Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/sudo-project/sudo
Utility to execute a command as another user
https://github.com/sudo-project/sudo
owner instead of inheriting the group of the parent directory.
2dbd0914434c0328ad8b69e7727cf675668b6883 authored over 7 years ago by Todd C. Miller <[email protected]>c4e703696a19283135a44d1b6e07c517634aa22c authored over 7 years ago by Todd C. Miller <[email protected]>
read or write to. I/O logs must always be readable and writable
by the owner.
quotes as "foo" instead of ``foo''.
8b3845c1ca2a9189d2e6fbf559f1eb91ed8eb64f authored over 7 years ago by Todd C. Miller <[email protected]>run by sudo is terminated by a signal. The I/O log buffering just
prevents the logs from being d...
35e4bd3e9f6e870665ce7198c96a04e9e9389a52 authored over 7 years ago by Todd C. Miller <[email protected]>
7aa89c49b53b700dc504acd33bd48d3ac76eccb6 authored over 7 years ago by Todd C. Miller <[email protected]>
is not present. Bug #777
b63df21ba5b0bec4ec640b741aca07cb60b37eec authored over 7 years ago by Todd C. Miller <[email protected]>Bug #778
453360666ca30ba57badbbf0ba7e68c49d89f91b authored over 7 years ago by Todd C. Miller <[email protected]>a86d399ef605bcd8477c8b673a62ffa679a4c3b5 authored over 7 years ago by Todd C. Miller <[email protected]>
remaining bits of dispatch_signal() into signal_pipe_cb()
867fd16343a9650ceee83ad710b28dc642e4466c authored over 7 years ago by Todd C. Miller <[email protected]>78f3f8bb9df0a42ff4dbea054acacec82d5be60b authored over 7 years ago by Todd C. Miller <[email protected]>
for a background process. This is safer than blocking SIGTTOU
which would cause tcsetpgrp() to s...
controlling terminal. There appears to be a race with the shell
(bash) which we may lose.
now-useless debug printf.
00b4732c9d0e78ae1140b5cc7ca258bbdce8135a authored over 7 years ago by Todd C. Miller <[email protected]>a788144094bc33f41c7097ee84bc9cf8533343e8 authored over 7 years ago by Todd C. Miller <[email protected]>
non-pty code paths into their own event loops. The non-pty exec
code is now contained in exec_no...
rather than TIOCGWINSZ are too old for sudo to build on anyway.
4b1f0c41766c6871ebb34dcd9e34c07f6c30f128 authored over 7 years ago by Todd C. Miller <[email protected]>avoid killing pid -1. This makes it a bit more explicit and removes
the need for a separate vari...
haven't needed to be defined before they are used since sudo 1.7.
05e52c7b8243c2e333c2571a78e4b34d4d554903 authored over 7 years ago by Todd C. Miller <[email protected]>stderr for alias problems. Requested by Tomas Sykora.
daa728fd889680cf5294fbb0e836cade9fe1a6d8 authored over 7 years ago by Todd C. Miller <[email protected]>143620bb252e006d87e422ba1ca98de317afbb0e authored over 7 years ago by Todd C. Miller <[email protected]>
of sudo's own SHA2 implementation.
199a594f43e804379c05dfeba27fee6854193fad authored over 7 years ago by Todd C. Miller <[email protected]>Inspired by RedHat changes that used libgcrypt.
Also add digest_type_to_name() to map a sudo dige...
instead of sudo's own SHA2 implementation.
b9954fb9b97fec0c82239b1565f8bafa9791360a authored over 7 years ago by Todd C. Miller <[email protected]>zero offset in that case. Should not be possible.
00b76afe46de2a7e43076061b8212898a8d76966 authored over 7 years ago by Todd C. Miller <[email protected]>and NOTAFTER.
b3fdb26c41e9ca5146414525ac0b8a8c901b5222 authored over 7 years ago by Todd C. Miller <[email protected]>fd40d88ba798b24d3ee37e214601b575a596b573 authored over 7 years ago by Todd C. Miller <[email protected]>
already available in LDAP.
e5dee1557e5d539cc2138a8000dee4f1cc5007bb authored over 7 years ago by Todd C. Miller <[email protected]>3b19d05fe9f0d58cd2b036010c1a54ab8001401c authored over 7 years ago by Todd C. Miller <[email protected]>
31540e622869b6051a38d570ab5b398ec160f7e2 authored over 7 years ago by Todd C. Miller <[email protected]>
b030c96a86217c41a30d32afcb992cc18e470408 authored over 7 years ago by Todd C. Miller <[email protected]>
as sudoers does not specify a shorter time limit.
c86a6a23ad9e315eb8622cb54603a15d8939d0fb authored over 7 years ago by Todd C. Miller <[email protected]>9b0622b58ff70de7eb95249b69374e15bbdd1f99 authored over 7 years ago by Todd C. Miller <[email protected]>
8bffd0988115601733fe74bec6a43ab51a745b6a authored over 7 years ago by Todd C. Miller <[email protected]>
635f330a430638e89ec909cd08b02aba42185193 authored over 7 years ago by Todd C. Miller <[email protected]>
0f3f4e028a150af5281d9dbb3d6c5c843e7fc038 authored over 7 years ago by Todd C. Miller <[email protected]>
them to be mixed in with options.
24cdbb8de148492168b07f62204437aa366f642e authored over 7 years ago by Todd C. Miller <[email protected]>error. The parser cannot currently clean up completely on error.
e5266f9ebae9e0a30a018c1591a8110714a1dcd5 authored over 7 years ago by Todd C. Miller <[email protected]>Also fix printing of the timeout.
e954facb9d0075679a8c0789a91d519653a98869 authored over 7 years ago by Todd C. Miller <[email protected]>the command does not include any. Previously, a command with
only a role would inherit a type fr...
into "command options". This relaxes the order of things so tags
and other options can be inters...
the command will be terminated.
3980f1531b7942faa05ae8986b544ac1fb6d8415 authored over 7 years ago by Todd C. Miller <[email protected]>fb419ba06607503ba3776c7f2b194591ea1407ad authored over 7 years ago by Todd C. Miller <[email protected]>
47b82acd78aba1284c37989ca835089080a98b26 authored over 7 years ago by Todd C. Miller <[email protected]>
stub gets called. Otherwise, the real syslog will get called via
libutil on AIX.
Keep track of tests run in the syslog() stub so we can
detect if the stub is not being called.
6263cc55a58c1f946f9afe89ad2e136caf87ddff authored over 7 years ago by Todd C. Miller <[email protected]>
09438e5b4243ddb20748a61f9dfd861c5738fc19 authored over 7 years ago by Todd C. Miller <[email protected]>
The hack to determine whether we are parsing an include or includedir
is no longer safe now that ...
8c1da9b69e223c5d4e63e81ea0acfab3d1e76c79 authored over 7 years ago by Todd C. Miller <[email protected]>
in sudoers instead of producing a warning.
3742f7a46e26fdc17c1832892966ee8b1378c982 authored over 7 years ago by Todd C. Miller <[email protected]>digest (i.e. the command to run) on systems that lack fexecve(2).
That way we don't need to expli...
1a8957e30b3577b47c7a9c912add6bb4bc1d3afc authored over 7 years ago by Todd C. Miller <[email protected]>
ca89a0a9144c0d18373f454f59515aae23434345 authored over 7 years ago by Todd C. Miller <[email protected]>
c392e469db3674ff5ba0bf627430a89f98896e55 authored over 7 years ago by Todd C. Miller <[email protected]>
8e3613340cbad055b9f5d9863460354a624b1aac authored over 7 years ago by Todd C. Miller <[email protected]>
26b8dc11bf4b96a4a0d1b87c029a8e1313ed1940 authored over 7 years ago by Todd C. Miller <[email protected]>
fexecve() is used.
413e1100b843e2f7035baa8a36cf8d79b54e0bef authored over 7 years ago by Todd C. Miller <[email protected]>dde2b5eb2c5fc93218c8ff5f62508fae5057cea9 authored over 7 years ago by Todd C. Miller <[email protected]>
pattern or a directory. For example:
millert ALL = sha224:TmUvLkp3a2txliSC2X6CiK42626qdKsH72m/P...
5514ea6851382352734433408535a26355934e89 authored over 7 years ago by Todd C. Miller <[email protected]>df03020c4ca0372801dbdf258c5e927de792cbb5 authored almost 8 years ago by Todd C. Miller <[email protected]>
subject to env_keep or env_check. However, variables are only added
if they have not already bee...
getopts allows options to follow arguments so we need to be able
to deny things like "passwd root...
by the subsequent call to sudo_set_krb5_ccache_name(). From Paul
Zirnik of SUSE.
the variable. From Paul Zirnik of SUSE.
deb4c3b19c6d39598569fce89ea7b5adc4618160 authored almost 8 years ago by Todd C. Miller <[email protected]>1a59ab8b7408a4586c8f6b12234831bd1d0086ad authored almost 8 years ago by Todd C. Miller <[email protected]>
63deb7770557c9f88b30c03801ce6c6c1f6593f4 authored almost 8 years ago by Todd C. Miller <[email protected]>
09698b8a3114854436909a708c7ea57149757263 authored almost 8 years ago by Todd C. Miller <[email protected]>
f589897f8da69e7fdfc630be35b7be72f5703c86 authored almost 8 years ago by Todd C. Miller <[email protected]>
e636f96c487d87aad312bad3d511c7fbb477baf4 authored almost 8 years ago by Todd C. Miller <[email protected]>
08b662bf0b2f2debf145bce0c61041c479316593 authored almost 8 years ago by Todd C. Miller <[email protected]>
%m handling that was leftover from an earlier edit.
a957a657b08346ba032bfee0f8a41da3715cbb6d authored almost 8 years ago by Todd C. Miller <[email protected]>921ad88ab84b485ef3127e126d82545f76a02a02 authored almost 8 years ago by Todd C. Miller <[email protected]>
414b28dc45fc719a38b4b1f32e2b305beba5cfac authored almost 8 years ago by Todd C. Miller <[email protected]>
is not set.
269b8602d8950a01f93f825ed0e7168a08ec1047 authored almost 8 years ago by Todd C. Miller <[email protected]>instead of spinning to avoid hogging the CPU.
2f0295373ad5dc1d1eee685e49ad969cd05eeaca authored almost 8 years ago by Todd C. Miller <[email protected]>0ef26ff0b7cf827cc11e21aa7a3a06770415e760 authored almost 8 years ago by Todd C. Miller <[email protected]>
fabb38c918a9e27394d2b9abd462c863eff2757f authored almost 8 years ago by Todd C. Miller <[email protected]>
network is used in a host-based Defaults entry. Bug #766
90e1f4ec3ea9f0882b108cbb8887c5256edad02b authored almost 8 years ago by Todd C. Miller <[email protected]>correctly detects it is working on the build machine, the sudo
package may be run on a system wit...
6c2cb6cb95648cb03e5b4035ed6decc66fc62719 authored almost 8 years ago by Todd C. Miller <[email protected]>
0d9255b2f7a08e9d037e7878681491e176491918 authored almost 8 years ago by Todd C. Miller <[email protected]>
about Quest and not Dell.
87d02bfe2de461750cf35a6fe1240d2c061df62d authored almost 8 years ago by Todd C. Miller <[email protected]>f847570ba978ff72a83b1cc1ad84273889663663 authored almost 8 years ago by Todd C. Miller <[email protected]>
f9ea84383e9b2a69a670b35661bad5ef7d32e495 authored almost 8 years ago by Todd C. Miller <[email protected]>
we need to check its value, not whether it is defined.
6aa43ff1e40f47263b571e4cb38b79bfaba36eb6 authored almost 8 years ago by Todd C. Miller <[email protected]>cc030548003bd8d3ec03412a4551e9eb2c09b503 authored almost 8 years ago by Todd C. Miller <[email protected]>
2eeb191b94a284346c8ed93d3e4f1a2b8f132fb1 authored almost 8 years ago by Todd C. Miller <[email protected]>
ae76e1a2290313aaad7ea74813fee4a8898e41b4 authored almost 8 years ago by Todd C. Miller <[email protected]>
56cc9aa02d00e3d9450221d7b43c0cfb02a668c2 authored almost 8 years ago by Todd C. Miller <[email protected]>
c62b7dc2ee4abc9b55216c0c0d35906c7c621c82 authored almost 8 years ago by Todd C. Miller <[email protected]>
e8f612ead489fc111d6a424b2c38af3df104e902 authored almost 8 years ago by Todd C. Miller <[email protected]>
2884816c8ecf23de25749862e14fd1bebcdce4e2 authored almost 8 years ago by Todd C. Miller <[email protected]>
4fc0c36ef8ab1222ffe3ad279847e6c32777e5f5 authored almost 8 years ago by Todd C. Miller <[email protected]>
clock is corrected down after boot. Otherwise, the timestamp file
will be unlinked each time sud...
logging successes or failures.
00b6be9dfaa54479ce1decb1a5dcb56a3b4f92b9 authored almost 8 years ago by Todd C. Miller <[email protected]>really useful in sudoreplay is stdin when input is from a pipe.
cb1f04401721b1b0078801d0cfec0ac34351e881 authored almost 8 years ago by Todd C. Miller <[email protected]>does.
52d6a5e40d980d9d45de01f91544a892790cd863 authored almost 8 years ago by Todd C. Miller <[email protected]>Fixes the strtoid regress.
334350af4598069511c8032f63d57afa1017a57a authored almost 8 years ago by Todd C. Miller <[email protected]>