Skip to content

Instantly share code, notes, and snippets.

@saidelike

saidelike/sudo-baron-samedit-10.cpp

Created July 6, 2021 10:30
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save saidelike/95f26ddc4f6dbe65d7a504b334541930 to your computer and use it in GitHub Desktop.
Save saidelike/95f26ddc4f6dbe65d7a504b334541930 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
sudo-baron-samedit-10.cpp
//sudo_1.8.23-9.el7/plugins/sudoers/sudoers.c
int
sudoers_policy_main(int argc, char * const argv[], int pwflag, char *env_add[],
void *closure)
{
...
/* Find command in path and apply per-command Defaults. */
[a] cmnd_status = set_cmnd();
if (cmnd_status == NOT_FOUND_ERROR)
goto done;
/* Check for -C overriding def_closefrom. */
if (user_closefrom >= 0 && user_closefrom != def_closefrom) {
if (!def_closefrom_override) {
/* XXX - audit? */
sudo_warnx(U_("you are not permitted to use the -C option"));
goto bad;
}
def_closefrom = user_closefrom;
}
[b] [... lots of code here ...]
/* Require a password if sudoers says so. */
[c] switch (check_user(validated, sudo_mode)) {
case true:
/* user authenticated successfully. */
break;
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment