Skip to content

pam/rpassword: Handle VWERASE (e.g. Ctrl+W) by clearing the field#1597

Open
3v1n0 wants to merge 2 commits into
trifectatechfoundation:mainfrom
3v1n0:terminal-keys
Open

pam/rpassword: Handle VWERASE (e.g. Ctrl+W) by clearing the field#1597
3v1n0 wants to merge 2 commits into
trifectatechfoundation:mainfrom
3v1n0:terminal-keys

Conversation

@3v1n0
Copy link
Copy Markdown
Contributor

@3v1n0 3v1n0 commented May 22, 2026

In case Ctrl+W is used in the password field, it would be unsafe to
clear the password words as it may reveal password information, but
rather we want to clear the field fully.

Closes: #1596

squell
squell reviewed May 22, 2026
View reviewed changes
Comment thread src/pam/rpassword.rs Outdated
squell
squell reviewed May 22, 2026
View reviewed changes
Comment thread src/pam/rpassword.rs Outdated
@bjorn3
Copy link
Copy Markdown
Collaborator

bjorn3 commented May 22, 2026

og-sudo doesn't support ctrl-w at all afaict: https://github.com/sudo-project/sudo/blob/a9859d3d91a0c7845b0e9e846210462921a0dd7a/src/tgetpass.c#L425-L452 I modeled the editing functionality of read_unbuffered after this og-sudo code.

@3v1n0
Copy link
Copy Markdown
Contributor Author

3v1n0 commented May 22, 2026

og-sudo doesn't support ctrl-w at all afaict: https://github.com/sudo-project/sudo/blob/a9859d3d91a0c7845b0e9e846210462921a0dd7a/src/tgetpass.c#L425-L452 I modeled the editing functionality of read_unbuffered after this og-sudo code.

Yeah, well I think it worked in some older versions, but still we are already quite different in the password handling (as per showing chars by default) that I think we should not be particularly be 1:1 here.

What I was wondering is to enable VWERASE only in case the only in Hidden::No case.

3v1n0 added 2 commits May 22, 2026 19:31
@3v1n0
e2e-tests/rpassword: Add tests checking control characters behavior
807a37a
@3v1n0
pam/rpassword: Handle VWERASE (e.g. Ctrl+W) by clearing the field
7697c67 
In case Ctrl+W is used in the password field, it would be unsafe to
clear the password words as it may reveal password information, but
rather we want to clear the field fully.

Closes: trifectatechfoundation#1596
@bjorn3
Copy link
Copy Markdown
Collaborator

bjorn3 commented May 22, 2026

Yeah, well I think it worked in some older versions

With pwfeedback disabled it probably worked as that kept delegating line editing to the kernel, but with pwfeedback enabled it shouldn't have worked. And with the current main of og-sudo it shouldn't work with pwfeedback disabled either.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@squell squell squell left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

consultation

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Support Ctrl+W to clear password field

3 participants

@3v1n0 @bjorn3 @squell