aboutsummaryrefslogtreecommitdiff
path: root/doas.c
Commit message (Expand)AuthorAgeFilesLines
* remove includes.h and move the prototypes to doas.hDuncan Overbruck0 min.1-1/+1
* use config.h and link objects instead of libopenbsd.aDuncan Overbruck0 min.1-0/+2
* check for login_cap.h and use setusercontext if availableDuncan Overbruck0 min.1-0/+10
* Add nolog option to avoid syslog(3)kn0 min.1-2/+5
* Improve error message on missing permissionkn0 min.1-1/+1
* Honor --sysconfdir option for doas.conf path.Sunil Nimmagadda0 min.1-1/+1
* doas.c: initialize mygetpwuid_r resultDuncan Overbruck0 min.1-0/+2
* doas.c: remove dead ifdefs to unclutter codeDuncan Overbruck0 min.1-190/+40
* add some checks to avoid UID_MAX (-1) here. this is not problematic with the ...tedu0 min.1-2/+6
* correct some unveil(2) violations due to "login.conf.db" access (the .db vers...semarie0 min.1-1/+2
* fixup unveilDuncan Overbruck0 min.1-2/+1
* snprintf/vsnprintf return < 0 on error, rather than -1.deraadt0 min.1-0/+40
* fix some more fallout from setting path in setusercontext. restore previous b...tedu0 min.1-1/+4
* setusercontext resets PATH (which we want). but then it becomes impossible to...tedu0 min.1-0/+18
* redo the environment inheritance to not inherit. it was intended to make life...tedu0 min.1-1/+3
* a few cleanups and simplifications possible now that static pw is gone. noted...tedu0 min.1-15/+14
* use getpwuid_r to avoid problems with hidden static storage. ok deraadt lteo ...tedu0 min.1-35/+58
* clear the password even after a mismatchtedu0 min.1-0/+1
* pam: add timestamp supportDuncaen0 min.1-4/+2
* timestamp: rename and simplifyDuncaen0 min.1-3/+5
* doas: remove unnecessary configure checks, move shadow to its own fileDuncaen0 min.1-86/+46
* doas: remove v flag, not neccessary, upstream doesn't have it and __DATE__ is...Duncaen0 min.1-15/+1
* doas.c: put login_style in ifdef to compile on LinuxIvy Foster0 min.1-0/+2
* add initial timestamp file support, disabled by default and only with shadow ...Duncaen0 min.1-0/+19
* for password failure, print Authorization failed instead of EPERM. will make ...tedu0 min.1-1/+1
* a little const here and there to prevent rules from changingtedu0 min.1-3/+3
* add a geteuid check to make sure we're root before plowing into setauth. spar...tedu0 min.1-0/+3
* Add back the call to yyparse() that was accidentally dropped in the previous ...tb0 min.1-0/+1
* move yyparse decl next to yyfptedu0 min.1-1/+1
* as a result of the env rework, arraylen() is only used in parse.y. move it th...tedu0 min.1-14/+0
* use static in the right places to seperate modules better ok teduderaadt0 min.1-1/+0
* the sudo timeout was 5 minutes i believe, so we'll match that.tedu0 min.1-1/+1
* add support for the verified auth ioctls using 'persist' rules. ok deraadt he...tedu0 min.1-9/+28
* unconst these parameters; i won't be changing bsd auth today.tedu0 min.1-1/+1
* move the authentication code to a functiontedu0 min.1-67/+83
* Add closefrom(2) from openssh-portableDuncaen0 min.1-1/+1
* Print -a flag in usage() only if HAVE_BSD_AUTH_HPhilip K0 min.1-2/+5
* The string with path to shell could be taken directly from struct passwd. At ...zhuk0 min.1-3/+5
* add "recvfd" to doas(1) for use with skey.semarie0 min.1-1/+1
* use posix correct optstringDuncaen0 min.1-1/+1
* move a space to the correct spottedu0 min.1-2/+2
* remove unnecessary warning outputDuncaen0 min.1-1/+0
* add --without-pam configure option to allow passwd/shadow authDuncaen0 min.1-5/+47
* fix err messagesDuncaen0 min.1-2/+2
* some more cleanup and refactoring of pam codeDuncaen0 min.1-1/+1
* Move the RB_ code from doas.h to env.c, and limit the environment interface t...martijn0 min.1-5/+3
* the environment handling code was showing its age. just because environ is a ...tedu0 min.1-100/+4
* open pam sessions with right user and remove setusercontext shimDuncaen0 min.1-7/+15
* Revert "sync with upstream (setenv)"Duncaen0 min.1-78/+1
* sync with upstream (setenv)Duncaen0 min.1-1/+78