From ddb1350b791d8c707d1b0e89016899ac23abd4fd Mon Sep 17 00:00:00 2001 From: "Todd C. Miller" Date: Fri, 26 Feb 2021 12:52:49 -0700 Subject: [PATCH] Sync with fuzz_sudoers changes. --- .../sudoers/regress/fuzz/fuzz_sudoers.out.ok | 118 +++++++++++++++++- 1 file changed, 117 insertions(+), 1 deletion(-) diff --git a/plugins/sudoers/regress/fuzz/fuzz_sudoers.out.ok b/plugins/sudoers/regress/fuzz/fuzz_sudoers.out.ok index 13d19bd78..11f2ca847 100644 --- a/plugins/sudoers/regress/fuzz/fuzz_sudoers.out.ok +++ b/plugins/sudoers/regress/fuzz/fuzz_sudoers.out.ok @@ -47,6 +47,37 @@ Runas and Command-specific defaults for millert: Defaults>root !set_logname Defaults!/usr/bin/more, /usr/bin/pg, /usr/bin/less noexec +User millert may run the following commands on localhost: + +Sudoers entry: + RunAsUsers: ALL + Commands: + ALL + +Sudoers entry: + RunAsUsers: root + Options: !authenticate + Commands: + ALL + +Matching Defaults entries for millert on localhost: + syslog=auth, runcwd=~, !lecture, runchroot=*, !authenticate + +Runas and Command-specific defaults for millert: + Defaults>root !set_logname Defaults!/usr/bin/more, /usr/bin/pg, /usr/bin/less noexec + + +User millert may run the following commands on localhost: + (ALL) ALL + (root) NOPASSWD: ALL + +Matching Defaults entries for millert on localhost: + syslog=auth, runcwd=~, !lecture, runchroot=*, !authenticate + +Runas and Command-specific defaults for millert: + Defaults>root !set_logname Defaults!/usr/bin/more, /usr/bin/pg, /usr/bin/less noexec + + User millert may run the following commands on localhost: Sudoers entry: @@ -108,6 +139,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -122,6 +157,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -136,6 +175,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -221,6 +264,32 @@ Runas and Command-specific defaults for millert: Defaults>#123 set_home +User millert may run the following commands on localhost: + +Sudoers entry: + RunAsUsers: root + Commands: + ALL + +Sudoers entry: + RunAsUsers: root + Commands: + ALL + +Runas and Command-specific defaults for millert: + Defaults>#123 set_home + Defaults>#123 set_home + + +User millert may run the following commands on localhost: + (root) ALL + (root) ALL + +Runas and Command-specific defaults for millert: + Defaults>#123 set_home + Defaults>#123 set_home + + User millert may run the following commands on localhost: Sudoers entry: @@ -292,6 +361,18 @@ User millert may run the following commands on localhost: User millert may run the following commands on localhost: +Sudoers entry: + RunAsUsers: root + Commands: + sha224:d06a2617c98d377c250edd470fd5e576327748d82915d6e33b5f8db1, sha224:d7910e1967342b4605cb73a550944044c631cd3514001900966962ac /bin/ls + sha256:hOtoe/iK6SlGg7w4BfZBBdSsXjUmTJ5+ts51yjh7vkM=, sha256:1IXHRCxXgSnIEnb+xBz4PAfWaPdXIBWKFF0QCwxJ5G4= /bin/sh + sha512:srzYEQ2aqzm+it3f74opTMkIImZRLxBARVpb0g9RSouJYdLt7DTRMEY4Ry9NyaOiDoUIplpNjqYH0JMYPVdFnw /bin/kill + +User millert may run the following commands on localhost: + (root) sha224:d06a2617c98d377c250edd470fd5e576327748d82915d6e33b5f8db1, sha224:d7910e1967342b4605cb73a550944044c631cd3514001900966962ac /bin/ls, sha256:hOtoe/iK6SlGg7w4BfZBBdSsXjUmTJ5+ts51yjh7vkM=, sha256:1IXHRCxXgSnIEnb+xBz4PAfWaPdXIBWKFF0QCwxJ5G4= /bin/sh, sha512:srzYEQ2aqzm+it3f74opTMkIImZRLxBARVpb0g9RSouJYdLt7DTRMEY4Ry9NyaOiDoUIplpNjqYH0JMYPVdFnw /bin/kill + +User millert may run the following commands on localhost: + Sudoers entry: RunAsUsers: root Commands: @@ -319,6 +400,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -333,6 +418,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -347,6 +436,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -368,7 +461,6 @@ user3 ALL = TIMEOUT=10m30ss /usr/bin/id sudoers:8:21: invalid timeout value user4 ALL = TIMEOUT=14g /usr/bin/id ^~~ -fuzz_sudoers: sudoers:2:26: value "2d8h10m59ss" is invalid for option "command_timeout" Executed regress/sudoers/test18.in Running: regress/sudoers/test19.in User root is not allowed to run sudo on localhost. @@ -379,6 +471,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -393,6 +489,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -407,6 +507,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -421,6 +525,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -435,6 +543,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost. @@ -449,6 +561,10 @@ User millert is not allowed to run sudo on localhost. User millert is not allowed to run sudo on localhost. +User millert is not allowed to run sudo on localhost. + +User millert is not allowed to run sudo on localhost. + User operator is not allowed to run sudo on localhost. User operator is not allowed to run sudo on localhost.