isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Treat LOGIN, LOGNAME and USER specially. If one is preserved

Browse Source 
or deleted we want to preserve or delete all of them.
This commit is contained in:
Todd C. Miller
2018-09-24 05:30:28 -06:00
parent 5f61f2c0f4
commit d537daf787
4 changed files with 56 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
doc/sudoers.cat
View File

@@ -130,7 +130,9 @@ DDEESSCCRRIIPPTTIIOONN
to variables from the invoking process permitted by the _e_n_v___c_h_e_c_k and to variables from the invoking process permitted by the _e_n_v___c_h_e_c_k and
_e_n_v___k_e_e_p options. This is effectively a whitelist for environment _e_n_v___k_e_e_p options. This is effectively a whitelist for environment
variables. The environment variables LOGNAME and USER are treated variables. The environment variables LOGNAME and USER are treated
specially. If only one of them is preserved from user's environment, the specially. If one of them is preserved (or removed) from user's
environment, the other will be as well. If LOGNAME and USER are to be
preserved but only one of them is present in the user's environment, the
other will be set to the same value. This avoids an inconsistent other will be set to the same value. This avoids an inconsistent
environment where one of the variables describing the user name is set to environment where one of the variables describing the user name is set to
the invoking user and one is set to the target user. () are removed the invoking user and one is set to the target user. () are removed
@@ -2925,4 +2927,4 @@ DDIISSCCLLAAIIMMEERR
file distributed with ssuuddoo or https://www.sudo.ws/license.html for file distributed with ssuuddoo or https://www.sudo.ws/license.html for
complete details. complete details.
Sudo 1.8.26 August 7, 2018 Sudo 1.8.26 Sudo 1.8.26 September 24, 2018 Sudo 1.8.26

12
doc/sudoers.man.in
View File

@@ -20,7 +20,7 @@
.\" Agency (DARPA) and Air Force Research Laboratory, Air Force .\" Agency (DARPA) and Air Force Research Laboratory, Air Force
.\" Materiel Command, USAF, under agreement number F39502-99-1-0512. .\" Materiel Command, USAF, under agreement number F39502-99-1-0512.
.\" .\"
.TH "SUDOERS" "5" "August 7, 2018" "Sudo @PACKAGE_VERSION@" "File Formats Manual" .TH "SUDOERS" "5" "September 24, 2018" "Sudo @PACKAGE_VERSION@" "File Formats Manual"
.nh .nh
.if n .ad l .if n .ad l
.SH "NAME" .SH "NAME"
@@ -325,8 +325,14 @@ The environment variables
and and
\fRUSER\fR \fRUSER\fR
are treated specially. are treated specially.
If only one of them is preserved from user's environment, the other If one of them is preserved (or removed) from user's environment, the other
will be set to the same value. will be as well.
If
\fRLOGNAME\fR
and
\fRUSER\fR
are to be preserved but only one of them is present in the user's environment,
the other will be set to the same value.
This avoids an inconsistent environment where one of the variables This avoids an inconsistent environment where one of the variables
describing the user name is set to the invoking user and one is describing the user name is set to the invoking user and one is
set to the target user. set to the target user.

12
doc/sudoers.mdoc.in
View File

@@ -19,7 +19,7 @@
.\" Agency (DARPA) and Air Force Research Laboratory, Air Force .\" Agency (DARPA) and Air Force Research Laboratory, Air Force
.\" Materiel Command, USAF, under agreement number F39502-99-1-0512. .\" Materiel Command, USAF, under agreement number F39502-99-1-0512.
.\" .\"
.Dd August 7, 2018 .Dd September 24, 2018
.Dt SUDOERS @mansectform@ .Dt SUDOERS @mansectform@
.Os Sudo @PACKAGE_VERSION@ .Os Sudo @PACKAGE_VERSION@
.Sh NAME .Sh NAME
@@ -315,8 +315,14 @@ The environment variables
and and
.Ev USER .Ev USER
are treated specially. are treated specially.
If only one of them is preserved from user's environment, the other If one of them is preserved (or removed) from user's environment, the other
will be set to the same value. will be as well.
If
.Ev LOGNAME
and
.Ev USER
are to be preserved but only one of them is present in the user's environment,
the other will be set to the same value.
This avoids an inconsistent environment where one of the variables This avoids an inconsistent environment where one of the variables
describing the user name is set to the invoking user and one is describing the user name is set to the invoking user and one is
set to the target user. set to the target user.

37
plugins/sudoers/env.c
View File

@@ -578,11 +578,42 @@ static bool
matches_env_list(const char *var, struct list_members *list, bool *full_match) matches_env_list(const char *var, struct list_members *list, bool *full_match)
{ {
struct list_member *cur; struct list_member *cur;
bool is_logname = false;
debug_decl(matches_env_list, SUDOERS_DEBUG_ENV) debug_decl(matches_env_list, SUDOERS_DEBUG_ENV)
SLIST_FOREACH(cur, list, entries) { switch (*var) {
if (matches_env_pattern(cur->value, var, full_match)) case 'L':
debug_return_bool(true); if (strncmp(var, "LOGNAME=", 8) == 0)
is_logname = true;
#ifdef _AIX
else if (strncmp(var, "LOGIN=", 6) == 0)
is_logname = true;
#endif
break;
case 'U':
if (strncmp(var, "USER=", 5) == 0)
is_logname = true;
break;
}
if (is_logname) {
/*
* We treat LOGIN, LOGNAME and USER specially.
* If one is preserved/deleted we want to preserve/delete them all.
*/
SLIST_FOREACH(cur, list, entries) {
if (matches_env_pattern(cur->value, "LOGNAME", full_match) ||
#ifdef _AIX
matches_env_pattern(cur->value, "LOGIN", full_match) ||
#endif
matches_env_pattern(cur->value, "USER", full_match))
debug_return_bool(true);
}
} else {
SLIST_FOREACH(cur, list, entries) {
if (matches_env_pattern(cur->value, var, full_match))
debug_return_bool(true);
}
} }
debug_return_bool(false); debug_return_bool(false);
} }