isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,626 Commits 1 Branch 0 Tags
e90fa482f917100d46b0534b5b36d8a9e8abeb8c
Commit Graph

4626 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
e90fa482f9 Rework source layout in preparation for modular sudo. 2010-02-20 09:14:01 -05:00
Todd C. Miller
28c24027ec Avoid a duplicate fclose() of the sudoers file. 2010-02-13 07:32:05 -05:00
Todd C. Miller
60adef2e34 Fix size arg when realloc()ing include stack. From Daniel Kopecek 2010-02-13 07:31:38 -05:00
Todd C. Miller
6b02fe5ea6 Use setrlimit64(), if available, instead of setrlimit() when setting 
AIX resource limits since rlim_t is 32bits.
 2010-02-13 07:30:56 -05:00
Todd C. Miller
7f59ba20b8 Fix use after free when sending error messages. From Timo Juhani Lindfors 2010-02-13 07:30:31 -05:00
Todd C. Miller
280a51cda0 Generate the ChangeLog as part of "make dist" instead of having it 
in the repo.
 2010-02-13 07:29:36 -05:00
Todd C. Miller
a40de29cbe Avoid a duplicate fclose() of the sudoers file. 
--HG--
branch : 1.7
 2010-02-09 10:43:20 -05:00
Todd C. Miller
01240ab71a Fix size arg when realloc()ing include stack. From Daniel Kopecek 
--HG--
branch : 1.7
 2010-02-09 08:28:03 -05:00
Todd C. Miller
fd37f5c59f Use setrlimit64(), if available, instead of setrlimit() when setting 
AIX resource limits since rlim_t is 32bits.

--HG--
branch : 1.7
 2010-02-06 15:16:04 -05:00
Todd C. Miller
d4d13c1ca1 Fix use after free when sending error messages. From Timo Juhani Lindfors 
--HG--
branch : 1.7
 2010-02-06 12:43:26 -05:00
Todd C. Miller
c0f149b533 Generate the ChangeLog as part of "make dist" instead of having it 
in the repo.

--HG--
branch : 1.7
 2010-01-18 07:12:06 -05:00
Todd C. Miller
924daf0228 Generate correct ChangeLog for 1.7 branch. 
--HG--
branch : 1.7
 2010-01-17 19:55:11 -05:00
Todd C. Miller
3bb69ffe81 Remove CVS $Sudo$ tags. 2010-01-17 19:51:28 -05:00
convert-repo
4a50fafc14 update tags 2010-01-18 05:45:25 +00:00
Todd C. Miller
fb0e208022 make this match sudoers SYNOPSIS 2009-12-26 23:48:09 +00:00
Todd C. Miller
8ca8f24001 Print a newline between Runas and Command-specific defaults in 
sudo -l.
 2009-12-26 17:25:49 +00:00
Todd C. Miller
d0b2086a62 Use SET and CLR macros in term_raw 2009-12-26 01:50:25 +00:00
Todd C. Miller
8fbdbde2f5 Set stdin to non-blocking mode early instead of in check_input. 
Use term_raw instead of term_cbreak since the data we get has
already been expanded via OPOST.
 2009-12-26 01:49:25 +00:00
Todd C. Miller
7a759cd2ac Enable/disable all postprocessing instead of just nl->crnl processing 
since things like tab expansion matter too.  However, if stdout is
a tty leave postprocessing on in the pty since we run into problems
doing it only on the real stdout with .e.g nvi.
 2009-12-23 23:53:04 +00:00
Todd C. Miller
ce63ab5069 If tty_tickets is enabled and there is no tty, prompt for a password. 
Do not lecture user for "sudo -k command" if user has a timestamp.
 2009-12-19 23:04:58 +00:00
Todd C. Miller
2df5bd857a Document missing options: --with-efence and --with-bsm-audit 2009-12-19 21:57:33 +00:00
Todd C. Miller
e007e2ad4d username -> user name 
groupname -> group name
hostname -> host name
 2009-12-19 21:44:06 +00:00
Todd C. Miller
00c89f0145 filename -> file name like the rest of the docs 2009-12-19 21:33:25 +00:00
Todd C. Miller
73dccdf93d Fix printing of entries with multiple host entries on a single line. 2009-12-17 15:02:06 +00:00
Todd C. Miller
2bc6801ca7 Mention that targetpw affects the timestamp file name. 2009-12-14 23:53:05 +00:00
Todd C. Miller
180785567c Add compress_transcript option. 2009-12-14 01:49:50 +00:00
Todd C. Miller
6810071e87 bump to 1.7.3b2 2009-12-13 22:26:32 +00:00
Todd C. Miller
d20335136b Better split of membership vs. traditional group check in user_in_group(). 
Allow user_ngroups to be < 0 if getgroups() fails.
 2009-12-13 22:24:34 +00:00
Todd C. Miller
0d054f897d Fix pasto and add default return value. 2009-12-12 16:27:02 +00:00
Todd C. Miller
ab72e242ba refactor group member checking into user_in_group() 2009-12-12 16:12:26 +00:00
Todd C. Miller
b8239bb34c Add support for mbr_check_membership() as present in darwin. 2009-12-12 15:37:52 +00:00
Todd C. Miller
02ae5fd96f Rename label to be accurate 2009-12-10 19:37:56 +00:00
Todd C. Miller
600ce3dfa6 Treat timestamp files from before we booted as old. Idea from and 
Apple patch.
 2009-12-10 16:59:27 +00:00
Todd C. Miller
8b48ab71e4 Allow the -u flag to be used in conjunction with the -v flag as per 
older versions of sudo.
 2009-12-09 16:19:30 +00:00
Todd C. Miller
f325cfac87 fix typo in last commit 2009-12-09 16:05:02 +00:00
Todd C. Miller
2a9810bfdc Convert fmt_first and fmt_confd into macros. 2009-12-08 22:19:49 +00:00
Todd C. Miller
a61c1806a6 timeouts can be floats now 2009-12-08 21:58:16 +00:00
Todd C. Miller
186d836ebc Add support for floating point timeout values (e.g. 2.5 minutes). 2009-12-08 21:49:53 +00:00
Todd C. Miller
d92b6c5d9e The -L flag will be removed in sudo 1.7.4 2009-12-07 00:11:43 +00:00
Todd C. Miller
aa03d9cace Fix a bug due to order of operators. 2009-12-06 17:10:36 +00:00
Todd C. Miller
803dd9a7c6 cmnd_matches() already deals with negation so _cmndlist_matches() does 
not need to do so itself.  Fixes a bug with negated entries in a
Cmnd_List.
 2009-11-23 15:56:14 +00:00
Todd C. Miller
a86896a1c7 Don't exit() from open_sudoers, just return NULL for all errors. 2009-11-22 16:12:38 +00:00
Todd C. Miller
453d055b4c Can't rely on the shell sending us SIGCONT when transitioning from 
backgroup to foreground process.
 2009-11-22 15:58:37 +00:00
Todd C. Miller
850990b88d Add missing extern def for parse_error 2009-11-22 14:54:04 +00:00
Todd C. Miller
22e333fc5a Avoid a parse error when #includedir doesn't find any files. 
Closes bug #375
 2009-11-21 00:11:50 +00:00
Todd C. Miller
41c3dc7334 Include sudo.man.pl and sudoers.man.pl in the distribution tarball. 2009-11-21 00:03:52 +00:00
Todd C. Miller
84d4bc2df5 Start command out in foreground mode if stdout is a tty. Works 
around issues with some curses-based programs that don't handle
tcsetattr getting interrupted by a signal.  Still allows us to
avoid hogging the tty if the command is part of a pipeline.
 2009-11-15 21:53:38 +00:00
Todd C. Miller
dcf6602daa Use a socketpair to pass signals from parent to child. Child will 
now pass command status change info back via the socketpair.  This
allows the parent to distinguish between signals it has been sent
directly and signals the command has received.  It also means the
parent can once again print the signal notifications to the tty so
all writes to the pty master occur in the parent.  The command is
now always started in background mode with tty signals handled
by the parent.
 2009-11-15 21:42:17 +00:00
Todd C. Miller
871b3fb125 Fix a few typos in the descriptions; from Jeff Makey 
Only do the check for krb5_get_init_creds_opt_free() taking two
arguments if we find krb5_get_init_creds_opt_alloc().  Otherwise
we will get a false positive when using our own
krb5_get_init_creds_opt_free which takes only a single argument.
 2009-11-04 14:42:04 +00:00
Todd C. Miller
d0fdeb12a2 Remove a spurious comma in the kerb5 bits. 2009-11-03 14:58:47 +00:00