3 * Copyright (c) 1996, 1998-2005, 2007-2012
4 * Todd C. Miller <Todd.Miller@courtesan.com>
6 * Permission to use, copy, modify, and distribute this software for any
7 * purpose with or without fee is hereby granted, provided that the above
8 * copyright notice and this permission notice appear in all copies.
10 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
11 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
12 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
13 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
14 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
18 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
20 * Sponsored in part by the Defense Advanced Research Projects
21 * Agency (DARPA) and Air Force Research Laboratory, Air Force
22 * Materiel Command, USAF, under agreement number F39502-99-1-0512.
27 #include <sys/types.h>
28 #include <sys/param.h>
37 #endif /* STDC_HEADERS */
40 #endif /* HAVE_STRING_H */
43 #endif /* HAVE_STRINGS_H */
46 #endif /* HAVE_UNISTD_H */
47 #if defined(YYBISON) && defined(HAVE_ALLOCA_H) && !defined(__GNUC__)
49 #endif /* YYBISON && HAVE_ALLOCA_H && !__GNUC__ */
52 #include "sudoers.h" /* XXX */
58 * We must define SIZE_MAX for yacc's skeleton.c.
59 * If there is no SIZE_MAX or SIZE_T_MAX we have to assume that size_t
60 * could be signed (as it is on SunOS 4.x).
64 # define SIZE_MAX SIZE_T_MAX
66 # define SIZE_MAX INT_MAX
67 # endif /* SIZE_T_MAX */
73 extern int sudolineno;
74 extern int last_token;
76 bool sudoers_warnings = true;
77 bool parse_error = false;
79 char *errorfile = NULL;
81 struct defaults_list defaults;
82 struct userspec_list userspecs;
87 static void add_defaults(int, struct member *, struct defaults *);
88 static void add_userspec(struct member *, struct privilege *);
89 static struct defaults *new_default(char *, char *, int);
90 static struct member *new_member(char *, int);
91 void yyerror(const char *);
94 yyerror(const char *s)
96 debug_decl(yyerror, SUDO_DEBUG_PARSER)
98 /* If we last saw a newline the error is on the preceding line. */
99 if (last_token == COMMENT)
102 /* Save the line the first error occurred on. */
103 if (errorlineno == -1) {
104 errorlineno = sudolineno;
105 errorfile = estrdup(sudoers);
107 if (trace_print != NULL) {
109 } else if (sudoers_warnings && s != NULL) {
110 warningx(_(">>> %s: %s near line %d <<<"), sudoers, s, sudolineno);
118 struct cmndspec *cmndspec;
119 struct defaults *defaults;
120 struct member *member;
121 struct runascontainer *runas;
122 struct privilege *privilege;
123 struct sudo_command command;
125 struct selinux_info seinfo;
130 %start file /* special start symbol */
131 %token <command> COMMAND /* absolute pathname w/ optional args */
132 %token <string> ALIAS /* an UPPERCASE alias name */
133 %token <string> DEFVAR /* a Defaults variable name */
134 %token <string> NTWKADDR /* ipv4 or ipv6 address */
135 %token <string> NETGROUP /* a netgroup (+NAME) */
136 %token <string> USERGROUP /* a usergroup (%NAME) */
137 %token <string> WORD /* a word */
138 %token <tok> DEFAULTS /* Defaults entry */
139 %token <tok> DEFAULTS_HOST /* Host-specific defaults entry */
140 %token <tok> DEFAULTS_USER /* User-specific defaults entry */
141 %token <tok> DEFAULTS_RUNAS /* Runas-specific defaults entry */
142 %token <tok> DEFAULTS_CMND /* Command-specific defaults entry */
143 %token <tok> NOPASSWD /* no passwd req for command */
144 %token <tok> PASSWD /* passwd req for command (default) */
145 %token <tok> NOEXEC /* preload dummy execve() for cmnd */
146 %token <tok> EXEC /* don't preload dummy execve() */
147 %token <tok> SETENV /* user may set environment for cmnd */
148 %token <tok> NOSETENV /* user may not set environment */
149 %token <tok> LOG_INPUT /* log user's cmnd input */
150 %token <tok> NOLOG_INPUT /* don't log user's cmnd input */
151 %token <tok> LOG_OUTPUT /* log cmnd output */
152 %token <tok> NOLOG_OUTPUT /* don't log cmnd output */
153 %token <tok> ALL /* ALL keyword */
154 %token <tok> COMMENT /* comment and/or carriage return */
155 %token <tok> HOSTALIAS /* Host_Alias keyword */
156 %token <tok> CMNDALIAS /* Cmnd_Alias keyword */
157 %token <tok> USERALIAS /* User_Alias keyword */
158 %token <tok> RUNASALIAS /* Runas_Alias keyword */
159 %token <tok> ':' '=' ',' '!' '+' '-' /* union member tokens */
160 %token <tok> '(' ')' /* runas tokens */
162 %token <tok> TYPE /* SELinux type */
163 %token <tok> ROLE /* SELinux role */
165 %type <cmndspec> cmndspec
166 %type <cmndspec> cmndspeclist
167 %type <defaults> defaults_entry
168 %type <defaults> defaults_list
170 %type <member> opcmnd
171 %type <member> cmndlist
173 %type <member> hostlist
174 %type <member> ophost
175 %type <member> opuser
177 %type <member> userlist
178 %type <member> opgroup
180 %type <member> grouplist
181 %type <runas> runasspec
182 %type <runas> runaslist
183 %type <privilege> privilege
184 %type <privilege> privileges
186 %type <seinfo> selinux
187 %type <string> rolespec
188 %type <string> typespec
206 | userlist privileges {
207 add_userspec($1, $2);
209 | USERALIAS useraliases {
212 | HOSTALIAS hostaliases {
215 | CMNDALIAS cmndaliases {
218 | RUNASALIAS runasaliases {
221 | DEFAULTS defaults_list {
222 add_defaults(DEFAULTS, NULL, $2);
224 | DEFAULTS_USER userlist defaults_list {
225 add_defaults(DEFAULTS_USER, $2, $3);
227 | DEFAULTS_RUNAS userlist defaults_list {
228 add_defaults(DEFAULTS_RUNAS, $2, $3);
230 | DEFAULTS_HOST hostlist defaults_list {
231 add_defaults(DEFAULTS_HOST, $2, $3);
233 | DEFAULTS_CMND cmndlist defaults_list {
234 add_defaults(DEFAULTS_CMND, $2, $3);
238 defaults_list : defaults_entry
239 | defaults_list ',' defaults_entry {
245 defaults_entry : DEFVAR {
246 $$ = new_default($1, NULL, true);
249 $$ = new_default($2, NULL, false);
252 $$ = new_default($1, $3, true);
255 $$ = new_default($1, $3, '+');
258 $$ = new_default($1, $3, '-');
262 privileges : privilege
263 | privileges ':' privilege {
269 privilege : hostlist '=' cmndspeclist {
270 struct privilege *p = ecalloc(1, sizeof(*p));
271 list2tq(&p->hostlist, $1);
272 list2tq(&p->cmndlist, $3);
274 /* p->next = NULL; */
290 $$ = new_member($1, ALIAS);
293 $$ = new_member(NULL, ALL);
296 $$ = new_member($1, NETGROUP);
299 $$ = new_member($1, NTWKADDR);
302 $$ = new_member($1, WORD);
306 cmndspeclist : cmndspec
307 | cmndspeclist ',' cmndspec {
310 /* propagate role and type */
311 if ($3->role == NULL)
312 $3->role = $3->prev->role;
313 if ($3->type == NULL)
314 $3->type = $3->prev->type;
315 #endif /* HAVE_SELINUX */
316 /* propagate tags and runas list */
317 if ($3->tags.nopasswd == UNSPEC)
318 $3->tags.nopasswd = $3->prev->tags.nopasswd;
319 if ($3->tags.noexec == UNSPEC)
320 $3->tags.noexec = $3->prev->tags.noexec;
321 if ($3->tags.setenv == UNSPEC &&
322 $3->prev->tags.setenv != IMPLIED)
323 $3->tags.setenv = $3->prev->tags.setenv;
324 if ($3->tags.log_input == UNSPEC)
325 $3->tags.log_input = $3->prev->tags.log_input;
326 if ($3->tags.log_output == UNSPEC)
327 $3->tags.log_output = $3->prev->tags.log_output;
328 if ((tq_empty(&$3->runasuserlist) &&
329 tq_empty(&$3->runasgrouplist)) &&
330 (!tq_empty(&$3->prev->runasuserlist) ||
331 !tq_empty(&$3->prev->runasgrouplist))) {
332 $3->runasuserlist = $3->prev->runasuserlist;
333 $3->runasgrouplist = $3->prev->runasgrouplist;
339 cmndspec : runasspec selinux cmndtag opcmnd {
340 struct cmndspec *cs = ecalloc(1, sizeof(*cs));
342 list2tq(&cs->runasuserlist, $1->runasusers);
343 list2tq(&cs->runasgrouplist, $1->runasgroups);
346 tq_init(&cs->runasuserlist);
347 tq_init(&cs->runasgrouplist);
357 /* sudo "ALL" implies the SETENV tag */
358 if (cs->cmnd->type == ALL && !cs->cmnd->negated &&
359 cs->tags.setenv == UNSPEC)
360 cs->tags.setenv = IMPLIED;
375 rolespec : ROLE '=' WORD {
380 typespec : TYPE '=' WORD {
385 selinux : /* empty */ {
397 | rolespec typespec {
401 | typespec rolespec {
407 runasspec : /* empty */ {
410 | '(' runaslist ')' {
415 runaslist : userlist {
416 $$ = ecalloc(1, sizeof(struct runascontainer));
418 /* $$->runasgroups = NULL; */
420 | userlist ':' grouplist {
421 $$ = ecalloc(1, sizeof(struct runascontainer));
423 $$->runasgroups = $3;
426 $$ = ecalloc(1, sizeof(struct runascontainer));
427 /* $$->runasusers = NULL; */
428 $$->runasgroups = $2;
432 cmndtag : /* empty */ {
433 $$.nopasswd = $$.noexec = $$.setenv =
434 $$.log_input = $$.log_output = UNSPEC;
454 | cmndtag LOG_INPUT {
457 | cmndtag NOLOG_INPUT {
458 $$.log_input = false;
460 | cmndtag LOG_OUTPUT {
461 $$.log_output = true;
463 | cmndtag NOLOG_OUTPUT {
464 $$.log_output = false;
469 $$ = new_member(NULL, ALL);
472 $$ = new_member($1, ALIAS);
475 struct sudo_command *c = ecalloc(1, sizeof(*c));
478 $$ = new_member((char *)c, COMMAND);
482 hostaliases : hostalias
483 | hostaliases ':' hostalias
486 hostalias : ALIAS '=' hostlist {
488 if ((s = alias_add($1, HOSTALIAS, $3)) != NULL) {
496 | hostlist ',' ophost {
502 cmndaliases : cmndalias
503 | cmndaliases ':' cmndalias
506 cmndalias : ALIAS '=' cmndlist {
508 if ((s = alias_add($1, CMNDALIAS, $3)) != NULL) {
516 | cmndlist ',' opcmnd {
522 runasaliases : runasalias
523 | runasaliases ':' runasalias
526 runasalias : ALIAS '=' userlist {
528 if ((s = alias_add($1, RUNASALIAS, $3)) != NULL) {
535 useraliases : useralias
536 | useraliases ':' useralias
539 useralias : ALIAS '=' userlist {
541 if ((s = alias_add($1, USERALIAS, $3)) != NULL) {
549 | userlist ',' opuser {
566 $$ = new_member($1, ALIAS);
569 $$ = new_member(NULL, ALL);
572 $$ = new_member($1, NETGROUP);
575 $$ = new_member($1, USERGROUP);
578 $$ = new_member($1, WORD);
583 | grouplist ',' opgroup {
600 $$ = new_member($1, ALIAS);
603 $$ = new_member(NULL, ALL);
606 $$ = new_member($1, WORD);
611 static struct defaults *
612 new_default(char *var, char *val, int op)
615 debug_decl(new_default, SUDO_DEBUG_PARSER)
617 d = ecalloc(1, sizeof(struct defaults));
620 tq_init(&d->binding);
624 /* d->next = NULL; */
629 static struct member *
630 new_member(char *name, int type)
633 debug_decl(new_member, SUDO_DEBUG_PARSER)
635 m = ecalloc(1, sizeof(struct member));
639 /* m->next = NULL; */
645 * Add a list of defaults structures to the defaults list.
646 * The binding, if non-NULL, specifies a list of hosts, users, or
647 * runas users the entries apply to (specified by the type).
650 add_defaults(int type, struct member *bmem, struct defaults *defs)
653 struct member_list binding;
654 debug_decl(add_defaults, SUDO_DEBUG_PARSER)
657 * We can only call list2tq once on bmem as it will zero
658 * out the prev pointer when it consumes bmem.
660 list2tq(&binding, bmem);
663 * Set type and binding (who it applies to) for new entries.
665 for (d = defs; d != NULL; d = d->next) {
667 d->binding = binding;
669 tq_append(&defaults, defs);
675 * Allocate a new struct userspec, populate it, and insert it at the
676 * and of the userspecs list.
679 add_userspec(struct member *members, struct privilege *privs)
682 debug_decl(add_userspec, SUDO_DEBUG_PARSER)
684 u = ecalloc(1, sizeof(*u));
685 list2tq(&u->users, members);
686 list2tq(&u->privileges, privs);
688 /* u->next = NULL; */
689 tq_append(&userspecs, u);
695 * Free up space used by data structures from a previous parser run and sets
696 * the current sudoers file to path.
699 init_parser(const char *path, int quiet)
702 struct member *m, *binding;
704 struct privilege *priv;
706 struct sudo_command *c;
707 debug_decl(init_parser, SUDO_DEBUG_PARSER)
709 while ((us = tq_pop(&userspecs)) != NULL) {
710 while ((m = tq_pop(&us->users)) != NULL) {
714 while ((priv = tq_pop(&us->privileges)) != NULL) {
715 struct member *runasuser = NULL, *runasgroup = NULL;
717 char *role = NULL, *type = NULL;
718 #endif /* HAVE_SELINUX */
720 while ((m = tq_pop(&priv->hostlist)) != NULL) {
724 while ((cs = tq_pop(&priv->cmndlist)) != NULL) {
726 /* Only free the first instance of a role/type. */
727 if (cs->role != role) {
731 if (cs->type != type) {
735 #endif /* HAVE_SELINUX */
736 if (tq_last(&cs->runasuserlist) != runasuser) {
737 runasuser = tq_last(&cs->runasuserlist);
738 while ((m = tq_pop(&cs->runasuserlist)) != NULL) {
743 if (tq_last(&cs->runasgrouplist) != runasgroup) {
744 runasgroup = tq_last(&cs->runasgrouplist);
745 while ((m = tq_pop(&cs->runasgrouplist)) != NULL) {
750 if (cs->cmnd->type == COMMAND) {
751 c = (struct sudo_command *) cs->cmnd->name;
755 efree(cs->cmnd->name);
766 while ((d = tq_pop(&defaults)) != NULL) {
767 if (tq_last(&d->binding) != binding) {
768 binding = tq_last(&d->binding);
769 while ((m = tq_pop(&d->binding)) != NULL) {
770 if (m->type == COMMAND) {
771 c = (struct sudo_command *) m->name;
790 sudoers = path ? estrdup(path) : NULL;
795 sudoers_warnings = !quiet;