isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,989 Commits 1 Branch 0 Tags
13fd13e17c89e30a8af32cf353ee09b624d2be5c
Commit Graph

6989 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
2b1b9ae72d Don't check the tty of the parent process. Now that we get the 
controlling tty device number from the kernel there is no need.  If
the process has really disassociated from the tty then reporting
"unknown" is appropriate.
 2013-04-21 10:35:52 -04:00
Todd C. Miller
7ac5730a4c Use EXIT_FAILURE instead of 1 as the fatal() exit value. 2013-04-20 15:10:24 -04:00
Todd C. Miller
8b0c6c5081 Change remaining errorx -> fatalx 2013-04-20 15:09:47 -04:00
Todd C. Miller
5337da144b Replace sudo_fakepwnamid() with sudo_mkpwent() and don't return an 
error if the entry already exists in the cache.
 2013-04-19 14:48:23 -04:00
Todd C. Miller
d913fe69c2 Change "foo: failed" to just "foo" since we print the string form 
of errno.  Gets rids of some useless translations.
 2013-04-19 09:55:48 -04:00
Todd C. Miller
40772f5aa7 Fix pasto in debug_decl 2013-04-18 15:05:23 -04:00
Todd C. Miller
71f9fe33dc regen 2013-04-18 14:14:28 -04:00
Todd C. Miller
1162b55040 Rename log_error() -> log_warning() for consistency with warning()/fatal() 2013-04-18 14:14:03 -04:00
Todd C. Miller
2c3a4e0354 The NO_EXIT flag was removed a while ago. 2013-04-18 14:13:05 -04:00
Todd C. Miller
39acd2fcba Rename error/errorx -> fatal/fatalx and remove the exit value as 
it was always 1.
 2013-04-18 14:07:59 -04:00
Todd C. Miller
0fe2c3eb99 digests are supported in sudoers ldap too 2013-04-18 11:41:38 -04:00
Todd C. Miller
fbcff81cdc Print test failures to stdout like the final count so the outputis 
not displayed out of order.
 2013-04-18 10:44:06 -04:00
Todd C. Miller
904428dd54 Sync with translationproject.org 2013-04-18 09:41:11 -04:00
Todd C. Miller
dc618b9911 Check for any uncommitted changes in dist target and add force-dist 
target that omit check-dist.
 2013-04-18 09:40:38 -04:00
Todd C. Miller
6c9c2b2429 Fix logic bug when checking tty via ttyname(). 2013-04-17 21:16:30 -04:00
Todd C. Miller
5d75798165 Fix check for _BIG_ENDIAN and _LITTLE_ENDIAN (Solaris) and 
__BIG_ENDIAN__ and __LITTLE_ENDIAN__ (HP-UX)
 2013-04-17 16:23:49 -04:00
Todd C. Miller
e8cd84c35a regen 2013-04-17 15:55:17 -04:00
Todd C. Miller
ed6d6963de Document digest support. 2013-04-17 15:42:28 -04:00
Todd C. Miller
e91e30b4b2 Simple bas64 decode unit test. 2013-04-17 12:54:33 -04:00
Todd C. Miller
9c1ee1fe73 Move base64_decode into its own source file. 2013-04-17 09:32:27 -04:00
Todd C. Miller
d32cb3d659 Only check year against 2038 if time_t is 32-bit. 2013-04-17 09:31:26 -04:00
Todd C. Miller
cc3c76b85d Add digest support for sudoers in ldap and sss. 2013-04-16 16:03:37 -04:00
Todd C. Miller
d1580ff592 Error out in configure if the compiler doesn't support "long long". 2013-04-16 14:36:42 -04:00
Todd C. Miller
26a256260d Include stdint.h or inttypes.h before sha2.h 2013-04-16 12:16:41 -04:00
Todd C. Miller
19d0946023 Simplify lbuf append functions by moving the realloc code into 
lbuf_expand().  We now expand as needed each time bytes need to be
written to the lbuf.  Also handle a NULL pointer being passed in
for paranoia's sake.
 2013-04-16 11:52:24 -04:00
Todd C. Miller
6c737f043f Zero out struct iolog_details early to avoid a potential (though 
unlikely) dereference of stack garbage if we hit a fatal error
before iolog_deserialize_info() is called.
 2013-04-16 11:06:55 -04:00
Todd C. Miller
f2a007fb91 Update copyright year. 2013-04-15 16:29:36 -04:00
Todd C. Miller
b0df32a771 Bump SUDOERS_GRAMMAR_VERSION for new digest support. 2013-04-15 15:14:07 -04:00
Todd C. Miller
e715841fc2 Sanity check digest in parser so visudo can catch errors. 
Add base64 support
 2013-04-15 15:12:00 -04:00
Todd C. Miller
89759fa36c For big endian architectures just use memcpy() instead of BE macros 
in a loop.
 2013-04-15 11:05:52 -04:00
Todd C. Miller
35375a2b7e Initial implementation of checksum support in sudoers. 
Currently supports SHA-224, SHA-256, SHA-384, SHA-512.
TODO: checksum format validation in parser and base64 support.
      checksum support for ldap sudoers
 2013-04-14 07:00:21 -04:00
Todd C. Miller
1aa4903520 SHA-224, SHA-256, SHA-384 and SHA-512. Derived from the public 
domain SHA-1 and SHA-2 implementations by Steve Reid and Wei Dai
respectively.
 2013-04-13 07:05:06 -04:00
Todd C. Miller
22c8c12170 Add sudo 1.8.6p8 2013-04-11 15:56:10 -04:00
Todd C. Miller
bce9a96a6d Add missing "not" in error message when mixing standalone and 
non-standalone authentication methods.
 2013-04-11 15:55:32 -04:00
Todd C. Miller
6f718ee3cd Check for crypt() returning NULL. Traditionally, crypt() never returned 
NULL but newer versions of eglibc have a crypt() that does.  Bug #598
 2013-04-11 13:10:40 -04:00
Todd C. Miller
e9726e5974 Better PAM error messages 2013-04-11 09:09:53 -04:00
Todd C. Miller
c00cc3bfe3 Better error messages 2013-04-11 09:03:37 -04:00
Todd C. Miller
8d2c791806 Use same error message for getauid() failure. 2013-04-11 08:54:39 -04:00
Todd C. Miller
236f306a2b Start warning with a lower case letter for consistency and to match 
existing translated strings.
 2013-04-11 06:38:12 -04:00
Todd C. Miller
8ffac2aa6f Disable PIE on Solaris where it is not really supported. 2013-04-10 16:26:41 -04:00
Todd C. Miller
42313adc0d AIX may have a 64-bit pr_ttydev that we need to convert to 32-bit 
before we try to match it against st_rdev.
 2013-04-10 12:30:16 -04:00
Todd C. Miller
54f092c3e6 Break out of the loop if sudo_ttyname_scan() returns non-NULL. 
Fixes a problem finding the tty name when it is not in /dev/pts.
 2013-04-10 12:11:12 -04:00
Todd C. Miller
e3b61c11f1 Support %lld and %llu 2013-04-10 11:17:41 -04:00
Todd C. Miller
ec32194152 Add ttyname test. 2013-04-10 09:39:49 -04:00
Todd C. Miller
c3b9c94e87 Sync with translationproject.org 2013-04-09 14:39:44 -04:00
Todd C. Miller
5555b86d7e Log timestampfile to debug file. 2013-04-09 14:17:59 -04:00
Todd C. Miller
9914cd8a76 Don't add the "Password: " string we look up in the PAM text domain 
to the sudoers.pot file.
 2013-04-09 09:40:36 -04:00
Todd C. Miller
e2ed8cc9f1 Synce with regcomp() error message change. 2013-04-08 15:41:55 -04:00
Todd C. Miller
b6d644b300 Be consistent with error message when regcomp() fails. 2013-04-08 15:41:09 -04:00
Todd C. Miller
e17267b5e1 Use group -1 instead of 1 as the invalid group since the running 
user might have group 1 as their default group.
 2013-04-05 08:17:19 -04:00