Currently, we generate the signal list and names by running cpp on our
header, and piping the re...

This is used for determining whether to set _TIME_BITS with autoconf
versions before 2.72.

Commit 32f4b98f6b4a (sudo frontend: silence most -Wconversion warnings.)
broke the build on C li...

putchar is easier to understand than fputc and printf and does less work than those two do.

It's just strlcpy except it replaces '/' with '_'.

This means that it is not logged for "sudo -nv" and "sudo -nl".
We only log this message when sud...

Also add a commented out entry for "exec_background" which can also
be used to prevent sudo from...

The user-specified options must go last...

The cast to size_t needs to be outside the MAX() macro or the -1
will get cast to unsigned.

GitHub issue #342.

The logic was inverted when support for netgroup_query was added.
This supercedes PR #341.

Bug #1064

This can only happen if lowfd < 0, which is never the case.
Quiets a static analyzer warning.

This is a bug in parse_default_entry() introduced in sudo 1.8.19
when support for using the defa...

Previously, a tuple in boolean context was always treated as a
negated entry, which doesn't matc...

Otherwise, processing will stop after the first sudoers nsswitch
service specification where [SU...

The "runas_" prefix got inadvertantly removed in the big sudoers_context
refactor.

This moves sudo_isatty() to libsudo_util so sudo_term_is_raw() can
use it. Fixes GitHub issue #335

If ctx->user.cmnd doesn't match, use ctx->user.cmnd_dir (if present)
to construct a canonicalize...

If ctx->user.cmnd doesn't match, use ctx->user.cmnd_dir (if present)
to construct a canonicalize...

This should not actually be possible.

GitHub issue #332

Bug #1062

Quiet a -Wshadow warning from gcc.
Cast major() and minor() to unsigned int when printing.

If no terminal device can be found, print "major, minor" device
numbers instead.

The types and flags are now explicitly unsigned.

This matches the changes in sudo 1.9.15 to the sudoers policy module.

GitHub issue #329

GitHub issue #329

We need to track the (monotonic) command start time to be able to
generate an accurate run time....

This is set to the current wallclock time by sudoers_to_eventlog().

Only affects intercepted commands.

The timespec passed to log_server_open() should be from
sudo_gettime_awake() since it is used to...

The struct timespec argument is used to initialize the command
start time, which is not used for...

Errors are now propagated up the call stack.

Errors are now propagated up the call stack.

This replaces multiple sequences of asprintf() and print_attribute_ldif().

Previously, we set memfatal to true in sudo_json_init() instead.
This also gets rid of a number ...

We can use the rbapply() return value to detect failure.

When a command exits due to a fatal signal, sudo will re-send that
signal to itself so the shell...

If TCSASOFT is present, tcsetattr() will ignore c_cflag.
Fixes a bug where sudo_term_restore() w...

This is less error-prone and would have avoided GitHub issue #325.

Fixes GitHub issue #325, a bug introduced in sudo 1.9.15.

The shared object is a member of an archive file that is specified
in parentheses.

When matching debug files for AIX-style DSOs like sudoers.a(sudoers.so)
we want to match on the ...

Previously we used the global registry but since we have the user's
passwd info we should use th...

Coverity CID 330466

Coverity CID 330472
Coverity CID 330468

Checking for setid commands in intercept mode after command matching
allows us to log a proper e...