When checking whether a user may change the login class, just check

author Todd C. Miller <Todd.Miller@courtesan.com>

Sun, 8 Dec 2013 18:11:21 +0000 (11:11 -0700)

committer Todd C. Miller <Todd.Miller@courtesan.com>

Sun, 8 Dec 2013 18:11:21 +0000 (11:11 -0700)
author Todd C. Miller <Todd.Miller@courtesan.com>
Sun, 8 Dec 2013 18:11:21 +0000 (11:11 -0700)
committer Todd C. Miller <Todd.Miller@courtesan.com>
Sun, 8 Dec 2013 18:11:21 +0000 (11:11 -0700)
diff --git a/CONTRIBUTORS b/CONTRIBUTORS

index d63a74467aaf17de15e5729656efa2fd652d2fb9..821510c76ef16ac4b4cf377160d238f6a654208a 100644 (file)
--- a/CONTRIBUTORS
+++ b/CONTRIBUTORS
@@ -111,6 +111,7 @@ you believe you should be listed, please send a note to sudo@sudo.ws.
      Eric Paquet
      Chantal Paradis
      Ted Percival
+    Andres Perera
      Christian S.J. Peron
      Alexander Peslyak
      Toby Peterson
diff --git a/sudo.c b/sudo.c

index 1e1c9db913bdea953373edb672611a3d34450f00..a7f8d50940a62698b97c2f4775d398b79f2b2503 100644 (file)
--- a/sudo.c
+++ b/sudo.c
@@ -1171,8 +1171,7 @@ set_loginclass(pw)
         return;
  
      if (login_class && strcmp(login_class, "-") != 0) {
-       if (user_uid != 0 &&
-           strcmp(runas_user ? runas_user : def_runas_default, "root") != 0)
+       if (user_uid != 0 && pw->pw_uid != 0)
             errorx(1, "only root can use -c %s", login_class);
      } else {
         login_class = pw->pw_class;
author	Todd C. Miller <Todd.Miller@courtesan.com>
	Sun, 8 Dec 2013 18:11:21 +0000 (11:11 -0700)
committer	Todd C. Miller <Todd.Miller@courtesan.com>
	Sun, 8 Dec 2013 18:11:21 +0000 (11:11 -0700)
CONTRIBUTORS		patch \| blob \| history
sudo.c		patch \| blob \| history