isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,252 Commits 1 Branch 0 Tags
f454727bb848d341b0fb3faabd35a8a75e65773a
Commit Graph

281 Commits

Author SHA1 Message Date
Todd C. Miller
f454727bb8 Merge compat.h and missing.h into missing.h 2010-08-16 14:05:44 -04:00
Todd C. Miller
6ce5c4cd97 If the user hits ^C while a password is being read, error out before 
reading any further passwords in the pam conversation function.
Otherwise, if multiple PAM auth methods are required, the user will
have to hit ^C for each one.
 2010-08-14 10:18:49 -04:00
Todd C. Miller
151a2cab56 Update comment 2010-08-12 11:55:56 -04:00
Todd C. Miller
129cf8d992 sudoers.h includes sudo_plugin.h for us 2010-08-10 16:36:54 -04:00
Todd C. Miller
6bcd9efc0c Use gettimeofday() directly instead of via the gettime() wrapper. 2010-08-10 13:50:40 -04:00
Todd C. Miller
8dd8aa000e Remove some obsolete configure tests, ancient Unix systems are no 
longer supported.
 2010-08-10 13:44:05 -04:00
Todd C. Miller
d2cc4740c1 For non-standalone auth methods, stop reading the password if the 
user enters ^C at the prompt.
 2010-08-06 17:16:57 -04:00
Todd C. Miller
96cb890d53 No need to look up shadow password unless we are doing password-style 
authentication.  This moves the shadow password lookup to the auth
functions that need it.
 2010-08-06 13:55:33 -04:00
Todd C. Miller
cb1848fab1 Retain final passwd/group refs until the policy close() function. 
Note that this doesn't get called in all cases so putting
this in a cleanup function is probably better.
 2010-08-06 13:54:35 -04:00
Todd C. Miller
9f27401359 Fix mismerge 2010-08-06 13:53:17 -04:00
Todd C. Miller
640f79e13a When removing/resetting the timestamp file ignore the tty ticket contents. 2010-08-06 12:07:21 -04:00
Todd C. Miller
26526e667f delref sudo_user.pw, runas_pw and runas_gr immediately before we return. 2010-08-06 12:07:03 -04:00
Todd C. Miller
0186018d3d Reference count cached passwd and group structs. The cache holds 
one reference itself and another is added by sudo_getgr{gid,nam}
and sudo_getpw{uid,nam}.  The final ref on the runas and user passwd
and group structs are persistent for now.
 2010-08-04 09:58:50 -04:00
Todd C. Miller
ec57221017 Do not produce a warning for "sudo -k" if the ticket file does not 
exist.
 2010-08-03 15:16:57 -04:00
Todd C. Miller
65eec19bdc Instead of caching struct passwd and struct group in the red-black 
tree, store a struct cache_item which includes both the key and
datum.  This allows us to user the actual name that was looked up
as the key instead of the contents of struct passwd or struct group.
This matters because the name in the database may not match what
we looked up, due either to case folding or truncation (historically
at 8 characters).  Also mark the disabled calls to sudo_freepwcache()
and sudo_freegrcache() as broken since we use cached data for things
like set_perms() and the logging functions.  Fixing this would
require making a copy of the structs for user and runas or adding
a reference count (better).
 2010-08-03 15:15:45 -04:00
Todd C. Miller
4e74b389c2 Fix path to mkinstalldirs 2010-08-03 15:10:56 -04:00
Todd C. Miller
420db23714 Quiet gcc warnings on glibc systems that use warn_unused_result for 
write(2) and others.
 2010-08-03 11:17:56 -04:00
Todd C. Miller
1229406720 Add %option noinput 2010-08-02 18:17:51 -04:00
Todd C. Miller
6d0395ee68 Add support for Ubuntu admin flag file and enable it when building 
Ubuntu packages.
 2010-07-28 16:34:11 -04:00
Todd C. Miller
76ce69057e Add commented out SuSE-like targetpw settings 2010-07-28 16:28:14 -04:00
Todd C. Miller
5d06ad3b6b Some getline() implementations (FreeBSD 8.0) do not ignore the 
length pointer when the line pointer is NULL as they should.
 2010-07-27 10:48:35 -04:00
Todd C. Miller
c33bf93509 Don't need to check for *cp being non-zero, isdigit() will do that. 2010-07-27 10:12:24 -04:00
Todd C. Miller
18d25e96f0 Add setlocale() so the command line arguments that use floating 
point work in different locales.  Since sudo now logs the timing
data in the C locale we must Parse the seconds in the timing file
manually instead of using strtod().  Furthermore, sudo 1.7.3 logged
the number of seconds with the user's locale so if the decimal point
is not '.' try using the locale-specific version.
 2010-07-27 09:49:54 -04:00
Todd C. Miller
a3e4db1244 Use errorx() not error() for thingsthat don't set errno. 2010-07-27 07:50:43 -04:00
Todd C. Miller
c59ad3596c Create timedir as part of install-dirs target. 2010-07-26 14:26:54 -04:00
Todd C. Miller
4168fcf2dd sudo_pwdup() was not expanding an empty pw_shell to _PATH_BSHELL 2010-07-26 12:34:42 -04:00
Todd C. Miller
a346ba8df5 Add commented out Defaults entry for log_output 2010-07-25 13:12:49 -04:00
Todd C. Miller
aeac8822b4 Add PACKAGE_TARNAME for docdir 2010-07-22 07:58:02 -04:00
Todd C. Miller
092a6935e1 Install binary files with -b~ to make a backup. 
Fixes "text file busy" error on HP-UX during install.
 2010-07-23 11:23:53 -04:00
Todd C. Miller
c016ecf006 Install sudoers2ldif in the doc dir 2010-07-23 09:12:03 -04:00
Todd C. Miller
5183d6e594 Include time.h for struct timeval 2010-07-21 16:01:16 -04:00
Todd C. Miller
f45f57dca5 Add commented out line to add HOME to env_keep and add a warning 
to the note about the HOME change in UPGRADE.
 2010-07-21 09:51:43 -04:00
Todd C. Miller
d8acd34031 Add LINE_MAX define for those without it. 2010-07-20 15:34:30 -04:00
Todd C. Miller
2675524c32 The tty_tickets option is now on by default. 2010-07-20 13:20:53 -04:00
Todd C. Miller
ee7221f1fe Reset HOME when env_reset is enabled unless it is in env_keep 2010-07-19 15:35:47 -04:00
Todd C. Miller
4382c30c04 Add missing include of time.h 2010-07-19 12:55:27 -04:00
Todd C. Miller
10e6e572ea Fix check for dup2() return value. 2010-07-19 12:54:30 -04:00
Todd C. Miller
2eb1879fd7 Add PYTHONUSERBASE to initial_badenv_table 2010-07-19 12:54:01 -04:00
Todd C. Miller
32e896f339 Treat an unknown defaults entry as a parse error. 2010-07-19 12:53:45 -04:00
Todd C. Miller
f7f65cfb95 Check return value of setdefs() but don't stop setting defaults if 
we hit an unknown one.
 2010-07-19 12:53:25 -04:00
Todd C. Miller
69ecb34581 If env_reset is enabled, set the MAIL environment variable based 
on the target user unless MAIL is explicitly preserved in sudoers.
 2010-07-19 12:50:59 -04:00
Todd C. Miller
af0bac430a Add commented out env_keep entries, sample Aliases and a %sudo line 
for debian.
 2010-07-15 15:09:54 -04:00
Todd C. Miller
482f9cfc83 Handle getcwd() failure. 2010-07-14 14:17:56 -04:00
Todd C. Miller
efbc7f1d57 Only set PAM_RHOST for Solaris, where it is needed to avoid a bug. 
On Linux it causes a DNS lookup via libaudit.
 2010-07-13 08:56:31 -04:00
Todd C. Miller
ab7a1c5ce4 Remove vestiges of old binary package bits. 2010-07-13 08:37:28 -04:00
Todd C. Miller
a33996e740 install-man -> install-doc 2010-07-13 08:36:19 -04:00
Todd C. Miller
7bcbce2078 Use http://rc.quest.com/topics/polypkg/ for packaging 2010-07-13 08:33:46 -04:00
Todd C. Miller
5b9e39ac87 Use _PATH_STDPATH instead of _PATH_DEFPATH 2010-07-12 18:07:52 -04:00
Todd C. Miller
151db86e3b Do not strip binaries. 2010-07-12 18:06:46 -04:00
Todd C. Miller
d9de7b5f8e Add support for a sudo-i pam.d file to be used for "sudo -i". 
Adapted from a RedHat patch.
 2010-07-12 17:57:53 -04:00