isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,694 Commits 1 Branch 0 Tags
24a087709abb8375b79b17d45b6a4cbdb72bbeec
Commit Graph

5694 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
24a087709a Only check gid of sudoers file if it is group-readable. 2011-05-16 12:19:07 -04:00
Todd C. Miller
7708d5ce84 For AIX, keep calling authenticate() until reenter reaches 0. 2011-05-16 12:17:49 -04:00
Todd C. Miller
4ff045b266 Cache the status of the initial gettext() check. 2011-05-09 11:04:19 -04:00
Todd C. Miller
1994db70da Add --disable-nls flag and improve checks for gettext. 2011-05-09 10:58:52 -04:00
Todd C. Miller
411737cf25 When building with gcc on HP-UX, use -march=1.1 to produce portable 
binaries on a pa-risc2 host.  Previously, the +Dportable option was
used for the HP-UX C compiler but gcc always produced native binaries.
 2011-05-09 10:02:16 -04:00
Todd C. Miller
c865a462cc Prepare sudo front end messages for translation. 2011-05-06 17:47:51 -04:00
Todd C. Miller
96b7c1f0f4 Add initial scaffolding to support localization via gettext() 2011-05-04 15:26:31 -04:00
Todd C. Miller
5c3fbfd733 Don't let the fnmatch/glob macros expand the function prototype. 2011-05-04 11:21:03 -04:00
Todd C. Miller
a1f6db3a0c Resolve namespace collisions on HP-UX ia64 and possibly others by 
adding a rpl_ prefix to our fnmatch and glob replacements and
#defining rpl_foo to foo in the header files.
 2011-05-03 13:45:56 -04:00
Todd C. Miller
4dd3440cb6 Split ALL, ROLE and TYPE into their own actions. Since you can 
only have #ifdefs inside of braces, ROLE and TYPE use a naughty
goto in the non-SELinux case.  This is safe because the actions are
in one big switch() statement.
 2011-04-29 16:05:50 -04:00
Todd C. Miller
189817a313 Fix regexp for matching a CIDR-style IPv4 netmask. From Marc Espie. 2011-04-29 11:22:49 -04:00
Todd C. Miller
8a76ddfef5 askpass moved from sudoers to sudo.conf in sudo 1.8.0 2011-04-27 11:48:46 -04:00
Todd C. Miller
38f7dd359b Remove obsolete warning about runas_default and ordering. 
Move syslog facility and priority lists into the section where
the relevant options are described.
 2011-04-27 11:42:46 -04:00
Todd C. Miller
435d8413b5 Fix SIA support; we no longer have access to the real argc and argv 
so allocate space for a fake one and use the argv passed to the
plugin with "sudo" for argv[0].
 2011-04-26 09:51:34 -04:00
Todd C. Miller
7dfb27fb3b Remove useless realloc when trying to get the buffer size right. 2011-04-23 06:14:36 -04:00
Todd C. Miller
7c35601cf3 Be explicit when setting euid to 0 before call to setreuid(0, 0) 2011-04-23 06:13:48 -04:00
Todd C. Miller
f1bea0a215 Need to do checks for krb5_verify_user, krb5_init_secure_context 
and krb5_get_init_creds_opt_alloc regardless of whether or not
krb5-config is present.
 2011-04-18 09:22:26 -04:00
Todd C. Miller
b08ad6083b Work around weird AIX saved uid semantics on setuid() and setreuid(). 
On AIX, setuid() will only set the saved uid if the euid is already 0.
 2011-04-15 12:30:08 -04:00
Todd C. Miller
2f24216e85 update copyright year 2011-04-14 16:41:38 -04:00
Todd C. Miller
c6ad6d29e5 Treat a missing includedir like an empty one and do not return an error. 2011-04-14 14:27:11 -04:00
Todd C. Miller
55c3dfe39d Fix ARCH setting in cross-compile Solaris packages. 2011-04-12 11:52:41 -04:00
Todd C. Miller
cf5e8d9b77 Fix aix version setting. 2011-04-12 11:50:20 -04:00
Todd C. Miller
b00cf92eff Remove extraneous parens in LDAP filter when sudoers_search_filter 
is enabled that causes a search error.  From Matthew Thomas.
 2011-04-12 11:48:04 -04:00
Todd C. Miller
2af2174092 Correct sizeof() to fix test failure. 2011-04-11 11:41:38 -04:00
Todd C. Miller
365bd63e6c "install" target should depend on "install-dirs". 
Fixes "make -j" problem and closes bz #487.  From Chris Coleman.
 2011-04-11 08:27:59 -04:00
Todd C. Miller
1e72fa9127 Add HAVE_RFC1938_SKEYCHALLENGE 2011-04-07 07:04:26 -04:00
Todd C. Miller
11b133232d Mention plugin loading and libgcc changes 2011-04-06 17:57:10 -04:00
Todd C. Miller
b6d0a28efb Load plugins after parsing arguments and potentially printing the 
version.  That way, an error loading or initializing a plugin doesn't
break "sudo -h" or "sudo -V".
 2011-04-06 17:51:36 -04:00
Todd C. Miller
4b4f5bf32c When using a sub-shell to invoke the sub-make, exec make instead of 
running it inside the shell to avoid an extra process.
 2011-04-06 15:32:04 -04:00
Todd C. Miller
60e9e4dd83 Stop testing unspecified behavior in fnmatch 
Make glob test more portable
 2011-04-06 15:13:23 -04:00
Todd C. Miller
8720363f33 No need to add current dir to include path and having it breaks the 
test programs that expect to get the system glob.h and fnmatch.h
 2011-04-06 15:12:34 -04:00
Todd C. Miller
f52a6ccae4 Fix and document --with-plugindir; partially from Diego Elio Petteno 2011-04-06 12:02:49 -04:00
Todd C. Miller
f949dbcc58 Fix fnmatch and glob tests to not use hard-coded flag values in the 
input file.  Link test programs with libreplace so we get our
replacement verions as needed.
 2011-04-06 10:57:39 -04:00
Todd C. Miller
698c5002d1 If make in a subdir fails, fail the target in the upper level Makefile too. 
Adapted from a patch from Diego Elio Petteno
 2011-04-06 10:15:54 -04:00
Todd C. Miller
233d90f2c3 Add check for NetBSD-style 4-argument skeychallenge() as Gentoo also 
has this.  Adapted from a patch from Diego Elio Petteno
 2011-04-06 10:08:57 -04:00
Todd C. Miller
f6ffc8adf3 Make SUDOERS_LDFLAGS reference $(LDFLAGS) instead of using @LDFLAGS@ 
directly.
 2011-04-06 10:06:51 -04:00
Todd C. Miller
dcc4ec8436 Fix warnings when -without-skey, --without-opie, --without-kerb4, 
--without-kerb5 or --without-SecurID were specified.
 2011-04-06 09:33:07 -04:00
Todd C. Miller
3a54719a69 Add plugins/sudoers/sudoers_version.h 2011-04-06 08:34:39 -04:00
Todd C. Miller
89cd8c2ff1 Back out the --with-libpath addition to SUDOERS_LDFLAGS since that 
now include LDFLAGS in the sudoers Makefile.in.
Add missing settng of @LDFLAGS@ in plugin Makefile.in files.
 2011-04-06 07:01:17 -04:00
Todd C. Miller
dc19e4dff1 Mention %#gid support in User_List and Runas_List 2011-04-05 18:15:05 -04:00
Todd C. Miller
f1078bd28e Keep track of sudoers grammar version and report it in the -V output. 2011-04-05 11:47:31 -04:00
Todd C. Miller
b9d15e8256 Add multiple inclusion guard 2011-04-05 11:42:53 -04:00
Todd C. Miller
021e2a94b9 The --with-libpath option now adds to SUDOERS_LDFLAGS as well as LDFLAGS. 
Remove old -static hack for HP-UX < 9.
Add LTLDFLAGS and set it to -Wc,-static-libgcc if not using GNU ld so we
    don't have a dependency on the shared libgcc in sudoers.so.
 2011-04-05 09:42:59 -04:00
Todd C. Miller
e55bbb1833 Fix typo; from Petr Uzel 2011-04-05 09:13:18 -04:00
Todd C. Miller
3ffb649863 In dump-only mode, use "root" as the default username instead of 
"nobody" as the latter may not be available on all systems.
 2011-04-01 13:54:30 -04:00
Todd C. Miller
129ccecd3d Remove NewArgv/NewArgc, they are no longer needed. 2011-03-31 14:06:11 -04:00
Todd C. Miller
987e1dbe62 Fix setting of user_args 2011-03-31 13:57:05 -04:00
Todd C. Miller
c82e29f274 Add '!' token to lex tracing 2011-03-31 13:42:05 -04:00
Todd C. Miller
0e2d58863a Use group bin in test, not wheel as most systems have the bin group 
but the same is no longer true of wheel.
 2011-03-31 12:54:17 -04:00
Todd C. Miller
ca32055fd8 Avoid using pre or post increment in a parameter to a ctype(3) 
function as it might be a macro that causes the increment to happen
more than once.
 2011-03-31 12:48:01 -04:00