From dee3878689aef5365955442869be02d420b65ea6 Mon Sep 17 00:00:00 2001 From: Damien Miller Date: Thu, 13 Jul 2023 12:09:34 +1000 Subject: terminate pkcs11 process for bad libraries Origin: upstream, https://anongit.mindrot.org/openssh.git/commit/?id=b23fe83f06ee7e721033769cfa03ae840476d280 Last-Update: 2023-09-17 Patch-Name: CVE-2023-38408-1.patch --- ssh-pkcs11.c | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/ssh-pkcs11.c b/ssh-pkcs11.c index b2e2b32a5..9e48c134e 100644 --- a/ssh-pkcs11.c +++ b/ssh-pkcs11.c @@ -1537,10 +1537,8 @@ pkcs11_register_provider(char *provider_id, char *pin, error("dlopen %s failed: %s", provider_id, dlerror()); goto fail; } - if ((getfunctionlist = dlsym(handle, "C_GetFunctionList")) == NULL) { - error("dlsym(C_GetFunctionList) failed: %s", dlerror()); - goto fail; - } + if ((getfunctionlist = dlsym(handle, "C_GetFunctionList")) == NULL) + fatal("dlsym(C_GetFunctionList) failed: %s", dlerror()); p = xcalloc(1, sizeof(*p)); p->name = xstrdup(provider_id); p->handle = handle;