From f327a19f3444356ab2df364f8fc17b0f11f98f5f Mon Sep 17 00:00:00 2001
From: "Todd C. Miller" <Todd.Miller@sudo.ws>
Date: Wed, 11 Aug 2021 14:10:05 -0600
Subject: [PATCH] Use same check for intercepted commands as
 log_server_accept(). Previously, log_server_reject() and log_server_alert()
 just checked whether client_closure has been set.

---
 plugins/sudoers/logging.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/plugins/sudoers/logging.c b/plugins/sudoers/logging.c
index c453ab4a4..668c4d87b 100644
--- a/plugins/sudoers/logging.c
+++ b/plugins/sudoers/logging.c
@@ -127,7 +127,7 @@ log_server_reject(struct eventlog *evlog, const char *message,
     if (SLIST_EMPTY(&def_log_servers))
 	debug_return_bool(true);
 
-    if (client_closure != NULL) {
+    if (ISSET(sudo_mode, MODE_POLICY_INTERCEPTED)) {
 	/* Older servers don't support multiple commands per session. */
 	if (!client_closure->subcommands)
 	    debug_return_bool(true);
@@ -183,7 +183,7 @@ log_server_alert(struct eventlog *evlog, struct timespec *now,
 	}
     }
 
-    if (client_closure != NULL) {
+    if (ISSET(sudo_mode, MODE_POLICY_INTERCEPTED)) {
 	/* Older servers don't support multiple commands per session. */
 	if (!client_closure->subcommands)
 	    debug_return_bool(true);