{
|
|
|
943807 |
const char *reqlvl;
|
|
|
943807 |
char *role;
|
|
|
943807 |
@@ -342,11 +339,11 @@ sshd_selinux_setup_variables(int(*set_it
|
|
|
943807 |
|
|
|
943807 |
debug3_f("setting execution context");
|
|
|
943807 |
|
|
|
943807 |
- ssh_selinux_get_role_level(&role, &reqlvl);
|
|
|
943807 |
+ ssh_selinux_get_role_level(&role, &reqlvl, the_authctxt);
|
|
|
943807 |
|
|
|
943807 |
rv = set_it("SELINUX_ROLE_REQUESTED", role ? role : "");
|
|
|
943807 |
|
|
|
943807 |
- if (inetd_flag && !rexeced_flag) {
|
|
|
943807 |
+ if (inetd) {
|
|
|
943807 |
use_current = "1";
|
|
|
943807 |
} else {
|
|
|
943807 |
use_current = "";
|
|
|
943807 |
@@ -362,9 +359,10 @@ sshd_selinux_setup_variables(int(*set_it
|
|
|
943807 |
}
|
|
|
943807 |
|
|
|
943807 |
static int
|
|
|
943807 |
-sshd_selinux_setup_pam_variables(void)
|
|
|
943807 |
+sshd_selinux_setup_pam_variables(int inetd,
|
|
|
943807 |
+ int(pam_setenv)(char *, const char *), Authctxt *the_authctxt)
|
|
|
943807 |
{
|
|
|
943807 |
- return sshd_selinux_setup_variables(do_pam_putenv);
|
|
|
943807 |
+ return sshd_selinux_setup_variables(pam_setenv, inetd, the_authctxt);
|
|
|
943807 |
}
|
|
|
943807 |
|
|
|
943807 |
static int
|
|
|
943807 |
@@ -374,25 +372,28 @@ do_setenv(char *name, const char *value)
|
|
|
943807 |
}
|
|
|
943807 |
|
|
|
943807 |
int
|
|
|
943807 |
-sshd_selinux_setup_env_variables(void)
|
|
|
943807 |
+sshd_selinux_setup_env_variables(int inetd, void *the_authctxt)
|
|
|
943807 |
{
|
|
|
943807 |
- return sshd_selinux_setup_variables(do_setenv);
|
|
|
943807 |
+ Authctxt *authctxt = (Authctxt *) the_authctxt;
|
|
|
943807 |
+ return sshd_selinux_setup_variables(do_setenv, inetd, authctxt);
|
|
|
943807 |
}
|
|
|
943807 |
|
|
|
943807 |
/* Set the execution context to the default for the specified user */
|
|
|
943807 |
void
|
|
|
943807 |
-sshd_selinux_setup_exec_context(char *pwname)
|
|
|
943807 |
+sshd_selinux_setup_exec_context(char *pwname, int inetd,
|
|
|
943807 |
+ int(pam_setenv)(char *, const char *), void *the_authctxt, int use_pam)
|
|
|
943807 |
{
|
|
|
943807 |
security_context_t user_ctx = NULL;
|
|
|
943807 |
int r = 0;
|
|
|
943807 |
security_context_t default_ctx = NULL;
|
|
|
943807 |
+ Authctxt *authctxt = (Authctxt *) the_authctxt;
|
|
|
943807 |
|
|
|
943807 |
if (!sshd_selinux_enabled())
|
|
|
943807 |
return;
|
|
|
943807 |
|
|
|
943807 |
- if (options.use_pam) {
|
|
|
943807 |
+ if (use_pam) {
|
|
|
943807 |
/* do not compute context, just setup environment for pam_selinux */
|
|
|
943807 |
- if (sshd_selinux_setup_pam_variables()) {
|
|
|
943807 |
+ if (sshd_selinux_setup_pam_variables(inetd, pam_setenv, authctxt)) {
|
|
|
943807 |
switch (security_getenforce()) {
|
|
|
943807 |
case -1:
|
|
|
943807 |
fatal_f("security_getenforce() failed");
|
|
|
943807 |
@@ -410,7 +411,7 @@ sshd_selinux_setup_exec_context(char *pw
|
|
|
943807 |
|
|
|
943807 |
debug3_f("setting execution context");
|
|
|
943807 |
|
|
|
943807 |
- r = sshd_selinux_getctxbyname(pwname, &default_ctx, &user_ctx);
|
|
|
943807 |
+ r = sshd_selinux_getctxbyname(pwname, &default_ctx, &user_ctx, inetd, authctxt);
|
|
|
943807 |
if (r >= 0) {
|
|
|
943807 |
r = setexeccon(user_ctx);
|
|
|
943807 |
if (r < 0) {
|
|
|
943807 |
diff -up openssh/platform.c.refactor openssh/platform.c
|
|
|
943807 |
--- openssh/platform.c.refactor 2019-04-04 13:19:12.204821389 +0200
|
|
|
943807 |
+++ openssh/platform.c 2019-04-04 13:19:12.277822088 +0200
|
|
|
943807 |
@@ -32,6 +32,9 @@
|
|
|
943807 |
|
|
|
943807 |
extern int use_privsep;
|
|
|
943807 |
extern ServerOptions options;
|
|
|
943807 |
+extern int inetd_flag;
|
|
|
943807 |
+extern int rexeced_flag;
|
|
|
943807 |
+extern Authctxt *the_authctxt;
|
|
|
943807 |
|
|
|
943807 |
void
|
|
|
943807 |
platform_pre_listen(void)
|
|
|
943807 |
@@ -183,7 +186,9 @@ platform_setusercontext_post_groups(stru
|
|
|
943807 |
}
|
|
|
943807 |
#endif /* HAVE_SETPCRED */
|
|
|
943807 |
#ifdef WITH_SELINUX
|
|
|
943807 |
- sshd_selinux_setup_exec_context(pw->pw_name);
|
|
|
943807 |
+ sshd_selinux_setup_exec_context(pw->pw_name,
|
|
|
943807 |
+ (inetd_flag && !rexeced_flag), do_pam_putenv, the_authctxt,
|
|
|
943807 |
+ options.use_pam);
|
|
|
943807 |
#endif
|
|
|
943807 |
}
|
|
|
943807 |
|
|
|
943807 |
diff -up openssh/sshd.c.refactor openssh/sshd.c
|
|
|
943807 |
--- openssh/sshd.c.refactor 2019-04-04 13:19:12.275822068 +0200
|
|
|
943807 |
+++ openssh/sshd.c 2019-04-04 13:19:51.270195262 +0200
|
|
|
943807 |
@@ -158,7 +158,7 @@ int debug_flag = 0;
|
|
|
943807 |
static int test_flag = 0;
|
|
|
943807 |
|
|
|
943807 |
/* Flag indicating that the daemon is being started from inetd. */
|
|
|
943807 |
-static int inetd_flag = 0;
|
|
|
943807 |
+int inetd_flag = 0;
|
|
|
943807 |
|
|
|
943807 |
/* Flag indicating that sshd should not detach and become a daemon. */
|
|
|
943807 |
static int no_daemon_flag = 0;
|
|
|
943807 |
@@ -171,7 +171,7 @@ static char **saved_argv;
|
|
|
943807 |
static int saved_argc;
|
|
|
943807 |
|
|
|
943807 |
/* re-exec */
|
|
|
943807 |
-static int rexeced_flag = 0;
|
|
|
943807 |
+int rexeced_flag = 0;
|
|
|
943807 |
static int rexec_flag = 1;
|
|
|
943807 |
static int rexec_argc = 0;
|
|
|
943807 |
static char **rexec_argv;
|
|
|
943807 |
@@ -2192,7 +2192,9 @@ main(int ac, char **av)
|
|
|
943807 |
}
|
|
|
943807 |
#endif
|
|
|
943807 |
#ifdef WITH_SELINUX
|
|
|
943807 |
- sshd_selinux_setup_exec_context(authctxt->pw->pw_name);
|
|
|
943807 |
+ sshd_selinux_setup_exec_context(authctxt->pw->pw_name,
|
|
|
943807 |
+ (inetd_flag && !rexeced_flag), do_pam_putenv, the_authctxt,
|
|
|
943807 |
+ options.use_pam);
|
|
|
943807 |
#endif
|
|
|
943807 |
#ifdef USE_PAM
|
|
|
943807 |
if (options.use_pam) {
|
|
|
943807 |
diff -up openssh/sshconnect.c.refactor openssh/sshconnect.c
|
|
|
943807 |
--- openssh/sshconnect.c.refactor 2021-02-24 00:12:03.065325046 +0100
|
|
|
943807 |
+++ openssh/sshconnect.c 2021-02-24 00:12:12.126449544 +0100
|
|
|
943807 |
@@ -892,7 +892,7 @@ load_hostkeys_command(struct hostkeys *h
|
|
|
943807 |
|
|
|
943807 |
if ((pid = subprocess(tag, command, ac, av, &f,
|
|
|
943807 |
SSH_SUBPROCESS_STDOUT_CAPTURE|SSH_SUBPROCESS_UNSAFE_PATH|
|
|
|
943807 |
- SSH_SUBPROCESS_PRESERVE_ENV, NULL, NULL, NULL)) == 0)
|
|
|
943807 |
+ SSH_SUBPROCESS_PRESERVE_ENV, NULL, NULL, NULL, 0, NULL)) == 0)
|
|
|
943807 |
goto out;
|
|
|
943807 |
|
|
|
943807 |
load_hostkeys_file(hostkeys, hostfile_hostname, tag, f, 1);
|