isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7,531 Commits 1 Branch 0 Tags
cfa4cebf13adc64bd9934e355c645e3e574bf570
Commit Graph

7531 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
cfa4cebf13 Remove signal_event from evbase before calling sudo_ev_loopexit() 
when the command has exited or been killed.  It is possible that
we could receive another signal on the pipe if they are delivered
out of order.
 2014-08-30 16:24:53 -06:00
Todd C. Miller
26e61adc50 Treat EOF on signal pipe (which should never happen) as ECONNRESET. 2014-08-29 11:20:17 -06:00
Todd C. Miller
2b849b2687 Don't allow sudo_ev_loopcont() to override sudo_ev_loopexit() 2014-08-29 09:47:08 -06:00
Todd C. Miller
e9370718f9 Add some internal convenience functions. 2014-08-29 09:44:08 -06:00
Todd C. Miller
ef11361eea Fix osrelease sed expression. It wasn't matching distros with a 
single digit version such as sles9.
 2014-08-26 15:47:48 -06:00
Todd C. Miller
191a0569f3 Sync with translationproject.org 2014-08-26 13:55:48 -06:00
Todd C. Miller
af9306cd81 Return -1 from logging functions if we get a write error. 2014-08-26 13:54:29 -06:00
Todd C. Miller
1345ebbcc7 Mention I/O plugin changes. 2014-08-26 13:41:32 -06:00
Todd C. Miller
acdb6d3690 Change behavior when plugin I/O logging function returns 0 or -1. 
For -1 (error) return, we now kill the command and disable
the I/O logging function that returned the error.
For a 0 (reject) return, we no longer display the rejected
output to the user's terminal.  The plugin API revision is now 1.6.
 2014-08-26 12:07:57 -06:00
Todd C. Miller
3e13662f35 regen to fix version. 2014-08-26 12:05:09 -06:00
Todd C. Miller
136e6e616f Add trivial dirty word check to the sample output logging function. 2014-08-26 12:04:25 -06:00
Todd C. Miller
f0af3bb6b2 Update for 1.8.11b2 2014-08-25 13:05:38 -06:00
Todd C. Miller
79f209dbd7 Fix restoration of effective uid/gid in command_details. 
This masked the effects an unset (really zero) egid.
Bug 656
 2014-08-25 11:30:03 -06:00
Todd C. Miller
4f1deee575 Set runas egid to the same value as runas gid if egid not specified 
by the plugin.  Only affects new files created by sudoedit.  Bug #656
 2014-08-25 11:27:30 -06:00
Todd C. Miller
5676d9874d Don't leak temp fd in sudo_edit_copy_tfiles(). 
Fix fd leak in error path in sudo_edit_copy_tfiles().
 2014-08-25 10:42:59 -06:00
Todd C. Miller
8ad53f458e fix typo 2014-08-22 15:23:42 -06:00
Todd C. Miller
db494700d6 We write an unsigned char, not an int, to the signal pipe. 2014-08-22 11:06:05 -06:00
Todd C. Miller
a8f63191ef Sprinkle some debugging around uid/gid setting in sudoedit. 2014-08-21 15:42:35 -06:00
Todd C. Miller
db35c7c0e4 Make sudoedit work with SELinux RBAC. 
Adapted from RedHat patches (Daniel Kopecek) but made to behave a
bit more like the non-SELinux bits.
 2014-08-21 15:28:36 -06:00
Todd C. Miller
a147330f3f Refactor code that copies temp files into separate functions. 2014-08-21 15:28:35 -06:00
Todd C. Miller
ffbc003b7c Fix typo, .em should be .Em 2014-08-21 09:23:34 -06:00
Todd C. Miller
2c542178a3 Add missing call to initprogname(). 2014-08-18 16:46:55 -06:00
Todd C. Miller
2246b1827f Don't recurse infinitely until we blow the stack when the debug 
file can't be opened in the front-end.  The conversation-type debug
mode will be removed in the future.
 2014-08-18 16:35:58 -06:00
Todd C. Miller
dbe0b213da Only use the first two digits of the version number. 
Fixes a problem on RHEL 7 which has version numbers like 7.0.1406
 2014-08-15 16:46:24 -06:00
Todd C. Miller
fb82e823f4 Fix return value when kernel has no audit support. 2014-08-15 15:56:25 -06:00
Todd C. Miller
6d8c6ed37a remove unused label 2014-08-15 14:37:07 -06:00
Todd C. Miller
b0faa6da1d Update to automake 1.14 (no code changes). 2014-08-14 16:36:23 -06:00
Todd C. Miller
2d22d0dca8 Document the interaction between sudoers environment handling and 
the pam_env module.
 2014-08-11 11:23:16 -06:00
Todd C. Miller
c49ca1d315 Don't allow pam_env to overwrite existing variables when env_reset 
is disabled unless the variables match the black list and would
normally be removed.  It may just be better to never overwrite when
env_reset is disabled.
 2014-08-11 10:37:08 -06:00
Todd C. Miller
2f472d5966 Update year range to include 2014 2014-08-09 20:46:21 -06:00
Todd C. Miller
dcd505d0c5 Remove regress .err files in distclean target. 2014-08-08 14:53:14 -06:00
Todd C. Miller
69762d8882 Remove generated files for linker as part of distclean. 2014-08-08 14:49:06 -06:00
Todd C. Miller
bd57aad60b Ignore .out and .err files in lib/util regress 2014-08-08 14:44:22 -06:00
Todd C. Miller
53a251dc07 Add additional 1.8.11 changes and fix typos. 2014-08-08 14:33:22 -06:00
Todd C. Miller
696080917c Avoid building/running the check_symbols test program unless we are 
building a shared sudoers plugin.
 2014-08-08 11:19:20 -06:00
Todd C. Miller
dd43530f0a Remove two instances of -no-fast-install that were missed before. 2014-08-08 11:07:09 -06:00
Todd C. Miller
76a6dad424 Add --disable-shared-libutil configure option. It may only be used 
in conjunction with the --enable-static-sudoers option.
 2014-08-08 11:03:24 -06:00
Todd C. Miller
779946ea3a Remove noop man.sed files 
Use full path instead of $@.in when calling config.status with --file=-
 2014-08-07 09:55:12 -06:00
Todd C. Miller
703263bf0e Fix "sudo -C" when we have internal fds to preserve from closefrom(). 2014-08-07 09:38:03 -06:00
Todd C. Miller
df0fd41530 Add explicit support for matching the full environment string 
(name=value).  Bash functions may now be preserved for full matches,
but not for name-only matches.
 2014-08-06 16:45:57 -06:00
Todd C. Miller
84fa5a505c Ignore lib/util/util.exp 2014-08-05 16:07:31 -06:00
Todd C. Miller
d75d22e98a Fix exporting of asprintf/vasprintf symbols. 2014-07-30 15:47:15 -06:00
Todd C. Miller
0a9e9016f1 Don't export getaddrinfo symbols if we found the function in a library. 2014-07-30 15:08:05 -06:00
Todd C. Miller
7a988d489c It is now sudo_efree() not efree(). 
Don't try to free a pointer to garbage on error.
 2014-07-30 09:46:48 -06:00
Todd C. Miller
080d0e650f Regen .pot files 2014-07-30 09:37:47 -06:00
Todd C. Miller
edf0d39703 Plug memory leak, even though we are headed for exit. 2014-07-29 19:33:55 -06:00
Todd C. Miller
f29880c1c7 If getaddrinfo() is missing libsudoutil may need to pull in networking 
libraries.
 2014-07-29 13:06:18 -06:00
Todd C. Miller
daf634b728 Only include functions in util.exp that are actually in the library. 
Fixes a problem on Solaris where undefined functions that are listed
as exported in the map file result in a link error.
Also make sure we use our glob.c if the system is missing glob().
 2014-07-29 10:52:43 -06:00
Todd C. Miller
f99a910236 Make sure shadow libs don't end up in LIBS, only SUDOERS_LIBS (and 
SUDO_LIBS if set_auth_parameters() or initprivs() are present.
 2014-07-29 09:30:25 -06:00
Todd C. Miller
58a59896b4 No need to AC_SUBST HAVE_BSM_AUDIT and HAVE_SOLARIS_AUDIT 2014-07-29 09:25:07 -06:00