Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/sudo-project/sudo
Utility to execute a command as another user
https://github.com/sudo-project/sudo
747114f33152fce8d3870ae7e884f985bebd8ed4 authored 12 months ago by Todd C. Miller <[email protected]>
9ef52151eff35e478681f14869de8e1aad98db7f authored 12 months ago by Todd C. Miller <[email protected]>
7ed7b4536f6d8e759860e886f73c52cc5b5fb7ad authored 12 months ago by Todd C. Miller <[email protected]>
Commit 244017495421 added ctx variable to log_warningx() call but that
variable was not declared...
145faa3fe95948ee2368054fbb0da0fa5acd91ea authored 12 months ago by Todd C. Miller <[email protected]>
Each connection can require up to 9 descriptors.
31bcdec232aee257edb6a5f50075b037c675906c authored 12 months ago by Todd C. Miller <[email protected]>5f3a6b4f6ab4ed9e366d54a0a85aa1aa8710b4eb authored 12 months ago by Todd C. Miller <[email protected]>
bf722e18b7b0abf26a1be3ba1aadd33a6a69da57 authored 12 months ago by Todd C. Miller <[email protected]>
86f1d52a0b20cff29aca90f21e3ca6dbe70d1ec8 authored 12 months ago by Todd C. Miller <[email protected]>
9a2a882d12798e8ab5745f3beb09023349b4ca6f authored 12 months ago by Todd C. Miller <[email protected]>
0fbb17de5e6ba8037600d10953ba0eb2ececd496 authored 12 months ago by Todd C. Miller <[email protected]>
This adds an env_free() function to explicitly free both the old
and new copies of the environme...
3bbc7c8f85925362e20b089fa42fc47859c098a8 authored 12 months ago by Todd C. Miller <[email protected]>
This matches the JSON logs.
726b646b4861ba0a372675c5ef56384aceb9723d authored 12 months ago by Todd C. Miller <[email protected]>c7a61a94382c1e49abe1a6ba595950629b338be9 authored 12 months ago by Todd C. Miller <[email protected]>
It may not be available otherwise and unless the command is being
run it has no real meaning.
This reverts 5118eb5797fb, which had the side-effect of the PAM
session code running with the ru...
8486976b9efafb33fc134642db3a3d1d54438935 authored almost 1 year ago by Todd C. Miller <[email protected]>
09a426437284dd8b212df070618011903edee803 authored almost 1 year ago by Todd C. Miller <[email protected]>
29f7967420ab8bd606a7d08d59987b3e5e17d907 authored almost 1 year ago by Todd C. Miller <[email protected]>
e3edd7a09a7b9bb33fceec15ce720f68f57811f0 authored about 1 year ago by Todd C. Miller <[email protected]>
This matches the sudo_sys_siglist[] and sudo_sys_signame[] declarations.
78edde5ea1e80c5679b5105113573d1a12fb16d0 authored about 1 year ago by Todd C. Miller <[email protected]>385d506d35fafd33a0990685bcca298840d5473c authored about 1 year ago by Todd C. Miller <[email protected]>
This prevents problems on systems where the system printf(3) is not
C99-compliant. We use our o...
problems on systems where the system printf(3) is not C99-compliant.
We use our own snprintf() on...
cf9fc5317ecb9585929a615619edf08e1a5c8f86 authored about 1 year ago by Todd C. Miller <[email protected]>
97f8052427116c595742159dab94817deacd4de1 authored about 1 year ago by Rose <[email protected]>
29ddd2679383c2a6f37a16e26b765738dae79360 authored about 1 year ago by Todd C. Miller <[email protected]>
1. Lock the terminal before tcgetattr/tcsetattr
2. Don't restore terminal settings if changed by ...
2f80865e73e48aa14cde3a95a95ba1213b6d7483 authored about 1 year ago by Todd C. Miller <[email protected]>
def_sudoers_locale is already a char*
b2a44430b5c01b21a1c81d9ac506931682c9d321 authored about 1 year ago by Rose <[email protected]>fprintf does extra work and meant for formatting strings.
e095069d2a0dc374af5f97ca35c15e3f5842db9e authored about 1 year ago by Rose <[email protected]>a4cbd7fe7bde765cbc3a4fd7842b413652df7e48 authored about 1 year ago by Rose <[email protected]>
dd8426f9cfec30f08ab9ef9dd53c9e373561a012 authored about 1 year ago by Rose <[email protected]>
873e0de078bce422eae1fc65125faf3767055f1f authored about 1 year ago by Todd C. Miller <[email protected]>
2d437c793df957e88244b16a1e5b9bcfd7007414 authored about 1 year ago by Todd C. Miller <[email protected]>
98c2eeafd5eefe6e4bc0be45d4d98df5a7550cc4 authored about 1 year ago by Todd C. Miller <[email protected]>
356ea96ef702dc4eff84786c37f594b551ddd709 authored about 1 year ago by Alexander F. Rødseth <[email protected]>
07426f8a1a85975a3cfaea05af4c2ab2d2552b6b authored about 1 year ago by Alexander F. Rødseth <[email protected]>
Do not rely on awk supporting "-f -" to read the program from stdin.
Avoid using POSIX character...
3141f63b259a23f6277d212e621638576d4806ef authored about 1 year ago by Todd C. Miller <[email protected]>
f6561bc974bc6fed114fd5fe01cf68700abe9d99 authored about 1 year ago by Todd C. Miller <[email protected]>
We use int or long, not long long, in the Python plugin.
344e0daeccb858b69518aa4ff2fbe8063bd09c51 authored about 1 year ago by Todd C. Miller <[email protected]>
Otherwise, the parser_conf settings in the context passed to
sudo_file_open() will not be honore...
Fixes -Wconversion warnings on some 32-bit systems where time_t is
still 32-bit.
size_t is an unsigned int on 32-bit platforms, not an unsigned long.
b2f8c5666d7409f30d26d4a97167ef3ee585cf73 authored about 1 year ago by Rose <[email protected]>837f400ac8abf91512fbcd16c2039bbe1af44070 authored about 1 year ago by Todd C. Miller <[email protected]>
ff2d8464cf94dd41ca1795e84ba3d961e17ed64f authored about 1 year ago by Todd C. Miller <[email protected]>
4d4279d0ca64ca990cb94046e89d52d84bf837af authored about 1 year ago by Todd C. Miller <[email protected]>
29feb41da20e6df364afe9375ef329c8a02c3b1a authored about 1 year ago by Todd C. Miller <[email protected]>
We rely on the include path to find many of these headers. It
especially doesn't make sense to ...
884b02596268ec059d248e63ae3d873ea4774d6f authored about 1 year ago by Todd C. Miller <[email protected]>
1c13b8a62807634283f070039ea712e5a5048c47 authored about 1 year ago by Todd C. Miller <[email protected]>
c1708f0cf1b7a51f544f779ff7a8bbb795022f5a authored about 1 year ago by Todd C. Miller <[email protected]>
This removes some infinite loops that can cause static analyzer
warnings. The fds are not in no...
Also use early return on error to quiet a PVS-Studio warning.
1c7d757b79a7bfbb9d6b290321c80c0a5643e1b9 authored about 1 year ago by Todd C. Miller <[email protected]>
Either the fd is not a terminal or we don't have the controlling
terminal. Either way, we can't...
f2d267bfb44bf7c5b25a249e2c9a97190eb254f2 authored about 1 year ago by Todd C. Miller <[email protected]>
Add a configure check and error out if sizeof(uid_t) > 4.
0c674569231ad00021fa6add8cad0036242bc552 authored about 1 year ago by Todd C. Miller <[email protected]>f4acc43663193e17a7280c172e57a4f9a49cb998 authored about 1 year ago by Todd C. Miller <[email protected]>
d9da92951adf2e78da8bb84f5d6f413e313c543a authored about 1 year ago by Todd C. Miller <[email protected]>
94b80e3ad496f1157f729306498a708debaf1107 authored about 1 year ago by Todd C. Miller <[email protected]>
Adapted from answer #6 in:
https://stackoverflow.com/questions/10536207/ansi-c-maximum-number-of...
Where the sudoers_context is available we can use the values
of verbose and strict instead of pa...
c277e55f42e7c660efaa9b2208bf71c6ad12d6db authored about 1 year ago by Todd C. Miller <[email protected]>
This will be used by visudo to indicate when "visudo -s" is run.
8fcb21b5cd9de3d194ebc559a617aadb345dcc0c authored about 1 year ago by Todd C. Miller <[email protected]>3a7731437325c85c663d8d60b0ef9eaa35a71cf3 authored about 1 year ago by Todd C. Miller <[email protected]>
Used by defaults.c and check_aliases.c.
e28dc0f275d2d5df4dc97bf4887716d27274453b authored about 1 year ago by Todd C. Miller <[email protected]>
This is a convenience function that sets PERM_RUNAS and calls
find_path(). If the command is no...
This upgrades the error pipe to a bi-directional socketpair that
the parent will write to after ...
Quiets a warning on AIX where usersec.h defines AUTH_SUCCESS and
AUTH_FAILURE. We avoided this ...
Otherwise we end up with a -Wconversion warning on systems where
the ioctl() request argument is...
A negative verbosity will prevent non-error output from being
displayed.
a9ee97580ab812893491ca9917af69c368874a6c authored about 1 year ago by Todd C. Miller <[email protected]>
They are unnecessary since struct sudoers_pivot is not opaque.
The implementation details are pr...
2aae36f345840981af59b3bde68237dc73689161 authored about 1 year ago by Todd C. Miller <[email protected]>
Adjust find_path()'s ignore_dot function argument to match.
b8f2680cf095da5a4dca1e92172006e11eeff244 authored about 1 year ago by Todd C. Miller <[email protected]>These are needed by bsm_audit.c.
a9801cc99d9a8170fca7619d96c77908f7d911c0 authored about 1 year ago by Todd C. Miller <[email protected]>We can now use the stored ppid in ts_init_key().
38ddbb14f1232c81a6004eac541a6b0e216a7d8e authored about 1 year ago by Todd C. Miller <[email protected]>We want to pass around a pointer, not the struct itself.
34990c0e08563fb5aa839e2381f88d93bfd4ad29 authored about 1 year ago by Todd C. Miller <[email protected]>15b3d786d7330defc796e73044f45d4983a432c8 authored about 1 year ago by Todd C. Miller <[email protected]>
0b52ffd1a23386a3a524a6ec141dbc7652fc8336 authored about 1 year ago by Todd C. Miller <[email protected]>
This fixes a logic goof introduced in sudo 1.9.14.
4117ad1462f920f5a643dea710825363d789e4c9 authored about 1 year ago by Todd C. Miller <[email protected]>This avoids problems if the user name itself contains a path separator.
7363ad7b3230b7b03a83f68a0ea33b4144c78a79 authored about 1 year ago by Todd C. Miller <[email protected]>c0553cd383018d700f31ce87578835c06ef462a6 authored about 1 year ago by Todd C. Miller <[email protected]>
0a8586928676319e9abf91b03ed6ac84d30f34e1 authored about 1 year ago by Todd C. Miller <[email protected]>
034b2f3bdd88525d9abee115089a1813ad7f8dee authored about 1 year ago by Todd C. Miller <[email protected]>
62b92c7fb8e86f7b5f4058cd356ae42638354690 authored about 1 year ago by Todd C. Miller <[email protected]>
166ef55aa7397b36ff4bd477db5b7641c8fa3f05 authored about 1 year ago by Todd C. Miller <[email protected]>
c54bdd799b9047839e98222cf980a98c7d5bd973 authored about 1 year ago by Todd C. Miller <[email protected]>
This will make it possible to support a different getusershell()
implementation for testsudoers ...
This will make it possible to support a different backend which may
be used by testsudoers in th...
The getpass callbacks are now defined in sudo_auth.c, which implements
auth_getpass(). As a res...
0495afac57f5bd783dd90bfaa25733f802b0f66f authored about 1 year ago by Todd C. Miller <[email protected]>
2ef90231a132547fa4236ff05fc0fafcd3f3d7a4 authored about 1 year ago by Todd C. Miller <[email protected]>
We now use ROWHAMMER-resistent values for ALLOW, DENY, AUTH_SUCCESS,
AUTH_FAILURE, AUTH_ERROR an...
525803db23d8d52b876f4427d4e241b22ba5dda6 authored about 1 year ago by Todd C. Miller <[email protected]>
499121229e3adadecf522463b1740e4fd922720b authored about 1 year ago by Todd C. Miller <[email protected]>
The sudoers_sethost() function can be shared by the sudoers plugin,
visudo, cvtsudoers and tests...
0c9ca88f5b81d40e9a153b3fd7635dcc7f6e55f6 authored about 1 year ago by Todd C. Miller <[email protected]>