summaryrefslogtreecommitdiff
path: root/usr.bin/doas
AgeCommit message (Collapse)Author
2018-08-08After authentication is complete, unveil login.conf "r" (to discoverTheo de Raadt
login tweaks), and walk the path (would could be $PATH, or not) adding an unveil "x" to each possible executable which execvpe() could later be tried by execvpe. It would be great if we could do some unveil before authentication, but I failed to determine all the possibilities. Some problem reports by bluhm, tb, florian, and others during development In snaps for about 3 weeks. ok florian
2018-07-11Do for most running out of memory err() what was done for most runningKenneth R Westerback
out of memory log_warn(). i.e. ("%s", __func__) instead of manual function names and redundant verbiage about which wrapper detected the out of memory condition. ok henning@
2018-02-07lowercase doas ee cummings styleTed Unangst
2018-02-07not necessarily the same name, but the indicated nameTed Unangst
2017-07-13man pages with pseudo synopses which list filenames end up creatingJason McIntyre
very ugly output in man -k; after some discussion with ingo, we feel the simplest fix is to remove such SYNOPSIS sections: the info is hardly helpful at page top, is contained already in FILES, and there are sufficiently few that just zapping them is simple; ok schwarze, who also helpfully ran things through a build to check output;
2017-07-03no need to generate y.tab.h if nothing uses it, set YFLAGS to nothingMarc Espie
instead of CLEANFILES += y.tab.h okay millert@
2017-05-27for password failure, print Authorization failed instead of EPERM.Ted Unangst
will make things less confusing with commands rejected by config file.
2017-04-06a little const here and there to prevent rules from changingTed Unangst
2017-04-06prepenv can take a const ruleTed Unangst
2017-03-20simplify example. list of ports variables was non-exahustive, which meansTed Unangst
what exactly? there should be a better place for such lists.
2017-03-09exit test for -L was reversed. spotted by Michael ForneyTed Unangst
2017-01-14add a geteuid check to make sure we're root before plowing into setauth.Ted Unangst
spare some debugging effort in case doas is not installed setuid.
2017-01-02envlist and arglist are both string lists; simplifyTed Unangst
ok benno
2016-12-29it has been six months and two days... remove keepenv { obsolete } syntaxTed Unangst
2016-12-05Be more explicit about the "args" syntax.Ingo Schwarze
In part from a patch from Anton dot Lindqvist at gmail dot com. OK tedu@
2016-11-10missing semicolon at end of rule. yacc doesn't seem to mind, though.Ted Unangst
from Edakawa
2016-10-05Add back the call to yyparse() that was accidentally dropped in theTheo Buehler
previous commit. Fortunately, doas fails closed... ok tedu
2016-10-05move yyparse decl next to yyfpTed Unangst
2016-10-05as a result of the env rework, arraylen() is only used in parse.y.Ted Unangst
move it there and make it static.
2016-09-15use static in the right places to seperate modules betterTheo de Raadt
ok tedu
2016-09-04-L means no commandTed Unangst
2016-09-04don't allow combining nopass and persist in a single ruleTed Unangst
2016-09-03the sudo timeout was 5 minutes i believe, so we'll match that.Ted Unangst
2016-09-02clarify that -L will exit without running a command.Ted Unangst
2016-09-02add support for the verified auth ioctls using 'persist' rules.Ted Unangst
ok deraadt henning
2016-09-01unconst these parameters; i won't be changing bsd auth today.Ted Unangst
2016-09-01move the authentication code to a functionTed Unangst
2016-07-18The string with path to shell could be taken directly from struct passwd.Vadim Zhukov
At some point later the data it points to is overridden by getpwuid() call, resulting in garbage. The problem could be easily demonstreated by double doas call: $ doas doas -su _sndio doas: mpty: command not found The fix is easy: just strdup() the pw_shell field value. okay tedu@, tweaks from & okay natano@
2016-07-12add "recvfd" to doas(1) for use with skey.Sebastien Marie
ok tb@ deraadt@
2016-07-10rename variable for consistencyTed Unangst
2016-06-27minor tweaks; ok teduJason McIntyre
2016-06-27somehow nopass snuck onto the :wheel example. i think it's better without.Ted Unangst
2016-06-27revise environment handling.Ted Unangst
Add a setenv keyword for manipulating the environment. keepenv now means only retain everything. (for one release, the old use of keepenv will still work.) Allow setting variables to new or existing values, and also removing vars when keepenv is used. ok djm martijn tb
2016-06-24move a space to the correct spotTed Unangst
2016-06-19Move the RB_ code from doas.h to env.c, and limit the environment interface to aMartijn van Duren
simple prepenv function. OK tedu@
2016-06-16the environment handling code was showing its age. just because environTed Unangst
is a char** array doesn't mean we must exclusively operate on such. convert to a red-black tree, manipulate as desired, then flatten to array. potentially overkill for the current operations, but reading the tea leaves i see that more manipulations are desired. ok tb (and some thought provoking disagreement from martijn)
2016-06-11don't use specified twice in a sentence, noticed by jmcTed Unangst
2016-06-11clarify some wordingTed Unangst
2016-06-11specify that default is deny if no rule matchesTed Unangst
2016-06-11expand contractionsTed Unangst
2016-06-11tighten up some wordingTed Unangst
2016-06-07revert recent changes to allow setenv. everybody now has an idea aboutTed Unangst
how to do things better, so let's take a step back and reconsider.
2016-06-07merge setenv feature into keepenv. less grammar, more better.Ted Unangst
minimal changes to implementation for now, but some refinement to the way in which the new environment is constructed would be nice. ok djm
2016-06-05spelling fix;Jason McIntyre
2016-06-05add a doas.conf setenv directive that allows setting environmentDamien Miller
variables explicitly and by copying existing environment variables of a different name. E.g. permit nopass setenv { PS1=$SUDO_PS1 FOO=bar } keepenv :wheel ok tedu@ benno@
2016-04-28set progname to doas so users can't create bizarro fake logsTed Unangst
2016-04-27adjust yyerror() to precede with "progname: " the error message stringGleydson Soares
OK tedu@ phessler@
2016-02-15Do a carriage return before password prompt.martijn
OK tedu@
2016-02-07require a tty for the password.Ted Unangst
sudo regression noted by miod, fix by millert
2016-01-24make sure of cleaning rbuf with explicit_bzero(3)Gleydson Soares
OK tedu@