The su command in sys-apps/shadow segfaults when given a password containing EOF (ctrl+d). I believe it is related to the pam use flag, although it is possible it is simply a coincidence with the version change. Reproducible: Always Steps to Reproduce: 0. (maybe) emerge sys-apps/shadow with the pam use flag enabled 1. run su 2. enter ctrl+d as your password Actual Results: Segfault 0xb7dcc5e3 in strlen () from /lib/libc.so.6 gdb> bt #0 0xb7dcc5e3 in strlen () from /lib/libc.so.6 #1 0xb7d08c3f in pam_get_pass () from /lib/security/pam_ssh.so #2 0x00000000 in ?? () gdb> q Expected Results: su: Authentication failure I would test without the pam use flag, but it is marked as dangerous to arbitrarily flip. Note that everything still works, there's just a segfault instead of an error message in this one particular case.
Created attachment 188789 [details, diff] Patch fixes the issue This fixes the segfault with possibility for pam to work as configured. Beware that example configuration for pam_ssh will try to check other modules so if EOF is entered as passphrase user will be prompted by other modules. This can be changed by using 'requisite' in pam configuration. Please check if it works as this is my first fix for gentoo :) I ask a gentoo developer to pick this up if it's any good.
not a shadow bug
Still not fixed in 1.97
*** Bug 288711 has been marked as a duplicate of this bug. ***
*** Bug 329815 has been marked as a duplicate of this bug. ***
Finally fixed as of 1.97-r3.
Duplicate of bug #232907.
*** Bug 343397 has been marked as a duplicate of this bug. ***