isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,650 Commits 1 Branch 0 Tags
3ffb649863d38372de04f20ccd4ff8b11005d0f2
Commit Graph

479 Commits

Author SHA1 Message Date
Todd C. Miller
3ffb649863 In dump-only mode, use "root" as the default username instead of 
"nobody" as the latter may not be available on all systems.
 2011-04-01 13:54:30 -04:00
Todd C. Miller
129ccecd3d Remove NewArgv/NewArgc, they are no longer needed. 2011-03-31 14:06:11 -04:00
Todd C. Miller
987e1dbe62 Fix setting of user_args 2011-03-31 13:57:05 -04:00
Todd C. Miller
c82e29f274 Add '!' token to lex tracing 2011-03-31 13:42:05 -04:00
Todd C. Miller
0e2d58863a Use group bin in test, not wheel as most systems have the bin group 
but the same is no longer true of wheel.
 2011-03-31 12:54:17 -04:00
Todd C. Miller
ca32055fd8 Avoid using pre or post increment in a parameter to a ctype(3) 
function as it might be a macro that causes the increment to happen
more than once.
 2011-03-31 12:48:01 -04:00
Todd C. Miller
44c763c728 If there is an existing sudoers file, only install if it passes a 
syntax check.
 2011-03-29 15:20:32 -04:00
Todd C. Miller
8b9d773bae Add runasgroup support to testsudoers 2011-03-29 14:40:07 -04:00
Todd C. Miller
5e067b2734 For "make check", keep going even if a test fails. 2011-03-29 14:39:02 -04:00
Todd C. Miller
b87465b56f More useful exit codes: 
* 0 - parsed OK and command matched.
 * 1 - parse error
 * 2 - command not matched
 * 3 - command denied
 2011-03-29 13:09:58 -04:00
Todd C. Miller
b0be8d20ce Add support to user_in_group() for treating group names that begin with 
a '#' as gids.
 2011-03-29 11:29:43 -04:00
Todd C. Miller
041b1a896a Add back missing #include of config.h 2011-03-28 14:50:55 -04:00
Todd C. Miller
353f31751d Avoid a NULL deref on unrecognized escapes. 
Collapse %% -> % like strftime() does.
 2011-03-28 12:54:41 -04:00
Todd C. Miller
b485739edd Add test for a newline in the middle of a string when no line continuation 
character is used.
 2011-03-27 17:22:02 -04:00
Todd C. Miller
e3ff59e506 Use bitwise AND instead of modulus to check for length being odd. 
A newline in the middle of a string is an error unless a line
continuation character is used.
 2011-03-27 17:12:45 -04:00
Todd C. Miller
45b82039be Move lexer globals initialization into init_lexer. 2011-03-27 09:45:42 -04:00
Todd C. Miller
aed50b4d7b Fix a potential crash when a non-regular file is present in an 
includedir.  Fixes bz #452
 2011-03-27 09:27:43 -04:00
Todd C. Miller
ba50e99cbd Don't need all sudoers.h here. 2011-03-25 10:22:19 -04:00
Todd C. Miller
e9f89d7964 Update to match change in input. 2011-03-24 11:15:11 -04:00
Todd C. Miller
31c164dae1 Make an empty group or netgroup a syntax error. 2011-03-24 11:00:30 -04:00
Todd C. Miller
c5cc89da15 An empty group or netgroup should be a syntax error. 2011-03-24 11:00:05 -04:00
Todd C. Miller
5438a0be6a Check that uids work in per-user and per-runas Defaults 
Check that uids and gids work in a Command_Spec
 2011-03-24 10:40:03 -04:00
Todd C. Miller
bc333ae448 Test empty string in User_Alias and Command_Spec 2011-03-24 10:39:25 -04:00
Todd C. Miller
784d0dda37 Allow a group ID in the User_Spec. 2011-03-24 10:37:34 -04:00
Todd C. Miller
fe1bc681ba Return an error for the empty string when a word is expected. 
Allow an ID for per-user or per-runas Defaults.
 2011-03-23 18:51:57 -04:00
Todd C. Miller
cf8caed3bb Fix printing "User_Alias FOO = ALL" 2011-03-23 16:00:30 -04:00
Todd C. Miller
06bf685b33 Restore ability to define TRACELEXER and have trace output go to stderr. 2011-03-21 17:57:38 -04:00
Todd C. Miller
a2297743aa Restore old behavior of setting sawspace = TRUE for command line 
args when a line continuation character is hit to avoid causing
problems for existing sudoers files.
 2011-03-21 17:46:50 -04:00
Todd C. Miller
0a4c000854 Add test for line continuation and aliases 2011-03-21 15:21:51 -04:00
Todd C. Miller
2f6c096fb5 Make test output line up nicely for parse vs. toke 2011-03-21 15:09:47 -04:00
Todd C. Miller
830fce0f19 Move parser tests to sudoers directory and test the tokenizer output too. 2011-03-21 15:08:49 -04:00
Todd C. Miller
c7dd8399eb If we match a rule anchored to the beginning of a line after parsing 
a line continuation character, return an ERROR token.  It would be
nicer to use REJECT instead but that substantially slows down the
lexer.
 2011-03-21 12:48:33 -04:00
Todd C. Miller
edfb5cd7a2 Move LEXTRACE macro to toke.h so we can use it in yyerror(). 2011-03-21 12:39:06 -04:00
Todd C. Miller
a27b3f3407 Make lex tracing settable at run-time in testsudoers via the -t 
flag.  Trace output goes to stderr.  Will be used by regress tests
to check lexer.
 2011-03-20 21:25:57 -04:00
Todd C. Miller
f083e72a57 Allow whitespace after the modifier in a Defaults entry. 
E.g. "Defaults: username set_home"
 2011-03-20 12:24:36 -04:00
Todd C. Miller
33516ed826 user_shell -> run_shell to avoid confusion with the user's SHELL variable. 2011-03-18 10:23:35 -04:00
Todd C. Miller
e8776da730 Add support for sudoers_search_filter setting in ldap.conf. This 
can be used to restrict the set of records returned by the LDAP
query.
 2011-03-18 09:38:42 -04:00
Todd C. Miller
6170002e6f We normaly transition from GOTDEFS to STARTDEFS on whitespace, but 
if that whitespace is followed by a comma, we want to treat it as
part of a list and not transition.
 2011-03-17 16:36:13 -04:00
Todd C. Miller
b7487ae489 Add check for whitespace when a User_List is used for a per-user 
Defaults entry.
 2011-03-17 16:33:11 -04:00
Todd C. Miller
1c0917aa39 Expand quoted name checks to cover recent fixes. 2011-03-17 15:48:00 -04:00
Todd C. Miller
88e35a1932 Fix parsing of double-quoted names in Defaultd and Aliases which was 
broken in 601d97ea8792.
 2011-03-17 15:06:55 -04:00
Todd C. Miller
95bf624417 toke_util.c lives in $(srcdir) not $(devdir) 2011-03-17 14:33:25 -04:00
Todd C. Miller
092b4b4d02 Be careful not to deref user_stat if it is NULL. This cannot currently 
happen in sudo but might in other programs using the parser.
 2011-03-16 15:59:44 -04:00
Todd C. Miller
3506f01077 Add support for controlling whether utmp is updated and which user is 
listed in the entry.
 2011-03-15 15:53:49 -04:00
Todd C. Miller
cf7ec7a3cc Fix typo; tupple vs. tuple 2011-03-15 15:52:18 -04:00
Todd C. Miller
bf5f17bd63 Adapt check_iolog_path to sessid changes 2011-03-14 11:30:32 -04:00
Todd C. Miller
53da5e8cdf Update copyright years. 2011-03-11 15:34:35 -05:00
Todd C. Miller
cde2cb00f0 Add "user_shell" boolean as a way to indicate to the plugin that 
the -s flag was given.
 2011-03-11 15:02:13 -05:00
Todd C. Miller
6e2778eb22 Move sessid out of sudo_user. 2011-03-11 14:07:26 -05:00
Todd C. Miller
383aef00b1 Log the TSID even if it is not a simple session ID. 2011-03-11 12:11:05 -05:00