current/SOURCES/pam-1.1.3-console-abstract.patch

diff -up Linux-PAM-1.1.3/modules/pam_console/pam_console.c.abstract Linux-PAM-1.1.3/modules/pam_console/pam_console.c
--- Linux-PAM-1.1.3/modules/pam_console/pam_console.c.abstract  2008-12-16 13:37:52.000000000 +0100
+++ Linux-PAM-1.1.3/modules/pam_console/pam_console.c   2010-11-01 17:01:55.000000000 +0100
@@ -34,6 +34,8 @@
 #include <sys/types.h>
 #include <sys/stat.h>
 #include <sys/param.h>
+#include <sys/socket.h>
+#include <sys/un.h>
 #include <fcntl.h>
 #include <unistd.h>
 #include <stdio.h>
@@ -136,6 +138,32 @@ check_one_console_name(const char *name,
 }
 
 static int
+try_xsocket(const char *path, size_t len) {
+    int fd;
+    union {
+       struct sockaddr    sa;
+       struct sockaddr_un su;
+    } addr;
+
+    fd = socket(AF_UNIX, SOCK_STREAM, 0);
+    if (fd < 0)
+        return 0;
+
+    memset(&addr, 0, sizeof(addr));
+    addr.su.sun_family = AF_UNIX;
+
+    if (len > sizeof(addr.su.sun_path))
+        return 0;
+    memcpy(addr.su.sun_path, path, len);
+    if (connect(fd, &addr.sa, sizeof(addr.su)) == 0) {
+        close(fd);
+        return 1;
+    }
+    close(fd);
+    return 0;
+}
+
+static int
 check_console_name(pam_handle_t *pamh, const char *consolename, int nonroot_ok, int on_set) {
     int found = 0;
     int statted = 0;
@@ -186,22 +214,29 @@ check_console_name(pam_handle_t *pamh, c
     if (!statted && (consolename[0] == ':')) {
         int l;
         char *dot = NULL;
-        strcpy(full_path, "/tmp/.X11-unix/X");
-        l = sizeof(full_path) - 1 - strlen(full_path);
+        char *path = full_path + 1;
+        
+        full_path[0] = '\0';
+        strcpy(path, "/tmp/.X11-unix/X");
+        l = sizeof(full_path) - 2 - strlen(path);
         dot = strchr(consolename + 1, '.');
         if (dot != NULL) {
             l = (l < dot - consolename - 1) ? l : dot - consolename - 1;
         }
-        strncat(full_path, consolename + 1, l);
+        strncat(path, consolename + 1, l);
        full_path[sizeof(full_path) - 1] = '\0';
-        _pam_log(pamh, LOG_DEBUG, TRUE, "checking possible console \"%s\"",
-                full_path);
-        if (lstat(full_path, &st) != -1) {
+        _pam_log(pamh, LOG_DEBUG, TRUE, "checking possible X socket \"%s\"",
+                path);
+
+        /* this will work because st.st_uid is 0 */
+        if (try_xsocket(full_path, strlen(path)+1)) {
+           statted = 1;
+        } else if (try_xsocket(path, strlen(path))) {
            statted = 1;
         }
         else if (!on_set) {  /* there is no X11 socket in case of X11 crash */
             _pam_log(pamh, LOG_DEBUG, TRUE, "can't find X11 socket to examine for %s probably due to X crash", consolename);
-            statted = 1; /* this will work because st.st_uid is 0 */
+            statted = 1; 
         }
     }
 
1	diff -up Linux-PAM-1.1.3/modules/pam_console/pam_console.c.abstract Linux-PAM-1.1.3/modules/pam_console/pam_console.c
2	--- Linux-PAM-1.1.3/modules/pam_console/pam_console.c.abstract 2008-12-16 13:37:52.000000000 +0100
3	+++ Linux-PAM-1.1.3/modules/pam_console/pam_console.c 2010-11-01 17:01:55.000000000 +0100
4	@@ -34,6 +34,8 @@
5	#include <sys/types.h>
6	#include <sys/stat.h>
7	#include <sys/param.h>
8	+#include <sys/socket.h>
9	+#include <sys/un.h>
10	#include <fcntl.h>
11	#include <unistd.h>
12	#include <stdio.h>
13	@@ -136,6 +138,32 @@ check_one_console_name(const char *name,
14	}
15
16	static int
17	+try_xsocket(const char *path, size_t len) {
18	+ int fd;
19	+ union {
20	+ struct sockaddr sa;
21	+ struct sockaddr_un su;
22	+ } addr;
23	+
24	+ fd = socket(AF_UNIX, SOCK_STREAM, 0);
25	+ if (fd < 0)
26	+ return 0;
27	+
28	+ memset(&addr, 0, sizeof(addr));
29	+ addr.su.sun_family = AF_UNIX;
30	+
31	+ if (len > sizeof(addr.su.sun_path))
32	+ return 0;
33	+ memcpy(addr.su.sun_path, path, len);
34	+ if (connect(fd, &addr.sa, sizeof(addr.su)) == 0) {
35	+ close(fd);
36	+ return 1;
37	+ }
38	+ close(fd);
39	+ return 0;
40	+}
41	+
42	+static int
43	check_console_name(pam_handle_t pamh, const char consolename, int nonroot_ok, int on_set) {
44	int found = 0;
45	int statted = 0;
46	@@ -186,22 +214,29 @@ check_console_name(pam_handle_t *pamh, c
47	if (!statted && (consolename[0] == ':')) {
48	int l;
49	char *dot = NULL;
50	- strcpy(full_path, "/tmp/.X11-unix/X");
51	- l = sizeof(full_path) - 1 - strlen(full_path);
52	+ char *path = full_path + 1;
53	+
54	+ full_path[0] = '\0';
55	+ strcpy(path, "/tmp/.X11-unix/X");
56	+ l = sizeof(full_path) - 2 - strlen(path);
57	dot = strchr(consolename + 1, '.');
58	if (dot != NULL) {
59	l = (l < dot - consolename - 1) ? l : dot - consolename - 1;
60	}
61	- strncat(full_path, consolename + 1, l);
62	+ strncat(path, consolename + 1, l);
63	full_path[sizeof(full_path) - 1] = '\0';
64	- _pam_log(pamh, LOG_DEBUG, TRUE, "checking possible console \"%s\"",
65	- full_path);
66	- if (lstat(full_path, &st) != -1) {
67	+ _pam_log(pamh, LOG_DEBUG, TRUE, "checking possible X socket \"%s\"",
68	+ path);
69	+
70	+ /* this will work because st.st_uid is 0 */
71	+ if (try_xsocket(full_path, strlen(path)+1)) {
72	+ statted = 1;
73	+ } else if (try_xsocket(path, strlen(path))) {
74	statted = 1;
75	}
76	else if (!on_set) { /* there is no X11 socket in case of X11 crash */
77	_pam_log(pamh, LOG_DEBUG, TRUE, "can't find X11 socket to examine for %s probably due to X crash", consolename);
78	- statted = 1; /* this will work because st.st_uid is 0 */
79	+ statted = 1;
80	}
81	}
82