Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 27 May 2007 01:24:11 +0900 (JST)
From:      Yoshihiko Sarumaru <sarumaru@sachiko.yamayuri.org>
To:        FreeBSD-gnats-submit@FreeBSD.org
Subject:   ports/113031: update port: x11/xdm: SSH_AUTH_SOCK would not set under using with pam_ssh
Message-ID:  <200705261624.l4QGOBKU065377@sachiko.yamayuri.org>
Resent-Message-ID: <200705261650.l4QGo2sn054871@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help 

>Number:         113031
>Category:       ports
>Synopsis:       update port: x11/xdm: SSH_AUTH_SOCK would not set under using with pam_ssh
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Sat May 26 16:50:02 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator:     Yoshihiko Sarumaru
>Release:        FreeBSD 6.2-STABLE i386
>Organization:
>Environment:
System: FreeBSD sachiko.yamayuri.org 6.2-STABLE FreeBSD 6.2-STABLE #1: Wed May 2 00:53:20 JST 2007 sarumaru@sachiko.yamayuri.org:/usr/obj/usr/src/sys/VGN-TX92S i386


	
>Description:
	I have been used xorg 6.9 on my FreeBSD box.
	Until I upgraded it to 7.2, after pam_ssh authentication, SSH_AUTH_SOCK 
	environmental variable was inhelited to all the application executed by
	~/.xsession (typically xterm).
	But from xorg 7.2, SSH_AUTH_SOCK will not be set even though ssh-agent
	is launched by xdm via PAM subsystem.

	You can access more detail at:
	https://bugs.freedesktop.org/show_bug.cgi?id=11020

>How-To-Repeat:
	enable pam_ssh for xdm, then restaert xdm and login with SSH passphrase.
>Fix:
	This patch was provided by an xorg developer (see above Bugzilla URL)
	and already committed to the main line.

--- session.c	Fri Feb  2 10:00:51 2007
+++ session.c	Fri May 25 23:06:58 2007
@@ -627,6 +627,8 @@
 	    return (0);
 	}
 #endif   /* QNX4 doesn't support multi-groups, no initgroups() */
+#endif /* !HAS_SETUSERCONTEXT */
+
 #ifdef USE_PAM
 	if (pamh) {
 	    long i;
@@ -647,6 +649,8 @@
 
 	}
 #endif
+
+#ifndef HAS_SETUSERCONTEXT
 	if (setuid(verify->uid) < 0) {
 	    LogError ("setuid %d (user \"%s\") failed, errno=%d\n",
 		     verify->uid, name, errno);


>Release-Note:
>Audit-Trail:
>Unformatted:

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200705261624.l4QGOBKU065377>