isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,482 Commits 1 Branch 0 Tags
3b112a17c12fde611dcbb38c285ddf0fee53a56c
Commit Graph

5482 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
070446bc33 Fix remaining syntax errors. 2010-10-11 21:10:34 -04:00
Todd C. Miller
298d0cbe2d sudo binary depends on the libtool-generated libs 2010-10-11 17:40:23 -04:00
Todd C. Miller
86a4a5232f Use HAVE_DLOPEN instead of HAVE_DLFCN_H when determining whether to 
include the local or system dlfcn.h
 2010-10-11 17:39:51 -04:00
Todd C. Miller
798fc86a9c Don't use run_as_superuser=false on HP-UX 2010-10-11 16:15:01 -04:00
Todd C. Miller
3ff8d5e781 Use memset() instead of zero_bytes() since we don't include sudoers.h 2010-10-11 15:51:21 -04:00
Todd C. Miller
06b0aa1185 Fix pasto; AF_INET not AF_INET6 2010-10-11 15:43:59 -04:00
Todd C. Miller
de68538487 Actually call shl_load() 2010-10-11 15:19:00 -04:00
Todd C. Miller
e2e5cfe180 Update from git repo. 
Debian: version numbers now compliant with policy section 5.6.12
HP-UX: minimal changes needed to work on HP-UX 10.20
 2010-10-11 14:24:10 -04:00
Todd C. Miller
443d18b11a Fix dlopen() detection for systems where dlopen() is in a separate library. 2010-10-11 09:21:56 -04:00
Todd C. Miller
6a52054147 If pam_acct_mgmt() returns PAM_AUTH_ERR print a (hopefully) more useful 
message and return AUTH_FATAL so sudo does not keep trying to validate
the user.
 2010-10-11 09:12:23 -04:00
Todd C. Miller
5fc7233d2f sudo_preload_table is an array 2010-10-11 09:12:07 -04:00
Todd C. Miller
86d3e4bf09 Quiet a compiler warning and fix sudo_preload_table external definition. 2010-10-11 09:11:46 -04:00
Todd C. Miller
dc327471b7 Fix multiple inclusion guard in dlfcn.h and fix dlerror() prototype. 2010-10-11 09:11:20 -04:00
Todd C. Miller
751f597b2b Make this compile correctly when no dlopen is available. 2010-10-11 09:10:10 -04:00
Todd C. Miller
66ea399856 Having a timestamp file defined is no longer indicative of tty tickets 
being enabled.  Check def_tty_tickets directly.
 2010-10-07 14:12:17 -04:00
Todd C. Miller
e2f253e51d Fix TCGETWINSZ compat. 2010-10-07 14:11:10 -04:00
Todd C. Miller
1a4990f571 Prefer newer TIOCGWINSZ ioctl to old TIOCGSIZE 2010-10-02 17:11:07 -04:00
Todd C. Miller
6b4fe798d5 Move set_project() from sudoers module into sudo proper. 2010-10-01 13:52:42 -04:00
Todd C. Miller
e59fa31bac Fix typo and regenerate 2010-10-01 12:20:32 -04:00
Todd C. Miller
a627c60deb When iterating over returned LDAP entries, keep looking at remaining 
matches even if we have a positive match.  This catches negative
matches that may exist in other entries and more closely match the
sudoers file behavior.
 2010-10-01 12:17:01 -04:00
Todd C. Miller
acaceb4242 Add support for multiple package instances on Solaris. 2010-10-01 12:08:02 -04:00
Todd C. Miller
413b7b55d1 Add missing signal_pipe[0] to fdsr for the non-pty case. 2010-10-01 12:03:47 -04:00
Todd C. Miller
d93df4e878 Add --with-project for Solaris 2010-10-01 11:36:14 -04:00
Todd C. Miller
2bae9e2cb1 Need ar and ranlib too 2010-10-01 09:39:11 -04:00
Todd C. Miller
614e2a642c Preserve ODMDIR environment variable by default on AIX. 2010-09-27 14:08:54 -04:00
Todd C. Miller
f538ed4e35 Add dlopen() emulation for systems without it. 
For HP-UX 10, emulate using shl_load().
For others, link sudoers plugin statically and use a lookup
table to emulate dlsym().
 2010-09-26 17:41:35 -04:00
Todd C. Miller
b0b57fbef9 When including compat headers, use the compat dir as part of the path 
so we are sure to get the correct header.
 2010-09-24 17:01:17 -04:00
Todd C. Miller
590eed3bd7 Ignore ECONNREFUSED from audit_log_user_command() which will 
occur if auditd is not running.
 2010-09-21 07:56:16 -04:00
Todd C. Miller
89f161ad8e Sync with git version 2010-09-17 12:14:12 -04:00
Todd C. Miller
48d7c78330 Cast isblank argument to unsigned char. 2010-09-16 10:39:08 -04:00
Todd C. Miller
b51afe6249 Implement --with-umask-override configure flag. 2010-09-14 17:18:55 -04:00
Todd C. Miller
ed45e68da9 Take MODE_LOGIN_SHELL into account when initially setting reset_home 
instead of special-casing it later.
 2010-09-14 11:44:33 -04:00
Todd C. Miller
53f9cfe062 In login mode, make a copy of the runas user's pw_shell for NewArgv[0] 
because 1) we modify it and 2) it will runas_pw gets freed before exec.
 2010-09-14 11:30:28 -04:00
Todd C. Miller
ce942f18c0 Reset HOME for "sudo -i" even if HOME was listed in env_keep. 2010-09-14 11:28:40 -04:00
Todd C. Miller
ece29bdea1 Use SIG_SETMASK when resetting signal mask instead of SIG_UNBLOCK. 2010-09-14 09:25:52 -04:00
Todd C. Miller
01c7840dc5 Reset signal mask at sudo startup time; we need to be able to rely on 
normal signal delivery to control the child process.
 2010-09-14 09:23:19 -04:00
Todd C. Miller
607eab1151 Use sed instead of expr to split a flag from its argument. 
Fixes a problem with expr interpreting its arguments as a flag
when they start with a dash.
 2010-09-13 16:34:38 -04:00
Todd C. Miller
fdf877d53b Do not need sys/time.h after all 2010-09-13 13:20:35 -04:00
Todd C. Miller
702a2bff2b Include sys/time.h for utimes() and struct timeval. 
No longer need ioctl.h or termios.h
 2010-09-13 13:17:26 -04:00
Todd C. Miller
502555d2de Quiet bogus compiler warnings. 2010-09-13 12:18:51 -04:00
Todd C. Miller
da67324b11 Declare innetgr() for HP-UX which is missing a declaration. 
Declare domainname() for HP-UX and Solaris which are missing a declaration.
 2010-09-13 11:52:46 -04:00
Todd C. Miller
77eb8cfe5b Use __sun for consistency with the rest of the sources. 2010-09-13 11:49:10 -04:00
Todd C. Miller
4101f2eef0 Quiet a bogus compiler warning. 2010-09-13 11:37:29 -04:00
Todd C. Miller
933c71e9c3 Don't try to delref a NULL group. 2010-09-13 11:08:04 -04:00
Todd C. Miller
1490269899 Include memory.h on systems that need it. 2010-09-13 10:40:53 -04:00
Todd C. Miller
c04f48b4bf Quiet gcc warnings on glibc systems that use warn_unused_result for 
write(2).
 2010-09-11 09:26:09 -04:00
Todd C. Miller
bd1884bb43 sudo_plugin is in section 8; from Ted Percival 2010-09-11 09:07:53 -04:00
Todd C. Miller
4ce8b35cd3 testsudoers depends on libsudoers.la, not sudoreplay 2010-09-11 09:00:06 -04:00
Todd C. Miller
66bea8c4c9 Read as many signals on the signal pipe as we can before returning. 2010-09-10 11:27:20 -04:00
Todd C. Miller
59399d55c3 Instead of using a array to store received signals, open a pipe and 
have the signal handler write the signal number to one end and
select() on the other end.  This makes it possible to handle signals
similar to I/O without race conditions.
 2010-09-10 11:20:32 -04:00