upstream: stricter validation of messaging socket fd number; disallow

usage of stderr. Based on GHPR492 by RealHurrison OpenBSD-Commit-ID: 73dbbe82ea16f73ce1d044d3232bc869ae2f2ce8
author: djm@openbsd.org <djm@openbsd.org> 2024-04-30 07:53:03 +0200
committer: Damien Miller <djm@mindrot.org> 2024-04-30 07:53:26 +0200
commit: 2e69a724051488e3fb3cd11531c4b5bc1764945b (patch)
tree: 3d106477cec4db155dd54d7464ae2fe9e4f13289 /ssh-keysign.c
parent: upstream: add missing reserved fields to key constraint protocol (diff)
download: openssh-2e69a724051488e3fb3cd11531c4b5bc1764945b.tar.xz
openssh-2e69a724051488e3fb3cd11531c4b5bc1764945b.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/ssh-keysign.c b/ssh-keysign.c
index c54a4bbb7..968344e79 100644
--- a/ssh-keysign.c
+++ b/ssh-keysign.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-keysign.c,v 1.73 2024/01/11 01:51:16 djm Exp $ */
+/* $OpenBSD: ssh-keysign.c,v 1.74 2024/04/30 05:53:03 djm Exp $ */
 /*
  * Copyright (c) 2002 Markus Friedl.  All rights reserved.
  *
@@ -268,7 +268,7 @@ main(int argc, char **argv)
 		    __progname, rver, version);
 	if ((r = sshbuf_get_u32(b, (u_int *)&fd)) != 0)
 		fatal_r(r, "%s: buffer error", __progname);
-	if (fd < 0 || fd == STDIN_FILENO || fd == STDOUT_FILENO)
+	if (fd <= STDERR_FILENO)
 		fatal("%s: bad fd = %d", __progname, fd);
 	if ((host = get_local_name(fd)) == NULL)
 		fatal("%s: cannot get local name for fd", __progname);
author	djm@openbsd.org <djm@openbsd.org>	2024-04-30 07:53:03 +0200
committer	Damien Miller <djm@mindrot.org>	2024-04-30 07:53:26 +0200
commit	2e69a724051488e3fb3cd11531c4b5bc1764945b (patch)
tree	3d106477cec4db155dd54d7464ae2fe9e4f13289 /ssh-keysign.c
parent	upstream: add missing reserved fields to key constraint protocol (diff)
download	openssh-2e69a724051488e3fb3cd11531c4b5bc1764945b.tar.xz openssh-2e69a724051488e3fb3cd11531c4b5bc1764945b.zip