06b91176e7
Per https://gitlab.com/buildroot.org/buildroot/-/issues/27 , on glibc
builds without PAM, sudo will "fail" all password prompts.
It was found that it's simply checking the entered string against the
raw hash, because 'libcryp' isn't available. On glibc, we need libxcrypt,
so enable it and ensure sudo is built with it.
musl and uclibc do have crypt() functions, so this is not needed.
Relevant code from sudo:
https://github.com/sudo-project/sudo/blob/v1.9.17p1/plugins/sudoers/auth/passwd.c#L139
Signed-off-by: Nathaniel Roach <nroach44@nroach44.id.au>
Signed-off-by: Julien Olivain <ju.o@free.fr>
(cherry picked from commit 6044cc5f26)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
13 lines
402 B
Plaintext
13 lines
402 B
Plaintext
config BR2_PACKAGE_SUDO
|
|
bool "sudo"
|
|
# uses fork()
|
|
depends on BR2_USE_MMU
|
|
select BR2_PACKAGE_LIBXCRYPT if BR2_TOOLCHAIN_USES_GLIBC
|
|
help
|
|
Sudo is a program designed to allow a sysadmin to give
|
|
limited root privileges to users and log root activity. The
|
|
basic philosophy is to give as few privileges as possible
|
|
but still allow people to get their work done.
|
|
|
|
https://www.sudo.ws/sudo/
|