summaryrefslogtreecommitdiff
path: root/usr.bin/doas/doas.c
AgeCommit message (Expand)Author
2024-02-15change permit to be more bits away from deny, because rowhammer.Ted Unangst
2022-12-22Denote multiple arguments with 'arg ...' not 'args'Klemens Nanni
2022-03-22minor KNF cleanups during a re-readTheo de Raadt
2022-03-04Revert previous and add LOGIN_SETENV and LOGIN_SETRTABLETheo Buehler
2022-02-25use setall for setusercontext, to make it simpler to inherit new changes.Ted Unangst
2022-02-10unveil _PATH_LOGIN_CONF_DRobert Nagy
2021-11-30Improved error handling in config parser.Tobias Stoeckmann
2021-10-13Fix fd leak of /dev/tty on auth failure, introduced in revision 1.91.Todd C. Miller
2021-09-07Retry up to 3 times on password authentication failureJoshua Stein
2021-07-12Change the error reporting pattern throughout the tree when unveilBob Beck
2021-01-27Promote nrules/maxrules to size_t and make sure they can't overflow.Todd C. Miller
2021-01-21Revert r1.87 "Pledge before authentication when possible"kn
2021-01-20Pledge before authentication when possiblekn
2021-01-16s/authorization/authentication/gMartijn van Duren
2021-01-13Pledge the "-C" code pathkn
2020-10-09Add nolog option to avoid syslog(3)kn
2020-10-09Improve error message on missing permissionkn
2019-10-18add some checks to avoid UID_MAX (-1) here. this is not problematic withTed Unangst
2019-09-14correct some unveil(2) violations due to "login.conf.db" access (the .db versionSebastien Marie
2019-07-03snprintf/vsnprintf return < 0 on error, rather than -1.Theo de Raadt
2019-06-29fix some more fallout from setting path in setusercontext. restoreTed Unangst
2019-06-17setusercontext resets PATH (which we want). but then it becomesTed Unangst
2019-06-16redo the environment inheritance to not inherit. it was intended to makeTed Unangst
2019-06-12a few cleanups and simplifications possible now that static pw is gone.Ted Unangst
2019-06-10use getpwuid_r to avoid problems with hidden static storage.Ted Unangst
2019-01-17clear the password even after a mismatchTed Unangst
2018-08-08After authentication is complete, unveil login.conf "r" (to discoverTheo de Raadt
2017-05-27for password failure, print Authorization failed instead of EPERM.Ted Unangst
2017-04-06a little const here and there to prevent rules from changingTed Unangst
2017-03-09exit test for -L was reversed. spotted by Michael ForneyTed Unangst
2017-01-14add a geteuid check to make sure we're root before plowing into setauth.Ted Unangst
2016-10-05Add back the call to yyparse() that was accidentally dropped in theTheo Buehler
2016-10-05move yyparse decl next to yyfpTed Unangst
2016-10-05as a result of the env rework, arraylen() is only used in parse.y.Ted Unangst
2016-09-15use static in the right places to seperate modules betterTheo de Raadt
2016-09-03the sudo timeout was 5 minutes i believe, so we'll match that.Ted Unangst
2016-09-02add support for the verified auth ioctls using 'persist' rules.Ted Unangst
2016-09-01unconst these parameters; i won't be changing bsd auth today.Ted Unangst
2016-09-01move the authentication code to a functionTed Unangst
2016-07-18The string with path to shell could be taken directly from struct passwd.Vadim Zhukov
2016-07-12add "recvfd" to doas(1) for use with skey.Sebastien Marie
2016-06-24move a space to the correct spotTed Unangst
2016-06-19Move the RB_ code from doas.h to env.c, and limit the environment interface to aMartijn van Duren
2016-06-16the environment handling code was showing its age. just because environTed Unangst
2016-06-07revert recent changes to allow setenv. everybody now has an idea aboutTed Unangst
2016-06-07merge setenv feature into keepenv. less grammar, more better.Ted Unangst
2016-06-05add a doas.conf setenv directive that allows setting environmentDamien Miller
2016-04-28set progname to doas so users can't create bizarro fake logsTed Unangst
2016-02-15Do a carriage return before password prompt.martijn
2016-02-07require a tty for the password.Ted Unangst
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-25 16:49:14 +0000