Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/cgwalters/polkit-otherauth-wait-text-agent
Try to trigger polkit race condition
https://github.com/cgwalters/polkit-otherauth-wait-text-agent
Last synced: 1 day ago
JSON representation
Try to trigger polkit race condition
- Host: GitHub
- URL: https://github.com/cgwalters/polkit-otherauth-wait-text-agent
- Owner: cgwalters
- License: other
- Created: 2015-06-04T19:39:45.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2015-06-04T20:12:54.000Z (over 9 years ago)
- Last Synced: 2024-11-16T21:42:07.207Z (about 1 month ago)
- Language: C
- Homepage:
- Size: 133 KB
- Stars: 0
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: COPYING
Awesome Lists containing this project
README
This is a program that attempts to help you trigger
the race condition in
http://lists.freedesktop.org/archives/polkit-devel/2015-June/000425.html
This program does *not* help you create a colliding cookie,
I'm testing that using the patch in
https://bugs.freedesktop.org/show_bug.cgi?id=90837#c1
Assuming you have that patch applied, to reproduce, you need:
- Two logged in users, we'll call them Alice and Mallory
- Alice: run `pkexec echo hello world`
- Mallory: run polkit-otherauth-wait-text-agent pkexec echo hello world
- Alice: Finish authentication
- Mallory: Press return
At this point, depending on whose session was first in the hash table
ordering, you may either see Alice or Mallory's authentication
succeed.
For an unpatched polkit, you would have to take care of getting
a cookie collision on your own.