isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,010 Commits 1 Branch 0 Tags
ae43a19ad66e7e8b1163f469f25b1ba180ed1a87
Commit Graph

689 Commits

Author SHA1 Message Date
Todd C. Miller
ae43a19ad6 Enable debugging via sudo.conf. 2012-01-06 13:13:04 -05:00
Todd C. Miller
38526ca149 Enable debugging via sudo.conf. 2012-01-06 10:58:13 -05:00
Todd C. Miller
baa9273dd5 Allow "visudo -c" to work when we only have read-only access to the 
sudoers include files.
 2012-01-06 10:54:30 -05:00
Todd C. Miller
c4ba511613 Do not include GLOB_MARK in the flags we pass to glob(3). Fixes a 
bug where a pattern like "/usr/*" include /usr/bin/ in the results,
which would be incorrectly be interpreted as if the sudoers file
had specified a directory.  From Vitezslav Cizek.
 2012-01-05 15:54:00 -05:00
Todd C. Miller
241b1db873 Add --enable-kerb5-instance configure option to allow people using 
Kerberos V authentication to use a custom instance.  Adapted from
a diff by Michael E Burr.
 2012-01-05 15:39:05 -05:00
Todd C. Miller
47bcaf57bc parse_error is now bool, not int 2012-01-04 15:45:27 -05:00
Todd C. Miller
0f5eaa17fd Print a more sensible error if yyparse() returns non-zero but 
yyerror() was not called.
 2012-01-04 15:45:03 -05:00
Todd C. Miller
a1815e17ca Replace y.tab.c with the correct filename in #line directives. 2012-01-04 15:35:49 -05:00
Todd C. Miller
fb3c9f2ca5 Remove support for noexec_file in sudoers and the plugin API 2011-12-20 08:40:55 -05:00
Todd C. Miller
4aa0ccb22b Don't dump interfaces if there are none. 2011-12-20 08:39:01 -05:00
Todd C. Miller
91839036db Add missing %s printf escape to the group_plugin, iolog_dir and 
iolog_file descriptions.
 2011-12-20 08:38:47 -05:00
Todd C. Miller
1f97735fbb Fix typo in visiblepw description; from Joel Pickett 2011-12-18 14:20:56 -05:00
Todd C. Miller
a24d86b32c When running a login shell with a login_class specified, use 
LOGIN_SETENV instead of rolling our own login.conf setenv support
since FreeBSD's login.conf has more than just setenv capabilities.
This requires us to swap the plugin-provided envp for the global
environ before calling setusercontext() and then stash the resulting
environ pointer back into the command details, which is kind of a
hack.
 2011-12-08 17:17:25 -05:00
Todd C. Miller
27616d1f3e If srcdir is "." just use the basename of the yacc/lex file when 
generating the C version.  This matches the generated files currently
in the repo.
 2011-12-08 13:41:35 -05:00
Todd C. Miller
31c08fca3e Clean up the DEVEL noise 2011-12-08 12:53:10 -05:00
Todd C. Miller
666d8d6359 Escape values in the search expression as per RFC 4515. 2011-12-07 15:12:22 -05:00
Todd C. Miller
1cec1f4777 No need for install target to depend explicitly on install-dirs, 
the install-foo targets all depend on it.
 2011-12-07 14:33:25 -05:00
Todd C. Miller
9f0abb4692 Add support for setenv entries in login.conf. We can't use LOGIN_SETENV 
since the plugin sets up the envp the command is executed with.
Also regen the Makefile.in files while here.  Fixes bug #527
 2011-12-05 10:43:44 -05:00
Todd C. Miller
38a4990e4a Add getaddrinfo() for those without it, written by Russ Allbery 2011-12-02 17:28:50 -05:00
Todd C. Miller
db3fd558be Remove inaccurate comment 2011-12-02 14:41:32 -05:00
Todd C. Miller
199eeb38d4 Fetch the login class for the user we authenticate specifically when 
using BSD authentication.  That user may have a different login class
than what we will use to run the command.  When setting the login
class for the command, use the target user's struct passwd, not
the invoking user's.  Fixes bug 526
 2011-12-02 14:29:54 -05:00
Todd C. Miller
01147eda3a Replace @DEV@ prefix with DEVEL variable so we can do "make DEVEL=1" 2011-12-02 13:43:02 -05:00
Todd C. Miller
b58c1ff6ec Fix "make check" fallout from the sudo_conv changes in sudo_debug. 2011-12-02 11:35:22 -05:00
Todd C. Miller
21a2f95821 Use stdbool.h instead of rolling our own TRUE/FALSE macros. 2011-12-02 11:27:33 -05:00
Todd C. Miller
51e45647ae Use HAVE_STRUCT_TIMESPEC and HAVE_STRUCT_IN6_ADDR instead of 
HAVE_TIMESPEC and HAVE_IN6_ADDR respectively.
 2011-12-01 11:07:17 -05:00
Todd C. Miller
21a1460d4c Fix mode on sudoers as needed when the -f option is not specified. 2011-11-30 15:33:26 -05:00
Todd C. Miller
ab887a6fb0 No longer pass debug_file to plugin, plugins must now use CONV_DEBUG_MSG 2011-11-30 14:56:41 -05:00
Todd C. Miller
b12b4fdc7b Add support for permitting access by group ID in addition to group name. 2011-11-29 16:24:45 -05:00
Todd C. Miller
627e485c0e Older Netscape LDAP SDKs don't prototype ldapssl_set_strength() 2011-11-29 15:37:48 -05:00
Todd C. Miller
dd2fcf16d6 Fix typo, return_debug vs. debug_return 2011-11-29 14:41:00 -05:00
Todd C. Miller
6dbf8cc231 Update Japanese sudoers translation from translationproject.org 2011-11-23 15:04:09 -05:00
Todd C. Miller
55166914c4 regen 2011-11-21 16:43:46 -05:00
Todd C. Miller
ea2a7b48b1 Bump grammar version for #include and #includedir relative path support. 2011-11-18 12:02:43 -05:00
Todd C. Miller
481877e3b8 Add support for relative paths in #include and #includedir 2011-11-17 20:48:42 -05:00
Todd C. Miller
0124407946 Fix install-plugin when shared objects are unsupported or disabled. 2011-11-17 16:45:52 -05:00
Todd C. Miller
c189fa5f55 Don't write to sbp if it is NULL 2011-11-17 16:33:32 -05:00
Todd C. Miller
f689afb5ee Fix non-dynamic (no dlopen) sudo build. 2011-11-13 21:24:54 -05:00
Todd C. Miller
65b781a2ef Use SUDO_CONV_DEBUG_MSG in the plugin instead of writing 
directly to the debug file.
 2011-11-13 13:55:19 -05:00
Todd C. Miller
f3ae31185b Make sudo_goodpath() return value bolean 2011-11-13 12:11:00 -05:00
Todd C. Miller
5c29710f35 Remove obsolete securid auth method. 2011-11-13 11:54:06 -05:00
Todd C. Miller
6fd3e03857 Prefix authentication functions with a "sudo_" prefix to avoid 
namespace problems.
 2011-11-13 11:46:39 -05:00
Todd C. Miller
c86561e502 Remove the old Kerberos IV support 2011-11-13 09:12:43 -05:00
Todd C. Miller
f190bcf94b Don't print garbage at the end of the custom lecture. 2011-11-12 13:08:13 -05:00
Todd C. Miller
ab437ae6c3 Add lexer tracing as debug@parser 2011-11-12 12:41:44 -05:00
Todd C. Miller
09beba8259 Revert 003bdb078a15. We need to #include <gram.h> not "gram.h" and 
<def_data.h> and not "def_data.h" when generating the parser in a
build dir.
 2011-11-12 12:18:44 -05:00
Todd C. Miller
f375ee5f01 Better devdir support in mkdep.pl 2011-11-08 15:05:10 -05:00
Todd C. Miller
98790cd0cf Add devdir before srcdir in include path and fix up dependecies 
accordingly.
 2011-11-08 14:10:34 -05:00
Todd C. Miller
0bf68d2103 #include "gram.h" not <gram.h> and "def_data.h" and not <def_data.h>. 2011-11-08 14:09:48 -05:00
Todd C. Miller
6fa91f5697 add missing debug_return_int 2011-11-08 08:22:07 -05:00
Todd C. Miller
3ee9cef0da Fold SUDO_DEBUG_PROGERR and SUDO_DEBUG_SYSERR into SUDO_DEBUG_ERROR 2011-11-07 16:33:49 -05:00