in a further fit of anality, stat the file even before handing it to the

Fri Sep 26 13:38:55 2003  George Lebl <jirka@5z.com>

	* daemon/slave.c: in a further fit of anality, stat the file
	  even before handing it to the greeter and don't allow other
	  then regular files.

2 files changed, 13 insertions, 0 deletions

diff --git a/ChangeLog b/ChangeLog
index 2bcaaa0a..f733e4bd 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,9 @@
+Fri Sep 26 13:38:55 2003  George Lebl <jirka@5z.com>
+
+	* daemon/slave.c: in a further fit of anality, stat the file
+	  even before handing it to the greeter and don't allow other
+	  then regular files.
+
 Fri Sep 26 10:44:18 2003  George Lebl <jirka@5z.com>
 
 	* daemon/slave.c: to be even analer about filenames of user pics,
diff --git a/daemon/slave.c b/daemon/slave.c
index 0cbcb0cc..1f87c4ea 100644
--- a/daemon/slave.c
+++ b/daemon/slave.c
@@ -1939,6 +1939,13 @@ run_pictures (void)
 
 					/* if in trusted dir, just use it */
 					if (is_in_trusted_pic_dir (picfile)) {
+						struct stat s;
+
+						if (stat (picfile, &s) != 0 ||
+						    ! S_ISREG (s.st_mode)) {
+							g_free (picfile);
+							picfile = g_strdup ("");
+						}
 						NEVER_FAILS_seteuid (0);
 						NEVER_FAILS_setegid (GdmGroupId);