From: Todd C. Miller <Todd.Miller@courtesan.com>
Date: Mon, 18 Dec 1995 03:04:55 +0000 (+0000)
Subject: added group support
X-Git-Tag: SUDO_1_4_0~45
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=d606c291cc13d7210491512712928e9206b4609f;p=sudo

added group support
---

diff --git a/testsudoers.c b/testsudoers.c
index f5fb5b8f8..356e10022 100644
--- a/testsudoers.c
+++ b/testsudoers.c
@@ -45,6 +45,7 @@ static char rcsid[] = "$Id$";
 #endif /* HAVE_MALLOC_H && !STDC_HEADERS */
 #include <ctype.h>
 #include <pwd.h>
+#include <grp.h>
 #include <sys/param.h>
 #include <sys/types.h>
 #include <netinet/in.h>
@@ -134,6 +135,35 @@ int addr_matches(n)
 }
 
 
+int usergr_matches(group, user)
+    char *group;
+    char *user;
+{
+    struct group *grpent;
+    char **cur;
+
+    /* make sure we have a valid usergroup, sudo style */
+    if (*group++ != '%')
+	return(FALSE);
+
+    if ((grpent = getgrnam(group)) == NULL) 
+	return(FALSE);
+
+    /*
+     * Check against user's real gid as well as group's user list
+     */
+    if (getgid() == grpent->gr_gid)
+	return(TRUE);
+
+    for (cur=grpent->gr_mem; *cur; cur++) {
+	if (strcmp(*cur, user) == 0)
+	    return(TRUE);
+    }
+
+    return(FALSE);
+}
+
+
 int netgr_matches(netgr, host, user)
     char *netgr;
     char *host;
@@ -146,7 +176,7 @@ int netgr_matches(netgr, host, user)
 #endif /* HAVE_GETDOMAINNAME */
 
     /* make sure we have a valid netgroup, sudo style */
-    if (*netgr != '+')
+    if (*netgr++ != '+')
 	return(FALSE);
 
 #ifdef HAVE_GETDOMAINNAME
@@ -166,7 +196,7 @@ int netgr_matches(netgr, host, user)
 #endif /* HAVE_GETDOMAINNAME */
 
 #ifdef HAVE_INNETGR
-    return(innetgr(netgr+1, host, user, domain));
+    return(innetgr(netgr, host, user, domain));
 #else
     return(FALSE);
 #endif /* HAVE_INNETGR */