Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/sudo-project/sudo
Utility to execute a command as another user
https://github.com/sudo-project/sudo
4e87e1a97b086ed6b2e331da7074d8a5ddb2ab47 authored over 4 years ago by Todd C. Miller <[email protected]>
PyArg_ParseTuple sets the py_config_tuple pointer, but it does not
increment the reference count...
9d69c4a0220cd8ea27d407c3525f32bfdadff6a9 authored over 4 years ago by Todd C. Miller <[email protected]>
Sudo is not multi-threaded so we don't need the added complexity.
13cc65038f6c747f33892bcb94176a737cdba7a2 authored over 4 years ago by Todd C. Miller <[email protected]>MAP_SGI_ANYADDR cannot be used in place of MAP_ANON
aa7ea419f0791de9c3749a506b76d3abf72832e9 authored over 4 years ago by Todd C. Miller <[email protected]>IRIX lacks MAP_ANON (and MAP_ANONYMOUS) but we can use the IRIX-specific
flag MAP_SGI_ANYADDR ins...
Since python plugins are run inside the same interpreter, they affect
each other's state, which ...
On each plugin initialization we create a separate python interpreter
which gets stored in the p...
The closure pointer in sudo_conv_callback was being filled in with
a struct getpass_closure ** in...
Separate sudo io plugin symbols are created which stores wrapper
functions adding the context of...
9294108cd6be28463c3116c2c247a8c46c77d941 authored over 4 years ago by Robert Manner <[email protected]>
d3d3a59e0802e4991667d60698054b2d511babe6 authored over 4 years ago by Robert Manner <[email protected]>
to verify 2 python plugins can work next to each other.
2eeda38f95b41dcf94d76851fd07295c50b7216a authored over 4 years ago by Robert Manner <[email protected]>if they want to support getting loaded multiple times.
74f559155abc8b2a59c958d8f94eff00cbc64be0 authored over 4 years ago by Robert Manner <[email protected]>
Adapted the default sudo_printf from sudoers plugin to be able to print
errors before plugin ope...
3128cc97ca8e29af3e2e2d08add15d0e5a5cdd99 authored over 4 years ago by Robert Manner <[email protected]>
edd7356f2af8a60f9c46cc5eaccb45aace5e92e8 authored over 4 years ago by Robert Manner <[email protected]>
f4716a75e47269870e4bdfaedcb6dff4a9592227 authored over 4 years ago by Todd C. Miller <[email protected]>
24c9438486c509b920298a8cfece5659d1339f54 authored over 4 years ago by Laszlo Orban <[email protected]>
9935a7e2ffa53bad0477ef4cfa387884c04d9c89 authored over 4 years ago by Laszlo Orban <[email protected]>
Also use AC_CHECK_FUNCS to check for the other OpenSSL functions
c9b68ccb345d1dd4c31f8b71fd248df63c807819 authored over 4 years ago by Todd C. Miller <[email protected]>This will help avoid duplicate code in the audit and approval plugins.
fb5fc9876a5ef830c14550028ed4c3d9c1235ded authored over 4 years ago by Todd C. Miller <[email protected]>07a2965bab3bf57438e03dd051ff53fa6d5395ec authored over 4 years ago by Todd C. Miller <[email protected]>
38160d0ccb7dba31d118342e8f5491473b9b654a authored over 4 years ago by Laszlo Orban <[email protected]>
6f3f45aa244f2ef7e8860d269d3ee8d160949ed6 authored over 4 years ago by Laszlo Orban <[email protected]>
b8e1422e84a36d3c5d8bfed12aa550eee86b861e authored over 4 years ago by Todd C. Miller <[email protected]>
db1a9b155fc7d8a993385ed9b67a00fa4c8a7d81 authored over 4 years ago by Todd C. Miller <[email protected]>
This adds compatibility defines for some OpenSSL 1.1.x functions.
dde86e585fe6882c1e61ab04a19d536512d6b6b2 authored over 4 years ago by Todd C. Miller <[email protected]>We don't export symbols in convenience libraries, only installed DSOs.
a755c658a5aaaeca9f86e79063147ba6bc2fc383 authored over 4 years ago by Todd C. Miller <[email protected]>1ba89682112ef6b1e12e82f7836459c5671dcc74 authored over 4 years ago by Todd C. Miller <[email protected]>
Also check for getpeername() and inet_ntop() failure.
c3bd025052757354b805c9a2cf0caf154790b196 authored over 4 years ago by Todd C. Miller <[email protected]>If we get SSL_ERROR_WANT_WRITE during SSL_read(), we need to resume
the SSL_read(), not call SSL_...
Fixes running "make depend" in lib/util dir when siglist.c or
signame.c are not already present.
Configure provides absolution versions of srcdir, builddir, top_srcdir
and top_builddir. We can ...
Uses lcov and genhtml to generate test coverage. It is meant to be run
in a clean directory. Ext...
8cacaabe9b0986a33f50bb7739529f4ab5d0cc17 authored over 4 years ago by Robert Manner <[email protected]>
Make the demonstration extend the environment with a new variable.
Easier to read, and makes the...
IO/Group/Policy Python API version is displayed instead of sudo version,
because that is not ver...
Storing them as "tuple" instead of "set", so they have a fix order.
This makes the output of the...
When calling validate() python function, TypeError exception was thrown
("argument list must be ...
8eab169098b71b8419fed5e49261a443a2c9910e authored over 4 years ago by Robert Manner <[email protected]>
5be81eb25b358e715b2c03f51b76c5e18ea56da1 authored over 4 years ago by Robert Manner <[email protected]>
If the plugin fails to open the file for writing, constructor will raise
an exception and exit b...
Similarly to IO plugin example. (It is easier to test it this way.)
87d76f4bbc995dc8aa8a4e80ad66dfd35939a673 authored over 4 years ago by Robert Manner <[email protected]>5da7bd562cda77b2526a01f88c7c3b1cda5bf3f1 authored over 4 years ago by Robert Manner <[email protected]>
383ca803332b66de47c5318e63f28cd22d418bf7 authored over 4 years ago by Robert Manner <[email protected]>
instead of linking with it.
40f21895868416d60cfec607a9817ea0a7f1c683 authored over 4 years ago by Robert Manner <[email protected]>
They are platform dependant, so their test would fail on some platforms.
While we could create s...
b66ecf6e131cccce0ea09594713c84cbe56e95f3 authored over 4 years ago by Robert Manner <[email protected]>
1093e7bc4bd41545fd52fbb0386ec00525cb030e authored almost 5 years ago by Todd C. Miller <[email protected]>
47d95047164edfb173600248aa6068edb9351bfe authored almost 5 years ago by Todd C. Miller <[email protected]>
Include sys/socket.h for getpeername().
Link with -lnsl on Solaris to get inet_pton().
We only need to use libtool's clean mode to remove files created by libtool.
d2b7148b6c0d45216e269478994848e6bfbe5279 authored almost 5 years ago by Todd C. Miller <[email protected]>de02745a3f9c35463ea3852da5d923c8d214449c authored almost 5 years ago by Laszlo Orban <[email protected]>
8d111db60230f9865958380c69f60285c61eac9a authored almost 5 years ago by Laszlo Orban <[email protected]>
829fb9db848c8e32bc5b01fc2ddbc0e2b41c77df authored almost 5 years ago by Laszlo Orban <[email protected]>
a6916c2199a1b1ed23721b2d8505160f94049113 authored almost 5 years ago by Laszlo Orban <[email protected]>
7ceeca1eb03010ff2d1b4b4a0543797b9b9c9fdc authored almost 5 years ago by Todd C. Miller <[email protected]>
0ab02b8a1602c8515e8e960afe00807d947ffe24 authored almost 5 years ago by Todd C. Miller <[email protected]>
c9f26ebbb4739d7db2a4fcdb3e69ac1ec2a0353c authored almost 5 years ago by Todd C. Miller <[email protected]>
We need to switch from SUDO_EV_READ to SUDO_EV_WRITE for this case.
9b12b21eaa1faef7b2b8984006b45635553e0f88 authored almost 5 years ago by Todd C. Miller <[email protected]>We need to switch from SUDO_EV_WRITE to SUDO_EV_READ for this case.
Also make the tls connect eve...
Fixes missing time stamp in remote I/O log info file.
fb9d7d8cc6d2226e8014b8e10481eb202d2c4151 authored almost 5 years ago by Todd C. Miller <[email protected]>Fixes sudoedit on macOS 10.15 and above where the root file system
is mounted read-only. See htt...
Now that we call fmt_exit_message() from client_close() we do not
need to try to determine whethe...
bbb9520c3a3bce46952cae55194c3904d4a26b0d authored almost 5 years ago by Todd C. Miller <[email protected]>
Otherwise, the debug output in a plugin's event callback will go
to the sudo debug file, not sudo...
Don't test SIGLWP on FreeBSD where it is reserved for the thread
library and is not listed in sys...
Otherwise, LD_LIBRARY_PATH does not work when running the tests.
The GNU linker's --enable-new-dt...
If both sudoers policy and I/O log plugins are loaded, debug_files
will be empty when the I/O plu...
The warning message said the later I/O plugin was ignored but it
actually overwrote the existing ...
The non-faccessat() code already did this so this just brings the
faccessat() path into alignment...
e7480c341050b0a1d39767f68e94049aac745935 authored almost 5 years ago by Todd C. Miller <[email protected]>
bf68dce0533b5a82ac90b4f74f9f31203202903d authored almost 5 years ago by Todd C. Miller <[email protected]>
3fddfedb53840dae7057c8ba38f591bbe1885ff9 authored almost 5 years ago by Todd C. Miller <[email protected]>
Moving the iteration into the wrapper functions simplifies the calling code.
0d2195c374a16f1e2c9bcc627005bed5292faf40 authored almost 5 years ago by Todd C. Miller <[email protected]>b0a84c429244a1d2d0cc7c99acae93fa39f17979 authored almost 5 years ago by Todd C. Miller <[email protected]>
Previously we appended the path to SUDOERS_LDFLAGS but now that we
use OpenSSL in the log server,...
b141213a10f710f95e2bee5b9be8fcf561dcec9f authored almost 5 years ago by Todd C. Miller <[email protected]>
Coverity CID 206591
586b418ad85ff8c2e756eff7063ffaeca631fa02 authored almost 5 years ago by Todd C. Miller <[email protected]>Potential use after free calling gzstrerror() after gzclose().
9e57bea4e3c1f63a722a6ebaad3bf500cf678b02 authored almost 5 years ago by Todd C. Miller <[email protected]>Avoids some coverity false positives when using TAILQ_FOREACH_SAFE
to free the tail queue.
Coverity CID 206396
b3c5efd48e6ae911599f31063708255207715521 authored almost 5 years ago by Todd C. Miller <[email protected]>920cdf421a8beecd30e643111a0da4fdcf0bd59a authored almost 5 years ago by Todd C. Miller <[email protected]>
The deprecated "max_groups" setting is not documented.
b527ac3fb5aad18e4f73e3071f1387f06ada3e0c authored almost 5 years ago by Todd C. Miller <[email protected]>8aa815643f721ace258fd56d14e073c397fdad34 authored almost 5 years ago by Todd C. Miller <[email protected]>
5bf07520210f150531bf185956f3a487a815ffec authored almost 5 years ago by Todd C. Miller <[email protected]>
If the debug sudoers subsystem is not registered, because it does not
get any file names to deal...
Examples are installed by default to "docdir", which refers to
PACKAGE_TARNAME variable which wa...
3f890e4db8dbdc122395c1f190b5035c7b46adce authored almost 5 years ago by Robert Manner <[email protected]>
9871f7e37b59c1dbd9c284d91f0c07c07e0df70e authored almost 5 years ago by Robert Manner <[email protected]>
a76b7543bf1ccf6da733784c5f4629ab6f42a3ea authored almost 5 years ago by Todd C. Miller <[email protected]>
4eaea77fa3d4420486c41efe9fef12715127abff authored almost 5 years ago by Todd C. Miller <[email protected]>
a8c39ea81b3436809550ab7160929e756b6be316 authored almost 5 years ago by Todd C. Miller <[email protected]>
f139d2361a5acc4891447c1512e41ab75b6437f9 authored almost 5 years ago by Todd C. Miller <[email protected]>
1e25d03c98371c7a153007260234188b25f2a3b6 authored almost 5 years ago by Todd C. Miller <[email protected]>
EINVAL. On NetBSD, setrlimit(2) can return EINVAL if the new soft
limit is lower than the curren...
dbc905fdf8482b93937bb0222f56793a370be4f9 authored almost 5 years ago by Todd C. Miller <[email protected]>
If there is no installed sudoers there is nothing to check...
047f37ade32088e6b61fd7e82a0d38020fa3e7ac authored almost 5 years ago by Todd C. Miller <[email protected]>c8532ae7a9f55f333165db8bcd759410445e62e0 authored almost 5 years ago by Todd C. Miller <[email protected]>