isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,027 Commits 1 Branch 0 Tags
cd30e84743eddb30dc5e21e76a78fbaa4dc40cdc
Commit Graph

88 Commits

Author SHA1 Message Date
Todd C. Miller
cd30e84743 Define LDAPNOINIT before calling ldap_init(), etc. to disable user 
ldaprc and system defaults that could affect how LDAP works.
 2008-01-01 19:01:42 +00:00
Todd C. Miller
926dcd0bcc Refactor line reading into a separate function, sudo_parseln(), 
which removes comments, leading/trailing whitespace and newlines.
May want to rethink the use of sudo_parseln() for /etc/ldap.secret
 2007-12-31 20:04:46 +00:00
Todd C. Miller
f8c52dc928 Add support for reading and /etc/environment file. Still needs to 
be documented and should probably only applies to OSes that have
it (AIX and Linux, maybe others).
 2007-12-21 21:53:32 +00:00
Todd C. Miller
19fa259480 Remove support for compilers that don't support void * 2007-08-31 23:30:07 +00:00
Todd C. Miller
17c8249fef Fix typo: PYTHONINSPEC should be PYTHONINSPECT. From David Krause. 2007-07-31 18:04:32 +00:00
Todd C. Miller
4b257e50c1 Add back allocation of the env struct in rebuild_env but save 
a copy of the old pointer and free it before returning.
 2007-07-29 22:32:47 +00:00
Todd C. Miller
2304e1a4a7 Don't init the private environment in rebuild_env() since it may 
have already been done implicitly sudo_setenv/sudo_unsetenv.

Multiply length by sizeof(char *) in memcpy/memmove when copying
the environment so we copy the full thing.

Add missing set of parens so we deref the right pointer in
sudo_unsetenv when searching for a matching variable.
 2007-07-29 20:09:18 +00:00
Todd C. Miller
c94a3d6245 Only need sudo_setenv/sudo_unsetenv if we are going to use 
ldap_sasl_interactive_bind_s() but don't have gss_krb5_ccache_name().
 2007-07-22 19:19:39 +00:00
Todd C. Miller
8f0f4743fd rebuild_env() and insert_env_vars() no longer return environment pointer, 
they set environ directly.

No longer need to pass around an envp pointer since we just operate
on environ now.

Add dosync argument to insert_env() that indicates whether it should
reset environ when realloc()ing env.envp.

Use an initial size of 128 for the environment.
 2007-07-18 16:57:31 +00:00
Todd C. Miller
8fa2eb187e Split sudo_setenv() into an external version and a version only for 
use by rebuild_env().
 2007-07-18 16:41:21 +00:00
Todd C. Miller
436e3b631b Add sudo_unsetenv() and refactor private env syncing code into sync_env(). 2007-07-16 22:39:42 +00:00
Todd C. Miller
d1f6bdbcff Remove format_env() 
Add sudo_setenv() to replace most format_env() + insert_env() combinations.
insert_env() no longer takes a struct environment *
 2007-07-15 19:41:10 +00:00
Todd C. Miller
6462c1edd2 Defer setting user-specified env vars until after authentication. 2007-07-09 19:13:38 +00:00
Todd C. Miller
25b624ce5e honor def_default_path for PATH set on the command line 2007-07-09 17:25:45 +00:00
Todd C. Miller
87a95bb3a6 Allow user to set environment variables on the command line as long 
as they are allowed by env_keep and env_check.  Ie: apply the same
restrictions as normal environment variables.
TODO: deal with secure_path
 2007-07-09 17:22:55 +00:00
Todd C. Miller
879c46e4dd Add support for setting environment variables on the command line. 
This is only allowed if the setenv sudoers options is enabled or if
the command is prefixed with the SETENV tag.
 2007-06-23 23:58:54 +00:00
Todd C. Miller
363a2f2593 Fix preserving of variables in env_keep. 2007-06-19 16:53:09 +00:00
Todd C. Miller
f670ef29bc add XAUTHORIZATION 2007-06-19 11:11:42 +00:00
Todd C. Miller
5ac9f1de51 Add LINGUAS to initial_checkenv_table. 
Add COLORS, HOSTNAME, LS_COLORS, MAIL, PS1, PS2, XAUTHORITY
to intial_keepenv_table.
 2007-06-18 21:33:22 +00:00
Todd C. Miller
c225668972 Treat USERNAME environemnt variable like LOGNAME/USER 2007-06-18 21:23:48 +00:00
Todd C. Miller
549c88d513 Don't need to populate keepenv table with the contents of the checkenv table. 2007-06-18 21:21:30 +00:00
Todd C. Miller
e096ae6f13 Make env_check apply when env_reset it true. Environment variables are 
passed through unless they contain '/' or '%'.  There is no need
to have a variable in both env_check and env_keep.
 2007-06-18 12:56:11 +00:00
Todd C. Miller
f221ba2300 Check TERM and COLORTERM for '%' and '/' characters. From Debian. 2007-06-09 11:20:59 +00:00
Todd C. Miller
30e57038d4 Remove KRB5_KTNAME from environment. Allow COLORTERM. 2007-06-07 11:52:44 +00:00
Todd C. Miller
bf500a00d6 Add NOEXEC support for AIX 5.3 which supports LDR_PRELOAD and 
LDR_PRELOAD64.  The 64-bit version is not currently supported.
Remove zero_env() prototype as it no longer exists.
 2007-01-31 15:00:48 +00:00
Todd C. Miller
be9d490e1a Add PERL5DB to list of environment variables to remove. 2005-11-15 14:25:03 +00:00
Todd C. Miller
b9f34a5a3f Add more environment variables to remove; from gentoo linux 
Add some comments about what bad env variables go to what (more to do)
 2005-11-13 19:51:43 +00:00
Todd C. Miller
3c6d0cc871 Add PERLLIB, PERL5LIB and PERL5OPT to the default list of environment 
variables to remove.  From Charles Morris
 2005-11-07 16:02:22 +00:00
Todd C. Miller
ce8f2b10e4 add JAVA_TOOL_OPTIONS to initial_badenv_table for java 5 2005-11-01 18:24:47 +00:00
Todd C. Miller
096a289d94 add PS4 and SHELLOPTS to initial_badenv_table for bash 2005-10-28 00:35:33 +00:00
Todd C. Miller
8f90cfbd89 Preserve DISPLAY environment variable by default. 2005-06-25 21:46:16 +00:00
Todd C. Miller
2791a18078 Fix disabling set_logname and make env_keep override set_logname. 2005-02-20 17:57:48 +00:00
Todd C. Miller
6bee8e3770 Just clean the environment once. This assumes that any further 
setenv/putenv will be able to handle the fact that we replaced environ
with our own malloc'd copy but all the implementations I've checked do.
 2005-02-20 16:48:05 +00:00
Todd C. Miller
87a8b5b48b In -i mode, base the value of insert_env()'s dupcheck flag on DID_FOO flags. 
Move checks for $HOME resetting into rebuild_env()
 2005-02-16 04:16:22 +00:00
Todd C. Miller
74894ebf62 Move setting of user_path, user_shell, user_prompt and prev_user 
into init_vars() since user_shell at least is needed there.
 2005-02-13 05:33:59 +00:00
Todd C. Miller
778d587063 Update copyright years. 2005-02-12 22:56:07 +00:00
Todd C. Miller
ab2e7bc267 Instead of zeroing out the environment, just prune out entries 
based on the env_delete and env_check lists.  Base building up
the new environment on the current environment and the variables
we removed initially.
 2005-02-10 04:00:04 +00:00
Todd C. Miller
f015a51b9b correct value for DID_USER 2005-02-08 03:56:51 +00:00
Todd C. Miller
3b8b88407f Add __unused to rcsids 2005-01-27 15:42:30 +00:00
Todd C. Miller
48dae86b8f Add missing braces to avoid DYLD_FORCE_FLAT_NAMESPACE being set 
unconditionally on darwin.  From Toby Peterson.
 2004-12-02 16:18:29 +00:00
Todd C. Miller
2c2daa8eca Use: #include <config.h> 
Not: #include "config.h"
That way we get the correct config.h when build dir != src dir
 2004-11-19 18:39:14 +00:00
Todd C. Miller
b2ef18bbd3 Preserve KRB5CCNAME in zero_env() and add a paranoia check to make sure 
we can't overflow new_env.
 2004-11-17 16:18:33 +00:00
Todd C. Miller
51375f969f Add local error/warning functions like err/warn but that call an additional 
cleanup routine in the error case.  This means we no longer need to compile
a special version of alloc.o for visudo.
 2004-11-15 15:53:53 +00:00
Todd C. Miller
a768dbc34f Bring back the "secure_path" Defaults option now that Defaults take 
effect before the path is searched.
 2004-11-12 16:19:19 +00:00
Todd C. Miller
74b4e439a6 strip CDPATH too 2004-11-11 16:25:20 +00:00
Todd C. Miller
482526bde1 strip exported bash functions from the environment. 2004-11-11 16:20:59 +00:00
Todd C. Miller
01dbe19ba1 Let the loader initialize nep 2004-09-08 15:57:49 +00:00
Aaron Spangler
03b53b6911 Rare SEGV 2004-09-07 01:12:34 +00:00
Aaron Spangler
2102b561ba Openldap ~/.ldaprc fix 2004-09-06 19:05:32 +00:00
Todd C. Miller
362d6f4eb6 Remove trailing spaces, no actual code changes. 2004-06-06 23:58:10 +00:00