isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,758 Commits 1 Branch 0 Tags
e12858ee904f6ab91823be93c97c6764c67bfaf9
Commit Graph

4758 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
7a759cd2ac Enable/disable all postprocessing instead of just nl->crnl processing 
since things like tab expansion matter too.  However, if stdout is
a tty leave postprocessing on in the pty since we run into problems
doing it only on the real stdout with .e.g nvi.
 2009-12-23 23:53:04 +00:00
Todd C. Miller
ce63ab5069 If tty_tickets is enabled and there is no tty, prompt for a password. 
Do not lecture user for "sudo -k command" if user has a timestamp.
 2009-12-19 23:04:58 +00:00
Todd C. Miller
2df5bd857a Document missing options: --with-efence and --with-bsm-audit 2009-12-19 21:57:33 +00:00
Todd C. Miller
e007e2ad4d username -> user name 
groupname -> group name
hostname -> host name
 2009-12-19 21:44:06 +00:00
Todd C. Miller
00c89f0145 filename -> file name like the rest of the docs 2009-12-19 21:33:25 +00:00
Todd C. Miller
73dccdf93d Fix printing of entries with multiple host entries on a single line. 2009-12-17 15:02:06 +00:00
Todd C. Miller
2bc6801ca7 Mention that targetpw affects the timestamp file name. 2009-12-14 23:53:05 +00:00
Todd C. Miller
180785567c Add compress_transcript option. 2009-12-14 01:49:50 +00:00
Todd C. Miller
6810071e87 bump to 1.7.3b2 2009-12-13 22:26:32 +00:00
Todd C. Miller
d20335136b Better split of membership vs. traditional group check in user_in_group(). 
Allow user_ngroups to be < 0 if getgroups() fails.
 2009-12-13 22:24:34 +00:00
Todd C. Miller
0d054f897d Fix pasto and add default return value. 2009-12-12 16:27:02 +00:00
Todd C. Miller
ab72e242ba refactor group member checking into user_in_group() 2009-12-12 16:12:26 +00:00
Todd C. Miller
b8239bb34c Add support for mbr_check_membership() as present in darwin. 2009-12-12 15:37:52 +00:00
Todd C. Miller
02ae5fd96f Rename label to be accurate 2009-12-10 19:37:56 +00:00
Todd C. Miller
600ce3dfa6 Treat timestamp files from before we booted as old. Idea from and 
Apple patch.
 2009-12-10 16:59:27 +00:00
Todd C. Miller
8b48ab71e4 Allow the -u flag to be used in conjunction with the -v flag as per 
older versions of sudo.
 2009-12-09 16:19:30 +00:00
Todd C. Miller
f325cfac87 fix typo in last commit 2009-12-09 16:05:02 +00:00
Todd C. Miller
2a9810bfdc Convert fmt_first and fmt_confd into macros. 2009-12-08 22:19:49 +00:00
Todd C. Miller
a61c1806a6 timeouts can be floats now 2009-12-08 21:58:16 +00:00
Todd C. Miller
186d836ebc Add support for floating point timeout values (e.g. 2.5 minutes). 2009-12-08 21:49:53 +00:00
Todd C. Miller
d92b6c5d9e The -L flag will be removed in sudo 1.7.4 2009-12-07 00:11:43 +00:00
Todd C. Miller
aa03d9cace Fix a bug due to order of operators. 2009-12-06 17:10:36 +00:00
Todd C. Miller
803dd9a7c6 cmnd_matches() already deals with negation so _cmndlist_matches() does 
not need to do so itself.  Fixes a bug with negated entries in a
Cmnd_List.
 2009-11-23 15:56:14 +00:00
Todd C. Miller
a86896a1c7 Don't exit() from open_sudoers, just return NULL for all errors. 2009-11-22 16:12:38 +00:00
Todd C. Miller
453d055b4c Can't rely on the shell sending us SIGCONT when transitioning from 
backgroup to foreground process.
 2009-11-22 15:58:37 +00:00
Todd C. Miller
850990b88d Add missing extern def for parse_error 2009-11-22 14:54:04 +00:00
Todd C. Miller
22e333fc5a Avoid a parse error when #includedir doesn't find any files. 
Closes bug #375
 2009-11-21 00:11:50 +00:00
Todd C. Miller
41c3dc7334 Include sudo.man.pl and sudoers.man.pl in the distribution tarball. 2009-11-21 00:03:52 +00:00
Todd C. Miller
84d4bc2df5 Start command out in foreground mode if stdout is a tty. Works 
around issues with some curses-based programs that don't handle
tcsetattr getting interrupted by a signal.  Still allows us to
avoid hogging the tty if the command is part of a pipeline.
 2009-11-15 21:53:38 +00:00
Todd C. Miller
dcf6602daa Use a socketpair to pass signals from parent to child. Child will 
now pass command status change info back via the socketpair.  This
allows the parent to distinguish between signals it has been sent
directly and signals the command has received.  It also means the
parent can once again print the signal notifications to the tty so
all writes to the pty master occur in the parent.  The command is
now always started in background mode with tty signals handled
by the parent.
 2009-11-15 21:42:17 +00:00
Todd C. Miller
871b3fb125 Fix a few typos in the descriptions; from Jeff Makey 
Only do the check for krb5_get_init_creds_opt_free() taking two
arguments if we find krb5_get_init_creds_opt_alloc().  Otherwise
we will get a false positive when using our own
krb5_get_init_creds_opt_free which takes only a single argument.
 2009-11-04 14:42:04 +00:00
Todd C. Miller
d0fdeb12a2 Remove a spurious comma in the kerb5 bits. 2009-11-03 14:58:47 +00:00
Todd C. Miller
ce0fdd5544 Call krb5_get_init_creds_opt_init() in our emulated 
krb5_get_init_creds_opt_alloc() for MIT kerberos.
 2009-11-03 14:51:20 +00:00
Todd C. Miller
63fee47084 Add HAVE_ZLIB 2009-11-01 23:44:15 +00:00
Todd C. Miller
febc3cbb1f Need to ignore SIGTT{IN,OU} in child when running the command in the 
background.  Also some minor cleanup.
 2009-11-01 15:14:58 +00:00
Todd C. Miller
78cd63e074 Instead of calling sigsuspend when waiting for SIGUSR[12] from parent, 
install the signal handlers w/o SA_RESTART and let them interrupt waitpid().
 2009-10-31 17:40:19 +00:00
Todd C. Miller
94370b319f Pass along SIGHUP and SIGTERM from parent to child. 2009-10-31 17:14:52 +00:00
Todd C. Miller
e6567f46b6 Close unused bits of script_fds in processes that don't need them. 
Restore default SIGCONT handler in child.
 2009-10-31 16:48:34 +00:00
Todd C. Miller
aee3382ed1 Update foreground/background status in SIGCONT handler in parent process. 2009-10-31 16:45:59 +00:00
Todd C. Miller
e62dd7645f Defer setting terminal into raw mode until just before we fork() 
and only do it if sudo is the foreground process.
If we get SIGTT{IN,OU} and sudo is already in the foreground be sure
to set raw mode before continuing the child.
 2009-10-25 14:55:14 +00:00
Todd C. Miller
c77ef16fcd Fix handling of SIGTTOU/SIGTTIN in program being run. We now only 
give the command the controlling tty if the main sudo process is the
foreground process.
 2009-10-24 18:43:16 +00:00
Todd C. Miller
61b57817a5 Don't bother with sudo_waitpid() here for now. 2009-10-24 18:32:44 +00:00
Todd C. Miller
50f5d55163 fix non-zlib case 2009-10-24 13:16:40 +00:00
Todd C. Miller
470d3a1925 Remove non-wroking code that crept into rev 1.55 2009-10-23 11:40:22 +00:00
Todd C. Miller
602a62c01e First pass at zlib support for transcript data files 2009-10-22 23:50:16 +00:00
Todd C. Miller
aaa2f89eac remove vestiges of ZLDFLAGS 2009-10-22 23:46:40 +00:00
Todd C. Miller
db502bb584 Add missing variable declaration for when TIOCSCTTY is not defined. 
Need to include sys/termio.h for TIOCSCTTY on some systems.
 2009-10-22 14:53:13 +00:00
Todd C. Miller
03e0e4c747 when resuming command, send SIGCONT to its pgrp not just pid 2009-10-22 13:52:59 +00:00
Todd C. Miller
777c82a4d4 remove unused variable 2009-10-22 13:47:43 +00:00
Todd C. Miller
8fa5a519a0 include selinux.h for is_selinux_enabled() proto 2009-10-22 13:47:32 +00:00