xdm/patches/xdm-1.0.1-setuid.patch

Index: session.c
===================================================================
RCS file: /cvs/xorg/app/xdm/session.c,v
retrieving revision 1.7
diff -u -r1.7 session.c
--- session.c	3 Jun 2006 00:05:24 -0000	1.7
+++ session.c	19 Jun 2006 21:30:50 -0000
@@ -492,8 +492,14 @@
     else
 	ResetServer (d);
     if (removeAuth) {
-	setgid (verify.gid);
-	setuid (verify.uid);
+	if (setgid (verify.gid) == -1) {
+	    LogError( "SessionExit: setgid: %s\n", strerror(errno));
+	    exit(status);
+	}
+	if (setuid (verify.uid) == -1) {
+	    LogError( "SessionExit: setuid: %s\n", strerror(errno));
+	    exit(status);
+	}
 	RemoveUserAuthorization (d, &verify);
 #if defined(K5AUTH) && !defined(USE_PAM)   /* PAM modules should handle this */
 	/* do like "kdestroy" program */
Index: xdmshell.c
===================================================================
RCS file: /cvs/xorg/app/xdm/xdmshell.c,v
retrieving revision 1.3
diff -u -r1.3 xdmshell.c
--- xdmshell.c	14 Jul 2005 22:58:25 -0000	1.3
+++ xdmshell.c	19 Jun 2006 21:30:50 -0000
@@ -183,7 +183,11 @@
 #endif
 
     /* make xdm run in a non-setuid environment */
-    setuid (geteuid());
+    if (setuid (geteuid()) == -1) {
+	fprintf(stderr, "%s: cannot setuid (error %d, %s)\r\n",
+		ProgramName, errno, strerror(errno));
+	exit(1);
+    }
 
     /*
      * exec /usr/bin/X11/xdm -nodaemon -udpPort 0
1	niro	153	Index: session.c
2			===================================================================
3			RCS file: /cvs/xorg/app/xdm/session.c,v
4			retrieving revision 1.7
5			diff -u -r1.7 session.c
6			--- session.c 3 Jun 2006 00:05:24 -0000 1.7
7			+++ session.c 19 Jun 2006 21:30:50 -0000
8			@@ -492,8 +492,14 @@
9			else
10			ResetServer (d);
11			if (removeAuth) {
12			- setgid (verify.gid);
13			- setuid (verify.uid);
14			+ if (setgid (verify.gid) == -1) {
15			+ LogError( "SessionExit: setgid: %s\n", strerror(errno));
16			+ exit(status);
17			+ }
18			+ if (setuid (verify.uid) == -1) {
19			+ LogError( "SessionExit: setuid: %s\n", strerror(errno));
20			+ exit(status);
21			+ }
22			RemoveUserAuthorization (d, &verify);
23			#if defined(K5AUTH) && !defined(USE_PAM) /* PAM modules should handle this */
24			/* do like "kdestroy" program */
25			Index: xdmshell.c
26			===================================================================
27			RCS file: /cvs/xorg/app/xdm/xdmshell.c,v
28			retrieving revision 1.3
29			diff -u -r1.3 xdmshell.c
30			--- xdmshell.c 14 Jul 2005 22:58:25 -0000 1.3
31			+++ xdmshell.c 19 Jun 2006 21:30:50 -0000
32			@@ -183,7 +183,11 @@
33			#endif
34
35			/* make xdm run in a non-setuid environment */
36			- setuid (geteuid());
37			+ if (setuid (geteuid()) == -1) {
38			+ fprintf(stderr, "%s: cannot setuid (error %d, %s)\r\n",
39			+ ProgramName, errno, strerror(errno));
40			+ exit(1);
41			+ }
42
43			/*
44			* exec /usr/bin/X11/xdm -nodaemon -udpPort 0