Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/sudo-project/sudo
Utility to execute a command as another user
https://github.com/sudo-project/sudo
6287e8ca7d3295c6f123b0fed84ddd5a0cd4891a authored about 3 years ago by Todd C. Miller <[email protected]>
The available size passed to strlcpy() was computed incorrectly.
Switch to updating the length af...
Originally, there was a flag in the ServerHello message to indicate
that the client should verify...
This more closely matches the options used by the macOS version of sudo.
57cb62d7dc87cdeef4af9ad3109c81180aafd06d authored about 3 years ago by Todd C. Miller <[email protected]>d1c29fb008ef47eedc4cd44ce5b984689051bfa5 authored about 3 years ago by Todd C. Miller <[email protected]>
We need this even though we will be calling mkdtemp() since the
umask affects the mode of any par...
8b009f62eb1fd46c86b69909538191fc938526db authored about 3 years ago by Todd C. Miller <[email protected]>
Previously, they were simply treated as "=" for non-lists.
1032fca5b8af21266a94f3e0ee1cbee0596dc636 authored about 3 years ago by Todd C. Miller <[email protected]>2ea773ed1f5b051b172fa8dcc9d440ec207577a0 authored about 3 years ago by Todd C. Miller <[email protected]>
Otherwise libtool may ignore the options when linking.
40496f510b0898757cd7f8bf8ef0451f500e0a56 authored about 3 years ago by Todd C. Miller <[email protected]>We must use X509_STORE_CTX_get_error() and X509_verify_cert_error_string()
instead of the generic...
This can't happen in practice since we never set EVLOG_RAW
without passing in a reason. Coverity...
Also silence a PVS Studio false positive.
e00ed390d5084535309d20b1e57b36538c01f068 authored about 3 years ago by Todd C. Miller <[email protected]>625ab9d29897baac6dfc426dc76c01e80bad2eec authored about 3 years ago by Todd C. Miller <[email protected]>
8d23e2611038d015a711706c2589c55463a2acc1 authored about 3 years ago by Todd C. Miller <[email protected]>
OpenSSL returns an error for SSL_accept() if TLS_client_method()
was used to generate the context...
This works around an issue on SCO which uses inline functions in
the header files which call the ...
getutline() advances the file pointer until it matches or reaches EOF. pututline() starts from t...
0a506b38013ac2386cceb3f15235fb7702333490 authored about 3 years ago by MertsA <[email protected]>f8e05dd984a6b332cf7b39cba78ad0bdfed89058 authored about 3 years ago by Todd C. Miller <[email protected]>
This prevents the va_copy compat #define from being used if
sudo_compat.h is somehow included bef...
closefrom_fallback() from closing too many file descriptors.
b0ae7a566bdbecc5bf17f342e66144ac1dc215de authored about 3 years ago by Todd C. Miller <[email protected]>b48cd11a4b2e18e49ecae3cb3ba49134320296ea authored about 3 years ago by Todd C. Miller <[email protected]>
c234bab7b2c13616c3644dbb888b42b38225444f authored over 3 years ago by Todd C. Miller <[email protected]>
fa7250ead74c73fb0a713b5f9e2a9121b88ab474 authored over 3 years ago by Todd C. Miller <[email protected]>
For sudo-formatted logs, this is a record with "EXIT=number" and
potentially "SIGNAL=name" after ...
This causes sudo_logsrvd to log a record with the exit status or
terminating signal in response t...
This option defaults to off.
17a415ae77c4cc499481b21c97d65da1af1439fc authored over 3 years ago by Todd C. Miller <[email protected]>This is intended to provide a more useful error message if the
user defines a module which confli...
16f78f59ba1c6079d2ee09b58be3380bf0c2e523 authored over 3 years ago by Todd C. Miller <[email protected]>
86680255bafef76296d3a1f1520ebdff8c8a8a7f authored over 3 years ago by Todd C. Miller <[email protected]>
On systems where getgroups() returns results based on more than
just the per-process group vector...
The style checks now include "referenced manual not found" warnings
which is not helpful.
0b809cdafe6d40f5944c78d60aa28e7f1c06da34 authored over 3 years ago by Todd C. Miller <[email protected]>
Avoids a spurious test failure on Solaris 9
90b4f4c4fe3c920deab3e417a661b8934ed4db9f authored over 3 years ago by Todd C. Miller <[email protected]>Fixes compilation on Solaris 9.
ae0e25cf2e333ff484b6dc0b9abeafe2d72ccc3d authored over 3 years ago by Todd C. Miller <[email protected]>030746ce576a17cbfe07af82471b58f79a602916 authored over 3 years ago by Todd C. Miller <[email protected]>
This doesn't currently matter since the progname and the ": " are
stored in separate messages. F...
f3deb3737dd53644515791be3152d7165b396476 authored over 3 years ago by Todd C. Miller <[email protected]>
JSON doesn't (portably) support octal numbers with a leading zero.
b7e81c46b175681d10df16727bbea7540336b731 authored over 3 years ago by Todd C. Miller <[email protected]>This is now defined in logsrvd_conf.c which removes a dependency
on another compilation unit for ...
1d41937ca1d923e8a0ae1e5f029f1fc7a0ce88fd authored over 3 years ago by Todd C. Miller <[email protected]>
74f034cbfbdcbeea93fab5481c77da10ca0c8782 authored over 3 years ago by Todd C. Miller <[email protected]>
024f4475b702f57608c63321d1f8b2286c98939a authored over 3 years ago by Todd C. Miller <[email protected]>
We now hook the warn functions so the messages are logged.
The messages still show up in the debu...
cc3b4ffb045995e1098f1c0a7e03e8e25d9cc1cb authored over 3 years ago by Todd C. Miller <[email protected]>
Also fix fuzz_logsrvd_conf link error.
d311c7b2eec20ea82fa0ab27f66624e9039848c7 authored over 3 years ago by Todd C. Miller <[email protected]>We can use sudo_warn_set_conversation() to set a conversation
function that either writes to a lo...
df1895f66f572b92f586bd46ebc6e68007d58fae authored over 3 years ago by Todd C. Miller <[email protected]>
8f7cae69cc96f03af76ced855e6dc072ad09c5fc authored over 3 years ago by Todd C. Miller <[email protected]>
There is a crash when "group: compat" is used in /etc/nsswitch.conf
that I haven't been able to d...
Fixes a bug where we would not insert a journal file that failed
to relay into the queue because ...
Add some function argument names. Also use struct nss_db_state *
instead of void * in nss_db_roo...
This only affects builds with a static libsudo_util.
Also fix a warning on HP-UX about main not b...
dfaa9b95f1bbf3847a176c266fba6c0ab34175b2 authored over 3 years ago by Todd C. Miller <[email protected]>
We need to leave room for the terminating NULL in gr_mem.
It is possible for gbm->numgids > gbm->...
4b73c98c06b85fded23037fa5bd5855bd1e1d61d authored over 3 years ago by Todd C. Miller <[email protected]>
In selinux_edit_copy_tfiles() when there is only one file and the open()
fails then number of ar...
97f6fc259c40d1882a2a46773f9a756dcd72c31c authored over 3 years ago by Todd C. Miller <[email protected]>
82f5592d67f4375386291b815cdef342bc84702c authored over 3 years ago by Todd C. Miller <[email protected]>
The caller will display the warning (using errno) so there is no
need to do it twice.
The default value for the I/O log directory is set at build time.
5087f688534f18bb616d833e4a9f99221c99ad8c authored over 3 years ago by Todd C. Miller <[email protected]>cc647c32e1140a44496dbd593cf45d5740fefa90 authored over 3 years ago by Todd C. Miller <[email protected]>
958066eddba46c2d3ec03606b194d433510357c0 authored over 3 years ago by Todd C. Miller <[email protected]>
On Darwin, shared modules and shared libraries are not interchangable
and since we preload sudo_n...
This quiets warnings about LDAP and audit libraries being deprecated.
We will use them until they...
0645a2ade6c08719eb9758106b669e943ecb012f authored over 3 years ago by Todd C. Miller <[email protected]>
There should be a more specific message, usually with an error
string, displayed earlier.
d9b8311122dc766d52fa987f624e41203315891f authored over 3 years ago by Todd C. Miller <[email protected]>
Fixes a compilation problem on FreeBSD.
96fb72e7cbac29086e51c57e5b629ac5a739e0e2 authored over 3 years ago by Todd C. Miller <[email protected]>ec0dcab3ce21ea3c34b2145f1d3c91a726b87d68 authored over 3 years ago by Todd C. Miller <[email protected]>
f2155c704f445f93a91352cd40ea0f5ee213dbaa authored over 3 years ago by Todd C. Miller <[email protected]>
This is something that should have been removed as part of the local
I/O logging refactor.
This should only be set for signals that terminate the process.
Fixes a bug where the sudo front-...
6cdf49d33d2d6d1ad6542fbb6d4dc88fb98363b6 authored over 3 years ago by Todd C. Miller <[email protected]>
The description in the Runas_Spec section incorrectly stated that
the -g option could not be used...
We now display this along with the summary info at the end.
2efa9035218c7e79d5fd0d1551242fbc6b9069cf authored over 3 years ago by Todd C. Miller <[email protected]>841e1b33fb53f646c31a7cf6e008a6a0e0f7a5dd authored over 3 years ago by Todd C. Miller <[email protected]>
bfc17bc666a6d49a3022453b86f46b33acd7621e authored over 3 years ago by Todd C. Miller <[email protected]>
3018c1cd2d22f1253d3208c521d5195713235089 authored over 3 years ago by Todd C. Miller <[email protected]>
Square bracket quotes are used, no need for shell-style double quotes.
9b33594a43877bf787e932a73a1bdfc692ce3682 authored over 3 years ago by Todd C. Miller <[email protected]>This makes it a lot easier to see what features have been enabled.
96436787a1695280b5bf5329b9581d358b68b2be authored over 3 years ago by Todd C. Miller <[email protected]>d71731e50d17f399f7afe54f6317fa43f44c2bfe authored over 3 years ago by Todd C. Miller <[email protected]>
f2081f902b11022fa9d7d8212773d196989b4d84 authored over 3 years ago by Todd C. Miller <[email protected]>
468e9c7f48dc4596c070536e3988008c998af834 authored over 3 years ago by Todd C. Miller <[email protected]>
0e9a5e4f90d1bb2d1b172aeb3d903db979cee5ae authored over 3 years ago by Todd C. Miller <[email protected]>
e6f1adcb2ccdb9014bcf4844fbeb2957ed8fdf97 authored over 3 years ago by Todd C. Miller <[email protected]>
9d734d57e795afde907edacf5e9b3525cc891281 authored over 3 years ago by Todd C. Miller <[email protected]>
Otherwise the commit point messages won't be accurate when restarting.
caf096e1a14f4baee065272d4294c4f58b75fcd4 authored over 3 years ago by Todd C. Miller <[email protected]>Useful for testing the ability of the server to handle restarted log
transfers.
We treat an error from the relay as fatal and must stop processing
data from both client and rela...
This got broken a while ago when evlog in struct connection_closure
was changed to a pointer.
Otherwise flags fields like "volatile,ignore-other" will be ignored
by the Debian and BSD back ends.
GitHub issue #101
51cbc626f8f54ff21d66df41dde143c520a1a81f authored over 3 years ago by Todd C. Miller <[email protected]>For sudo_logsrvd, this is the relay connect_timeout setting.
For sudoers, this is the log_server_...
Coverity CID 221591
06cb6459c10e3c2d46f229237662d6cfe354d4b5 authored over 3 years ago by Todd C. Miller <[email protected]>d204d4120419c44ba4c748d34ca15d41662bf258 authored over 3 years ago by Todd C. Miller <[email protected]>
fda17ecfda34d3e2d3f900f92ebea27add39d1f6 authored over 3 years ago by Todd C. Miller <[email protected]>
This is the amount of time to wait before trying to resend a
journal to the relay server after a ...
Also attempt to retry messages that could not be relayed periodically.
177816b787c4874955ab40fb60707277ef40e9e5 authored over 3 years ago by Todd C. Miller <[email protected]>9077daee93ca37e97cd4e9a1170577622376a00e authored over 3 years ago by Todd C. Miller <[email protected]>