Google Git
Sign in
android / platform / external / libcap / 919d1fefc29626cfabadea976b8518175a88684f
commit919d1fefc29626cfabadea976b8518175a88684f[log] [tgz]
authorAndrew G. Morgan <[email protected]>Sun Aug 01 17:15:32 2021 -0700
committerAndrew G. Morgan <[email protected]>Sun Aug 01 17:15:32 2021 -0700
tree70941c49b3dada07b064d7aaf3c71e41dd70f695
parentef911c679721a2fd335bb9e66057ffd4ebcf240d [diff]
Revive an ancient 'su' implementation to explore use with libcap.

That is, this 'su' is not to be installed setuid-root. It is intended
to be installed `setcap =p su`.

With latest PAM sources (ie., newer than Linux-PAM 1.5.1 [*]) and
libcap this is able to validate that ambient capabilities can be applied
by pam_cap.so. For discussion, see this bug:

   https://bugzilla.kernel.org/show_bug.cgi?id=212945

Caution. I've done very little auditing of this binary. So, I expect
(and will be happy if folk find them) to hear about bugs etc. What makes
me excited is to explore the ways in which classic "setuid-root" exploit
vectors exhibit with bugs in this code...

[*] At the time of writing Linux-PAM 1.5.1 is the latest release and that
was before the needed pam_unix.so support was committed. See

   https://github.com/linux-pam/linux-pam/issues/317#issuecomment-869064103

Signed-off-by: Andrew G. Morgan <[email protected]>
5 files changed
tree: 70941c49b3dada07b064d7aaf3c71e41dd70f695
  1. cap/
  2. contrib/
  3. doc/
  4. go/
  5. goapps/
  6. kdebug/
  7. libcap/
  8. pam_cap/
  9. progs/
  10. psx/
  11. tests/
  12. .gitignore
  13. CHANGELOG
  14. distcheck.sh
  15. gomods.sh
  16. License
  17. Make.Rules
  18. Makefile
  19. pgp.keys.asc
  20. README
  21. template.c