diff options
| author | Ben Lindstrom <mouring@eviladmin.org> | 2002-06-11 18:37:51 +0200 |
|---|---|---|
| committer | Ben Lindstrom <mouring@eviladmin.org> | 2002-06-11 18:37:51 +0200 |
| commit | f9c4884c8effe6dd78ab3ed4e42ed69c4a8652d0 (patch) | |
| tree | bf92c1c3374176a70d0a2dd9ea23d97e13d5ee57 /sshconnect.h | |
| parent | - markus@cvs.openbsd.org 2002/06/10 22:28:41 (diff) | |
| download | openssh-f9c4884c8effe6dd78ab3ed4e42ed69c4a8652d0.tar.xz openssh-f9c4884c8effe6dd78ab3ed4e42ed69c4a8652d0.zip | |
- markus@cvs.openbsd.org 2002/06/11 04:14:26
[ssh.c sshconnect.c sshconnect.h]
no longer use uidswap.[ch] from the ssh client
run less code with euid==0 if ssh is installed setuid root
just switch the euid, don't switch the complete set of groups
(this is only needed by sshd). ok provos@
Diffstat (limited to 'sshconnect.h')
| -rw-r--r-- | sshconnect.h | 20 |
1 files changed, 18 insertions, 2 deletions
diff --git a/sshconnect.h b/sshconnect.h index aeb2e51a5..48148833f 100644 --- a/sshconnect.h +++ b/sshconnect.h @@ -1,4 +1,4 @@ -/* $OpenBSD: sshconnect.h,v 1.15 2002/06/09 13:32:01 markus Exp $ */ +/* $OpenBSD: sshconnect.h,v 1.16 2002/06/11 04:14:26 markus Exp $ */ /* * Copyright (c) 2000 Markus Friedl. All rights reserved. @@ -35,7 +35,7 @@ struct Sensitive { int ssh_connect(const char *, struct sockaddr_storage *, u_short, int, int, - int, struct passwd *, const char *); + int, const char *); void ssh_login(Sensitive *, const char *, struct sockaddr *, struct passwd *); @@ -50,4 +50,20 @@ void ssh_userauth2(const char *, const char *, char *, Sensitive *); void ssh_put_password(char *); + +/* + * Macros to raise/lower permissions. + */ +#define PRIV_START do { \ + int save_errno = errno; \ + (void)seteuid(original_effective_uid); \ + errno = save_errno; \ +} while (0) + +#define PRIV_END do { \ + int save_errno = errno; \ + (void)seteuid(original_real_uid); \ + errno = save_errno; \ +} while (0) + #endif |