isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,323 Commits 1 Branch 0 Tags
db9f50f13c819ff9ce5e8760d2a1cf15ec7e84dc
Commit Graph

45 Commits

Author SHA1 Message Date
Todd C. Miller
23b7a1fa5c Call the policy's init_session() function before we fork the child. 
That way, the session is created and destroyed in the same process,
which is needed by some modules, such as  pam_mount.
 2012-04-23 16:38:16 -04:00
Todd C. Miller
5f969cc12a Pass pid, ppid, sid, pgid and tcpgid to plugin in user_info list. 2012-04-13 15:18:40 -04:00
Todd C. Miller
ec7767978f Document what changed in each plugin API revision 2012-03-16 14:39:12 -04:00
Todd C. Miller
96f046c1ce Rename plugin "args" to "options" 2012-03-15 12:32:31 -04:00
Todd C. Miller
6d10909949 Pass a pointer to user_env in to the init_session policy plugin 
function so session setup can modify the user environment as needed.
For PAM authentication, merge the PAM environment with the user
environment at init_session time.  We no longer need to swap in the
user_env for environ during session init, nor do we need to disable
the env hooks at init_session time.
 2012-03-15 09:18:36 -04:00
Todd C. Miller
e852b3ab06 Document hooks API 2012-03-14 14:11:18 -04:00
Todd C. Miller
bfb6f79105 List sudo_noexec.so not noexec.so in the sample sudo.conf 2012-03-02 11:15:40 -05:00
Todd C. Miller
a16dee915b Add support for plugin args at the end of a Plugin line in sudo.conf. 
Bump the minor number accordingly and update the documentation.  A
plugin must check the sudo front end's version before using the
plugin_args parameter since it is only supported for API version
1.2 and higher.
 2012-03-02 11:04:09 -05:00
Todd C. Miller
45e1623b5d Document Debug setting in sudo.conf and debug_flags in plugin. 2012-01-06 09:44:41 -05:00
Todd C. Miller
33516ed826 user_shell -> run_shell to avoid confusion with the user's SHELL variable. 2011-03-18 10:23:35 -04:00
Todd C. Miller
3506f01077 Add support for controlling whether utmp is updated and which user is 
listed in the entry.
 2011-03-15 15:53:49 -04:00
Todd C. Miller
cde2cb00f0 Add "user_shell" boolean as a way to indicate to the plugin that 
the -s flag was given.
 2011-03-11 15:02:13 -05:00
Todd C. Miller
32cfe08a12 Make two login_class entris consistent. 2011-03-08 15:38:06 -05:00
Todd C. Miller
0122e3be28 Add missing period at end of sentence 2011-02-19 18:39:27 -05:00
Todd C. Miller
f7f8b6867e Update copyright year to 2011 2011-01-20 16:46:56 -05:00
Todd C. Miller
33201c04e8 Correct the default sudo.conf example 2011-01-03 13:09:03 -05:00
Todd C. Miller
25036d7a75 Pass a single I/O log file name in command_details instead of 
separate dir + file parameters.
 2010-12-30 17:09:01 -05:00
Todd C. Miller
3f6f61f852 Document iolog_compress in command_info 2010-12-28 12:25:06 -05:00
Todd C. Miller
05807cf5e1 Document iolog_file and supported escape sequences for sudoers. 
Clarify that iolog_file can contain directories.
 2010-12-27 14:43:50 -05:00
Todd C. Miller
5d59c10b95 Give the policy module fine-grained control over what the I/O plugin 
logs.
 2010-12-21 17:43:18 -05:00
Todd C. Miller
4294e4db8b Document iolog_file, iolog_dir and use_pty 2010-12-20 16:29:08 -05:00
Todd C. Miller
1009d7a3e6 Query local network interfaces in the main sudo driver and pass to 
the plugin as "network_addrs" in the settings list.
 2010-09-08 14:20:11 -04:00
Todd C. Miller
4feaf3c264 Document sudo_conv_t function and sudo_printf_t return values. 2010-08-12 10:29:43 -04:00
Todd C. Miller
5b1420b6d4 Make sudo_plugin format a bit more like a man page 2010-07-07 16:59:06 -04:00
Todd C. Miller
9d17312617 Document the sudoers group plugin. 2010-07-02 13:42:53 -04:00
Todd C. Miller
eec336115a Move askpass path specification from sudoers to sudo.conf. 2010-06-09 17:40:44 -04:00
Todd C. Miller
9d09966aad Mention plugins in the sudo manual and add some missing path 
substitution in the sudo_plugin manual.
 2010-06-09 12:26:37 -04:00
Todd C. Miller
a4a6620b24 Add SUDO_CONV_PROMPT_MASK define which corresponds to the "pwfeedback" 
sudoers option.  Do not disable echo if TGP_ECHO is set.
 2010-06-09 10:31:05 -04:00
Todd C. Miller
0b6a687bf4 Document init_session 2010-05-27 15:07:43 -04:00
Todd C. Miller
0487aee6b4 Bring back closefrom settings. 2010-05-24 15:40:36 -04:00
Todd C. Miller
55ef027d88 Add argc and argv to I/O logger open function. 2010-05-17 10:38:56 -04:00
Todd C. Miller
fa717176b2 Remove check_sudoedit function pointer in struct sudo_policy. 
Instead, sudo will set sudoedit=true in the settings array.
The plugin should check for this and modify argv_out as appropriate
in check_policy.
 2010-05-17 10:25:27 -04:00
Todd C. Miller
9a6cbe03b6 Clarify sudoedit a tad. 2010-05-14 09:39:01 -04:00
Todd C. Miller
c8a62b1ecb Document sudoedit 2010-05-13 17:49:52 -04:00
Todd C. Miller
7da9e1a912 Document plugin_printf and new logging functions. 2010-05-05 13:22:21 -04:00
Todd C. Miller
bc813db528 Add a "noninteractive" boolean to the settings passed in to the plugin's 
open function that is set when the user specifies the -n flag.
 2010-04-14 08:41:53 -04:00
Todd C. Miller
f19be6da31 Handle plugin's open function returning -2 (usage error). 2010-04-13 09:36:43 -04:00
Todd C. Miller
9edc09609f Document the -2 return in the check_policy section too 2010-03-21 08:58:13 -04:00
Todd C. Miller
6b180d24da Fix the -s and -i flags and add support for the "implied_shell" 
option.  If the user does not specify a command, sudo will now pass
in the path to the user's shell and set impied_shell=true.  The
plugin can them either check the command normally or return -2 to
cause sudo to print a usage message and exit.
 2010-03-21 08:54:06 -04:00
Todd C. Miller
18cd91d56e Document progname in settings 2010-03-19 07:56:06 -04:00
Todd C. Miller
81949e89d1 Document lines/cols in user_info 2010-03-17 10:44:16 -04:00
Todd C. Miller
f0f803e337 Mention in the conversation function section that a newline is 
not implicit.
 2010-03-11 17:02:23 -05:00
Todd C. Miller
07bf968c4d Document -D level command line flag which maps to the debug_level setting. 2010-02-24 07:48:53 -05:00
Todd C. Miller
9eb3e63c56 Document debug_level in plugin doc. Still need to document the -D 
flag in sudo itself.
 2010-02-24 06:35:45 -05:00
Todd C. Miller
bcd021da5e Rename plugin.pod -> sudo_plugin.pod and wire into Makefile 2010-02-21 21:24:20 -05:00