isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,626 Commits 1 Branch 0 Tags
e90fa482f917100d46b0534b5b36d8a9e8abeb8c
Commit Graph

4626 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
477f895ecf Generate sudo distributions with pax in ustar mode. No longer need 
to use a temp file or have the source dir name match the version.
 2009-07-29 22:16:44 +00:00
Todd C. Miller
b8ca82fee6 Fix expansion of %h in #include names. Fixes bugzilla 363 2009-07-18 13:55:37 +00:00
Todd C. Miller
51e292a474 If no arg assume def_data.in 2009-07-12 21:17:13 +00:00
Todd C. Miller
2b80daae94 Update for 1.7.2 2009-07-12 01:27:03 +00:00
Todd C. Miller
dd52fff169 sync 2009-07-12 01:12:29 +00:00
Todd C. Miller
0d73e19242 Add missing single quotes around a colon in Runas_Spec definition. 
From Elias Benali.
 2009-06-30 12:41:09 +00:00
Todd C. Miller
29ca853907 regen 2009-06-29 13:36:42 +00:00
Todd C. Miller
02dd5d998d In rbrepair, re-color the root or the first non-block node we find to 
be black.  Re-coloring the root is probably not needed but won't hurt.
 2009-06-29 13:36:20 +00:00
Todd C. Miller
4764730f79 regen 2009-06-29 13:35:21 +00:00
Todd C. Miller
ca2e911263 When repairing the tree, don't touch the root node. 2009-06-26 20:40:17 +00:00
Todd C. Miller
4e0200a33a Protect call to setegid in runas_setup with #ifdef HAVE_SETEUID. 
Reported by Josef Schmid.
 2009-06-25 12:44:33 +00:00
Todd C. Miller
b2189fede3 Document that we accept env_pam-style environment files 2009-06-23 18:29:02 +00:00
Todd C. Miller
0c669eda2e Adapt to accept pam_env-style /etc/environment which allows shell-style 
lines such as: export EDITOR="/usr/bin/vi"
 2009-06-23 18:24:42 +00:00
Todd C. Miller
8f16434679 Make it clear that env_delete only works when !env_reset. 
From Loïc Minier
 2009-06-23 16:22:48 +00:00
Todd C. Miller
d2efb0a55a Add non-unix group bits, adapted from Quest 2009-06-15 21:19:47 +00:00
Todd C. Miller
3086f937f0 build the .cat page in the current working dir, not the src dir 2009-06-15 21:18:53 +00:00
Todd C. Miller
44ace77355 Return EINVAL in setenv() if var is NULL or the empty string to match 
glibc behavior.
 2009-06-15 13:10:01 +00:00
Todd C. Miller
633357448a Use AS_HELP_STRING for AC_ARG_WITH and AC_ARG_ENABLE 2009-06-13 20:52:50 +00:00
Todd C. Miller
e939739aae regen 2009-06-11 20:29:12 +00:00
Todd C. Miller
54c599d714 Document --with-libvas and --with-libvas-rpath 2009-06-09 14:08:55 +00:00
Todd C. Miller
9606d21653 For netscape-derived LDAP SDKs the cert and key paths may be a 
directory or a file.  However, version 5.0 of the SDK only seems
to support using a directory.  If ldapssl_clientauth_init fails and
the cert or key paths look like they could be files, strip off the
last path element and try again.
 2009-05-29 13:43:12 +00:00
Todd C. Miller
073981ea84 Add non-Unix group .o to COMMON_OBJS and substitute in path to flex. 2009-05-29 13:40:52 +00:00
Todd C. Miller
7b7ae44ea3 Update non-Unix group support from Quest, as reworked by me. 2009-05-27 00:49:07 +00:00
Todd C. Miller
3ea51f2266 regen 2009-05-27 00:47:17 +00:00
Todd C. Miller
c708413952 Add support for escaped hex chars in names, e.g. \x20 for space. 2009-05-27 00:46:51 +00:00
Todd C. Miller
62b89f9dfc Update copyright years. 2009-05-25 12:02:42 +00:00
Todd C. Miller
4341ce6cde Minor fixes for Minix-3 2009-05-24 12:33:00 +00:00
Todd C. Miller
896508077c Handle getgroups() returning 0. Also add missing check for HAVE_GETGROUPS. 2009-05-22 10:37:29 +00:00
Todd C. Miller
f54b69b0cc Replace version.h with PACKAGE_VERSION set via AC_INIT in configure. 2009-05-19 21:24:05 +00:00
Todd C. Miller
5f9f29a233 Remove group setting code in setusercontext case, we will do it ourselves 
later on in runas_setup.  Set the gid after initgroups/setgroups is called,
since on Mac OS X it seems to change the egid.
 2009-05-18 10:33:33 +00:00
Todd C. Miller
d985366233 Initial bits of non-unix group support using Quest Authentication Services 2009-05-17 22:19:38 +00:00
Todd C. Miller
f3407d8695 Accept %:foo as a non-Unix group 2009-05-17 20:52:15 +00:00
Todd C. Miller
e74bea7628 Allow user/group to be double quoted in the case of non-Unix groups 
which contain spaces.
 2009-05-17 20:22:24 +00:00
Todd C. Miller
8d34913560 Don't allow the user to specify the default runas user if their 
sudoers entry only allows them to run as a group.
 2009-05-11 16:47:10 +00:00
Todd C. Miller
c0ac222c3f Must call audit_success before we change uids. 2009-05-10 11:59:53 +00:00
Todd C. Miller
755a81e946 Add option for set_perm to not exit on failure and use this in 
the logging routines.
 2009-05-10 11:52:13 +00:00
Todd C. Miller
2a609b467c In -l mode, if the user is only allowed to run as a group, display 
the user's name, not root's before the allowed group.
 2009-05-10 11:33:45 +00:00
Todd C. Miller
3332ee9842 Fix -g mode, broken by rev 1.503 which had the side effect of setting 
the runas user to root unilaterally.
 2009-05-10 01:00:23 +00:00
Todd C. Miller
9251cf24a9 When unlocking a file with fcntl, use F_SETLK, not F_SETLKW. 2009-05-08 20:19:20 +00:00
Todd C. Miller
03f4a2e703 Only cache by the method we fetched for pwd and grp lookups. Previously 
we cached both by namd and id but this can cause problems for entries
that share the same id.  Also add more info in the error message in case
the insert fails (which should now be impossible).
 2009-05-08 17:07:10 +00:00
Todd C. Miller
2b89941122 Add a clarification from Nick Sieger 2009-04-30 19:04:08 +00:00
Todd C. Miller
8d7518a18c Inline the setting of the environment string. 2009-04-25 16:49:22 +00:00
Todd C. Miller
c0c7180bba setenv(3) in Linux treats a NUL value as the empty string 
setenv(3) in BSD doesn't return an error if the name has '=' in it, it
just treats the '=' as end of string.
 2009-04-24 18:53:15 +00:00
Todd C. Miller
182711e341 Not all systems have d_namlen 2009-04-22 20:32:08 +00:00
Todd C. Miller
db9860aa36 Fix up some pod2html issues. 2009-04-20 17:53:02 +00:00
Todd C. Miller
78c347990e Check for NULL ifa_addr and ifa_netmask. 
Adapted from a diff from Quest Software.
 2009-04-19 18:09:24 +00:00
Todd C. Miller
0509ce3f66 Ignore files ending in '~' in sudo.d (emacs backup files) 2009-04-19 13:01:20 +00:00
Todd C. Miller
72a1d82412 Ignore files ending in '~' in sudo.d (emacs backup files) 2009-04-19 12:56:42 +00:00
Todd C. Miller
95de5670a2 For #includedir, ignore any file containing a dot 2009-04-18 23:37:33 +00:00
Todd C. Miller
392edea928 Bump version 2009-04-18 23:25:38 +00:00