isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,548 Commits 1 Branch 0 Tags
8c6960e7a8c74f62de9fdcbdaed51e7e29b23acd
Commit Graph

35 Commits

Author SHA1 Message Date
Todd C. Miller
927e98e29f Rename script -> transcript 2009-09-06 13:28:36 +00:00
Todd C. Miller
3bfce30a85 First cut at session logging for sudo. Still need to write get_pty() 
for Unix 98 and old-style BSD ptys.  Also needs documentation and
general cleanup.
 2009-08-06 00:04:14 +00:00
Todd C. Miller
3be603aa47 Implement #includedir directive. Files in an includedir are not edited 
by visudo unless they contain a syntax error.
 2009-04-18 23:25:08 +00:00
Todd C. Miller
a33e988df6 regen 2008-11-09 14:15:36 +00:00
Todd C. Miller
ed3cc2b331 regen with yacc skeleton bug fixed 2008-07-12 12:53:05 +00:00
Todd C. Miller
a890d723d1 Fix another memory leak in init_parser(). 2008-04-10 18:54:50 +00:00
Todd C. Miller
b06e2f9d65 Clean up some memory leaks pointed out by valgrind. 2008-04-10 15:28:10 +00:00
Todd C. Miller
cb1a3be9d9 When adding a default, only call list2tq() once to do the list to 
tq conversion.  It is not legal to call list2tq multiple times on
the same list since list2tq consumes and modifies the list argument.
 2008-03-05 20:19:50 +00:00
Todd C. Miller
f2b70188b6 Add support for SELinux RBAC. Sudoers entries may specify a role and type. 
There are also role and type defaults that may be used.  To make sure a
transition occurs, when using RBAC commands are executed via the new sesh
binary.  Based on initial changes from Dan Walsh.
 2008-02-09 14:30:06 +00:00
Todd C. Miller
5fc4d8fa10 Make sure we define SIZE_MAX for yacc's skeleton.c 2008-01-16 23:20:35 +00:00
Todd C. Miller
2ff13a2403 regen 2008-01-13 20:39:54 +00:00
Todd C. Miller
7a110f08ce The U suffix on constants is an ANSI feature 2008-01-09 19:58:39 +00:00
Todd C. Miller
53aec6601e Free up parser data structures in sudo_file_close(). 2008-01-05 13:13:06 +00:00
Todd C. Miller
f9f4aca556 Add support for runas groups. This allows the user to run a command 
with a different effective group.  If the -g option is specified
without -u the command will be run as the current user (only the
group will change).  the -g and -u options may be used together.
TODO: implement runas group for ldap
      improve runas group documentation
      add testsudoers support
 2007-11-21 20:12:00 +00:00
Todd C. Miller
52b2861bb9 sudo "ALL" now implies the SETENV tag but, unlike an explicit tag, it 
is not passed on to other commands in the list.
 2007-11-21 16:05:31 +00:00
Todd C. Miller
57ee080a08 regen 2007-09-11 19:43:07 +00:00
Todd C. Miller
d8e1c80903 regen 2007-09-01 21:39:24 +00:00
Todd C. Miller
6b3157d803 regen 2007-08-31 23:14:37 +00:00
Todd C. Miller
270ba11dbf regen 2007-08-31 01:13:05 +00:00
Todd C. Miller
4df7037816 regen 2007-08-31 00:46:49 +00:00
Todd C. Miller
eb4b7b2e6b regen 2007-08-24 00:14:42 +00:00
Todd C. Miller
d65c8e8275 regen 2007-08-22 22:39:20 +00:00
Todd C. Miller
317e600f41 Remove monitor support until there is a versino of systrace that 
uses a lookaside buffer (or we have a better mechanism to use).
 2007-08-15 15:20:01 +00:00
Todd C. Miller
879c46e4dd Add support for setting environment variables on the command line. 
This is only allowed if the setenv sudoers options is enabled or if
the command is prefixed with the SETENV tag.
 2007-06-23 23:58:54 +00:00
Todd C. Miller
304dc46d7f Add efree() for consistency with emalloc() et al. Allows us to rely 
on C89 behavior (free(NULL) is valid) even on K&R.
 2005-03-29 14:29:47 +00:00
Todd C. Miller
889a0334e6 regen 2005-02-12 23:33:30 +00:00
Todd C. Miller
3b8b88407f Add __unused to rcsids 2005-01-27 15:42:30 +00:00
Todd C. Miller
f75a034f06 Set safe_cmnd after sudoers_lookup() if it has not been set. 
Previously it was set by sudo "ALL" in the parser but at that point
the fully-qualified pathname has not yet been found.
 2004-11-24 21:28:55 +00:00
Todd C. Miller
fe869025c4 Add support for command-specific Defaults entries. E.g. 
Defaults!/usr/bin/vi noexec
 2004-11-19 21:35:12 +00:00
Todd C. Miller
2c2daa8eca Use: #include <config.h> 
Not: #include "config.h"
That way we get the correct config.h when build dir != src dir
 2004-11-19 18:39:14 +00:00
Todd C. Miller
07139128f7 Split alias routines out into their own file. 2004-11-19 17:35:21 +00:00
Todd C. Miller
7679efc432 regen 2004-11-16 15:45:49 +00:00
Todd C. Miller
e26e40df8a Store aliases in a red-black tree. 2004-11-15 03:55:22 +00:00
Todd C. Miller
8ac7915572 Extend LIST_APPEND to deal with appending lists too 2004-10-27 16:06:52 +00:00
Todd C. Miller
5becc03851 Rewritten parser that converts sudoers into a set of data structures. 
This eliminates ordering issues and makes it possible to apply
sudoers Defaults entries before searching for the command.
 2004-10-26 22:10:55 +00:00