Pass a struct to the match functions to track the resolved command.

This makes it possible to update user_cmnd and cmnd_status modified by per-rule CHROOT settings.
2020-09-09 15:26:45 -06:00
parent b6dbfe5094
commit 10d3d69aa1
7 changed files with 63 additions and 24 deletions
--- a/plugins/sudoers/defaults.c
+++ b/plugins/sudoers/defaults.c
@@ -688,7 +688,7 @@ default_binding_matches(struct sudoers_parse_tree *parse_tree,
 	    debug_return_bool(true);
 	break;
    case DEFAULTS_CMND:
-	if (cmndlist_matches(parse_tree, d->binding, NULL) == ALLOW)
+	if (cmndlist_matches(parse_tree, d->binding, NULL, NULL) == ALLOW)
 	    debug_return_bool(true);
 	break;
    }