#ifndef lint /*static char yysccsid[] = "from: @(#)yaccpar 1.9 (Berkeley) 02/21/93";*/ static char yyrcsid[] #if __GNUC__ >= 2 __attribute__ ((unused)) #endif /* __GNUC__ >= 2 */ = "$OpenBSD: skeleton.c,v 1.23 2004/03/12 13:39:50 henning Exp $"; #endif #include #define YYBYACC 1 #define YYMAJOR 1 #define YYMINOR 9 #define YYLEX yylex() #define YYEMPTY -1 #define yyclearin (yychar=(YYEMPTY)) #define yyerrok (yyerrflag=0) #define YYRECOVERING() (yyerrflag!=0) #define YYPREFIX "yy" #line 2 "gram.y" /* * Copyright (c) 1996, 1998-2005 Todd C. Miller * * Permission to use, copy, modify, and distribute this software for any * purpose with or without fee is hereby granted, provided that the above * copyright notice and this permission notice appear in all copies. * * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. * * Sponsored in part by the Defense Advanced Research Projects * Agency (DARPA) and Air Force Research Laboratory, Air Force * Materiel Command, USAF, under agreement number F39502-99-1-0512. */ #include #include #include #include #ifdef STDC_HEADERS # include # include #else # ifdef HAVE_STDLIB_H # include # endif #endif /* STDC_HEADERS */ #ifdef HAVE_STRING_H # include #else # ifdef HAVE_STRINGS_H # include # endif #endif /* HAVE_STRING_H */ #ifdef HAVE_UNISTD_H # include #endif /* HAVE_UNISTD_H */ #if defined(YYBISON) && defined(HAVE_ALLOCA_H) && !defined(__GNUC__) # include #endif /* YYBISON && HAVE_ALLOCA_H && !__GNUC__ */ #include "sudo.h" #include "parse.h" #ifndef lint __unused static const char rcsid[] = "$Sudo$"; #endif /* lint */ /* * Globals */ extern int sudolineno; extern char *sudoers; int parse_error; int pedantic = FALSE; int verbose = FALSE; int errorlineno = -1; char *errorfile = NULL; struct defaults *defaults; struct userspec *userspecs; /* * Local protoypes */ static void add_defaults __P((int, struct member *, struct defaults *)); static void add_userspec __P((struct member *, struct privilege *)); void yyerror __P((const char *)); void yyerror(s) const char *s; { /* Save the line the first error occurred on. */ if (errorlineno == -1) { errorlineno = sudolineno ? sudolineno - 1 : 0; errorfile = estrdup(sudoers); } if (verbose && s != NULL) { #ifndef TRACELEXER (void) fprintf(stderr, ">>> %s: %s near line %d <<<\n", sudoers, s, sudolineno ? sudolineno - 1 : 0); #else (void) fprintf(stderr, "<*> "); #endif } parse_error = TRUE; } #line 100 "gram.y" #ifndef YYSTYPE_DEFINED #define YYSTYPE_DEFINED typedef union { struct cmndspec *cmndspec; struct defaults *defaults; struct member *member; struct privilege *privilege; struct sudo_command command; struct cmndtag tag; char *string; int tok; } YYSTYPE; #endif /* YYSTYPE_DEFINED */ #line 131 "gram.c" #define COMMAND 257 #define ALIAS 258 #define DEFVAR 259 #define NTWKADDR 260 #define NETGROUP 261 #define USERGROUP 262 #define WORD 263 #define DEFAULTS 264 #define DEFAULTS_HOST 265 #define DEFAULTS_USER 266 #define DEFAULTS_RUNAS 267 #define DEFAULTS_CMND 268 #define RUNAS 269 #define NOPASSWD 270 #define PASSWD 271 #define NOEXEC 272 #define EXEC 273 #define MONITOR 274 #define NOMONITOR 275 #define ALL 276 #define COMMENT 277 #define HOSTALIAS 278 #define CMNDALIAS 279 #define USERALIAS 280 #define RUNASALIAS 281 #define ERROR 282 #define YYERRCODE 256 #if defined(__cplusplus) || defined(__STDC__) const short yylhs[] = #else short yylhs[] = #endif { -1, 0, 0, 21, 21, 22, 22, 22, 22, 22, 22, 22, 22, 22, 22, 22, 22, 4, 4, 3, 3, 3, 3, 3, 19, 19, 18, 10, 10, 8, 8, 8, 8, 8, 2, 2, 1, 6, 6, 14, 14, 13, 13, 11, 11, 15, 15, 15, 15, 15, 20, 20, 20, 20, 20, 20, 20, 5, 5, 5, 24, 24, 27, 9, 9, 25, 25, 28, 7, 7, 26, 26, 29, 23, 23, 30, 17, 17, 12, 12, 16, 16, 16, 16, 16, }; #if defined(__cplusplus) || defined(__STDC__) const short yylen[] = #else short yylen[] = #endif { 2, 0, 1, 1, 2, 1, 2, 2, 2, 2, 2, 2, 2, 3, 3, 3, 3, 1, 3, 1, 2, 3, 3, 3, 1, 3, 3, 1, 2, 1, 1, 1, 1, 1, 1, 3, 3, 1, 2, 0, 2, 1, 3, 1, 2, 1, 1, 1, 1, 1, 0, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 3, 3, 1, 3, 1, 3, 3, 1, 3, 1, 3, 3, 1, 3, 3, 1, 3, 1, 2, 1, 1, 1, 1, 1, }; #if defined(__cplusplus) || defined(__STDC__) const short yydefred[] = #else short yydefred[] = #endif { 0, 0, 80, 82, 83, 84, 0, 0, 0, 0, 0, 81, 5, 0, 0, 0, 0, 0, 0, 76, 78, 0, 0, 3, 6, 0, 0, 17, 0, 29, 32, 31, 33, 30, 0, 27, 0, 63, 0, 45, 47, 48, 49, 46, 0, 41, 0, 43, 59, 58, 57, 0, 37, 68, 0, 0, 0, 60, 0, 0, 65, 0, 0, 73, 0, 0, 70, 79, 0, 0, 24, 0, 4, 0, 0, 0, 20, 0, 28, 0, 0, 0, 44, 0, 0, 38, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 77, 0, 0, 21, 22, 23, 18, 64, 42, 69, 0, 61, 0, 66, 0, 74, 0, 71, 0, 34, 0, 50, 25, 0, 0, 0, 35, 51, 52, 53, 54, 55, 56, 36, }; #if defined(__cplusplus) || defined(__STDC__) const short yydgoto[] = #else short yydgoto[] = #endif { 18, 115, 116, 27, 28, 52, 53, 54, 35, 69, 37, 45, 19, 46, 117, 47, 20, 21, 70, 71, 121, 22, 23, 62, 56, 59, 65, 57, 60, 66, 63, }; #if defined(__cplusplus) || defined(__STDC__) const short yysindex[] = #else short yysindex[] = #endif { -33, -275, 0, 0, 0, 0, -10, -5, 265, 292, 253, 0, 0, -253, -251, -250, -248, -243, 0, 0, 0, -22, -33, 0, 0, -13, -242, 0, -28, 0, 0, 0, 0, 0, -211, 0, -19, 0, -9, 0, 0, 0, 0, 0, -222, 0, -7, 0, 0, 0, 0, -245, 0, 0, 13, -40, -15, 0, -17, -3, 0, 2, 3, 0, 6, 4, 0, 0, 265, -2, 0, 10, 0, -212, -199, -194, 0, -10, 0, -5, -28, -28, 0, 292, -28, 0, 253, -28, -5, -253, 253, -251, 265, -250, 292, -248, 0, -198, -5, 0, 0, 0, 0, 0, 0, 0, 26, 0, 28, 0, 29, 0, 31, 0, 292, 0, 32, 0, 0, 31, -198, 263, 0, 0, 0, 0, 0, 0, 0, 0,}; #if defined(__cplusplus) || defined(__STDC__) const short yyrindex[] = #else short yyrindex[] = #endif { 77, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 78, 0, 0, 1, 0, 0, 157, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 183, 0, 0, 209, 0, 0, 237, 0, 0, 458, 0, 0, 0, 0, 0, 492, 0, 0, 0, 0, 0, 0, 0, 0, 519, 545, 0, 0, 571, 0, 0, 597, 0, 0, 0, 0, 0, 0, 0, 0, 0, 289, 0, 0, 0, 0, 0, 0, 0, 0, 27, 0, 53, 0, 79, 0, 105, 0, 0, 0, 131, 0, 0, 315, 289, 0, 0, 0, 0, 0, 0, 0, 0, 0,}; #if defined(__cplusplus) || defined(__STDC__) const short yygindex[] = #else short yygindex[] = #endif { 0, -39, 0, 5, 20, 33, -83, 7, 46, -1, 11, 8, 15, -85, 0, 45, 75, -4, 9, 0, 0, 0, 71, 0, 0, 0, 0, 12, 17, 14, 21, }; #define YYTABLESIZE 878 #if defined(__cplusplus) || defined(__STDC__) const short yytable[] = #else short yytable[] = #endif { 17, 19, 24, 105, 38, 55, 36, 58, 61, 112, 64, 34, 48, 49, 26, 2, 77, 76, 3, 4, 5, 88, 68, 26, 26, 79, 26, 62, 34, 119, 74, 50, 75, 11, 19, 68, 39, 83, 129, 40, 41, 42, 79, 89, 90, 19, 26, 29, 73, 30, 31, 99, 32, 67, 43, 91, 80, 86, 81, 97, 62, 93, 95, 92, 100, 33, 84, 94, 98, 101, 79, 114, 86, 68, 87, 83, 120, 1, 2, 75, 78, 122, 102, 96, 85, 62, 67, 106, 110, 82, 103, 104, 67, 72, 0, 0, 0, 108, 0, 0, 0, 107, 0, 0, 0, 72, 0, 118, 109, 113, 0, 67, 75, 0, 111, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 26, 0, 0, 0, 0, 0, 75, 72, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 12, 0, 0, 0, 0, 0, 72, 26, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 9, 0, 0, 0, 0, 0, 26, 12, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 10, 0, 0, 0, 0, 0, 0, 9, 0, 0, 0, 0, 0, 0, 1, 0, 2, 0, 0, 3, 4, 5, 6, 7, 8, 9, 10, 29, 8, 30, 31, 25, 32, 10, 11, 12, 13, 14, 15, 16, 25, 25, 0, 25, 29, 33, 30, 31, 19, 32, 19, 0, 0, 19, 19, 19, 19, 19, 19, 19, 19, 8, 33, 25, 0, 0, 0, 0, 19, 19, 19, 19, 19, 19, 62, 0, 62, 51, 0, 62, 62, 62, 62, 62, 62, 62, 62, 51, 0, 17, 0, 0, 0, 0, 62, 62, 62, 62, 62, 62, 67, 0, 67, 0, 0, 67, 67, 67, 67, 67, 67, 67, 67, 39, 0, 0, 44, 0, 0, 0, 67, 67, 67, 67, 67, 67, 75, 0, 75, 0, 0, 75, 75, 75, 75, 75, 75, 75, 75, 40, 0, 0, 0, 0, 0, 0, 75, 75, 75, 75, 75, 75, 72, 0, 72, 0, 0, 72, 72, 72, 72, 72, 72, 72, 72, 0, 0, 0, 0, 0, 0, 0, 72, 72, 72, 72, 72, 72, 26, 0, 26, 0, 0, 26, 26, 26, 26, 26, 26, 26, 26, 0, 0, 0, 0, 0, 0, 0, 26, 26, 26, 26, 26, 26, 12, 0, 12, 0, 0, 12, 12, 12, 12, 12, 12, 12, 12, 0, 0, 0, 0, 0, 0, 0, 12, 12, 12, 12, 12, 12, 9, 0, 9, 0, 0, 9, 9, 9, 9, 9, 9, 9, 9, 0, 0, 0, 0, 0, 0, 11, 9, 9, 9, 9, 9, 9, 10, 0, 10, 0, 0, 10, 10, 10, 10, 10, 10, 10, 10, 0, 0, 0, 0, 0, 0, 0, 10, 10, 10, 10, 10, 10, 11, 7, 8, 0, 8, 0, 0, 8, 8, 8, 8, 8, 8, 8, 8, 0, 0, 0, 0, 48, 49, 0, 8, 8, 8, 8, 8, 8, 15, 48, 49, 0, 2, 0, 7, 3, 4, 5, 50, 0, 0, 0, 123, 124, 125, 126, 127, 128, 50, 0, 11, 0, 0, 0, 13, 39, 39, 0, 0, 39, 0, 15, 40, 41, 42, 0, 0, 0, 39, 39, 39, 39, 39, 39, 39, 0, 0, 43, 0, 0, 14, 40, 40, 0, 0, 0, 0, 13, 0, 0, 0, 0, 0, 0, 40, 40, 40, 40, 40, 40, 40, 0, 0, 0, 0, 0, 16, 0, 0, 0, 0, 0, 0, 14, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 16, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 11, 0, 11, 0, 0, 11, 11, 11, 11, 11, 11, 11, 11, 0, 0, 0, 0, 0, 0, 0, 11, 11, 11, 11, 11, 11, 0, 0, 0, 0, 0, 0, 0, 0, 7, 0, 7, 0, 0, 7, 7, 7, 7, 7, 7, 7, 7, 0, 0, 0, 0, 0, 0, 0, 7, 7, 7, 7, 7, 7, 0, 15, 0, 15, 0, 0, 15, 15, 15, 15, 15, 15, 15, 15, 0, 0, 0, 0, 0, 0, 0, 15, 15, 15, 15, 15, 15, 13, 0, 13, 0, 0, 13, 13, 13, 13, 13, 13, 13, 13, 0, 0, 0, 0, 0, 0, 0, 13, 13, 13, 13, 13, 13, 14, 0, 14, 0, 0, 14, 14, 14, 14, 14, 14, 14, 14, 0, 0, 0, 0, 0, 0, 0, 14, 14, 14, 14, 14, 14, 16, 0, 16, 0, 0, 16, 16, 16, 16, 16, 16, 16, 16, 0, 0, 0, 0, 0, 0, 0, 16, 16, 16, 16, 16, 16, }; #if defined(__cplusplus) || defined(__STDC__) const short yycheck[] = #else short yycheck[] = #endif { 33, 0, 277, 86, 8, 258, 7, 258, 258, 94, 258, 33, 257, 258, 33, 258, 44, 259, 261, 262, 263, 61, 44, 33, 33, 44, 33, 0, 33, 114, 43, 276, 45, 276, 33, 44, 258, 44, 121, 261, 262, 263, 44, 58, 61, 44, 33, 258, 61, 260, 261, 263, 263, 0, 276, 58, 36, 44, 38, 61, 33, 58, 58, 61, 263, 276, 46, 61, 58, 263, 44, 269, 44, 44, 54, 44, 44, 0, 0, 0, 34, 120, 77, 68, 51, 58, 33, 88, 92, 44, 79, 83, 17, 22, -1, -1, -1, 90, -1, -1, -1, 89, -1, -1, -1, 0, -1, 98, 91, 95, -1, 58, 33, -1, 93, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 0, -1, -1, -1, -1, -1, 58, 33, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 0, -1, -1, -1, -1, -1, 58, 33, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 0, -1, -1, -1, -1, -1, 58, 33, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 0, -1, -1, -1, -1, -1, -1, 33, -1, -1, -1, -1, -1, -1, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, 258, 0, 260, 261, 259, 263, 33, 276, 277, 278, 279, 280, 281, 259, 259, -1, 259, 258, 276, 260, 261, 256, 263, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, 33, 276, 259, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, 33, -1, 261, 262, 263, 264, 265, 266, 267, 268, 33, -1, 33, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, 33, -1, -1, 33, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, 33, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, 0, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 33, 0, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, 257, 258, -1, 276, 277, 278, 279, 280, 281, 0, 257, 258, -1, 258, -1, 33, 261, 262, 263, 276, -1, -1, -1, 270, 271, 272, 273, 274, 275, 276, -1, 276, -1, -1, -1, 0, 257, 258, -1, -1, 258, -1, 33, 261, 262, 263, -1, -1, -1, 270, 271, 272, 273, 274, 275, 276, -1, -1, 276, -1, -1, 0, 257, 258, -1, -1, -1, -1, 33, -1, -1, -1, -1, -1, -1, 270, 271, 272, 273, 274, 275, 276, -1, -1, -1, -1, -1, 0, -1, -1, -1, -1, -1, -1, 33, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 33, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, -1, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, -1, -1, -1, -1, -1, -1, -1, -1, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, -1, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, 256, -1, 258, -1, -1, 261, 262, 263, 264, 265, 266, 267, 268, -1, -1, -1, -1, -1, -1, -1, 276, 277, 278, 279, 280, 281, }; #define YYFINAL 18 #ifndef YYDEBUG #define YYDEBUG 0 #endif #define YYMAXTOKEN 282 #if YYDEBUG #if defined(__cplusplus) || defined(__STDC__) const char * const yyname[] = #else char *yyname[] = #endif { "end-of-file",0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, "'!'",0,0,0,0,0,0,0,0,0,"'+'","','","'-'",0,0,0,0,0,0,0,0,0,0,0,0,"':'",0,0, "'='",0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, "COMMAND","ALIAS","DEFVAR","NTWKADDR","NETGROUP","USERGROUP","WORD","DEFAULTS", "DEFAULTS_HOST","DEFAULTS_USER","DEFAULTS_RUNAS","DEFAULTS_CMND","RUNAS", "NOPASSWD","PASSWD","NOEXEC","EXEC","MONITOR","NOMONITOR","ALL","COMMENT", "HOSTALIAS","CMNDALIAS","USERALIAS","RUNASALIAS","ERROR", }; #if defined(__cplusplus) || defined(__STDC__) const char * const yyrule[] = #else char *yyrule[] = #endif {"$accept : file", "file :", "file : line", "line : entry", "line : line entry", "entry : COMMENT", "entry : error COMMENT", "entry : userlist privileges", "entry : USERALIAS useraliases", "entry : HOSTALIAS hostaliases", "entry : CMNDALIAS cmndaliases", "entry : RUNASALIAS runasaliases", "entry : DEFAULTS defaults_list", "entry : DEFAULTS_USER userlist defaults_list", "entry : DEFAULTS_RUNAS runaslist defaults_list", "entry : DEFAULTS_HOST hostlist defaults_list", "entry : DEFAULTS_CMND cmndlist defaults_list", "defaults_list : defaults_entry", "defaults_list : defaults_list ',' defaults_entry", "defaults_entry : DEFVAR", "defaults_entry : '!' DEFVAR", "defaults_entry : DEFVAR '=' WORD", "defaults_entry : DEFVAR '+' WORD", "defaults_entry : DEFVAR '-' WORD", "privileges : privilege", "privileges : privileges ':' privilege", "privilege : hostlist '=' cmndspeclist", "ophost : host", "ophost : '!' host", "host : ALIAS", "host : ALL", "host : NETGROUP", "host : NTWKADDR", "host : WORD", "cmndspeclist : cmndspec", "cmndspeclist : cmndspeclist ',' cmndspec", "cmndspec : runasspec cmndtag opcmnd", "opcmnd : cmnd", "opcmnd : '!' cmnd", "runasspec :", "runasspec : RUNAS runaslist", "runaslist : oprunasuser", "runaslist : runaslist ',' oprunasuser", "oprunasuser : runasuser", "oprunasuser : '!' runasuser", "runasuser : ALIAS", "runasuser : ALL", "runasuser : NETGROUP", "runasuser : USERGROUP", "runasuser : WORD", "cmndtag :", "cmndtag : cmndtag NOPASSWD", "cmndtag : cmndtag PASSWD", "cmndtag : cmndtag NOEXEC", "cmndtag : cmndtag EXEC", "cmndtag : cmndtag MONITOR", "cmndtag : cmndtag NOMONITOR", "cmnd : ALL", "cmnd : ALIAS", "cmnd : COMMAND", "hostaliases : hostalias", "hostaliases : hostaliases ':' hostalias", "hostalias : ALIAS '=' hostlist", "hostlist : ophost", "hostlist : hostlist ',' ophost", "cmndaliases : cmndalias", "cmndaliases : cmndaliases ':' cmndalias", "cmndalias : ALIAS '=' cmndlist", "cmndlist : opcmnd", "cmndlist : cmndlist ',' opcmnd", "runasaliases : runasalias", "runasaliases : runasaliases ':' runasalias", "runasalias : ALIAS '=' runaslist", "useraliases : useralias", "useraliases : useraliases ':' useralias", "useralias : ALIAS '=' userlist", "userlist : opuser", "userlist : userlist ',' opuser", "opuser : user", "opuser : '!' user", "user : ALIAS", "user : ALL", "user : NETGROUP", "user : USERGROUP", "user : WORD", }; #endif #ifdef YYSTACKSIZE #undef YYMAXDEPTH #define YYMAXDEPTH YYSTACKSIZE #else #ifdef YYMAXDEPTH #define YYSTACKSIZE YYMAXDEPTH #else #define YYSTACKSIZE 10000 #define YYMAXDEPTH 10000 #endif #endif #define YYINITSTACKSIZE 200 int yydebug; int yynerrs; int yyerrflag; int yychar; short *yyssp; YYSTYPE *yyvsp; YYSTYPE yyval; YYSTYPE yylval; short *yyss; short *yysslim; YYSTYPE *yyvs; int yystacksize; #line 498 "gram.y" /* * Add a list of defaults structures to the defaults list. * The binding, if non-NULL, specifies a list of hosts, users, or * runas users the entries apply to (specified by the type). */ static void add_defaults(type, binding, defs) int type; struct member *binding; struct defaults *defs; { struct defaults *d; /* * Set type and binding (who it applies to) for new entries. */ for (d = defs; d != NULL; d = d->next) { d->type = type; d->binding = binding; } if (defaults == NULL) defaults = defs; else LIST_APPEND(defaults, defs); } /* * Allocate a new struct userspec, populate it, and insert it at the * and of the userspecs list. */ static void add_userspec(members, privs) struct member *members; struct privilege *privs; { struct userspec *u; u = emalloc(sizeof(*u)); u->user = members; u->privileges = privs; u->last = NULL; u->next = NULL; if (userspecs == NULL) userspecs = u; else LIST_APPEND(userspecs, u); } /* * Free up space used by data structures from a previous parser run and sets * the current sudoers file to path. */ void init_parser(path, quiet) char *path; int quiet; { struct defaults *d; struct member *m, *lastbinding; struct userspec *us; struct privilege *priv; struct cmndspec *cs; VOID *next; for (us = userspecs; us != NULL; us = next) { for (m = us->user; m != NULL; m = next) { next = m->next; if (m->name != NULL) free(m->name); free(m); } for (priv = us->privileges; priv != NULL; priv = next) { for (m = priv->hostlist; m != NULL; m = next) { next = m->next; if (m->name != NULL) free(m->name); free(m); } for (cs = priv->cmndlist; cs != NULL; cs = next) { for (m = cs->runaslist; m != NULL; m = next) { next = m->next; if (m->name != NULL) free(m->name); free(m); } if (cs->cmnd->name != NULL) free(cs->cmnd->name); free(cs->cmnd); next = cs->next; free(cs); } next = priv->next; free(priv); } next = us->next; free(us); } userspecs = NULL; lastbinding = NULL; for (d = defaults; d != NULL; d = next) { if (d->binding != lastbinding) { for (m = d->binding; m != NULL; m = next) { next = m->next; if (m->name != NULL) free(m->name); free(m); } lastbinding = d->binding; } next = d->next; free(d->var); if (d->val != NULL) free(d->val); free(d); } defaults = NULL; init_aliases(); if (sudoers != NULL) free(sudoers); sudoers = estrdup(path); parse_error = FALSE; errorlineno = -1; sudolineno = 1; verbose = !quiet; } #line 678 "gram.c" /* allocate initial stack or double stack size, up to YYMAXDEPTH */ #if defined(__cplusplus) || defined(__STDC__) static int yygrowstack(void) #else static int yygrowstack() #endif { int newsize, i; short *newss; YYSTYPE *newvs; if ((newsize = yystacksize) == 0) newsize = YYINITSTACKSIZE; else if (newsize >= YYMAXDEPTH) return -1; else if ((newsize *= 2) > YYMAXDEPTH) newsize = YYMAXDEPTH; i = yyssp - yyss; newss = yyss ? (short *)realloc(yyss, newsize * sizeof *newss) : (short *)malloc(newsize * sizeof *newss); if (newss == NULL) goto bail; yyss = newss; yyssp = newss + i; newvs = yyvs ? (YYSTYPE *)realloc(yyvs, newsize * sizeof *newvs) : (YYSTYPE *)malloc(newsize * sizeof *newvs); if (newvs == NULL) goto bail; yyvs = newvs; yyvsp = newvs + i; yystacksize = newsize; yysslim = yyss + newsize - 1; return 0; bail: if (yyss) free(yyss); if (yyvs) free(yyvs); yyss = yyssp = NULL; yyvs = yyvsp = NULL; yystacksize = 0; return -1; } #define YYABORT goto yyabort #define YYREJECT goto yyabort #define YYACCEPT goto yyaccept #define YYERROR goto yyerrlab int #if defined(__cplusplus) || defined(__STDC__) yyparse(void) #else yyparse() #endif { int yym, yyn, yystate; #if YYDEBUG #if defined(__cplusplus) || defined(__STDC__) const char *yys; #else /* !(defined(__cplusplus) || defined(__STDC__)) */ char *yys; #endif /* !(defined(__cplusplus) || defined(__STDC__)) */ if ((yys = getenv("YYDEBUG"))) { yyn = *yys; if (yyn >= '0' && yyn <= '9') yydebug = yyn - '0'; } #endif /* YYDEBUG */ yynerrs = 0; yyerrflag = 0; yychar = (-1); if (yyss == NULL && yygrowstack()) goto yyoverflow; yyssp = yyss; yyvsp = yyvs; *yyssp = yystate = 0; yyloop: if ((yyn = yydefred[yystate]) != 0) goto yyreduce; if (yychar < 0) { if ((yychar = yylex()) < 0) yychar = 0; #if YYDEBUG if (yydebug) { yys = 0; if (yychar <= YYMAXTOKEN) yys = yyname[yychar]; if (!yys) yys = "illegal-symbol"; printf("%sdebug: state %d, reading %d (%s)\n", YYPREFIX, yystate, yychar, yys); } #endif } if ((yyn = yysindex[yystate]) && (yyn += yychar) >= 0 && yyn <= YYTABLESIZE && yycheck[yyn] == yychar) { #if YYDEBUG if (yydebug) printf("%sdebug: state %d, shifting to state %d\n", YYPREFIX, yystate, yytable[yyn]); #endif if (yyssp >= yysslim && yygrowstack()) { goto yyoverflow; } *++yyssp = yystate = yytable[yyn]; *++yyvsp = yylval; yychar = (-1); if (yyerrflag > 0) --yyerrflag; goto yyloop; } if ((yyn = yyrindex[yystate]) && (yyn += yychar) >= 0 && yyn <= YYTABLESIZE && yycheck[yyn] == yychar) { yyn = yytable[yyn]; goto yyreduce; } if (yyerrflag) goto yyinrecovery; #if defined(lint) || defined(__GNUC__) goto yynewerror; #endif yynewerror: yyerror("syntax error"); #if defined(lint) || defined(__GNUC__) goto yyerrlab; #endif yyerrlab: ++yynerrs; yyinrecovery: if (yyerrflag < 3) { yyerrflag = 3; for (;;) { if ((yyn = yysindex[*yyssp]) && (yyn += YYERRCODE) >= 0 && yyn <= YYTABLESIZE && yycheck[yyn] == YYERRCODE) { #if YYDEBUG if (yydebug) printf("%sdebug: state %d, error recovery shifting\ to state %d\n", YYPREFIX, *yyssp, yytable[yyn]); #endif if (yyssp >= yysslim && yygrowstack()) { goto yyoverflow; } *++yyssp = yystate = yytable[yyn]; *++yyvsp = yylval; goto yyloop; } else { #if YYDEBUG if (yydebug) printf("%sdebug: error recovery discarding state %d\n", YYPREFIX, *yyssp); #endif if (yyssp <= yyss) goto yyabort; --yyssp; --yyvsp; } } } else { if (yychar == 0) goto yyabort; #if YYDEBUG if (yydebug) { yys = 0; if (yychar <= YYMAXTOKEN) yys = yyname[yychar]; if (!yys) yys = "illegal-symbol"; printf("%sdebug: state %d, error recovery discards token %d (%s)\n", YYPREFIX, yystate, yychar, yys); } #endif yychar = (-1); goto yyloop; } yyreduce: #if YYDEBUG if (yydebug) printf("%sdebug: state %d, reducing by rule %d (%s)\n", YYPREFIX, yystate, yyn, yyrule[yyn]); #endif yym = yylen[yyn]; yyval = yyvsp[1-yym]; switch (yyn) { case 1: #line 163 "gram.y" { ; } break; case 5: #line 171 "gram.y" { ; } break; case 6: #line 174 "gram.y" { yyerrok; } break; case 7: #line 177 "gram.y" { add_userspec(yyvsp[-1].member, yyvsp[0].privilege); } break; case 8: #line 180 "gram.y" { ; } break; case 9: #line 183 "gram.y" { ; } break; case 10: #line 186 "gram.y" { ; } break; case 11: #line 189 "gram.y" { ; } break; case 12: #line 192 "gram.y" { add_defaults(DEFAULTS, NULL, yyvsp[0].defaults); } break; case 13: #line 195 "gram.y" { add_defaults(DEFAULTS_USER, yyvsp[-1].member, yyvsp[0].defaults); } break; case 14: #line 198 "gram.y" { add_defaults(DEFAULTS_RUNAS, yyvsp[-1].member, yyvsp[0].defaults); } break; case 15: #line 201 "gram.y" { add_defaults(DEFAULTS_HOST, yyvsp[-1].member, yyvsp[0].defaults); } break; case 16: #line 204 "gram.y" { add_defaults(DEFAULTS_CMND, yyvsp[-1].member, yyvsp[0].defaults); } break; case 18: #line 210 "gram.y" { LIST_APPEND(yyvsp[-2].defaults, yyvsp[0].defaults); yyval.defaults = yyvsp[-2].defaults; } break; case 19: #line 216 "gram.y" { NEW_DEFAULT(yyval.defaults, yyvsp[0].string, NULL, TRUE); } break; case 20: #line 219 "gram.y" { NEW_DEFAULT(yyval.defaults, yyvsp[0].string, NULL, FALSE); } break; case 21: #line 222 "gram.y" { NEW_DEFAULT(yyval.defaults, yyvsp[-2].string, yyvsp[0].string, TRUE); } break; case 22: #line 225 "gram.y" { NEW_DEFAULT(yyval.defaults, yyvsp[-2].string, yyvsp[0].string, '+'); } break; case 23: #line 228 "gram.y" { NEW_DEFAULT(yyval.defaults, yyvsp[-2].string, yyvsp[0].string, '-'); } break; case 25: #line 234 "gram.y" { LIST_APPEND(yyvsp[-2].privilege, yyvsp[0].privilege); yyval.privilege = yyvsp[-2].privilege; } break; case 26: #line 240 "gram.y" { struct cmndtag tags; struct privilege *p = emalloc(sizeof(*p)); struct cmndspec *cs; p->hostlist = yyvsp[-2].member; p->cmndlist = yyvsp[0].cmndspec; tags.nopasswd = tags.noexec = tags.monitor = UNSPEC; /* propagate tags */ for (cs = yyvsp[0].cmndspec; cs != NULL; cs = cs->next) { if (cs->tags.nopasswd == UNSPEC) cs->tags.nopasswd = tags.nopasswd; if (cs->tags.noexec == UNSPEC) cs->tags.noexec = tags.noexec; if (cs->tags.monitor == UNSPEC) cs->tags.monitor = tags.monitor; memcpy(&tags, &cs->tags, sizeof(tags)); } p->last = NULL; p->next = NULL; yyval.privilege = p; } break; case 27: #line 263 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = FALSE; } break; case 28: #line 267 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = TRUE; } break; case 29: #line 273 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, ALIAS); } break; case 30: #line 276 "gram.y" { NEW_MEMBER(yyval.member, NULL, ALL); } break; case 31: #line 279 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, NETGROUP); } break; case 32: #line 282 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, NTWKADDR); } break; case 33: #line 285 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, WORD); } break; case 35: #line 291 "gram.y" { LIST_APPEND(yyvsp[-2].cmndspec, yyvsp[0].cmndspec); yyval.cmndspec = yyvsp[-2].cmndspec; } break; case 36: #line 297 "gram.y" { struct cmndspec *cs = emalloc(sizeof(*cs)); cs->runaslist = yyvsp[-2].member; cs->tags = yyvsp[-1].tag; cs->cmnd = yyvsp[0].member; cs->last = NULL; cs->next = NULL; yyval.cmndspec = cs; } break; case 37: #line 308 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = FALSE; } break; case 38: #line 312 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = TRUE; } break; case 39: #line 318 "gram.y" { yyval.member = NULL; } break; case 40: #line 321 "gram.y" { yyval.member = yyvsp[0].member; } break; case 42: #line 327 "gram.y" { LIST_APPEND(yyvsp[-2].member, yyvsp[0].member); yyval.member = yyvsp[-2].member; } break; case 43: #line 333 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = FALSE; } break; case 44: #line 337 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = TRUE; } break; case 45: #line 343 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, ALIAS); } break; case 46: #line 346 "gram.y" { NEW_MEMBER(yyval.member, NULL, ALL); } break; case 47: #line 349 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, NETGROUP); } break; case 48: #line 352 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, USERGROUP); } break; case 49: #line 355 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, WORD); } break; case 50: #line 360 "gram.y" { yyval.tag.nopasswd = yyval.tag.noexec = yyval.tag.monitor = UNSPEC; } break; case 51: #line 363 "gram.y" { yyval.tag.nopasswd = TRUE; } break; case 52: #line 366 "gram.y" { yyval.tag.nopasswd = FALSE; } break; case 53: #line 369 "gram.y" { yyval.tag.noexec = TRUE; } break; case 54: #line 372 "gram.y" { yyval.tag.noexec = FALSE; } break; case 55: #line 375 "gram.y" { yyval.tag.monitor = TRUE; } break; case 56: #line 378 "gram.y" { yyval.tag.monitor = FALSE; } break; case 57: #line 383 "gram.y" { NEW_MEMBER(yyval.member, NULL, ALL); } break; case 58: #line 386 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, ALIAS); } break; case 59: #line 389 "gram.y" { struct sudo_command *c = emalloc(sizeof(*c)); c->cmnd = yyvsp[0].command.cmnd; c->args = yyvsp[0].command.args; NEW_MEMBER(yyval.member, (char *)c, COMMAND); } break; case 62: #line 401 "gram.y" { char *s; if ((s = alias_add(yyvsp[-2].string, HOSTALIAS, yyvsp[0].member)) != NULL) { yyerror(s); YYERROR; } } break; case 64: #line 411 "gram.y" { LIST_APPEND(yyvsp[-2].member, yyvsp[0].member); yyval.member = yyvsp[-2].member; } break; case 67: #line 421 "gram.y" { char *s; if ((s = alias_add(yyvsp[-2].string, CMNDALIAS, yyvsp[0].member)) != NULL) { yyerror(s); YYERROR; } } break; case 69: #line 431 "gram.y" { LIST_APPEND(yyvsp[-2].member, yyvsp[0].member); yyval.member = yyvsp[-2].member; } break; case 72: #line 441 "gram.y" { char *s; if ((s = alias_add(yyvsp[-2].string, RUNASALIAS, yyvsp[0].member)) != NULL) { yyerror(s); YYERROR; } } break; case 75: #line 454 "gram.y" { char *s; if ((s = alias_add(yyvsp[-2].string, USERALIAS, yyvsp[0].member)) != NULL) { yyerror(s); YYERROR; } } break; case 77: #line 464 "gram.y" { LIST_APPEND(yyvsp[-2].member, yyvsp[0].member); yyval.member = yyvsp[-2].member; } break; case 78: #line 470 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = FALSE; } break; case 79: #line 474 "gram.y" { yyval.member = yyvsp[0].member; yyval.member->negated = TRUE; } break; case 80: #line 480 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, ALIAS); } break; case 81: #line 483 "gram.y" { NEW_MEMBER(yyval.member, NULL, ALL); } break; case 82: #line 486 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, NETGROUP); } break; case 83: #line 489 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, USERGROUP); } break; case 84: #line 492 "gram.y" { NEW_MEMBER(yyval.member, yyvsp[0].string, WORD); } break; #line 1323 "gram.c" } yyssp -= yym; yystate = *yyssp; yyvsp -= yym; yym = yylhs[yyn]; if (yystate == 0 && yym == 0) { #if YYDEBUG if (yydebug) printf("%sdebug: after reduction, shifting from state 0 to\ state %d\n", YYPREFIX, YYFINAL); #endif yystate = YYFINAL; *++yyssp = YYFINAL; *++yyvsp = yyval; if (yychar < 0) { if ((yychar = yylex()) < 0) yychar = 0; #if YYDEBUG if (yydebug) { yys = 0; if (yychar <= YYMAXTOKEN) yys = yyname[yychar]; if (!yys) yys = "illegal-symbol"; printf("%sdebug: state %d, reading %d (%s)\n", YYPREFIX, YYFINAL, yychar, yys); } #endif } if (yychar == 0) goto yyaccept; goto yyloop; } if ((yyn = yygindex[yym]) && (yyn += yystate) >= 0 && yyn <= YYTABLESIZE && yycheck[yyn] == yystate) yystate = yytable[yyn]; else yystate = yydgoto[yym]; #if YYDEBUG if (yydebug) printf("%sdebug: after reduction, shifting from state %d \ to state %d\n", YYPREFIX, *yyssp, yystate); #endif if (yyssp >= yysslim && yygrowstack()) { goto yyoverflow; } *++yyssp = yystate; *++yyvsp = yyval; goto yyloop; yyoverflow: yyerror("yacc stack overflow"); yyabort: if (yyss) free(yyss); if (yyvs) free(yyvs); yyss = yyssp = NULL; yyvs = yyvsp = NULL; yystacksize = 0; return (1); yyaccept: if (yyss) free(yyss); if (yyvs) free(yyvs); yyss = yyssp = NULL; yyvs = yyvsp = NULL; yystacksize = 0; return (0); }