[sudo-users] pam_ssh_agent_auth segfault

Mike Tancsa mike at sentex.net
Wed Sep 21 09:12:13 EDT 2011


On 9/21/2011 8:55 AM, Todd C. Miller wrote:
> If you edit src/load_plugins.c and change the instance of RTLD_GLOBAL
> to RTLD_LOCAL does it work?

Hi,
	Yes it does! I made the following change

# diff -u /tmp/load_plugins.c work/sudo-1.8.2/src/load_plugins.c
--- /tmp/load_plugins.c 2011-09-21 09:09:15.000000000 -0400
+++ work/sudo-1.8.2/src/load_plugins.c  2011-09-21 09:09:32.000000000 -0400
@@ -48,8 +48,8 @@
 #include "sudo_plugin.h"
 #include "sudo_plugin_int.h"

-#ifndef RTLD_GLOBAL
-# define RTLD_GLOBAL   0
+#ifndef RTLD_LOCAL
+# define RTLD_LOCAL    0
 #endif

 #ifdef _PATH_SUDO_NOEXEC
@@ -180,7 +180,7 @@
        }

        /* Open plugin and map in symbol */
-       handle = dlopen(path, RTLD_LAZY|RTLD_GLOBAL);
+       handle = dlopen(path, RTLD_LAZY|RTLD_LOCAL);
        if (!handle) {
            warningx(_("unable to dlopen %s: %s"), path, dlerror());
            goto done;


% sudo -D9 su
sudo: settings: debug_level=9
sudo: settings: progname=sudo
sudo: settings: network_addrs=....
sudo: sudo_mode 1
sudo: policy plugin returns 1
sudo: command info: umask=022
sudo: command info: command=/usr/bin/su
sudo: command info: runas_uid=0
sudo: command info: runas_gid=0
sudo: command info: runas_groups=0,5
sudo: command info: closefrom=3
sudo: command info: set_utmp=true
sudo: command info: login_class=default

# sudo -V | tail -2

Sudoers I/O plugin version 1.8.2


Thanks very much!

	---Mike

-- 
-------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike at sentex.net
Providing Internet services since 1994 www.sentex.net
Cambridge, Ontario Canada   http://www.tancsa.com/



More information about the sudo-users mailing list