isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
3,027 Commits 1 Branch 0 Tags
a34078ac33e8f99a8b085bfe59703d99ae8e872c
Commit Graph

3027 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
a34078ac33 closefrom(3) for systems w/o it 2004-01-12 18:55:30 +00:00
Todd C. Miller
c493bb6b63 Update from .pod file. 2004-01-09 21:29:05 +00:00
Todd C. Miller
5c16da4f20 Substitute noexec_file for the sudoers man page 2004-01-09 21:26:46 +00:00
Todd C. Miller
051943b687 Mention noexec 2004-01-09 21:24:50 +00:00
Todd C. Miller
67ba09fccf Document noexec 2004-01-09 21:16:52 +00:00
Todd C. Miller
149862cd9d Move PAM_CONST macro definition from config.h to pam.c where it belongs. 
We can't have this in config.h since that gets included too early.
 2004-01-09 19:39:00 +00:00
Todd C. Miller
aa4eb97ed5 Some PAM implementations put their headers in /usr/include/pam instead 
of /usr/include/security.
 2004-01-09 19:35:54 +00:00
Todd C. Miller
5459af61d4 I missed changing the EXEC macro -> EXECV here when I changed this in 
config.h.in and sudo.c a while ago.
 2004-01-09 19:32:43 +00:00
Todd C. Miller
fce2b7491a OpenBSD vax/m88k/hppa don't do shared libs 2004-01-09 18:15:54 +00:00
Todd C. Miller
cd2bd25a88 o merge the hpux case entries into a single entry w/ its own sub-case statement. 
o HP-UX >= 11 support getspnam(), use it in preference to getprpwuid()
 2004-01-09 08:29:33 +00:00
Todd C. Miller
0aaea98261 eval $shrext so that it expands nicely on MacOS X 2004-01-09 07:58:04 +00:00
Todd C. Miller
c18a2a32eb Don't lie about making a module, it does the wrong thing on mach 2004-01-09 07:50:12 +00:00
Todd C. Miller
5206defd66 Remove requirement that libs must begin with "lib". They don't when 
we point directly at the lib using LD_PRELOAD or its equivalent.
 2004-01-09 07:49:50 +00:00
Todd C. Miller
7e6fe46e94 Disable support for c++, f77 and java. We don't need it, it takes a lot 
of time, and it hosed our check for shared lib support.
 2004-01-09 07:01:15 +00:00
Todd C. Miller
a71e4f1695 regen 2004-01-09 07:00:18 +00:00
Todd C. Miller
f649563335 Call AC_ENABLE_SHARED and check the status of enable_shared to know when 
shared libs are available.
 2004-01-09 07:00:01 +00:00
Todd C. Miller
bede9b7b5c Duh, OpenBSD suports shared libs too 2004-01-09 06:37:08 +00:00
Todd C. Miller
b106eabb4b Only OpenPAM and Linux PAM use const qualifiers. 2004-01-09 06:18:10 +00:00
Todd C. Miller
9f8f030c5b o No need to check for sed, libtool config does that for us 
o move check for --with-noexec until after libtool magic is run so we
  can use $can_build_shared and $shrext
 2004-01-09 06:15:34 +00:00
Todd C. Miller
ad13250c2b Don't print a bunch of crap about library installs since we are not 
really installing a library.
 2004-01-09 06:14:31 +00:00
Todd C. Miller
230a54ebb9 Make format_env() varargs 
Add noexec support for Darwin, MacOS X, Irix, and Tru64
 2004-01-09 05:38:58 +00:00
Todd C. Miller
f192682f65 Update to libtool 1.5 with local changes: 
o no ldconfig in the finish step
 o assume no libprefix or version is needed
 2004-01-09 05:32:55 +00:00
Todd C. Miller
dd4acb880d Fix compilation under K&R 2004-01-09 05:15:38 +00:00
Todd C. Miller
63e8d52f57 checkpoint 2004-01-06 14:31:35 +00:00
Todd C. Miller
e17ee88ebf stub execve() that just returns EACCES; used for noexec functionality 2004-01-06 14:28:49 +00:00
Todd C. Miller
bac45090ae Regen w/ updated byacc from OpenBSD; fixes a gcc 3.2 issue with generated code. 2004-01-06 06:42:14 +00:00
Todd C. Miller
a39a63f4fb Regen w/ updated byacc from OpenBSD; fixes a gcc 3.2 issue with generated code. 2004-01-06 06:42:14 +00:00
Todd C. Miller
0f6749fa25 Move the environment defaults to the end and shorten a few of the descriptions. 2004-01-05 21:10:19 +00:00
Todd C. Miller
8e796b909a no shared libs on ultris or convexos 2004-01-05 20:05:29 +00:00
Todd C. Miller
d9b9d94c36 Build sudo_noexec shared object using libtool; could use some cleanup. 2004-01-05 20:03:09 +00:00
Todd C. Miller
9019ee7b45 libtool scaffolding 2004-01-05 19:59:56 +00:00
Todd C. Miller
db230cc520 Merge the NOPASSWD/PASSWD and NOEXEC/EXEC rules so that order is not 
important.
 2004-01-05 19:56:43 +00:00
Todd C. Miller
8e421c95b8 update copyright year 2004-01-05 17:15:32 +00:00
Todd C. Miller
626e2cd209 Add _PATH_SUDO_NOEXEC and corresponding --with-noexec configure option. 
The default value of noexec_file is set to this.
 2004-01-05 03:58:39 +00:00
Todd C. Miller
7536a781f0 Add support for preloading a shared object containing a dummy execve() 
function that just sets error and returns -1.  This adds a
"noexec_file" option to load the filename as well as a "noexec" flag
to enable it unconditionally.  There is also a NOEXEC tag that can
be attached to specific commands and an EXEC tag to disable it.
 2004-01-05 02:48:09 +00:00
Todd C. Miller
4d5ce6761f add missing newline to usage statement 2004-01-05 02:40:02 +00:00
Todd C. Miller
caf389c2fa Rename EXEC macro -> EXECV 2004-01-05 01:39:57 +00:00
Todd C. Miller
e987e1152b Don't truncate usernames to 8 characters in the log message. 2004-01-05 01:16:24 +00:00
Todd C. Miller
9eba370a09 Update copyright year 2004-01-05 01:13:50 +00:00
Todd C. Miller
b289f73870 Add a new option, lecture_file, that can be used to point to a custom 
sudo lecture.
 2004-01-05 01:12:22 +00:00
Todd C. Miller
3944237480 Add a zero_bytes() function to do the equivalent of bzero in such a 
way that will heopfully not be optimized away by sneaky compilers.
 2003-12-31 22:46:10 +00:00
Todd C. Miller
de5e16b22f Add a zero_bytes() function to do the equivalent of bzero in such a 
way that will heopfully not be optimized away by sneaky compilers.
 2003-12-31 22:46:08 +00:00
Todd C. Miller
b2550741c1 Add a zero_bytes() function to do the equivalent of bzero in such a 
way that will heopfully not be optimized away by sneaky compilers.
 2003-12-31 22:46:08 +00:00
Todd C. Miller
617ac8a3c3 Use #ifdef __STDC__, not #if __STDC__. 2003-12-31 18:35:02 +00:00
Todd C. Miller
1cb5703273 Always put at least one space between the def_* macro name and its 
definition.
 2003-12-30 22:41:52 +00:00
Todd C. Miller
ffbc43afb3 Adjust code for --without-lecture to match new values. 2003-12-30 22:34:28 +00:00
Todd C. Miller
e34adcc2c3 regen after pasto fix 2003-12-30 22:33:50 +00:00
Todd C. Miller
3062ac6657 Document that "lecture" has changed from a flag to a tuple. 2003-12-30 22:31:56 +00:00
Todd C. Miller
02f37dc2da Add support for tuples in def_data.in; these are implemented as an 
enum type.  Currently there is only a single tuple enum but in the
future we may have one tuple enum per T_TUPLE entry in def_data.in.
Currently listpw, verifypw and lecture are tuples.  This avoids the
need to have two entries (one ival, one str) for pwflags and syslog
values.

lecture is now a tuple with the following values: never, once, always

We no longer use both an int and string entry for syslog facilities
and priorities.  Instead, there are logfac2str() and logpri2str()
functions that get used when we need to print the string values.
 2003-12-30 22:31:30 +00:00
Todd C. Miller
6ad252765b Create def_* macros for each defaults value so we no longer need 
the def_{flag,ival,str,list,mode} macros (which have been removed).
This is a step toward more flexible data types in def_data.in.
 2003-12-30 22:20:21 +00:00