millert
commented
1 year ago Resolved by 3dfbf93 and https://github.com/sudo-project/sudo/commit/a85494b5c4f8afd24c9fcadd0e4102e6a8c4fbc7.
- If sudo can determine the user's tty device but cannot resolve it to a file name, it will now warn the user (previously it was a debug message) and behave as if no terminal is present. This is safer than erroring out on systems where there is no root password and sudo is the only way to access the root account.
- The dev_t is now passed from the front-end to the policy module where it can be used as-is in the time stamp file.
- The tsdump program in the sudo source distribution can be used to list the contents of a sudo time stamp file. It is not currently installed by default, perhaps it could go in sudo's libexec directory.
gdt
I am using 1.9.14p3 on NetBSD. I changed from /dev/ttyp to /dev/pts, but did not reboot. I found that sudo when executed as part of a package rebuild ("make replace") did not respect cached authtentication. The root causes are 1) I had not run dev_mkdb, and devname(3) returned stale paths 2) sudo took the device major/minor, converted it to a path, and then checked if the path was valid. If so, the dev_t was stored in the timestamp file. If not, sudo silently* flipped to ppid mode.
To figure this out, I had to read code and write my own code to parse the timestamp file.
I would suggest 1) If the tty path does not exist, log a very loud error and error out. This is a failure of something that ought to be true always, and it is both unhelpful and unsafe to do something else instead 2) If what matters is the dev_t, do not convert to names. Just use dev_t.