This reduces the amount of memory leaked on unload.

We now create the LogHandler class for each interpreter in
python_plugin_init() instead of just ...

Also add comments about PyModule_AddObject stealing a ref on success.

In sudo_module_set_default_loghandler() if we don't leak the reference
to py_loghandler we get a...

They are not used outside their respective compilation units.

No need to do PyThreadState_Swap in the caller.

Also remove redundant PyConfig settings.

Avoids deprecation warnings on Python 3.12.

GitHub issue #291

We should only check for MODE_PRESERVE_ENV when running a command.

We should only match a rule with an empty runas user if a group was
specified on the command lin...

This fixes a problem with "stair-stepped" output when the sudo-run
command's output is piped to ...

Add cmnd_foreground flag that is only true if sudo is the foreground
process and the CD_EXEC_BG ...

There are current two flags: SUDO_TERM_ISIG (enable terminal signals)
and SUDO_TERM_OFLAG (prese...

Newer Linux kernels replace a NULL argv[0] with the empty string,
we should as well.

This avoids a potential invalid free in the err label and provides
more predictable behavior whe...

The NULL check was commented out for testing but should have been
restored. Fixes a potential p...

Starting in sudo 1.9.14, eventlog_free() will free the peeraddr
member too so it needs to be dyn...

This is more portable and eliminates the need to check for SYMLOOP_MAX
(and provide it if missin...

The callers all verify that they don't pass a NULL ccname so I'm
not sure how the compiler is ge...

The sudoers file must now explicitly allow the user to specify a
directory (sudo -D) or chroot (...

In most cases, these simply expand to a call to sudo_debug_printf2().
We need to keep the functi...

It was not covering all cases in its original location.
Fixes oss-fuzz issue 60454 with fuzz_sud...

Give every printf-like function restrict qualifiers

The format value has to be a string literal, every time.

Otherwise, you are not using these fun...

There's no real space saved by using short and using int avoids a
few casts.

This only affects the case where a group ID cannot be resolved.

Shift 1UL instead of 1 to avoid overflowing an int.

Optimize sudo_pow2_roundup_v1

No need to call sudo_pow2_roundup_v2.

Remove comment about algorithm being from bit-twiddling hacks

Said comment no longer applies.

Fix fuzzing errors

We should be checking for integer overflow, rather than checking if size is 0.

Additionally, we...

Fixed even more signedness and conversion issues

This should be the last of them.

It was already unsigned in sudoers but not in the front-end or the
python plugin. Making this c...

Mark functions not returning as sudo_noreturn

We also put NOTREACHED where it applies.

Regenerate toke.c using updated flex

Use the current version of flex to generate toke.c

It is no longer used directly in main.

Previously, we just printed "Command unmatched" which makes it
harder to see that an error occur...

This makes it possible to tell whether an entry was rejected due
to a negative match (explicitly...

Also pass in the time to be used for NOTBEFORE/NOTAFTER checks.

Avoid compiler casting warnings Part 2