Also remove useless "Problem with defaults entries" warning in testsudoers.

This information is now included in the error mail sent to root.

This appears to work around a crash on OpenBSD with Python 3.9.10.

This is the default for libFuzzer but not for the stub fuzzer lib.

This will be used by a "check-verbose" target in the future.

Also display a test summary at the end.

On Linux, prefer our own closefrom() emulation since the glibc
version may fail if /proc is not p...

Also add missing copyright notice.

LLVM LibFuzzer displays the input and running time by default but
we don't care about that for th...

It is easier to maintain these tests in script form. The output
now more closely matches that of...

We want to fuzz our parser, not the libc regular expression code.

Fixes a test failure on Alpine Linux.

Coverity CID 249976

Coverity CID 249972

Coverity CID 238641

Coverity CID 249977

Coverity CID 249971

Some macOS warnings are bogus, for instance it has an incorrect
getgrouplist(3) definition.

This means we no longer display the lecture unless the user is going
to enter a password. Authen...

Previously, the warning was displayed when a user was not in the
sudoers file, or was present but...

This is the functionality used by the log_passwords and passprompt_regex
options.

The heuristic used to decide when to disable filtering is when we
see another ttyout buffer or fi...

Coverity CID 249329

Coverity CID 249328

Instead of truncating on overflow, warn and return NULL.

Coverity CID 249326

Having "sudo ALL" permissions in no longer sufficient to be able to
list another user's privilege...

Avoids a problem with the fuzzer creating large regular expressions
that blow up the glibc regcom...

Also update ignore files for example changes

Either the command, its arguments or both may be (separate)
regular expressions.

This way we avoid printing the same error message more than once
if there are multiple ERROR toke...

This makes it easier to test commands with arguments.

Coverity CID 249057

Do not unset user timeout when no default timeout is set.

Previously, cvtsudoers and "sudo -l" would escape double quotes in
a command or command line argu...

Add missing ALL to Runas_Member and Host.
Replace some tabs with spaces.
Fix the syntax of a sudo...

Sync example sudoers with default sudoers

`sudoers.in` was changed by 1d13533

This used to indicate that email had been sent to the administrator
telling them that someone tri...

Also move a nested switch() statement out of 'case 0' for
improved readability.

This may simply mean that nsswitch.conf lists sss as a sudoers
source but SSSD is not configured ...

We must initialize the tail queues before any possible call to
client_closure_free(), such as due...

Fixes a potential NULL dereference when journaling an alert message.

The configure script correctly detects that utimensat() and futimens()
are missing but the header...

If the /proc file indicates no terminal is present there is no fallback.
Bug #1020

If noninteractive_auth is set, authentication methods that do not
require input from the user's t...

Glibc regcomp() has a bug where it uses excessive memory for repeated
'+' ops. Collapse them to ...

The setting was present but the callback was missing so it could
not be parsed in the conf file.

Linux pam_conv(3) says not to set the pointer on PAM_CONV_ERR.