[sudo-commits] sudo changeset 7317:d0866ee5f190

Todd C. Miller Todd.Miller at courtesan.com
Tue Sep 27 13:59:19 EDT 2011

changeset:	7317:d0866ee5f190 in /home/hg/sudo
details:	http://www.sudo.ws/repos/sudo/rev/d0866ee5f190
user:		Todd C. Miller <Todd.Miller at courtesan.com>
date:		Tue Sep 27 13:58:17 2011 -0400

Log Message:
	Fix a PAM_USER mismatch in session open/close.  We update PAM_USER
	to the target user immediately before setting resource limits, which
	is after the monitor process has forked (so it has the old value).
	Also, if the user did not authenticate, there is no pamh in the
	monitor so we need to init pam here too.  This means we end up
	calling pam_start() twice, which should be fixed, but at least the
	session is always properly closed now.


 plugins/sudoers/auth/pam.c       |  18 ++++++++++++++----
 plugins/sudoers/auth/sudo_auth.c |   4 ++--
 plugins/sudoers/auth/sudo_auth.h |   4 ++--
 plugins/sudoers/sudoers.c        |   2 +-
 4 files changed, 19 insertions(+), 9 deletions(-)

More information about the sudo-commits mailing list