git-auth-leak

author GNU Libc Maintainers <debian-glibc@lists.debian.org>

Sat, 27 Aug 2022 11:38:11 +0000 (12:38 +0100)

committer Aurelien Jarno <aurel32@debian.org>

Sat, 27 Aug 2022 11:38:11 +0000 (12:38 +0100)
author GNU Libc Maintainers <debian-glibc@lists.debian.org>
Sat, 27 Aug 2022 11:38:11 +0000 (12:38 +0100)
committer Aurelien Jarno <aurel32@debian.org>
Sat, 27 Aug 2022 11:38:11 +0000 (12:38 +0100)
diff --git a/hurd/hurdexec.c b/hurd/hurdexec.c

index 7dca090c95cca4c54a3077a27b1a7d3dbdfffb2b..3c16eb693bf5fcb2911d93cbf0e34c023b6482c3 100644 (file)
--- a/hurd/hurdexec.c
+++ b/hurd/hurdexec.c
@@ -229,6 +229,14 @@ retry:
       reflects that our whole ID set differs from what we've set it to.  */
    __mutex_lock (&_hurd_id.lock);
    err = _hurd_check_ids ();
+
+  /* Avoid leaking the rid_auth port reference to the new progam */
+  if (_hurd_id.rid_auth != MACH_PORT_NULL)
+    {
+      __mach_port_deallocate (__mach_task_self (), _hurd_id.rid_auth);
+      _hurd_id.rid_auth = MACH_PORT_NULL;
+    }
+
    if (err == 0 && ((_hurd_id.aux.nuids >= 2 && _hurd_id.gen.nuids >= 1
                     && _hurd_id.aux.uids[1] != _hurd_id.gen.uids[0])
                    || (_hurd_id.aux.ngids >= 2 && _hurd_id.gen.ngids >= 1
@@ -244,11 +252,6 @@ retry:
        _hurd_id.aux.uids[1] = _hurd_id.gen.uids[0];
        _hurd_id.aux.gids[1] = _hurd_id.gen.gids[0];
        _hurd_id.valid = 0;
-      if (_hurd_id.rid_auth != MACH_PORT_NULL)
-       {
-         __mach_port_deallocate (__mach_task_self (), _hurd_id.rid_auth);
-         _hurd_id.rid_auth = MACH_PORT_NULL;
-       }
  
        err = __auth_makeauth (ports[INIT_PORT_AUTH],
                              NULL, MACH_MSG_TYPE_COPY_SEND, 0,
author	GNU Libc Maintainers <debian-glibc@lists.debian.org>
	Sat, 27 Aug 2022 11:38:11 +0000 (12:38 +0100)
committer	Aurelien Jarno <aurel32@debian.org>
	Sat, 27 Aug 2022 11:38:11 +0000 (12:38 +0100)