owner instead of inheriting the group of the parent directory.

read or write to. I/O logs must always be readable and writable
by the owner.

quotes as "foo" instead of ``foo''.

run by sudo is terminated by a signal. The I/O log buffering just
prevents the logs from being d...

is not present. Bug #777

Bug #778

remaining bits of dispatch_signal() into signal_pipe_cb()

for a background process. This is safer than blocking SIGTTOU
which would cause tcsetpgrp() to s...

controlling terminal. There appears to be a race with the shell
(bash) which we may lose.

now-useless debug printf.

non-pty code paths into their own event loops. The non-pty exec
code is now contained in exec_no...

rather than TIOCGWINSZ are too old for sudo to build on anyway.

avoid killing pid -1. This makes it a bit more explicit and removes
the need for a separate vari...

haven't needed to be defined before they are used since sudo 1.7.

stderr for alias problems. Requested by Tomas Sykora.

of sudo's own SHA2 implementation.

Inspired by RedHat changes that used libgcrypt.
Also add digest_type_to_name() to map a sudo dige...

instead of sudo's own SHA2 implementation.

zero offset in that case. Should not be possible.

and NOTAFTER.

already available in LDAP.

as sudoers does not specify a shorter time limit.

them to be mixed in with options.

error. The parser cannot currently clean up completely on error.

Also fix printing of the timeout.

the command does not include any. Previously, a command with
only a role would inherit a type fr...

into "command options". This relaxes the order of things so tags
and other options can be inters...

the command will be terminated.

stub gets called. Otherwise, the real syslog will get called via
libutil on AIX.

Keep track of tests run in the syslog() stub so we can
detect if the stub is not being called.

The hack to determine whether we are parsing an include or includedir
is no longer safe now that ...

in sudoers instead of producing a warning.

digest (i.e. the command to run) on systems that lack fexecve(2).
That way we don't need to expli...

fexecve() is used.

pattern or a directory. For example:

millert ALL = sha224:TmUvLkp3a2txliSC2X6CiK42626qdKsH72m/P...

subject to env_keep or env_check. However, variables are only added
if they have not already bee...

getopts allows options to follow arguments so we need to be able
to deny things like "passwd root...

by the subsequent call to sudo_set_krb5_ccache_name(). From Paul
Zirnik of SUSE.

the variable. From Paul Zirnik of SUSE.

%m handling that was leftover from an earlier edit.

is not set.

instead of spinning to avoid hogging the CPU.

network is used in a host-based Defaults entry. Bug #766

correctly detects it is working on the build machine, the sudo
package may be run on a system wit...

about Quest and not Dell.

we need to check its value, not whether it is defined.

clock is corrected down after boot. Otherwise, the timestamp file
will be unlinked each time sud...

logging successes or failures.

really useful in sudoreplay is stdin when input is from a pipe.

does.

Fixes the strtoid regress.