isa/sudo - sudo - Subgraph Gitea

isa/sudo

Author	SHA1	Message	Date
Todd C. Miller	cc3c76b85d	Add digest support for sudoers in ldap and sss.	2013-04-16 16:03:37 -04:00
Todd C. Miller	d1580ff592	Error out in configure if the compiler doesn't support "long long".	2013-04-16 14:36:42 -04:00
Todd C. Miller	26a256260d	Include stdint.h or inttypes.h before sha2.h	2013-04-16 12:16:41 -04:00
Todd C. Miller	19d0946023	Simplify lbuf append functions by moving the realloc code into lbuf_expand(). We now expand as needed each time bytes need to be written to the lbuf. Also handle a NULL pointer being passed in for paranoia's sake.	2013-04-16 11:52:24 -04:00
Todd C. Miller	6c737f043f	Zero out struct iolog_details early to avoid a potential (though unlikely) dereference of stack garbage if we hit a fatal error before iolog_deserialize_info() is called.	2013-04-16 11:06:55 -04:00
Todd C. Miller	f2a007fb91	Update copyright year.	2013-04-15 16:29:36 -04:00
Todd C. Miller	b0df32a771	Bump SUDOERS_GRAMMAR_VERSION for new digest support.	2013-04-15 15:14:07 -04:00
Todd C. Miller	e715841fc2	Sanity check digest in parser so visudo can catch errors. Add base64 support	2013-04-15 15:12:00 -04:00
Todd C. Miller	89759fa36c	For big endian architectures just use memcpy() instead of BE macros in a loop.	2013-04-15 11:05:52 -04:00
Todd C. Miller	35375a2b7e	Initial implementation of checksum support in sudoers. Currently supports SHA-224, SHA-256, SHA-384, SHA-512. TODO: checksum format validation in parser and base64 support. checksum support for ldap sudoers	2013-04-14 07:00:21 -04:00
Todd C. Miller	1aa4903520	SHA-224, SHA-256, SHA-384 and SHA-512. Derived from the public domain SHA-1 and SHA-2 implementations by Steve Reid and Wei Dai respectively.	2013-04-13 07:05:06 -04:00
Todd C. Miller	22c8c12170	Add sudo 1.8.6p8	2013-04-11 15:56:10 -04:00
Todd C. Miller	bce9a96a6d	Add missing "not" in error message when mixing standalone and non-standalone authentication methods.	2013-04-11 15:55:32 -04:00
Todd C. Miller	6f718ee3cd	Check for crypt() returning NULL. Traditionally, crypt() never returned NULL but newer versions of eglibc have a crypt() that does. Bug #598	2013-04-11 13:10:40 -04:00
Todd C. Miller	e9726e5974	Better PAM error messages	2013-04-11 09:09:53 -04:00
Todd C. Miller	c00cc3bfe3	Better error messages	2013-04-11 09:03:37 -04:00
Todd C. Miller	8d2c791806	Use same error message for getauid() failure.	2013-04-11 08:54:39 -04:00
Todd C. Miller	236f306a2b	Start warning with a lower case letter for consistency and to match existing translated strings.	2013-04-11 06:38:12 -04:00
Todd C. Miller	8ffac2aa6f	Disable PIE on Solaris where it is not really supported.	2013-04-10 16:26:41 -04:00
Todd C. Miller	42313adc0d	AIX may have a 64-bit pr_ttydev that we need to convert to 32-bit before we try to match it against st_rdev.	2013-04-10 12:30:16 -04:00
Todd C. Miller	54f092c3e6	Break out of the loop if sudo_ttyname_scan() returns non-NULL. Fixes a problem finding the tty name when it is not in /dev/pts.	2013-04-10 12:11:12 -04:00
Todd C. Miller	e3b61c11f1	Support %lld and %llu	2013-04-10 11:17:41 -04:00
Todd C. Miller	ec32194152	Add ttyname test.	2013-04-10 09:39:49 -04:00
Todd C. Miller	c3b9c94e87	Sync with translationproject.org	2013-04-09 14:39:44 -04:00
Todd C. Miller	5555b86d7e	Log timestampfile to debug file.	2013-04-09 14:17:59 -04:00
Todd C. Miller	9914cd8a76	Don't add the "Password: " string we look up in the PAM text domain to the sudoers.pot file.	2013-04-09 09:40:36 -04:00
Todd C. Miller	e2ed8cc9f1	Synce with regcomp() error message change.	2013-04-08 15:41:55 -04:00
Todd C. Miller	b6d644b300	Be consistent with error message when regcomp() fails.	2013-04-08 15:41:09 -04:00
Todd C. Miller	e17267b5e1	Use group -1 instead of 1 as the invalid group since the running user might have group 1 as their default group.	2013-04-05 08:17:19 -04:00
Todd C. Miller	f1aed773ec	PWD may be a shell builtin, use CWD instead.	2013-04-05 08:05:35 -04:00
Todd C. Miller	faf150c4d0	Split up check_user().	2013-04-04 10:04:22 -04:00
Todd C. Miller	baa9041fed	Cosmetic fixes in the comments.	2013-04-03 09:54:11 -04:00
Todd C. Miller	e003c793b3	Use AC_LINK_IFELSE instead of AC_TRY_LINK Fix printing of status message for visibility checks when the test fails.	2013-04-02 16:56:59 -04:00
Todd C. Miller	9438c8ab36	regen	2013-04-02 16:54:39 -04:00
Todd C. Miller	4bd1b5e35c	We no longer use mbr_check_membership() and setrlimit64() is AIX-specific.	2013-04-02 16:52:59 -04:00
Todd C. Miller	09754a11aa	The first (all) target must be by itself or some makes will choose the run the entire target list.	2013-04-02 12:40:53 -04:00
Todd C. Miller	7364f0ce98	Do exec_prefix expansion when enable_shared even if noexec is not enabled.	2013-04-02 12:25:54 -04:00
Todd C. Miller	b9bb50ff5b	Use free() not efree() since we don't include alloc.h here	2013-04-02 11:23:31 -04:00
Todd C. Miller	382640839e	regen	2013-04-02 10:40:16 -04:00
Todd C. Miller	46db7a20e4	Pass in expected gid to testsudoers in addition to the uid that matches the test sudoers files.	2013-04-02 09:25:51 -04:00
Todd C. Miller	414fc377c9	Tru64 5.x does declare innetgr() and getdomainname().	2013-04-01 16:39:30 -04:00
Todd C. Miller	cd980f0b4f	Fix compilation when getdomainame() is not present.	2013-04-01 16:35:35 -04:00
Todd C. Miller	f7b62e8dc1	Move SET/CLR/ISSET from config.h.in to missing.h	2013-04-01 15:38:09 -04:00
Todd C. Miller	3a83dbafbe	Fix getgrouplist() check.	2013-04-01 14:58:31 -04:00
Todd C. Miller	159664ad78	No more timestamp.h	2013-04-01 14:56:54 -04:00
Todd C. Miller	073989aa68	Neded sys/time.h for struct timeval in struct sudo_tty_info.	2013-04-01 14:48:00 -04:00
Todd C. Miller	e7e739f659	regen depends	2013-04-01 14:10:42 -04:00
Todd C. Miller	87e191787f	Mention libibmldap on HP-UX	2013-04-01 14:10:37 -04:00
Todd C. Miller	e23ebd53c3	Instead of checking the domain name explicitly for "(none)", just check for illegal characters.	2013-04-01 13:56:42 -04:00
Todd C. Miller	328994740e	Only warn once when we are unable to open the sudoers file.	2013-04-01 11:23:29 -04:00

... 3 4 5 6 7 ...

7018 Commits