First Last Prev Next    This bug is not in your last search results.
Bug 40 - Parse buglet?
Parse buglet?
Status: RESOLVED FIXED
Product: Sudo
Classification: Unclassified
Component: Sudo
1.6.3
PC Linux
: normal normal
Assigned To: Todd C. Miller
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2001-06-12 15:59 MDT by Andres Salomon
Modified: 2001-12-12 23:25 MST (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andres Salomon 2001-06-12 15:59:31 MDT 
Given the following entry in my sudoers file, with sudo 1.6.3p6:
apache ALL=NOPASSWD: /usr/bin/php -d include_path=.\:/etc/awesom -f
/home/httpd/html/voxel/ubersmith/awesom/caller.php
%3[cC]%3[fF]xml[-a-zA-Z0-9\\.\\+_%]*

I get:
>>> sudoers file: syntax error, line 16 <<<
sudo: parse error in /etc/sudoers near line 16

The offending character in this entry is the command argument starting with %.
The workaround:
apache ALL=NOPASSWD: /usr/bin/php -d include_path=.\:/etc/awesom -f
/home/httpd/html/voxel/ubersmith/awesom/caller.php
[%]3[cC]%3[fF]xml[-a-zA-Z0-9\\.\\+_%]*

At which point I get (w/ sudo -l):
User apache may run the following commands on this host:
    (root) NOPASSWD: /usr/bin/php -d include_path=.:/etc/awesom -f
/home/httpd/html/voxel/ubersmith/awesom/caller.php
[%]3[cC]%3[fF]xml[-a-zA-Z0-9\.\+_%]*

My hunch is that sudo thinks the regex that starts w/ % is a group; however, if
I understand the sudoers man page, groups
are not allowed where commands would be listed.
Comment 1 Todd C. Miller 2001-06-15 10:15:59 MDT 
Yes, the sudo lexer needs some work to become more stateful.  There is no easy fix at this point.
Comment 2 Todd C. Miller 2001-12-12 19:25:59 MST 
This will be fixed in sudo 1.6.4 which uses exclusive states in the lexer when tokenizing
command line args.
First Last Prev Next    This bug is not in your last search results.