]> granicus.if.org Git - sudo/log
sudo
13 years agoDon't assume all editors support the +linenumber command line argument,
Todd C. Miller [Fri, 26 Aug 2011 18:04:22 +0000 (14:04 -0400)]
Don't assume all editors support the +linenumber command line argument,
use a whitelist of known good editors.

--HG--
branch : 1.8

13 years agoDon't assume all editors support the +linenumber command line argument,
Todd C. Miller [Fri, 26 Aug 2011 18:03:49 +0000 (14:03 -0400)]
Don't assume all editors support the +linenumber command line argument,
use a whitelist of known good editors.

13 years agoSilence compiler warnings on Solaris with gcc 3.4.3
Todd C. Miller [Tue, 23 Aug 2011 20:42:45 +0000 (16:42 -0400)]
Silence compiler warnings on Solaris with gcc 3.4.3

--HG--
branch : 1.8

13 years agoSilence compiler warnings on Solaris with gcc 3.4.3
Todd C. Miller [Tue, 23 Aug 2011 20:42:18 +0000 (16:42 -0400)]
Silence compiler warnings on Solaris with gcc 3.4.3

13 years agoFix building on RHEL 3
Todd C. Miller [Tue, 23 Aug 2011 19:25:17 +0000 (15:25 -0400)]
Fix building on RHEL 3

--HG--
branch : 1.8

13 years agoFix building on RHEL 3
Todd C. Miller [Tue, 23 Aug 2011 19:24:55 +0000 (15:24 -0400)]
Fix building on RHEL 3

13 years agoAdd --enable-werror configure option.
Todd C. Miller [Tue, 23 Aug 2011 14:18:45 +0000 (10:18 -0400)]
Add --enable-werror configure option.

--HG--
branch : 1.8

13 years agosetgroups() proto lives in grp.h on RHEL4, perhaps others.
Todd C. Miller [Tue, 23 Aug 2011 14:18:32 +0000 (10:18 -0400)]
setgroups() proto lives in grp.h on RHEL4, perhaps others.

--HG--
branch : 1.8

13 years agoUse PAM by default on AIX 6 and higher.
Todd C. Miller [Tue, 23 Aug 2011 14:18:22 +0000 (10:18 -0400)]
Use PAM by default on AIX 6 and higher.

--HG--
branch : 1.8

13 years agoAdd --enable-werror configure option.
Todd C. Miller [Tue, 23 Aug 2011 14:15:28 +0000 (10:15 -0400)]
Add --enable-werror configure option.

13 years agosetgroups() proto lives in grp.h on RHEL4, perhaps others.
Todd C. Miller [Tue, 23 Aug 2011 14:14:52 +0000 (10:14 -0400)]
setgroups() proto lives in grp.h on RHEL4, perhaps others.

13 years agoUse PAM by default on AIX 6 and higher.
Todd C. Miller [Tue, 23 Aug 2011 13:50:40 +0000 (09:50 -0400)]
Use PAM by default on AIX 6 and higher.

13 years agoAdd new Esperanto translation from translationproject.org
Todd C. Miller [Mon, 22 Aug 2011 12:27:12 +0000 (08:27 -0400)]
Add new Esperanto translation from translationproject.org

--HG--
branch : 1.8

13 years agoAdd new Esperanto translation from translationproject.org
Todd C. Miller [Mon, 22 Aug 2011 12:26:50 +0000 (08:26 -0400)]
Add new Esperanto translation from translationproject.org

13 years agoQuiet an innocuous valgrind warning.
Todd C. Miller [Fri, 19 Aug 2011 13:33:02 +0000 (09:33 -0400)]
Quiet an innocuous valgrind warning.

--HG--
branch : 1.8

13 years agoQuiet an innocuous valgrind warning.
Todd C. Miller [Fri, 19 Aug 2011 13:32:25 +0000 (09:32 -0400)]
Quiet an innocuous valgrind warning.

13 years agoFix expansion of strftime() escapes in log_dir and add a regress test
Todd C. Miller [Thu, 18 Aug 2011 17:45:09 +0000 (13:45 -0400)]
Fix expansion of strftime() escapes in log_dir and add a regress test
that exhibited the problem.

--HG--
branch : 1.8

13 years agoFix "make check" return value.
Todd C. Miller [Thu, 18 Aug 2011 17:44:55 +0000 (13:44 -0400)]
Fix "make check" return value.

--HG--
branch : 1.8

13 years agoFix expansion of strftime() escapes in log_dir and add a regress test
Todd C. Miller [Thu, 18 Aug 2011 17:41:40 +0000 (13:41 -0400)]
Fix expansion of strftime() escapes in log_dir and add a regress test
that exhibited the problem.

13 years agoFix "make check" return value.
Todd C. Miller [Thu, 18 Aug 2011 16:09:34 +0000 (12:09 -0400)]
Fix "make check" return value.

13 years agoRegen pot files SUDO_1_8_2
Todd C. Miller [Wed, 17 Aug 2011 15:41:30 +0000 (11:41 -0400)]
Regen pot files

--HG--
branch : 1.8

13 years agoRegen pot files
Todd C. Miller [Wed, 17 Aug 2011 15:40:14 +0000 (11:40 -0400)]
Regen pot files

13 years agoFix logic inversion in pot file up to date check.
Todd C. Miller [Wed, 17 Aug 2011 15:39:18 +0000 (11:39 -0400)]
Fix logic inversion in pot file up to date check.

--HG--
branch : 1.8

13 years agoFix logic inversion in pot file up to date check.
Todd C. Miller [Wed, 17 Aug 2011 15:38:53 +0000 (11:38 -0400)]
Fix logic inversion in pot file up to date check.

13 years agoregen docs
Todd C. Miller [Wed, 17 Aug 2011 13:54:48 +0000 (09:54 -0400)]
regen docs

--HG--
branch : 1.8

13 years agoAdd caching for gettext() checks.
Todd C. Miller [Mon, 15 Aug 2011 17:42:22 +0000 (13:42 -0400)]
Add caching for gettext() checks.

--HG--
branch : 1.8

13 years agoAdd caching for gettext() checks.
Todd C. Miller [Mon, 15 Aug 2011 17:41:58 +0000 (13:41 -0400)]
Add caching for gettext() checks.

13 years agoBetter handling of libintl header and library mismatch.
Todd C. Miller [Mon, 15 Aug 2011 14:22:31 +0000 (10:22 -0400)]
Better handling of libintl header and library mismatch.

--HG--
branch : 1.8

13 years agoBetter handling of libintl header and library mismatch.
Todd C. Miller [Mon, 15 Aug 2011 14:21:13 +0000 (10:21 -0400)]
Better handling of libintl header and library mismatch.

13 years agosync
Todd C. Miller [Sun, 14 Aug 2011 15:45:50 +0000 (11:45 -0400)]
sync

--HG--
branch : 1.8

13 years agoAlso check sudoers gid if sudoers is group writable.
Todd C. Miller [Sat, 13 Aug 2011 22:37:17 +0000 (18:37 -0400)]
Also check sudoers gid if sudoers is group writable.

--HG--
branch : 1.8

13 years agoUpdate for 1.8.2 final
Todd C. Miller [Sat, 13 Aug 2011 22:36:37 +0000 (18:36 -0400)]
Update for 1.8.2 final

--HG--
branch : 1.8

13 years agoAlso check sudoers gid if sudoers is group writable.
Todd C. Miller [Sat, 13 Aug 2011 22:34:37 +0000 (18:34 -0400)]
Also check sudoers gid if sudoers is group writable.

13 years agoIf dlopen is present but libtool doesn't find it, error out since it
Todd C. Miller [Fri, 12 Aug 2011 17:01:31 +0000 (13:01 -0400)]
If dlopen is present but libtool doesn't find it, error out since it
probably means that libtool doesn't support the system.

--HG--
branch : 1.8

13 years agoIf dlopen is present but libtool doesn't find it, error out since it
Todd C. Miller [Fri, 12 Aug 2011 17:00:55 +0000 (13:00 -0400)]
If dlopen is present but libtool doesn't find it, error out since it
probably means that libtool doesn't support the system.

13 years agoconfigure args on the command line should override builtin defaults.
Todd C. Miller [Fri, 12 Aug 2011 15:05:10 +0000 (11:05 -0400)]
configure args on the command line should override builtin defaults.
Disable NLS for non-Linux/Solaris unless explicitly enabled.

--HG--
branch : 1.8

13 years agoFix loop that calls authenticate().
Todd C. Miller [Fri, 12 Aug 2011 15:04:59 +0000 (11:04 -0400)]
Fix loop that calls authenticate().
If there was an error message from authenticate(), display it.

--HG--
branch : 1.8

13 years agoconfigure args on the command line should override builtin defaults.
Todd C. Miller [Fri, 12 Aug 2011 15:04:25 +0000 (11:04 -0400)]
configure args on the command line should override builtin defaults.
Disable NLS for non-Linux/Solaris unless explicitly enabled.

13 years agoFix loop that calls authenticate().
Todd C. Miller [Fri, 12 Aug 2011 15:02:53 +0000 (11:02 -0400)]
Fix loop that calls authenticate().
If there was an error message from authenticate(), display it.

13 years agoUpdate to autoconf 2.68 and libtool 2.4
Todd C. Miller [Thu, 11 Aug 2011 18:40:53 +0000 (14:40 -0400)]
Update to autoconf 2.68 and libtool 2.4

--HG--
branch : 1.8

13 years agoUpdate to autoconf 2.68 and libtool 2.4
Todd C. Miller [Thu, 11 Aug 2011 18:32:23 +0000 (14:32 -0400)]
Update to autoconf 2.68 and libtool 2.4

13 years agoUpdate to autoconf 2.68 and libtool 2.4
Todd C. Miller [Thu, 11 Aug 2011 18:25:01 +0000 (14:25 -0400)]
Update to autoconf 2.68 and libtool 2.4

13 years agoFix typo; OPT should be OTP
Todd C. Miller [Thu, 11 Aug 2011 17:25:39 +0000 (13:25 -0400)]
Fix typo; OPT should be OTP

--HG--
branch : 1.8

13 years agoFix typo; OPT should be OTP
Todd C. Miller [Thu, 11 Aug 2011 17:25:08 +0000 (13:25 -0400)]
Fix typo; OPT should be OTP

13 years agoRename libsudoers convenience library to libparsesudoers to avoid
Todd C. Miller [Thu, 11 Aug 2011 17:15:09 +0000 (13:15 -0400)]
Rename libsudoers convenience library to libparsesudoers to avoid
libtool confusion.

--HG--
branch : 1.8

13 years agoRename libsudoers convenience library to libparsesudoers to avoid
Todd C. Miller [Thu, 11 Aug 2011 17:14:44 +0000 (13:14 -0400)]
Rename libsudoers convenience library to libparsesudoers to avoid
libtool confusion.

13 years agoAdd Danish sudoers translation from translationproject.org
Todd C. Miller [Wed, 10 Aug 2011 13:51:23 +0000 (09:51 -0400)]
Add Danish sudoers translation from translationproject.org

--HG--
branch : 1.8

13 years agoAdd Danish sudoers translation from translationproject.org
Todd C. Miller [Wed, 10 Aug 2011 13:50:52 +0000 (09:50 -0400)]
Add Danish sudoers translation from translationproject.org

13 years agoAdd dedicated callback function for runas_default sudoers setting
Todd C. Miller [Wed, 10 Aug 2011 13:03:54 +0000 (09:03 -0400)]
Add dedicated callback function for runas_default sudoers setting
that only sets runas_pw if no runas user or group was specified by
the user.

--HG--
branch : 1.8

13 years agoAdd dedicated callback function for runas_default sudoers setting
Todd C. Miller [Wed, 10 Aug 2011 13:02:37 +0000 (09:02 -0400)]
Add dedicated callback function for runas_default sudoers setting
that only sets runas_pw if no runas user or group was specified by
the user.

13 years agoUpdate Finish, Polish, Russian and Ukrainian translations from
Todd C. Miller [Tue, 9 Aug 2011 18:58:26 +0000 (14:58 -0400)]
Update Finish, Polish, Russian and Ukrainian translations from
translationproject.org.

--HG--
branch : 1.8

13 years agoUpdate Finish, Polish, Russian and Ukrainian translations from
Todd C. Miller [Tue, 9 Aug 2011 18:57:57 +0000 (14:57 -0400)]
Update Finish, Polish, Russian and Ukrainian translations from
translationproject.org.

13 years agoGo back to using a callback for runas_default to keep runas_pw in
Todd C. Miller [Tue, 9 Aug 2011 18:55:29 +0000 (14:55 -0400)]
Go back to using a callback for runas_default to keep runas_pw in
sync.  This is needed to make per-entry runas_default settings work
with LDAP-based sudoers.  Instead of declaring it a callback in
def_data.in, sudo and testsudoers poke sudo_defs_table[] which is
a bit naughty, but avoids requiring stub functions in visudo and
the tests.

--HG--
branch : 1.8

13 years agoGo back to using a callback for runas_default to keep runas_pw in
Todd C. Miller [Tue, 9 Aug 2011 18:54:42 +0000 (14:54 -0400)]
Go back to using a callback for runas_default to keep runas_pw in
sync.  This is needed to make per-entry runas_default settings work
with LDAP-based sudoers.  Instead of declaring it a callback in
def_data.in, sudo and testsudoers poke sudo_defs_table[] which is
a bit naughty, but avoids requiring stub functions in visudo and
the tests.

13 years agoRegen pot files
Todd C. Miller [Fri, 5 Aug 2011 17:35:38 +0000 (13:35 -0400)]
Regen pot files

--HG--
branch : 1.8

13 years agoAdd check for out of date message catalogs when doing "make dist".
Todd C. Miller [Fri, 5 Aug 2011 16:34:07 +0000 (12:34 -0400)]
Add check for out of date message catalogs when doing "make dist".

--HG--
branch : 1.8

13 years agoAdd check for out of date message catalogs when doing "make dist".
Todd C. Miller [Fri, 5 Aug 2011 16:33:40 +0000 (12:33 -0400)]
Add check for out of date message catalogs when doing "make dist".

13 years agoMake sure compiler supports static-libgcc before using it.
Todd C. Miller [Tue, 2 Aug 2011 20:14:42 +0000 (16:14 -0400)]
Make sure compiler supports static-libgcc before using it.

--HG--
branch : 1.8

13 years agoregen
Todd C. Miller [Tue, 2 Aug 2011 20:14:11 +0000 (16:14 -0400)]
regen

13 years agoMake sure compiler supports static-libgcc before using it.
Todd C. Miller [Tue, 2 Aug 2011 20:13:18 +0000 (16:13 -0400)]
Make sure compiler supports static-libgcc before using it.

13 years agoLink libsudo_noexec.la with LDLDFLAGS for -static-libgcc
Todd C. Miller [Mon, 1 Aug 2011 23:02:51 +0000 (19:02 -0400)]
Link libsudo_noexec.la with LDLDFLAGS for -static-libgcc

--HG--
branch : 1.8

13 years agoLink libsudo_noexec.la with LDLDFLAGS for -static-libgcc
Todd C. Miller [Mon, 1 Aug 2011 23:02:16 +0000 (19:02 -0400)]
Link libsudo_noexec.la with LDLDFLAGS for -static-libgcc

13 years agoAdd new Russian sudo translation from translationproject.org
Todd C. Miller [Sat, 30 Jul 2011 13:36:50 +0000 (09:36 -0400)]
Add new Russian sudo translation from translationproject.org
and rebuild the other translation files.

--HG--
branch : 1.8

13 years agoAdd new Russian sudo translation from translationproject.org
Todd C. Miller [Sat, 30 Jul 2011 13:35:56 +0000 (09:35 -0400)]
Add new Russian sudo translation from translationproject.org
and rebuild the other translation files.

13 years agoUpdate Finish and Polish translations from translationproject.org
Todd C. Miller [Fri, 29 Jul 2011 20:41:14 +0000 (16:41 -0400)]
Update Finish and Polish translations from translationproject.org

--HG--
branch : 1.8

13 years agoUpdate Finish and Polish translations from translationproject.org
Todd C. Miller [Fri, 29 Jul 2011 20:40:29 +0000 (16:40 -0400)]
Update Finish and Polish translations from translationproject.org

13 years agoGo back to escaping the command args for "sudo -i" and "sudo -s"
Todd C. Miller [Fri, 29 Jul 2011 14:50:52 +0000 (10:50 -0400)]
Go back to escaping the command args for "sudo -i" and "sudo -s"
before calling the plugin.  Otherwise, spaces in the command args
are not treated properly.  The sudoers plugin will unescape non-spaces
to make matching easier.

--HG--
branch : 1.8

13 years agoGo back to escaping the command args for "sudo -i" and "sudo -s"
Todd C. Miller [Fri, 29 Jul 2011 14:10:40 +0000 (10:10 -0400)]
Go back to escaping the command args for "sudo -i" and "sudo -s"
before calling the plugin.  Otherwise, spaces in the command args
are not treated properly.  The sudoers plugin will unescape non-spaces
to make matching easier.

13 years agoFix some potential problems found by the clang static analyzer,
Todd C. Miller [Thu, 28 Jul 2011 15:00:05 +0000 (11:00 -0400)]
Fix some potential problems found by the clang static analyzer,
none serious.

--HG--
branch : 1.8

13 years agoFix some potential problems found by the clang static analyzer,
Todd C. Miller [Thu, 28 Jul 2011 14:59:37 +0000 (10:59 -0400)]
Fix some potential problems found by the clang static analyzer,
none serious.

13 years agoUpdated Ukranian and Chinese (simplified) po files from
Todd C. Miller [Thu, 28 Jul 2011 13:09:19 +0000 (09:09 -0400)]
Updated Ukranian and Chinese (simplified) po files from
translationproject.org

--HG--
branch : 1.8

13 years agoUpdated Ukranian and Chinese (simplified) po files from
Todd C. Miller [Thu, 28 Jul 2011 13:08:50 +0000 (09:08 -0400)]
Updated Ukranian and Chinese (simplified) po files from
translationproject.org

13 years agoUpdated Polish translation from translationproject.org
Todd C. Miller [Wed, 27 Jul 2011 18:48:02 +0000 (14:48 -0400)]
Updated Polish translation from translationproject.org

--HG--
branch : 1.8

13 years agoUpdated Polish translation from translationproject.org
Todd C. Miller [Wed, 27 Jul 2011 18:47:31 +0000 (14:47 -0400)]
Updated Polish translation from translationproject.org

13 years agoRebuild pot files
Todd C. Miller [Wed, 27 Jul 2011 18:24:06 +0000 (14:24 -0400)]
Rebuild pot files

--HG--
branch : 1.8

13 years agoRebuild pot files
Todd C. Miller [Wed, 27 Jul 2011 18:23:45 +0000 (14:23 -0400)]
Rebuild pot files

13 years agoDon't try to audit failure if the runas user does not exist. We don't
Todd C. Miller [Wed, 27 Jul 2011 16:12:27 +0000 (12:12 -0400)]
Don't try to audit failure if the runas user does not exist.  We don't
have the user's command at this point so there is nothing to audit.
Add a NULL check in audit_success() and audit_failure() just to be
on the safe side.

--HG--
branch : 1.8

13 years agoAdd -g to CFLAG for PIE builds.
Todd C. Miller [Wed, 27 Jul 2011 16:12:15 +0000 (12:12 -0400)]
Add -g to CFLAG for PIE builds.

--HG--
branch : 1.8

13 years agoDon't try to audit failure if the runas user does not exist. We don't
Todd C. Miller [Wed, 27 Jul 2011 16:11:33 +0000 (12:11 -0400)]
Don't try to audit failure if the runas user does not exist.  We don't
have the user's command at this point so there is nothing to audit.
Add a NULL check in audit_success() and audit_failure() just to be
on the safe side.

13 years agoAdd -g to CFLAG for PIE builds.
Todd C. Miller [Wed, 27 Jul 2011 16:00:24 +0000 (12:00 -0400)]
Add -g to CFLAG for PIE builds.

13 years agoRemove fallback to per-group lookup when matching groups in sudoers.
Todd C. Miller [Mon, 25 Jul 2011 13:43:44 +0000 (09:43 -0400)]
Remove fallback to per-group lookup when matching groups in sudoers.
The sudo front-end will now use getgrouplist() to get the user's
list of groups if getgroups() fails or returns zero groups so we
always have a list of the user's groups.  For systems with
mbr_check_membership() which support more that NGROUPS_MAX groups
(Mac OS X), skip the call to getgroups() and use getgrouplist() so
we get all the groups.

--HG--
branch : 1.8

13 years agoRemove fallback to per-group lookup when matching groups in sudoers.
Todd C. Miller [Mon, 25 Jul 2011 13:17:18 +0000 (09:17 -0400)]
Remove fallback to per-group lookup when matching groups in sudoers.
The sudo front-end will now use getgrouplist() to get the user's
list of groups if getgroups() fails or returns zero groups so we
always have a list of the user's groups.  For systems with
mbr_check_membership() which support more that NGROUPS_MAX groups
(Mac OS X), skip the call to getgroups() and use getgrouplist() so
we get all the groups.

13 years agoFix setgroups() fallback code on EINVAL.
Todd C. Miller [Fri, 22 Jul 2011 19:34:01 +0000 (15:34 -0400)]
Fix setgroups() fallback code on EINVAL.

--HG--
branch : 1.8

13 years agoFix setgroups() fallback code on EINVAL.
Todd C. Miller [Fri, 22 Jul 2011 19:33:33 +0000 (15:33 -0400)]
Fix setgroups() fallback code on EINVAL.

13 years agoFix two PERM_INITIAL cases that were still using user_gids.
Todd C. Miller [Fri, 22 Jul 2011 19:14:09 +0000 (15:14 -0400)]
Fix two PERM_INITIAL cases that were still using user_gids.

--HG--
branch : 1.8

13 years agoFix two PERM_INITIAL cases that were still using user_gids.
Todd C. Miller [Fri, 22 Jul 2011 19:13:35 +0000 (15:13 -0400)]
Fix two PERM_INITIAL cases that were still using user_gids.

13 years agoAdd Polish sudo message catalog
Todd C. Miller [Fri, 22 Jul 2011 16:57:15 +0000 (12:57 -0400)]
Add Polish sudo message catalog

--HG--
branch : 1.8

13 years agoAdd Polish sudo message catalog
Todd C. Miller [Fri, 22 Jul 2011 16:56:33 +0000 (12:56 -0400)]
Add Polish sudo message catalog

13 years agouser_group is no longer used, remove it
Todd C. Miller [Fri, 22 Jul 2011 13:30:13 +0000 (09:30 -0400)]
user_group is no longer used, remove it

--HG--
branch : 1.8

13 years agouser_group is no longer used, remove it
Todd C. Miller [Fri, 22 Jul 2011 13:29:49 +0000 (09:29 -0400)]
user_group is no longer used, remove it

13 years agoAdd Polish translation from translationproject.org
Todd C. Miller [Thu, 21 Jul 2011 13:56:09 +0000 (09:56 -0400)]
Add Polish translation from translationproject.org

--HG--
branch : 1.8

13 years agoAdd a wrapper for setgroups() that trims off extra groups and retries
Todd C. Miller [Thu, 21 Jul 2011 13:56:00 +0000 (09:56 -0400)]
Add a wrapper for setgroups() that trims off extra groups and retries
if setgroups() fails.  Also add some missing addrefs for PERM_USER
and PERM_FULL_USER.

--HG--
branch : 1.8

13 years agoInstead of keeping separate groups and gids arrays, create struct
Todd C. Miller [Thu, 21 Jul 2011 13:55:48 +0000 (09:55 -0400)]
Instead of keeping separate groups and gids arrays, create struct
group_info and use it to store both, along with a count for each.
Cache group info on a per-user basis using getgrouplist() to get
the groups.  We no longer need special to special case the user or
list user for user_in_group() and thus no longer need to reset the
groups list when listing another user.

--HG--
branch : 1.8

13 years agoDon't rely on NULL since we don't include a header for it.
Todd C. Miller [Thu, 21 Jul 2011 13:55:35 +0000 (09:55 -0400)]
Don't rely on NULL since we don't include a header for it.

--HG--
branch : 1.8

13 years agoFix typo
Todd C. Miller [Thu, 21 Jul 2011 13:55:22 +0000 (09:55 -0400)]
Fix typo

--HG--
branch : 1.8

13 years agoDo not shadow global sudo_mode with a local variable in set_cmnd()
Todd C. Miller [Thu, 21 Jul 2011 13:55:07 +0000 (09:55 -0400)]
Do not shadow global sudo_mode with a local variable in set_cmnd()

--HG--
branch : 1.8

13 years agoAdd Polish translation from translationproject.org
Todd C. Miller [Wed, 20 Jul 2011 20:55:57 +0000 (16:55 -0400)]
Add Polish translation from translationproject.org

13 years agoAdd a wrapper for setgroups() that trims off extra groups and retries
Todd C. Miller [Wed, 20 Jul 2011 20:54:12 +0000 (16:54 -0400)]
Add a wrapper for setgroups() that trims off extra groups and retries
if setgroups() fails.  Also add some missing addrefs for PERM_USER
and PERM_FULL_USER.

13 years agoInstead of keeping separate groups and gids arrays, create struct
Todd C. Miller [Wed, 20 Jul 2011 15:58:45 +0000 (11:58 -0400)]
Instead of keeping separate groups and gids arrays, create struct
group_info and use it to store both, along with a count for each.
Cache group info on a per-user basis using getgrouplist() to get
the groups.  We no longer need special to special case the user or
list user for user_in_group() and thus no longer need to reset the
groups list when listing another user.

13 years agoDon't rely on NULL since we don't include a header for it.
Todd C. Miller [Wed, 20 Jul 2011 14:15:59 +0000 (10:15 -0400)]
Don't rely on NULL since we don't include a header for it.