sudo-rs 0.2.13

A memory safe implementation of sudo and su.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55

[package]
name = "sudo-rs"
description = "A memory safe implementation of sudo and su."
version = "0.2.13"
license = "Apache-2.0 OR MIT"
edition = "2024"
repository = "https://github.com/trifectatechfoundation/sudo-rs"
homepage = "https://github.com/trifectatechfoundation/sudo-rs"
publish = true
categories = ["command-line-interface"]
exclude = ["audit", "proofs", "util"]

rust-version = "1.85"

default-run = "sudo"

[dependencies]
libc = "0.2.176"
glob = "0.3.0"

[features]
default = []

# when enabled, use "sudo-i" PAM service name for sudo -i instead of "sudo"
# ONLY ENABLE THIS FEATURE if you know that original sudo uses "sudo-i"
# on the system you are building sudo for (e.g. Debian, Fedora, but not Arch)
pam-login = []

# this enables enforcing of AppArmor profiles
apparmor = []

# whether to enable 'gettext' support for giving localized user-facing messages
gettext = []

# enable detailed logging (use for development only) to /tmp
# this will compromise the security of sudo-rs somewhat
dev = []

# this feature should never be enabled, but it is here to prevent accidental
# compilation using "cargo --all-features", which should not be used on sudo-rs
do-not-use-all-features = []

# sudoedit support is now always enabled. this feature only exists for back compat reasons
sudoedit = []

[profile.release]
strip = "symbols"
lto = true
opt-level = "s"

[lints.rust]
unsafe_op_in_unsafe_fn = { level = "deny" }

[lints.clippy]
undocumented_unsafe_blocks = "warn"