isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,239 Commits 1 Branch 0 Tags
1cc431c42fbeb6c46e3f3ba7c58c6aa15915c7cc
Commit Graph

4239 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
1cc431c42f quiet gcc 2008-11-02 14:35:37 +00:00
Todd C. Miller
4c7a96ba14 Short circuit glob() checks if basename(pattern) != basename(command). 
Refactor code that checks for a command in a directory and use it in the
glob case if the resolved pattern ends in a '/'.
 2008-11-02 14:28:03 +00:00
Todd C. Miller
8ba6fa2ae3 Defer setting runas defaults until after runaspw/gr is setup. 2008-11-01 13:20:01 +00:00
Todd C. Miller
efb510a9dc Use MAXHOSTNAMELEN+1 when allocating host/domain name since some 
systems do not include space for the NUL in the size.  Also manually
NUL-terminate buffer from gethostname() since POSIX is wishy-washy on this.
 2008-10-29 17:26:42 +00:00
Todd C. Miller
9b5e94cef9 When setting the umask, use the union of the user's umask and the 
default value set in sudoers so that we never lower the user's umask
when running a command.
 2008-10-26 21:13:03 +00:00
Todd C. Miller
aa54053ad1 Don't try to read from a zero-length sudoers file. Remove the bogus 
Solaris work-around for EAGAIN.  Since we now use fgetc() it should
not be a problem.
 2008-10-26 20:43:59 +00:00
Todd C. Miller
ab32ede12a In update_defaults() check the return value of user*_matches against 
ALLOW so we don't inadvertantly match on UNSPEC.
 2008-10-25 13:22:41 +00:00
Todd C. Miller
b3349ed6bc regen man pages; no more hyphenation 2008-10-24 13:52:19 +00:00
Todd C. Miller
18e7644032 Don't error out on a zero-length sudoers file. With the advent of 
#include the user could create a situation where sudo is unusable.
 2008-10-24 13:49:10 +00:00
Todd C. Miller
13e2ccea68 Newer heimdal has 2-argument krb5_get_init_creds_opt_free() like MIT krb5. 
Really old heimdal has no krb5_get_init_creds_opt_alloc() at all.  Add
configure tests to handle all the cases.
 2008-10-23 16:06:23 +00:00
Todd C. Miller
cf9fa33eb3 resort ENVIRONMENT 2008-10-08 21:28:48 +00:00
Todd C. Miller
ce67f22495 document sudoers_locale 2008-10-08 21:09:07 +00:00
Todd C. Miller
7bb5160394 add SUDO_EDITOR variable that sudoedit uses in preference to VISUAL or EDITOR 2008-10-08 20:56:17 +00:00
Todd C. Miller
240339c051 In fill_cmnd(), collapse any escaped sudo-specific characters. 
Allows character classes to be used in pathnames.
 2008-10-08 18:27:35 +00:00
Todd C. Miller
55ed6f2c1d fix typo in non-C89 function declaration 2008-10-03 20:02:00 +00:00
Todd C. Miller
22103775cb Mention POSIX characters classes now that out fnmatch() and glob() 
support them.
 2008-10-03 19:56:40 +00:00
Todd C. Miller
5446cd3ae6 Replace [A-z] (which won't match in UTF8) with [A-Za-z] which is 
locale agnostic.
 2008-10-03 19:55:57 +00:00
Todd C. Miller
a71667af5b use __signed char if we are going to assign a negative value since on Power, char is unsigned by default 2008-10-03 14:02:31 +00:00
Todd C. Miller
99cdf6dc8d Add tests for __signed char and signed char. 2008-10-03 13:59:39 +00:00
Todd C. Miller
ad4dd3b223 Fix AIX limit setting. getuserattr() returns values in disk blocks rather 
than bytes.  The default hard stack size in newer AIX is RLIM_SAVED_MAX.
From Dale King.
 2008-10-03 13:19:31 +00:00
Todd C. Miller
0372d7dc2b Add character class support to included glob(3) and fnmatch(3). 2008-09-26 21:13:29 +00:00
Todd C. Miller
8c1e64b7dc Remove UCB advertising clause and some compatibility defines. 2008-09-16 12:28:35 +00:00
Todd C. Miller
8fa4ef591c Check EDITOR/VISUAL to make sure sudoedit is not re-invoking itself or sudo. 
This allows one to set EDITOR to sudoedit without getting into an infinite
loop of sudoedit running itself until the path gets too big.
 2008-09-14 20:07:49 +00:00
Todd C. Miller
b02daa8272 Add sudoers_locale Defaults option to override the default sudoers 
locale of "C".
 2008-09-14 00:45:24 +00:00
Todd C. Miller
508295b1f6 Set locale to system default except for during sudoers parse. 2008-09-13 18:09:28 +00:00
Todd C. Miller
65bce65551 Redo change in 1.34 to use pointer arithmetic. 2008-09-12 13:34:27 +00:00
Todd C. Miller
d0a44e437c Fix a dereference (read) of a freed pointer. Reported by Patrick Williams. 2008-09-11 11:06:37 +00:00
Todd C. Miller
a5245c2358 Set locale to "C" to avoid interpretation issues with character ranges 
in sudoers.  May want to make the locale a sudoers option in the future.
 2008-08-23 23:09:13 +00:00
Todd C. Miller
194d57b966 we no longer use setproctitle 2008-08-20 11:45:15 +00:00
Todd C. Miller
1954d68116 remove #if 1 2008-08-20 11:41:22 +00:00
Todd C. Miller
da6ffd067d Use my replacement mkstemp() from the mktemp package. 2008-08-20 11:40:15 +00:00
Todd C. Miller
ed3cc2b331 regen with yacc skeleton bug fixed 2008-07-12 12:53:05 +00:00
Todd C. Miller
8f38cfbe90 Remove duplicate "as root". From Martin Toft. 2008-07-12 12:48:21 +00:00
Todd C. Miller
e439faeeb4 Flesh out the fake passwd entry used for running commands as a uid not 
listed in the passwd database.  Fixes an issue with some PAM modules.
 2008-07-02 10:27:57 +00:00
Todd C. Miller
0cf7172b1a Error out in -i mode if the user has no shell. This can happen when 
running commands as a uid with no password entry.
 2008-07-01 11:57:55 +00:00
Todd C. Miller
3bf94ded8e Better fix for line continuation inside double quotes. Now accepts 
whitespace between the backslash and the newline like the main lexer.
 2008-06-26 11:49:16 +00:00
Todd C. Miller
bd8e38a0c7 Fix line continuation in strings. It was only being honored if preceded by 
whitespace.
 2008-06-25 18:31:19 +00:00
Todd C. Miller
ca6eddf0df Replace the double fork with a fork + daemonize. 2008-06-22 20:19:42 +00:00
Todd C. Miller
4578548c45 The -i flag should imply env_reset. This got broken in sudo 1.6.9. 2008-06-21 18:59:36 +00:00
Todd C. Miller
5756ddfbeb Change how the mailer is waited for. Instead of having a SIGCHLD 
handler, use the double fork trick to orphan the child that opens
the pipe to sendmail.  Fixes a problem running su on some Linux distros.
 2008-06-21 00:34:47 +00:00
Todd C. Miller
c372928c38 Fix configure test for dirfd() on Linux where DIR is opaque. 2008-06-20 21:16:09 +00:00
Todd C. Miller
e37c901cdc Get rid of the QNX TCSAFLUSH -> TCSADRAIN hack. If QNX still has this 
problem we'll need to revisit this again.
 2008-06-17 21:42:41 +00:00
Todd C. Miller
552eca0d0f Ignore SIGPIPE instead of blocking it when piping to the mailer. If we 
only block the signal it may be delivered later when we unblock.
Also, there is no need to block SIGCHLD since we no longer do the
double fork.  The normal SIGCHLD handler is sufficient.
 2008-06-11 01:13:39 +00:00
Todd C. Miller
cfb45078b2 Add description for NO_PAM_SESSION, from a redhat patch. 2008-06-08 21:37:25 +00:00
Todd C. Miller
06a4e14025 Fix typos in -i usage 2008-06-06 13:36:58 +00:00
Todd C. Miller
e2cbaa50a3 Redo the test for dgettext() in a way that hopefully will work around 
the libintl_dgettext() undefined problem.
 2008-05-18 17:54:48 +00:00
Todd C. Miller
2aadaaded4 change filename in comment 2008-05-11 13:21:09 +00:00
Todd C. Miller
64c5738ec9 Reference schema.ActiveDirectory 2008-05-10 13:18:47 +00:00
Todd C. Miller
1da320979c Mark sudoRunAs as deprecated. 2008-05-09 18:49:25 +00:00
Todd C. Miller
236fd128d3 add sudoRunAsUser and sudoRunAsGroup 2008-05-09 18:48:18 +00:00