From dd5f7a45056b94e6a70746c31d4a70c143372a65 Mon Sep 17 00:00:00 2001
From: "Todd C. Miller" <Todd.Miller@sudo.ws>
Date: Sat, 11 Nov 2023 08:31:23 -0700
Subject: [PATCH] No need for sudo_fatalx() here, just pass back an error.

---
 plugins/sudoers/cvtsudoers_ldif.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/plugins/sudoers/cvtsudoers_ldif.c b/plugins/sudoers/cvtsudoers_ldif.c
index 00ed18a30..fbda44c81 100644
--- a/plugins/sudoers/cvtsudoers_ldif.c
+++ b/plugins/sudoers/cvtsudoers_ldif.c
@@ -709,8 +709,9 @@ print_userspec_ldif(FILE *fp, const struct sudoers_parse_tree *parse_tree,
 	    if (conf->sudo_order != 0) {
 		char numbuf[STRLEN_MAX_UNSIGNED(conf->sudo_order) + 1];
 		if (conf->order_max != 0 && conf->sudo_order > conf->order_max) {
-		    sudo_fatalx(U_("too many sudoers entries, maximum %u"),
+		    sudo_warnx(U_("too many sudoers entries, maximum %u"),
 			conf->order_padding);
+		    debug_return_bool(false);
 		}
 		(void)snprintf(numbuf, sizeof(numbuf), "%u", conf->sudo_order);
 		if (!print_attribute_ldif(fp, "sudoOrder", numbuf))