Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/sudo-project/sudo
Utility to execute a command as another user
https://github.com/sudo-project/sudo
This reduces the amount of memory leaked on unload.
1a00423afd541d736662950b186b41564974f84d authored about 1 year ago by Todd C. Miller <[email protected]>e59c487434fd62e44bfac703c9f1c30f2b115e88 authored about 1 year ago by Todd C. Miller <[email protected]>
We now create the LogHandler class for each interpreter in
python_plugin_init() instead of just ...
56b829f66bab334bcd620c19a85f319a91be42ad authored about 1 year ago by Todd C. Miller <[email protected]>
Also add comments about PyModule_AddObject stealing a ref on success.
0462a4ee8c002033ab2ce7ddd48fd8aca81210fc authored about 1 year ago by Todd C. Miller <[email protected]>b52c32f23426f61dddbf6ff10d68655adf7807ce authored about 1 year ago by Todd C. Miller <[email protected]>
In sudo_module_set_default_loghandler() if we don't leak the reference
to py_loghandler we get a...
91ea5994593158505b33ce482d1efe9d5afaa3ba authored about 1 year ago by Todd C. Miller <[email protected]>
8c4cec148ef34eebc388860f1dec5cc521bd8cbc authored about 1 year ago by Todd C. Miller <[email protected]>
They are not used outside their respective compilation units.
ba5ef624f217f01584e368b9e9a8d726304d4fc6 authored about 1 year ago by Todd C. Miller <[email protected]>432ac1212864209ba014b6d8f6d4d95b227be556 authored about 1 year ago by Todd C. Miller <[email protected]>
7499b2d274bd205d840180ec67cccc3e41d83490 authored about 1 year ago by Todd C. Miller <[email protected]>
e710f794200c04e4116f7f5c1957ee4364801235 authored about 1 year ago by Todd C. Miller <[email protected]>
2cb4835781821e94c9e275fe434743c07a4d0182 authored about 1 year ago by Todd C. Miller <[email protected]>
No need to do PyThreadState_Swap in the caller.
7a10cdc2864734f24a2676518e18b460a640e731 authored about 1 year ago by Todd C. Miller <[email protected]>adaba9c0f01135328f83afafb3024d15293c150c authored about 1 year ago by Todd C. Miller <[email protected]>
a12dbfe909956de14464bf546a2353977265a30b authored over 1 year ago by Todd C. Miller <[email protected]>
Also remove redundant PyConfig settings.
cc939297a18da2e6a6a65f907c83118e09ed422e authored over 1 year ago by Todd C. Miller <[email protected]>Avoids deprecation warnings on Python 3.12.
da60384ad8067b054755a014dcfcad22fe49a58a authored over 1 year ago by Todd C. Miller <[email protected]>GitHub issue #291
0efdd7632ab574b68a3c247542c8fe77efe8d23a authored over 1 year ago by Todd C. Miller <[email protected]>4b5480cf767bcb5548bda1555648ad5999b9a4a2 authored over 1 year ago by Todd C. Miller <[email protected]>
We should only check for MODE_PRESERVE_ENV when running a command.
fa66c16689ea7f150f573a79ed3ab29a15094121 authored over 1 year ago by Todd C. Miller <[email protected]>
We should only match a rule with an empty runas user if a group was
specified on the command lin...
c29a27e8409f098cf394cb4d4aa5d30f7617aef8 authored over 1 year ago by Todd C. Miller <[email protected]>
This fixes a problem with "stair-stepped" output when the sudo-run
command's output is piped to ...
Add cmnd_foreground flag that is only true if sudo is the foreground
process and the CD_EXEC_BG ...
There are current two flags: SUDO_TERM_ISIG (enable terminal signals)
and SUDO_TERM_OFLAG (prese...
Newer Linux kernels replace a NULL argv[0] with the empty string,
we should as well.
b47f1799c5a7658fae4e7607874acd9c5c633d2d authored over 1 year ago by Todd C. Miller <[email protected]>
This avoids a potential invalid free in the err label and provides
more predictable behavior whe...
9afb1851b2d901ddc27f3608c901e8c4956e8ee4 authored over 1 year ago by Todd C. Miller <[email protected]>
The NULL check was commented out for testing but should have been
restored. Fixes a potential p...
Starting in sudo 1.9.14, eventlog_free() will free the peeraddr
member too so it needs to be dyn...
This is more portable and eliminates the need to check for SYMLOOP_MAX
(and provide it if missin...
The callers all verify that they don't pass a NULL ccname so I'm
not sure how the compiler is ge...
c6a11b4fed1c655e7816290c31097fcc5b1493c1 authored over 1 year ago by Todd C. Miller <[email protected]>
The sudoers file must now explicitly allow the user to specify a
directory (sudo -D) or chroot (...
44cfa9e132d152419e82311acc1b117ab9cfae97 authored over 1 year ago by Todd C. Miller <[email protected]>
In most cases, these simply expand to a call to sudo_debug_printf2().
We need to keep the functi...
2d12a41940ffce211f15383b101319244148c84e authored over 1 year ago by Todd C. Miller <[email protected]>
eff4e1c0c5e670fa7decda66e8a6a9013a564e91 authored over 1 year ago by Todd C. Miller <[email protected]>
dbb95ad21474375e8b11c06e7fcd94aa2ad21fbd authored over 1 year ago by Todd C. Miller <[email protected]>
cbcb1d25063d6f784c1cc300433d886e6e1e194e authored over 1 year ago by Todd C. Miller <[email protected]>
4f097eebd39b3c4da6f92a170e4e58366ab9df32 authored over 1 year ago by Todd C. Miller <[email protected]>
It was not covering all cases in its original location.
Fixes oss-fuzz issue 60454 with fuzz_sud...
Give every printf-like function restrict qualifiers
fc02df111c987b917341cf361c410df0f6b244fc authored over 1 year ago by Todd C. Miller <[email protected]>The format value has to be a string literal, every time.
Otherwise, you are not using these fun...
5d758264ab2ba9329ef47ad6370ca471a9412f80 authored over 1 year ago by Rose <[email protected]>
There's no real space saved by using short and using int avoids a
few casts.
548e3e3125723a0d15223e5bc5ac13146d7e0183 authored over 1 year ago by Todd C. Miller <[email protected]>
6734a99f8a0157a15ebdf85fa6cdf50f38a4153e authored over 1 year ago by Todd C. Miller <[email protected]>
e93913e2bb80c4cdde36766aa49f0e6125ff78ee authored over 1 year ago by Todd C. Miller <[email protected]>
c95423a8f9d8df8431ad21e5a057b9b0b7e50ef1 authored over 1 year ago by Todd C. Miller <[email protected]>
a38b7146676946949c37a66ff342eaba4bc6c9a9 authored over 1 year ago by Todd C. Miller <[email protected]>
4891f37a45b85bebf72e597175068d676b861068 authored over 1 year ago by Todd C. Miller <[email protected]>
0c85f10c80ddec78224f660b74c7f4ebc0b02e41 authored over 1 year ago by Todd C. Miller <[email protected]>
5768d374ccfe1f82a66b61ba2d5195cebc188963 authored over 1 year ago by Todd C. Miller <[email protected]>
32f4b98f6b4aea4951a2d7b56a55ba4a9e035b22 authored over 1 year ago by Todd C. Miller <[email protected]>
f7801f2160ceea3febd71a6284c38ff56754a471 authored over 1 year ago by Todd C. Miller <[email protected]>
0205f6fc751721dd6ef8e66b6eeef12c26c5eb40 authored over 1 year ago by Todd C. Miller <[email protected]>
bced0a7786426c662216d9875f0d5e57f858fbfb authored over 1 year ago by Todd C. Miller <[email protected]>
This only affects the case where a group ID cannot be resolved.
43e914a5d3f9c774bb17b7bc37b0e4624d88a864 authored over 1 year ago by Todd C. Miller <[email protected]>17c09dfd2727336f755255c272f01a10ccacdf1c authored over 1 year ago by Todd C. Miller <[email protected]>
2d1b3c369f70b158365a07e544937ae1a31cd1e6 authored over 1 year ago by Todd C. Miller <[email protected]>
2848dddd87e80d0e0a8db6a19339376be34bb265 authored over 1 year ago by Todd C. Miller <[email protected]>
f6d1542416049fee7ee41846a36afcd970d42b25 authored over 1 year ago by Todd C. Miller <[email protected]>
1f0f6b7c786de23785044fe663fb1e259059caa1 authored over 1 year ago by Todd C. Miller <[email protected]>
fd061e4d69d4ddb882d6ab7a10dc67994696d712 authored over 1 year ago by Todd C. Miller <[email protected]>
f1d9063477976033643dfb503556a91250ebb3f2 authored over 1 year ago by Todd C. Miller <[email protected]>
bfb6132d9cdea26f29b836fb36192ca9f7918fd3 authored over 1 year ago by Todd C. Miller <[email protected]>
0f69939d7165919420e3943df0c81f336fe8e0d3 authored over 1 year ago by Todd C. Miller <[email protected]>
Shift 1UL instead of 1 to avoid overflowing an int.
3a7ca0a8343a393461ccacaa203d84b590995a8d authored over 1 year ago by Todd C. Miller <[email protected]>Optimize sudo_pow2_roundup_v1
d900e7a93380d70c8ebb29b39eee422cc7f16541 authored over 1 year ago by Todd C. Miller <[email protected]>No need to call sudo_pow2_roundup_v2.
8c3e4a33cd70a5234762b7c1ff31e5e2c32e1267 authored over 1 year ago by Rose <[email protected]>Remove comment about algorithm being from bit-twiddling hacks
fa69ee5e1b148ec2bd84f51c5879a631db12c1a7 authored over 1 year ago by Todd C. Miller <[email protected]>Said comment no longer applies.
76d7aefb3379a86eef78c06adb0a249b28ca36b0 authored over 1 year ago by Rose <[email protected]>Fix fuzzing errors
f884514b300c9fe4db6633e9333af1639150318e authored over 1 year ago by Todd C. Miller <[email protected]>We should be checking for integer overflow, rather than checking if size is 0.
Additionally, we...
732110428e1da523747c7f90da89a7462f95d4bf authored over 1 year ago by Rose <[email protected]>Fixed even more signedness and conversion issues
9266966ab9d11ac4640aaf4ec041cf3eb6a7c77d authored over 1 year ago by Todd C. Miller <[email protected]>This should be the last of them.
cbed9daa4628c6e4316a58e0401f1fb91558a6d9 authored over 1 year ago by Rose <[email protected]>f5eb1e055043dc3ff8db21ff675fda1c352bb259 authored over 1 year ago by Todd C. Miller <[email protected]>
d3dc70ab6248ab4695e75322fdec0170d4325da0 authored over 1 year ago by Todd C. Miller <[email protected]>
e95bd883d7502bff701da7c416d3d966940e4fda authored over 1 year ago by Todd C. Miller <[email protected]>
56a431f7ea445b3a8c386e0c824bdbbbf1cc8a7a authored over 1 year ago by Todd C. Miller <[email protected]>
It was already unsigned in sudoers but not in the front-end or the
python plugin. Making this c...
04c7e910ef093729f31431c90fef1f63a3329ff7 authored over 1 year ago by Todd C. Miller <[email protected]>
Mark functions not returning as sudo_noreturn
575e4ab2fee5b4c0f13fc78385a643d434d707ea authored over 1 year ago by Todd C. Miller <[email protected]>We also put NOTREACHED where it applies.
45fdfa18f1d46a1d6171a8f94f0fa9396b51de20 authored over 1 year ago by Rose <[email protected]>97e574091a609dc660a15bb0598505cb3e01f33c authored over 1 year ago by Todd C. Miller <[email protected]>
Regenerate toke.c using updated flex
2a4939a1c5e10bdad349fe8dfeddbefd4564c420 authored over 1 year ago by Todd C. Miller <[email protected]>Use the current version of flex to generate toke.c
6ea68d208e91b16d8f98430a40a6dec583dea830 authored over 1 year ago by Rose <[email protected]>5fbf431c4252b8c71e6bfff16339f6b95f2d56e7 authored over 1 year ago by Todd C. Miller <[email protected]>
ac9b6c94d9cc7d0f5178376d1c1744251132dc42 authored over 1 year ago by Todd C. Miller <[email protected]>
bdc8a7f35e3fe851e82d6527b025ab5cd880c90d authored over 1 year ago by Todd C. Miller <[email protected]>
01ad570e2448b4613a42dcdadccbfb1edee0af10 authored over 1 year ago by Todd C. Miller <[email protected]>
It is no longer used directly in main.
689efe3cdd680c3ffa0b5ffe67756bbe235e73d3 authored over 1 year ago by Todd C. Miller <[email protected]>
Previously, we just printed "Command unmatched" which makes it
harder to see that an error occur...
This makes it possible to tell whether an entry was rejected due
to a negative match (explicitly...
fd25bfc892f4cec81f3e0a5bb1cb346b6055a092 authored over 1 year ago by Todd C. Miller <[email protected]>
Also pass in the time to be used for NOTBEFORE/NOTAFTER checks.
e025cca440376d9497496d204184c59be6f8c9cb authored over 1 year ago by Todd C. Miller <[email protected]>Avoid compiler casting warnings Part 2
41b82006de36f157b7cf450bc902766660b66ef3 authored over 1 year ago by Todd C. Miller <[email protected]>