version 1.1.1.3, 2012/10/09 09:29:52
|
version 1.1.1.4, 2013/07/22 10:46:12
|
Line 1
|
Line 1
|
/* |
/* |
* Copyright (c) 1993-1996, 1998-2005, 2007-2011 | * Copyright (c) 1993-1996, 1998-2005, 2007-2013 |
* Todd C. Miller <Todd.Miller@courtesan.com> |
* Todd C. Miller <Todd.Miller@courtesan.com> |
* |
* |
* Permission to use, copy, modify, and distribute this software for any |
* Permission to use, copy, modify, and distribute this software for any |
Line 19
|
Line 19
|
* Materiel Command, USAF, under agreement number F39502-99-1-0512. |
* Materiel Command, USAF, under agreement number F39502-99-1-0512. |
*/ |
*/ |
|
|
#ifndef _SUDO_SUDOERS_H | #ifndef _SUDOERS_SUDOERS_H |
#define _SUDO_SUDOERS_H | #define _SUDOERS_SUDOERS_H |
|
|
#include <limits.h> |
#include <limits.h> |
#ifdef HAVE_STDBOOL_H |
#ifdef HAVE_STDBOOL_H |
Line 85 struct sudo_user {
|
Line 85 struct sudo_user {
|
char *privs; |
char *privs; |
char *limitprivs; |
char *limitprivs; |
#endif |
#endif |
char *cwd; | const char *cwd; |
char *iolog_file; |
char *iolog_file; |
GETGROUPS_T *gids; |
GETGROUPS_T *gids; |
int ngids; |
int ngids; |
Line 93 struct sudo_user {
|
Line 93 struct sudo_user {
|
int lines; |
int lines; |
int cols; |
int cols; |
int flags; |
int flags; |
|
int max_groups; |
|
mode_t umask; |
uid_t uid; |
uid_t uid; |
uid_t gid; |
uid_t gid; |
|
pid_t sid; |
}; |
}; |
|
|
/* |
/* |
Line 171 struct sudo_user {
|
Line 174 struct sudo_user {
|
#define user_name (sudo_user.name) |
#define user_name (sudo_user.name) |
#define user_uid (sudo_user.uid) |
#define user_uid (sudo_user.uid) |
#define user_gid (sudo_user.gid) |
#define user_gid (sudo_user.gid) |
|
#define user_sid (sudo_user.sid) |
|
#define user_umask (sudo_user.umask) |
#define user_passwd (sudo_user.pw->pw_passwd) |
#define user_passwd (sudo_user.pw->pw_passwd) |
#define user_uuid (sudo_user.uuid) |
|
#define user_dir (sudo_user.pw->pw_dir) |
#define user_dir (sudo_user.pw->pw_dir) |
#define user_gids (sudo_user.gids) |
#define user_gids (sudo_user.gids) |
#define user_ngids (sudo_user.ngids) |
#define user_ngids (sudo_user.ngids) |
Line 200 struct sudo_user {
|
Line 204 struct sudo_user {
|
#define runas_limitprivs (sudo_user.limitprivs) |
#define runas_limitprivs (sudo_user.limitprivs) |
|
|
#ifdef __TANDEM |
#ifdef __TANDEM |
# define ROOT_UID 65535 | # define ROOT_UID 65535 |
#else |
#else |
# define ROOT_UID 0 | # define ROOT_UID 0 |
#endif |
#endif |
|
#define ROOT_GID 0 |
|
|
/* |
/* |
* We used to use the system definition of PASS_MAX or _PASSWD_LEN, |
* We used to use the system definition of PASS_MAX or _PASSWD_LEN, |
Line 221 struct timeval;
|
Line 226 struct timeval;
|
/* |
/* |
* Function prototypes |
* Function prototypes |
*/ |
*/ |
#define YY_DECL int yylex(void) | #define YY_DECL int sudoerslex(void) |
|
|
/* goodpath.c */ |
/* goodpath.c */ |
bool sudo_goodpath(const char *, struct stat *); |
bool sudo_goodpath(const char *, struct stat *); |
Line 230 bool sudo_goodpath(const char *, struct stat *);
|
Line 235 bool sudo_goodpath(const char *, struct stat *);
|
int find_path(char *, char **, struct stat *, char *, int); |
int find_path(char *, char **, struct stat *, char *, int); |
|
|
/* check.c */ |
/* check.c */ |
int check_user(int, int); | int check_user(int validate, int mode); |
void remove_timestamp(bool); | |
bool user_is_exempt(void); |
bool user_is_exempt(void); |
|
|
|
/* prompt.c */ |
|
char *expand_prompt(const char *old_prompt, const char *user, const char *host); |
|
|
|
/* timestamp.c */ |
|
void remove_timestamp(bool); |
|
bool set_lectured(void); |
|
|
/* sudo_auth.c */ |
/* sudo_auth.c */ |
|
bool sudo_auth_needs_end_session(void); |
int verify_user(struct passwd *pw, char *prompt, int validated); |
int verify_user(struct passwd *pw, char *prompt, int validated); |
int sudo_auth_begin_session(struct passwd *pw, char **user_env[]); |
int sudo_auth_begin_session(struct passwd *pw, char **user_env[]); |
int sudo_auth_end_session(struct passwd *pw); |
int sudo_auth_end_session(struct passwd *pw); |
Line 259 void restore_perms(void);
|
Line 271 void restore_perms(void);
|
int pam_prep_user(struct passwd *); |
int pam_prep_user(struct passwd *); |
|
|
/* gram.y */ |
/* gram.y */ |
int yyparse(void); | int sudoersparse(void); |
|
|
/* toke.l */ |
/* toke.l */ |
YY_DECL; |
YY_DECL; |
Line 291 bool user_in_group(struct passwd *, const char *);
|
Line 303 bool user_in_group(struct passwd *, const char *);
|
struct group *sudo_fakegrnam(const char *); |
struct group *sudo_fakegrnam(const char *); |
struct group_list *sudo_get_grlist(struct passwd *pw); |
struct group_list *sudo_get_grlist(struct passwd *pw); |
struct passwd *sudo_fakepwnam(const char *, gid_t); |
struct passwd *sudo_fakepwnam(const char *, gid_t); |
struct passwd *sudo_fakepwnamid(const char *user, uid_t uid, gid_t gid); | struct passwd *sudo_mkpwent(const char *user, uid_t uid, gid_t gid, const char *home, const char *shell); |
struct passwd *sudo_getpwnam(const char *); |
struct passwd *sudo_getpwnam(const char *); |
struct passwd *sudo_getpwuid(uid_t); |
struct passwd *sudo_getpwuid(uid_t); |
void sudo_endgrent(void); |
void sudo_endgrent(void); |
Line 301 void sudo_grlist_addref(struct group_list *);
|
Line 313 void sudo_grlist_addref(struct group_list *);
|
void sudo_grlist_delref(struct group_list *); |
void sudo_grlist_delref(struct group_list *); |
void sudo_pw_addref(struct passwd *); |
void sudo_pw_addref(struct passwd *); |
void sudo_pw_delref(struct passwd *); |
void sudo_pw_delref(struct passwd *); |
|
void sudo_set_grlist(struct passwd *pw, char * const *groups, |
|
char * const *gids); |
void sudo_setgrent(void); |
void sudo_setgrent(void); |
void sudo_setpwent(void); |
void sudo_setpwent(void); |
void sudo_setspent(void); |
void sudo_setspent(void); |
Line 315 int atobool(const char *str);
|
Line 329 int atobool(const char *str);
|
int get_boottime(struct timeval *); |
int get_boottime(struct timeval *); |
|
|
/* iolog.c */ |
/* iolog.c */ |
|
int io_set_max_sessid(const char *sessid); |
void io_nextid(char *iolog_dir, char *iolog_dir_fallback, char sessid[7]); |
void io_nextid(char *iolog_dir, char *iolog_dir_fallback, char sessid[7]); |
|
|
/* iolog_path.c */ |
/* iolog_path.c */ |
Line 342 int sudoers_hook_unsetenv(const char *name, void *clos
|
Line 357 int sudoers_hook_unsetenv(const char *name, void *clos
|
char *fmt_string(const char *, const char *); |
char *fmt_string(const char *, const char *); |
|
|
/* sudoers.c */ |
/* sudoers.c */ |
void plugin_cleanup(int); |
|
void set_fqdn(void); |
|
FILE *open_sudoers(const char *, bool, bool *); |
FILE *open_sudoers(const char *, bool, bool *); |
|
int sudoers_policy_init(void *info, char * const envp[]); |
|
int sudoers_policy_main(int argc, char * const argv[], int pwflag, char *env_add[], void *closure); |
|
void sudoers_cleanup(void); |
|
|
|
/* policy.c */ |
|
int sudoers_policy_deserialize_info(void *v, char **runas_user, char **runas_group); |
|
int sudoers_policy_exec_setup(char *argv[], char *envp[], mode_t cmnd_umask, char *iolog_path, void *v); |
|
extern const char *path_ldap_conf; |
|
extern const char *path_ldap_secret; |
|
|
/* aix.c */ |
/* aix.c */ |
void aix_restoreauthdb(void); |
void aix_restoreauthdb(void); |
void aix_setauthdb(char *user); |
void aix_setauthdb(char *user); |
Line 366 extern int long_list;
|
Line 388 extern int long_list;
|
extern int sudo_mode; |
extern int sudo_mode; |
extern uid_t timestamp_uid; |
extern uid_t timestamp_uid; |
extern sudo_conv_t sudo_conv; |
extern sudo_conv_t sudo_conv; |
extern sudo_printf_t sudo_printf; |
|
#endif |
#endif |
|
|
#endif /* _SUDO_SUDOERS_H */ | #endif /* _SUDOERS_SUDOERS_H */ |