When printing a member name, quote sudoers special characters unless

author Todd C. Miller <Todd.Miller@sudo.ws>

Fri, 2 Feb 2018 21:29:17 +0000 (14:29 -0700)

committer Todd C. Miller <Todd.Miller@sudo.ws>

Fri, 2 Feb 2018 21:29:17 +0000 (14:29 -0700)
author Todd C. Miller <Todd.Miller@sudo.ws>
Fri, 2 Feb 2018 21:29:17 +0000 (14:29 -0700)
committer Todd C. Miller <Todd.Miller@sudo.ws>
Fri, 2 Feb 2018 21:29:17 +0000 (14:29 -0700)
diff --git a/plugins/sudoers/parse.c b/plugins/sudoers/parse.c

index e1bbbea86f46b08008169294e0ccd45eeb9bc335..084d2f36d204eeebcf827170f144d00dfc5e922d 100644 (file)
--- a/plugins/sudoers/parse.c
+++ b/plugins/sudoers/parse.c
@@ -883,7 +883,14 @@ print_member_int(struct sudo_lbuf *lbuf, char *name, int type, int negated,
             }
             /* FALLTHROUGH */
         default:
-           sudo_lbuf_append(lbuf, "%s%s", negated ? "!" : "", name);
+           /* Do not quote UID/GID, all others get quoted. */
+           if (name[0] == '#' &&
+               name[strspn(name + 1, "0123456789") + 1] == '\0') {
+               sudo_lbuf_append(lbuf, "%s%s", negated ? "!" : "", name);
+           } else {
+               sudo_lbuf_append_quoted(lbuf, SUDOERS_QUOTED, "%s%s",
+                   negated ? "!" : "", name);
+           }
             break;
      }
      debug_return;
author	Todd C. Miller <Todd.Miller@sudo.ws>
	Fri, 2 Feb 2018 21:29:17 +0000 (14:29 -0700)
committer	Todd C. Miller <Todd.Miller@sudo.ws>
	Fri, 2 Feb 2018 21:29:17 +0000 (14:29 -0700)