isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Do not short circuit pseudo commands when we get a match since, depending

Browse Source 
on the settings, we may need to examine all commands for tags.
This commit is contained in:
Todd C. Miller
2008-12-08 15:02:07 +00:00
parent d488f2a034
commit 96f1ea4701
1 changed files with 0 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
parse.c
View File

@@ -192,12 +192,9 @@ sudo_file_lookup(nss, validated, pwflag)
if ((pwcheck == any && nopass != TRUE) || if ((pwcheck == any && nopass != TRUE) ||
(pwcheck == all && nopass != FALSE)) (pwcheck == all && nopass != FALSE))
nopass = cs->tags.nopasswd; nopass = cs->tags.nopasswd;
if (match == ALLOW)
goto matched_pseudo;
} }
} }
} }
matched_pseudo:
if (match == ALLOW || user_uid == 0) { if (match == ALLOW || user_uid == 0) {
/* User has an entry for this host. */ /* User has an entry for this host. */
SET(validated, VALIDATE_OK); SET(validated, VALIDATE_OK);