int Argc;
char **Argv;
+char **Envp;
char *host;
char *user;
char *cmnd;
* the driving force behind sudo...
*/
-main(argc, argv)
-int argc; char **argv;
+main(argc, argv, envp)
+int argc; char **argv; char **envp;
{
static void usage();
int rtn;
load_globals(); /* load the user host cmnd and uid variables */
+clean_envp(envp); /* build Envp based on envp (w/o LD_*) */
+
if ( setuid(0) ) {
perror("setuid(0)");
exit(1);
perror("setuid(0)");
exit(1);
}
- execv(cmnd, &Argv[1]);
+ execve(cmnd, &Argv[1], Envp);
perror(cmnd);
break;
}
- return(-1); /* If we get here it's an error (execv failed) */
+ return(-1); /* If we get here it's an error (execve failed) */
}
exit (1);
}
+
+
+
+/**********************************************************************
+ *
+ * clean_envp()
+ *
+ * This function builds Envp, the environment pointer to be
+ * used for all execve()'s and omits LD_* variables
+ */
+
+void clean_envp(envp)
+char **envp;
+{
+int envlen;
+char ** tenvp;
+
+for ( envlen=0; envp[envlen]; envlen++ )
+ ; /* noop */
+
+Envp = (char **) malloc ( sizeof (char **) * envlen );
+
+if ( Envp == NULL ) {
+ perror ("clean_envp: malloc");
+ exit (1);
+}
+
+/* omit all LD_* environmental vars */
+for ( Envp=tenvp=envp; *envp; envp++ )
+ if ( strncmp ("LD_", *envp, 3) )
+ *tenvp++ = *envp;
+
+*tenvp = NULL;
+}
projects / sudo / commitdiff