isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,546 Commits 1 Branch 0 Tags
02aa965a2d77753b404f68fde9581cd8f7d76ded
Commit Graph

6546 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
2cdd315a08 Don't echo the awk command when building siglist.in 2012-08-17 15:58:45 -04:00
Todd C. Miller
7afcef8ee8 Cosmetic changes. 2012-08-17 15:58:06 -04:00
Todd C. Miller
3bef51c62d The HISTORY, LICENSE and CONTRIBUTORS files are not longer generated. 2012-08-17 15:57:32 -04:00
Todd C. Miller
57f1c7fe05 Sync with translationproject.org and add Italian sudoers translation. 2012-08-17 09:56:44 -04:00
Todd C. Miller
82115dfa17 Expand description of fqdn to talk about systems where the hosts 
file is searched before DNS.
 2012-08-16 10:11:04 -04:00
Todd C. Miller
c2b6033c7a For cat pages there is nothing to make unless DEVEL is set. 2012-08-15 15:10:50 -04:00
Todd C. Miller
1e43242b33 Always use mandoc to format cat pages and remove now-extraneous 
nroff configure tests.
 2012-08-15 10:32:25 -04:00
Todd C. Miller
35d51f3b54 sync polypkg from git 2012-08-15 10:00:27 -04:00
Todd C. Miller
6260a75891 Use AI_FQDN instead of AI_CANONNAME if available since "canonical" 
is not always the same as "fully qualified".
 2012-08-15 09:52:26 -04:00
Todd C. Miller
e01886ed2f Fix some typos. 
Describe error messages not related to policy permissions.
 2012-08-14 14:16:49 -04:00
Todd C. Miller
7aeadbd5b3 Add new check_defaults() function to check (but not update) the 
Defaults entries.  Visudo can now use this instead of update_defaults
to check all the defaults regardless instead of just the global
Defaults entries.
 2012-08-14 10:45:55 -04:00
Todd C. Miller
d764db707a Document sudoers log format. 2012-08-13 16:50:31 -04:00
Todd C. Miller
d312b241df Update for sudo 1.8.5p3 2012-08-13 15:05:00 -04:00
Todd C. Miller
805039bec5 Add missing check for I/O plugin API version when checking for the 
presence of I/O plugin hooks.
 2012-08-13 14:44:54 -04:00
Todd C. Miller
f32aaed29d Can't call debug code in the process_hooks_xxx functions() since 
ctime() may look up the timezone via the TZ environment variable.
 2012-08-13 14:39:40 -04:00
Todd C. Miller
e4e815dd82 Include signal.h before sudo_exec.h since it uses sigset_t * in the 
fork_pty prototype.
 2012-08-10 15:29:07 -04:00
Todd C. Miller
50eae1c227 Remove OPTIONS section; options now go inside DESCRIPTION 2012-08-10 15:23:41 -04:00
Todd C. Miller
66ad86594e regen 2012-08-10 13:18:19 -04:00
Todd C. Miller
ef33ee45d9 Sync with translationproject.org and add new Slovenian translation. 2012-08-10 13:07:53 -04:00
Todd C. Miller
241b2395cf Reduce the number of "internal error, foo overflow" messages that 
need to be translated.
 2012-08-10 12:18:38 -04:00
Todd C. Miller
afaf5e07fe Mention HP-UX reboot fix. 2012-08-10 12:07:52 -04:00
Todd C. Miller
d89b1a6be2 Support for using SSSD (http://fedorahosted.org/sssd/) as a sudoers 
data source.  From Daniel Kopecek and Pavel Brezina.
 2012-08-10 11:59:26 -04:00
Todd C. Miller
a7424cc002 If sudo.conf contains an I/O plugin but no policy plugin, use sudoers 
for the policy plugin.  If a policy plugin is specified without an
I/O plugin, only the policy plugin will be loaded.
 2012-08-09 14:11:41 -04:00
Todd C. Miller
9ad4d48046 Do not modify the .Os section when building the .man.in file from 
.mdoc.in.
 2012-08-09 11:47:01 -04:00
Todd C. Miller
507df9d5c1 Add a note about wildcards matching multiple words and include an 
example.  Also mention that for sudoedit, a wildcard in command
line args does not match a slash.
 2012-08-09 11:36:25 -04:00
Todd C. Miller
0655deab57 Fix a comment, update a variable name in a prototype; all cosmetic. 2012-08-07 14:47:58 -04:00
Todd C. Miller
3ba8da4ab6 Cast 2nd argument of lseek() to off_t if it is a constant for systems 
with 64-bit off_t but without a proper lseek() prototype.
 2012-08-07 14:42:08 -04:00
Todd C. Miller
7d255e42cb Fix some warnings from clang checker-267 2012-08-07 11:01:28 -04:00
Todd C. Miller
487c8abb08 Fix memory leak found by clang checker-267 2012-08-07 10:27:55 -04:00
Todd C. Miller
dc08cf3c99 If we receive a signal from the command we executed, do not forward 
it back to the command.  This fixes a problem with BSD-derived
versions of the reboot command which send SIGTERM to all other
processes, including the sudo process.  Sudo would then deliver
SIGTERM to reboot which would die before calling the reboot() system
call, effectively leaving the system in single user mode.
 2012-08-06 14:38:35 -04:00
Todd C. Miller
d10fb81fe5 Remove section about Solaris 10 on other systems. 
Add missing sudoers.man.in bit to fixman.sh.
 2012-08-03 09:27:39 -04:00
Todd C. Miller
61dfad9c52 Expand section on Solaris privileges. 2012-08-02 21:11:25 -04:00
Todd C. Miller
e7d1f8d54f Expand a bit on the Solaris priv set changes. 2012-08-02 16:48:35 -04:00
Todd C. Miller
355d40aa86 The second argument to init_parser() is now bool. 2012-08-02 15:40:11 -04:00
Todd C. Miller
80597710c1 Fix printing of parse error message to stderr. 2012-08-02 15:37:48 -04:00
Todd C. Miller
57699c5531 If a command matches using an empty Runas_List (i.e. Runas_List is 
present but empty) and the -u option was not specified, set runas_pw
to user_pw instead of using runas_default.  This is intended to be
used in conjunction with the Solaris Privilege Set support for rules
that grant privileges without changing the user.
 2012-08-02 14:37:32 -04:00
Todd C. Miller
e2d210a340 Add support for parsing an empty Runas_List, which only allows the 
command to be run as the invoking user.  This can be used in
conjunction with the Solaris Privilege Set support to grant privileges
without changing the user.
 2012-08-02 14:02:54 -04:00
Todd C. Miller
acba09fbbf Fix HP-UX, just use ".TH name section" like the vendor manuals. 2012-08-01 15:28:02 -04:00
Todd C. Miller
b1d1d89899 Fix compilation on Solaris 2012-08-01 14:57:14 -04:00
Todd C. Miller
602510f1bb Generate a sed script file when munging *.mdoc or *.man instead of 
passing sed expressions on the command line.  Older seds do not
support \n in a replacement so generate and run a sed script instead.
 2012-08-01 14:38:52 -04:00
Todd C. Miller
37cfbc8eaa Use "Sudo VERSION" as the 4th arg to .TH instead of just "VERSION" 2012-08-01 10:54:09 -04:00
Todd C. Miller
5e502bd6d6 When checking whether a signal is user-generated, compare si_code 
against SI_USER instead of <= 0 since on HP-UX, terminal-related
signals get a code of 0.
 2012-07-31 13:36:48 -04:00
Todd C. Miller
9c321baa78 SuSE Enterprise Linux uses RLIMIT_NPROC and _SC_CHILD_MAX interchangably. 
This causes problems when setting RLIMIT_NPROC to RLIM_INFINITY due
to a bug in bash where bash tries to honor the value of _SC_CHILD_MAX
but treats a value of -1 as an error, and uses a default value of
32 instead.

Previously, we just checked RLIMIT_NPROC and, if it was unlimited,
restored the previous value of RLIMIT_NPROC.  However, that makes
it impossible to set nproc to unlimited.  We now only restore the
nproc resource limit if sysconf(_SC_CHILD_MAX) is negative.  In
most cases, pam_limits will set RLIMIT_NPROC for us.
 2012-07-31 11:11:25 -04:00
Todd C. Miller
f205243bd7 Active Directory apparently requires that tenths of a second be 
present in a date so append .0 to the "now" value in the time filter.
Also remove space for the global AND from TIMEFILTER_LENGTH since
it was not being used consistently.  Buffers of TIMEFILTER_LENGTH
now need to account for the terminating NUL byte.
 2012-07-30 11:09:11 -04:00
Todd C. Miller
a9623c29c2 Fix SELinux build 2012-07-30 11:01:32 -04:00
Todd C. Miller
82c808c7ca Remove pod versinons of HISTORY, CONTRIBUTORS and LICENSE as they 
were not being kept in sync.
 2012-07-29 14:17:57 -04:00
Todd C. Miller
e470b86cbf Remove pod versinons of HISTORY, CONTRIBUTORS and LICENSE as they 
were not being kept in sync.
 2012-07-29 14:17:22 -04:00
Todd C. Miller
383e0c860b Fix printing of the permission denied message to standard error 
when a user is not allowed to run a command.  This got broken by
the recent logging changes.
 2012-07-27 16:22:09 -04:00
Todd C. Miller
2c7df29251 Bump grammar version for Solaris privs. 2012-07-27 15:32:42 -04:00
Todd C. Miller
ab64e36e54 Fix errors introduced when sudoNotBefore, sudoNotAfter and sudoOrder 
were added.  From David Hicks.
 2012-07-27 14:25:48 -04:00