From owner-freebsd-ports  Fri Aug 22 08:20:07 1997
Return-Path: <owner-freebsd-ports>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id IAA13555
          for ports-outgoing; Fri, 22 Aug 1997 08:20:07 -0700 (PDT)
Received: (from gnats@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id IAA13540;
          Fri, 22 Aug 1997 08:20:02 -0700 (PDT)
Resent-Date: Fri, 22 Aug 1997 08:20:02 -0700 (PDT)
Resent-Message-Id: <199708221520.IAA13540@hub.freebsd.org>
Resent-From: gnats (GNATS Management)
Resent-To: freebsd-ports
Resent-Reply-To: FreeBSD-gnats@FreeBSD.ORG, j@ida.interface-business.de
Received: from innocence.interface-business.de (innocence.interface-business.de [193.101.57.202])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA13255
          for <FreeBSD-gnats-submit@freebsd.org>; Fri, 22 Aug 1997 08:15:33 -0700 (PDT)
Received: from ida.interface-business.de (ida.interface-business.de [193.101.57.203]) by innocence.interface-business.de (8.6.11/8.6.9) with SMTP id RAA24878 for <FreeBSD-gnats-submit@freebsd.org>; Fri, 22 Aug 1997 17:15:24 +0200
Received: (from j@localhost) by ida.interface-business.de (8.8.7/8.7.3) id RAA25020; Fri, 22 Aug 1997 17:15:37 +0200 (MET DST)
Message-Id: <199708221515.RAA25020@ida.interface-business.de>
Date: Fri, 22 Aug 1997 17:15:37 +0200 (MET DST)
From: J Wunsch <j@ida.interface-business.de>
Reply-To: j@ida.interface-business.de
To: FreeBSD-gnats-submit@FreeBSD.ORG
X-Send-Pr-Version: 3.2
Subject: ports/4356: sudo shouldn't block signals in tgetpass()
Sender: owner-freebsd-ports@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk


>Number:         4356
>Category:       ports
>Synopsis:       sudo shouldn't block signals in tgetpass()
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports
>State:          open
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Aug 22 08:20:01 PDT 1997
>Last-Modified:
>Originator:     J Wunsch
>Organization:
interface business GmbH, Dresden
>Release:        FreeBSD 2.2-STABLE i386
>Environment:

j@dasya 102% sudo -V
CU Sudo version 1.5.3


>Description:

sudo shouldn't block signals in tgetpass(), since this confuses the
user typing ^C whether his wish to abort the operation has been
recognized by the program at all.  Signals should be caught, and
handled appropriately.

>How-To-Repeat:

Type `sudo' with a sudoers file that requires you to type your
password, and hit ^C.  You need to type a newline in order to actually
abort the operation.

>Fix:
	
This bug has been fixed in revs 1.3 and 1.4 of FreeBSD's libc version
of getpass(3), back in 1995.  It should be fixed in sudo in a similar
way.  (sudo's tgetpass() wants to expand %h and %u, thus libc's
getpass(3) cannot be used directly.)
>Audit-Trail:
>Unformatted: