isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,440 Commits 1 Branch 0 Tags
1e43242b33829419d23136d92f99296b37a57d0c
Commit Graph

6440 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
91839036db Add missing %s printf escape to the group_plugin, iolog_dir and 
iolog_file descriptions.
 2011-12-20 08:38:47 -05:00
Todd C. Miller
1f97735fbb Fix typo in visiblepw description; from Joel Pickett 2011-12-18 14:20:56 -05:00
Todd C. Miller
a24d86b32c When running a login shell with a login_class specified, use 
LOGIN_SETENV instead of rolling our own login.conf setenv support
since FreeBSD's login.conf has more than just setenv capabilities.
This requires us to swap the plugin-provided envp for the global
environ before calling setusercontext() and then stash the resulting
environ pointer back into the command details, which is kind of a
hack.
 2011-12-08 17:17:25 -05:00
Todd C. Miller
27616d1f3e If srcdir is "." just use the basename of the yacc/lex file when 
generating the C version.  This matches the generated files currently
in the repo.
 2011-12-08 13:41:35 -05:00
Todd C. Miller
31c08fca3e Clean up the DEVEL noise 2011-12-08 12:53:10 -05:00
Todd C. Miller
98c77b5b96 Handle different Unix domain socket (actually socketpair) semantics 
in BSD vs. Linux.  In BSD if one end of the socketpair goes away
select() returns the fd as readable and the read will fail with
ECONNRESET.  This doesn't appear to happen on Linux so if we notice
that the monitor process has died when I/O logging is enabled,
behave like the command has exited.  This means we log the wait
status of the monitor, not the command, but there is nothing else
we can do at that point.  This should only be an issue if SIGKILL
is sent to the monitor process.
 2011-12-08 11:18:38 -05:00
Todd C. Miller
6bcf470fe9 Catch common signals in the monitor process so they get passed to 
the command.  Fixes a problem when the entire login session is
killed when ssh is disconnected or the terminal window is closed.
Previously, the monitor would exit and plugin's close method would
not be called.
 2011-12-08 11:15:53 -05:00
Todd C. Miller
edd32aa8df Mention how to configure pam_hpsec on HP-UX to play nicely with sudo. 2011-12-08 09:10:07 -05:00
Todd C. Miller
666d8d6359 Escape values in the search expression as per RFC 4515. 2011-12-07 15:12:22 -05:00
Todd C. Miller
1cec1f4777 No need for install target to depend explicitly on install-dirs, 
the install-foo targets all depend on it.
 2011-12-07 14:33:25 -05:00
Todd C. Miller
faa10aa827 ignore src/sesh 2011-12-05 11:25:30 -05:00
Todd C. Miller
9f0abb4692 Add support for setenv entries in login.conf. We can't use LOGIN_SETENV 
since the plugin sets up the envp the command is executed with.
Also regen the Makefile.in files while here.  Fixes bug #527
 2011-12-05 10:43:44 -05:00
Todd C. Miller
38a4990e4a Add getaddrinfo() for those without it, written by Russ Allbery 2011-12-02 17:28:50 -05:00
Todd C. Miller
62011b6772 Restore PACKAGE_TARNAME, it is used in docdir 2011-12-02 16:11:50 -05:00
Todd C. Miller
feaad3aff4 SunPro C Compiler also has a _Bool builtin. 
Also add stdbool.h to the MANIFEST
 2011-12-02 15:34:01 -05:00
Todd C. Miller
0e26e43b99 Remove duplicate return statements. 2011-12-02 15:23:42 -05:00
Todd C. Miller
db3fd558be Remove inaccurate comment 2011-12-02 14:41:32 -05:00
Todd C. Miller
199eeb38d4 Fetch the login class for the user we authenticate specifically when 
using BSD authentication.  That user may have a different login class
than what we will use to run the command.  When setting the login
class for the command, use the target user's struct passwd, not
the invoking user's.  Fixes bug 526
 2011-12-02 14:29:54 -05:00
Todd C. Miller
01147eda3a Replace @DEV@ prefix with DEVEL variable so we can do "make DEVEL=1" 2011-12-02 13:43:02 -05:00
Todd C. Miller
b58c1ff6ec Fix "make check" fallout from the sudo_conv changes in sudo_debug. 2011-12-02 11:35:22 -05:00
Todd C. Miller
21a2f95821 Use stdbool.h instead of rolling our own TRUE/FALSE macros. 2011-12-02 11:27:33 -05:00
Todd C. Miller
86c86183ab Add stdbool.h for systems without it. 2011-12-01 13:49:46 -05:00
Todd C. Miller
e54fc4eb34 No longer need SUDO_CHECK_TYPE and SUDO_TYPE_* now that the default 
includes have unistd.h in them.  Add check for socklen_t for upcoming
getaddrinfo compat.
 2011-12-01 11:27:57 -05:00
Todd C. Miller
51e45647ae Use HAVE_STRUCT_TIMESPEC and HAVE_STRUCT_IN6_ADDR instead of 
HAVE_TIMESPEC and HAVE_IN6_ADDR respectively.
 2011-12-01 11:07:17 -05:00
Todd C. Miller
3f4b68dd18 No longer need to include time.h here as missing.h does not use 
time_t.
 2011-12-01 10:47:23 -05:00
Todd C. Miller
21a1460d4c Fix mode on sudoers as needed when the -f option is not specified. 2011-11-30 15:33:26 -05:00
Todd C. Miller
f7925b5889 Add Serbian translation for sudo from translationproject.org 2011-11-30 14:57:45 -05:00
Todd C. Miller
ab887a6fb0 No longer pass debug_file to plugin, plugins must now use CONV_DEBUG_MSG 2011-11-30 14:56:41 -05:00
Todd C. Miller
13514ec03e Build PIE executables for newer Debian and Ubuntu 2011-11-30 13:51:41 -05:00
Todd C. Miller
8fa6ab0372 Include time.h for ctime() prototype. 2011-11-30 09:14:11 -05:00
Todd C. Miller
a64f1eaea8 Do not close error pipe or debug fd via closefrom() as we need them 
to report an exec error should one occur.
 2011-11-29 19:51:24 -05:00
Todd C. Miller
3b2998d554 Document that a sudoUser may now be a group ID. 2011-11-29 16:37:01 -05:00
Todd C. Miller
b12b4fdc7b Add support for permitting access by group ID in addition to group name. 2011-11-29 16:24:45 -05:00
Todd C. Miller
627e485c0e Older Netscape LDAP SDKs don't prototype ldapssl_set_strength() 2011-11-29 15:37:48 -05:00
Todd C. Miller
e9e4a84528 Replace UCB fnmatch.c with a non-recursive version written by 
William A. Rowe Jr.
 2011-11-29 14:57:08 -05:00
Todd C. Miller
dd2fcf16d6 Fix typo, return_debug vs. debug_return 2011-11-29 14:41:00 -05:00
Todd C. Miller
6dbf8cc231 Update Japanese sudoers translation from translationproject.org 2011-11-23 15:04:09 -05:00
Todd C. Miller
e43b726e96 Make the env_reset descriptions consistent. 2011-11-23 10:42:32 -05:00
Todd C. Miller
1b9f2cdbc6 Do multiple expansion when expanding paths to the noexec file, sesh 
and the plugin directory.  Adapted from a diff by Mike Frysinger
 2011-11-22 14:53:47 -05:00
Todd C. Miller
12352244bd regen 2011-11-22 13:16:43 -05:00
Todd C. Miller
0cd56fa292 Add ignore file; from Mike Frysinger 2011-11-21 16:44:21 -05:00
Todd C. Miller
ec0c924e03 no longer save old Makefile.in to .old 2011-11-21 16:44:08 -05:00
Todd C. Miller
55166914c4 regen 2011-11-21 16:43:46 -05:00
Todd C. Miller
b27eeb41b2 Update to libtool 2.4.2 2011-11-21 12:24:32 -05:00
Todd C. Miller
ea2a7b48b1 Bump grammar version for #include and #includedir relative path support. 2011-11-18 12:02:43 -05:00
Todd C. Miller
481877e3b8 Add support for relative paths in #include and #includedir 2011-11-17 20:48:42 -05:00
Todd C. Miller
0124407946 Fix install-plugin when shared objects are unsupported or disabled. 2011-11-17 16:45:52 -05:00
Todd C. Miller
c189fa5f55 Don't write to sbp if it is NULL 2011-11-17 16:33:32 -05:00
Todd C. Miller
eb687d2a4e Remove all sudo/sudoers .mo files on uninstall 
If LINGUAS is set, only install matching .mo files
 2011-11-16 11:18:25 -05:00
Todd C. Miller
f689afb5ee Fix non-dynamic (no dlopen) sudo build. 2011-11-13 21:24:54 -05:00