isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,115 Commits 1 Branch 0 Tags
47c28e7ece3373c90d0af47b2c1733bcb18a47e9
Commit Graph

225 Commits

Author SHA1 Message Date
Todd C. Miller
47c28e7ece Do not depend on strlcpy/strlcat 2010-07-05 16:49:25 -04:00
Todd C. Miller
6a058e4af9 Standalone test driver for sudoers group plugin. 2010-07-05 16:13:32 -04:00
Todd C. Miller
17dbb33e57 Use RTLD_LAZY instead of RTLD_NOW; was using RTLD_NOW as a debugging aid. 2010-07-02 16:03:21 -04:00
Todd C. Miller
7e91ebff14 Fix style nit in function declarations 2010-07-02 15:56:04 -04:00
Todd C. Miller
e6b48d415c Replace built-in non-unix group support with a sudoers group plugin. 
Include a sample plugin that can read Unix-format group files.
 2010-07-02 11:11:25 -04:00
Todd C. Miller
30fe4a067c Set usrinfo for AIX 
Set adminstrative domain for the process when looking up user's
    password or group info and when preparing for execve().
Include strings.h even if string.h exists since they may define
    different things.  Fixes warnings on AIX and others.
 2010-06-29 13:08:05 -04:00
Todd C. Miller
862d1675cc Do not rely on env.env_len when unsetting a variable, just use the 
NULL terminator.
 2010-06-29 09:26:55 -04:00
Todd C. Miller
0c0a02dfd1 In unsetenv() check for NULL or empty name as per POSIX 1003.1-2008 2010-06-29 09:10:43 -04:00
Todd C. Miller
895e30184e Use warningx() instead of log_error() since the latter is not available 
to visudo or testsudoers.  This does mean that they don't end up in syslog.
 2010-06-25 10:06:08 -04:00
Todd C. Miller
189b43fed3 Defer call to sudo_nonunix_groupcheck_cleanup() until after we have 
closed the sudoers sources.  From Quest sudo.
 2010-06-25 10:05:51 -04:00
Todd C. Miller
8f58fd36bb Ignore case when matching user/group names in the cache. From Quest sudo. 2010-06-25 10:05:37 -04:00
Todd C. Miller
d69e4fd42b Add a cast to quiet a compiler warning. 2010-06-18 18:45:43 -04:00
Todd C. Miller
41b15ae81e Quiet a compiler warning. 2010-06-18 18:39:40 -04:00
Todd C. Miller
d1bf11db33 Call set_fqdn() after sudoers has parsed instead of inline as a callback. 2010-06-18 17:47:55 -04:00
Todd C. Miller
d79b0ece15 Do not call set_fqdn() until sudoers parses (where is gets run as a callback). 2010-06-18 17:25:59 -04:00
Todd C. Miller
f5c5a9bf6a Do not update tty ticket if there is no tty. 2010-06-18 08:00:16 -06:00
Todd C. Miller
9a16dc514d Add stub declarations for struct stat and struct timeval 2010-06-16 17:10:04 -04:00
Todd C. Miller
ebc152ce8f Check for zlib.h in addition to libz. 2010-06-16 16:51:46 -04:00
Todd C. Miller
2cd108304d Add Linux audit support. 2010-06-16 11:17:02 -04:00
Todd C. Miller
fdd4805438 Remove an XXX 2010-06-15 17:00:42 -04:00
Todd C. Miller
1025a2ec06 Add -f (filter) option to sudoreplay to allow certain streams to 
be replayed and others ignored.
 2010-06-15 16:11:25 -04:00
Todd C. Miller
d92c82ea3f Add support for multiple sudoers_base entries in ldap.conf. 
From Joachim Henke
 2010-06-15 10:33:30 -04:00
Todd C. Miller
54ffb19ccb remove setsid check, we require a POSIX system 2010-06-15 09:24:56 -04:00
Todd C. Miller
c2f8d24f20 Check for dup2() failure. 2010-06-15 09:02:23 -04:00
Todd C. Miller
fe49f161a8 Move union sudo_in_addr_un into interfaces.h 2010-06-14 14:52:53 -04:00
Todd C. Miller
8e26312539 Convert to ANSI C function declarations 2010-06-14 12:30:21 -04:00
Todd C. Miller
b72a530fd0 Update copyright year 2010-06-14 12:19:49 -04:00
Todd C. Miller
b09a643ff0 Quiet a compiler warning. 2010-06-14 11:18:50 -04:00
Todd C. Miller
848b636f24 Quiet a compiler warning. 2010-06-14 10:56:01 -04:00
Todd C. Miller
3430618c78 Make all functions in ldap.c static 2010-06-14 10:37:42 -04:00
Todd C. Miller
3516d7f0e3 Remove tfd from struct sudoersfile; it is not used. 
Add prev pointer to struct sudoersfile.
Declare list of sudoersfile using TQ_DECLARE.
Use tq_append to append sudoers entries to the tail queue.
 2010-06-11 09:53:44 -04:00
Todd C. Miller
27a94faf73 A comment character may not be part of a command line argument 
unless it is quoted with a backslash.  Fixes parsing of:
    testuser ALL=NOPASSWD: /usr/bin/wl #comment foo bar
closes bz #441
 2010-06-10 17:52:51 -04:00
Todd C. Miller
32d4697a89 Do not override value of keepopen global, instead restore it to the 
value we pushed onto the stack when popping.
 2010-06-10 16:36:41 -04:00
Todd C. Miller
17a8bd807e Add dependency for utility programs on libreplace and libcommon 2010-06-10 16:10:17 -04:00
Todd C. Miller
047fc3876d Remove sigaction emulation 
Use SA_INTERRUPT in sa_flags
 2010-06-10 15:18:23 -04:00
Todd C. Miller
e146aaaa29 Fix visiblepw sudoers option; the plugin API portion still needs documenting 2010-06-10 15:02:32 -04:00
Todd C. Miller
1fbb1819e7 Use sudo_printf for I/O log version 
Clarify policy plugin version string
 2010-06-10 14:24:06 -04:00
Todd C. Miller
c6371aa481 Silence some compiler warnings 2010-06-10 12:27:18 -04:00
Todd C. Miller
eec336115a Move askpass path specification from sudoers to sudo.conf. 2010-06-09 17:40:44 -04:00
Todd C. Miller
a4a6620b24 Add SUDO_CONV_PROMPT_MASK define which corresponds to the "pwfeedback" 
sudoers option.  Do not disable echo if TGP_ECHO is set.
 2010-06-09 10:31:05 -04:00
Todd C. Miller
bcaf51ce62 Fix setting selinux type on command line. 2010-06-08 17:10:27 -04:00
Todd C. Miller
9b4203606d In sudoers_io_close(), skip NULL io_fds[] elements. 2010-06-08 16:57:18 -04:00
Todd C. Miller
79f178923e Replace timerfoo macros with timevalfoo since the timer macros are known 
to be busted on some systems.
 2010-06-08 18:38:23 -04:00
Todd C. Miller
426435c12c If pam_open_session() fails, pass its status to pam_end. 2010-06-08 16:54:04 -04:00
Todd C. Miller
303da7b820 If a file in a #includedir has improper permissions or owner just 
skip it.  This prevents packages that incorrectly install a file
into /etc/sudoers.d from breaking sudo so easily.  Syntax errors
in #includedir files still result in a parse error (for now).
 2010-06-08 16:53:38 -04:00
Todd C. Miller
6f05b565c3 Add use_pty sudoers option to force use of a pty even when not logging I/O. 2010-06-08 11:25:33 -04:00
Todd C. Miller
39e072c713 Make env_init() void as it never fails. 2010-06-08 10:23:35 -04:00
Todd C. Miller
280afece30 No longer use _NSGetEnviron so don't need crt_externs.h 2010-06-08 09:55:36 -04:00
Todd C. Miller
26b5014238 Remove unused VNULL define 2010-06-08 09:44:19 -04:00
Todd C. Miller
3aad381186 Add #define for maximum session id 2010-06-07 18:53:58 -04:00